RubyGems - pingpp - Versions diffs - 1.0.2 - Mend

pingpp 1.0.2

Files changed (23) hide show

checksums.yaml +7 -0
data/lib/data/ca-certificates.crt +5165 -0
data/lib/pingpp/api_operations/create.rb +16 -0
data/lib/pingpp/api_operations/delete.rb +11 -0
data/lib/pingpp/api_operations/list.rb +16 -0
data/lib/pingpp/api_operations/update.rb +57 -0
data/lib/pingpp/api_resource.rb +33 -0
data/lib/pingpp/certificate_blacklist.rb +53 -0
data/lib/pingpp/channel.rb +9 -0
data/lib/pingpp/charge.rb +19 -0
data/lib/pingpp/errors/api_connection_error.rb +4 -0
data/lib/pingpp/errors/api_error.rb +4 -0
data/lib/pingpp/errors/authentication_error.rb +4 -0
data/lib/pingpp/errors/invalid_request_error.rb +10 -0
data/lib/pingpp/errors/pingpp_error.rb +20 -0
data/lib/pingpp/list_object.rb +35 -0
data/lib/pingpp/pingpp_object.rb +187 -0
data/lib/pingpp/refund.rb +14 -0
data/lib/pingpp/singleton_api_resource.rb +20 -0
data/lib/pingpp/util.rb +99 -0
data/lib/pingpp/version.rb +3 -0
data/lib/pingpp.rb +274 -0
metadata +182 -0

data/lib/pingpp/api_operations/create.rb ADDED Viewed

@@ -0,0 +1,16 @@
+module Pingpp
+  module APIOperations
+    module Create
+      module ClassMethods
+        def create(params={}, api_key=nil)
+          response, api_key = Pingpp.request(:post, self.url, api_key, params)
+          Util.convert_to_pingpp_object(response, api_key)
+        end
+      end
+      def self.included(base)
+        base.extend(ClassMethods)
+      end
+    end
+  end
+end

data/lib/pingpp/api_operations/delete.rb ADDED Viewed

@@ -0,0 +1,11 @@
+module Pingpp
+  module APIOperations
+    module Delete
+      def delete(params = {})
+        response, api_key = Pingpp.request(:delete, url, @api_key, params)
+        refresh_from(response, api_key)
+        self
+      end
+    end
+  end
+end

data/lib/pingpp/api_operations/list.rb ADDED Viewed

@@ -0,0 +1,16 @@
+module Pingpp
+  module APIOperations
+    module List
+      module ClassMethods
+        def all(filters={}, api_key=nil)
+          response, api_key = Pingpp.request(:get, url, api_key, filters)
+          Util.convert_to_pingpp_object(response, api_key)
+        end
+      end
+      def self.included(base)
+        base.extend(ClassMethods)
+      end
+    end
+  end
+end

data/lib/pingpp/api_operations/update.rb ADDED Viewed

@@ -0,0 +1,57 @@
+module Pingpp
+  module APIOperations
+    module Update
+      def save(opts={})
+        values = serialize_params(self).merge(opts)
+        if @values[:metadata]
+          values[:metadata] = serialize_metadata
+        end
+        if values.length > 0
+          values.delete(:id)
+          response, api_key = Pingpp.request(:post, url, @api_key, values)
+          refresh_from(response, api_key)
+        end
+        self
+      end
+      def serialize_metadata
+        if @unsaved_values.include?(:metadata)
+          # the metadata object has been reassigned
+          # i.e. as object.metadata = {key => val}
+          metadata_update = @values[:metadata]  # new hash
+          new_keys = metadata_update.keys.map(&:to_sym)
+          # remove keys at the server, but not known locally
+          keys_to_unset = @previous_metadata.keys - new_keys
+          keys_to_unset.each {|key| metadata_update[key] = ''}
+          metadata_update
+        else
+          # metadata is a PingppObject, and can be serialized normally
+          serialize_params(@values[:metadata])
+        end
+      end
+      def serialize_params(obj)
+        case obj
+        when nil
+          ''
+        when PingppObject
+          unsaved_keys = obj.instance_variable_get(:@unsaved_values)
+          obj_values = obj.instance_variable_get(:@values)
+          update_hash = {}
+          unsaved_keys.each do |k|
+            update_hash[k] = serialize_params(obj_values[k])
+          end
+          update_hash
+        else
+          obj
+        end
+      end
+    end
+  end
+end

data/lib/pingpp/api_resource.rb ADDED Viewed

@@ -0,0 +1,33 @@
+module Pingpp
+  class APIResource < PingppObject
+    def self.class_name
+      self.name.split('::')[-1]
+    end
+    def self.url()
+      if self == APIResource
+        raise NotImplementedError.new('APIResource is an abstract class.  You should perform actions on its subclasses (Charge, etc.)')
+      end
+      "/v1/#{CGI.escape(class_name.downcase)}s"
+    end
+    def url
+      unless id = self['id']
+        raise InvalidRequestError.new("Could not determine which URL to request: #{self.class} instance has invalid ID: #{id.inspect}", 'id')
+      end
+      "#{self.class.url}/#{CGI.escape(id)}"
+    end
+    def refresh
+      response, api_key = Pingpp.request(:get, url, @api_key, @retrieve_options)
+      refresh_from(response, api_key)
+      self
+    end
+    def self.retrieve(id, api_key=nil)
+      instance = self.new(id, api_key)
+      instance.refresh
+      instance
+    end
+  end
+end

data/lib/pingpp/certificate_blacklist.rb ADDED Viewed

@@ -0,0 +1,53 @@
+require 'uri'
+require 'digest/sha1'
+module Pingpp
+  module CertificateBlacklist
+    BLACKLIST = {
+      "api.pingplusplus.com" => [
+        '05c0b3643694470a888c6e7feb5c9e24e823dc53',
+        '5b7dc7fbc98d78bf76d4d4fa6f597a0c901fad5c',
+      ]
+    }
+    # Preflight the SSL certificate presented by the backend. This isn't 100%
+    # bulletproof, in that we're not actually validating the transport used to
+    # communicate with Pingpp, merely that the first attempt to does not use a
+    # revoked certificate.
+    # Unfortunately the interface to OpenSSL doesn't make it easy to check the
+    # certificate before sending potentially sensitive data on the wire. This
+    # approach raises the bar for an attacker significantly.
+    def self.check_ssl_cert(uri, ca_file)
+      uri = URI.parse(uri)
+      sock = TCPSocket.new(uri.host, uri.port)
+      ctx = OpenSSL::SSL::SSLContext.new
+      ctx.set_params(:verify_mode => OpenSSL::SSL::VERIFY_PEER,
+                     :ca_file => ca_file)
+      socket = OpenSSL::SSL::SSLSocket.new(sock, ctx)
+      socket.connect
+      certificate = socket.peer_cert.to_der
+      fingerprint = Digest::SHA1.hexdigest(certificate)
+      if blacklisted_certs = BLACKLIST[uri.host]
+        if blacklisted_certs.include?(fingerprint)
+          raise APIConnectionError.new(
+            "Invalid server certificate. You tried to connect to a server that" +
+            "has a revoked SSL certificate, which means we cannot securely send" +
+            "data to that server. Please email support@pingplusplus.com if you need" +
+            "help connecting to the correct API server."
+          )
+        end
+      end
+      socket.close
+      return true
+    end
+  end
+end

data/lib/pingpp/channel.rb ADDED Viewed

@@ -0,0 +1,9 @@
+module Pingpp
+  class Channel
+    ALIPAY = "alipay"
+    WECHAT = "wx"
+    UPMP = "upmp"
+    ALIPAY_WAP = "alipay_wap"
+    UPMP_WAP = "upmp_wap"
+  end
+end

data/lib/pingpp/charge.rb ADDED Viewed

@@ -0,0 +1,19 @@
+module Pingpp
+  class Charge < APIResource
+    include Pingpp::APIOperations::List
+    include Pingpp::APIOperations::Create
+    include Pingpp::APIOperations::Update
+    def refund(params={})
+      response, api_key = Pingpp.request(:post, refund_url, @api_key, params)
+      refresh_from(response, api_key)
+      self
+    end
+    private
+    def refund_url
+      url + '/refunds'
+    end
+  end
+end

data/lib/pingpp/errors/api_connection_error.rb ADDED Viewed

@@ -0,0 +1,4 @@
+module Pingpp
+  class APIConnectionError < PingppError
+  end
+end

data/lib/pingpp/errors/api_error.rb ADDED Viewed

@@ -0,0 +1,4 @@
+module Pingpp
+  class APIError < PingppError
+  end
+end

data/lib/pingpp/errors/authentication_error.rb ADDED Viewed

@@ -0,0 +1,4 @@
+module Pingpp
+  class AuthenticationError < PingppError
+  end
+end

data/lib/pingpp/errors/invalid_request_error.rb ADDED Viewed

@@ -0,0 +1,10 @@
+module Pingpp
+  class InvalidRequestError < PingppError
+    attr_accessor :param
+    def initialize(message, param, http_status=nil, http_body=nil, json_body=nil)
+      super(message, http_status, http_body, json_body)
+      @param = param
+    end
+  end
+end

data/lib/pingpp/errors/pingpp_error.rb ADDED Viewed

@@ -0,0 +1,20 @@
+module Pingpp
+  class PingppError < StandardError
+    attr_reader :message
+    attr_reader :http_status
+    attr_reader :http_body
+    attr_reader :json_body
+    def initialize(message=nil, http_status=nil, http_body=nil, json_body=nil)
+      @message = message
+      @http_status = http_status
+      @http_body = http_body
+      @json_body = json_body
+    end
+    def to_s
+      status_string = @http_status.nil? ? "" : "(Status #{@http_status}) "
+      "#{status_string}#{@message}"
+    end
+  end
+end

data/lib/pingpp/list_object.rb ADDED Viewed

@@ -0,0 +1,35 @@
+module Pingpp
+  class ListObject < PingppObject
+    def [](k)
+      case k
+      when String, Symbol
+        super
+      else
+        raise ArgumentError.new("You tried to access the #{k.inspect} index, but ListObject types only support String keys. (HINT: List calls return an object with a 'data' (which is the data array). You likely want to call #data[#{k.inspect}])")
+      end
+    end
+    def each(&blk)
+      self.data.each(&blk)
+    end
+    def retrieve(id, api_key=nil)
+      api_key ||= @api_key
+      response, api_key = Pingpp.request(:get,"#{url}/#{CGI.escape(id)}", api_key)
+      Util.convert_to_pingpp_object(response, api_key)
+    end
+    def create(params={}, api_key=nil)
+      api_key ||= @api_key
+      response, api_key = Pingpp.request(:post, url, api_key, params)
+      Util.convert_to_pingpp_object(response, api_key)
+    end
+    def all(params={}, api_key=nil)
+      api_key ||= @api_key
+      response, api_key = Pingpp.request(:get, url, api_key, params)
+      Util.convert_to_pingpp_object(response, api_key)
+    end
+  end
+end

data/lib/pingpp/pingpp_object.rb ADDED Viewed

@@ -0,0 +1,187 @@
+module Pingpp
+  class PingppObject
+    include Enumerable
+    attr_accessor :api_key
+    @@permanent_attributes = Set.new([:api_key, :id])
+    # The default :id method is deprecated and isn't useful to us
+    if method_defined?(:id)
+      undef :id
+    end
+    def initialize(id=nil, api_key=nil)
+      # parameter overloading!
+      if id.kind_of?(Hash)
+        @retrieve_options = id.dup
+        @retrieve_options.delete(:id)
+        id = id[:id]
+      else
+        @retrieve_options = {}
+      end
+      @api_key = api_key
+      @values = {}
+      # This really belongs in APIResource, but not putting it there allows us
+      # to have a unified inspect method
+      @unsaved_values = Set.new
+      @transient_values = Set.new
+      @values[:id] = id if id
+    end
+    def self.construct_from(values, api_key=nil)
+      obj = self.new(values[:id], api_key)
+      obj.refresh_from(values, api_key)
+      obj
+    end
+    def to_s(*args)
+      JSON.pretty_generate(@values)
+    end
+    def inspect()
+      id_string = (self.respond_to?(:id) && !self.id.nil?) ? " id=#{self.id}" : ""
+      "#<#{self.class}:0x#{self.object_id.to_s(16)}#{id_string}> JSON: " + JSON.pretty_generate(@values)
+    end
+    def refresh_from(values, api_key, partial=false)
+      @api_key = api_key
+      @previous_metadata = values[:metadata]
+      removed = partial ? Set.new : Set.new(@values.keys - values.keys)
+      added = Set.new(values.keys - @values.keys)
+      instance_eval do
+        remove_accessors(removed)
+        add_accessors(added)
+      end
+      removed.each do |k|
+        @values.delete(k)
+        @transient_values.add(k)
+        @unsaved_values.delete(k)
+      end
+      values.each do |k, v|
+        @values[k] = Util.convert_to_pingpp_object(v, api_key)
+        @transient_values.delete(k)
+        @unsaved_values.delete(k)
+      end
+    end
+    def [](k)
+      @values[k.to_sym]
+    end
+    def []=(k, v)
+      send(:"#{k}=", v)
+    end
+    def keys
+      @values.keys
+    end
+    def values
+      @values.values
+    end
+    def to_json(*a)
+      JSON.generate(@values)
+    end
+    def as_json(*a)
+      @values.as_json(*a)
+    end
+    def to_hash
+      @values.inject({}) do |acc, (key, value)|
+        acc[key] = value.respond_to?(:to_hash) ? value.to_hash : value
+        acc
+      end
+    end
+    def each(&blk)
+      @values.each(&blk)
+    end
+    def _dump(level)
+      Marshal.dump([@values, @api_key])
+    end
+    def self._load(args)
+      values, api_key = Marshal.load(args)
+      construct_from(values, api_key)
+    end
+    if RUBY_VERSION < '1.9.2'
+      def respond_to?(symbol)
+        @values.has_key?(symbol) || super
+      end
+    end
+    protected
+    def metaclass
+      class << self; self; end
+    end
+    def remove_accessors(keys)
+      metaclass.instance_eval do
+        keys.each do |k|
+          next if @@permanent_attributes.include?(k)
+          k_eq = :"#{k}="
+          remove_method(k) if method_defined?(k)
+          remove_method(k_eq) if method_defined?(k_eq)
+        end
+      end
+    end
+    def add_accessors(keys)
+      metaclass.instance_eval do
+        keys.each do |k|
+          next if @@permanent_attributes.include?(k)
+          k_eq = :"#{k}="
+          define_method(k) { @values[k] }
+          define_method(k_eq) do |v|
+            if v == ""
+              raise ArgumentError.new(
+                "You cannot set #{k} to an empty string." +
+                "We interpret empty strings as nil in requests." +
+                "You may set #{self}.#{k} = nil to delete the property.")
+            end
+            @values[k] = v
+            @unsaved_values.add(k)
+          end
+        end
+      end
+    end
+    def method_missing(name, *args)
+      # TODO: only allow setting in updateable classes.
+      if name.to_s.end_with?('=')
+        attr = name.to_s[0...-1].to_sym
+        add_accessors([attr])
+        begin
+          mth = method(name)
+        rescue NameError
+          raise NoMethodError.new("Cannot set #{attr} on this object. HINT: you can't set: #{@@permanent_attributes.to_a.join(', ')}")
+        end
+        return mth.call(args[0])
+      else
+        return @values[name] if @values.has_key?(name)
+      end
+      begin
+        super
+      rescue NoMethodError => e
+        if @transient_values.include?(name)
+          raise NoMethodError.new(e.message + ".  HINT: The '#{name}' attribute was set in the past, however.  It was then wiped when refreshing the object with the result returned by Pingpp's API, probably as a result of a save().  The attributes currently available on this object are: #{@values.keys.join(', ')}")
+        else
+          raise
+        end
+      end
+    end
+    def respond_to_missing?(symbol, include_private = false)
+      @values && @values.has_key?(symbol) || super
+    end
+  end
+end

data/lib/pingpp/refund.rb ADDED Viewed

@@ -0,0 +1,14 @@
+module Pingpp
+  class Refund < APIResource
+    include Pingpp::APIOperations::Update
+    include Pingpp::APIOperations::List
+    def url
+      "#{Charge.url}/#{CGI.escape(charge)}/refunds/#{CGI.escape(id)}"
+    end
+    def self.retrieve(id, api_key=nil)
+      raise NotImplementedError.new("Refunds cannot be retrieved without a charge ID. Retrieve a refund using charge.refunds.retrieve('refund_id')")
+    end
+  end
+end

data/lib/pingpp/singleton_api_resource.rb ADDED Viewed

@@ -0,0 +1,20 @@
+module Pingpp
+  class SingletonAPIResource < APIResource
+    def self.url()
+      if self == SingletonAPIResource
+        raise NotImplementedError.new('SingletonAPIResource is an abstract class.  You should perform actions on its subclasses (Account, etc.)')
+      end
+      "/v1/#{CGI.escape(class_name.downcase)}"
+    end
+    def url
+      self.class.url
+    end
+    def self.retrieve(api_key=nil)
+      instance = self.new(nil, api_key)
+      instance.refresh
+      instance
+    end
+  end
+end

data/lib/pingpp/util.rb ADDED Viewed

@@ -0,0 +1,99 @@
+module Pingpp
+  module Util
+    def self.objects_to_ids(h)
+      case h
+      when APIResource
+        h.id
+      when Hash
+        res = {}
+        h.each { |k, v| res[k] = objects_to_ids(v) unless v.nil? }
+        res
+      when Array
+        h.map { |v| objects_to_ids(v) }
+      else
+        h
+      end
+    end
+    def self.object_classes
+      @object_classes ||= {
+        'charge' => Charge,
+        'list' => ListObject,
+      }
+    end
+    def self.convert_to_pingpp_object(resp, api_key)
+      case resp
+      when Array
+        resp.map { |i| convert_to_pingpp_object(i, api_key) }
+      when Hash
+        # Try converting to a known object class.  If none available, fall back to generic PingppObject
+        object_classes.fetch(resp[:object], PingppObject).construct_from(resp, api_key)
+      else
+        resp
+      end
+    end
+    def self.file_readable(file)
+      # This is nominally equivalent to File.readable?, but that can
+      # report incorrect results on some more oddball filesystems
+      # (such as AFS)
+      begin
+        File.open(file) { |f| }
+      rescue
+        false
+      else
+        true
+      end
+    end
+    def self.symbolize_names(object)
+      case object
+      when Hash
+        new = {}
+        object.each do |key, value|
+          key = (key.to_sym rescue key) || key
+          new[key] = symbolize_names(value)
+        end
+        new
+      when Array
+        object.map { |value| symbolize_names(value) }
+      else
+        object
+      end
+    end
+    def self.url_encode(key)
+      URI.escape(key.to_s, Regexp.new("[^#{URI::PATTERN::UNRESERVED}]"))
+    end
+    def self.flatten_params(params, parent_key=nil)
+      result = []
+      params.each do |key, value|
+        calculated_key = parent_key ? "#{parent_key}[#{url_encode(key)}]" : url_encode(key)
+        if value.is_a?(Hash)
+          result += flatten_params(value, calculated_key)
+        elsif value.is_a?(Array)
+          result += flatten_params_array(value, calculated_key)
+        else
+          result << [calculated_key, value]
+        end
+      end
+      result
+    end
+    def self.flatten_params_array(value, calculated_key)
+      result = []
+      value.each do |elem|
+        if elem.is_a?(Hash)
+          result += flatten_params(elem, calculated_key)
+        elsif elem.is_a?(Array)
+          result += flatten_params_array(elem, calculated_key)
+        else
+          result << ["#{calculated_key}[]", elem]
+        end
+      end
+      result
+    end
+  end
+end

data/lib/pingpp/version.rb ADDED Viewed

@@ -0,0 +1,3 @@
+module Pingpp
+  VERSION = '1.0.2'
+end