openneo-auth-signatory 0.1.0

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,21 @@
+## MAC OS
+.DS_Store
+
+## TEXTMATE
+*.tmproj
+tmtags
+
+## EMACS
+*~
+\#*
+.\#*
+
+## VIM
+*.swp
+
+## PROJECT::GENERAL
+coverage
+rdoc
+pkg
+
+## PROJECT::SPECIFIC

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2009 Matchu
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,12 @@
+= openneo-auth-signatory
+
+This Ruby gem signs messages for communication through the OpenNeo Auth
+protocol. It started in PHP, but then I later wanted to kill myself, so Ruby,
+here I come!
+
+This gem is used by auth servers to sign messages, and clients to confirm the
+signature.
+
+== Copyright
+
+Copyright (c) 2010 Matchu. See LICENSE for details.

data/Rakefile

@@ -0,0 +1,53 @@
+require 'rubygems'
+require 'rake'
+
+begin
+  require 'jeweler'
+  Jeweler::Tasks.new do |gem|
+    gem.name = "openneo-auth-signatory"
+    gem.summary = %Q{Sign messages for the OpenNeo Auth protocol}
+    gem.description = %Q{Used by OpenNeo Auth servers to sign messages, and OpenNeo Auth clients to confirm signatures.}
+    gem.email = "matchu1993@gmail.com"
+    gem.homepage = "http://github.com/matchu/openneo-auth-signatory"
+    gem.authors = ["Matchu"]
+    gem.add_dependency("ruby-hmac")
+    # gem is a Gem::Specification... see http://www.rubygems.org/read/chapter/20 for additional settings
+  end
+  Jeweler::GemcutterTasks.new
+rescue LoadError
+  puts "Jeweler (or a dependency) not available. Install it with: gem install jeweler"
+end
+
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |test|
+  test.libs << 'lib' << 'test'
+  test.pattern = 'test/**/test_*.rb'
+  test.verbose = true
+end
+
+begin
+  require 'rcov/rcovtask'
+  Rcov::RcovTask.new do |test|
+    test.libs << 'test'
+    test.pattern = 'test/**/test_*.rb'
+    test.verbose = true
+  end
+rescue LoadError
+  task :rcov do
+    abort "RCov is not available. In order to run rcov, you must: sudo gem install spicycode-rcov"
+  end
+end
+
+task :test => :check_dependencies
+
+task :default => :test
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  version = File.exist?('VERSION') ? File.read('VERSION') : ""
+
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "openneo-auth-signatory #{version}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/VERSION

@@ -0,0 +1 @@
+0.1.0

data/lib/openneo-auth-signatory.rb

@@ -0,0 +1,36 @@
+require 'rubygems'
+require 'cgi'
+require 'hmac-sha2'
+
+module Openneo
+  module Auth
+    class Signatory
+      def initialize(secret)
+        @hmac = HMAC::SHA256.new(secret)
+      end
+      
+      def sign(data)
+        @hmac << data.to_openneo_auth_query
+        @hmac.hexdigest
+      end
+    end
+  end
+end
+
+# The following extension used to be present in ActiveSupport, but was removed
+# in version 3. The code has been modified to be more generic and therefore
+# concise.
+
+class Hash
+  def to_openneo_auth_query(namespace = nil)
+    collect do |key, value|
+      value.to_openneo_auth_query(namespace ? "#{namespace}[#{key}]" : key)
+    end.sort * '&'
+  end
+end
+
+class Object
+  def to_openneo_auth_query(key)
+    "#{CGI.escape(key.to_s)}=#{CGI.escape(to_s)}"
+  end
+end

data/openneo-auth-signatory.gemspec

@@ -0,0 +1,54 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{openneo-auth-signatory}
+  s.version = "0.1.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Matchu"]
+  s.date = %q{2010-11-28}
+  s.description = %q{Used by OpenNeo Auth servers to sign messages, and OpenNeo Auth clients to confirm signatures.}
+  s.email = %q{matchu1993@gmail.com}
+  s.extra_rdoc_files = [
+    "LICENSE",
+     "README.rdoc"
+  ]
+  s.files = [
+    ".document",
+     ".gitignore",
+     "LICENSE",
+     "README.rdoc",
+     "Rakefile",
+     "VERSION",
+     "lib/openneo-auth-signatory.rb",
+     "openneo-auth-signatory.gemspec",
+     "test/helper.rb",
+     "test/test_openneo-auth-signatory.rb"
+  ]
+  s.homepage = %q{http://github.com/matchu/openneo-auth-signatory}
+  s.rdoc_options = ["--charset=UTF-8"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.3.7}
+  s.summary = %q{Sign messages for the OpenNeo Auth protocol}
+  s.test_files = [
+    "test/test_openneo-auth-signatory.rb",
+     "test/helper.rb"
+  ]
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_runtime_dependency(%q<ruby-hmac>, [">= 0"])
+    else
+      s.add_dependency(%q<ruby-hmac>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<ruby-hmac>, [">= 0"])
+  end
+end
+

data/test/helper.rb

@@ -0,0 +1,17 @@
+require 'rubygems'
+require 'test/unit'
+begin
+  # Load redgreen, but only if present
+  require 'redgreen'
+rescue LoadError
+end
+
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+require 'openneo-auth-signatory'
+
+class Test::Unit::TestCase
+  def assert_signature(signature, data)
+    assert_equal signature, @signatory.sign(data)
+  end
+end

data/test/test_openneo-auth-signatory.rb

@@ -0,0 +1,45 @@
+require 'helper'
+
+=begin
+  Signatures in tests generated by existing PHP signatory, to ensure
+  compatibility.
+
+  http://github.com/matchu/openneo-auth-server/blob/master/openneo_auth_signatory.class.php
+=end
+
+class TestOpenneoAuthSignatory < Test::Unit::TestCase
+  def setup
+    @signatory = Openneo::Auth::Signatory.new('MySecret32!!')
+  end
+  
+  def test_sign
+    assert_signature(
+      '405f4c596ae21770ca6a304ff34f45e11c496fb7bc1d23abb58663719e061fb3',
+      :foo => 'bar', :eggs => 'spam', :your => 'mom'
+    )
+  end
+  
+  def test_multiple_signatures
+    assert_signature(
+      'a21492375b22c4155f5c374b98de16c151ba3d721d86325c97f3f27741a0b7a2',
+      :foo => 'bar'
+    )
+    assert_signature(
+      'f2eff505366cc77f64204e5fcdc3fb58d0ac0aa442f6e58837de0fab3a121d1d',
+      :bart => 'foot'
+    )
+  end
+  
+  def test_order_insensitive
+    signature = '3e105d0690d99e3c9046b393e9bc338301a69d710756a5a5cfc3872b1ca7bb36'
+    assert_signature signature, :a => 1, :b => 2, :c => 3
+    assert_signature signature, :c => 3, :b => 2, :a => 1
+  end
+  
+  def test_nested_hash
+    assert_signature(
+      '8aa5f3b84750d0f8b67e1f9cc30010906457f576b22a82d6f5408c60fa9ede57',
+      :hello => 'world', :foo => {:bar => 1, :baz => 2}
+    )
+  end
+end

metadata

@@ -0,0 +1,87 @@
+--- !ruby/object:Gem::Specification 
+name: openneo-auth-signatory
+version: !ruby/object:Gem::Version 
+  prerelease: false
+  segments: 
+  - 0
+  - 1
+  - 0
+  version: 0.1.0
+platform: ruby
+authors: 
+- Matchu
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-11-28 00:00:00 -05:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: ruby-hmac
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id001
+description: Used by OpenNeo Auth servers to sign messages, and OpenNeo Auth clients to confirm signatures.
+email: matchu1993@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE
+- README.rdoc
+files: 
+- .document
+- .gitignore
+- LICENSE
+- README.rdoc
+- Rakefile
+- VERSION
+- lib/openneo-auth-signatory.rb
+- openneo-auth-signatory.gemspec
+- test/helper.rb
+- test/test_openneo-auth-signatory.rb
+has_rdoc: true
+homepage: http://github.com/matchu/openneo-auth-signatory
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Sign messages for the OpenNeo Auth protocol
+test_files: 
+- test/test_openneo-auth-signatory.rb
+- test/helper.rb