securenative 0.1.29 → 0.1.30

data/lib/securenative/utils/ip_utils.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+module SecureNative
+  module Utils
+    class IpUtils
+      def self.ip_address?(ip_address)
+        return true if ip_address =~ Resolv::IPv4::Regex
+        return true if ip_address =~ Resolv::IPv6::Regex
+
+        false
+      end
+
+      def self.valid_public_ip?(ip_address)
+        ip = IPAddr.new(ip_address)
+        return false if ip.loopback? || ip.private? || ip.link_local? || ip.untrusted? || ip.tainted?
+
+        true
+      end
+
+      def self.loop_back?(ip_address)
+        IPAddr.new(ip_address).loopback?
+      end
+    end
+  end
+end

data/lib/securenative/utils/log.rb

@@ -0,0 +1,46 @@
+# frozen_string_literal: true
+
+require 'logger'
+
+module SecureNative
+  class Log
+    @logger = Logger.new(STDOUT)
+
+    def self.init_logger(level = 'DEBUG')
+      @logger.level = case level
+                      when 'WARN'
+                        Logger::WARN
+                      when 'DEBUG'
+                        Logger::DEBUG
+                      when 'ERROR'
+                        Logger::ERROR
+                      when 'FATAL'
+                        Logger::FATAL
+                      when 'INFO'
+                        Logger::INFO
+                      else
+                        Logger::FATAL
+                      end
+
+      @logger.formatter = proc do |severity, datetime, progname, msg|
+        "[#{datetime}] #{severity}  (#{progname}): #{msg}\n"
+      end
+    end
+
+    def self.info(msg)
+      @logger.info(msg)
+    end
+
+    def self.debug(msg)
+      @logger.debug(msg)
+    end
+
+    def self.warning(msg)
+      @logger.warning(msg)
+    end
+
+    def self.error(msg)
+      @logger.error(msg)
+    end
+  end
+end

data/lib/securenative/utils/request_utils.rb

@@ -0,0 +1,84 @@
+# frozen_string_literal: true
+
+module SecureNative
+  module Utils
+    class RequestUtils
+      SECURENATIVE_COOKIE = '_sn'
+      SECURENATIVE_HEADER = 'x-securenative'
+
+      def self.get_secure_header_from_request(headers)
+        begin
+          return headers[SECURENATIVE_HEADER] unless headers.nil?
+        rescue StandardError
+          []
+        end
+        []
+      end
+
+      def self.get_client_ip_from_request(request, options = nil)
+        unless options.nil?
+          for header in options.proxy_headers do
+            begin
+              h = request.env[header]
+              return h.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless h.nil?
+            rescue NoMethodError
+              begin
+                h = request[header]
+                return h.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless h.nil?
+              rescue NoMethodError
+              end
+            end
+          end
+        end
+
+        begin
+          x_forwarded_for = request.env['HTTP_X_FORWARDED_FOR']
+          return x_forwarded_for.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless x_forwarded_for.nil?
+        rescue NoMethodError
+          begin
+            x_forwarded_for = request['HTTP_X_FORWARDED_FOR']
+            return x_forwarded_for.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless x_forwarded_for.nil?
+          rescue NoMethodError
+          end
+        end
+
+        begin
+          x_forwarded_for = request.env['HTTP_X_REAL_IP']
+          return x_forwarded_for.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless x_forwarded_for.nil?
+        rescue NoMethodError
+          begin
+            x_forwarded_for = request['HTTP_X_REAL_IP']
+            return x_forwarded_for.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless x_forwarded_for.nil?
+          rescue NoMethodError
+          end
+        end
+
+        begin
+          x_forwarded_for = request.env['REMOTE_ADDR']
+          return x_forwarded_for.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless x_forwarded_for.nil?
+        rescue NoMethodError
+          begin
+            x_forwarded_for = request['REMOTE_ADDR']
+            return x_forwarded_for.scan(/\b(?:[0-9]{1,3}\.){3}[0-9]{1,3}\b/)[0] unless x_forwarded_for.nil?
+          rescue NoMethodError
+          end
+        end
+
+        begin
+          return request.ip unless request.ip.nil?
+        rescue NoMethodError
+        end
+
+        ''
+      end
+
+      def self.get_remote_ip_from_request(request)
+        begin
+          request.remote_ip
+        rescue NoMethodError
+          ''
+        end
+      end
+    end
+  end
+end

data/lib/securenative/utils/signature_utils.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+module SecureNative
+  module Utils
+    class SignatureUtils
+      SIGNATURE_HEADER = 'x-securenative'
+
+      def self.valid_signature?(api_key, payload, header_signature)
+        key = api_key.encode('utf-8')
+        body = payload.encode('utf-8')
+        calculated_signature = OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new('sha512'), key, body)
+        calculated_signature.eql? header_signature
+      rescue StandardError
+        false
+      end
+    end
+  end
+end

data/lib/securenative/utils/utils.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+module SecureNative
+  module Utils
+    class Utils
+      def self.null_or_empty?(string)
+        return true if !string || string.empty? || string.nil?
+
+        false
+      end
+    end
+  end
+end

data/lib/securenative/utils/version_utils.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module SecureNative
+  module Utils
+    class VersionUtils
+      def self.version
+        begin
+          Gem.loaded_specs['securenative'].version.to_s
+        rescue StandardError
+          'unknown'
+        end
+      end
+    end
+  end
+end

data/lib/securenative/verify_result.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+module SecureNative
+  class VerifyResult
+    attr_reader :risk_level, :score, :triggers
+    attr_writer :risk_level, :score, :triggers
+
+    def initialize(risk_level: nil, score: nil, triggers: nil)
+      @risk_level = risk_level
+      @score = score
+      @triggers = triggers
+    end
+
+    def to_s
+      "risk_level: #{@risk_level}, score: #{@score}, triggers: #{@triggers}"
+    end
+  end
+end

data/lib/securenative/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module SecureNative
+  VERSION = '0.1.30'
+end

data/securenative.gemspec

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+lib = File.expand_path('lib', __dir__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'securenative'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'securenative'
+  spec.version       = SecureNative::VERSION
+  spec.authors       = ['SecureNative']
+  spec.email         = ['support@securenative.com']
+  spec.required_ruby_version = '>= 2.4'
+
+  spec.summary       = 'SecureNative SDK for Ruby'
+  spec.homepage      = 'https://www.securenative.com'
+  spec.license       = 'MIT'
+
+  spec.metadata['homepage_uri'] = spec.homepage
+  spec.test_files = Dir['spec//*']
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files         = Dir.chdir(File.expand_path('..', __FILE__)) do
+    `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  end
+
+  spec.bindir        = 'exe'
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ['lib']
+
+  spec.add_development_dependency 'bundler', '~> 2.0'
+  spec.add_development_dependency 'rake', '~> 12.3.3'
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: securenative
 version: !ruby/object:Gem::Version
-  version: 0.1.29
+  version: 0.1.30
 platform: ruby
 authors:
 - SecureNative
@@ -45,8 +45,61 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/workflows/ci.yml"
+- ".github/workflows/publish.yml"
+- ".github/workflows/test.yml"
+- ".gitignore"
+- ".rakeTasks"
+- ".rspec"
+- Gemfile
+- Gemfile.lock
+- LICENSE
 - README.md
-- lib//securenative.rb
+- Rakefile
+- bin/console
+- bin/setup
+- lib/securenative.rb
+- lib/securenative/api_manager.rb
+- lib/securenative/client.rb
+- lib/securenative/client_token.rb
+- lib/securenative/config/configuration_builder.rb
+- lib/securenative/config/configuration_manager.rb
+- lib/securenative/context.rb
+- lib/securenative/device.rb
+- lib/securenative/enums/api_route.rb
+- lib/securenative/enums/risk_level.rb
+- lib/securenative/errors/config_error.rb
+- lib/securenative/errors/http_error.rb
+- lib/securenative/errors/invalid_options_error.rb
+- lib/securenative/errors/invalid_uri_error.rb
+- lib/securenative/errors/parse_error.rb
+- lib/securenative/errors/sdk_Illegal_state_error.rb
+- lib/securenative/errors/sdk_error.rb
+- lib/securenative/event_manager.rb
+- lib/securenative/event_options.rb
+- lib/securenative/event_types.rb
+- lib/securenative/failover_strategy.rb
+- lib/securenative/frameworks/hanami.rb
+- lib/securenative/frameworks/rails.rb
+- lib/securenative/frameworks/sinatra.rb
+- lib/securenative/http_client.rb
+- lib/securenative/http_response.rb
+- lib/securenative/options.rb
+- lib/securenative/request_context.rb
+- lib/securenative/request_options.rb
+- lib/securenative/sdk_event.rb
+- lib/securenative/user_traits.rb
+- lib/securenative/utils/date_utils.rb
+- lib/securenative/utils/encryption_utils.rb
+- lib/securenative/utils/ip_utils.rb
+- lib/securenative/utils/log.rb
+- lib/securenative/utils/request_utils.rb
+- lib/securenative/utils/signature_utils.rb
+- lib/securenative/utils/utils.rb
+- lib/securenative/utils/version_utils.rb
+- lib/securenative/verify_result.rb
+- lib/securenative/version.rb
+- securenative.gemspec
 - spec//spec_helper.rb
 homepage: https://www.securenative.com
 licenses: