rubygems-update 3.4.17 → 3.4.18
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +12 -0
- data/Manifest.txt +7 -4
- data/bundler/CHANGELOG.md +14 -0
- data/bundler/lib/bundler/build_metadata.rb +2 -2
- data/bundler/lib/bundler/man/bundle-outdated.1 +12 -8
- data/bundler/lib/bundler/man/bundle-outdated.1.ronn +12 -9
- data/bundler/lib/bundler/templates/newgem/ext/newgem/Cargo.toml.tt +1 -1
- data/bundler/lib/bundler/templates/newgem/ext/newgem/src/lib.rs.tt +4 -4
- data/bundler/lib/bundler/vendor/fileutils/lib/fileutils.rb +1 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri/rfc2396_parser.rb +2 -2
- data/bundler/lib/bundler/vendor/uri/lib/uri/rfc3986_parser.rb +1 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri/version.rb +1 -1
- data/bundler/lib/bundler/version.rb +1 -1
- data/{bin → exe}/gem +2 -0
- data/{bin → exe}/update_rubygems +7 -5
- data/lib/rubygems/available_set.rb +1 -0
- data/lib/rubygems/basic_specification.rb +1 -0
- data/lib/rubygems/command.rb +1 -0
- data/lib/rubygems/command_manager.rb +1 -0
- data/lib/rubygems/commands/build_command.rb +1 -0
- data/lib/rubygems/commands/cert_command.rb +1 -0
- data/lib/rubygems/commands/check_command.rb +1 -0
- data/lib/rubygems/commands/cleanup_command.rb +1 -0
- data/lib/rubygems/commands/contents_command.rb +1 -0
- data/lib/rubygems/commands/dependency_command.rb +1 -0
- data/lib/rubygems/commands/environment_command.rb +1 -0
- data/lib/rubygems/commands/exec_command.rb +1 -0
- data/lib/rubygems/commands/fetch_command.rb +1 -0
- data/lib/rubygems/commands/generate_index_command.rb +1 -0
- data/lib/rubygems/commands/help_command.rb +1 -0
- data/lib/rubygems/commands/install_command.rb +1 -0
- data/lib/rubygems/commands/list_command.rb +1 -0
- data/lib/rubygems/commands/lock_command.rb +1 -0
- data/lib/rubygems/commands/mirror_command.rb +1 -0
- data/lib/rubygems/commands/open_command.rb +1 -0
- data/lib/rubygems/commands/outdated_command.rb +1 -0
- data/lib/rubygems/commands/owner_command.rb +1 -0
- data/lib/rubygems/commands/pristine_command.rb +1 -0
- data/lib/rubygems/commands/push_command.rb +1 -0
- data/lib/rubygems/commands/query_command.rb +1 -0
- data/lib/rubygems/commands/rdoc_command.rb +1 -0
- data/lib/rubygems/commands/search_command.rb +1 -0
- data/lib/rubygems/commands/server_command.rb +1 -0
- data/lib/rubygems/commands/setup_command.rb +2 -1
- data/lib/rubygems/commands/signin_command.rb +1 -0
- data/lib/rubygems/commands/signout_command.rb +1 -0
- data/lib/rubygems/commands/sources_command.rb +1 -0
- data/lib/rubygems/commands/specification_command.rb +1 -0
- data/lib/rubygems/commands/stale_command.rb +1 -0
- data/lib/rubygems/commands/uninstall_command.rb +1 -0
- data/lib/rubygems/commands/unpack_command.rb +1 -0
- data/lib/rubygems/commands/update_command.rb +1 -0
- data/lib/rubygems/commands/which_command.rb +1 -0
- data/lib/rubygems/commands/yank_command.rb +1 -0
- data/lib/rubygems/config_file.rb +1 -0
- data/lib/rubygems/core_ext/kernel_require.rb +1 -0
- data/lib/rubygems/core_ext/tcpsocket_init.rb +2 -0
- data/lib/rubygems/defaults.rb +1 -0
- data/lib/rubygems/dependency.rb +1 -0
- data/lib/rubygems/dependency_installer.rb +1 -0
- data/lib/rubygems/dependency_list.rb +1 -0
- data/lib/rubygems/deprecate.rb +1 -0
- data/lib/rubygems/doctor.rb +1 -0
- data/lib/rubygems/errors.rb +1 -0
- data/lib/rubygems/ext/build_error.rb +1 -0
- data/lib/rubygems/ext/builder.rb +1 -0
- data/lib/rubygems/ext/configure_builder.rb +1 -0
- data/lib/rubygems/ext/ext_conf_builder.rb +1 -0
- data/lib/rubygems/ext.rb +1 -0
- data/lib/rubygems/gem_runner.rb +1 -0
- data/lib/rubygems/gemcutter_utilities/webauthn_listener/response.rb +163 -0
- data/lib/rubygems/gemcutter_utilities/webauthn_listener.rb +105 -0
- data/lib/rubygems/gemcutter_utilities/webauthn_poller.rb +78 -0
- data/lib/rubygems/gemcutter_utilities.rb +29 -24
- data/lib/rubygems/indexer.rb +1 -0
- data/lib/rubygems/install_default_message.rb +1 -0
- data/lib/rubygems/install_message.rb +1 -0
- data/lib/rubygems/install_update_options.rb +1 -0
- data/lib/rubygems/installer.rb +1 -0
- data/lib/rubygems/local_remote_options.rb +1 -0
- data/lib/rubygems/mock_gem_ui.rb +1 -0
- data/lib/rubygems/name_tuple.rb +1 -0
- data/lib/rubygems/package/digest_io.rb +1 -0
- data/lib/rubygems/package/file_source.rb +1 -0
- data/lib/rubygems/package/io_source.rb +1 -0
- data/lib/rubygems/package/old.rb +1 -0
- data/lib/rubygems/package/source.rb +1 -0
- data/lib/rubygems/package/tar_header.rb +1 -0
- data/lib/rubygems/package/tar_reader/entry.rb +1 -0
- data/lib/rubygems/package/tar_reader.rb +1 -0
- data/lib/rubygems/package/tar_writer.rb +1 -0
- data/lib/rubygems/package.rb +1 -0
- data/lib/rubygems/package_task.rb +1 -0
- data/lib/rubygems/path_support.rb +1 -0
- data/lib/rubygems/platform.rb +1 -0
- data/lib/rubygems/psych_tree.rb +1 -0
- data/lib/rubygems/rdoc.rb +1 -0
- data/lib/rubygems/remote_fetcher.rb +1 -0
- data/lib/rubygems/request/http_pool.rb +1 -0
- data/lib/rubygems/request/https_pool.rb +1 -0
- data/lib/rubygems/request.rb +1 -0
- data/lib/rubygems/request_set/gem_dependency_api.rb +1 -0
- data/lib/rubygems/request_set/lockfile/parser.rb +1 -0
- data/lib/rubygems/request_set/lockfile/tokenizer.rb +2 -0
- data/lib/rubygems/request_set/lockfile.rb +1 -0
- data/lib/rubygems/request_set.rb +1 -0
- data/lib/rubygems/requirement.rb +1 -0
- data/lib/rubygems/resolver/activation_request.rb +1 -0
- data/lib/rubygems/resolver/api_set.rb +1 -0
- data/lib/rubygems/resolver/api_specification.rb +1 -0
- data/lib/rubygems/resolver/best_set.rb +1 -0
- data/lib/rubygems/resolver/composed_set.rb +1 -0
- data/lib/rubygems/resolver/conflict.rb +1 -0
- data/lib/rubygems/resolver/current_set.rb +1 -0
- data/lib/rubygems/resolver/dependency_request.rb +1 -0
- data/lib/rubygems/resolver/git_set.rb +1 -0
- data/lib/rubygems/resolver/git_specification.rb +1 -0
- data/lib/rubygems/resolver/index_set.rb +1 -0
- data/lib/rubygems/resolver/index_specification.rb +1 -0
- data/lib/rubygems/resolver/installed_specification.rb +1 -0
- data/lib/rubygems/resolver/installer_set.rb +1 -0
- data/lib/rubygems/resolver/local_specification.rb +1 -0
- data/lib/rubygems/resolver/lock_set.rb +1 -0
- data/lib/rubygems/resolver/lock_specification.rb +1 -0
- data/lib/rubygems/resolver/molinillo.rb +1 -0
- data/lib/rubygems/resolver/requirement_list.rb +1 -0
- data/lib/rubygems/resolver/set.rb +1 -0
- data/lib/rubygems/resolver/source_set.rb +2 -0
- data/lib/rubygems/resolver/spec_specification.rb +1 -0
- data/lib/rubygems/resolver/specification.rb +1 -0
- data/lib/rubygems/resolver/stats.rb +1 -0
- data/lib/rubygems/resolver/vendor_set.rb +1 -0
- data/lib/rubygems/resolver/vendor_specification.rb +1 -0
- data/lib/rubygems/resolver.rb +1 -0
- data/lib/rubygems/s3_uri_signer.rb +4 -2
- data/lib/rubygems/safe_yaml.rb +2 -0
- data/lib/rubygems/security/policies.rb +1 -0
- data/lib/rubygems/security/policy.rb +1 -0
- data/lib/rubygems/security/signer.rb +1 -0
- data/lib/rubygems/security/trust_dir.rb +1 -0
- data/lib/rubygems/security.rb +1 -0
- data/lib/rubygems/security_option.rb +1 -0
- data/lib/rubygems/source/installed.rb +1 -0
- data/lib/rubygems/source/local.rb +1 -0
- data/lib/rubygems/source/lock.rb +1 -0
- data/lib/rubygems/source/specific_file.rb +1 -0
- data/lib/rubygems/source/vendor.rb +1 -0
- data/lib/rubygems/spec_fetcher.rb +1 -0
- data/lib/rubygems/specification.rb +9 -1
- data/lib/rubygems/specification_policy.rb +2 -0
- data/lib/rubygems/stub_specification.rb +1 -0
- data/lib/rubygems/uninstaller.rb +1 -0
- data/lib/rubygems/user_interaction.rb +2 -0
- data/lib/rubygems/util/licenses.rb +1 -0
- data/lib/rubygems/util/list.rb +1 -0
- data/lib/rubygems/util.rb +1 -0
- data/lib/rubygems/validator.rb +1 -0
- data/lib/rubygems/version_option.rb +1 -0
- data/lib/rubygems.rb +2 -1
- data/rubygems-update.gemspec +2 -1
- data/setup.rb +1 -0
- data/test/rubygems/bad_rake.rb +1 -0
- data/test/rubygems/bundler_test_gem.rb +3 -1
- data/test/rubygems/fake_certlib/openssl.rb +1 -0
- data/test/rubygems/good_rake.rb +1 -0
- data/test/rubygems/installer_test_case.rb +1 -0
- data/test/rubygems/multifactor_auth_utilities.rb +111 -0
- data/test/rubygems/package/tar_test_case.rb +1 -0
- data/test/rubygems/plugin/exception/rubygems_plugin.rb +1 -0
- data/test/rubygems/plugin/load/rubygems_plugin.rb +1 -0
- data/test/rubygems/plugin/standarderror/rubygems_plugin.rb +1 -0
- data/test/rubygems/rubygems/commands/crash_command.rb +1 -0
- data/test/rubygems/rubygems_plugin.rb +1 -0
- data/test/rubygems/simple_gem.rb +1 -0
- data/test/rubygems/specifications/bar-0.0.2.gemspec +2 -0
- data/test/rubygems/specifications/rubyforge-0.0.1.gemspec +2 -0
- data/test/rubygems/test_bundled_ca.rb +1 -0
- data/test/rubygems/test_config.rb +1 -0
- data/test/rubygems/test_deprecate.rb +1 -0
- data/test/rubygems/test_gem.rb +1 -0
- data/test/rubygems/test_gem_available_set.rb +1 -0
- data/test/rubygems/test_gem_bundler_version_finder.rb +1 -0
- data/test/rubygems/test_gem_command.rb +1 -0
- data/test/rubygems/test_gem_command_manager.rb +1 -0
- data/test/rubygems/test_gem_commands_build_command.rb +1 -0
- data/test/rubygems/test_gem_commands_cert_command.rb +1 -0
- data/test/rubygems/test_gem_commands_check_command.rb +1 -0
- data/test/rubygems/test_gem_commands_cleanup_command.rb +1 -0
- data/test/rubygems/test_gem_commands_contents_command.rb +1 -0
- data/test/rubygems/test_gem_commands_dependency_command.rb +1 -0
- data/test/rubygems/test_gem_commands_environment_command.rb +1 -0
- data/test/rubygems/test_gem_commands_exec_command.rb +2 -0
- data/test/rubygems/test_gem_commands_fetch_command.rb +1 -0
- data/test/rubygems/test_gem_commands_generate_index_command.rb +1 -0
- data/test/rubygems/test_gem_commands_help_command.rb +1 -0
- data/test/rubygems/test_gem_commands_info_command.rb +1 -0
- data/test/rubygems/test_gem_commands_install_command.rb +1 -0
- data/test/rubygems/test_gem_commands_list_command.rb +1 -0
- data/test/rubygems/test_gem_commands_lock_command.rb +1 -0
- data/test/rubygems/test_gem_commands_mirror.rb +1 -0
- data/test/rubygems/test_gem_commands_open_command.rb +1 -0
- data/test/rubygems/test_gem_commands_outdated_command.rb +1 -0
- data/test/rubygems/test_gem_commands_owner_command.rb +68 -39
- data/test/rubygems/test_gem_commands_pristine_command.rb +1 -0
- data/test/rubygems/test_gem_commands_push_command.rb +68 -37
- data/test/rubygems/test_gem_commands_query_command.rb +1 -0
- data/test/rubygems/test_gem_commands_search_command.rb +1 -0
- data/test/rubygems/test_gem_commands_server_command.rb +1 -0
- data/test/rubygems/test_gem_commands_setup_command.rb +1 -1
- data/test/rubygems/test_gem_commands_signin_command.rb +1 -0
- data/test/rubygems/test_gem_commands_sources_command.rb +1 -0
- data/test/rubygems/test_gem_commands_specification_command.rb +1 -0
- data/test/rubygems/test_gem_commands_stale_command.rb +1 -0
- data/test/rubygems/test_gem_commands_uninstall_command.rb +1 -0
- data/test/rubygems/test_gem_commands_unpack_command.rb +1 -0
- data/test/rubygems/test_gem_commands_update_command.rb +1 -0
- data/test/rubygems/test_gem_commands_which_command.rb +1 -0
- data/test/rubygems/test_gem_commands_yank_command.rb +76 -41
- data/test/rubygems/test_gem_config_file.rb +1 -0
- data/test/rubygems/test_gem_dependency.rb +1 -0
- data/test/rubygems/test_gem_dependency_installer.rb +1 -0
- data/test/rubygems/test_gem_dependency_list.rb +1 -0
- data/test/rubygems/test_gem_dependency_resolution_error.rb +1 -0
- data/test/rubygems/test_gem_doctor.rb +1 -0
- data/test/rubygems/test_gem_ext_builder.rb +4 -3
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +2 -0
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/lib/custom_name.rb +2 -0
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +2 -0
- data/test/rubygems/test_gem_ext_cargo_builder.rb +2 -2
- data/test/rubygems/test_gem_ext_cargo_builder_link_flag_converter.rb +1 -0
- data/test/rubygems/test_gem_ext_cmake_builder.rb +1 -0
- data/test/rubygems/test_gem_ext_configure_builder.rb +1 -0
- data/test/rubygems/test_gem_ext_rake_builder.rb +1 -0
- data/test/rubygems/test_gem_gem_runner.rb +1 -0
- data/test/rubygems/test_gem_gemcutter_utilities.rb +106 -92
- data/test/rubygems/test_gem_impossible_dependencies_error.rb +1 -0
- data/test/rubygems/test_gem_indexer.rb +1 -0
- data/test/rubygems/test_gem_install_update_options.rb +1 -0
- data/test/rubygems/test_gem_installer.rb +2 -1
- data/test/rubygems/test_gem_local_remote_options.rb +1 -0
- data/test/rubygems/test_gem_name_tuple.rb +1 -0
- data/test/rubygems/test_gem_package_old.rb +1 -0
- data/test/rubygems/test_gem_package_tar_header.rb +1 -0
- data/test/rubygems/test_gem_package_tar_reader.rb +1 -0
- data/test/rubygems/test_gem_package_tar_reader_entry.rb +1 -0
- data/test/rubygems/test_gem_package_tar_writer.rb +1 -0
- data/test/rubygems/test_gem_package_task.rb +1 -0
- data/test/rubygems/test_gem_path_support.rb +1 -0
- data/test/rubygems/test_gem_platform.rb +1 -0
- data/test/rubygems/test_gem_rdoc.rb +1 -0
- data/test/rubygems/test_gem_remote_fetcher.rb +1 -0
- data/test/rubygems/test_gem_request.rb +1 -0
- data/test/rubygems/test_gem_request_connection_pools.rb +1 -0
- data/test/rubygems/test_gem_request_set.rb +1 -0
- data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +1 -0
- data/test/rubygems/test_gem_request_set_lockfile.rb +1 -0
- data/test/rubygems/test_gem_request_set_lockfile_parser.rb +1 -0
- data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +1 -0
- data/test/rubygems/test_gem_requirement.rb +1 -0
- data/test/rubygems/test_gem_resolver.rb +1 -0
- data/test/rubygems/test_gem_resolver_activation_request.rb +1 -0
- data/test/rubygems/test_gem_resolver_api_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_api_specification.rb +1 -0
- data/test/rubygems/test_gem_resolver_best_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_composed_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_conflict.rb +1 -0
- data/test/rubygems/test_gem_resolver_dependency_request.rb +1 -0
- data/test/rubygems/test_gem_resolver_git_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_git_specification.rb +2 -1
- data/test/rubygems/test_gem_resolver_index_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_index_specification.rb +1 -0
- data/test/rubygems/test_gem_resolver_installed_specification.rb +1 -0
- data/test/rubygems/test_gem_resolver_installer_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_local_specification.rb +1 -0
- data/test/rubygems/test_gem_resolver_lock_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_lock_specification.rb +1 -0
- data/test/rubygems/test_gem_resolver_requirement_list.rb +1 -0
- data/test/rubygems/test_gem_resolver_specification.rb +1 -0
- data/test/rubygems/test_gem_resolver_vendor_set.rb +1 -0
- data/test/rubygems/test_gem_resolver_vendor_specification.rb +1 -0
- data/test/rubygems/test_gem_security.rb +1 -0
- data/test/rubygems/test_gem_security_signer.rb +1 -0
- data/test/rubygems/test_gem_security_trust_dir.rb +1 -0
- data/test/rubygems/test_gem_silent_ui.rb +1 -0
- data/test/rubygems/test_gem_source.rb +1 -0
- data/test/rubygems/test_gem_source_fetch_problem.rb +1 -0
- data/test/rubygems/test_gem_source_git.rb +1 -0
- data/test/rubygems/test_gem_source_installed.rb +1 -0
- data/test/rubygems/test_gem_source_list.rb +1 -0
- data/test/rubygems/test_gem_source_local.rb +1 -0
- data/test/rubygems/test_gem_source_lock.rb +1 -0
- data/test/rubygems/test_gem_source_specific_file.rb +1 -0
- data/test/rubygems/test_gem_source_subpath_problem.rb +1 -0
- data/test/rubygems/test_gem_source_vendor.rb +1 -0
- data/test/rubygems/test_gem_spec_fetcher.rb +1 -0
- data/test/rubygems/test_gem_specification.rb +9 -0
- data/test/rubygems/test_gem_stream_ui.rb +34 -3
- data/test/rubygems/test_gem_stub_specification.rb +1 -0
- data/test/rubygems/test_gem_text.rb +1 -0
- data/test/rubygems/test_gem_uninstaller.rb +1 -0
- data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +1 -0
- data/test/rubygems/test_gem_update_suggestion.rb +1 -0
- data/test/rubygems/test_gem_uri.rb +2 -0
- data/test/rubygems/test_gem_uri_formatter.rb +1 -0
- data/test/rubygems/test_gem_util.rb +1 -0
- data/test/rubygems/test_gem_version.rb +1 -0
- data/test/rubygems/test_gem_version_option.rb +1 -0
- data/test/rubygems/test_kernel.rb +1 -0
- data/test/rubygems/test_remote_fetch_error.rb +1 -0
- data/test/rubygems/test_require.rb +1 -0
- data/test/rubygems/test_rubygems.rb +2 -0
- data/test/rubygems/test_webauthn_listener.rb +29 -6
- data/test/rubygems/test_webauthn_listener_response.rb +8 -8
- data/test/rubygems/test_webauthn_poller.rb +124 -0
- data/test/rubygems/utilities.rb +1 -0
- data/test/test_changelog_generator.rb +1 -1
- metadata +11 -8
- data/lib/rubygems/webauthn_listener/response.rb +0 -161
- data/lib/rubygems/webauthn_listener.rb +0 -92
@@ -0,0 +1,111 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
##
|
4
|
+
# A MultifactorAuthFetcher is a FakeFetcher that adds paths to data for requests related to
|
5
|
+
# multi-factor authentication.
|
6
|
+
#
|
7
|
+
|
8
|
+
require_relative "utilities"
|
9
|
+
require "json"
|
10
|
+
|
11
|
+
class Gem::MultifactorAuthFetcher < Gem::FakeFetcher
|
12
|
+
attr_reader :host, :webauthn_url
|
13
|
+
|
14
|
+
# GET /api/v1/webauthn_verification defaults to user does not have any security devices
|
15
|
+
def initialize(host: nil)
|
16
|
+
super()
|
17
|
+
@host = host || Gem.host
|
18
|
+
@path_token = "odow34b93t6aPCdY"
|
19
|
+
@webauthn_url = "#{@host}/webauthn_verification/#{@path_token}"
|
20
|
+
@data["#{@host}/api/v1/webauthn_verification"] = Gem::HTTPResponseFactory.create(
|
21
|
+
body: "You don't have any security devices",
|
22
|
+
code: 422,
|
23
|
+
msg: "Unprocessable Entity"
|
24
|
+
)
|
25
|
+
end
|
26
|
+
|
27
|
+
# given a url, return a response that requires multifactor authentication
|
28
|
+
def respond_with_require_otp(url, success_body)
|
29
|
+
response_fail = "You have enabled multifactor authentication"
|
30
|
+
|
31
|
+
@data[url] = proc do
|
32
|
+
@call_count ||= 0
|
33
|
+
if (@call_count += 1).odd?
|
34
|
+
Gem::HTTPResponseFactory.create(body: response_fail, code: 401, msg: "Unauthorized")
|
35
|
+
else
|
36
|
+
Gem::HTTPResponseFactory.create(body: success_body, code: 200, msg: "OK")
|
37
|
+
end
|
38
|
+
end
|
39
|
+
end
|
40
|
+
|
41
|
+
# GET /api/v1/webauthn_verification returns a webauthn url
|
42
|
+
# GET /api/v1/webauthn_verification/:token/status.json (polling url) returns pending status
|
43
|
+
def respond_with_webauthn_url
|
44
|
+
@data["#{@host}/api/v1/webauthn_verification"] = Gem::HTTPResponseFactory.create(body: @webauthn_url, code: 200, msg: "OK")
|
45
|
+
@data["#{@host}/api/v1/webauthn_verification/#{@path_token}/status.json"] = Gem::HTTPResponseFactory.create(
|
46
|
+
body: { status: "pending", message: "Security device authentication is still pending." }.to_json,
|
47
|
+
code: 200,
|
48
|
+
msg: "OK"
|
49
|
+
)
|
50
|
+
end
|
51
|
+
|
52
|
+
# GET /api/v1/webauthn_verification/:token/status.json returns success status with OTP code
|
53
|
+
def respond_with_webauthn_polling(code)
|
54
|
+
@data["#{@host}/api/v1/webauthn_verification/#{@path_token}/status.json"] = Gem::HTTPResponseFactory.create(
|
55
|
+
body: { status: "success", code: code }.to_json,
|
56
|
+
code: 200,
|
57
|
+
msg: "OK"
|
58
|
+
)
|
59
|
+
end
|
60
|
+
|
61
|
+
# GET /api/v1/webauthn_verification/:token/status.json returns expired status
|
62
|
+
def respond_with_webauthn_polling_failure
|
63
|
+
@data["#{@host}/api/v1/webauthn_verification/#{@path_token}/status.json"] = Gem::HTTPResponseFactory.create(
|
64
|
+
body: {
|
65
|
+
status: "expired",
|
66
|
+
message: "The token in the link you used has either expired or been used already.",
|
67
|
+
}.to_json,
|
68
|
+
code: 200,
|
69
|
+
msg: "OK"
|
70
|
+
)
|
71
|
+
end
|
72
|
+
|
73
|
+
def webauthn_url_with_port(port)
|
74
|
+
"#{@webauthn_url}?port=#{port}"
|
75
|
+
end
|
76
|
+
end
|
77
|
+
|
78
|
+
##
|
79
|
+
# The MockTCPServer for use in tests or to avoid real TCPServer instances to be created
|
80
|
+
# when testing code related to the WebAuthn listener.
|
81
|
+
#
|
82
|
+
# Example:
|
83
|
+
#
|
84
|
+
# server = Gem::MockTCPServer
|
85
|
+
# port = server.addr[1].to_s
|
86
|
+
#
|
87
|
+
# # this mocks waiting for a request by calling sleep
|
88
|
+
# server.accept
|
89
|
+
#
|
90
|
+
# # this mocks the server closing
|
91
|
+
# server.close
|
92
|
+
|
93
|
+
class Gem::MockTCPServer
|
94
|
+
attr_reader :port
|
95
|
+
|
96
|
+
def initialize(port = 5678)
|
97
|
+
@port = port
|
98
|
+
end
|
99
|
+
|
100
|
+
def close
|
101
|
+
true
|
102
|
+
end
|
103
|
+
|
104
|
+
def addr
|
105
|
+
["AF_INET6", @port, "::", "::"]
|
106
|
+
end
|
107
|
+
|
108
|
+
def accept
|
109
|
+
sleep
|
110
|
+
end
|
111
|
+
end
|
data/test/rubygems/simple_gem.rb
CHANGED
data/test/rubygems/test_gem.rb
CHANGED
@@ -1,4 +1,5 @@
|
|
1
1
|
# frozen_string_literal: true
|
2
|
+
|
2
3
|
require_relative "helper"
|
3
4
|
require "rubygems/commands/exec_command"
|
4
5
|
|
@@ -215,6 +216,7 @@ class TestGemCommandsExecCommand < Gem::TestCase
|
|
215
216
|
|
216
217
|
def test_gem_with_platform_and_platform_dependencies
|
217
218
|
pend "extensions don't quite work on jruby" if Gem.java_platform?
|
219
|
+
pend "terminates on mswin" if vc_windows? && ruby_repo?
|
218
220
|
|
219
221
|
spec_fetcher do |fetcher|
|
220
222
|
fetcher.download "a", 2 do |s|
|
@@ -1,5 +1,7 @@
|
|
1
1
|
# frozen_string_literal: true
|
2
|
+
|
2
3
|
require_relative "helper"
|
4
|
+
require_relative "multifactor_auth_utilities"
|
3
5
|
require "rubygems/commands/owner_command"
|
4
6
|
|
5
7
|
class TestGemCommandsOwnerCommand < Gem::TestCase
|
@@ -10,7 +12,7 @@ class TestGemCommandsOwnerCommand < Gem::TestCase
|
|
10
12
|
|
11
13
|
ENV["RUBYGEMS_HOST"] = nil
|
12
14
|
@stub_ui = Gem::MockGemUi.new
|
13
|
-
@stub_fetcher = Gem::
|
15
|
+
@stub_fetcher = Gem::MultifactorAuthFetcher.new
|
14
16
|
Gem::RemoteFetcher.fetcher = @stub_fetcher
|
15
17
|
Gem.configuration = nil
|
16
18
|
Gem.configuration.rubygems_api_key = "ed244fbf2b1a52e012da8616c512fa47f9aa5250"
|
@@ -323,15 +325,8 @@ EOF
|
|
323
325
|
end
|
324
326
|
|
325
327
|
def test_otp_verified_success
|
326
|
-
response_fail = "You have enabled multifactor authentication but your request doesn't have the correct OTP code. Please check it and retry."
|
327
328
|
response_success = "Owner added successfully."
|
328
|
-
|
329
|
-
@stub_fetcher.data["#{Gem.host}/api/v1/gems/freewill/owners"] = [
|
330
|
-
HTTPResponseFactory.create(body: response_fail, code: 401, msg: "Unauthorized"),
|
331
|
-
HTTPResponseFactory.create(body: response_success, code: 200, msg: "OK"),
|
332
|
-
]
|
333
|
-
@stub_fetcher.data["#{Gem.host}/api/v1/webauthn_verification"] =
|
334
|
-
HTTPResponseFactory.create(body: "You don't have any security devices", code: 422, msg: "Unprocessable Entity")
|
329
|
+
@stub_fetcher.respond_with_require_otp("#{Gem.host}/api/v1/gems/freewill/owners", response_success)
|
335
330
|
|
336
331
|
@otp_ui = Gem::MockGemUi.new "111111\n"
|
337
332
|
use_ui @otp_ui do
|
@@ -362,68 +357,102 @@ EOF
|
|
362
357
|
end
|
363
358
|
|
364
359
|
def test_with_webauthn_enabled_success
|
365
|
-
webauthn_verification_url = "rubygems.org/api/v1/webauthn_verification/odow34b93t6aPCdY"
|
366
|
-
response_fail = "You have enabled multifactor authentication but your request doesn't have the correct OTP code. Please check it and retry."
|
367
360
|
response_success = "Owner added successfully."
|
368
|
-
|
369
|
-
server = TCPServer.new(port)
|
361
|
+
server = Gem::MockTCPServer.new
|
370
362
|
|
371
|
-
@stub_fetcher.
|
372
|
-
@stub_fetcher.
|
373
|
-
HTTPResponseFactory.create(body: response_fail, code: 401, msg: "Unauthorized"),
|
374
|
-
HTTPResponseFactory.create(body: response_success, code: 200, msg: "OK"),
|
375
|
-
]
|
363
|
+
@stub_fetcher.respond_with_require_otp("#{Gem.host}/api/v1/gems/freewill/owners", response_success)
|
364
|
+
@stub_fetcher.respond_with_webauthn_url
|
376
365
|
|
377
366
|
TCPServer.stub(:new, server) do
|
378
|
-
Gem::WebauthnListener.stub(:
|
367
|
+
Gem::GemcutterUtilities::WebauthnListener.stub(:listener_thread, Thread.new { Thread.current[:otp] = "Uvh6T57tkWuUnWYo" }) do
|
379
368
|
use_ui @stub_ui do
|
380
369
|
@cmd.add_owners("freewill", ["user-new1@example.com"])
|
381
370
|
end
|
382
371
|
end
|
383
|
-
ensure
|
384
|
-
server.close
|
385
372
|
end
|
386
373
|
|
387
|
-
|
388
|
-
|
374
|
+
assert_match "You have enabled multi-factor authentication. Please visit #{@stub_fetcher.webauthn_url_with_port(server.port)} " \
|
375
|
+
"to authenticate via security device. If you can't verify using WebAuthn but have OTP enabled, " \
|
376
|
+
"you can re-run the gem signin command with the `--otp [your_code]` option.", @stub_ui.output
|
389
377
|
assert_match "You are verified with a security device. You may close the browser window.", @stub_ui.output
|
390
378
|
assert_equal "Uvh6T57tkWuUnWYo", @stub_fetcher.last_request["OTP"]
|
391
379
|
assert_match response_success, @stub_ui.output
|
392
380
|
end
|
393
381
|
|
394
382
|
def test_with_webauthn_enabled_failure
|
395
|
-
webauthn_verification_url = "rubygems.org/api/v1/webauthn_verification/odow34b93t6aPCdY"
|
396
|
-
response_fail = "You have enabled multifactor authentication but your request doesn't have the correct OTP code. Please check it and retry."
|
397
383
|
response_success = "Owner added successfully."
|
398
|
-
|
399
|
-
|
400
|
-
raise_error = ->(*_args) { raise Gem::WebauthnVerificationError, "Something went wrong" }
|
384
|
+
server = Gem::MockTCPServer.new
|
385
|
+
error = Gem::WebauthnVerificationError.new("Something went wrong")
|
401
386
|
|
402
|
-
@stub_fetcher.
|
403
|
-
@stub_fetcher.
|
404
|
-
HTTPResponseFactory.create(body: response_fail, code: 401, msg: "Unauthorized"),
|
405
|
-
HTTPResponseFactory.create(body: response_success, code: 200, msg: "OK"),
|
406
|
-
]
|
387
|
+
@stub_fetcher.respond_with_require_otp("#{Gem.host}/api/v1/gems/freewill/owners", response_success)
|
388
|
+
@stub_fetcher.respond_with_webauthn_url
|
407
389
|
|
408
390
|
TCPServer.stub(:new, server) do
|
409
|
-
Gem::WebauthnListener.stub(:
|
391
|
+
Gem::GemcutterUtilities::WebauthnListener.stub(:listener_thread, Thread.new { Thread.current[:error] = error }) do
|
410
392
|
use_ui @stub_ui do
|
411
393
|
@cmd.add_owners("freewill", ["user-new1@example.com"])
|
412
394
|
end
|
413
395
|
end
|
414
|
-
ensure
|
415
|
-
server.close
|
416
396
|
end
|
417
397
|
|
418
|
-
url_with_port = "#{webauthn_verification_url}?port=#{port}"
|
419
|
-
|
420
398
|
assert_match @stub_fetcher.last_request["Authorization"], Gem.configuration.rubygems_api_key
|
421
|
-
assert_match "You have enabled multi-factor authentication. Please visit #{
|
399
|
+
assert_match "You have enabled multi-factor authentication. Please visit #{@stub_fetcher.webauthn_url_with_port(server.port)} " \
|
400
|
+
"to authenticate via security device. If you can't verify using WebAuthn but have OTP enabled, " \
|
401
|
+
"you can re-run the gem signin command with the `--otp [your_code]` option.", @stub_ui.output
|
422
402
|
assert_match "ERROR: Security device verification failed: Something went wrong", @stub_ui.error
|
423
403
|
refute_match "You are verified with a security device. You may close the browser window.", @stub_ui.output
|
424
404
|
refute_match response_success, @stub_ui.output
|
425
405
|
end
|
426
406
|
|
407
|
+
def test_with_webauthn_enabled_success_with_polling
|
408
|
+
response_success = "Owner added successfully."
|
409
|
+
server = Gem::MockTCPServer.new
|
410
|
+
|
411
|
+
@stub_fetcher.respond_with_require_otp("#{Gem.host}/api/v1/gems/freewill/owners", response_success)
|
412
|
+
@stub_fetcher.respond_with_webauthn_url
|
413
|
+
@stub_fetcher.respond_with_webauthn_polling("Uvh6T57tkWuUnWYo")
|
414
|
+
|
415
|
+
TCPServer.stub(:new, server) do
|
416
|
+
use_ui @stub_ui do
|
417
|
+
@cmd.add_owners("freewill", ["user-new1@example.com"])
|
418
|
+
end
|
419
|
+
end
|
420
|
+
|
421
|
+
assert_match "You have enabled multi-factor authentication. Please visit #{@stub_fetcher.webauthn_url_with_port(server.port)} " \
|
422
|
+
"to authenticate via security device. If you can't verify using WebAuthn but have OTP enabled, you can re-run the gem signin " \
|
423
|
+
"command with the `--otp [your_code]` option.", @stub_ui.output
|
424
|
+
assert_match "You are verified with a security device. You may close the browser window.", @stub_ui.output
|
425
|
+
assert_equal "Uvh6T57tkWuUnWYo", @stub_fetcher.last_request["OTP"]
|
426
|
+
assert_match response_success, @stub_ui.output
|
427
|
+
end
|
428
|
+
|
429
|
+
def test_with_webauthn_enabled_failure_with_polling
|
430
|
+
response_success = "Owner added successfully."
|
431
|
+
server = Gem::MockTCPServer.new
|
432
|
+
|
433
|
+
@stub_fetcher.respond_with_require_otp(
|
434
|
+
"#{Gem.host}/api/v1/gems/freewill/owners",
|
435
|
+
response_success
|
436
|
+
)
|
437
|
+
@stub_fetcher.respond_with_webauthn_url
|
438
|
+
@stub_fetcher.respond_with_webauthn_polling_failure
|
439
|
+
|
440
|
+
TCPServer.stub(:new, server) do
|
441
|
+
use_ui @stub_ui do
|
442
|
+
@cmd.add_owners("freewill", ["user-new1@example.com"])
|
443
|
+
end
|
444
|
+
end
|
445
|
+
|
446
|
+
assert_match @stub_fetcher.last_request["Authorization"], Gem.configuration.rubygems_api_key
|
447
|
+
assert_match "You have enabled multi-factor authentication. Please visit #{@stub_fetcher.webauthn_url_with_port(server.port)} " \
|
448
|
+
"to authenticate via security device. If you can't verify using WebAuthn but have OTP enabled, you can re-run the gem signin " \
|
449
|
+
"command with the `--otp [your_code]` option.", @stub_ui.output
|
450
|
+
assert_match "ERROR: Security device verification failed: The token in the link you used has either expired " \
|
451
|
+
"or been used already.", @stub_ui.error
|
452
|
+
refute_match "You are verified with a security device. You may close the browser window.", @stub_ui.output
|
453
|
+
refute_match response_success, @stub_ui.output
|
454
|
+
end
|
455
|
+
|
427
456
|
def test_remove_owners_unathorized_api_key
|
428
457
|
response_forbidden = "The API key doesn't have access"
|
429
458
|
response_success = "Owner removed successfully."
|