securenative 0.1.17 → 0.1.23

data/out/test/securenative-ruby/spec_date_utils.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+require 'utils/date_utils'
+require 'rspec'
+
+RSpec.describe DateUtils do
+  it 'converts to timestamp' do
+    iso_8601_date = '2020-05-20T15:07:13Z'
+    result = DateUtils.to_timestamp(iso_8601_date)
+
+    expect(result).to eq(iso_8601_date)
+  end
+end

data/out/test/securenative-ruby/spec_encryption_utils.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+require 'utils/encryption_utils'
+require 'rspec'
+
+RSpec.describe EncryptionUtils do
+  it 'encrypts' do
+    secret_key = 'AFD16D89150FD7FB19EE9E936DC1AE3547CE119B'
+    payload = '{"cid":"198a41ff-a10f-4cda-a2f3-a9ca80c0703b","vi":"148a42ff-b40f-4cda-a2f3-a8ca80c0703b","fp":"6d8cabd95987f8318b1fe01593d5c2a5.24700f9f1986800ab4fcc880530dd0ed"}'
+    result = EncryptionUtils.encrypt(payload, secret_key)
+
+    expect(result).not_to be_nil
+  end
+
+  it 'decrypts' do
+    secret_key = 'AFD16D89150FD7FB19EE9E936DC1AE3547CE119B'
+    encrypted_payload = 'dfcc35bc71653771d4541f08937c35cbc98faea2c061ff7904f80abf7c072f0029157ed97a55b00efe09fb0d2f86f5693ecbba3f6339862ed3908f0d746533133c8c838be641dad76cf3f9cce67dc1b48cbc8574f24637be4aa90f802ec4b7e5d50b5f9cb3d64e6887ef99b8b941e69370ac7994ccafaf17ceff1d7a68ac30e4b0fe4eb1b844460d5f7687f16902cea61d0ccc085f7ea6087fae38482cd1ee1c7574dc4b0e996bc4e5946eeb8e8509fbdd9f1884eb3f02cbbaefe4566c999d50'
+    cid = '12946065-65af-4825-9893-fce901c8da49'
+    fp = '9a6e6a7d636ca772924bd2219853d73c.24700f9f1986800ab4fcc880530dd0ed'
+
+    result = EncryptionUtils.decrypt(encrypted_payload, secret_key)
+
+    expect(result.cid).to eq(cid)
+    expect(result.fp).to eq(fp)
+  end
+end

data/out/test/securenative-ruby/spec_event_manager.rb

@@ -0,0 +1,93 @@
+# frozen_string_literal: true
+
+require 'event_manager'
+require 'config/configuration_builder'
+require 'models/user_traits'
+require 'models/request_context'
+require 'rspec'
+require 'webmock/rspec'
+
+class SampleEvent
+  attr_reader :event_type, :timestamp, :rid, :user_id, :user_traits, :request, :properties
+
+  def initialize
+    @event_type = 'custom-event'
+    @timestamp = Time.now.strftime('%Y-%m-%dT%H:%M:%S.%L%Z')
+    @rid = '432532'
+    @user_id = '1'
+    @user_traits = UserTraits.new(name: 'some user', email: 'email@securenative.com', phone: '+1234567890')
+    @request = RequestContext.new
+    @properties = []
+  end
+end
+
+RSpec.describe EventManager do
+  it 'successfully sends sync event with status code 200' do
+    options = ConfigurationBuilder.new(api_key: 'YOUR_API_KEY', api_url: 'https://api.securenative-stg.com/collector/api/v1')
+    event = SampleEvent.new
+
+    stub_request(:post, "https://api.securenative-stg.com/collector/api/v1/some-path/to-api").
+        with(
+            headers: {
+                'Accept'=>'*/*',
+                'Accept-Encoding'=>'gzip;q=1.0,deflate;q=0.6,identity;q=0.3',
+                'Authorization'=>'YOUR_API_KEY',
+                'Content-Type'=>'application/json',
+                'Sn-Version'=>'0.1.22',
+                'User-Agent'=>'SecureNative-ruby'
+            }).
+        to_return(status: 200, body: "", headers: {})
+
+    event_manager = EventManager.new(options)
+
+    event_manager.start_event_persist
+    res = event_manager.send_sync(event, 'some-path/to-api', false)
+    event_manager.stop_event_persist
+
+    expect(res.code).to eq('200')
+  end
+
+  it 'fails when send sync event status code is 401' do
+    options = ConfigurationBuilder.new(api_key: 'YOUR_API_KEY', api_url: 'https://api.securenative-stg.com/collector/api/v1')
+    event = SampleEvent.new
+
+    stub_request(:post, "https://api.securenative-stg.com/collector/api/v1/some-path/to-api").
+        with(
+            headers: {
+                'Accept'=>'*/*',
+                'Accept-Encoding'=>'gzip;q=1.0,deflate;q=0.6,identity;q=0.3',
+                'Authorization'=>'YOUR_API_KEY',
+                'Content-Type'=>'application/json',
+                'Sn-Version'=>'0.1.22',
+                'User-Agent'=>'SecureNative-ruby'
+            }).
+        to_return(status: 401, body: "", headers: {})
+
+    event_manager = EventManager.new(options)
+    res = event_manager.send_sync(event, 'some-path/to-api', false)
+
+    expect(res.code).to eq('401')
+  end
+
+  it 'fails when send sync event status code is 500' do
+    options = ConfigurationBuilder.new(api_key: 'YOUR_API_KEY', api_url: 'https://api.securenative-stg.com/collector/api/v1')
+    event = SampleEvent.new
+
+    stub_request(:post, "https://api.securenative-stg.com/collector/api/v1/some-path/to-api").
+        with(
+            headers: {
+                'Accept'=>'*/*',
+                'Accept-Encoding'=>'gzip;q=1.0,deflate;q=0.6,identity;q=0.3',
+                'Authorization'=>'YOUR_API_KEY',
+                'Content-Type'=>'application/json',
+                'Sn-Version'=>'0.1.22',
+                'User-Agent'=>'SecureNative-ruby'
+            }).
+        to_return(status: 500, body: "", headers: {})
+
+    event_manager = EventManager.new(options)
+    res = event_manager.send_sync(event, 'some-path/to-api', false)
+
+    expect(res.code).to eq('500')
+  end
+end

data/out/test/securenative-ruby/spec_helper.rb

@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+require 'bundler/setup'
+require 'webmock/rspec'
+require 'simplecov'
+require 'codecov'
+
+SimpleCov.start
+SimpleCov.formatter = SimpleCov::Formatter::Codecov
+
+RSpec.configure do |config|
+  # Enable flags like --only-failures and --next-failure
+  config.example_status_persistence_file_path = '.rspec_status'
+
+  # Disable RSpec exposing methods globally on `Module` and `main`
+  config.disable_monkey_patching!
+
+  config.expect_with :rspec do |c|
+    c.syntax = :expect
+  end
+
+  config.mock_with :rspec do |mocks|
+    # Prevents you from mocking or stubbing a method that does not exist on
+    # a real object. This is generally recommended, and will default to
+    # `true` in RSpec 4.
+    mocks.verify_partial_doubles = true
+  end
+end

data/out/test/securenative-ruby/spec_ip_utils.rb

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+
+require 'utils/ip_utils'
+require 'rspec'
+
+RSpec.describe IpUtils do
+  it 'checks if ip address valid ipv4' do
+    valid_ipv4 = '172.16.254.1'
+    expect(IpUtils.ip_address?(valid_ipv4)).to be_truthy
+  end
+
+  it 'checks if ip address valid ipv6' do
+    valid_ipv6 = '2001:db8:1234:0000:0000:0000:0000:0000'
+    expect(IpUtils.ip_address?(valid_ipv6)).to be_truthy
+  end
+
+  it 'checks if ip address invalid ipv4' do
+    invalid_ipv4 = '172.16.2541'
+    expect(IpUtils.ip_address?(invalid_ipv4)).to be_falsey
+  end
+
+  it 'checks if ip address invalid ipv6' do
+    invalid_ipv6 = '2001:db8:1234:0000'
+    expect(IpUtils.ip_address?(invalid_ipv6)).to be_falsey
+  end
+
+  it 'checks if valid public ip' do
+    ip = '64.71.222.37'
+    expect(IpUtils.valid_public_ip?(ip)).to be_truthy
+  end
+
+  it 'checks if not valid public ip' do
+    ip = '10.0.0.0'
+    expect(IpUtils.valid_public_ip?(ip)).to be_falsey
+  end
+
+  it 'checks if valid loopback ip' do
+    ip = '127.0.0.1'
+    expect(IpUtils.loop_back?(ip)).to be_truthy
+  end
+end

data/out/test/securenative-ruby/spec_request_utils.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+require 'config/securenative_options'
+require 'utils/request_utils'
+require 'webmock/rspec'
+require 'rspec'
+
+RSpec.describe RequestUtils do
+  it 'extract a request with proxy headers' do
+    options = SecureNativeOptions.new
+    options.proxy_headers = [
+      'CF-Connecting-IP'
+    ]
+
+    stub_request(:get, 'http://www.example.com/').with(
+      headers: {
+        'Accept' => '*/*',
+        'Accept-Encoding' => 'gzip;q=1.0,deflate;q=0.6,identity;q=0.3',
+        'User-Agent' => 'Ruby'
+      }).to_return(status: 200, body: '', headers: { 'CF-Connecting-IP' => 'CF-Connecting-IP: 203.0.113.1' })
+
+    request = Net::HTTP.get_response('www.example.com', '/')
+    RequestUtils.get_client_ip_from_request(request, options)
+  end
+end

data/out/test/securenative-ruby/spec_sdk_event.rb

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+
+require 'models/sdk_event'
+require 'models/event_options'
+require 'config/securenative_options'
+require 'enums/event_types'
+require 'errors/securenative_invalid_options_error'
+require 'rspec'
+
+RSpec.describe SDKEvent do
+  it 'throws when event created without user id' do
+    event_options = EventOptions.new(event: EventTypes::LOG_IN, user_id: nil)
+    options = SecureNativeOptions.new
+
+    expect { SDKEvent.new(event_options, options) }.to raise_error(SecureNativeInvalidOptionsError)
+  end
+
+  it 'throws when event created without event type' do
+    event_options = EventOptions.new(event: nil, user_id: '1234')
+    options = SecureNativeOptions.new
+
+    expect { SDKEvent.new(event_options, options) }.to raise_error(SecureNativeInvalidOptionsError)
+  end
+end

data/out/test/securenative-ruby/spec_securenative.rb

@@ -0,0 +1,61 @@
+# frozen_string_literal: true
+
+require 'securenative'
+require 'config/configuration_manager'
+require 'errors/securenative_sdk_error'
+require 'errors/securenative_sdk_Illegal_state_error'
+require 'errors/securenative_config_error'
+require 'rspec'
+
+RSpec.describe SecureNative do
+  it 'gets sdk instance without init throws' do
+    expect { SecureNative.instance }.to raise_error(SecureNativeSDKIllegalStateError)
+  end
+
+  it 'inits sdk without api key and throws' do
+    expect { SecureNative.init_with_options(ConfigurationManager.config_builder) }.to raise_error(SecureNativeSDKError)
+  end
+
+  it 'inits sdk with empty api key and throws' do
+    expect { SecureNative.init_with_api_key('') }.to raise_error(SecureNativeConfigError)
+  end
+
+  it 'inits sdk with api key and defaults' do
+    SecureNative._flush
+    api_key = 'API_KEY'
+    securenative = SecureNative.init_with_api_key(api_key)
+    options = securenative.options
+
+    expect(options.api_key).to eq(api_key)
+    expect(options.api_url).to eq('https://api.securenative.com/collector/api/v1')
+    expect(options.interval).to eq(1000)
+    expect(options.timeout).to eq(1500)
+    expect(options.max_events).to eq(1000)
+    expect(options.auto_send).to eq(true)
+    expect(options.disable).to eq(false)
+    expect(options.log_level).to eq('FATAL')
+    expect(options.fail_over_strategy).to eq(FailOverStrategy::FAIL_OPEN)
+  end
+
+  it 'inits sdk twice and throws' do
+    expect { SecureNative.init_with_api_key('API_KEY') }.to raise_error(SecureNativeSDKError)
+  end
+
+  it 'inits sdk with api key and gets instance' do
+    SecureNative._flush
+    api_key = 'API_KEY'
+    securenative = SecureNative.init_with_api_key(api_key)
+
+    expect(securenative).to eq(SecureNative.instance)
+  end
+
+  it 'inits sdk with builder' do
+    SecureNative._flush
+    securenative = SecureNative.init_with_options(ConfigurationBuilder.new(api_key: 'API_KEY', max_events: 10, log_level: 'ERROR'))
+    options = securenative.options
+
+    expect(options.api_key).to eq('API_KEY')
+    expect(options.max_events).to eq(10)
+    expect(options.log_level).to eq('ERROR')
+  end
+end

data/out/test/securenative-ruby/spec_securenative_http_client.rb

@@ -0,0 +1,31 @@
+# frozen_string_literal: true
+
+require 'http/securenative_http_client'
+require 'config/configuration_builder'
+require 'webmock/rspec'
+require 'rspec'
+
+RSpec.describe SecureNativeHttpClient do
+  it 'makes a simple post call' do
+    options = ConfigurationBuilder.new(api_key: 'YOUR_API_KEY', api_url: 'https://api.securenative-stg.com/collector/api/v1')
+
+    stub_request(:post, "https://api.securenative-stg.com/collector/api/v1/track").
+        with(
+            body: "{\"event\": \"SOME_EVENT_NAME\"}",
+            headers: {
+                'Accept'=>'*/*',
+                'Accept-Encoding'=>'gzip;q=1.0,deflate;q=0.6,identity;q=0.3',
+                'Authorization'=>'YOUR_API_KEY',
+                'Content-Type'=>'application/json',
+                'Sn-Version'=>'0.1.22',
+                'User-Agent'=>'SecureNative-ruby'
+            }).
+        to_return(status: 200, body: "", headers: {})
+    client = SecureNativeHttpClient.new(options)
+    payload = '{"event": "SOME_EVENT_NAME"}'
+
+    res = client.post('track', payload)
+
+    expect(res.code).to eq('200')
+  end
+end

data/out/test/securenative-ruby/spec_signature_utils.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+require 'utils/signature_utils'
+require 'rspec'
+
+RSpec.describe SignatureUtils do
+  it 'verifies request payload' do
+    signature = 'c4574c1748064735513697750c6223ff36b03ae3b85b160ce8788557d01e1d9d1c9cd942074323ee0061d3dcc8c94359c5acfa6eee8e2da095b3967b1a88ab73'
+    payload = '{"id":"4a9157ffbd18cfbd73a57298","type":"security-action","flow":{"id":"62298c73a9bb433fbd1f75984a9157fd","name":"Block user that violates geo velocity"},"userId":"73a9bb433fbd1f75984a9157","userTraits":{"name":"John Doe","email":"john.doe@gmail.com"},"request":{"ip":"10.0.0.0","fp":"9bb433fb984a9157d1f7598"},"action":"block","properties":{"type":"customer"},"timestamp":"2020-02-23T22:28:55.387Z"}'
+    secret_key = 'B00C42DAD33EAC6F6572DA756EA4915349C0A4F6'
+
+    expect(SignatureUtils.valid_signature?(secret_key, payload, signature)).to be_truthy
+  end
+
+  it 'verifies request empty signature' do
+    expect(SignatureUtils.valid_signature?('', '', 'B00C42DAD33EAC6F6572DA756EA4915349C0A4F6')).to be_falsey
+  end
+end

data/out/test/securenative-ruby/spec_version_util.rb

@@ -0,0 +1,10 @@
+# frozen_string_literal: true
+
+require 'utils/version_utils'
+require 'rspec'
+
+RSpec.describe VersionUtils do
+  it 'checks that parsing version is valid' do
+    expect(VersionUtils.version).not_to eq('unknown')
+  end
+end

data/securenative.gemspec

@@ -1,10 +1,10 @@
 lib = File.expand_path("lib", __dir__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require_relative "lib/securenative/utils/version_utils"
+require_relative "lib/utils/version_utils"
 
 Gem::Specification.new do |spec|
   spec.name          = "securenative"
-  spec.version       = VersionUtils.version
+  spec.version       = "0.1.23"
   spec.authors       = ["SecureNative"]
   spec.email         = ["support@securenative.com"]
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: securenative
 version: !ruby/object:Gem::Version
-  version: 0.1.17
+  version: 0.1.23
 platform: ruby
 authors:
 - SecureNative
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2020-07-15 00:00:00.000000000 Z
+date: 2020-09-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -51,54 +51,104 @@ files:
 - ".gitignore"
 - ".rakeTasks"
 - ".rspec"
-- ".travis.yml"
 - Gemfile
 - Gemfile.lock
 - LICENSE
 - README.md
 - Rakefile
-- VERSION
 - bin/console
 - bin/setup
-- lib/securenative/api_manager.rb
-- lib/securenative/config/configuration_builder.rb
-- lib/securenative/config/configuration_manager.rb
-- lib/securenative/config/securenative_options.rb
-- lib/securenative/context/context_builder.rb
-- lib/securenative/context/securenative_context.rb
-- lib/securenative/enums/api_route.rb
-- lib/securenative/enums/event_types.rb
-- lib/securenative/enums/failover_strategy.rb
-- lib/securenative/enums/risk_level.rb
-- lib/securenative/event_manager.rb
-- lib/securenative/event_options_builder.rb
-- lib/securenative/exceptions/securenative_config_exception.rb
-- lib/securenative/exceptions/securenative_http_exception.rb
-- lib/securenative/exceptions/securenative_invalid_options_exception.rb
-- lib/securenative/exceptions/securenative_invalid_uri_exception.rb
-- lib/securenative/exceptions/securenative_parse_exception.rb
-- lib/securenative/exceptions/securenative_sdk_Illegal_state_exception.rb
-- lib/securenative/exceptions/securenative_sdk_exception.rb
-- lib/securenative/http/http_response.rb
-- lib/securenative/http/securenative_http_client.rb
-- lib/securenative/logger.rb
-- lib/securenative/models/client_token.rb
-- lib/securenative/models/device.rb
-- lib/securenative/models/event_options.rb
-- lib/securenative/models/request_context.rb
-- lib/securenative/models/request_options.rb
-- lib/securenative/models/sdk_event.rb
-- lib/securenative/models/user_traits.rb
-- lib/securenative/models/verify_result.rb
-- lib/securenative/securenative.iml
-- lib/securenative/securenative.rb
-- lib/securenative/utils/date_utils.rb
-- lib/securenative/utils/encryption_utils.rb
-- lib/securenative/utils/ip_utils.rb
-- lib/securenative/utils/request_utils.rb
-- lib/securenative/utils/signature_utils.rb
-- lib/securenative/utils/utils.rb
-- lib/securenative/utils/version_utils.rb
+- lib/api_manager.rb
+- lib/config/configuration_builder.rb
+- lib/config/configuration_manager.rb
+- lib/config/securenative_options.rb
+- lib/context/hanami_context.rb
+- lib/context/rails_context.rb
+- lib/context/securenative_context.rb
+- lib/context/sinatra_context.rb
+- lib/enums/api_route.rb
+- lib/enums/event_types.rb
+- lib/enums/failover_strategy.rb
+- lib/enums/risk_level.rb
+- lib/errors/securenative_config_error.rb
+- lib/errors/securenative_http_error.rb
+- lib/errors/securenative_invalid_options_error.rb
+- lib/errors/securenative_invalid_uri_error.rb
+- lib/errors/securenative_parse_error.rb
+- lib/errors/securenative_sdk_Illegal_state_error.rb
+- lib/errors/securenative_sdk_error.rb
+- lib/event_manager.rb
+- lib/http/secure_native_http_response.rb
+- lib/http/securenative_http_client.rb
+- lib/models/client_token.rb
+- lib/models/device.rb
+- lib/models/event_options.rb
+- lib/models/request_context.rb
+- lib/models/request_options.rb
+- lib/models/sdk_event.rb
+- lib/models/user_traits.rb
+- lib/models/verify_result.rb
+- lib/securenative.rb
+- lib/utils/date_utils.rb
+- lib/utils/encryption_utils.rb
+- lib/utils/ip_utils.rb
+- lib/utils/request_utils.rb
+- lib/utils/secure_native_logger.rb
+- lib/utils/signature_utils.rb
+- lib/utils/utils.rb
+- lib/utils/version_utils.rb
+- out/production/securenative-ruby/api_manager.rb
+- out/production/securenative-ruby/config/configuration_builder.rb
+- out/production/securenative-ruby/config/configuration_manager.rb
+- out/production/securenative-ruby/config/securenative_options.rb
+- out/production/securenative-ruby/context/hanami_context.rb
+- out/production/securenative-ruby/context/rails_context.rb
+- out/production/securenative-ruby/context/securenative_context.rb
+- out/production/securenative-ruby/context/sinatra_context.rb
+- out/production/securenative-ruby/enums/api_route.rb
+- out/production/securenative-ruby/enums/event_types.rb
+- out/production/securenative-ruby/enums/failover_strategy.rb
+- out/production/securenative-ruby/enums/risk_level.rb
+- out/production/securenative-ruby/errors/securenative_config_error.rb
+- out/production/securenative-ruby/errors/securenative_http_error.rb
+- out/production/securenative-ruby/errors/securenative_invalid_options_error.rb
+- out/production/securenative-ruby/errors/securenative_invalid_uri_error.rb
+- out/production/securenative-ruby/errors/securenative_parse_error.rb
+- out/production/securenative-ruby/errors/securenative_sdk_Illegal_state_error.rb
+- out/production/securenative-ruby/errors/securenative_sdk_error.rb
+- out/production/securenative-ruby/event_manager.rb
+- out/production/securenative-ruby/http/secure_native_http_response.rb
+- out/production/securenative-ruby/http/securenative_http_client.rb
+- out/production/securenative-ruby/models/client_token.rb
+- out/production/securenative-ruby/models/device.rb
+- out/production/securenative-ruby/models/event_options.rb
+- out/production/securenative-ruby/models/request_context.rb
+- out/production/securenative-ruby/models/request_options.rb
+- out/production/securenative-ruby/models/sdk_event.rb
+- out/production/securenative-ruby/models/user_traits.rb
+- out/production/securenative-ruby/models/verify_result.rb
+- out/production/securenative-ruby/securenative.rb
+- out/production/securenative-ruby/utils/date_utils.rb
+- out/production/securenative-ruby/utils/encryption_utils.rb
+- out/production/securenative-ruby/utils/ip_utils.rb
+- out/production/securenative-ruby/utils/request_utils.rb
+- out/production/securenative-ruby/utils/secure_native_logger.rb
+- out/production/securenative-ruby/utils/signature_utils.rb
+- out/production/securenative-ruby/utils/utils.rb
+- out/production/securenative-ruby/utils/version_utils.rb
+- out/test/securenative-ruby/spec_api_manager.rb
+- out/test/securenative-ruby/spec_context_builder.rb
+- out/test/securenative-ruby/spec_date_utils.rb
+- out/test/securenative-ruby/spec_encryption_utils.rb
+- out/test/securenative-ruby/spec_event_manager.rb
+- out/test/securenative-ruby/spec_helper.rb
+- out/test/securenative-ruby/spec_ip_utils.rb
+- out/test/securenative-ruby/spec_request_utils.rb
+- out/test/securenative-ruby/spec_sdk_event.rb
+- out/test/securenative-ruby/spec_securenative.rb
+- out/test/securenative-ruby/spec_securenative_http_client.rb
+- out/test/securenative-ruby/spec_signature_utils.rb
+- out/test/securenative-ruby/spec_version_util.rb
 - securenative.gemspec
 homepage: https://www.securenative.com
 licenses: