securenative 0.1.23 → 0.1.29
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +43 -29
- data/lib/securenative.rb +47 -81
- data/{out/test/securenative-ruby → spec}/spec_helper.rb +0 -0
- metadata +8 -109
- data/.github/workflows/ci.yml +0 -49
- data/.github/workflows/publish.yml +0 -60
- data/.github/workflows/test.yml +0 -48
- data/.gitignore +0 -40
- data/.rakeTasks +0 -7
- data/.rspec +0 -3
- data/Gemfile +0 -11
- data/Gemfile.lock +0 -272
- data/LICENSE +0 -21
- data/Rakefile +0 -6
- data/bin/console +0 -14
- data/bin/setup +0 -8
- data/lib/api_manager.rb +0 -39
- data/lib/config/configuration_builder.rb +0 -27
- data/lib/config/configuration_manager.rb +0 -56
- data/lib/config/securenative_options.rb +0 -23
- data/lib/context/hanami_context.rb +0 -42
- data/lib/context/rails_context.rb +0 -44
- data/lib/context/securenative_context.rb +0 -67
- data/lib/context/sinatra_context.rb +0 -42
- data/lib/enums/api_route.rb +0 -6
- data/lib/enums/event_types.rb +0 -23
- data/lib/enums/failover_strategy.rb +0 -6
- data/lib/enums/risk_level.rb +0 -7
- data/lib/errors/securenative_config_error.rb +0 -4
- data/lib/errors/securenative_http_error.rb +0 -4
- data/lib/errors/securenative_invalid_options_error.rb +0 -4
- data/lib/errors/securenative_invalid_uri_error.rb +0 -4
- data/lib/errors/securenative_parse_error.rb +0 -4
- data/lib/errors/securenative_sdk_Illegal_state_error.rb +0 -4
- data/lib/errors/securenative_sdk_error.rb +0 -4
- data/lib/event_manager.rb +0 -157
- data/lib/http/secure_native_http_response.rb +0 -12
- data/lib/http/securenative_http_client.rb +0 -50
- data/lib/models/client_token.rb +0 -12
- data/lib/models/device.rb +0 -10
- data/lib/models/event_options.rb +0 -37
- data/lib/models/request_context.rb +0 -18
- data/lib/models/request_options.rb +0 -12
- data/lib/models/sdk_event.rb +0 -49
- data/lib/models/user_traits.rb +0 -13
- data/lib/models/verify_result.rb +0 -16
- data/lib/utils/date_utils.rb +0 -9
- data/lib/utils/encryption_utils.rb +0 -49
- data/lib/utils/ip_utils.rb +0 -23
- data/lib/utils/request_utils.rb +0 -69
- data/lib/utils/secure_native_logger.rb +0 -44
- data/lib/utils/signature_utils.rb +0 -16
- data/lib/utils/utils.rb +0 -9
- data/lib/utils/version_utils.rb +0 -11
- data/out/production/securenative-ruby/api_manager.rb +0 -39
- data/out/production/securenative-ruby/config/configuration_builder.rb +0 -27
- data/out/production/securenative-ruby/config/configuration_manager.rb +0 -56
- data/out/production/securenative-ruby/config/securenative_options.rb +0 -23
- data/out/production/securenative-ruby/context/hanami_context.rb +0 -42
- data/out/production/securenative-ruby/context/rails_context.rb +0 -44
- data/out/production/securenative-ruby/context/securenative_context.rb +0 -67
- data/out/production/securenative-ruby/context/sinatra_context.rb +0 -42
- data/out/production/securenative-ruby/enums/api_route.rb +0 -6
- data/out/production/securenative-ruby/enums/event_types.rb +0 -23
- data/out/production/securenative-ruby/enums/failover_strategy.rb +0 -6
- data/out/production/securenative-ruby/enums/risk_level.rb +0 -7
- data/out/production/securenative-ruby/errors/securenative_config_error.rb +0 -4
- data/out/production/securenative-ruby/errors/securenative_http_error.rb +0 -4
- data/out/production/securenative-ruby/errors/securenative_invalid_options_error.rb +0 -4
- data/out/production/securenative-ruby/errors/securenative_invalid_uri_error.rb +0 -4
- data/out/production/securenative-ruby/errors/securenative_parse_error.rb +0 -4
- data/out/production/securenative-ruby/errors/securenative_sdk_Illegal_state_error.rb +0 -4
- data/out/production/securenative-ruby/errors/securenative_sdk_error.rb +0 -4
- data/out/production/securenative-ruby/event_manager.rb +0 -157
- data/out/production/securenative-ruby/http/secure_native_http_response.rb +0 -12
- data/out/production/securenative-ruby/http/securenative_http_client.rb +0 -50
- data/out/production/securenative-ruby/models/client_token.rb +0 -12
- data/out/production/securenative-ruby/models/device.rb +0 -10
- data/out/production/securenative-ruby/models/event_options.rb +0 -37
- data/out/production/securenative-ruby/models/request_context.rb +0 -18
- data/out/production/securenative-ruby/models/request_options.rb +0 -12
- data/out/production/securenative-ruby/models/sdk_event.rb +0 -49
- data/out/production/securenative-ruby/models/user_traits.rb +0 -13
- data/out/production/securenative-ruby/models/verify_result.rb +0 -16
- data/out/production/securenative-ruby/securenative.rb +0 -83
- data/out/production/securenative-ruby/utils/date_utils.rb +0 -9
- data/out/production/securenative-ruby/utils/encryption_utils.rb +0 -49
- data/out/production/securenative-ruby/utils/ip_utils.rb +0 -23
- data/out/production/securenative-ruby/utils/request_utils.rb +0 -69
- data/out/production/securenative-ruby/utils/secure_native_logger.rb +0 -44
- data/out/production/securenative-ruby/utils/signature_utils.rb +0 -16
- data/out/production/securenative-ruby/utils/utils.rb +0 -9
- data/out/production/securenative-ruby/utils/version_utils.rb +0 -11
- data/out/test/securenative-ruby/spec_api_manager.rb +0 -87
- data/out/test/securenative-ruby/spec_context_builder.rb +0 -87
- data/out/test/securenative-ruby/spec_date_utils.rb +0 -13
- data/out/test/securenative-ruby/spec_encryption_utils.rb +0 -26
- data/out/test/securenative-ruby/spec_event_manager.rb +0 -93
- data/out/test/securenative-ruby/spec_ip_utils.rb +0 -41
- data/out/test/securenative-ruby/spec_request_utils.rb +0 -25
- data/out/test/securenative-ruby/spec_sdk_event.rb +0 -24
- data/out/test/securenative-ruby/spec_securenative.rb +0 -61
- data/out/test/securenative-ruby/spec_securenative_http_client.rb +0 -31
- data/out/test/securenative-ruby/spec_signature_utils.rb +0 -18
- data/out/test/securenative-ruby/spec_version_util.rb +0 -10
- data/securenative.gemspec +0 -28
|
@@ -1,67 +0,0 @@
|
|
|
1
|
-
# frozen_string_literal: true
|
|
2
|
-
|
|
3
|
-
require 'utils/request_utils'
|
|
4
|
-
require 'utils/utils'
|
|
5
|
-
require 'context/rails_context'
|
|
6
|
-
require 'context/hanami_context'
|
|
7
|
-
require 'context/sinatra_context'
|
|
8
|
-
|
|
9
|
-
class SecureNativeContext
|
|
10
|
-
attr_reader :client_token, :ip, :remote_ip, :headers, :url, :http_method, :body
|
|
11
|
-
attr_writer :client_token, :ip, :remote_ip, :headers, :url, :http_method, :body
|
|
12
|
-
|
|
13
|
-
SECURENATIVE_COOKIE = '_sn'
|
|
14
|
-
|
|
15
|
-
def initialize(client_token: '', ip: '', remote_ip: '', headers: nil, url: '', http_method: '', body: '')
|
|
16
|
-
@client_token = client_token
|
|
17
|
-
@ip = ip
|
|
18
|
-
@remote_ip = remote_ip
|
|
19
|
-
@headers = headers
|
|
20
|
-
@url = url
|
|
21
|
-
@http_method = http_method
|
|
22
|
-
@body = body
|
|
23
|
-
end
|
|
24
|
-
|
|
25
|
-
def self.default_context_builder
|
|
26
|
-
SecureNativeContext.new
|
|
27
|
-
end
|
|
28
|
-
|
|
29
|
-
def self.from_http_request(request)
|
|
30
|
-
client_token = RailsContext.get_client_token(request)
|
|
31
|
-
client_token = SinatraContext.get_client_token(request) if client_token.nil?
|
|
32
|
-
client_token = HanamiContext.get_client_token(request) if client_token.nil?
|
|
33
|
-
|
|
34
|
-
begin
|
|
35
|
-
headers = RailsContext.get_headers(request)
|
|
36
|
-
headers = SinatraContext.get_headers(request) if headers.nil?
|
|
37
|
-
headers = HanamiContext.get_headers(request) if headers.nil?
|
|
38
|
-
|
|
39
|
-
# Standard Ruby request
|
|
40
|
-
headers = request.header.to_hash if headers.nil?
|
|
41
|
-
rescue StandardError
|
|
42
|
-
headers = []
|
|
43
|
-
end
|
|
44
|
-
|
|
45
|
-
url = RailsContext.get_url(request)
|
|
46
|
-
url = SinatraContext.get_url(request) if url.nil?
|
|
47
|
-
url = HanamiContext.get_url(request) if url.nil?
|
|
48
|
-
url = '' if url.nil?
|
|
49
|
-
|
|
50
|
-
method = RailsContext.get_method(request)
|
|
51
|
-
method = SinatraContext.get_method(request) if method.nil?
|
|
52
|
-
method = HanamiContext.get_method(request) if method.nil?
|
|
53
|
-
method = '' if method.nil?
|
|
54
|
-
|
|
55
|
-
begin
|
|
56
|
-
body = request.body.to_s
|
|
57
|
-
rescue StandardError
|
|
58
|
-
body = ''
|
|
59
|
-
end
|
|
60
|
-
|
|
61
|
-
client_token = RequestUtils.get_secure_header_from_request(headers) if Utils.null_or_empty?(client_token)
|
|
62
|
-
|
|
63
|
-
SecureNativeContext.new(client_token: client_token, ip: RequestUtils.get_client_ip_from_request(request),
|
|
64
|
-
remote_ip: RequestUtils.get_remote_ip_from_request(request),
|
|
65
|
-
headers: headers, url: url, http_method: method || '', body: body)
|
|
66
|
-
end
|
|
67
|
-
end
|
|
@@ -1,42 +0,0 @@
|
|
|
1
|
-
# frozen_string_literal: true
|
|
2
|
-
|
|
3
|
-
class SinatraContext
|
|
4
|
-
SECURENATIVE_COOKIE = '_sn'
|
|
5
|
-
|
|
6
|
-
def self.get_client_token(request)
|
|
7
|
-
begin
|
|
8
|
-
request.env[SECURENATIVE_COOKIE]
|
|
9
|
-
rescue StandardError
|
|
10
|
-
begin
|
|
11
|
-
request.cookies[SECURENATIVE_COOKIE]
|
|
12
|
-
rescue StandardError
|
|
13
|
-
nil
|
|
14
|
-
end
|
|
15
|
-
end
|
|
16
|
-
end
|
|
17
|
-
|
|
18
|
-
def self.get_url(request)
|
|
19
|
-
begin
|
|
20
|
-
request.env['REQUEST_URI']
|
|
21
|
-
rescue StandardError
|
|
22
|
-
nil
|
|
23
|
-
end
|
|
24
|
-
end
|
|
25
|
-
|
|
26
|
-
def self.get_method(request)
|
|
27
|
-
begin
|
|
28
|
-
request.env['REQUEST_METHOD']
|
|
29
|
-
rescue StandardError
|
|
30
|
-
nil
|
|
31
|
-
end
|
|
32
|
-
end
|
|
33
|
-
|
|
34
|
-
def self.get_headers(request)
|
|
35
|
-
begin
|
|
36
|
-
# Note: At the moment we're filtering out everything but user-agent since ruby's payload is way too big
|
|
37
|
-
{ 'user-agent' => request.env['HTTP_USER_AGENT'] }
|
|
38
|
-
rescue StandardError
|
|
39
|
-
nil
|
|
40
|
-
end
|
|
41
|
-
end
|
|
42
|
-
end
|
|
@@ -1,23 +0,0 @@
|
|
|
1
|
-
# frozen_string_literal: true
|
|
2
|
-
|
|
3
|
-
module EventTypes
|
|
4
|
-
LOG_IN = 'sn.user.login'
|
|
5
|
-
LOG_IN_CHALLENGE = 'sn.user.login.challenge'
|
|
6
|
-
LOG_IN_FAILURE = 'sn.user.login.failure'
|
|
7
|
-
LOG_OUT = 'sn.user.logout'
|
|
8
|
-
SIGN_UP = 'sn.user.signup'
|
|
9
|
-
AUTH_CHALLENGE = 'sn.user.auth.challenge'
|
|
10
|
-
AUTH_CHALLENGE_SUCCESS = 'sn.user.auth.challenge.success'
|
|
11
|
-
AUTH_CHALLENGE_FAILURE = 'sn.user.auth.challenge.failure'
|
|
12
|
-
TWO_FACTOR_DISABLE = 'sn.user.2fa.disable'
|
|
13
|
-
EMAIL_UPDATE = 'sn.user.email.update'
|
|
14
|
-
PASSWORD_REST = 'sn.user.password.reset'
|
|
15
|
-
PASSWORD_REST_SUCCESS = 'sn.user.password.reset.success'
|
|
16
|
-
PASSWORD_UPDATE = 'sn.user.password.update'
|
|
17
|
-
PASSWORD_REST_FAILURE = 'sn.user.password.reset.failure'
|
|
18
|
-
USER_INVITE = 'sn.user.invite'
|
|
19
|
-
ROLE_UPDATE = 'sn.user.role.update'
|
|
20
|
-
PROFILE_UPDATE = 'sn.user.profile.update'
|
|
21
|
-
PAGE_VIEW = 'sn.user.page.view'
|
|
22
|
-
VERIFY = 'sn.verify'
|
|
23
|
-
end
|
|
@@ -1,157 +0,0 @@
|
|
|
1
|
-
# frozen_string_literal: true
|
|
2
|
-
|
|
3
|
-
require 'utils/secure_native_logger'
|
|
4
|
-
require 'config/securenative_options'
|
|
5
|
-
require 'http/securenative_http_client'
|
|
6
|
-
require 'errors/securenative_sdk_error'
|
|
7
|
-
require 'errors/securenative_http_error'
|
|
8
|
-
|
|
9
|
-
class QueueItem
|
|
10
|
-
attr_reader :url, :body, :retry_sending
|
|
11
|
-
attr_writer :url, :body, :retry_sending
|
|
12
|
-
|
|
13
|
-
def initialize(url, body, retry_sending)
|
|
14
|
-
@url = url
|
|
15
|
-
@body = body
|
|
16
|
-
@retry = retry_sending
|
|
17
|
-
end
|
|
18
|
-
end
|
|
19
|
-
|
|
20
|
-
class EventManager
|
|
21
|
-
def initialize(options = SecureNativeOptions.new, http_client = nil)
|
|
22
|
-
if options.api_key.nil?
|
|
23
|
-
raise SecureNativeSDKError, 'API key cannot be None, please get your API key from SecureNative console.'
|
|
24
|
-
end
|
|
25
|
-
|
|
26
|
-
@http_client = if http_client.nil?
|
|
27
|
-
SecureNativeHttpClient.new(options)
|
|
28
|
-
else
|
|
29
|
-
http_client
|
|
30
|
-
end
|
|
31
|
-
|
|
32
|
-
@queue = []
|
|
33
|
-
@semaphore = Mutex.new
|
|
34
|
-
@interval = options.interval
|
|
35
|
-
@options = options
|
|
36
|
-
@send_enabled = false
|
|
37
|
-
@attempt = 0
|
|
38
|
-
@coefficients = [1, 1, 2, 3, 5, 8, 13]
|
|
39
|
-
|
|
40
|
-
@thread = Thread.new { run }
|
|
41
|
-
end
|
|
42
|
-
|
|
43
|
-
def send_async(event, resource_path)
|
|
44
|
-
if @options.disable
|
|
45
|
-
SecureNativeLogger.warning('SDK is disabled. no operation will be performed')
|
|
46
|
-
return
|
|
47
|
-
end
|
|
48
|
-
|
|
49
|
-
item = QueueItem.new(resource_path, EventManager.serialize(event).to_json, false)
|
|
50
|
-
@queue.append(item)
|
|
51
|
-
end
|
|
52
|
-
|
|
53
|
-
def flush
|
|
54
|
-
@queue.each do |item|
|
|
55
|
-
@http_client.post(item.url, item.body)
|
|
56
|
-
end
|
|
57
|
-
end
|
|
58
|
-
|
|
59
|
-
def send_sync(event, resource_path, retry_sending)
|
|
60
|
-
if @options.disable
|
|
61
|
-
SecureNativeLogger.warning('SDK is disabled. no operation will be performed')
|
|
62
|
-
return
|
|
63
|
-
end
|
|
64
|
-
|
|
65
|
-
SecureNativeLogger.debug("Attempting to send event #{event}")
|
|
66
|
-
res = @http_client.post(resource_path, EventManager.serialize(event).to_json)
|
|
67
|
-
|
|
68
|
-
if res.nil? || res.code != '200'
|
|
69
|
-
SecureNativeLogger.info("SecureNative failed to call endpoint #{resource_path} with event #{event}. adding back to queue")
|
|
70
|
-
item = QueueItem.new(resource_path, EventManager.serialize(event).to_json, retry_sending)
|
|
71
|
-
@queue.append(item)
|
|
72
|
-
end
|
|
73
|
-
|
|
74
|
-
res
|
|
75
|
-
end
|
|
76
|
-
|
|
77
|
-
def run
|
|
78
|
-
loop do
|
|
79
|
-
@semaphore.synchronize do
|
|
80
|
-
next unless !@queue.empty? && @send_enabled
|
|
81
|
-
|
|
82
|
-
@queue.each do |item|
|
|
83
|
-
begin
|
|
84
|
-
res = @http_client.post(item.url, item.body)
|
|
85
|
-
if res.code == '401'
|
|
86
|
-
item.retry_sending = false
|
|
87
|
-
elsif res.code != '200'
|
|
88
|
-
raise SecureNativeHttpError, res.status_code
|
|
89
|
-
end
|
|
90
|
-
SecureNativeLogger.debug("Event successfully sent; #{item.body}")
|
|
91
|
-
return res
|
|
92
|
-
rescue StandardError => e
|
|
93
|
-
SecureNativeLogger.error("Failed to send event; #{e}")
|
|
94
|
-
if item.retry_sending
|
|
95
|
-
@attempt = 0 if @coefficients.length == @attempt + 1
|
|
96
|
-
|
|
97
|
-
back_off = @coefficients[@attempt] * @options.interval
|
|
98
|
-
SecureNativeLogger.debug("Automatic back-off of #{back_off}")
|
|
99
|
-
@send_enabled = false
|
|
100
|
-
sleep back_off
|
|
101
|
-
@send_enabled = true
|
|
102
|
-
end
|
|
103
|
-
end
|
|
104
|
-
end
|
|
105
|
-
end
|
|
106
|
-
sleep @interval / 1000
|
|
107
|
-
end
|
|
108
|
-
end
|
|
109
|
-
|
|
110
|
-
def start_event_persist
|
|
111
|
-
SecureNativeLogger.debug('Starting automatic event persistence')
|
|
112
|
-
if @options.auto_send || @send_enabled
|
|
113
|
-
@send_enabled = true
|
|
114
|
-
else
|
|
115
|
-
SecureNativeLogger.debug('Automatic event persistence is disabled, you should persist events manually')
|
|
116
|
-
end
|
|
117
|
-
end
|
|
118
|
-
|
|
119
|
-
def stop_event_persist
|
|
120
|
-
if @send_enabled
|
|
121
|
-
SecureNativeLogger.debug('Attempting to stop automatic event persistence')
|
|
122
|
-
begin
|
|
123
|
-
flush
|
|
124
|
-
@thread&.stop?
|
|
125
|
-
SecureNativeLogger.debug('Stopped event persistence')
|
|
126
|
-
rescue StandardError => e
|
|
127
|
-
SecureNativeLogger.error("Could not stop event scheduler; #{e}")
|
|
128
|
-
end
|
|
129
|
-
end
|
|
130
|
-
end
|
|
131
|
-
|
|
132
|
-
def self.serialize(obj)
|
|
133
|
-
{
|
|
134
|
-
rid: obj.rid,
|
|
135
|
-
eventType: obj.event_type,
|
|
136
|
-
userId: obj.user_id,
|
|
137
|
-
userTraits: {
|
|
138
|
-
name: obj.user_traits.name,
|
|
139
|
-
email: obj.user_traits.email,
|
|
140
|
-
phone: obj.user_traits.phone,
|
|
141
|
-
createdAt: obj.user_traits.created_at
|
|
142
|
-
},
|
|
143
|
-
request: {
|
|
144
|
-
cid: obj.request.cid,
|
|
145
|
-
vid: obj.request.vid,
|
|
146
|
-
fp: obj.request.fp,
|
|
147
|
-
ip: obj.request.ip,
|
|
148
|
-
remoteIp: obj.request.remote_ip,
|
|
149
|
-
method: obj.request.http_method || '',
|
|
150
|
-
url: obj.request.url,
|
|
151
|
-
headers: obj.request.headers
|
|
152
|
-
},
|
|
153
|
-
timestamp: obj.timestamp,
|
|
154
|
-
properties: obj.properties
|
|
155
|
-
}
|
|
156
|
-
end
|
|
157
|
-
end
|
|
@@ -1,50 +0,0 @@
|
|
|
1
|
-
# frozen_string_literal: true
|
|
2
|
-
|
|
3
|
-
require 'net/http'
|
|
4
|
-
require 'uri'
|
|
5
|
-
require 'json'
|
|
6
|
-
require 'utils/version_utils'
|
|
7
|
-
require 'utils/secure_native_logger'
|
|
8
|
-
|
|
9
|
-
class SecureNativeHttpClient
|
|
10
|
-
AUTHORIZATION_HEADER = 'Authorization'
|
|
11
|
-
VERSION_HEADER = 'SN-Version'
|
|
12
|
-
USER_AGENT_HEADER = 'User-Agent'
|
|
13
|
-
USER_AGENT_HEADER_VALUE = 'SecureNative-ruby'
|
|
14
|
-
CONTENT_TYPE_HEADER = 'Content-Type'
|
|
15
|
-
CONTENT_TYPE_HEADER_VALUE = 'application/json'
|
|
16
|
-
|
|
17
|
-
def initialize(securenative_options)
|
|
18
|
-
@options = securenative_options
|
|
19
|
-
end
|
|
20
|
-
|
|
21
|
-
def _headers
|
|
22
|
-
{
|
|
23
|
-
CONTENT_TYPE_HEADER => CONTENT_TYPE_HEADER_VALUE,
|
|
24
|
-
USER_AGENT_HEADER => USER_AGENT_HEADER_VALUE,
|
|
25
|
-
VERSION_HEADER => VersionUtils.version,
|
|
26
|
-
AUTHORIZATION_HEADER => @options.api_key
|
|
27
|
-
}
|
|
28
|
-
end
|
|
29
|
-
|
|
30
|
-
def post(path, body)
|
|
31
|
-
uri = URI.parse("#{@options.api_url}/#{path}")
|
|
32
|
-
headers = _headers
|
|
33
|
-
|
|
34
|
-
client = Net::HTTP.new(uri.host, uri.port)
|
|
35
|
-
client.use_ssl = true
|
|
36
|
-
client.verify_mode = OpenSSL::SSL::VERIFY_NONE
|
|
37
|
-
|
|
38
|
-
request = Net::HTTP::Post.new(uri.request_uri, headers)
|
|
39
|
-
request.body = body
|
|
40
|
-
|
|
41
|
-
res = nil
|
|
42
|
-
begin
|
|
43
|
-
res = client.request(request)
|
|
44
|
-
rescue StandardError => e
|
|
45
|
-
SecureNativeLogger.error("Failed to send request; #{e}")
|
|
46
|
-
return res
|
|
47
|
-
end
|
|
48
|
-
res
|
|
49
|
-
end
|
|
50
|
-
end
|