rotp 4.0.2 → 4.1.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.travis.yml +4 -4
- data/CHANGELOG.md +6 -0
- data/Dockerfile-2.0 +11 -0
- data/Dockerfile-2.5 +10 -0
- data/Dockerfile-2.6 +11 -0
- data/README.md +21 -4
- data/lib/rotp/arguments.rb +4 -0
- data/lib/rotp/cli.rb +2 -2
- data/lib/rotp/otp.rb +2 -2
- data/lib/rotp/version.rb +1 -1
- data/spec/lib/rotp/cli_spec.rb +16 -0
- metadata +6 -12
- data/Dockerfile-1.9 +0 -15
- data/Dockerfile-2.1 +0 -16
- data/Dockerfile-2.3 +0 -16
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 72a52a1f0f26257e83977969144abf6324fee40c65ef4f6b3b910d30c3bb1e36
|
|
4
|
+
data.tar.gz: 212a5ca91186490c07221f7f17e4d39cc05778b89ebf22cf53712de2cfb8944a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 41b36b57154571a35d8d3f59961c3f1754c2bfb3bf06e2a29e2360b24ba884e7d632f86d3d5491341034a30654ba971d96bfcfecae85687a701230cf8e4523ba
|
|
7
|
+
data.tar.gz: d70217238c2d859b674f9cc702e9ffcb4fcb5cdf3a75d9b40306d0dee8f28198363d6001510e2cbc2b507d24cb753127d602b6dec211da77287d7ac04fabef98
|
data/.travis.yml
CHANGED
data/CHANGELOG.md
CHANGED
data/Dockerfile-2.0
ADDED
data/Dockerfile-2.5
ADDED
data/Dockerfile-2.6
ADDED
data/README.md
CHANGED
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
[](https://travis-ci.org/mdp/rotp)
|
|
4
4
|
[](https://rubygems.org/gems/rotp)
|
|
5
|
+
[](https://www.rubydoc.info/github/mdp/rotp/master)
|
|
5
6
|
[](https://github.com/mdp/rotp/blob/master/LICENSE)
|
|
6
7
|
|
|
7
8
|
A ruby library for generating and validating one time passwords (HOTP & TOTP) according to [RFC 4226](http://tools.ietf.org/html/rfc4226) and [RFC 6238](http://tools.ietf.org/html/rfc6238).
|
|
@@ -72,14 +73,17 @@ User.find(someUserID)
|
|
|
72
73
|
totp = ROTP::TOTP.new(user.otp_secret)
|
|
73
74
|
totp.now # => "492039"
|
|
74
75
|
|
|
76
|
+
# Let's take a look at the last time the user authenticated with an OTP
|
|
75
77
|
user.last_otp_at # => 1432703530
|
|
76
78
|
|
|
77
79
|
# Verify the OTP
|
|
78
80
|
last_otp_at = totp.verify("492039", after: user.last_otp_at) #=> 1472145760
|
|
79
81
|
# ROTP returns the timestamp(int) of the current period
|
|
82
|
+
|
|
80
83
|
# Store this on the user's account
|
|
81
84
|
user.update(last_otp_at: last_otp_at)
|
|
82
|
-
|
|
85
|
+
|
|
86
|
+
# Someone attempts to reuse the OTP inside the 30s window
|
|
83
87
|
last_otp_at = totp.verify("492039", after: user.last_otp_at) #=> nil
|
|
84
88
|
# It fails to verify because we are still in the same 30s interval window
|
|
85
89
|
```
|
|
@@ -115,8 +119,11 @@ Provisioning URI's generated by ROTP are compatible with most One Time Password
|
|
|
115
119
|
Google Authenticator.
|
|
116
120
|
|
|
117
121
|
```ruby
|
|
118
|
-
totp.
|
|
119
|
-
|
|
122
|
+
totp = ROTP::TOTP.new("base32secret3232", issuer: "My Service")
|
|
123
|
+
totp.provisioning_uri("alice@google.com") # => 'otpauth://totp/My%20Service:alice@google.com?secret=base32secret3232&issuer=My+Service'
|
|
124
|
+
|
|
125
|
+
hotp = ROTP::HOTP.new("base32secret3232", issuer: "My Service")
|
|
126
|
+
hotp.provisioning_uri("alice@google.com", 0) # => 'otpauth://hotp/alice@google.com?secret=base32secret3232&counter=0'
|
|
120
127
|
```
|
|
121
128
|
|
|
122
129
|
This can then be rendered as a QR Code which the user can scan using their mobile phone and the appropriate application.
|
|
@@ -143,6 +150,16 @@ bundle install
|
|
|
143
150
|
bundle exec rspec
|
|
144
151
|
```
|
|
145
152
|
|
|
153
|
+
### Testign with Docker
|
|
154
|
+
|
|
155
|
+
In order to make it easier to test against different ruby version, ROTP comes
|
|
156
|
+
with a set of Dockerfiles for each version that we test against in Travis
|
|
157
|
+
|
|
158
|
+
```bash
|
|
159
|
+
docker build -f Dockerfile-2.6 -t rotp_2.6 .
|
|
160
|
+
docker run --rm -v $(pwd):/usr/src/app rotp_2.6
|
|
161
|
+
```
|
|
162
|
+
|
|
146
163
|
## Executable Usage
|
|
147
164
|
|
|
148
165
|
The rotp rubygem includes an executable for helping with testing and debugging
|
|
@@ -162,7 +179,7 @@ Have a look at the [contributors graph](https://github.com/mdp/rotp/graphs/contr
|
|
|
162
179
|
|
|
163
180
|
## License
|
|
164
181
|
|
|
165
|
-
MIT Copyright (C)
|
|
182
|
+
MIT Copyright (C) 2019 by Mark Percival, see [LICENSE](https://github.com/mdp/rotp/blob/master/LICENSE) for details.
|
|
166
183
|
|
|
167
184
|
## Other implementations
|
|
168
185
|
|
data/lib/rotp/arguments.rb
CHANGED
|
@@ -68,6 +68,10 @@ module ROTP
|
|
|
68
68
|
parser.on_tail('-h', '--help', 'Show this message') do
|
|
69
69
|
options!.mode = :help
|
|
70
70
|
end
|
|
71
|
+
|
|
72
|
+
parser.on('-d', '--digest [ALGORITHM]', 'Use algorithm for the digest (default sha1)') do |digest|
|
|
73
|
+
options!.digest = digest
|
|
74
|
+
end
|
|
71
75
|
end
|
|
72
76
|
end
|
|
73
77
|
|
data/lib/rotp/cli.rb
CHANGED
|
@@ -31,9 +31,9 @@ module ROTP
|
|
|
31
31
|
return arguments.to_s if options.mode == :help
|
|
32
32
|
|
|
33
33
|
if options.mode == :time
|
|
34
|
-
ROTP::TOTP.new(options.secret).now
|
|
34
|
+
ROTP::TOTP.new(options.secret, options).now
|
|
35
35
|
elsif options.mode == :hmac
|
|
36
|
-
ROTP::HOTP.new(options.secret).at options.counter
|
|
36
|
+
ROTP::HOTP.new(options.secret, options).at options.counter
|
|
37
37
|
end
|
|
38
38
|
end
|
|
39
39
|
|
data/lib/rotp/otp.rb
CHANGED
|
@@ -5,10 +5,10 @@ module ROTP
|
|
|
5
5
|
|
|
6
6
|
# @param [String] secret in the form of base32
|
|
7
7
|
# @option options digits [Integer] (6)
|
|
8
|
-
# Number of integers in the OTP
|
|
8
|
+
# Number of integers in the OTP.
|
|
9
9
|
# Google Authenticate only supports 6 currently
|
|
10
10
|
# @option options digest [String] (sha1)
|
|
11
|
-
# Digest used in the HMAC
|
|
11
|
+
# Digest used in the HMAC.
|
|
12
12
|
# Google Authenticate only supports 'sha1' currently
|
|
13
13
|
# @returns [OTP] OTP instantiation
|
|
14
14
|
def initialize(s, options = {})
|
data/lib/rotp/version.rb
CHANGED
data/spec/lib/rotp/cli_spec.rb
CHANGED
|
@@ -18,6 +18,14 @@ RSpec.describe ROTP::CLI do
|
|
|
18
18
|
end
|
|
19
19
|
end
|
|
20
20
|
|
|
21
|
+
context 'generating a TOTP with sha256 digest' do
|
|
22
|
+
let(:argv) { %w[--secret JBSWY3DPEHPK3PXP --digest sha256] }
|
|
23
|
+
|
|
24
|
+
it 'prints the corresponding token' do
|
|
25
|
+
expect(output).to eq '544902'
|
|
26
|
+
end
|
|
27
|
+
end
|
|
28
|
+
|
|
21
29
|
context 'generating a TOTP with no secret' do
|
|
22
30
|
let(:argv) { %w[--time --secret] }
|
|
23
31
|
|
|
@@ -49,4 +57,12 @@ RSpec.describe ROTP::CLI do
|
|
|
49
57
|
expect(output).to eq '161024'
|
|
50
58
|
end
|
|
51
59
|
end
|
|
60
|
+
|
|
61
|
+
context 'generating a HOTP' do
|
|
62
|
+
let(:argv) { %W[--hmac --secret #{'a' * 32} --counter 1234 --digest sha256] }
|
|
63
|
+
|
|
64
|
+
it 'prints the corresponding token' do
|
|
65
|
+
expect(output).to eq '325941'
|
|
66
|
+
end
|
|
67
|
+
end
|
|
52
68
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: rotp
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 4.0
|
|
4
|
+
version: 4.1.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Mark Percival
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2019-02-28 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: addressable
|
|
@@ -92,9 +92,9 @@ files:
|
|
|
92
92
|
- ".gitignore"
|
|
93
93
|
- ".travis.yml"
|
|
94
94
|
- CHANGELOG.md
|
|
95
|
-
- Dockerfile-
|
|
96
|
-
- Dockerfile-2.
|
|
97
|
-
- Dockerfile-2.
|
|
95
|
+
- Dockerfile-2.0
|
|
96
|
+
- Dockerfile-2.5
|
|
97
|
+
- Dockerfile-2.6
|
|
98
98
|
- Gemfile
|
|
99
99
|
- Guardfile
|
|
100
100
|
- LICENSE
|
|
@@ -158,10 +158,4 @@ rubygems_version: 2.7.6
|
|
|
158
158
|
signing_key:
|
|
159
159
|
specification_version: 4
|
|
160
160
|
summary: A Ruby library for generating and verifying one time passwords
|
|
161
|
-
test_files:
|
|
162
|
-
- spec/lib/rotp/arguments_spec.rb
|
|
163
|
-
- spec/lib/rotp/base32_spec.rb
|
|
164
|
-
- spec/lib/rotp/cli_spec.rb
|
|
165
|
-
- spec/lib/rotp/hotp_spec.rb
|
|
166
|
-
- spec/lib/rotp/totp_spec.rb
|
|
167
|
-
- spec/spec_helper.rb
|
|
161
|
+
test_files: []
|
data/Dockerfile-1.9
DELETED
|
@@ -1,15 +0,0 @@
|
|
|
1
|
-
FROM ruby:1.9
|
|
2
|
-
|
|
3
|
-
# throw errors if Gemfile has been modified since Gemfile.lock
|
|
4
|
-
RUN bundle config --global frozen 1
|
|
5
|
-
|
|
6
|
-
RUN mkdir -p /usr/src/app
|
|
7
|
-
WORKDIR /usr/src/app
|
|
8
|
-
|
|
9
|
-
COPY Gemfile /usr/src/app/
|
|
10
|
-
COPY Gemfile.lock /usr/src/app/
|
|
11
|
-
COPY . /usr/src/app
|
|
12
|
-
RUN bundle install
|
|
13
|
-
|
|
14
|
-
CMD ["bundler", "exec", "rspec"]
|
|
15
|
-
|
data/Dockerfile-2.1
DELETED
|
@@ -1,16 +0,0 @@
|
|
|
1
|
-
FROM ruby:2.1
|
|
2
|
-
|
|
3
|
-
# throw errors if Gemfile has been modified since Gemfile.lock
|
|
4
|
-
RUN bundle config --global frozen 1
|
|
5
|
-
|
|
6
|
-
RUN mkdir -p /usr/src/app
|
|
7
|
-
WORKDIR /usr/src/app
|
|
8
|
-
|
|
9
|
-
COPY Gemfile /usr/src/app/
|
|
10
|
-
COPY Gemfile.lock /usr/src/app/
|
|
11
|
-
COPY . /usr/src/app
|
|
12
|
-
RUN bundle install
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
CMD ["bundler", "exec", "rspec"]
|
|
16
|
-
|
data/Dockerfile-2.3
DELETED
|
@@ -1,16 +0,0 @@
|
|
|
1
|
-
FROM ruby:2.3
|
|
2
|
-
|
|
3
|
-
# throw errors if Gemfile has been modified since Gemfile.lock
|
|
4
|
-
RUN bundle config --global frozen 1
|
|
5
|
-
|
|
6
|
-
RUN mkdir -p /usr/src/app
|
|
7
|
-
WORKDIR /usr/src/app
|
|
8
|
-
|
|
9
|
-
COPY Gemfile /usr/src/app/
|
|
10
|
-
COPY Gemfile.lock /usr/src/app/
|
|
11
|
-
COPY . /usr/src/app
|
|
12
|
-
RUN bundle install
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
CMD ["bundler", "exec", "rspec"]
|
|
16
|
-
|