open-sesame 0.1.0

data/.rvmrc

@@ -0,0 +1,52 @@
+#!/usr/bin/env bash
+
+# This is an RVM Project .rvmrc file, used to automatically load the ruby
+# development environment upon cd'ing into the directory
+
+# First we specify our desired <ruby>[@<gemset>], the @gemset name is optional,
+# Only full ruby name is supported here, for short names use:
+#     echo "rvm use 1.9.3" > .rvmrc
+environment_id="ruby-1.9.3-p194@open-sesame"
+
+# Uncomment the following lines if you want to verify rvm version per project
+# rvmrc_rvm_version="1.16.6 (stable)" # 1.10.1 seams as a safe start
+# eval "$(echo ${rvm_version}.${rvmrc_rvm_version} | awk -F. '{print "[[ "$1*65536+$2*256+$3" -ge "$4*65536+$5*256+$6" ]]"}' )" || {
+#   echo "This .rvmrc file requires at least RVM ${rvmrc_rvm_version}, aborting loading."
+#   return 1
+# }
+
+# First we attempt to load the desired environment directly from the environment
+# file. This is very fast and efficient compared to running through the entire
+# CLI and selector. If you want feedback on which environment was used then
+# insert the word 'use' after --create as this triggers verbose mode.
+if [[ -d "${rvm_path:-$HOME/.rvm}/environments"
+  && -s "${rvm_path:-$HOME/.rvm}/environments/$environment_id" ]]
+then
+  \. "${rvm_path:-$HOME/.rvm}/environments/$environment_id"
+  [[ -s "${rvm_path:-$HOME/.rvm}/hooks/after_use" ]] &&
+    \. "${rvm_path:-$HOME/.rvm}/hooks/after_use" || true
+  if [[ $- == *i* ]] # check for interactive shells
+  then echo "Using: $(tput setaf 2)$GEM_HOME$(tput sgr0)" # show the user the ruby and gemset they are using in green
+  else echo "Using: $GEM_HOME" # don't use colors in non-interactive shells
+  fi
+else
+  # If the environment file has not yet been created, use the RVM CLI to select.
+  rvm --create use  "$environment_id" || {
+    echo "Failed to create RVM environment '${environment_id}'."
+    return 1
+  }
+fi
+
+# If you use bundler, this might be useful to you:
+# if [[ -s Gemfile ]] && {
+#   ! builtin command -v bundle >/dev/null ||
+#   builtin command -v bundle | GREP_OPTIONS= \grep $rvm_path/bin/bundle >/dev/null
+# }
+# then
+#   printf "%b" "The rubygem 'bundler' is not installed. Installing it now.\n"
+#   gem install bundler
+# fi
+# if [[ -s Gemfile ]] && builtin command -v bundle >/dev/null
+# then
+#   bundle install | GREP_OPTIONS= \grep -vE '^Using|Your bundle is complete'
+# fi

data/Gemfile

@@ -0,0 +1,11 @@
+source :rubygems
+
+group(:test, :development) do
+  gem "rspec", "~> 2.11.0"
+  gem "jeweler", "~> 1.8.4"
+  gem "simplecov", "~> 0.6.4"
+  gem "yard", "~> 0.8.2.1"
+  gem "redcarpet", "~> 2.1.1"
+  gem "delorean", "~> 2.0.0"
+  gem "debugger"
+end

data/Gemfile.lock

@@ -0,0 +1,52 @@
+GEM
+  remote: http://rubygems.org/
+  specs:
+    chronic (0.8.0)
+    columnize (0.3.6)
+    debugger (1.2.0)
+      columnize (>= 0.3.1)
+      debugger-linecache (~> 1.1.1)
+      debugger-ruby_core_source (~> 1.1.3)
+    debugger-linecache (1.1.2)
+      debugger-ruby_core_source (>= 1.1.1)
+    debugger-ruby_core_source (1.1.3)
+    delorean (2.0.0)
+      chronic
+    diff-lcs (1.1.3)
+    git (1.2.5)
+    jeweler (1.8.4)
+      bundler (~> 1.0)
+      git (>= 1.2.5)
+      rake
+      rdoc
+    json (1.7.5)
+    multi_json (1.3.6)
+    rake (0.9.2.2)
+    rdoc (3.12)
+      json (~> 1.4)
+    redcarpet (2.1.1)
+    rspec (2.11.0)
+      rspec-core (~> 2.11.0)
+      rspec-expectations (~> 2.11.0)
+      rspec-mocks (~> 2.11.0)
+    rspec-core (2.11.1)
+    rspec-expectations (2.11.3)
+      diff-lcs (~> 1.1.3)
+    rspec-mocks (2.11.3)
+    simplecov (0.6.4)
+      multi_json (~> 1.0)
+      simplecov-html (~> 0.5.3)
+    simplecov-html (0.5.3)
+    yard (0.8.2.1)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  debugger
+  delorean (~> 2.0.0)
+  jeweler (~> 1.8.4)
+  redcarpet (~> 2.1.1)
+  rspec (~> 2.11.0)
+  simplecov (~> 0.6.4)
+  yard (~> 0.8.2.1)

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2009 Ryan Porter
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,79 @@
+# OpenSesame
+
+A simple way to pass an authenticated user from one Ruby web app to another.  The two web apps don't need to share a database or be on the same server.  Does not depend on Rails, and works just as well with Sinatra or any other Ruby system.
+
+# Mechanism
+
+Web Site A has an authenticated user that it wants to send to a protected feature on Web Site B.  It generates an authorization token that consists of a cryptographic hash of a timestamp plus a secret, plus the timestamp in plaintext.
+
+Example:
+
+    timestamp: 2009-06-25T10:34:29-04:00
+    secret: "OPEN SESAME"
+    token: 20090625T1034-93a9d935fc64285645870a59db0d287b58f7caea
+
+Web Site B then checks that the timestamp is not more than an hour old, and it checks to verify that the timestamp plus the shared secret produces the correct hash.  Web Site B should deny access with a 401 response if the authentication token does not verify.
+
+# Installation
+
+    cd your_app
+    script/plugin install git://github.com/endymion/open-sesame.git
+
+# Usage
+
+The default secret is "OPEN SESAME".  You should change that because the default secret is public knowledge.  Add the secret to your config/environment.rb:
+
+    OPEN_SESAME_SECRET = "Don't tell anybody, this is a secret!"
+
+Or, if you want to keep that secret out of your source code then you can use an environment variable, like ```ENV['OPEN_SESAME_SECRET']```.  You can configure that environment variable on Heroku, for example, by giving this command to the terminal:
+
+    heroku config:add OPEN_SESAME_SECRET="Don't tell anybody, this is a secret!"
+
+For example, with Rails, you could do this in a controller in the first web app:
+
+    token = OpenSesame::Token.generate(OPEN_SESAME_SECRET)
+    redirect_to "http://second-app.net?token=#{token}"
+
+In the second Rails app, you can verify the presence and validity of the token with:
+
+    before_filter :check_token
+    def check_token
+      return if session[:open_sesame_verified]
+      if params[:token].blank? || !OpenSesame::Token.verify(params[:token], OPEN_SESAME_SECRET)
+        render :text => 'access denied', :status => 401
+      end
+      session[:open_sesame_verified] = true
+    end
+
+# Signing messages
+
+You can also pass signed parameters.  Let's say you want to identify each user and you don't want them to mess with the ID that you pass.
+
+    message: 123456789
+    secret: "OPEN SESAME"
+    token: 123456789-e349b9416e2b9f6954e80f03a5bb63d3f7401b70
+
+From the first web app:
+
+    token = OpenSesame::Token.generate(OPEN_SESAME_SECRET)
+    username = OpenSesame::Message.generate('username', OPEN_SESAME_SECRET)
+    redirect_to "http://second-app.net?token=#{token}&username=#{username}"
+
+In the second app, you can verify both the token and any parameters:
+
+    before_filter :check_token
+    def check_token
+      return if session[:open_sesame_verified]
+      if params[:token].blank? || !OpenSesame::Token.verify(params[:token], OPEN_SESAME_SECRET)
+        render :text => 'access denied', :status => 401
+      end
+      params.keys.each do |param|
+        if OpenSesame::Mesage.verify(params[param])
+          session[param] = OPenSesame::Message.message(params[param], OPEN_SESAME_SECRET)
+        end
+      end
+      session[:open_sesame_verified] = true
+    end
+
+
+Copyright (c) 2009 Ryan Porter, released under the MIT license

data/Rakefile

@@ -0,0 +1,32 @@
+require 'rubygems'
+require 'bundler'
+begin
+  Bundler.setup(:default, :development)
+rescue Bundler::BundlerError => e
+  $stderr.puts e.message
+  $stderr.puts "Run `bundle install` to install missing gems"
+  exit e.status_code
+end
+require 'rake'
+
+require 'jeweler'
+Jeweler::Tasks.new do |gem|
+  # gem is a Gem::Specification... see http://docs.rubygems.org/read/chapter/20 for more options
+  gem.name = "open-sesame"
+  gem.homepage = "http://www.ryanalynporter.com/2009/06/25/authorizing-users-between-web-sites-with-open-sesame/"
+  gem.license = "MIT"
+  gem.summary = %Q{Send authorized traffic from one web site to another with a cryptographic authorization token.}
+  gem.description = %Q{Use a time-sensitive cryptographic token based on a shared secret phrase to generate an authorization token for passing traffic from one web site to another.}
+  gem.authors = ["Ryan Alyn Porter"]
+  # dependencies defined in Gemfile
+end
+Jeweler::RubygemsDotOrgTasks.new
+
+require 'rspec/core/rake_task'
+desc "Run specs"
+RSpec::Core::RakeTask.new
+
+require 'yard'
+YARD::Rake::YardocTask.new do |t|
+  t.files   = ['lib/*.rb']
+end

data/VERSION

@@ -0,0 +1 @@
+0.1.0

data/init.rb

@@ -0,0 +1 @@
+# Include hook code here

data/install.rb

@@ -0,0 +1 @@
+# Install hook code here

data/lib/open-sesame.rb

@@ -0,0 +1,77 @@
+require 'date'
+require 'digest/sha1'
+
+module OpenSesame
+
+  # Used for generating time-sensitive, cryptographically secure authorization tokens.
+  class Token
+    # For really lazy people.  You really should set your own secret phrase.
+    @@default_secret = "OPEN SESAME"
+
+    # Generate a token, which will automatically expire after one hour.
+    #
+    # @param [String] secret The shared secret, which should only be known by the
+    #   sender and the receiver.
+    # @param [DateTime] timestamp Expire the token automatically one hour from this time.
+    #   Defaults to now.
+    # @return [String] The token.
+    def self.generate(secret = @@default_secret, timestamp = Time.now.utc.to_datetime)
+      timestamp_string = timestamp.strftime('%Y%m%dT%H%M')
+      hash = (Digest::SHA1.new << secret + timestamp_string).to_s
+      timestamp_string + '-' + hash
+    end
+
+    # Verify a token.
+    #
+    # @param [String] token The token.
+    # @param [String] secret The shared secret.
+    def self.verify(token, secret = @@default_secret)
+      string = token.split /-/
+      timestamp = DateTime.strptime string.first, '%Y%m%dT%H%M'
+      one_hour_ago = (Time.now.utc - 3600).to_datetime
+      (timestamp >= one_hour_ago) && token.eql?(generate(secret, timestamp))
+    end
+
+  end
+
+  # Used for passing messages that cannot be altered.  This is not for hiding a message
+  # from observers.  The message is cryptographically signed but it is not encrypted.
+  class Message
+    @@default_secret = "OPEN SESAME"
+
+    # Generate a message string that can be verified by another computer that knows
+    # the shared secret.
+    #
+    # @param [String] message The message.
+    # @param [String] secret The shared secret phrase.
+    def self.generate(message, secret =  @@default_secret)
+      hash = (Digest::SHA1.new << secret + message).to_s
+      message + '-' + hash
+    end
+
+    # Verify that the message has not been altered.
+    #
+    # @param [String] message The message to verify.
+    # @param [String] secret The shared secret phrase.
+    def self.verify(message, secret = @@default_secret)
+      string = message.split /-/
+      message.eql? generate(string.first, secret)
+    end
+
+    # Verify a message that was generated with OpenSesame and return just the message
+    # part.  Returns nil if the message does not verify.
+    #
+    # @param [String] message The message that was generated by OpenSesame, which includes
+    #   a cryptographic hash.
+    # @param [String] secret The secret to use for verifying the message.
+    def self.message(message, secret = @@default_secret)
+      if self.verify(message, secret)
+        (message.split /-/).first
+      else
+        nil
+      end
+    end
+
+  end
+
+end

data/open-sesame.gemspec

@@ -0,0 +1,69 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = "open-sesame"
+  s.version = "0.1.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Ryan Alyn Porter"]
+  s.date = "2012-10-13"
+  s.description = "Use a time-sensitive cryptographic token based on a shared secret phrase to generate an authorization token for passing traffic from one web site to another."
+  s.extra_rdoc_files = [
+    "README.md"
+  ]
+  s.files = [
+    ".rvmrc",
+    "Gemfile",
+    "Gemfile.lock",
+    "MIT-LICENSE",
+    "README.md",
+    "Rakefile",
+    "VERSION",
+    "init.rb",
+    "install.rb",
+    "lib/open-sesame.rb",
+    "open-sesame.gemspec",
+    "spec/open-sesame_spec.rb",
+    "spec/spec_helper.rb",
+    "uninstall.rb"
+  ]
+  s.homepage = "http://www.ryanalynporter.com/2009/06/25/authorizing-users-between-web-sites-with-open-sesame/"
+  s.licenses = ["MIT"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = "1.8.24"
+  s.summary = "Send authorized traffic from one web site to another with a cryptographic authorization token."
+
+  if s.respond_to? :specification_version then
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_development_dependency(%q<rspec>, ["~> 2.11.0"])
+      s.add_development_dependency(%q<jeweler>, ["~> 1.8.4"])
+      s.add_development_dependency(%q<simplecov>, ["~> 0.6.4"])
+      s.add_development_dependency(%q<yard>, ["~> 0.8.2.1"])
+      s.add_development_dependency(%q<redcarpet>, ["~> 2.1.1"])
+      s.add_development_dependency(%q<delorean>, ["~> 2.0.0"])
+      s.add_development_dependency(%q<debugger>, [">= 0"])
+    else
+      s.add_dependency(%q<rspec>, ["~> 2.11.0"])
+      s.add_dependency(%q<jeweler>, ["~> 1.8.4"])
+      s.add_dependency(%q<simplecov>, ["~> 0.6.4"])
+      s.add_dependency(%q<yard>, ["~> 0.8.2.1"])
+      s.add_dependency(%q<redcarpet>, ["~> 2.1.1"])
+      s.add_dependency(%q<delorean>, ["~> 2.0.0"])
+      s.add_dependency(%q<debugger>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<rspec>, ["~> 2.11.0"])
+    s.add_dependency(%q<jeweler>, ["~> 1.8.4"])
+    s.add_dependency(%q<simplecov>, ["~> 0.6.4"])
+    s.add_dependency(%q<yard>, ["~> 0.8.2.1"])
+    s.add_dependency(%q<redcarpet>, ["~> 2.1.1"])
+    s.add_dependency(%q<delorean>, ["~> 2.0.0"])
+    s.add_dependency(%q<debugger>, [">= 0"])
+  end
+end
+

data/spec/open-sesame_spec.rb

@@ -0,0 +1,98 @@
+require 'spec_helper'
+require 'open-sesame'
+
+describe OpenSesame do
+
+  before(:all) do
+    @secret = "Don't tell anybody, this is a secret."
+  end
+
+  describe 'secure token' do
+
+    it 'can be generated.' do
+      token = OpenSesame::Token.generate(@secret)
+      token.should match /\d{8}T\d{4}-\w{40}/
+
+      token2 = OpenSesame::Token.generate # Default 'secret'.
+      token2.should match /\d{8}T\d{4}-\w{40}/
+
+      token.should_not == token2
+    end
+
+    it 'can be verified.' do
+      token = OpenSesame::Token.generate(@secret)
+      OpenSesame::Token.verify(token, @secret).should be_true
+
+      token2 = OpenSesame::Token.generate # Default 'secret'.
+      OpenSesame::Token.verify(token2).should be_true
+    end
+
+    it 'expires after one hour' do
+      token = OpenSesame::Token.generate @secret
+      Delorean.time_travel_to "59 minutes from now"
+      OpenSesame::Token.verify(token, @secret).should be_true
+      Delorean.time_travel_to "61 minutes from now"
+      OpenSesame::Token.verify(token, @secret).should_not be_true
+    end
+
+    it 'cannot be verified if the time stamp is modified.' do
+      token = OpenSesame::Token.generate @secret
+      token.gsub!(/^(\d{8})/) {|match| match.to_i + 100 }
+      OpenSesame::Token.verify(token, @secret).should_not be_true
+    end
+
+    it 'cannot be verified if the hash is modified.' do
+      token = OpenSesame::Token.generate @secret
+      token[token.length - 1] = 'z'
+      OpenSesame::Token.verify(token, @secret).should_not be_true
+    end
+
+  end
+
+  describe 'secure message' do
+
+    it 'can be generated.' do
+      message = OpenSesame::Message.generate 'WELL HELLO THERE', @secret
+      message.should match /WELL HELLO THERE-\w{40}/
+
+      message2 = OpenSesame::Message.generate 'WELL HELLO THERE' # Default 'secret'.
+      message2.should match /WELL HELLO THERE-\w{40}/
+
+      message.should_not == message2
+    end
+
+    it 'can be verified.' do
+      message = OpenSesame::Message.generate 'WELL HELLO THERE', @secret
+      OpenSesame::Message.verify(message, @secret).should be_true
+
+      message2 = OpenSesame::Message.generate 'WELL HELLO THERE' # Default 'secret'.
+      OpenSesame::Message.verify(message2).should be_true
+    end
+
+    it 'cannot be verified if the message is modified' do
+      message = OpenSesame::Message.generate 'WELL HELLO THERE', @secret
+      message.gsub!(/HELLO/, 'GOODBYE')
+      OpenSesame::Message.verify(message, @secret).should_not be_true
+    end
+
+    it 'cannot be verified if the hash is modified' do
+      message = OpenSesame::Message.generate 'WELL HELLO THERE', @secret
+      message[message.length - 1] = 'z'
+      OpenSesame::Message.verify(message, @secret).should_not be_true
+    end
+
+    it 'returns the message if it verifies' do
+      message = OpenSesame::Message.generate 'WELL HELLO THERE', @secret
+      OpenSesame::Message.message(message, @secret).should == 'WELL HELLO THERE'
+    end
+
+    it 'returns nil if the message is modified' do
+      message = OpenSesame::Message.generate 'WELL HELLO THERE', @secret
+      message.gsub!(/HELLO/, 'GOODBYE')
+      OpenSesame::Message.message(message, @secret).should be_nil
+    end
+
+
+  end
+
+end

data/spec/spec_helper.rb

@@ -0,0 +1,5 @@
+require 'debugger'
+require 'delorean'
+
+require 'simplecov'
+SimpleCov.start

data/uninstall.rb

@@ -0,0 +1 @@
+# Uninstall hook code here

metadata

@@ -0,0 +1,177 @@
+--- !ruby/object:Gem::Specification
+name: open-sesame
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+  prerelease: 
+platform: ruby
+authors:
+- Ryan Alyn Porter
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-10-13 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.11.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.11.0
+- !ruby/object:Gem::Dependency
+  name: jeweler
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.8.4
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.8.4
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.6.4
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.6.4
+- !ruby/object:Gem::Dependency
+  name: yard
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.8.2.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.8.2.1
+- !ruby/object:Gem::Dependency
+  name: redcarpet
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.1.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.1.1
+- !ruby/object:Gem::Dependency
+  name: delorean
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.0.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.0.0
+- !ruby/object:Gem::Dependency
+  name: debugger
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Use a time-sensitive cryptographic token based on a shared secret phrase
+  to generate an authorization token for passing traffic from one web site to another.
+email: 
+executables: []
+extensions: []
+extra_rdoc_files:
+- README.md
+files:
+- .rvmrc
+- Gemfile
+- Gemfile.lock
+- MIT-LICENSE
+- README.md
+- Rakefile
+- VERSION
+- init.rb
+- install.rb
+- lib/open-sesame.rb
+- open-sesame.gemspec
+- spec/open-sesame_spec.rb
+- spec/spec_helper.rb
+- uninstall.rb
+homepage: http://www.ryanalynporter.com/2009/06/25/authorizing-users-between-web-sites-with-open-sesame/
+licenses:
+- MIT
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+      segments:
+      - 0
+      hash: 1526642688662844779
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.24
+signing_key: 
+specification_version: 3
+summary: Send authorized traffic from one web site to another with a cryptographic
+  authorization token.
+test_files: []