opentoken 1.2.3 → 1.2.5

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 454da937c0af7d6f9156b0d1cc82e0c3bc22d2b8
+  data.tar.gz: 9dca1286d13a5c1f273065b5fefa5482eae24d74
+SHA512:
+  metadata.gz: 2ce6c44f2d4b5e0e5cc1679c485ce1b2089afa84de9b5a49e2a83cd7840f8d8d9dab49ae4ea3d527dfd23c24faf1cd620ccf32bfaf081df72926e4f21587daef
+  data.tar.gz: bed7bdb2ba6d142b41af5c2499684f7096915aea78e1539b471110ae24cbc189da7828a8389f5af6d7cb7ca58633a9eb3c7fd24188c38a9269b1400959a007dc

data/.rvmrc

@@ -1,5 +1 @@
-rvm use 1.9.3-p125@opentoken --create
-if ! command -v bundle ; then
-  gem install bundler
-  bundle install --local
-fi
+rvm use default@opentoken --create

data/.travis.yml

@@ -0,0 +1,5 @@
+language: ruby
+rvm:
+  - 1.9.3
+  - 2.0.0
+  - 2.1.1

data/README.md

@@ -1,3 +1,4 @@
+[![Build Status](https://travis-ci.org/socialcast/opentoken.svg)](https://travis-ci.org/socialcast/opentoken)
 # opentoken
 
 Parse encrypted opentoken properties
@@ -17,9 +18,9 @@ attributes = OpenToken.decode 'opentoken-hashed-string'
 attributes = { 'subject' => 'foo', 'bar' => 'bak' }
 token = OpenToken.encode attributes, OpenToken::Cipher::AES_128_CBC
 ```
-  
+
 ## Contributing
- 
+
 * Fork the project
 * Fix the issue
 * Add tests

data/Rakefile

@@ -1,11 +1,6 @@
 require 'bundler'
 Bundler::GemHelper.install_tasks
 
-require 'rake/testtask'
-Rake::TestTask.new(:test) do |test|
-  test.libs << 'lib' << 'test'
-  test.test_files = FileList['test/test*.rb']
-  test.verbose = true
-end
-
-task :default => :test
+require 'rspec/core/rake_task'
+RSpec::Core::RakeTask.new('spec')
+task :default => :spec

data/lib/opentoken/password_key_generator.rb

@@ -1,6 +1,6 @@
 module OpenToken
   class PasswordKeyGenerator
-    SHA1_DIGEST = OpenSSL::Digest::Digest.new('sha1')
+    SHA1_DIGEST = OpenSSL::Digest.new('sha1')
 
     class << self
       def generate(password, cipher)
@@ -12,16 +12,16 @@ module OpenToken
       def generate_block(password, salt, count, index)
         mac = salt
         mac += [index].pack("N")
-      
+
         result = OpenSSL::HMAC.digest(SHA1_DIGEST, password, mac)
         cur = result
-      
+
         i_count = 1
         while i_count < count
           i_count +=1
-        
+
           cur = OpenSSL::HMAC.digest(SHA1_DIGEST, password, cur)
-        
+
           20.times do |i|
             if RUBY_VERSION < "1.9"
               result[i] = result[i] ^ cur[i]
@@ -33,14 +33,14 @@ module OpenToken
 
         return result
       end
-    
+
       def generate_impl(password, cipher, salt, iterations)
         return unless cipher.algorithm
 
         key_size = cipher.key_length / 8
         numblocks = key_size / 20
         numblocks += 1 if (key_size % 20) > 0
-      
+
         # Generate the appropriate number of blocks and write their output to
         # the key bytes; note that it's important to start from 1 (vs. 0) as the
         # initial block number affects the hash. It's not clear that this fact
@@ -48,7 +48,7 @@ module OpenToken
         # keys will not match up with test cases defined in RFC 3962.
         key_buffer_index = 0
         key = ""
-      
+
         numblocks.times do |i|
           i+=1 # Previously zero based, needs to be 1 based
           block = generate_block(password, salt, iterations, i)
@@ -56,10 +56,10 @@ module OpenToken
           key += block[0, len]
           key_buffer_index += len
         end
-      
+
         return key
       end
     end
 
-    end
+  end
 end

data/lib/opentoken/version.rb

@@ -1,3 +1,3 @@
 module OpenToken
-  VERSION = '1.2.3'
+  VERSION = '1.2.5'
 end

data/opentoken.gemspec

@@ -6,19 +6,19 @@ Gem::Specification.new do |s|
   s.name        = "opentoken"
   s.version     = OpenToken::VERSION
   s.platform    = Gem::Platform::RUBY
-  s.authors     = ["Ryan Sonnek"]
-  s.email       = ["ryan@socialcast.com"]
-  s.homepage    = "http://github.com/socialcast/opentoken"
+  s.authors     = ["Socialcast Developers", "Ryan Sonnek"]
+  s.email       = ["developers@socialcast.com"]
+  s.homepage    = "https://github.com/socialcast/opentoken"
   s.summary     = %q{ruby implementation of the opentoken specification}
   s.description = %q{parse opentoken properties passed for Single Signon requests}
-
+  s.license     = "MIT"
   s.rubyforge_project = "opentoken"
 
   s.add_runtime_dependency(%q<activesupport>, [">= 3.0.3"])
   s.add_runtime_dependency(%q<i18n>, [">= 0"])
-  s.add_development_dependency(%q<shoulda>, ["2.11.3"])
-  s.add_development_dependency(%q<timecop>, ["0.3.5"])
-  s.add_development_dependency(%q<rake>, ["0.9.2"])
+  s.add_development_dependency 'rspec', '>= 2.11'
+  s.add_development_dependency 'timecop', '>= 0.7'
+  s.add_development_dependency 'rake', '>= 0.9.2.2'
 
   s.files         = `git ls-files`.split("\n")
   s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")

data/spec/opentoken_spec.rb

@@ -0,0 +1,85 @@
+# encoding: UTF-8
+require 'spec_helper'
+
+describe OpenToken do
+
+  #"renew-until"=>"2010-03-05T07:19:15Z"
+  #"not-before"=>"2010-03-04T19:19:15Z"
+  #"not-on-or-after"=>"2010-03-04T19:24:15Z"
+  describe ".decode" do
+
+    before do
+      OpenToken.password = 'Test123'
+    end
+
+    context "with an aes-128-cbc token with a subject attribute" do
+      let(:opentoken) { "T1RLAQJ0Ca97sl6MLJAZDa_hdFzMlicMQBDjqUzrXl0EOXKmpj5oo7L5AACgaWoW8fZizrsLbtxb_F00aTdFmhw8flGy4iGqPWPtqYpdIzQZzg5WvrvYH8Rnq7ckJpYk2YPZw6yNyA4ohG-BgFdTHc0U7CwZTFmodg1MuO0cTh7T98s2RXiTcaZa21MNO0yuXKm2Q10cbrWhnB5yHJUhSHx6JLxlgMTZ0oE0DoUOB6JmoLMYHcyL9hKRiPTh62ky_QmXRaifDNOdl4sH2w**" }
+      context "when current time is between expiration dates" do
+        subject(:token) do
+          result = nil
+          Timecop.freeze(Time.iso8601('2010-03-04T19:20:10Z')) do
+            result = OpenToken.decode opentoken
+          end
+          result
+        end
+        it "decrypts subject from token payload" do
+          token[:subject].should == 'john@example.com'
+        end
+        it "decrypts subject using string or symbol" do
+          token['subject'].should == 'john@example.com'
+        end
+        it "parses 'renew-until' date" do
+          token.valid_until.should == Time.iso8601('2010-03-05T07:19:15Z')
+        end
+      end
+      context "when current time is outside clock skew tolerance before expiration date" do
+        it do
+          Timecop.freeze(Time.iso8601('2010-03-04T19:19:05Z')) do
+            expect { OpenToken.decode opentoken }.to raise_error OpenToken::TokenExpiredError
+          end
+        end
+      end
+      context "when current time is within clock skew tolerance before expiration date" do
+        it do
+          Timecop.freeze(Time.iso8601('2010-03-04T19:19:11Z')) do
+            expect { OpenToken.decode opentoken }.to_not raise_error
+          end
+        end
+      end
+    end
+
+    context "with a token with an attribute value containing an apostrophe" do
+      subject(:token) do
+        result = nil
+        Timecop.freeze(Time.iso8601('2011-01-13T11:08:02Z')) do
+          result = OpenToken.decode("T1RLAQLIjiqgexqi1PQcEKCetvGoSYR2jhDFSIfE5ctlSBxEnq3S1ydjAADQUNRIKJx6_14aE3MQZnDABupGJrKNfoJHFS5VOnKexjMtboeOgst31Hf-D9CZBrpB7Jv0KBwnQ7DN3HizecPT76oX3UGtq_Vi5j5bKYCeObYm9W6h7NY-VzcZY5TTqIuulc2Jit381usAWZ2Sv1c_CWwhrH4hw-x7vUQMSjErvXK1qvsrFCpfNr7XlArx0HjI6kT5XEaHgQNdC0zrLw9cZ4rewoEisR3H5oM7B6gMaP82wTSFVBXvpn5r0KT-Iuc3JuG2en1zVh3GNf110oQCKQ**")
+        end
+        result
+      end
+      it "preserves the apostrophe" do
+        token[:last_name].should == "D'angelo"
+      end
+    end
+
+    context "with a nil token" do
+      it { expect { OpenToken.decode(nil) }.to raise_error OpenToken::TokenInvalidError }
+    end
+
+  end
+
+  describe ".encode" do
+    before { OpenToken.password = 'Password1' }
+
+    context "with aes-128-cbc and subject attribute" do
+      let(:attributes_in) { { "subject" => "john", "email" => "john@example.com" } }
+      let(:token) { OpenToken.encode attributes_in, OpenToken::Cipher::AES_128_CBC }
+      it { OpenToken.decode(token).should == attributes_in }
+    end
+
+    context "with non-ascii utf-8 values" do
+      let(:attributes_in) { { "subject" => "André", "email" => "john@example.com" } }
+      let(:token) { OpenToken.encode attributes_in, OpenToken::Cipher::AES_128_CBC }
+      it { OpenToken.decode(token).should == attributes_in }
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,5 @@
+require 'rubygems'
+require 'bundler/setup'
+require 'rspec/mocks'
+require 'timecop'
+require 'opentoken'

metadata

@@ -1,106 +1,97 @@
 --- !ruby/object:Gem::Specification
 name: opentoken
 version: !ruby/object:Gem::Version
-  version: 1.2.3
-  prerelease: 
+  version: 1.2.5
 platform: ruby
 authors:
+- Socialcast Developers
 - Ryan Sonnek
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-08-27 00:00:00.000000000 Z
+date: 2014-06-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 3.0.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 3.0.3
 - !ruby/object:Gem::Dependency
   name: i18n
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: shoulda
+  name: rspec
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 2.11.3
+        version: '2.11'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 2.11.3
+        version: '2.11'
 - !ruby/object:Gem::Dependency
   name: timecop
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 0.3.5
+        version: '0.7'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 0.3.5
+        version: '0.7'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 0.9.2
+        version: 0.9.2.2
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 0.9.2
+        version: 0.9.2.2
 description: parse opentoken properties passed for Single Signon requests
 email:
-- ryan@socialcast.com
+- developers@socialcast.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- .document
-- .gitignore
-- .rvmrc
+- ".document"
+- ".gitignore"
+- ".rvmrc"
+- ".travis.yml"
 - CONTRIBUTORS.txt
 - Gemfile
 - LICENSE.txt
@@ -113,38 +104,32 @@ files:
 - lib/opentoken/token.rb
 - lib/opentoken/version.rb
 - opentoken.gemspec
-- test/helper.rb
-- test/test_opentoken.rb
-homepage: http://github.com/socialcast/opentoken
-licenses: []
+- spec/opentoken_spec.rb
+- spec/spec_helper.rb
+homepage: https://github.com/socialcast/opentoken
+licenses:
+- MIT
+metadata: {}
 post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
-      segments:
-      - 0
-      hash: 4385898841292862662
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
-      segments:
-      - 0
-      hash: 4385898841292862662
 requirements: []
 rubyforge_project: opentoken
-rubygems_version: 1.8.24
+rubygems_version: 2.2.2
 signing_key: 
-specification_version: 3
+specification_version: 4
 summary: ruby implementation of the opentoken specification
 test_files:
-- test/helper.rb
-- test/test_opentoken.rb
+- spec/opentoken_spec.rb
+- spec/spec_helper.rb

data/test/helper.rb

@@ -1,19 +0,0 @@
-require 'rubygems'
-require 'bundler'
-begin
-  Bundler.setup(:default, :development)
-rescue Bundler::BundlerError => e
-  $stderr.puts e.message
-  $stderr.puts "Run `bundle install` to install missing gems"
-  exit e.status_code
-end
-require 'test/unit'
-require 'shoulda'
-require 'timecop'
-
-$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
-$LOAD_PATH.unshift(File.dirname(__FILE__))
-require 'opentoken'
-
-class Test::Unit::TestCase
-end

data/test/test_opentoken.rb

@@ -1,135 +0,0 @@
-require 'helper'
-
-class TestOpentoken < Test::Unit::TestCase
-  # OpenToken.debug = true
-
-  #"renew-until"=>"2010-03-05T07:19:15Z"
-  #"not-before"=>"2010-03-04T19:19:15Z"
-  #"not-on-or-after"=>"2010-03-04T19:24:15Z"
-  context "aes-128-cbc token with subject attribute" do
-    setup do
-      @opentoken = "T1RLAQJ0Ca97sl6MLJAZDa_hdFzMlicMQBDjqUzrXl0EOXKmpj5oo7L5AACgaWoW8fZizrsLbtxb_F00aTdFmhw8flGy4iGqPWPtqYpdIzQZzg5WvrvYH8Rnq7ckJpYk2YPZw6yNyA4ohG-BgFdTHc0U7CwZTFmodg1MuO0cTh7T98s2RXiTcaZa21MNO0yuXKm2Q10cbrWhnB5yHJUhSHx6JLxlgMTZ0oE0DoUOB6JmoLMYHcyL9hKRiPTh62ky_QmXRaifDNOdl4sH2w**"
-      @password = 'Test123'
-      OpenToken.password = @password
-    end
-    context "decoding token between expiration dates" do
-      setup do
-        Timecop.travel(Time.iso8601('2010-03-04T19:20:10Z')) do
-          assert_nothing_raised do
-            @token = OpenToken.decode @opentoken
-          end
-        end
-      end
-      should "decrypt subject from token payload" do
-        assert_equal 'john@example.com', @token[:subject]
-      end
-      should "decrypt subject using string or symbol" do
-        assert_equal 'john@example.com', @token['subject']
-      end
-      should "parse 'renew-until' date" do
-        assert_equal Time.iso8601('2010-03-05T07:19:15Z'), @token.valid_until
-      end
-    end
-
-    context "decoding token when current time is outside clock skew tolerance of before expiration date" do
-      should "raise TokenExpiredError" do
-        Timecop.travel(Time.iso8601('2010-03-04T19:19:05Z')) do
-          assert_raises OpenToken::TokenExpiredError do
-            @token = OpenToken.decode @opentoken
-          end
-        end
-      end
-    end
-
-    context "decoding token when current time is within clock skew tolerance of before expiration date" do
-      should "not raise TokenExpiredError" do
-        Timecop.travel(Time.iso8601('2010-03-04T19:19:10Z')) do
-          assert_nothing_raised do
-            @token = OpenToken.decode @opentoken
-          end
-        end
-      end
-    end
-
-    context "decoding token when current time is equal to expiration date" do
-      should "not raise TokenExpiredError" do
-        Timecop.travel(Time.iso8601('2010-03-04T19:24:15Z')) do
-          assert_nothing_raised do
-            @token = OpenToken.decode @opentoken
-          end
-        end
-      end
-    end
-
-    context "decoding token when current time is within clock skew tolerance of expiration date" do
-      should "not raise TokenExpiredError" do
-        Timecop.travel(Time.iso8601('2010-03-04T19:24:19Z')) do
-          assert_nothing_raised do
-            @token = OpenToken.decode @opentoken
-          end
-        end
-      end
-    end
-
-    context "decoding token when current time is outside clock skew tolerance of expiration date" do
-      should "raise TokenExpiredError" do
-        Timecop.travel(Time.iso8601('2010-03-04T19:24:25Z')) do
-          assert_raises OpenToken::TokenExpiredError do
-            @token = OpenToken.decode @opentoken
-          end
-        end
-      end
-    end
-
-    context "decoding token with attribute value containing apostrophe" do
-      setup do
-        Timecop.travel(Time.iso8601('2011-01-13T11:08:01Z')) do
-          @opentoken = "T1RLAQLIjiqgexqi1PQcEKCetvGoSYR2jhDFSIfE5ctlSBxEnq3S1ydjAADQUNRIKJx6_14aE3MQZnDABupGJrKNfoJHFS5VOnKexjMtboeOgst31Hf-D9CZBrpB7Jv0KBwnQ7DN3HizecPT76oX3UGtq_Vi5j5bKYCeObYm9W6h7NY-VzcZY5TTqIuulc2Jit381usAWZ2Sv1c_CWwhrH4hw-x7vUQMSjErvXK1qvsrFCpfNr7XlArx0HjI6kT5XEaHgQNdC0zrLw9cZ4rewoEisR3H5oM7B6gMaP82wTSFVBXvpn5r0KT-Iuc3JuG2en1zVh3GNf110oQCKQ**"
-          @token = OpenToken.decode @opentoken
-        end
-      end
-      should 'preserve apostrophe in attribute payload' do
-        assert_equal "D'angelo", @token[:last_name]
-      end
-    end
-
-    should 'raise invalid token error parsing nil token' do
-      assert_raises OpenToken::TokenInvalidError do
-        OpenToken.decode nil
-      end
-    end
-  end
-
-  context "encoding token" do
-    setup do
-      OpenToken.password = "Password1"
-    end
-    context "with aes-128-cbc and subject attribute" do
-      setup do
-          @attributesIn = { "subject" => "john", "email" => "john@example.com"}
-          @token = OpenToken.encode @attributesIn, OpenToken::Cipher::AES_128_CBC
-      end
-      should "be decodable" do
-        @attributesOut = OpenToken.decode @token
-        assert_equal @attributesIn, @attributesOut
-      end
-    end
-  end
-
-  context "encoding token with utf-8 values" do
-    setup do
-      OpenToken.password = "Password1"
-    end
-    context "with aes-128-cbc and subject attribute" do
-      setup do
-          @subject = OpenToken.send(:force_encoding, "Andr\xC3\xA9", 'UTF-8')
-          @attributesIn = { "subject" => @subject, "email" => "john@example.com"}
-          @token = OpenToken.encode @attributesIn, OpenToken::Cipher::AES_128_CBC
-      end
-      should "be decodable" do
-        @attributesOut = OpenToken.decode @token
-        assert_equal @attributesIn, @attributesOut
-      end
-    end
-  end
-end