nokogiri-xmlsec-instructure 0.10.3 → 0.11.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3d80bf299c2e7900122535982dfde8b7b6ab67ea53528b0b055c3758b9b9753f
-  data.tar.gz: 379cbbff6fc67ac23cf9d604d15aea36f79e58418b034dcf5e5b45db3c86a739
+  metadata.gz: 843456670b3bea9cf24ae319ed866f9e085dcbf22517d22dc335ea0754f8f1fe
+  data.tar.gz: 58aab0e864beb3d8fc3e9797b9e4de712af966e5ce6600d36f49f5985ca95c2f
 SHA512:
-  metadata.gz: e87ccfb10dfc8d9afe6964c58f4a56179fde5faa0ab007fb8bb5b62a038d6bc609d7f96efc09fbc394d3e51af568f3134133d87d5a843d6a456fe949dca464c2
-  data.tar.gz: 705acc4113dc8380a29c3ef001a19eceda6a128e9c08441a3ebd9f135452f5d0a22419d8cfdd64f2002841132687f10f84af09fe998d19f701aeff5d4860e21a
+  metadata.gz: 571f6b0e616f19ce064737e4513859b46e23cc801d567e82570b7fdfd5e76195a7ce807ba9ff1b4a96aa524d4d2a0f8fd88810788db9f4a09257f0c989cd37de
+  data.tar.gz: 8ee70b09587e4ac79a7202c1798c06e6c6257cdb0c63cc0ebdf20abf223b3fbb22bd95b5af72efb8db081627c53c3b64dbea8471ce5cc2472f8cfc9bb1f2244a

data/ext/nokogiri_ext_xmlsec/extconf.rb

@@ -1,22 +1,14 @@
-require 'mkmf'
-require 'nokogiri'
+# frozen_string_literal: true
 
-def barf message = 'dependencies not met'
-  raise message
-end
+require "mkmf"
+require "nokogiri"
 
-barf unless have_header('ruby.h')
+abort unless pkg_config("xmlsec1")
+append_cflags("-fvisibility=hidden")
 
-pkg_config('xmlsec1')
-$CFLAGS << " " + `xmlsec1-config  --cflags`.strip
-$CFLAGS << " -fvisibility=hidden"
-
-$CFLAGS << Dir[Gem.loaded_specs['nokogiri'].full_gem_path + "/ext/*"].map { |dir| " -I#{dir}"}.join("")
-
-puts "Cflags: #{$CFLAGS}"
-$libs = `xmlsec1-config  --libs`.strip
+abort unless find_header("nokogiri.h", *Dir["#{Gem.loaded_specs["nokogiri"].full_gem_path}/ext/*"])
 
 # We reference symbols out of nokogiri but don't link directly against it
-$LDFLAGS << ' -Wl,-undefined,dynamic_lookup'
+append_ldflags(["-Wl", "-undefined,dynamic_lookup"])
 
-create_makefile('nokogiri_ext_xmlsec')
+create_makefile("nokogiri_ext_xmlsec")

data/lib/nokogiri-xmlsec.rb

@@ -1 +1,3 @@
-require 'xmlsec'
+# frozen_string_literal: true
+
+require "xmlsec"

data/lib/xmlsec/version.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 module Xmlsec
-  VERSION = '0.10.3'
+  VERSION = "0.11.0"
 end

data/lib/xmlsec.rb

@@ -1,103 +1,114 @@
+# frozen_string_literal: true
+
 require "xmlsec/version"
-require 'nokogiri'
-require 'nokogiri_ext_xmlsec'
+require "nokogiri"
+require "nokogiri_ext_xmlsec"
 
-class Nokogiri::XML::Document
-  def sign! opts
-    root.sign! opts
-    self
-  end
+module Nokogiri
+  module XML
+    class Document
+      def sign!(opts)
+        root.sign! opts
+        self
+      end
 
-  # Verifies the signature on the current document.
-  #
-  # Returns `true` if the signature is valid, `false` otherwise.
-  # 
-  # Examples:
-  #
-  #     # Try to validate with the given public or private key
-  #     doc.verify_with key: 'rsa-key'
-  #
-  #     # Try to validate with a set of keys. It will try to match
-  #     # based on the contents of the `KeyName` element.
-  #     doc.verify_with({
-  #       'key-name'         => 'x509 certificate',
-  #       'another-key-name' => 'rsa-public-key'
-  #     })
-  #     
-  #     # Try to validate with a trusted certificate
-  #     doc.verify_with(cert: 'certificate')
-  #
-  #     # Try to validate with a set of certificates, any one of which
-  #     # can match
-  #     doc.verify_with(certs: ['cert1', 'cert2'])
-  #
-  #     # Validate the signature, checking the certificate validity as of
-  #     # a certain time (anything that's convertible to an integer, such as a Time)
-  #     doc.verify_with(cert: 'certificate', verification_time: message_creation_timestamp)
-  #
-  #     # Validate the signature, but don't validate that the certificate is valid,
-  #     # or has a full trust chain
-  #     doc.verify_with(cert: 'certificate', verify_certificates: false)
-  #
-  def verify_with opts_or_keys
-    first_signature = root.at_xpath("//ds:Signature", 'ds' => "http://www.w3.org/2000/09/xmldsig#")
-    raise XMLSec::VerificationError("start node not found") unless first_signature
+      # Verifies the signature on the current document.
+      #
+      # Returns `true` if the signature is valid, `false` otherwise.
+      #
+      # Examples:
+      #
+      #     # Try to validate with the given public or private key
+      #     doc.verify_with key: 'rsa-key'
+      #
+      #     # Try to validate with a set of keys. It will try to match
+      #     # based on the contents of the `KeyName` element.
+      #     doc.verify_with({
+      #       'key-name'         => 'x509 certificate',
+      #       'another-key-name' => 'rsa-public-key'
+      #     })
+      #
+      #     # Try to validate with a trusted certificate
+      #     doc.verify_with(cert: 'certificate')
+      #
+      #     # Try to validate with a set of certificates, any one of which
+      #     # can match
+      #     doc.verify_with(certs: ['cert1', 'cert2'])
+      #
+      #     # Validate the signature, checking the certificate validity as of
+      #     # a certain time (anything that's convertible to an integer, such as a Time)
+      #     doc.verify_with(cert: 'certificate', verification_time: message_creation_timestamp)
+      #
+      #     # Validate the signature, but don't validate that the certificate is valid,
+      #     # or has a full trust chain
+      #     doc.verify_with(cert: 'certificate', verify_certificates: false)
+      #
+      def verify_with(opts_or_keys)
+        first_signature = root.at_xpath("//ds:Signature", "ds" => "http://www.w3.org/2000/09/xmldsig#")
+        raise XMLSec::VerificationError("start node not found") unless first_signature
 
-    first_signature.verify_with(opts_or_keys)
-  end
+        first_signature.verify_with(opts_or_keys)
+      end
 
-  # Attempts to verify the signature of this document using only certificates
-  # installed on the system. This is equivalent to calling
-  # `verify_with certificates: []` (that is, an empty array).
-  #
-  def verify_signature
-    verify_with(certs: [])
-  end
+      # Attempts to verify the signature of this document using only certificates
+      # installed on the system. This is equivalent to calling
+      # `verify_with certificates: []` (that is, an empty array).
+      #
+      def verify_signature
+        verify_with(certs: [])
+      end
 
-  # Encrypts the current document, then returns it.
-  #
-  # Examples:
-  # 
-  #     # encrypt with a public key and optional key name
-  #     doc.encrypt! key: 'public-key', name: 'name'
-  #
-  def encrypt!(key:, name: nil, **opts)
-    root.encrypt_with(key: key, name: name, **opts)
-    self
-  end
+      # Encrypts the current document, then returns it.
+      #
+      # Examples:
+      #
+      #     # encrypt with a public key and optional key name
+      #     doc.encrypt! key: 'public-key', name: 'name'
+      #
+      def encrypt!(key:, name: nil, **)
+        root.encrypt_with(key:, name:, **)
+        self
+      end
 
-  # Decrypts the current document, then returns it.
-  #
-  # Examples:
-  #
-  #     # decrypt with a specific private key
-  #     doc.decrypt! key: 'private-key'
-  #     # pass the key as an OpenSSL PKey object
-  #     doc.decrypt! key: OpenSSL::PKey.read('private-key')
-  #
-  def decrypt! opts
-    first_encrypted_node = root.at_xpath("//xenc:EncryptedData", 'xenc' => "http://www.w3.org/2001/04/xmlenc#")
-    raise XMLSec::DecryptionError("start node not found") unless first_encrypted_node
+      # Decrypts the current document, then returns it.
+      #
+      # Examples:
+      #
+      #     # decrypt with a specific private key
+      #     doc.decrypt! key: 'private-key'
+      #     # pass the key as an OpenSSL PKey object
+      #     doc.decrypt! key: OpenSSL::PKey.read('private-key')
+      #
+      def decrypt!(opts)
+        first_encrypted_node = root.at_xpath("//xenc:EncryptedData", "xenc" => "http://www.w3.org/2001/04/xmlenc#")
+        raise XMLSec::DecryptionError("start node not found") unless first_encrypted_node
 
-    first_encrypted_node.decrypt_with opts
-    self
+        first_encrypted_node.decrypt_with opts
+        self
+      end
+    end
   end
 end
 
-class Nokogiri::XML::Node
-  def encrypt_with(key:, name: nil, **opts)
-    raise ArgumentError("public :key is required for encryption") unless key
-    encrypt_with_key(name, key, opts)
-  end
+module Nokogiri
+  module XML
+    class Node
+      def encrypt_with(key:, name: nil, **opts)
+        raise ArgumentError("public :key is required for encryption") unless key
+
+        encrypt_with_key(name, key, opts)
+      end
 
-  def decrypt_with(opts)
-    raise 'inadequate options specified for decryption' unless opts[:key]
+      def decrypt_with(opts)
+        raise "inadequate options specified for decryption" unless opts[:key]
 
-    parent = self.parent
-    previous = self.previous
-    key = opts[:key]
-    key = key.to_pem if key.respond_to?(:to_pem)
-    decrypt_with_key(opts[:name].to_s, key)
-    previous ? previous.next : parent.children.first
+        parent = self.parent
+        previous = self.previous
+        key = opts[:key]
+        key = key.to_pem if key.respond_to?(:to_pem)
+        decrypt_with_key(opts[:name].to_s, key)
+        previous ? previous.next : parent.children.first
+      end
+    end
   end
 end

metadata

@@ -1,142 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: nokogiri-xmlsec-instructure
 version: !ruby/object:Gem::Version
-  version: 0.10.3
+  version: 0.11.0
 platform: ruby
 authors:
 - Albert J. Wong
 - Cody Cutrer
-autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-01-08 00:00:00.000000000 Z
+date: 2025-07-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: nokogiri
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.11.2
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.11.2
-- !ruby/object:Gem::Dependency
-  name: appraisal
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.1'
-  type: :development
+        version: '1.13'
+  type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.1'
-- !ruby/object:Gem::Dependency
-  name: byebug
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rake-compiler
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: guard-rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: guard-rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
+        version: '1.13'
 description: |-
   Adds support to Ruby for encrypting, decrypting,
       signing and validating the signatures of XML documents, according to the
@@ -154,57 +41,16 @@ extensions:
 - ext/nokogiri_ext_xmlsec/extconf.rb
 extra_rdoc_files: []
 files:
-- ".github/workflows/push.yml"
-- ".gitignore"
-- ".rspec"
-- ".tool-versions"
-- Appraisals
-- Gemfile
-- Guardfile
-- LICENSE.txt
-- README.md
-- Rakefile
-- ext/nokogiri_ext_xmlsec/common.h
 - ext/nokogiri_ext_xmlsec/extconf.rb
-- ext/nokogiri_ext_xmlsec/init.c
-- ext/nokogiri_ext_xmlsec/nokogiri_decrypt_with_key.c
-- ext/nokogiri_ext_xmlsec/nokogiri_encrypt_with_key.c
-- ext/nokogiri_ext_xmlsec/nokogiri_helpers_set_attribute_id.c
-- ext/nokogiri_ext_xmlsec/nokogiri_init.c
-- ext/nokogiri_ext_xmlsec/nokogiri_sign.c
-- ext/nokogiri_ext_xmlsec/nokogiri_verify_with.c
-- ext/nokogiri_ext_xmlsec/options.c
-- ext/nokogiri_ext_xmlsec/options.h
-- ext/nokogiri_ext_xmlsec/shutdown.c
-- ext/nokogiri_ext_xmlsec/util.c
-- ext/nokogiri_ext_xmlsec/util.h
-- ext/nokogiri_ext_xmlsec/xmlsecrb.h
-- gemfiles/nokogiri_12.5.gemfile
-- gemfiles/nokogiri_13.10.gemfile
 - lib/nokogiri-xmlsec.rb
+- lib/nokogiri_ext_xmlsec.bundle
 - lib/xmlsec.rb
 - lib/xmlsec/version.rb
-- nokogiri-xmlsec-instructure.gemspec
-- spec/fixtures/cert/server.crt
-- spec/fixtures/cert/server.csr
-- spec/fixtures/cert/server.key.decrypted
-- spec/fixtures/cert/server.key.encrypted
-- spec/fixtures/hate.xml
-- spec/fixtures/pwned.xml
-- spec/fixtures/rsa.pem
-- spec/fixtures/rsa.pub
-- spec/fixtures/sign2-doc.xml
-- spec/fixtures/sign2-result.xml
-- spec/fixtures/sign3-result.xml
-- spec/lib/nokogiri/xml/document/encryption_and_decryption_spec.rb
-- spec/lib/nokogiri/xml/document/signing_and_verifying_spec.rb
-- spec/lib/nokogiri/xml/document/unsafe_xml_spec.rb
-- spec/spec_helper.rb
 homepage: https://github.com/instructure/nokogiri-xmlsec-instructure
 licenses:
 - MIT
-metadata: {}
-post_install_message:
+metadata:
+  rubygems_mfa_required: 'true'
 rdoc_options: []
 require_paths:
 - lib
@@ -212,31 +58,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: '3.2'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.11
-signing_key:
+rubygems_version: 3.6.2
 specification_version: 4
 summary: Wrapper around http://www.aleksey.com/xmlsec to support XML encryption, decryption,
   signing and signature validation in Ruby
-test_files:
-- spec/fixtures/cert/server.crt
-- spec/fixtures/cert/server.csr
-- spec/fixtures/cert/server.key.decrypted
-- spec/fixtures/cert/server.key.encrypted
-- spec/fixtures/hate.xml
-- spec/fixtures/pwned.xml
-- spec/fixtures/rsa.pem
-- spec/fixtures/rsa.pub
-- spec/fixtures/sign2-doc.xml
-- spec/fixtures/sign2-result.xml
-- spec/fixtures/sign3-result.xml
-- spec/lib/nokogiri/xml/document/encryption_and_decryption_spec.rb
-- spec/lib/nokogiri/xml/document/signing_and_verifying_spec.rb
-- spec/lib/nokogiri/xml/document/unsafe_xml_spec.rb
-- spec/spec_helper.rb
+test_files: []

data/.github/workflows/push.yml

@@ -1,40 +0,0 @@
-name: Ruby
-
-on:
-  push:
-    branches: [ master ]
-  pull_request:
-    branches: [ master ]
-
-jobs:
-  test:
-
-    runs-on: ubuntu-latest
-
-    strategy:
-      fail-fast: false
-      matrix:
-        ruby-version: [3.0, 2.7]
-        gemfile: ['gemfiles/nokogiri_13.10.gemfile', 'gemfiles/nokogiri_12.5.gemfile']
-
-    steps:
-      - name: Install libxmlsec
-        run: |
-          sudo apt-get update
-          sudo apt-get install -y libxmlsec1-dev
-      - uses: actions/checkout@v3
-      - name: Set up Ruby
-        uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: ${{ matrix.ruby-version }}
-          bundler-cache: true
-        env:
-          BUNDLE_GEMFILE: ${{ matrix.gemfile }}
-      - name: Install dependencies
-        run: bundle install
-        env:
-          BUNDLE_GEMFILE: ${{ matrix.gemfile }}
-      - name: Run tests
-        run: bundle exec rake
-        env:
-          BUNDLE_GEMFILE: ${{ matrix.gemfile }}

data/.gitignore

@@ -1,23 +0,0 @@
-*.gem
-*.rbc
-.bundle
-.byebug_history
-.config
-.yardoc
-Gemfile.lock
-InstalledFiles
-_yardoc
-coverage
-doc/
-lib/bundler/man
-lib/nokogiri_ext_xmlsec.bundle
-pkg
-rdoc
-spec/reports
-test/tmp
-test/version_tmp
-tmp
-spec/old
-*.so
-*.sw[opn]
-*.gemfile.lock

data/.rspec

@@ -1,2 +0,0 @@
---color
-

data/.tool-versions

@@ -1 +0,0 @@
-ruby 3.0.4

data/Appraisals

@@ -1,9 +0,0 @@
-# frozen_string_literal: true
-
-appraise "nokogiri-13.10" do
-  gem "nokogiri", "1.13.10"
-end
-
-appraise "nokogiri-12.5" do
-  gem "nokogiri", "1.12.5"
-end

data/Gemfile

@@ -1,4 +0,0 @@
-source 'https://rubygems.org'
-
-# Specify your gem's dependencies in xmlsec.gemspec
-gemspec

data/Guardfile

@@ -1,13 +0,0 @@
-# A sample Guardfile
-# More info at https://github.com/guard/guard#readme
-
-guard 'rake', :task => 'default' do
-  watch(/^ext\//)
-end
-
-guard 'rspec' do
-  watch(%r{^spec/.+_spec\.rb$})
-  watch(%r{^lib/(.+)\.rb$})     { |m| "spec/lib/#{m[1]}_spec.rb" }
-  watch('spec/spec_helper.rb')  { "spec" }
-  # watch(/^ext\//)               { "spec" }
-end

data/LICENSE.txt

@@ -1,22 +0,0 @@
-Copyright (c) 2013 TODO: Write your name
-
-MIT License
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
-LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
-OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.