securenative 0.1.16 → 0.1.22

data/{lib/securenative → out/production/securenative-ruby}/http/http_response.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 class HttpResponse
   attr_reader :ok, :status_code, :body
   attr_writer :ok, :status_code, :body
@@ -7,4 +9,4 @@ class HttpResponse
     @status_code = status_code
     @body = body
   end
-end
+end

data/out/production/securenative-ruby/http/securenative_http_client.rb

@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+
+require 'httpclient'
+
+class SecureNativeHttpClient
+  AUTHORIZATION_HEADER = 'Authorization'
+  VERSION_HEADER = 'SN-Version'
+  USER_AGENT_HEADER = 'User-Agent'
+  USER_AGENT_HEADER_VALUE = 'SecureNative-python'
+  CONTENT_TYPE_HEADER = 'Content-Type'
+  CONTENT_TYPE_HEADER_VALUE = 'application/json'
+
+  def initialize(securenative_options)
+    @options = securenative_options
+    @client = HTTPClient.new
+  end
+
+  def _headers
+    {
+      CONTENT_TYPE_HEADER => CONTENT_TYPE_HEADER_VALUE,
+      USER_AGENT_HEADER => USER_AGENT_HEADER_VALUE,
+      VERSION_HEADER => VersionUtils.version,
+      AUTHORIZATION_HEADER => @options.api_key
+    }
+  end
+
+  def post(path, body)
+    url = "#{@options.api_url}/#{path}"
+    headers = _headers
+    @client.post(url, body, headers)
+  end
+end

data/out/production/securenative-ruby/models/client_token.rb

@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+
+class ClientToken
+  attr_reader :cid, :vid, :fp
+  attr_writer :cid, :vid, :fp
+
+  def initialize(cid, vid, fp)
+    @cid = cid
+    @vid = vid
+    @fp = fp
+  end
+end

data/out/production/securenative-ruby/models/device.rb

@@ -0,0 +1,10 @@
+# frozen_string_literal: true
+
+class Device
+  attr_reader :device_id
+  attr_writer :device_id
+
+  def initialize(device_id)
+    @device_id = device_id
+  end
+end

data/{lib/securenative → out/production/securenative-ruby}/models/event_options.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 class EventOptions
   attr_reader :event, :user_id, :user_traits, :context, :properties, :timestamp
   attr_writer :event, :user_id, :user_traits, :context, :properties, :timestamp
@@ -10,4 +12,4 @@ class EventOptions
     @properties = properties
     @timestamp = timestamp
   end
-end
+end

data/{lib/securenative → out/production/securenative-ruby}/models/request_context.rb

@@ -1,6 +1,8 @@
+# frozen_string_literal: true
+
 class RequestContext
-  attr_reader :cid, :vid, :fp, :ip, :remote_ip, :headers, :url, :method
-  attr_writer :cid, :vid, :fp, :ip, :remote_ip, :headers, :url, :method
+  attr_reader :cid, :vid, :fp, :ip, :remote_ip, :headers, :url, :http_method
+  attr_writer :cid, :vid, :fp, :ip, :remote_ip, :headers, :url, :http_method
 
   def initialize(cid = nil, vid = nil, fp = nil, ip = nil, remote_ip = nil, headers = nil, url = nil, method = nil)
     @cid = cid
@@ -13,3 +15,4 @@ class RequestContext
     @method = method
   end
 end
+

data/out/production/securenative-ruby/models/request_options.rb

@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+
+class RequestOptions
+  attr_reader :url, :body, :retry_sending
+  attr_writer :url, :body, :retry_sending
+
+  def initialize(url, body, retry_sending)
+    @url = url
+    @body = body
+    @retry_sending = retry_sending
+  end
+end

data/{lib/securenative → out/production/securenative-ruby}/models/sdk_event.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 class SDKEvent
   attr_reader :context, :rid, :event_type, :user_id, :user_traits, :request, :timestamp, :properties
   attr_writer :context, :rid, :event_type, :user_id, :user_traits, :request, :timestamp, :properties
@@ -16,10 +18,16 @@ class SDKEvent
     @user_id = event_options.user_id
     @user_traits = event_options.user_traits
     @request = RequestContext(cid = client_token ? client_token.cid : '', vid = client_token ? client_token.vid : '',
-                              fp = client_token ? client_token.fp : '', ip = @context.ip, remote_ip = @context.remote_ip,
-                              method = @context.method, url = @context.url, headers = @context.headers)
+                              fp = client_token ? client_token.fp : '', ip = @context.ip,
+                              remote_ip = @context.remote_ip, method = @context.http_method, url = @context.url,
+                              headers = @context.headers)
 
     @timestamp = DateUtils.to_timestamp(event_options.timestamp)
     @properties = event_options.properties
   end
-end
+
+  def to_s
+    "context: #{@context}, rid: #{@rid}, event_type: #{@event_type}, user_id: #{@user_id},
+user_traits: #{@user_traits}, request: #{@request}, timestamp: #{@timestamp}, properties: #{@properties}"
+  end
+end

data/out/production/securenative-ruby/models/user_traits.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+class UserTraits
+  attr_reader :name, :email, :phone, :created_at
+  attr_writer :name, :email, :phone, :created_at
+
+  def initialize(name = nil, email = nil, phone = nil, created_at = nil)
+    @name = name
+    @email = email
+    @created_at = created_at
+    @phone = phone
+  end
+end

data/{lib/securenative → out/production/securenative-ruby}/models/verify_result.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 class VerifyResult
   attr_reader :risk_level, :score, :triggers
   attr_writer :risk_level, :score, :triggers
@@ -7,4 +9,4 @@ class VerifyResult
     @score = score
     @triggers = triggers
   end
-end
+end

data/{lib/securenative → out/production/securenative-ruby}/securenative.rb

@@ -1,20 +1,29 @@
-require_relative 'logger'
-require_relative 'utils/signature_utils'
+# frozen_string_literal: true
+
+require 'utils/secure_native_logger'
+require 'utils/signature_utils'
+require 'utils/utils'
+require 'errors/securenative_sdk_error'
+require 'errors/securenative_sdk_Illegal_state_error'
+require 'errors/securenative_config_error'
+require 'enums/failover_strategy'
+require 'config/configuration_builder'
+require 'event_manager'
 
 class SecureNative
   attr_reader :options
 
   def initialize(options)
     @securenative = nil
-    raise SecureNativeSDKException('You must pass your SecureNative api key') if Utils.null_or_empty?(options.api_key)
+    raise SecureNativeSDKError, 'You must pass your SecureNative api key' if Utils.null_or_empty?(options.api_key)
 
     @options = options
-    @event_manager = EventManager(@options)
+    @event_manager = EventManager.new(@options)
 
     @event_manager.start_event_persist unless @options.api_url.nil?
 
     @api_manager = ApiManager.new(@event_manager, @options)
-    Logger.init_logger(@options.log_level)
+    SecureNativeLogger.init_logger(@options.log_level)
   end
 
   def self.init_with_options(options)
@@ -22,21 +31,21 @@ class SecureNative
       @securenative = SecureNative.new(options)
       @securenative
     else
-      Logger.debug('This SDK was already initialized.')
-      raise SecureNativeSDKException('This SDK was already initialized.')
+      SecureNativeLogger.debug('This SDK was already initialized.')
+      raise SecureNativeSDKError, 'This SDK was already initialized.'
     end
   end
 
   def self.init_with_api_key(api_key)
-    raise SecureNativeConfigException('You must pass your SecureNative api key') if Utils.null_or_empty?(api_key)
+    raise SecureNativeConfigError, 'You must pass your SecureNative api key' if Utils.null_or_empty?(api_key)
 
     if @securenative.nil?
-      options = ConfigurationBuilder(api_key = api_key)
+      options = ConfigurationBuilder.new(api_key: api_key)
       @securenative = SecureNative.new(options)
       @securenative
     else
-      Logger.debug('This SDK was already initialized.')
-      raise SecureNativeSDKException(u('This SDK was already initialized.'))
+      SecureNativeLogger.debug('This SDK was already initialized.')
+      raise SecureNativeSDKError, 'This SDK was already initialized.'
     end
   end
 
@@ -46,7 +55,7 @@ class SecureNative
   end
 
   def self.instance
-    raise SecureNativeSDKIllegalStateException() if @securenative.nil?
+    raise SecureNativeSDKIllegalStateError if @securenative.nil?
 
     @securenative
   end
@@ -54,11 +63,11 @@ class SecureNative
   def self.config_builder(api_key = nil, api_url = 'https://api.securenative.com/collector/api/v1', interval = 1000,
                           max_events = 1000, timeout = 1500, auto_send = true, disable = false, log_level = 'FATAL',
                           fail_over_strategy = FailOverStrategy::FAIL_OPEN)
-    ConfigurationBuilder(api_key, api_url, interval, max_events, timeout, auto_send, disable, log_level, fail_over_strategy)
+    ConfigurationBuilder.new(api_key, api_url, interval, max_events, timeout, auto_send, disable, log_level, fail_over_strategy)
   end
 
   def self.context_builder(client_token = nil, ip = nil, remote_ip = nil, headers = nil, url = nil, method = nil, body = nil)
-    ContextBuilder(client_token, ip, remote_ip, headers, url, method, body)
+    ContextBuilder.new(client_token, ip, remote_ip, headers, url, method, body)
   end
 
   def track(event_options)
@@ -79,4 +88,4 @@ class SecureNative
 
     SignatureUtils.valid_signature?(@options.api_key, body, request_signature)
   end
-end
+end

data/out/production/securenative-ruby/utils/date_utils.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+class DateUtils
+  def self.to_timestamp(date)
+    return Time.now.strftime('%Y-%m-%dT%H:%M:%S%Z') if date.nil?
+
+    Time.parse(date).iso8601
+  end
+end

data/{lib/securenative → out/production/securenative-ruby}/utils/encryption_utils.rb

@@ -11,9 +11,6 @@ class EncryptionUtils
     cipher.padding = 0
 
     if text.size % BLOCK_SIZE != 0
-      logger = Logger.new(STDOUT)
-      logger.level = Logger::WARN
-      logger.fatal('data not multiple of block length')
       return nil
     end
 
@@ -35,4 +32,4 @@ class EncryptionUtils
     rv = cipher.update(s) + cipher.final
     rv.strip
   end
-end
+end

data/out/production/securenative-ruby/utils/ip_utils.rb

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+require "resolv"
+
+class IpUtils
+  def self.ip_address?(ip_address)
+    return true if ip_address =~ Resolv::IPv4::Regex
+    return true if ip_address =~ Resolv::IPv6::Regex
+
+    false
+  end
+
+  def self.valid_public_ip?(ip_address)
+    ip = IPAddr.new(ip_address)
+    return false if ip.loopback? || ip.private? || ip.link_local? || ip.untrusted? || ip.tainted?
+
+    true
+  end
+
+  def self.loop_back?(ip_address)
+    IPAddr.new(ip_address).loopback?
+  end
+end

data/{lib/securenative → out/production/securenative-ruby}/utils/request_utils.rb

@@ -1,6 +1,8 @@
+# frozen_string_literal: true
+
 class RequestUtils
-  SECURENATIVE_COOKIE = '_sn'.freeze
-  SECURENATIVE_HEADER = 'x-securenative'.freeze
+  SECURENATIVE_COOKIE = '_sn'
+  SECURENATIVE_HEADER = 'x-securenative'
 
   def self.get_secure_header_from_request(headers)
     return headers[RequestUtils.SECURENATIVE_HEADER] unless headers.nil?
@@ -18,4 +20,4 @@ class RequestUtils
   def self.get_remote_ip_from_request(request)
     request.remote_ip
   end
-end
+end

data/out/production/securenative-ruby/utils/secure_native_logger.rb

@@ -0,0 +1,44 @@
+# frozen_string_literal: true
+
+require 'logger'
+
+class SecureNativeLogger
+  @logger = Logger.new(STDOUT)
+
+  def self.init_logger(level = 'DEBUG')
+    @logger.level = case level
+                    when 'WARN'
+                      SecureNativeLogger::WARN
+                    when 'DEBUG'
+                      SecureNativeLogger::DEBUG
+                    when 'ERROR'
+                      SecureNativeLogger::ERROR
+                    when 'FATAL'
+                      SecureNativeLogger::FATAL
+                    when 'INFO'
+                      SecureNativeLogger::INFO
+                    else
+                      SecureNativeLogger::FATAL
+                    end
+
+    @logger.formatter = proc do |severity, datetime, progname, msg|
+      "[#{datetime}] #{severity}  (#{progname}): #{msg}\n"
+    end
+  end
+
+  def self.info(msg)
+    @logger.info(msg)
+  end
+
+  def self.debug(msg)
+    @logger.debug(msg)
+  end
+
+  def self.warning(msg)
+    @logger.warning(msg)
+  end
+
+  def self.error(msg)
+    @logger.error(msg)
+  end
+end

data/out/production/securenative-ruby/utils/signature_utils.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+require 'openssl'
+
+class SignatureUtils
+  SIGNATURE_HEADER = 'x-securenative'
+
+  def self.valid_signature?(api_key, payload, header_signature)
+    key = api_key.encode('utf-8')
+    body = payload.encode('utf-8')
+    calculated_signature = OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new('sha512'), key, body)
+    calculated_signature.eql? header_signature
+  rescue StandardError
+    false
+  end
+end

data/out/production/securenative-ruby/utils/utils.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+class Utils
+  def self.null_or_empty?(string)
+    return true if !string || string.empty? || string.nil?
+
+    false
+  end
+end

data/{lib/securenative → out/production/securenative-ruby}/utils/version_utils.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 class VersionUtils
   def self.version
     path = 'VERSION'
@@ -7,4 +9,4 @@ class VersionUtils
 
     version
   end
-end
+end

data/out/test/securenative-ruby/spec_api_manager.rb

@@ -0,0 +1,81 @@
+# frozen_string_literal: true
+
+require 'api_manager'
+require 'webmock/rspec'
+require 'rspec'
+
+RSpec.describe ApiManager do
+  let(:context) do
+    ContextBuilder(ip: '127.0.0.1', client_token: 'SECURED_CLIENT_TOKEN',
+                   headers: { 'user-agent' => 'Mozilla/5.0 (iPad; U; CPU OS 3_2_1 like Mac OS X; en-us)
+                   AppleWebKit/531.21.10 (KHTML, like Gecko) Mobile/7B405' })
+  end
+  let(:event_options) do
+    EventOptions(event_type: EventTypes.LOG_IN, user_id: 'USER_ID',
+                 user_traits: UserTraits('USER_NAME', 'USER_EMAIL', '+1234567890'),
+                 properties: { prop1: 'CUSTOM_PARAM_VALUE', prop2: true, prop3: 3 }).build
+  end
+
+  it 'tracks an event' do
+    options = ConfigurationBuilder.new(api_key: 'YOUR_API_KEY', auto_send: true, interval: 10, api_url: 'https://api.securenative-stg.com/collector/api/v1')
+
+    expected = '{"eventType":"sn.user.login","userId":"USER_ID","userTraits":{' \
+                   '"name":"USER_NAME","email":"USER_EMAIL","phone":"+1234567890","createdAt":null},"request":{' \
+                   '"cid":null,"vid":null,"fp":null,"ip":"127.0.0.1","remoteIp":null,"headers":{' \
+                   '"user-agent":"Mozilla/5.0 (iPad; U; CPU OS 3_2_1 like Mac OS X; en-us) ' \
+                   'AppleWebKit/531.21.10 (KHTML, like Gecko) Mobile/7B405"},"url":null,"method":null},' \
+                   '"properties":{"prop2":true,"prop1":"CUSTOM_PARAM_VALUE","prop3":3}}'
+
+    stub_request(:post, 'https://api.securenative-stg.com/collector/api/v1/track')
+      .with(body: JSON.parse(expected)).to_return(status: 200)
+    event_manager = EventManager.new(options)
+    event_manager.start_event_persist
+    api_manager = ApiManager.new(event_manager, options)
+
+    begin
+      api_manager.track(:event_options)
+    ensure
+      event_manager.stop_event_persist
+    end
+  end
+
+  it 'uses invalid options' do
+    options = ConfigurationBuilder(api_key: 'YOUR_API_KEY', auto_send: true, interval: 10, api_url: 'https://api.securenative-stg.com/collector/api/v1')
+
+    properties = {}
+    (0..12).each do |i|
+      properties[i] = i
+    end
+
+    stub_request(:post, 'https://api.securenative-stg.com/collector/api/v1/track').to_return(status: 200)
+    event_manager = EventManager.new(options)
+    event_manager.start_event_persist
+    api_manager = ApiManager.new(event_manager, options)
+
+    begin
+      expect { api_manager.track(EventOptions(event_type: EventTypes.LOG_IN, properties: properties).build) }
+        .to raise_error(SecureNativeInvalidOptionsError)
+    ensure
+      event_manager.stop_event_persist
+    end
+  end
+
+  it 'verifies an event' do
+    options = ConfigurationBuilder(api_key: 'YOUR_API_KEY', api_url: 'https://api.securenative-stg.com/collector/api/v1')
+
+    stub_request(:post, 'https://api.securenative-stg.com/collector/api/v1/track')
+      .with(body: { riskLevel: 'medium', score: 0.32, triggers: ['New IP', 'New City'] }).to_return(status: 200)
+    verify_result = VerifyResult.new(RiskLevel.LOW, 0, nil)
+
+    event_manager = EventManager.new(options)
+    event_manager.start_event_persist
+    api_manager = ApiManager.new(event_manager, options)
+
+    result = api_manager.verify(:event_options)
+
+    expect(result).not_to be_nil
+    expect(result.risk_level).to eq(verify_result.risk_level)
+    expect(result.score).to eq(verify_result.score)
+    expect(result.triggers).to eq(verify_result.triggers)
+  end
+end