rbsso 0.1.0 → 0.2.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 75980e68e3d92bcfc59318aa7cdd6b36cc543ca6
-  data.tar.gz: bd94e5d7917823d74151cf238afaa2e92ca72a5a
+  metadata.gz: b6439a85993ed2c25cf7a18a36dee23e59e9ec14
+  data.tar.gz: bdba3aa011488b4f543758d44a3edd07e5c65129
 SHA512:
-  metadata.gz: f8572edfafd1de42e05e74c642225c648213bcb4e2d4223b4eecd58d598bffefa08e7c8f0cf49bf73d9b53577508bfb5dc550da06a5f708f872de6d328a15736
-  data.tar.gz: a06367346e63c690e1777cd8746d31f2da22612ec1d2ea8ce7253fd0f618e04eb97c6b46167a125999e73dc4abc1970d04959dd67f4d1b1672888aa72dc749c3
+  metadata.gz: 3886c8bfddd37a037a30763184a00851fe70df542fb05ec1184b361f14a619a9c910ab4596b24f8c92bff901140c35aced9acff3790b5d793185dee11b4e42f6
+  data.tar.gz: 1bf92c7714f70d2b9e9bd2d9b0c06b13d87a5d18fa7d3273552f036fbfa460b84b51984b84b0430919e0c63702be49d7cee5d2b786d49ea3f4540f322e8f175f

data/lib/rbsso/client.rb

@@ -5,10 +5,11 @@ require 'rbsso/content'
 module RbSSO
   class Client
 
-    def initialize(key)
+    def initialize(service, key)
       if !key || key !~ /[0-9a-f]{64}/i
         raise ArgumentError, "key MUST be 32 bytes, hex encoded string, was: #{key}"
       end
+      @service = service
       key = RbNaCl::VerifyKey.new [key].pack('H*')
       @verify_key = key
     end
@@ -16,10 +17,13 @@ module RbSSO
     def open(ticket_string)
       ticket = RbSSO::Ticket.open ticket_string, verify_key
       content = RbSSO::Content.parse ticket.content
+      if content.service != service
+        raise RuntimeError.new("Wrong service in ticket: #{content.service}")
+      end
       content.to_info
     end
 
     protected
-    attr_reader :verify_key
+    attr_reader :verify_key, :service
   end
 end

data/lib/rbsso/content.rb

@@ -2,6 +2,12 @@ module RbSSO
   class Content
     VERSION = 3
 
+    class VersionMismatch < ArgumentError
+      def initialize(version)
+        super "Version mismatch! Expected: #{VERSION} Got: #{version}."
+      end
+    end
+
     attr_reader :user, :service, :domain, :groups, :expires
 
     def initialize(user:, service:, domain:, groups: [], ttl: 3600, expires: nil)
@@ -11,10 +17,12 @@ module RbSSO
 
     def self.parse(string)
       version, user, service, domain, expires, groups = string.split '|'
-      groups ||= ''
-      groups = groups.split ','
-      expires = expires.to_i
-      new user: user, service: service, domain: domain, expires: expires, groups: groups
+      check_version(version)
+      new user: user,
+        service: service,
+        domain: domain,
+        expires: expires.to_i,
+        groups: (groups || '').split(',')
     end
 
     def to_s
@@ -37,5 +45,9 @@ module RbSSO
         expires == other.expires
     end
 
+    def self.check_version(version)
+      return if version.to_s == VERSION.to_s
+      raise VersionMismatch.new(version)
+    end
   end
 end

data/lib/rbsso/server.rb

@@ -1,5 +1,6 @@
-require 'rbsso/content'
+require 'rbnacl'
 require 'rbsso/ticket'
+require 'rbsso/content'
 
 module RbSSO
   class Server

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: rbsso
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.1
 platform: ruby
 authors:
 - Azul
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-01-12 00:00:00.000000000 Z
+date: 2017-01-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rbnacl
@@ -58,10 +58,66 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '5.0'
+- !ruby/object:Gem::Dependency
+  name: minitest-autotest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: autotest-suffix
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.11'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.11'
+- !ruby/object:Gem::Dependency
+  name: conventional-changelog
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.2'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.2'
 description: |
   This is a ruby version based on libsodium of "ai sso"(https://git.autistici.org/ai/sso).
 
-  We'll provide an omniauth strategy. It could also be used in bonafide server to sign sso tickets to be consumed by soledad server.
+  We provide an omniauth strategy. It could also be used in bonafide server to sign sso tickets to be consumed by soledad server.
 email: azul@riseup.net
 executables: []
 extensions: []
@@ -72,7 +128,7 @@ files:
 - lib/rbsso/content.rb
 - lib/rbsso/server.rb
 - lib/rbsso/ticket.rb
-homepage: https://0xacab.org/azul/rbsso
+homepage: https://0xacab.org/riseup/rbsso
 licenses:
 - MIT
 metadata: {}