perimeter_x 1.0.6.pre.alpha → 2.0.0

metadata

@@ -1,57 +1,151 @@
 --- !ruby/object:Gem::Specification
 name: perimeter_x
 version: !ruby/object:Gem::Version
-  version: 1.0.6.pre.alpha
+  version: 2.0.0
 platform: ruby
 authors:
 - Nitzan Goldfeder
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2017-03-24 00:00:00.000000000 Z
+date: 2020-07-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.14'
+        version: '2.1'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.14'
+        version: '2.1'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '12.3'
   type: :development
   prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '12.3'
+- !ruby/object:Gem::Dependency
+  name: concurrent-ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.0.5
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.0.5
+- !ruby/object:Gem::Dependency
+  name: typhoeus
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.1.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.1.2
+- !ruby/object:Gem::Dependency
+  name: mustache
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.0.3
+  type: :runtime
+  prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '1.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.0.3
 - !ruby/object:Gem::Dependency
-  name: httpclient
+  name: activesupport
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 2.8.2.4
+        version: 5.2.4.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '='
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 2.8.2.4
+        version: 5.2.4.3
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: mocha
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.2'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.2.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.2'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.2.1
 description: PerimeterX ruby module to monitor and block traffic according to PerimeterX
   risk score
 email: nitzan@perimeterx.com
@@ -62,23 +156,36 @@ extra_rdoc_files:
 - changelog.md
 files:
 - ".gitignore"
+- ".travis.yml"
 - Dockerfile
 - Gemfile
 - Gemfile.lock
 - LICENSE.txt
 - Rakefile
-- bin/console
-- bin/setup
 - changelog.md
-- examples/home_controller.rb.dist
-- examples/routes.rb
+- examples/app/controllers/home_controller.rb
+- examples/app/views/home/index.html.erb.dist
+- examples/config/initializers/perimeterx.rb.dist
+- examples/config/routes.rb
 - lib/perimeter_x.rb
 - lib/perimeterx/configuration.rb
+- lib/perimeterx/internal/clients/perimeter_x_activity_client.rb
+- lib/perimeterx/internal/clients/perimeter_x_risk_client.rb
+- lib/perimeterx/internal/exceptions/px_cookie_decryption_exception.rb
+- lib/perimeterx/internal/payload/perimeter_x_cookie_v1.rb
+- lib/perimeterx/internal/payload/perimeter_x_cookie_v3.rb
+- lib/perimeterx/internal/payload/perimeter_x_payload.rb
+- lib/perimeterx/internal/payload/perimeter_x_token_v1.rb
+- lib/perimeterx/internal/payload/perimeter_x_token_v3.rb
 - lib/perimeterx/internal/perimeter_x_context.rb
-- lib/perimeterx/internal/perimeter_x_risk_client.rb
-- lib/perimeterx/internal/perimeter_x_s2s_validator.rb
+- lib/perimeterx/internal/validators/perimeter_x_cookie_validator.rb
+- lib/perimeterx/internal/validators/perimeter_x_s2s_validator.rb
+- lib/perimeterx/utils/px_constants.rb
 - lib/perimeterx/utils/px_http_client.rb
 - lib/perimeterx/utils/px_logger.rb
+- lib/perimeterx/utils/px_template_factory.rb
+- lib/perimeterx/utils/templates/block_template.mustache
+- lib/perimeterx/utils/templates/ratelimit.mustache
 - lib/perimeterx/version.rb
 - perimeter_x.gemspec
 - readme.md
@@ -101,12 +208,11 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '2.3'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">"
+  - - ">="
     - !ruby/object:Gem::Version
-      version: 1.3.1
+      version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.4.6
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
 summary: PerimeterX ruby implmentation

data/bin/console

@@ -1,14 +0,0 @@
-#!/usr/bin/env ruby
-
-require "bundler/setup"
-require "perimeter_x"
-
-# You can add fixtures and/or initialization code here to make experimenting
-# with your gem easier. You can also use a different console, if you like.
-
-# (If you use this, don't forget to add pry to your Gemfile!)
-# require "pry"
-# Pry.start
-
-require "irb"
-IRB.start(__FILE__)

data/bin/setup

@@ -1,8 +0,0 @@
-#!/usr/bin/env bash
-set -euo pipefail
-IFS=$'\n\t'
-set -vx
-
-bundle install
-
-# Do any other automated setup that you need to do here

data/examples/home_controller.rb.dist

@@ -1,23 +0,0 @@
-class HomeController < ApplicationController
-  include PerimeterX
-
-  before_action :px_middleware
-
-  attr_accessor :px
-
-  def initialize()
-    params = {
-      "app_id" => <APP_ID>,
-      "cookie_key" => <COOKIE_KEY>,
-      "auth_token" => <AUTH_TOKEN>
-    }
-    @px = PxModule.instance(params)
-  end
-
-  def index
-  end
-
-  def px_middleware
-    px.px_verify(request.env)
-  end
-end

data/lib/perimeterx/internal/perimeter_x_risk_client.rb

@@ -1,29 +0,0 @@
-require 'perimeterx/utils/px_logger'
-
-class PerimeterxRiskClient
-  L = PxLogger.instance
-
-  attr_accessor :px_ctx
-  attr_accessor :px_config
-  attr_accessor :http_client
-
-  def initialize(px_ctx, px_config, http_client)
-    @px_ctx = px_ctx
-    @px_config = px_config
-    @http_client = http_client;
-  end
-
-  def format_headers()
-      formated_headers = []
-      @px_ctx.context[:headers].each do |k,v|
-        if (!@px_config["sensitive_headers"].include? k.to_s)
-          formated_headers.push({
-            :name => k.to_s,
-            :value => v
-            })
-        end #end if
-      end #end forech
-      return formated_headers
-  end #end method
-
-end #end class

data/lib/perimeterx/internal/perimeter_x_s2s_validator.rb

@@ -1,67 +0,0 @@
-require 'perimeterx/internal/perimeter_x_risk_client'
-
-class PerimeterxS2SValidator < PerimeterxRiskClient
-
-  attr_accessor :risk_mode
-  attr_accessor :response
-
-  def initialize(px_ctx, px_config, http_client)
-    L.info("PerimeterxS2SValidator: initialize")
-    @px_ctx = px_ctx
-    @px_config = px_config
-    @http_client = http_client
-  end
-
-  def send_risk_request
-    L.info("PerimeterxS2SValidator[send_risk_request]: send_risk_request")
-    request_body = {
-      'request' => {
-        'ip'      => @px_ctx.context[:ip],
-        'headers' => format_headers(),
-        'url'     => @px_ctx.context[:full_url]
-      },
-      'additional' => {
-        's2s_call_reason' => @px_ctx.context[:s2s_call_reason],
-        'module_version' => @px_config["sdk_name"],
-        'http_method' => @px_ctx.context[:http_method],
-        'http_version' => @px_ctx.context[:http_version],
-      }
-    }
-
-    headers = {
-        "Authorization" => "Bearer #{@px_config['auth_token']}" ,
-        "Content-Type" => "application/json"
-    };
-
-    return @http_client.post("/api/v2/risk", request_body, headers)
-  end
-
-  def verify
-    L.info("PerimeterxS2SValidator[verify]: started")
-    response = send_risk_request()
-    if (!response)
-      return @px_ctx
-    end
-    @px_ctx.context[:made_s2s_risk_api_call] = true
-    response_body = eval(response.content);
-    # When success
-    if (response.status == 200 && response_body.key?(:score) && response_body.key?(:action))
-      L.info("PerimeterxS2SValidator[verify]: response ok")
-      score = response_body[:score]
-      @px_ctx.context[:score] = score
-      @px_ctx.context[:uuid] = response_body[:uuid]
-      @px_ctx.context[:block_action] = response_body[:action]
-    end #end success response
-
-    # When error
-    if(response.status != 200)
-      L.warn("PerimeterxS2SValidator[verify]: bad response, return code #{response.code}")
-      @px_ctx.context[:uuid] = ""
-      @px_ctx.context[:s2s_error_msg] = response_body[:message]
-    end
-
-    L.info("PerimeterxS2SValidator[verify]: done")
-    return @px_ctx
-  end #end method
-
-end