RubyGems - securenative - Versions diffs - 0.1.24 → 0.1.30 - Mend

securenative 0.1.24 → 0.1.30

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

data/lib/securenative/errors/securenative_config_error.rb DELETED

@@ -1,6 +0,0 @@
-# frozen_string_literal: true
-module SecureNative
-  class SecureNativeConfigError < StandardError
-  end
-end

data/lib/securenative/errors/securenative_http_error.rb DELETED

@@ -1,6 +0,0 @@
-# frozen_string_literal: true
-module SecureNative
-  class SecureNativeHttpError < StandardError
-  end
-end

data/lib/securenative/errors/securenative_invalid_options_error.rb DELETED

@@ -1,6 +0,0 @@
-# frozen_string_literal: true
-module SecureNative
-  class SecureNativeInvalidOptionsError < StandardError
-  end
-end

data/lib/securenative/errors/securenative_sdk_Illegal_state_error.rb DELETED

@@ -1,6 +0,0 @@
-# frozen_string_literal: true
-module SecureNative
-  class SecureNativeSDKIllegalStateError < StandardError
-  end
-end

data/lib/securenative/sdk.rb DELETED

@@ -1,85 +0,0 @@
-# frozen_string_literal: true
-require 'securenative/utils/secure_native_logger'
-require 'securenative/utils/signature_utils'
-require 'securenative/utils/utils'
-require 'securenative/errors/securenative_sdk_error'
-require 'securenative/errors/securenative_sdk_Illegal_state_error'
-require 'securenative/errors/securenative_config_error'
-require 'securenative/enums/failover_strategy'
-require 'securenative/config/configuration_builder'
-require 'securenative/config/configuration_manager'
-require 'securenative/event_manager'
-require 'securenative/api_manager'
-module SecureNative
-  class SecureNative
-    attr_reader :options
-    def initialize(options)
-      @securenative = nil
-      raise SecureNativeSDKError, 'You must pass your SecureNative api key' if Utils.null_or_empty?(options.api_key)
-      @options = options
-      @event_manager = EventManager.new(@options)
-      @event_manager.start_event_persist unless @options.api_url.nil?
-      @api_manager = ApiManager.new(@event_manager, @options)
-      SecureNativeLogger.init_logger(@options.log_level)
-    end
-    def self.init_with_options(options)
-      if @securenative.nil?
-        @securenative = SecureNative.new(options)
-        @securenative
-      else
-        SecureNativeLogger.debug('This SDK was already initialized.')
-        raise SecureNativeSDKError, 'This SDK was already initialized.'
-      end
-    end
-    def self.init_with_api_key(api_key)
-      raise SecureNativeConfigError, 'You must pass your SecureNative api key' if Utils.null_or_empty?(api_key)
-      if @securenative.nil?
-        options = ConfigurationBuilder.new(api_key: api_key)
-        @securenative = SecureNative.new(options)
-        @securenative
-      else
-        SecureNativeLogger.debug('This SDK was already initialized.')
-        raise SecureNativeSDKError, 'This SDK was already initialized.'
-      end
-    end
-    def self.init
-      options = ConfigurationManager.load_config
-      init_with_options(options)
-    end
-    def self.instance
-      raise SecureNativeSDKIllegalStateError if @securenative.nil?
-      @securenative
-    end
-    def track(event_options)
-      @api_manager.track(event_options)
-    end
-    def verify(event_options)
-      @api_manager.verify(event_options)
-    end
-    def self._flush
-      @securenative = nil
-    end
-    def verify_request_payload(request)
-      request_signature = request.header[SignatureUtils.SIGNATURE_HEADER]
-      body = request.body
-      SignatureUtils.valid_signature?(@options.api_key, body, request_signature)
-    end
-  end
-end

data/out/production/securenative-ruby/api_manager.rb DELETED

@@ -1,39 +0,0 @@
-# frozen_string_literal: true
-require 'models/sdk_event'
-require 'enums/failover_strategy'
-require 'enums/risk_level'
-require 'enums/api_route'
-require 'models/verify_result'
-require 'json'
-class ApiManager
-  def initialize(event_manager, securenative_options)
-    @event_manager = event_manager
-    @options = securenative_options
-  end
-  def track(event_options)
-    SecureNativeLogger.debug('Track event call')
-    event = SDKEvent.new(event_options, @options)
-    @event_manager.send_async(event, ApiRoute::TRACK)
-  end
-  def verify(event_options)
-    SecureNativeLogger.debug('Verify event call')
-    event = SDKEvent.new(event_options, @options)
-    begin
-      res = @event_manager.send_sync(event, ApiRoute::VERIFY, false)
-      ver_result = JSON.parse(res.body)
-      return VerifyResult.new(risk_level: ver_result['riskLevel'], score: ver_result['score'], triggers: ver_result['triggers'])
-    rescue StandardError => e
-      SecureNativeLogger.debug("Failed to call verify; #{e}")
-    end
-    if @options.fail_over_strategy == FailOverStrategy::FAIL_OPEN
-      return VerifyResult.new(risk_level: RiskLevel::LOW, score: 0, triggers: nil)
-    end
-    VerifyResult.new(risk_level: RiskLevel::HIGH, score: 1, triggers: nil)
-  end
-end

data/out/production/securenative-ruby/config/configuration_builder.rb DELETED

@@ -1,27 +0,0 @@
-# frozen_string_literal: true
-require 'enums/failover_strategy'
-class ConfigurationBuilder
-  attr_reader :api_key, :api_url, :interval, :max_events, :timeout, :auto_send, :disable, :log_level, :fail_over_strategy, :proxy_headers
-  attr_writer :api_key, :api_url, :interval, :max_events, :timeout, :auto_send, :disable, :log_level, :fail_over_strategy, :proxy_headers
-  def initialize(api_key: nil, api_url: 'https://api.securenative.com/collector/api/v1', interval: 1000,
-                 max_events: 1000, timeout: 1500, auto_send: true, disable: false, log_level: 'FATAL',
-                 fail_over_strategy: FailOverStrategy::FAIL_OPEN, proxy_headers: [])
-    @api_key = api_key
-    @api_url = api_url
-    @interval = interval
-    @max_events = max_events
-    @timeout = timeout
-    @auto_send = auto_send
-    @disable = disable
-    @log_level = log_level
-    @fail_over_strategy = fail_over_strategy
-    @proxy_headers = proxy_headers
-  end
-  def self.default_securenative_options
-    SecureNativeOptions.new
-  end
-end

data/out/production/securenative-ruby/config/configuration_manager.rb DELETED

@@ -1,56 +0,0 @@
-# frozen_string_literal: true
-require 'yaml'
-require 'config/configuration_builder'
-class ConfigurationManager
-  DEFAULT_CONFIG_FILE = 'securenative.yml'
-  CUSTOM_CONFIG_FILE_ENV_NAME = 'SECURENATIVE_CONFIG_FILE'
-  @config = nil
-  def self.read_resource_file(resource_path)
-    properties = {}
-    begin
-      @config = YAML.load_file(resource_path)
-      properties = @config unless @config.nil?
-    rescue StandardError => e
-      SecureNativeLogger.error("Could not parse config file #{resource_path}; #{e}")
-    end
-    properties
-  end
-  def self._get_resource_path(env_name)
-    Env.fetch(env_name, ENV[DEFAULT_CONFIG_FILE])
-  end
-  def self.config_builder
-    ConfigurationBuilder.new
-  end
-  def self._get_env_or_default(properties, key, default)
-    return ENV[key] if ENV[key]
-    return properties[key] if properties[key]
-    default
-  end
-  def self.load_config
-    options = ConfigurationBuilder.default_securenative_options
-    resource_path = DEFAULT_CONFIG_FILE
-    resource_path = ENV[CUSTOM_CONFIG_FILE_ENV_NAME] unless ENV[CUSTOM_CONFIG_FILE_ENV_NAME].nil?
-    properties = read_resource_file(resource_path)
-    ConfigurationBuilder.new(api_key: _get_env_or_default(properties, 'SECURENATIVE_API_KEY', options.api_key),
-                             api_url: _get_env_or_default(properties, 'SECURENATIVE_API_URL', options.api_url),
-                             interval: _get_env_or_default(properties, 'SECURENATIVE_INTERVAL', options.interval),
-                             max_events: _get_env_or_default(properties, 'SECURENATIVE_MAX_EVENTS', options.max_events),
-                             timeout: _get_env_or_default(properties, 'SECURENATIVE_TIMEOUT', options.timeout),
-                             auto_send: _get_env_or_default(properties, 'SECURENATIVE_AUTO_SEND', options.auto_send),
-                             disable: _get_env_or_default(properties, 'SECURENATIVE_DISABLE', options.disable),
-                             log_level: _get_env_or_default(properties, 'SECURENATIVE_LOG_LEVEL', options.log_level),
-                             fail_over_strategy: _get_env_or_default(properties, 'SECURENATIVE_FAILOVER_STRATEGY', options.fail_over_strategy),
-                             proxy_headers: _get_env_or_default(properties, 'SECURENATIVE_PROXY_HEADERS', options.proxy_headers))
-  end
-end

data/out/production/securenative-ruby/config/securenative_options.rb DELETED

@@ -1,23 +0,0 @@
-# frozen_string_literal: true
-require 'enums/failover_strategy'
-class SecureNativeOptions
-  attr_reader :api_key, :api_url, :interval, :max_events, :timeout, :auto_send, :disable, :log_level, :fail_over_strategy, :proxy_headers
-  attr_writer :api_key, :api_url, :interval, :max_events, :timeout, :auto_send, :disable, :log_level, :fail_over_strategy, :proxy_headers
-  def initialize(api_key: nil, api_url: "https://api.securenative.com/collector/api/v1", interval: 1000,
-                 max_events: 1000, timeout: 1500, auto_send: true, disable: false, log_level: "FATAL",
-                 fail_over_strategy: FailOverStrategy::FAIL_OPEN, proxy_headers: [])
-    @api_key = api_key
-    @api_url = api_url
-    @interval = interval
-    @max_events = max_events
-    @timeout = timeout
-    @auto_send = auto_send
-    @disable = disable
-    @log_level = log_level
-    @fail_over_strategy = fail_over_strategy
-    @proxy_headers = proxy_headers
-  end
-end

data/out/production/securenative-ruby/context/hanami_context.rb DELETED

@@ -1,42 +0,0 @@
-# frozen_string_literal: true
-class HanamiContext
-  SECURENATIVE_COOKIE = '_sn'
-  def self.get_client_token(request)
-    begin
-      request.env[SECURENATIVE_COOKIE]
-    rescue StandardError
-      begin
-        request.cookies[SECURENATIVE_COOKIE]
-      rescue StandardError
-        nil
-      end
-    end
-  end
-  def self.get_url(request)
-    begin
-      request.env['REQUEST_PATH']
-    rescue StandardError
-      nil
-    end
-  end
-  def self.get_method(request)
-    begin
-      request.request_method
-    rescue StandardError
-      nil
-    end
-  end
-  def self.get_headers(request)
-    begin
-      # Note: At the moment we're filtering out everything but user-agent since ruby's payload is way too big
-      { 'user-agent' => request.env['HTTP_USER_AGENT'] }
-    rescue StandardError
-      nil
-    end
-  end
-end

data/out/production/securenative-ruby/context/rails_context.rb DELETED

@@ -1,44 +0,0 @@
-# frozen_string_literal: true
-class RailsContext
-  SECURENATIVE_COOKIE = '_sn'
-  def self.get_client_token(request)
-    begin
-      request.cookies[SECURENATIVE_COOKIE]
-    rescue StandardError
-      nil
-    end
-  end
-  def self.get_url(request)
-    begin
-      # Rails >= 3.x
-      request.fullpath
-    rescue StandardError
-      begin
-        # Rails < 3.x & Sinatra
-        request.url if url.nil?
-      rescue StandardError
-        nil
-      end
-    end
-  end
-  def self.get_method(request)
-    begin
-      request.method
-    rescue StandardError
-      nil
-    end
-  end
-  def self.get_headers(request)
-    begin
-      # Note: At the moment we're filtering out everything but user-agent since ruby's payload is way too big
-      { 'user-agent' => request.env['HTTP_USER_AGENT'] }
-    rescue StandardError
-      nil
-    end
-  end
-end

data/out/production/securenative-ruby/context/securenative_context.rb DELETED

@@ -1,67 +0,0 @@
-# frozen_string_literal: true
-require 'utils/request_utils'
-require 'utils/utils'
-require 'context/rails_context'
-require 'context/hanami_context'
-require 'context/sinatra_context'
-class SecureNativeContext
-  attr_reader :client_token, :ip, :remote_ip, :headers, :url, :http_method, :body
-  attr_writer :client_token, :ip, :remote_ip, :headers, :url, :http_method, :body
-  SECURENATIVE_COOKIE = '_sn'
-  def initialize(client_token: '', ip: '', remote_ip: '', headers: nil, url: '', http_method: '', body: '')
-    @client_token = client_token
-    @ip = ip
-    @remote_ip = remote_ip
-    @headers = headers
-    @url = url
-    @http_method = http_method
-    @body = body
-  end
-  def self.default_context_builder
-    SecureNativeContext.new
-  end
-  def self.from_http_request(request)
-    client_token = RailsContext.get_client_token(request)
-    client_token = SinatraContext.get_client_token(request) if client_token.nil?
-    client_token = HanamiContext.get_client_token(request) if client_token.nil?
-    begin
-      headers = RailsContext.get_headers(request)
-      headers = SinatraContext.get_headers(request) if headers.nil?
-      headers = HanamiContext.get_headers(request) if headers.nil?
-      # Standard Ruby request
-      headers = request.header.to_hash if headers.nil?
-    rescue StandardError
-      headers = []
-    end
-    url = RailsContext.get_url(request)
-    url = SinatraContext.get_url(request) if url.nil?
-    url = HanamiContext.get_url(request) if url.nil?
-    url = '' if url.nil?
-    method = RailsContext.get_method(request)
-    method = SinatraContext.get_method(request) if method.nil?
-    method = HanamiContext.get_method(request) if method.nil?
-    method = '' if method.nil?
-    begin
-      body = request.body.to_s
-    rescue StandardError
-      body = ''
-    end
-    client_token = RequestUtils.get_secure_header_from_request(headers) if Utils.null_or_empty?(client_token)
-    SecureNativeContext.new(client_token: client_token, ip: RequestUtils.get_client_ip_from_request(request),
-                            remote_ip: RequestUtils.get_remote_ip_from_request(request),
-                            headers: headers, url: url, http_method: method || '', body: body)
-  end
-end

data/out/production/securenative-ruby/context/sinatra_context.rb DELETED

@@ -1,42 +0,0 @@
-# frozen_string_literal: true
-class SinatraContext
-  SECURENATIVE_COOKIE = '_sn'
-  def self.get_client_token(request)
-    begin
-      request.env[SECURENATIVE_COOKIE]
-    rescue StandardError
-      begin
-        request.cookies[SECURENATIVE_COOKIE]
-      rescue StandardError
-        nil
-      end
-    end
-  end
-  def self.get_url(request)
-    begin
-      request.env['REQUEST_URI']
-    rescue StandardError
-      nil
-    end
-  end
-  def self.get_method(request)
-    begin
-      request.env['REQUEST_METHOD']
-    rescue StandardError
-      nil
-    end
-  end
-  def self.get_headers(request)
-    begin
-      # Note: At the moment we're filtering out everything but user-agent since ruby's payload is way too big
-      { 'user-agent' => request.env['HTTP_USER_AGENT'] }
-    rescue StandardError
-      nil
-    end
-  end
-end