polar-ruby 0.1.0

data/lib/polar/webhooks.rb

@@ -0,0 +1,174 @@
+# frozen_string_literal: true
+
+require 'openssl'
+require 'base64'
+
+module Polar
+  module Webhooks
+    class << self
+      # Validate webhook event signature
+      # @param payload [String] The raw request body
+      # @param headers [Hash] The request headers
+      # @param secret [String] The webhook secret
+      # @return [Hash] The validated event data
+      # @raise [WebhookVerificationError] If signature verification fails
+      def validate_event(payload, headers, secret)
+        timestamp = extract_timestamp(headers)
+        signature = extract_signature(headers)
+
+        verify_timestamp(timestamp)
+        verify_signature(payload, timestamp, signature, secret)
+
+        JSON.parse(payload)
+      rescue JSON::ParserError => e
+        raise WebhookError, "Invalid JSON payload: #{e.message}"
+      end
+
+      # Verify webhook signature without parsing payload
+      # @param payload [String] The raw request body
+      # @param timestamp [String] The timestamp from headers
+      # @param signature [String] The signature from headers
+      # @param secret [String] The webhook secret
+      # @return [Boolean] True if signature is valid
+      def verify_signature(payload, timestamp, signature, secret)
+        expected_signature = compute_signature(payload, timestamp, secret)
+
+        raise WebhookVerificationError, 'Invalid webhook signature' unless secure_compare(signature, expected_signature)
+
+        true
+      end
+
+      # Extract timestamp from webhook headers
+      # @param headers [Hash] The request headers
+      # @return [String] The timestamp
+      def extract_timestamp(headers)
+        timestamp = headers['polar-timestamp'] || headers['Polar-Timestamp']
+
+        raise WebhookVerificationError, 'Missing polar-timestamp header' unless timestamp
+
+        timestamp
+      end
+
+      # Extract signature from webhook headers
+      # @param headers [Hash] The request headers
+      # @return [String] The signature
+      def extract_signature(headers)
+        signature = headers['polar-signature'] || headers['Polar-Signature']
+
+        raise WebhookVerificationError, 'Missing polar-signature header' unless signature
+
+        # Remove the signature prefix if present (e.g., "v1=signature")
+        signature.split('=').last
+      end
+
+      # Verify timestamp is within tolerance
+      # @param timestamp [String] The timestamp to verify
+      # @param tolerance [Integer] Maximum age in seconds (default: 300 = 5 minutes)
+      def verify_timestamp(timestamp, tolerance: 300)
+        begin
+          webhook_time = Time.at(timestamp.to_i)
+        rescue ArgumentError
+          raise WebhookVerificationError, 'Invalid timestamp format'
+        end
+
+        current_time = Time.now
+        age = current_time - webhook_time
+
+        raise WebhookVerificationError, "Webhook timestamp too old (#{age.to_i}s > #{tolerance}s)" if age > tolerance
+
+        raise WebhookVerificationError, 'Webhook timestamp too far in future' if age < -tolerance
+
+        true
+      end
+
+      # Compute expected signature for payload
+      # @param payload [String] The raw request body
+      # @param timestamp [String] The timestamp
+      # @param secret [String] The webhook secret
+      # @return [String] The computed signature
+      def compute_signature(payload, timestamp, secret)
+        signed_payload = "#{timestamp}.#{payload}"
+
+        OpenSSL::HMAC.hexdigest(
+          OpenSSL::Digest.new('sha256'),
+          secret,
+          signed_payload
+        )
+      end
+
+      # Secure string comparison to prevent timing attacks
+      # @param a [String] First string
+      # @param b [String] Second string
+      # @return [Boolean] True if strings are equal
+      def secure_compare(a, b)
+        return false unless a.length == b.length
+
+        result = 0
+        a.bytes.zip(b.bytes) { |x, y| result |= x ^ y }
+        result == 0
+      end
+
+      # Parse webhook event type from payload
+      # @param payload [String, Hash] The webhook payload
+      # @return [String] The event type
+      def parse_event_type(payload)
+        data = payload.is_a?(String) ? JSON.parse(payload) : payload
+        data['type'] || data['event_type']
+      rescue JSON::ParserError
+        nil
+      end
+
+      # Check if event is a specific type
+      # @param payload [String, Hash] The webhook payload
+      # @param event_type [String] The expected event type
+      # @return [Boolean] True if event matches type
+      def event_type?(payload, event_type)
+        parse_event_type(payload) == event_type
+      end
+    end
+
+    # Webhook event wrapper class
+    class Event
+      attr_reader :id, :type, :created_at, :data, :raw_payload
+
+      def initialize(payload)
+        @raw_payload = payload.is_a?(String) ? payload : payload.to_json
+        parsed = payload.is_a?(String) ? JSON.parse(payload) : payload
+
+        @id = parsed['id']
+        @type = parsed['type'] || parsed['event_type']
+        @created_at = parsed['created_at'] ? Time.parse(parsed['created_at']) : nil
+        @data = parsed['data'] || parsed
+      end
+
+      def subscription_event?
+        type&.start_with?('subscription.')
+      end
+
+      def order_event?
+        type&.start_with?('order.')
+      end
+
+      def payment_event?
+        type&.start_with?('payment.')
+      end
+
+      def customer_event?
+        type&.start_with?('customer.')
+      end
+
+      def benefit_event?
+        type&.start_with?('benefit.')
+      end
+
+      def to_h
+        {
+          id: id,
+          type: type,
+          created_at: created_at,
+          data: data
+        }
+      end
+    end
+  end
+end

data/lib/polar.rb

@@ -0,0 +1,65 @@
+# frozen_string_literal: true
+
+require 'faraday'
+require 'faraday/retry'
+require 'faraday/multipart'
+require 'jwt'
+require 'json'
+
+require_relative 'polar/version'
+require_relative 'polar/configuration'
+require_relative 'polar/errors'
+require_relative 'polar/http_client'
+require_relative 'polar/authentication'
+require_relative 'polar/pagination'
+require_relative 'polar/webhooks'
+
+# Core API Resources
+require_relative 'polar/resources/base'
+require_relative 'polar/resources/organizations'
+require_relative 'polar/resources/products'
+require_relative 'polar/resources/customers'
+require_relative 'polar/resources/orders'
+require_relative 'polar/resources/payments'
+require_relative 'polar/resources/subscriptions'
+require_relative 'polar/resources/checkouts'
+require_relative 'polar/resources/benefits'
+require_relative 'polar/resources/license_keys'
+require_relative 'polar/resources/files'
+require_relative 'polar/resources/metrics'
+require_relative 'polar/resources/events'
+require_relative 'polar/resources/webhooks'
+require_relative 'polar/resources/oauth2'
+
+# Customer Portal API Resources
+require_relative 'polar/customer_portal/customers'
+require_relative 'polar/customer_portal/orders'
+require_relative 'polar/customer_portal/subscriptions'
+require_relative 'polar/customer_portal/benefit_grants'
+require_relative 'polar/customer_portal/license_keys'
+
+require_relative 'polar/client'
+
+module Polar
+  class Error < StandardError; end
+
+  class << self
+    # Configure the SDK with default settings
+    def configure
+      yield(configuration)
+    end
+
+    def configuration
+      @configuration ||= Configuration.new
+    end
+
+    def reset_configuration!
+      @configuration = nil
+    end
+
+    # Convenience method to create a new client
+    def new(options = {})
+      Client.new(options)
+    end
+  end
+end

metadata

@@ -0,0 +1,239 @@
+--- !ruby/object:Gem::Specification
+name: polar-ruby
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Hieu Nguyen
+bindir: exe
+cert_chain: []
+date: 1980-01-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: faraday
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: faraday-multipart
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: faraday-retry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.21'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.21'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.21'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.21'
+- !ruby/object:Gem::Dependency
+  name: vcr
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.0'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: yard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.9'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.9'
+description: A comprehensive Ruby SDK for Polar.sh, providing easy integration with
+  their payment infrastructure, subscription management, and merchant services.
+email:
+- hieunt150@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".rspec"
+- CHANGELOG.md
+- DEVELOPMENT.md
+- EXAMPLES.md
+- Gemfile
+- Gemfile.lock
+- LICENSE
+- PROJECT_SUMMARY.md
+- README.md
+- Rakefile
+- examples/demo.rb
+- lib/polar.rb
+- lib/polar/authentication.rb
+- lib/polar/client.rb
+- lib/polar/configuration.rb
+- lib/polar/customer_portal/benefit_grants.rb
+- lib/polar/customer_portal/customers.rb
+- lib/polar/customer_portal/license_keys.rb
+- lib/polar/customer_portal/orders.rb
+- lib/polar/customer_portal/subscriptions.rb
+- lib/polar/errors.rb
+- lib/polar/http_client.rb
+- lib/polar/pagination.rb
+- lib/polar/resources/base.rb
+- lib/polar/resources/benefits.rb
+- lib/polar/resources/checkouts.rb
+- lib/polar/resources/customers.rb
+- lib/polar/resources/events.rb
+- lib/polar/resources/files.rb
+- lib/polar/resources/license_keys.rb
+- lib/polar/resources/metrics.rb
+- lib/polar/resources/oauth2.rb
+- lib/polar/resources/orders.rb
+- lib/polar/resources/organizations.rb
+- lib/polar/resources/payments.rb
+- lib/polar/resources/products.rb
+- lib/polar/resources/subscriptions.rb
+- lib/polar/resources/webhooks.rb
+- lib/polar/version.rb
+- lib/polar/webhooks.rb
+homepage: https://github.com/hieunguyentrung/polar-ruby
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org
+  homepage_uri: https://github.com/hieunguyentrung/polar-ruby
+  source_code_uri: https://github.com/hieunguyentrung/polar-ruby
+  changelog_uri: https://github.com/hieunguyentrung/polar-ruby/blob/main/CHANGELOG.md
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.7.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.6.7
+specification_version: 4
+summary: Ruby SDK for Polar.sh payment infrastructure
+test_files: []