RubyGems - pandexio - Versions diffs - 0.0.3 → 0.0.4 - Mend

pandexio 0.0.3 → 0.0.4

Files changed (12) hide show

data/README.md +78 -78
data/Rakefile +8 -8
data/lib/pandexio.rb +150 -152
data/lib/request.rb +24 -24
data/lib/signing_algorithms.rb +36 -36
data/lib/signing_attributes.rb +21 -21
data/lib/signing_mechanisms.rb +16 -16
data/lib/signing_options.rb +29 -29
data/test/test_header_signing.rb +250 -248
data/test/test_query_string_signing.rb +322 -320
metadata +8 -6
checksums.yaml +0 -7

data/lib/request.rb CHANGED Viewed

@@ -1,25 +1,25 @@
-module Pandexio
-  class Request
-    def initialize(params = {})
-      @method = params.fetch(:method, nil)
-      @path = params.fetch(:path, nil)
-      @query_parameters = params.fetch(:query_parameters, {})
-      @headers = params.fetch(:headers, {})
-      @payload = params.fetch(:payload, nil)
-    end
-    attr_accessor :method
-    attr_accessor :path
-    attr_accessor :query_parameters
-    attr_accessor :headers
-    attr_accessor :payload
-    def to_s
-      "#{@method} #{@path}#{LINE_BREAK}query_parameters: #{query_parameters}#{LINE_BREAK}headers: #{headers}#{LINE_BREAK}payload: #{payload}"
-    end
-  end
+module Pandexio
+  class Request
+    def initialize(params = {})
+      @method = params.fetch(:method, nil)
+      @path = params.fetch(:path, nil)
+      @query_parameters = params.fetch(:query_parameters, {})
+      @headers = params.fetch(:headers, {})
+      @payload = params.fetch(:payload, nil)
+    end
+    attr_accessor :method
+    attr_accessor :path
+    attr_accessor :query_parameters
+    attr_accessor :headers
+    attr_accessor :payload
+    def to_s
+      "#{@method} #{@path}#{LINE_BREAK}query_parameters: #{query_parameters}#{LINE_BREAK}headers: #{headers}#{LINE_BREAK}payload: #{payload}"
+    end
+  end
 end

data/lib/signing_algorithms.rb CHANGED Viewed

@@ -1,37 +1,37 @@
-module Pandexio
-  class SigningAlgorithms
-    PDX_HMAC_MD5 = "PDX-HMAC-MD5"
-    PDX_HMAC_SHA1 = "PDX-HMAC-SHA1"
-    PDX_HMAC_SHA256 = "PDX-HMAC-SHA256"
-    PDX_HMAC_SHA384 = "PDX-HMAC-SHA384"
-    PDX_HMAC_SHA512 = "PDX-HMAC-SHA512"
-    def self.is_v(a)
-	  return !a.nil? && a.is_a?(String) &&
-		(a == PDX_HMAC_MD5 ||
-		a == PDX_HMAC_SHA1 ||
-		a == PDX_HMAC_SHA256 ||
-		a == PDX_HMAC_SHA384 ||
-		a == PDX_HMAC_SHA512)
-    end
-    def self.to_d(a)
-	  return case a
-                    when SigningAlgorithms::PDX_HMAC_MD5; OpenSSL::Digest::MD5.new
-                    when SigningAlgorithms::PDX_HMAC_SHA1; OpenSSL::Digest::SHA1.new
-                    when SigningAlgorithms::PDX_HMAC_SHA256; OpenSSL::Digest::SHA256.new
-                    when SigningAlgorithms::PDX_HMAC_SHA384; OpenSSL::Digest::SHA384.new
-                    when SigningAlgorithms::PDX_HMAC_SHA512; OpenSSL::Digest::SHA512.new
-                    else raise 'Invalid signing algorithm'
-                    end
-    end
-  end
+module Pandexio
+  class SigningAlgorithms
+    PDX_HMAC_MD5 = "PDX-HMAC-MD5"
+    PDX_HMAC_SHA1 = "PDX-HMAC-SHA1"
+    PDX_HMAC_SHA256 = "PDX-HMAC-SHA256"
+    PDX_HMAC_SHA384 = "PDX-HMAC-SHA384"
+    PDX_HMAC_SHA512 = "PDX-HMAC-SHA512"
+    def self.is_v(a)
+	  return !a.nil? && a.is_a?(String) &&
+		(a == PDX_HMAC_MD5 ||
+		a == PDX_HMAC_SHA1 ||
+		a == PDX_HMAC_SHA256 ||
+		a == PDX_HMAC_SHA384 ||
+		a == PDX_HMAC_SHA512)
+    end
+    def self.to_d(a)
+	  return case a
+                    when SigningAlgorithms::PDX_HMAC_MD5; OpenSSL::Digest::MD5.new
+                    when SigningAlgorithms::PDX_HMAC_SHA1; OpenSSL::Digest::SHA1.new
+                    when SigningAlgorithms::PDX_HMAC_SHA256; OpenSSL::Digest::SHA256.new
+                    when SigningAlgorithms::PDX_HMAC_SHA384; OpenSSL::Digest::SHA384.new
+                    when SigningAlgorithms::PDX_HMAC_SHA512; OpenSSL::Digest::SHA512.new
+                    else raise 'Invalid signing algorithm'
+                    end
+    end
+  end
 end

data/lib/signing_attributes.rb CHANGED Viewed

@@ -1,22 +1,22 @@
-module Pandexio
-  class SigningAttributes
-    # Used by "headers" only
-    AUTHORIZATION = "Authorization"
-    # Used by "query_parameters" only
-    ALGORITHM = "X-Pdx-Algorithm"
-    CREDENTIAL = "X-Pdx-Credential"
-    SIGNED_HEADERS = "X-Pdx-SignedHeaders"
-    SIGNATURE = "X-Pdx-Signature"
-    # Used by "headers" and "query_parameters"
-    DATE = "X-Pdx-Date"
-    EXPIRES = "X-Pdx-Expires"
-    ORIGINATOR = "X-Pdx-Originator"
-    EMAIL_ADDRESS = "X-Pdx-EmailAddress"
-    DISPLAY_NAME = "X-Pdx-DisplayName"
-    PROFILE_IMAGE = "X-Pdx-ProfileImage"
-  end
+module Pandexio
+  class SigningAttributes
+    # Used by "headers" only
+    AUTHORIZATION = "Authorization"
+    # Used by "query_parameters" only
+    ALGORITHM = "X-Pdx-Algorithm"
+    CREDENTIAL = "X-Pdx-Credential"
+    SIGNED_HEADERS = "X-Pdx-SignedHeaders"
+    SIGNATURE = "X-Pdx-Signature"
+    # Used by "headers" and "query_parameters"
+    DATE = "X-Pdx-Date"
+    EXPIRES = "X-Pdx-Expires"
+    ORIGINATOR = "X-Pdx-Originator"
+    EMAIL_ADDRESS = "X-Pdx-EmailAddress"
+    DISPLAY_NAME = "X-Pdx-DisplayName"
+    PROFILE_IMAGE = "X-Pdx-ProfileImage"
+  end
 end

data/lib/signing_mechanisms.rb CHANGED Viewed

@@ -1,17 +1,17 @@
-module Pandexio
-  class SigningMechanisms
-    QUERY_STRING = "QueryString"
-    HEADER = "Header"
-    def self.is_v(m)
-      return !m.nil? && m.is_a?(String) &&
-        (m == QUERY_STRING || m == HEADER)
-    end
-  end
+module Pandexio
+  class SigningMechanisms
+    QUERY_STRING = "QueryString"
+    HEADER = "Header"
+    def self.is_v(m)
+      return !m.nil? && m.is_a?(String) &&
+        (m == QUERY_STRING || m == HEADER)
+    end
+  end
 end

data/lib/signing_options.rb CHANGED Viewed

@@ -1,30 +1,30 @@
-module Pandexio
-  class SigningOptions
-    def initialize(params = {})
-      @algorithm = params.fetch(:algorithm, nil)
-      @mechanism = params.fetch(:mechanism, nil)
-      @domain_id = params.fetch(:domain_id, nil)
-      @domain_key = params.fetch(:domain_key, nil)
-      @date = params.fetch(:date, nil)
-      @expires = params.fetch(:expires, nil)
-      @originator = params.fetch(:originator, nil)
-      @email_address = params.fetch(:email_address, nil)
-      @display_name = params.fetch(:display_name, nil)
-      @profile_image = params.fetch(:profile_image, nil)
-    end
-    attr_accessor :algorithm
-    attr_accessor :mechanism
-    attr_accessor :domain_id
-    attr_accessor :domain_key
-    attr_accessor :date
-    attr_accessor :expires
-    attr_accessor :originator
-    attr_accessor :email_address
-    attr_accessor :display_name
-    attr_accessor :profile_image
-  end
+module Pandexio
+  class SigningOptions
+    def initialize(params = {})
+      @algorithm = params.fetch(:algorithm, nil)
+      @mechanism = params.fetch(:mechanism, nil)
+      @domain_id = params.fetch(:domain_id, nil)
+      @domain_key = params.fetch(:domain_key, nil)
+      @date = params.fetch(:date, nil)
+      @expires = params.fetch(:expires, nil)
+      @originator = params.fetch(:originator, nil)
+      @email_address = params.fetch(:email_address, nil)
+      @display_name = params.fetch(:display_name, nil)
+      @profile_image = params.fetch(:profile_image, nil)
+    end
+    attr_accessor :algorithm
+    attr_accessor :mechanism
+    attr_accessor :domain_id
+    attr_accessor :domain_key
+    attr_accessor :date
+    attr_accessor :expires
+    attr_accessor :originator
+    attr_accessor :email_address
+    attr_accessor :display_name
+    attr_accessor :profile_image
+  end
 end

data/test/test_header_signing.rb CHANGED Viewed

@@ -1,249 +1,251 @@
-require 'minitest/autorun'
-require_relative '../lib/pandexio.rb'
-describe Pandexio do
-  describe "#to_authorized_request" do
-    describe "when using header signing mechanism and email_address contains uppercase and lowercase characters" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "Anonymous",
-          :display_name => "Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=a2e3dbc31b712bec6071dc7c5770bc60d4b03afa20e8329e6f4f6a2d74d32709"
-      end
-    end
-    describe "when using header signing mechanism and email_address contains all lowercase characters" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "anonymous",
-          :display_name => "Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=d2c3ba8ed5c10371a4a370a7e7ee5f483d4eaac4545a97d6aaced30d8e62d2a0"
-      end
-    end
-    describe "when using header signing mechanism and email_address contains all uppercase characters" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "ANONYMOUS",
-          :display_name => "Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=865f3555991dc8f73760058b643a6a169c07c3a32ab3d247aa0eebdc24e9d6e9"
-      end
-    end
-    describe "when using header signing mechanism and display_name contains spaces" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "Anonymous",
-          :display_name => "A. Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=e1fc00541454d11c58bae1273af56b528def5e60575feedbe0a9019b88fe1b79"
-      end
-    end
-    describe "when using header signing mechanism and display_name contains non-ASCII characters" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "Anonymous",
-          :display_name => "á Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=347ac3df3930eaf2ba107c932e740dae5430a99f4fef76b18a4452d07125c209"
-      end
-    end
-    describe "when using header signing mechanism and path contains spaces" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title and description",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "Anonymous",
-          :display_name => "Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=e8946dbd83307f5bf86f7f152d6cee95426834dd5901588da84df1b8207e2bca"
-      end
-    end
-    describe "when using header signing mechanism and payload contains non-ASCII characters" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing á")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "Anonymous",
-          :display_name => "Anonymous")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=fec62f69abbb53261dceaf1a52dab932e24e5f6e97f189da559562e14c13a9f7"
-      end
-    end
-    describe "when using header signing mechanism and attributes include profile_image" do
-      before do
-        normalized_request = Pandexio::Request.new(
-          :method => "PUT",
-          :path => "/asdf/qwer/1234/title",
-          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
-          :headers => { "sample" => "example", "Host" => "localhost" },
-          :payload => "testing")
-        signing_options = Pandexio::SigningOptions.new(
-          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
-          :mechanism => Pandexio::SigningMechanisms::HEADER,
-          :domain_id => "1234567890",
-          :domain_key => "asdfjklqwerzxcv",
-          :date => Time.utc(2014, 11, 21, 13, 43, 15),
-          :expires => 90,
-          :originator => "HeaderSigningTest",
-          :email_address => "Anonymous",
-          :display_name => "Anonymous",
-          :profile_image => "abcdefg")
-        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
-      end
-      it "returns the correct authorization header" do
-        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator;x-pdx-profileimage, Signature=e7fb1de006519be4a1c778c3055f05dfa2fafb96fb1bc033a77ba4df4da8829d"
-      end
-    end
-  end
+# encoding: utf-8
+require 'minitest/autorun'
+require_relative '../lib/pandexio.rb'
+describe Pandexio do
+  describe "#to_authorized_request" do
+    describe "when using header signing mechanism and email_address contains uppercase and lowercase characters" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "Anonymous",
+          :display_name => "Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=a2e3dbc31b712bec6071dc7c5770bc60d4b03afa20e8329e6f4f6a2d74d32709"
+      end
+    end
+    describe "when using header signing mechanism and email_address contains all lowercase characters" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "anonymous",
+          :display_name => "Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=d2c3ba8ed5c10371a4a370a7e7ee5f483d4eaac4545a97d6aaced30d8e62d2a0"
+      end
+    end
+    describe "when using header signing mechanism and email_address contains all uppercase characters" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "ANONYMOUS",
+          :display_name => "Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=865f3555991dc8f73760058b643a6a169c07c3a32ab3d247aa0eebdc24e9d6e9"
+      end
+    end
+    describe "when using header signing mechanism and display_name contains spaces" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "Anonymous",
+          :display_name => "A. Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=e1fc00541454d11c58bae1273af56b528def5e60575feedbe0a9019b88fe1b79"
+      end
+    end
+    describe "when using header signing mechanism and display_name contains non-ASCII characters" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "Anonymous",
+          :display_name => "á Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=347ac3df3930eaf2ba107c932e740dae5430a99f4fef76b18a4452d07125c209"
+      end
+    end
+    describe "when using header signing mechanism and path contains spaces" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title and description",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "Anonymous",
+          :display_name => "Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=e8946dbd83307f5bf86f7f152d6cee95426834dd5901588da84df1b8207e2bca"
+      end
+    end
+    describe "when using header signing mechanism and payload contains non-ASCII characters" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing á")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "Anonymous",
+          :display_name => "Anonymous")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator, Signature=fec62f69abbb53261dceaf1a52dab932e24e5f6e97f189da559562e14c13a9f7"
+      end
+    end
+    describe "when using header signing mechanism and attributes include profile_image" do
+      before do
+        normalized_request = Pandexio::Request.new(
+          :method => "PUT",
+          :path => "/asdf/qwer/1234/title",
+          :query_parameters => { "nonce" => "987654321", "Baseline" => "5" },
+          :headers => { "sample" => "example", "Host" => "localhost" },
+          :payload => "testing")
+        signing_options = Pandexio::SigningOptions.new(
+          :algorithm => Pandexio::SigningAlgorithms::PDX_HMAC_SHA256,
+          :mechanism => Pandexio::SigningMechanisms::HEADER,
+          :domain_id => "1234567890",
+          :domain_key => "asdfjklqwerzxcv",
+          :date => Time.utc(2014, 11, 21, 13, 43, 15),
+          :expires => 90,
+          :originator => "HeaderSigningTest",
+          :email_address => "Anonymous",
+          :display_name => "Anonymous",
+          :profile_image => "abcdefg")
+        @authorized_request = Pandexio::to_authorized_request(normalized_request, signing_options)
+      end
+      it "returns the correct authorization header" do
+        @authorized_request.headers["Authorization"].must_equal "PDX-HMAC-SHA256 Credential=1234567890, SignedHeaders=host;sample;x-pdx-date;x-pdx-displayname;x-pdx-emailaddress;x-pdx-expires;x-pdx-originator;x-pdx-profileimage, Signature=e7fb1de006519be4a1c778c3055f05dfa2fafb96fb1bc033a77ba4df4da8829d"
+      end
+    end
+  end
 end