omniauth-swedbank 0.0.6 → 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 0c3ea7ae5231e19bb917c9286e2e868a3a0fea29
+  data.tar.gz: e9bfe91613d52e239f93e75097c2dee22c51cbad
+SHA512:
+  metadata.gz: ccb0883f008cfff47779ca1d6804edba0d9eb93b5de7e97854798b2966dfe3c17b75fb135a2de0ec201a99859a448626bbebdad39306958810a3eea98c3952c4
+  data.tar.gz: 83752772955b7aee9046ac23fd530ef0a6c3512b49c556702bb9a9ffb1c27231b89719f9338db46ed677e103651ea18fa52bc82ac9a015c1c20c4880756709d8

data/.travis.yml

@@ -1,7 +1,6 @@
 language: ruby
 rvm:
-  - "1.9.2"
-  - "1.9.3"
-  - "2.0.0"
+  - 2.2.6
+  - 2.3.3
+  - 2.4.1
 script: bundle exec rspec
-

data/LICENSE.txt

@@ -1,4 +1,4 @@
-Copyright (c) 2013 Jānis Kiršteins 
+Copyright (c) 2017 MAK IT, Jānis Kiršteins
 
 MIT License
 

data/README.md

@@ -1,13 +1,18 @@
-# Omniauth::Swedbank
+# Omniauth Swedbank
 
 Omniauth strategy for using Swedbank as an authentication service provider.
 
-This implementation works in Latvia, and should work in Estonia and Lithuania.
-
 [![Gem Version](https://badge.fury.io/rb/omniauth-swedbank.png)](http://badge.fury.io/rb/omniauth-swedbank)
-[![Build Status](https://travis-ci.org/kirsis/omniauth-swedbank.png?branch=master)](https://travis-ci.org/kirsis/omniauth-swedbank)
+[![Build Status](https://travis-ci.org/mak-it/omniauth-swedbank.svg?branch=master)](https://travis-ci.org/mak-it/omniauth-swedbank)
+
+Supported Ruby versions: 2.2+
 
-Supported Ruby versions: 1.9.3 and 2.0.0
+## Related projects
+
+- [omniauth-citadele](https://github.com/mak-it/omniauth-citadele) - strategy for authenticating with Citadele
+- [omniauth-dnb](https://github.com/mak-it/omniauth-dnb) - strategy for authenticating with DNB
+- [omniauth-nordea](https://github.com/mak-it/omniauth-nordea) - strategy for authenticating with Nordea
+- [omniauth-seb-elink](https://github.com/mak-it/omniauth-seb-elink) - strategy for authenticating with SEB
 
 ## Installation
 
@@ -25,7 +30,44 @@ Or install it yourself as:
 
 ## Usage
 
-TODO: Write usage instructions here
+Here's a quick example, adding the middleware to a Rails app
+in `config/initializers/omniauth.rb`:
+
+```ruby
+Rails.application.config.middleware.use OmniAuth::Builder do
+  provider :swedbank,
+    File.read("path/to/private.key"),
+    File.read("path/to/bank.crt"),
+    ENV['SWEDBANK_SND_ID'],
+    ENV['SWEDBANK_REC_ID']
+end
+```
+
+## Auth Hash
+
+Here's an example Auth Hash available in `request.env['omniauth.auth']`:
+
+```ruby
+{
+  provider: 'swedbank',
+  uid: '374042-80367',
+  info: {
+    full_name: 'ARNIS RAITUMS'
+  },
+  extra: {
+    raw_info: {
+      VK_SERVICE: '3003',
+      VK_VERSION: '008',
+      VK_SND_ID: 'HP',
+      VK_REC_ID: 'MPLMT',
+      VK_NONCE: '20170425114529204413',
+      VK_INFO: 'ISIK:090482-12549;NIMI:DACE ĀBOLA',
+      VK_MAC: 'qrEMRf6YV...',
+      VK_ENCODING: 'UTF-8
+    }
+  }
+}
+```
 
 ## Contributing
 

data/lib/omniauth/strategies/swedbank.rb

@@ -1,53 +1,43 @@
 require 'omniauth'
 require 'base64'
 
-class String
-  def prepend_length
-    # prepend length to string in 0xx format
-
-    [ self.to_s.length.to_s.rjust(3, '0'), self.dup.to_s.force_encoding("ascii")].join
-  end
-end
-
 module OmniAuth
   module Strategies
     class Swedbank
-      # TODO add support for overriding the VK_LANG parameter
-
       include OmniAuth::Strategy
 
-      AUTH_SERVICE_ID =       "4002"
-      AUTH_SERVICE_VERSION =  "008" # This value must not be used as a number, so as to not lose the padding
-                                    # Padding is important when generating the VK_MAC value
+      AUTH_SERVICE = '4002'
+      AUTH_VERSION = '008'
 
-      args [:private_key_file, :public_key_file, :snd_id, :rec_id]
+      args [:private_key, :public_key, :snd_id, :rec_id]
 
-      option :private_key_file, nil
-      option :public_key_file, nil
+      option :private_key, nil
+      option :public_key, nil
       option :snd_id, nil
       option :rec_id, nil
 
-      option :name, "swedbank"
-      option :site, "https://ib.swedbank.lv/banklink"
+      option :name, 'swedbank'
+      option :site, 'https://ib.swedbank.lv/banklink'
 
-      def callback_url
-        full_host + script_name + callback_path
+      def stamp
+        return @stamp if @stamp
+        @stamp = Time.now.strftime('%Y%m%d%H%M%S') + SecureRandom.random_number(999999).to_s.rjust(6, '0')
       end
 
-      def nonce
-        return @nonce if @nonce
-        @nonce = ((full_host.gsub(/[\:\/]/, "X") + SecureRandom.uuid.gsub("-", "")).rjust 50, " ")[-50, 50]
+      def prepend_length(value)
+        # prepend length to string in 0xx format
+        [ value.to_s.length.to_s.rjust(3, '0'), value.dup.to_s.force_encoding('ascii')].join
       end
 
       def signature_input
         [
-          AUTH_SERVICE_ID,              # VK_SERVICE
-          AUTH_SERVICE_VERSION,         # VK_SERVICE
-          options.snd_id,               # VK_SND_ID
-          options.rec_id,               # VK_REC_ID
-          nonce,                        # VK_NONCE
-          callback_url                  # VK_RETURN
-        ].map(&:prepend_length).join
+          AUTH_SERVICE,             # VK_SERVICE
+          AUTH_VERSION,             # VK_VERSION
+          options.snd_id,           # VK_SND_ID
+          options.rec_id,           # VK_REC_ID
+          stamp,                    # VK_NONCE
+          callback_url              # VK_RETURN
+        ].map{|v| prepend_length(v)}.join
       end
 
       def signature(priv_key)
@@ -55,84 +45,84 @@ module OmniAuth
       end
 
       uid do
-        request.params["VK_INFO"].match(/ISIK:(\d{6}\-\d{5})/)[1]
+        request.params['VK_INFO'].match(/ISIK:(\d{6}\-\d{5})/)[1]
       end
 
       info do
         {
-          :full_name => request.params["VK_INFO"].match(/NIMI:(.+)/)[1]
+          full_name: request.params['VK_INFO'].match(/NIMI:(.+)/)[1]
         }
       end
 
+      extra do
+        { raw_info: request.params }
+      end
+
       def callback_phase
         begin
-          pub_key = OpenSSL::X509::Certificate.new(File.read(options.public_key_file || "")).public_key
+          pub_key = OpenSSL::X509::Certificate.new(options.public_key).public_key
         rescue => e
           return fail!(:public_key_load_err, e)
         end
 
-        if request.params["VK_SERVICE"] != "3003"
+        if request.params['VK_SERVICE'] != '3003'
           return fail!(:unsupported_response_service_err)
         end
 
-        if request.params["VK_VERSION"] != "008"
+        if request.params['VK_VERSION'] != '008'
           return fail!(:unsupported_response_version_err)
         end
 
-        if request.params["VK_ENCODING"] != "UTF-8"
+        if request.params['VK_ENCODING'] != 'UTF-8'
           return fail!(:unsupported_response_encoding_err)
         end
 
         sig_str = [
-          request.params["VK_SERVICE"],
-          request.params["VK_VERSION"],
-          request.params["VK_SND_ID"],
-          request.params["VK_REC_ID"],
-          request.params["VK_NONCE"],
-          request.params["VK_INFO"]
-        ].map(&:prepend_length).join
+          request.params['VK_SERVICE'],
+          request.params['VK_VERSION'],
+          request.params['VK_SND_ID'],
+          request.params['VK_REC_ID'],
+          request.params['VK_NONCE'],
+          request.params['VK_INFO']
+        ].map{|v| prepend_length(v)}.join
 
-        raw_signature = Base64.decode64(request.params["VK_MAC"])
+        raw_signature = Base64.decode64(request.params['VK_MAC'])
 
         if !pub_key.verify(OpenSSL::Digest::SHA1.new, raw_signature, sig_str)
           return fail!(:invalid_response_signature_err)
         end
 
         super
-      rescue => e
-        fail!(:unknown_callback_err, e)
       end
 
       def request_phase
         begin
-          priv_key = OpenSSL::PKey::RSA.new(File.read(options.private_key_file || ""))
+          priv_key = OpenSSL::PKey::RSA.new(options.private_key)
         rescue => e
           return fail!(:private_key_load_err, e)
         end
 
-        OmniAuth.config.form_css = nil
-        form = OmniAuth::Form.new(:title => I18n.t("omniauth.swedbank.please_wait"), :url => options.site)
+        form = OmniAuth::Form.new(:title => I18n.t('omniauth.swedbank.please_wait'), :url => options.site)
 
         {
-          "VK_SERVICE" => AUTH_SERVICE_ID,
-          "VK_VERSION" => AUTH_SERVICE_VERSION,
-          "VK_SND_ID" => options.snd_id,
-          "VK_REC_ID" => options.rec_id,
-          "VK_NONCE" => nonce,
-          "VK_RETURN" => callback_url,
-          "VK_LANG" => "LAT",
-          "VK_MAC" => signature(priv_key)
+          'VK_SERVICE' => AUTH_SERVICE,
+          'VK_VERSION' => AUTH_VERSION,
+          'VK_SND_ID' => options.snd_id,
+          'VK_REC_ID' => options.rec_id,
+          'VK_NONCE' => stamp,
+          'VK_RETURN' => callback_url,
+          'VK_MAC' => signature(priv_key),
+          'VK_LANG' => 'LAT',
+          'VK_ENCODING' => 'UTF-8'
         }.each do |name, val|
           form.html "<input type=\"hidden\" name=\"#{name}\" value=\"#{val}\" />"
         end
 
-        form.button I18n.t("omniauth.swedbank.click_here_if_not_redirected")
+        form.button I18n.t('omniauth.swedbank.click_here_if_not_redirected')
 
-        form.instance_variable_set("@html",
-          form.to_html.gsub("</form>", "</form><script type=\"text/javascript\">document.forms[0].submit();</script>"))
+        form.instance_variable_set('@html',
+          form.to_html.gsub('</form>', '</form><script type="text/javascript">document.forms[0].submit();</script>'))
         form.to_response
-      rescue => e
-        fail!(:unknown_request_err, e)
       end
     end
   end

data/lib/omniauth/swedbank/version.rb

@@ -1,5 +1,5 @@
 module Omniauth
   module Swedbank
-    VERSION = "0.0.6"
+    VERSION = '0.1.0'
   end
 end

data/omniauth-swedbank.gemspec

@@ -4,19 +4,21 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require 'omniauth/swedbank/version'
 
 Gem::Specification.new do |spec|
-  spec.name          = "omniauth-swedbank"
+  spec.name          = 'omniauth-swedbank'
   spec.version       = Omniauth::Swedbank::VERSION
-  spec.authors       = ["Jānis Kiršteins", "Kristaps Ērglis"]
-  spec.email         = ["janis@montadigital.com", "kristaps.erglis@gmail.com" ]
+  spec.authors       = ['MAK IT', 'Jānis Kiršteins', 'Kristaps Ērglis']
+  spec.email         = ['admin@makit.lv', 'janis@montadigital.com', 'kristaps.erglis@gmail.com' ]
   spec.description   = %q{OmniAuth strategy for Swedbank Banklink}
   spec.summary       = %q{OmniAuth strategy for Swedbank Banklink}
-  spec.homepage      = ""
-  spec.license       = "MIT"
+  spec.homepage      = 'https://github.com/mak-it/omniauth-swedbank'
+  spec.license       = 'MIT'
 
   spec.files         = `git ls-files`.split($/)
   spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
   spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
-  spec.require_paths = ["lib"]
+  spec.require_paths = ['lib']
+
+  spec.required_ruby_version = '>= 2.2.2'
 
   spec.add_runtime_dependency 'omniauth', '~> 1.0'
   spec.add_runtime_dependency "i18n"
@@ -25,5 +27,4 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'rspec', '~> 2.7'
   spec.add_development_dependency "bundler", "~> 1.3"
   spec.add_development_dependency "rake"
-
 end

data/spec/omniauth/strategies/swedbank_spec.rb

@@ -2,38 +2,36 @@ require 'spec_helper'
 
 describe OmniAuth::Strategies::Swedbank do
 
-  PRIVATE_KEY_FILE = File.join RSpec.configuration.cert_folder, "request.private.pem"
-  PUBLIC_KEY_FILE = File.join RSpec.configuration.cert_folder, "response.public.pem"
+  PRIVATE_KEY = File.read(File.join(RSpec.configuration.cert_folder, 'request.private.pem'))
+  PUBLIC_KEY = File.read(File.join(RSpec.configuration.cert_folder, 'response.public.pem'))
 
   let(:app){ Rack::Builder.new do |b|
-    b.use Rack::Session::Cookie, {:secret => "abc123"}
-    b.use(OmniAuth::Strategies::Swedbank, PRIVATE_KEY_FILE, PUBLIC_KEY_FILE, "MY_SND_ID", "MY_REC_ID")
+    b.use Rack::Session::Cookie, {secret: 'abc123'}
+    b.use(OmniAuth::Strategies::Swedbank, PRIVATE_KEY, PUBLIC_KEY, 'MY_SND_ID', 'MY_REC_ID')
     b.run lambda{|env| [404, {}, ['Not Found']]}
   end.to_app }
 
-  let(:private_key) { OpenSSL::PKey::RSA.new(File.read(PRIVATE_KEY_FILE)) }
-  let(:public_key) { OpenSSL::PKey::RSA.new(File.read(PUBLIC_KEY_FILE)) }
   let(:last_response_nonce) { last_response.body.match(/name="VK_NONCE" value="([^"]*)"/)[1] }
   let(:last_response_mac) { last_response.body.match(/name="VK_MAC" value="([^"]*)"/)[1] }
 
-  context "request phase" do
+  context 'request phase' do
     EXPECTED_VALUES = {
-      "VK_SERVICE" => "4002",
-      "VK_VERSION" => "008",
-      "VK_SND_ID" =>  "MY_SND_ID",
-      "VK_REC_ID" =>  "MY_REC_ID",
-      "VK_RETURN" =>  "http://example.org/auth/swedbank/callback"
+      'VK_SERVICE' => '4002',
+      'VK_VERSION' => '008',
+      'VK_SND_ID' =>  'MY_SND_ID',
+      'VK_REC_ID' =>  'MY_REC_ID',
+      'VK_RETURN' =>  'http://example.org/auth/swedbank/callback'
     }
 
     before(:each){ get '/auth/swedbank' }
 
-    it "displays a single form" do
+    it 'displays a single form' do
       expect(last_response.status).to eq(200)
       expect(last_response.body.scan('<form').size).to eq(1)
     end
 
-    it "has JavaScript code to submit the form after it's created" do
-      expect(last_response.body).to be_include("</form><script type=\"text/javascript\">document.forms[0].submit();</script>")
+    it 'has JavaScript code to submit the form after it is created' do
+      expect(last_response.body).to be_include('</form><script type="text/javascript">document.forms[0].submit();</script>')
     end
 
     EXPECTED_VALUES.each_pair do |k,v|
@@ -43,166 +41,165 @@ describe OmniAuth::Strategies::Swedbank do
       end
     end
 
-    it "has a 50 byte long nonce field value" do
-      expect(last_response_nonce.bytesize).to eq(50)
+    it 'has a 50 byte long nonce field value' do
+      expect(last_response_nonce.bytesize).to eq(20)
     end
 
-    it "has a correct VK_MAC signature" do
+    it 'has a correct VK_MAC signature' do
       sig_str =
-        "0044002" + # VK_SERVICE
-        "003008" +  # VK_VERSION
-        "009MY_SND_ID" +  # VK_SND_ID
-        "009MY_REC_ID" +  # VK_REC_ID
-        "050" + last_response_nonce +  # VK_NONCE
-        "041#{EXPECTED_VALUES["VK_RETURN"]}"  # V_RETURN
-
+        '0044002' + # VK_SERVICE
+        '003008' +  # VK_VERSION
+        '009MY_SND_ID' +  # VK_SND_ID
+        '009MY_REC_ID' +  # VK_REC_ID
+        "020#{last_response_nonce}" +  # VK_NONCE
+        "041#{EXPECTED_VALUES['VK_RETURN']}"  # V_RETURN
+
+      private_key = OpenSSL::PKey::RSA.new(PRIVATE_KEY)
       expected_mac = Base64.encode64(private_key.sign(OpenSSL::Digest::SHA1.new, sig_str))
       expect(last_response_mac).to eq(expected_mac)
     end
 
-    context "with default options" do
-      it "has the default action tag value" do
+    context 'with default options' do
+      it 'has the default action tag value' do
         expect(last_response.body).to be_include("action='https://ib.swedbank.lv/banklink'")
       end
 
-      it "has the default VK_LANG value" do
+      it 'has the default VK_LANG value' do
         expect(last_response.body).to be_include("action='https://ib.swedbank.lv/banklink'")
       end
     end
 
-    context "with custom options" do
+    context 'with custom options' do
       let(:app){ Rack::Builder.new do |b|
-        b.use Rack::Session::Cookie, {:secret => "abc123"}
-        b.use(OmniAuth::Strategies::Swedbank, PRIVATE_KEY_FILE, PUBLIC_KEY_FILE, "MY_SND_ID", "MY_REC_ID",
-          :site => "https://test.lv/banklink")
+        b.use Rack::Session::Cookie, {secret: 'abc123'}
+        b.use(OmniAuth::Strategies::Swedbank, PRIVATE_KEY, PUBLIC_KEY, 'MY_SND_ID', 'MY_REC_ID',
+          site: 'https://test.lv/banklink')
         b.run lambda{|env| [404, {}, ['Not Found']]}
       end.to_app }
 
-      it "has the custom action tag value" do
+      it 'has the custom action tag value' do
         expect(last_response.body).to be_include("action='https://test.lv/banklink'")
       end
     end
 
-    context "with non-existant private key files" do
+    context 'with non-existant private key files' do
       let(:app){ Rack::Builder.new do |b|
-        b.use Rack::Session::Cookie, {:secret => "abc123"}
-        b.use(OmniAuth::Strategies::Swedbank, "missing-private-key-file.pem", PUBLIC_KEY_FILE, "MY_SND_ID", "MY_REC_ID")
+        b.use Rack::Session::Cookie, {secret: 'abc123'}
+        b.use(OmniAuth::Strategies::Swedbank, 'missing-private-key-file.pem', PUBLIC_KEY, 'MY_SND_ID', 'MY_REC_ID')
         b.run lambda{|env| [404, {}, ['Not Found']]}
       end.to_app }
 
-      it "redirects to /auth/failure with appropriate query params" do
+      it 'redirects to /auth/failure with appropriate query params' do
         expect(last_response.status).to eq(302)
-        expect(last_response.headers["Location"]).to eq("/auth/failure?message=private_key_load_err&strategy=swedbank")
+        expect(last_response.headers['Location']).to eq('/auth/failure?message=private_key_load_err&strategy=swedbank')
       end
     end
   end
 
-  context "callback phase" do
+  context 'callback phase' do
     let(:auth_hash){ last_request.env['omniauth.auth'] }
 
-    context "with valid response" do
+    context 'with valid response' do
       before do
-        post :'/auth/swedbank/callback',
-          "VK_SERVICE" =>   '3003',
-          "VK_VERSION" =>   '008',
-          "VK_SND_ID" =>    "HP",
-          "VK_REC_ID" =>    "MY_REC_ID",
-          "VK_NONCE" =>     "pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a",
-          "VK_INFO" =>      'ISIK:123456-12345;NIMI:Example User',
-          "VK_MAC" =>       "cmXyp2My7P9pTgrzqJeg7qH+NPCuyaiGNpQIrcCr6S44w0bH+Ao4WDViqytaPH2vENooVPXDSgOcBqHTg44gJ9FlrhI5StiouHVhjpCcWg+h/ERcyc8w58PjsEmdsd4BIpaGXNyhvcIKdWfNwYA1UCIrmFsPAPWfVeorNxp81E7pvY4p4zsqMF80YZ7/RdOpjrtuXJ4nYJ7d+2fXJKKmUlqArCc786DJdb/z8wVDSNA9BZxnf8EE6s//p9gzqLPAg/T9Xp/2024n2JtC6kwsWF614bn64LEZz5c8owZth6FV+2fjnzHxOiifOe+jc9SRstCLITK6Y0j+6n8auiEZ5g==",
-          "VK_ENCODING" =>  'UTF-8',
-          "VK_LANG" =>      'LAT'
+        post '/auth/swedbank/callback',
+          'VK_SERVICE' =>   '3003',
+          'VK_VERSION' =>   '008',
+          'VK_SND_ID' =>    'HP',
+          'VK_REC_ID' =>    'MY_REC_ID',
+          'VK_NONCE' =>     'pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a',
+          'VK_INFO' =>      'ISIK:123456-12345;NIMI:Example User',
+          'VK_MAC' =>       'cmXyp2My7P9pTgrzqJeg7qH+NPCuyaiGNpQIrcCr6S44w0bH+Ao4WDViqytaPH2vENooVPXDSgOcBqHTg44gJ9FlrhI5StiouHVhjpCcWg+h/ERcyc8w58PjsEmdsd4BIpaGXNyhvcIKdWfNwYA1UCIrmFsPAPWfVeorNxp81E7pvY4p4zsqMF80YZ7/RdOpjrtuXJ4nYJ7d+2fXJKKmUlqArCc786DJdb/z8wVDSNA9BZxnf8EE6s//p9gzqLPAg/T9Xp/2024n2JtC6kwsWF614bn64LEZz5c8owZth6FV+2fjnzHxOiifOe+jc9SRstCLITK6Y0j+6n8auiEZ5g==',
+          'VK_LANG' =>      'LAT',
+          'VK_ENCODING' =>  'UTF-8'
       end
 
-      it "sets the correct uid value in the auth hash" do
-        expect(auth_hash.uid).to eq("123456-12345")
+      it 'sets the correct uid value in the auth hash' do
+        expect(auth_hash.uid).to eq('123456-12345')
       end
 
-      it "sets the correct info.full_name value in the auth hash" do
-        expect(auth_hash.info.full_name).to eq("Example User")
+      it 'sets the correct info.full_name value in the auth hash' do
+        expect(auth_hash.info.full_name).to eq('Example User')
       end
     end
 
-    context "with non-existant public key file" do
+    context 'with non-existant public key file' do
       let(:app){ Rack::Builder.new do |b|
-        b.use Rack::Session::Cookie, {:secret => "abc123"}
-        b.use(OmniAuth::Strategies::Swedbank, PRIVATE_KEY_FILE, "missing-public-key-file.pem", "MY_SND_ID", "MY_REC_ID")
+        b.use Rack::Session::Cookie, {secret: 'abc123'}
+        b.use(OmniAuth::Strategies::Swedbank, PRIVATE_KEY, 'missing-public-key-file.pem', 'MY_SND_ID', 'MY_REC_ID')
         b.run lambda{|env| [404, {}, ['Not Found']]}
       end.to_app }
 
-      it "redirects to /auth/failure with appropriate query params" do
-        post :'/auth/swedbank/callback' # Params are not important, because we're testing public key loading
+      it 'redirects to /auth/failure with appropriate query params' do
+        post '/auth/swedbank/callback' # Params are not important, because we're testing public key loading
         expect(last_response.status).to eq(302)
-        expect(last_response.headers["Location"]).to eq("/auth/failure?message=public_key_load_err&strategy=swedbank")
+        expect(last_response.headers['Location']).to eq('/auth/failure?message=public_key_load_err&strategy=swedbank')
       end
     end
 
-    context "with invalid response" do
-
-      it "detects invalid signature" do
-        post :'/auth/swedbank/callback',
-          "VK_SERVICE" =>   '3003',
-          "VK_VERSION" =>   '008',
-          "VK_SND_ID" =>    "HP",
-          "VK_REC_ID" =>    "MY_REC_ID",
-          "VK_NONCE" =>     'pXXXlocalhostX3000df346e9e453d43cd9c3c4076030d9e54',
-          "VK_INFO" =>      'ISIK:123456-12345;NIMI:Example User',
-          "VK_MAC" =>       "invalid signature",
-          "VK_ENCODING" =>  'UTF-8',
-          "VK_LANG" =>      'LAT'
+    context 'with invalid response' do
+      it 'detects invalid signature' do
+        post '/auth/swedbank/callback',
+          'VK_SERVICE' =>   '3003',
+          'VK_VERSION' =>   '008',
+          'VK_SND_ID' =>    'HP',
+          'VK_REC_ID' =>    'MY_REC_ID',
+          'VK_NONCE' =>     'pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a',
+          'VK_INFO' =>      'ISIK:123456-12345;NIMI:Example User',
+          'VK_MAC' =>       'invalid signature',
+          'VK_LANG' =>      'LAT',
+          'VK_ENCODING' =>  'UTF-8'
 
         expect(last_response.status).to eq(302)
-        expect(last_response.headers["Location"]).to eq("/auth/failure?message=invalid_response_signature_err&strategy=swedbank")
+        expect(last_response.headers['Location']).to eq('/auth/failure?message=invalid_response_signature_err&strategy=swedbank')
       end
 
-      it "detects unsupported VK_SERVICE values" do
-        post :'/auth/swedbank/callback',
-          "VK_SERVICE" =>   '3004',
-          "VK_VERSION" =>   '008',
-          "VK_SND_ID" =>    "HP",
-          "VK_REC_ID" =>    "MY_REC_ID",
-          "VK_NONCE" =>     'pXXXlocalhostX3000df2afdbd66ee4c3a998b72cfd3d7d131',
-          "VK_INFO" =>      'ISIK:123456-12345;NIMI:Example User',
-          "VK_MAC" =>       "tzGu5AxwaEMwAjkY8zh796NQ45QSEshuFiT0VnOdDN3gZPYlAcmm5jPs+j17U1rCKvz6tdKn9I8u+OUcV95+1Sa34dZ/09KrUgwDrOej/djJZ2lg5MgGLAftDsRomcCCuBppQvjdzhCvNeA2OAWPbl7Enn6HVjvb3esJY6D80bYIPm48DHDhhHbdcSwHubFeizyw9syviFsN3xVkhr5YS7W1/owXh/jeHSf8cqLVSzRyShU/JnJfevNsXDpSHbphA5Q4n5q5y0EcuA6/wW2qc2o5nKQjDDhZgxkWYKz6YpVj8zC2x/LXUkmJ+r1K0Slw2lhwEcP2tgIdThkAaT8MYQ==",
-          "VK_ENCODING" =>  'UTF-8',
-          "VK_LANG" =>      'LAT'
+      it 'detects unsupported VK_SERVICE values' do
+        post '/auth/swedbank/callback',
+          'VK_SERVICE' =>   '3004',
+          'VK_VERSION' =>   '008',
+          'VK_SND_ID' =>    'HP',
+          'VK_REC_ID' =>    'MY_REC_ID',
+          'VK_NONCE' =>     'pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a',
+          'VK_INFO' =>      'ISIK:123456-12345;NIMI:Example User',
+          'VK_MAC' =>       'cmXyp2My7P9pTgrzqJeg7qH+NPCuyaiGNpQIrcCr6S44w0bH+Ao4WDViqytaPH2vENooVPXDSgOcBqHTg44gJ9FlrhI5StiouHVhjpCcWg+h/ERcyc8w58PjsEmdsd4BIpaGXNyhvcIKdWfNwYA1UCIrmFsPAPWfVeorNxp81E7pvY4p4zsqMF80YZ7/RdOpjrtuXJ4nYJ7d+2fXJKKmUlqArCc786DJdb/z8wVDSNA9BZxnf8EE6s//p9gzqLPAg/T9Xp/2024n2JtC6kwsWF614bn64LEZz5c8owZth6FV+2fjnzHxOiifOe+jc9SRstCLITK6Y0j+6n8auiEZ5g==',
+          'VK_LANG' =>      'LAT',
+          'VK_ENCODING' =>  'UTF-8'
 
         expect(last_response.status).to eq(302)
-        expect(last_response.headers["Location"]).to eq("/auth/failure?message=unsupported_response_service_err&strategy=swedbank")
+        expect(last_response.headers['Location']).to eq('/auth/failure?message=unsupported_response_service_err&strategy=swedbank')
       end
 
-      it "detects unsupported VK_VERSION values" do
-        post :'/auth/swedbank/callback',
-          "VK_SERVICE" =>   '3003',
-          "VK_VERSION" =>   '009',
-          "VK_SND_ID" =>    "HP",
-          "VK_REC_ID" =>    "MY_REC_ID",
-          "VK_NONCE" =>     'pXXXlocalhostX300023f78258d685424584f4e859b5d480f5',
-          "VK_INFO" =>      'ISIK:123456-12345;NIMI:Example User',
-          "VK_MAC" =>       "0KACnfCZZW2pQnFGttOXMrQRnmYQj45SwqIa5SbKhybJlP1GaXaoa5VYa+xGAnizx+YKbYQsXchXbeNIlQNrQ8/gedByzJtNFI4s4VIaU0tp7P83BjbzYfSMwvIImZvlFyVPgey8Va06fPGi+jdoUp7Dr8vwf6eAzxQhyVjEEYVR+axkAJP9+driMqTKQaxMlctWnivxf8stjI1ElmcdurndLbVnmHLTw6AichmzqUfvfXE3wh4XCVZtD+7VBPvbn4eKXif61cNfkOO/+nNap1buW8RLQirL7Eis//MmWoGSW8H5605DAAK9Ui7CNoB279Ww05pY4wsP7KZdiJ4WCA==",
-          "VK_ENCODING" =>  'UTF-8',
-          "VK_LANG" =>      'LAT'
+      it 'detects unsupported VK_VERSION values' do
+        post '/auth/swedbank/callback',
+          'VK_SERVICE' =>   '3003',
+          'VK_VERSION' =>   '009',
+          'VK_SND_ID' =>    'HP',
+          'VK_REC_ID' =>    'MY_REC_ID',
+          'VK_NONCE' =>     'pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a',
+          'VK_INFO' =>      'ISIK:123456-12345;NIMI:Example User',
+          'VK_MAC' =>       'cmXyp2My7P9pTgrzqJeg7qH+NPCuyaiGNpQIrcCr6S44w0bH+Ao4WDViqytaPH2vENooVPXDSgOcBqHTg44gJ9FlrhI5StiouHVhjpCcWg+h/ERcyc8w58PjsEmdsd4BIpaGXNyhvcIKdWfNwYA1UCIrmFsPAPWfVeorNxp81E7pvY4p4zsqMF80YZ7/RdOpjrtuXJ4nYJ7d+2fXJKKmUlqArCc786DJdb/z8wVDSNA9BZxnf8EE6s//p9gzqLPAg/T9Xp/2024n2JtC6kwsWF614bn64LEZz5c8owZth6FV+2fjnzHxOiifOe+jc9SRstCLITK6Y0j+6n8auiEZ5g==',
+          'VK_LANG' =>      'LAT',
+          'VK_ENCODING' =>  'UTF-8'
 
         expect(last_response.status).to eq(302)
-        expect(last_response.headers["Location"]).to eq("/auth/failure?message=unsupported_response_version_err&strategy=swedbank")
+        expect(last_response.headers['Location']).to eq('/auth/failure?message=unsupported_response_version_err&strategy=swedbank')
       end
 
-      it "detects unsupported VK_ENCODING values" do
-        post :'/auth/swedbank/callback',
-          "VK_SERVICE" =>   '3003',
-          "VK_VERSION" =>   '008',
-          "VK_SND_ID" =>    "HP",
-          "VK_REC_ID" =>    "MY_REC_ID",
-          "VK_NONCE" =>     "pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a",
-          "VK_INFO" =>      'ISIK:123456-12345;NIMI:Example User',
-          "VK_MAC" =>       "cmXyp2My7P9pTgrzqJeg7qH+NPCuyaiGNpQIrcCr6S44w0bH+Ao4WDViqytaPH2vENooVPXDSgOcBqHTg44gJ9FlrhI5StiouHVhjpCcWg+h/ERcyc8w58PjsEmdsd4BIpaGXNyhvcIKdWfNwYA1UCIrmFsPAPWfVeorNxp81E7pvY4p4zsqMF80YZ7/RdOpjrtuXJ4nYJ7d+2fXJKKmUlqArCc786DJdb/z8wVDSNA9BZxnf8EE6s//p9gzqLPAg/T9Xp/2024n2JtC6kwsWF614bn64LEZz5c8owZth6FV+2fjnzHxOiifOe+jc9SRstCLITK6Y0j+6n8auiEZ5g==",
-          "VK_ENCODING" =>  'ASCII',
-          "VK_LANG" =>      'LAT'
+      it 'detects unsupported VK_ENCODING values' do
+        post '/auth/swedbank/callback',
+          'VK_SERVICE' =>   '3003',
+          'VK_VERSION' =>   '008',
+          'VK_SND_ID' =>    'HP',
+          'VK_REC_ID' =>    'MY_REC_ID',
+          'VK_NONCE' =>     'pXXXlocalhostX3000b41292810c0345a7b3770b1c807bed7a',
+          'VK_INFO' =>      'ISIK:123456-12345;NIMI:Example User',
+          'VK_MAC' =>       'cmXyp2My7P9pTgrzqJeg7qH+NPCuyaiGNpQIrcCr6S44w0bH+Ao4WDViqytaPH2vENooVPXDSgOcBqHTg44gJ9FlrhI5StiouHVhjpCcWg+h/ERcyc8w58PjsEmdsd4BIpaGXNyhvcIKdWfNwYA1UCIrmFsPAPWfVeorNxp81E7pvY4p4zsqMF80YZ7/RdOpjrtuXJ4nYJ7d+2fXJKKmUlqArCc786DJdb/z8wVDSNA9BZxnf8EE6s//p9gzqLPAg/T9Xp/2024n2JtC6kwsWF614bn64LEZz5c8owZth6FV+2fjnzHxOiifOe+jc9SRstCLITK6Y0j+6n8auiEZ5g==',
+          'VK_LANG' =>      'LAT',
+          'VK_ENCODING' =>  'ASCII'
 
         expect(last_response.status).to eq(302)
-        expect(last_response.headers["Location"]).to eq("/auth/failure?message=unsupported_response_encoding_err&strategy=swedbank")
+        expect(last_response.headers['Location']).to eq('/auth/failure?message=unsupported_response_encoding_err&strategy=swedbank')
       end
-
     end
   end
-end
+end

data/spec/spec_helper.rb

@@ -7,7 +7,7 @@ require 'omniauth-swedbank'
 
 RSpec.configure do |config|
   config.add_setting('cert_folder')
-  config.cert_folder = File.expand_path('../../certs', __FILE__)
+  config.cert_folder = File.expand_path('../certs', __FILE__)
 
   config.include Rack::Test::Methods
   config.extend  OmniAuth::Test::StrategyMacros, :type => :strategy
@@ -16,4 +16,4 @@ RSpec.configure do |config|
   end
 end
 
-I18n.enforce_available_locales = false
+I18n.enforce_available_locales = false

metadata

@@ -1,129 +1,116 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-swedbank
 version: !ruby/object:Gem::Version
-  version: 0.0.6
-  prerelease: 
+  version: 0.1.0
 platform: ruby
 authors:
+- MAK IT
 - Jānis Kiršteins
 - Kristaps Ērglis
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-02-04 00:00:00.000000000 Z
+date: 2019-02-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: omniauth
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '1.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '1.0'
 - !ruby/object:Gem::Dependency
   name: i18n
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rack-test
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '2.7'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '2.7'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '1.3'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '1.3'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 description: OmniAuth strategy for Swedbank Banklink
 email:
+- admin@makit.lv
 - janis@montadigital.com
 - kristaps.erglis@gmail.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- .gitignore
-- .travis.yml
+- ".gitignore"
+- ".travis.yml"
 - Gemfile
 - LICENSE.txt
 - README.md
 - Rakefile
-- certs/request.private.pem
-- certs/response.public.pem
 - lib/omniauth-swedbank.rb
 - lib/omniauth/locales/omniauth.en.yml
 - lib/omniauth/locales/omniauth.lv.yml
@@ -131,39 +118,36 @@ files:
 - lib/omniauth/swedbank.rb
 - lib/omniauth/swedbank/version.rb
 - omniauth-swedbank.gemspec
+- spec/certs/request.private.pem
+- spec/certs/response.public.pem
 - spec/omniauth/strategies/swedbank_spec.rb
 - spec/spec_helper.rb
-homepage: ''
+homepage: https://github.com/mak-it/omniauth-swedbank
 licenses:
 - MIT
+metadata: {}
 post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
-      segments:
-      - 0
-      hash: -3620822024821045063
+      version: 2.2.2
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
-      segments:
-      - 0
-      hash: -3620822024821045063
 requirements: []
 rubyforge_project: 
-rubygems_version: 1.8.25
+rubygems_version: 2.4.8
 signing_key: 
-specification_version: 3
+specification_version: 4
 summary: OmniAuth strategy for Swedbank Banklink
 test_files:
+- spec/certs/request.private.pem
+- spec/certs/response.public.pem
 - spec/omniauth/strategies/swedbank_spec.rb
 - spec/spec_helper.rb