seb_elink 0.9.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 4754ac20b5f8fb96fa6f5da401ad7a743eb9f0bc
+  data.tar.gz: 35fd08333c236cc5e4b3fca833cf178880b81f4c
+SHA512:
+  metadata.gz: e91e10a2ecfe7bc6a1dc525ca931f2111af3c38356c8866a8c82e58cfc3a5fdc0df4de4c99552b77a62fb0b540b746d2c31c558c41913027110714147f571185
+  data.tar.gz: 2bae5422c88af83cd9b16c07af01efa1501044b482b4167b41c896f024d16d7c49fb6b3d15eb0753e4f496b60856436df5b2b731acfd7ac46186cd2fad1cc7b5

data/.circleci/config.yml

@@ -0,0 +1,24 @@
+version: 2
+jobs:
+  build:
+    working_directory: ~/seb_elink
+    docker:     
+      # ruby:2-node
+      - image: circleci/ruby@sha256:382aa3816e4a1447f56dfa5c70751a727eb276bb0d1617f1989e3ca28bb251f5
+      
+    steps:
+      - checkout
+      
+      - run: gem install bundler -v 1.16.0 --no-doc      
+
+      - restore_cache:
+         key: seb_elink-v1-{{ checksum "Gemfile.lock" }}
+
+      - run: bundle install --path vendor/bundle
+
+      - save_cache:
+         key: seb_elink-v1-{{ checksum "Gemfile.lock" }}
+         paths:
+           - vendor/bundle      
+
+      - run: bundle exec rspec

data/.gitignore

@@ -0,0 +1,11 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+# rspec failure tracking
+.rspec_status

data/.rspec

@@ -0,0 +1,3 @@
+--format documentation
+--color
+--require spec_helper

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,74 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+In the interest of fostering an open and welcoming environment, we as
+contributors and maintainers pledge to making participation in our project and
+our community a harassment-free experience for everyone, regardless of age, body
+size, disability, ethnicity, gender identity and expression, level of experience,
+nationality, personal appearance, race, religion, or sexual identity and
+orientation.
+
+## Our Standards
+
+Examples of behavior that contributes to creating a positive environment
+include:
+
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery and unwelcome sexual attention or
+advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic
+  address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Our Responsibilities
+
+Project maintainers are responsible for clarifying the standards of acceptable
+behavior and are expected to take appropriate and fair corrective action in
+response to any instances of unacceptable behavior.
+
+Project maintainers have the right and responsibility to remove, edit, or
+reject comments, commits, code, wiki edits, issues, and other contributions
+that are not aligned to this Code of Conduct, or to ban temporarily or
+permanently any contributor for other behaviors that they deem inappropriate,
+threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies both within project spaces and in public spaces
+when an individual is representing the project or its community. Examples of
+representing a project or community include using an official project e-mail
+address, posting via an official social media account, or acting as an appointed
+representative at an online or offline event. Representation of a project may be
+further defined and clarified by project maintainers.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported by contacting the project team at cto@creative.gs. All
+complaints will be reviewed and investigated and will result in a response that
+is deemed necessary and appropriate to the circumstances. The project team is
+obligated to maintain confidentiality with regard to the reporter of an incident.
+Further details of specific enforcement policies may be posted separately.
+
+Project maintainers who do not follow or enforce the Code of Conduct in good
+faith may face temporary or permanent repercussions as determined by other
+members of the project's leadership.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
+available at [http://contributor-covenant.org/version/1/4][version]
+
+[homepage]: http://contributor-covenant.org
+[version]: http://contributor-covenant.org/version/1/4/

data/Gemfile

@@ -0,0 +1,6 @@
+source "https://rubygems.org"
+
+git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
+
+# Specify your gem's dependencies in seb_elink.gemspec
+gemspec

data/Gemfile.lock

@@ -0,0 +1,66 @@
+PATH
+  remote: .
+  specs:
+    seb_elink (0.9.0)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    coderay (1.1.2)
+    coveralls (0.7.2)
+      multi_json (~> 1.3)
+      rest-client (= 1.6.7)
+      simplecov (>= 0.7)
+      term-ansicolor (= 1.2.2)
+      thor (= 0.18.1)
+    diff-lcs (1.3)
+    docile (1.1.5)
+    json (2.1.0)
+    method_source (0.9.0)
+    mime-types (3.1)
+      mime-types-data (~> 3.2015)
+    mime-types-data (3.2016.0521)
+    multi_json (1.12.2)
+    pry (0.11.3)
+      coderay (~> 1.1.0)
+      method_source (~> 0.9.0)
+    rake (10.5.0)
+    rest-client (1.6.7)
+      mime-types (>= 1.16)
+    rspec (3.7.0)
+      rspec-core (~> 3.7.0)
+      rspec-expectations (~> 3.7.0)
+      rspec-mocks (~> 3.7.0)
+    rspec-core (3.7.0)
+      rspec-support (~> 3.7.0)
+    rspec-expectations (3.7.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.7.0)
+    rspec-mocks (3.7.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.7.0)
+    rspec-support (3.7.0)
+    simplecov (0.15.1)
+      docile (~> 1.1.0)
+      json (>= 1.8, < 3)
+      simplecov-html (~> 0.10.0)
+    simplecov-html (0.10.2)
+    term-ansicolor (1.2.2)
+      tins (~> 0.8)
+    thor (0.18.1)
+    tins (0.13.2)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  bundler (~> 1.16)
+  coveralls
+  pry (~> 0.11.3)
+  rake (~> 10.0)
+  rspec (~> 3.7)
+  seb_elink!
+  simplecov (~> 0.15.1)
+
+BUNDLED WITH
+   1.16.0

data/LICENSE.txt

@@ -0,0 +1,28 @@
+BSD 3-clause "New" or "Revised" License
+
+Copyright (c) 2017 Creative.gs . All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice,
+this list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+this list of conditions and the following disclaimer in the documentation and/or
+other materials provided with the distribution.
+
+3. Neither the name of Creative.gs nor the names of its contributors
+may be used to endorse or promote products derived from this software without
+specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY Creative.gs AND CONTRIBUTORS "AS IS"
+AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
+THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
+LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
+ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

data/README.md

@@ -0,0 +1,136 @@
+[![Version](https://badge.fury.io/rb/seb_elink.svg)](https://badge.fury.io/rb/seb_elink)
+[![Build](https://circleci.com/gh/CreativeGS/seb_elink/tree/master.svg?style=shield)](https://circleci.com/gh/CreativeGS/seb_elink/tree/master)
+[![Coverage](https://coveralls.io/repos/github/CreativeGS/seb_elink/badge.svg?branch=master)](https://coveralls.io/github/CreativeGS/seb_elink?branch=master)
+
+# SebElink
+Lightweight Ruby wrapper for communicating with SEB.lv i-bank payment API.  
+Solves the cryptographic requirements for you.  
+
+## Installation
+Bundle or manually install the latest version of the gem:
+
+```ruby
+gem 'seb_elink'
+```
+
+## Usage
+Please note that for consistency in this gem all hash keys are constant-case __symbols__.
+
+The gem has three elements represented as Ruby classes:
+
+__1. SebElink::Gateway__  
+Think of this as the communication adapter. Initialize it with a base64-encoded private key string (the human-readable .pem format). You can store the instance in a constant to reduce processing overhead.  
+
+You can pass an optional options hash as the second argument that will specify default values for communications processed by that gateway instance. Useful for setting company-related data just once.  
+
+```rb
+SebElink::Gateway.new(
+  <privkey string>,
+  {
+    IB_SND_ID: "TESTCOMPANY",
+    IB_NAME: "Test Inc."
+  }
+)
+```
+
+Additionally, you can rewrite values used by the gem pertaining to SEB.lv i-bank, such as their public key, API uri etc. Here's a complete list:
+
+```rb
+{
+  IB_VERSION: "001", # which API version to use
+  IBANK_CERT: "-----BEGIN CERTIFICATE-----..." # public key/cer of SEB.lv, changes rarely
+  IBANK_API_URI: "https://ibanka.seb.lv/ipc/epakindex.jsp" # where to POST users
+}
+```
+
+Instances of `SebElink::Gateway` have one method for public use:
+
+```rb
+gateway.ibank_api_uri #=> uri for POSTing intial message to.
+```
+
+__2. SebElink::Message__   
+Instances represent requests to i-bank, generally for payment.  
+
+Initialize these with `SebElink::Message.new(gateway_instance, message_code, data_hash)`
+
+```rb
+SEB_LV_GATEWAY = SebElink::Gateway.new(<privkey string>)
+message_instance = SebElink::Message.new(SEB_LV_GATEWAY, "0002", {IB_SND_ID: ...})
+```
+
+Please consult `message_specs.rb` for the full list of data_hash keys.  
+
+Instances of `SebElink::Message` have two methods:
+
+```rb
+message_instance.to_h
+#=> hash of all fields you need to POST to i-bank API uri.
+
+message_instance.digital_signature
+#=> outputs the value of :IB_CRC key, the base64-encoded digital signature of the message
+```
+
+__3. SebElink::Response__   
+Instances represent responses from SEB.lv i-bank server.  
+Well-formedness is not validated since if digital signature is OK, one would think that the bank adheres to it's own spec.  
+
+Initialize these with `SebElink::Response.new(gateway_instance, response_body)`
+
+Please note that the method name `#response` is reserved in Rails, use something else for response variable names!
+
+```rb
+SEB_LV_GATEWAY = SebElink::Gateway.new(<privkey string>)
+
+# in a Rails controller context you can obtain the response_body with:
+response_body =
+  if request.get?
+    request.query_string
+  else
+    request.raw_post
+  end #=> "IB_SND_ID=TEST..."
+
+response_instance = SebElink::Response.new(SEB_LV_GATEWAY, response_body)
+
+# Please note that the :IB_CRC signature values will often end with "==\n" which, when uri-escaped will be "%3D%3D%0A", pass the response just like that into the initializer 
+```
+
+Instances of `SebElink::Response` have two methods:
+
+```rb
+response_instance.valid?
+#=> true, if the digital signature is OK.
+# DO NOT process responses that are invalid, someone has tampered with the values!
+
+response_instance.to_h
+#=> {IB_SND_ID: "TEST", ...}
+# Will raise if called on an invalid response_instance
+# to override this default safety setting, call with to_h(:insecure)
+```
+
+Tests have been written in a documenting manner, so, please,
+have a look at the contents of `spec/` directory to get a feel of what the gem can do.  
+
+Version 001 (current) uses the deprecated SHA-1 hashing algorithm. Let SEB.lv know that v2 that uses SHA-256 is needed. 
+
+## Contributing
+Bug reports and pull requests are welcome on GitHub at https://github.com/CreativeGS/seb_elink. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
+
+The project uses TDD approach to software development, follow these steps to set up:
+1. fork and clone the repo on github
+2. Install appropriate Ruby and Bundler
+3. `bundle`
+4. See if all specs are green with `rspec`
+5. TDD new features
+6. Make a Pull Request in github
+
+## Releasing a new version
+TODO
+
+## License
+
+The gem is available as open source under the terms of the [BSD-3-Clause License](https://opensource.org/licenses/BSD-3-Clause).
+
+## Code of Conduct
+
+Everyone interacting in the SebElink project’s codebases and issue trackers is expected to follow the [code of conduct](https://github.com/CreativeGS/seb_elink/blob/master/CODE_OF_CONDUCT.md).

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "seb_elink"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start(__FILE__)

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/lib/seb_elink.rb

@@ -0,0 +1,38 @@
+require "base64"
+require "openssl"
+
+require "seb_elink/message_specs"
+require "seb_elink/communications"
+require "seb_elink/gateway"
+require "seb_elink/message"
+require "seb_elink/response"
+require "seb_elink/version"
+
+module SebElink
+  extend self
+
+  def root
+    @@root ||= Pathname.new(Gem::Specification.find_by_name("seb_elink").gem_dir)
+  end
+
+  DEFAULTS = {
+    IB_VERSION: "001",
+    IBANK_API_URI: "https://ibanka.seb.lv/ipc/epakindex.jsp",
+    IBANK_CERT: <<-HEREDOC
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+    HEREDOC
+
+  }
+end

data/lib/seb_elink/communications.rb

@@ -0,0 +1,19 @@
+module SebElink::Communications
+  private
+
+  def validate_message_code
+    message_codes = send(:class)::SUPPORTED_MESSAGES
+
+    raise ArgumentError.new(
+      "'#{message_code}' is not a supported message code. Supported ones are: #{message_codes}"
+    ) unless message_codes.include?(message_code)
+  end
+
+  def validate_version
+    versions = send(:class)::SUPPORTED_VERSIONS
+
+    raise ArgumentError.new(
+      "'#{version}' is not a supported version. Supported ones are: #{versions}"
+    ) unless versions.include?(version)
+  end
+end

data/lib/seb_elink/gateway.rb

@@ -0,0 +1,106 @@
+class SebElink::Gateway
+  include SebElink::MessageSpecs
+
+  attr_reader :privkey, :defaults
+
+  def initialize(privkey, defaults={})
+    @privkey = privkey
+    @defaults = SebElink::DEFAULTS.merge(defaults)
+  end
+
+  def ibank_api_uri
+    @ibank_api_uri ||= defaults[:IBANK_API_URI]
+  end
+
+  # options: {
+  #   message_code: "000x",
+  #   version: "00x"
+  #   skip_validation: false, # true for from-SEB messages like 0003 and 0004
+  #   data: {
+  #     IB_SND_ID: "TESTACC",
+  #     ...
+  #   }
+  # }
+  def produce_footprint(options)
+    data_hash = options[:data]
+    spec_set = spec_for(version: options[:version], message_code: options[:message_code])
+
+    footprint_string = spec_set.map do |field, spec|
+      next unless spec[:in_signature]
+
+      unless options[:skip_validation]
+        # 1. validate each field's length in .bytesize and format
+        raise_nil_error(field) if data_hash[field] == nil
+        raise_length_error(field) if data_hash[field].to_s.bytesize > spec[:max_length]
+        raise_format_error(field) if !data_hash[field].to_s[spec[:format]]
+      end
+
+      # 2. build the 'len(p1)||p1..' string
+      "#{data_hash[field].to_s.bytesize.to_s.rjust(3, "0")}#{data_hash[field]}"
+    end.join("")
+  end
+
+  # options: {
+  #   version: "00x",
+  #   message_code: "000x"
+  # }
+  def spec_for(options)
+    send(:class).const_get("V#{options[:version]}_MESSAGE#{options[:message_code]}_SPEC")
+  end
+
+  # options: {
+  #   version: "00x",
+  #   message_footprint: "001a.."
+  # }
+  def sign(options)
+    Base64.encode64(
+      privkey_rsa.sign(
+        send("v#{options[:version]}_digest"), #=> digest algorythm, SHA1
+        options[:message_footprint]
+      )
+    )
+  end
+
+  # options: {
+  #   version: "00x",
+  #   message:,
+  #   base64_signature:
+  #   # OR
+  #   signature:
+  # }
+  def verify(options)
+    received_binary_signature = options[:signature] ||
+      Base64.decode64(options[:base64_signature])
+
+    ibank_pubkey_rsa.verify(
+      send("v#{options[:version]}_digest"),
+      received_binary_signature,
+      options[:message]
+    )
+  end
+
+  private
+    def v001_digest
+      OpenSSL::Digest::SHA1.new
+    end
+
+    def privkey_rsa
+      @privkey_rsa ||= OpenSSL::PKey::RSA.new(privkey)
+    end
+
+    def ibank_pubkey_rsa
+      @ibank_pubkey_rsa ||= OpenSSL::X509::Certificate.new(defaults[:IBANK_CERT]).public_key
+    end
+
+    def raise_length_error(field)
+      raise ArgumentError.new("#{field} value is too long")
+    end
+
+    def raise_format_error(field)
+      raise ArgumentError.new("#{field} value format does not match the spec")
+    end
+
+    def raise_nil_error(field)
+      raise ArgumentError.new("#{field} key is absent")
+    end
+end

data/lib/seb_elink/message.rb

@@ -0,0 +1,59 @@
+class SebElink::Message
+  include SebElink::Communications
+
+  SUPPORTED_VERSIONS = ["001"].freeze
+  SUPPORTED_MESSAGES = ["0002"].freeze
+
+  attr_reader :gateway_instance, :message_code, :data_hash
+
+  def initialize(gateway_instance, message_code, data_hash)
+    @gateway_instance = gateway_instance
+
+    @message_code = message_code
+
+    validate_message_code
+
+    @data_hash = gateway_instance.defaults.
+      merge(IB_SERVICE: @message_code).merge(data_hash)
+
+    validate_version
+  end
+
+  def digital_signature
+    @digital_signature ||= to_h[:IB_CRC]
+  end
+
+  def to_h
+    @to_h ||= send("message_#{message_code}")
+  end
+
+  private
+
+  def message_0002
+    footprint_string = gateway_instance.produce_footprint({
+      message_code: message_code,
+      version: version,
+      skip_validation: false,
+      data: data_hash
+    })
+
+    # 3. Hash-sign the footprint string => obtain "digital signature" of the message
+    digital_signature = gateway_instance.sign({
+      version: version,
+      message_footprint: footprint_string
+    })
+
+    # 4. Append IB_CRC key with the "digital signature" and return the hash
+    gateway_instance.spec_for(version: version, message_code: message_code).
+    keys.each_with_object({}) do |k, hash|
+      hash[k] = data_hash[k] if data_hash.has_key?(k)
+    end.merge(IB_CRC: digital_signature)
+  end
+
+  def version
+    return @version if defined?(@version)
+
+    @version = data_hash[:IB_VERSION]
+  end
+
+end

data/lib/seb_elink/message_specs.rb

@@ -0,0 +1,96 @@
+module SebElink::MessageSpecs
+  # Storing SEB-defined specs for messages here
+
+  # AKA P.MU.1
+  # Sequence, Parameter title, Max length, Example of value, Description
+  # 1, IB_SND_ID, 10, SOMENAME, AAA Request sender (E-system)
+  # 2, IB_SERVICE, 4, 0002, Code of the Internet bank request type. Constant 0002
+  # 3, IB_VERSION, 3, 001, ID of used digital signature algorithm. Constant 001.
+  # 4, IB_AMOUNT, 17, 1234.56, Payment amount
+  # 5, IB_CURR, 3, EUR, Payment currency (EUR)
+  # 6, IB_NAME, 30, Company Beneficiary’s name, (in this case: Company)
+  # 7, IB_PAYMENT_ID, 20, UB0000000000015, Payment order reference number
+  # 8, IB_PAYMENT_DESC, 100, Your invoice No. 1234 is paid, Payment order description
+  # 9, IB_CRC, 500, abs51ajksa..., Request digital signature
+  # 10, IB_FEEDBACK, 150, URL to which the Bank will send the message of acceptance
+  #   of the payment order for processing, execution, cancellation.
+  # 11, IB_LANG, 3, LAT, Preferable language (LAT, ENG, RUS)
+  V001_MESSAGE0002_SPEC = {
+    IB_SND_ID: {no: 1, in_signature: true, max_length: 10, format: %r'\A.{1,}\z'},
+    IB_SERVICE: {no: 2, in_signature: true, max_length: 4, format: %r'\A0002\z'},
+    IB_VERSION: {no: 3, in_signature: true, max_length: 3, format: %r'\A001\z'},
+    IB_AMOUNT: {no: 4, in_signature: true, max_length: 17, format: %r'\A\d+([.,]\d{,2})?\z'},
+    IB_CURR: {no: 5, in_signature: true, max_length: 3, format: %r'\A[A-Z]{3}\z'},
+    IB_NAME: {no: 6, in_signature: true, max_length: 30, format: %r'\A.{1,}\z'},
+    IB_PAYMENT_ID: {no: 7, in_signature: true, max_length: 20, format: %r'\A[0-9a-zA-Z]{1,20}\z'},
+    IB_PAYMENT_DESC: {no: 8, in_signature: true, max_length: 100, format: %r'\A.{1,}\z'},
+    # IB_CRC: {no: 9, in_signature: false, max_length: 500, format: %r'\A.*\z'},
+    IB_FEEDBACK: {no: 10, in_signature: false, max_length: 150, format: %r'\A.*\z'},
+    IB_LANG: {no: 11, in_signature: false, max_length: 3, format: %r'\A(?:LAT)|(?:ENG)|(?:RUS)\z'},
+  }.freeze
+
+  # # 4.2 Message 0003 - Payment order acceptance for processing (P.MU.3 and P.MU.4 parameters):
+  # Sequence Parameter title Max length Example of value Description
+  # 1. IB_SND_ID 10 B1 Request sender (Banks ID)
+  # 2. IB_SERVICE 4 0003 Code of the Internet bank request type
+  # 3. IB_VERSION 3 001 ID of used digital signature algorithm
+  # 4. IB_PAYMENT_ID 20 UB0000000000015 Payment order reference number
+  # 5. IB_AMOUNT 17 1234.56 Payment amount
+  # 6. IB_CURR 3 EUR Payment currency (EUR)
+  # 7. IB_REC_ID 10 AAA Beneficiary’s identifier (in this case: AAA)
+  # 8. IB_REC_ACC 21 Beneficiary’s account (IBAN).
+  # 9. IB_REC_NAME 30 Company Beneficiary’s name (in this case: Company)
+  # 10. IB_PAYER_ACC 21 Payer’s account (IBAN)
+  # 11. IB_PAYER_NAME 110 Jānis Ozols Payer’s name
+  # 12. IB_PAYMENT_DESC 100 Your invoice No.1234 is paid Payment order description
+  # 13. IB_PAYMENT_DATE 10 12.12.2005 Payment confirmation date (DD.MM.YYYY)
+  # 14. IB_PAYMENT_TIME 8 21:12:34 Payment confirmation time (HH:MM:SS)
+  # 15. IB_CRC 500 Request digital signature
+  # 16. IB_LANG 3 LAT Language (possible values: LAT, ENG, RUS)
+  # 17. IB_FROM_SERVER 1 Y / N In case of P.MU.2: Y, P.MU.3: N
+  V001_MESSAGE0003_SPEC = {
+    IB_SND_ID: {no: 1, in_signature: true},
+    IB_SERVICE: {no: 2, in_signature: true},
+    IB_VERSION: {no: 3, in_signature: true},
+    IB_PAYMENT_ID: {no: 4, in_signature: true},
+    IB_AMOUNT: {no: 5, in_signature: true},
+    IB_CURR: {no: 6, in_signature: true},
+    IB_REC_ID: {no: 7, in_signature: true},
+    IB_REC_ACC: {no: 8, in_signature: true},
+    IB_REC_NAME: {no: 9, in_signature: true},
+    IB_PAYER_ACC: {no: 10, in_signature: true},
+    IB_PAYER_NAME: {no: 11, in_signature: true},
+    IB_PAYMENT_DESC: {no: 12, in_signature: true},
+    IB_PAYMENT_DATE: {no: 13, in_signature: true},
+    IB_PAYMENT_TIME: {no: 14, in_signature: true},
+    IB_PAYMENT_TIME: {no: 15, in_signature: true}
+  }.freeze
+
+  # # 4.3 Message 0004 - Payment order execution or cancellation (P.MU.2 and P.MU.5 parameters):
+  # Sequence, Parameter title, Max length, Example of value, Description
+  # 1. IB_SND_ID 10 B1 Request sender (Banks ID)
+  # 2. IB_SERVICE 4 0004 Code of the Internet bank request type
+  # 3. IB_VERSION 3 001 ID of used digital signature algorithm
+  # 4. IB_REC_ID 10 AAA Beneficiary’s identifier (in this case: “AAA”)
+  # 5. IB_PAYMENT_ID 20 UB0000000000015 Payment order reference number
+  # 6. IB_PAYMENT_DESC 100 Your invoice No. 1234 is paid Payment order description
+  # 7. IB_FROM_SERVER 1 Y/ N In case of P.MU.4: “Y”, P.MU.5: “N”
+  # 8. IB_STATUS 12 ACCOMPLISHED Payment order status
+  # 9. IB_CRC 300 Message digital signature
+  # 10. IB_LANG 3 LAT Language (possible values: “LAT”, “ENG”, “RUS”)
+  V001_MESSAGE0004_SPEC = {
+    IB_SND_ID: {no: 1, in_signature: true},
+    IB_SERVICE: {no: 2, in_signature: true},
+    IB_VERSION: {no: 3, in_signature: true},
+    IB_REC_ID: {no: 4, in_signature: true},
+    IB_PAYMENT_ID: {no: 5, in_signature: true},
+    IB_PAYMENT_DESC: {no: 6, in_signature: true},
+    # -- IB_FROM_SERVER {no: 7, in_signature: true},
+    IB_STATUS: {no: 7, in_signature: true},
+  }.freeze
+
+
+
+
+
+end

data/lib/seb_elink/response.rb

@@ -0,0 +1,67 @@
+class SebElink::Response
+  include SebElink::Communications
+
+  SUPPORTED_VERSIONS = ["001"].freeze
+  SUPPORTED_MESSAGES = ["0003", "0004"].freeze
+
+  attr_reader :gateway_instance, :body
+
+  def initialize(gateway_instance, body)
+    @gateway_instance = gateway_instance
+    @body = body
+  end
+
+  def valid?
+    return @valid if defined?(@valid)
+
+    validate_message_code
+    validate_version
+
+    footprint = gateway_instance.produce_footprint({
+      message_code: message_code,
+      version: version,
+      skip_validation: true,
+      data: body_hash
+    })
+
+    @valid = gateway_instance.verify({
+      version: version,
+      message_footprint: footprint,
+      message_signature: body_hash[:IB_CRC]
+    })
+  end
+
+  def to_h(mode=:secure)
+    raise SebElink::InvalidResponseError.new(
+      "The response with body '#{body}' is invalid"
+    ) if mode != :insecure && !valid?
+
+    @to_h ||= body_hash
+  end
+
+  private
+    def body_hash
+      @body_hash ||= body.split("&").each_with_object({}) do |q_pair, hash|
+        pair = q_pair # CGI.unescape(q_pair)
+        split_index = CGI.unescape(pair).index("=")
+        key, value = pair[0..(split_index - 1)], pair[split_index.next..-1]
+        hash[key.to_sym] = value.to_s
+      end
+    end
+
+    def message_code
+      return @message_code if defined?(@message_code)
+
+      @message_code = body_hash[:IB_SERVICE]
+    end
+
+    def version
+      return @version if defined?(@version)
+
+      @version = body_hash[:IB_VERSION]
+    end
+
+end
+
+class SebElink::InvalidResponseError < RuntimeError
+end

data/lib/seb_elink/version.rb

@@ -0,0 +1,3 @@
+module SebElink
+  VERSION = "0.9.0"
+end

data/seb_elink.gemspec

@@ -0,0 +1,31 @@
+
+lib = File.expand_path("../lib", __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require "seb_elink/version"
+
+Gem::Specification.new do |gem|
+  gem.name          = "seb_elink"
+  gem.required_ruby_version = '>= 2'
+  gem.date          = "2017-12-14"
+  gem.version       = SebElink::VERSION
+  gem.authors       = ["Epigene"]
+  gem.email         = ["cto@creative.gs", "augusts.bautra@gmail.com"]
+
+  gem.summary       = "Ruby wrapper for communicating with SEB.lv i-bank payment API."
+  gem.homepage      = "https://github.com/CreativeGS/seb_elink"
+  gem.license       = "BSD-3-Clause"
+
+  gem.files         = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+  gem.bindir        = "exe"
+  gem.executables   = gem.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  gem.require_paths = ["lib"]
+
+  gem.add_development_dependency "bundler", "~> 1.16"
+  gem.add_development_dependency "rake", "~> 10.0"
+  gem.add_development_dependency "rspec", "~> 3.7"
+  gem.add_development_dependency "pry", "~> 0.11.3"
+  gem.add_development_dependency "simplecov", "~> 0.15.1"
+  gem.add_development_dependency "coveralls"
+end

metadata

@@ -0,0 +1,148 @@
+--- !ruby/object:Gem::Specification
+name: seb_elink
+version: !ruby/object:Gem::Version
+  version: 0.9.0
+platform: ruby
+authors:
+- Epigene
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2017-12-14 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.16'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.16'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.7'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.11.3
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.11.3
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.15.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.15.1
+- !ruby/object:Gem::Dependency
+  name: coveralls
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- cto@creative.gs
+- augusts.bautra@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .circleci/config.yml
+- .gitignore
+- .rspec
+- CODE_OF_CONDUCT.md
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- lib/seb_elink.rb
+- lib/seb_elink/communications.rb
+- lib/seb_elink/gateway.rb
+- lib/seb_elink/message.rb
+- lib/seb_elink/message_specs.rb
+- lib/seb_elink/response.rb
+- lib/seb_elink/version.rb
+- seb_elink.gemspec
+homepage: https://github.com/CreativeGS/seb_elink
+licenses:
+- BSD-3-Clause
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '2'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.8
+signing_key: 
+specification_version: 4
+summary: Ruby wrapper for communicating with SEB.lv i-bank payment API.
+test_files: []