RubyGems - sepafm - Versions diffs - 0.1.0 → 0.1.1 - Mend

sepafm 0.1.0 → 0.1.1

Files changed (30) hide show

checksums.yaml +4 -4
data/lib/sepa/application_request.rb +13 -11
data/lib/sepa/application_response.rb +23 -23
data/lib/sepa/attribute_checks.rb +0 -21
data/lib/sepa/banks/danske/danske_response.rb +40 -14
data/lib/sepa/banks/danske/soap_danske.rb +127 -125
data/lib/sepa/banks/nordea/nordea_response.rb +11 -11
data/lib/sepa/banks/nordea/soap_nordea.rb +2 -2
data/lib/sepa/client.rb +40 -3
data/lib/sepa/response.rb +68 -79
data/lib/sepa/soap_builder.rb +20 -19
data/lib/sepa/utilities.rb +30 -15
data/lib/sepa/version.rb +1 -1
data/lib/sepafm.rb +14 -0
data/{README.md → readme.md} +1 -1
data/test/sepa/banks/danske/danske_cert_response_test.rb +28 -14
data/test/sepa/banks/danske/danske_cert_soap_builder_test.rb +3 -3
data/test/sepa/banks/danske/danske_generic_soap_builder_test.rb +4 -4
data/test/sepa/banks/danske/responses/create_cert.xml +14 -37
data/test/sepa/banks/nordea/nordea_application_request_test.rb +9 -9
data/test/sepa/banks/nordea/nordea_application_response_test.rb +69 -57
data/test/sepa/banks/nordea/nordea_cert_application_request_test.rb +2 -2
data/test/sepa/banks/nordea/nordea_cert_request_soap_builder_test.rb +1 -1
data/test/sepa/banks/nordea/nordea_generic_soap_builder_test.rb +4 -4
data/test/sepa/banks/nordea/nordea_response_test.rb +56 -34
data/test/sepa/client_test.rb +43 -34
data/test/sepa/fixtures.rb +1 -1
data/test/sepa/sepa_test.rb +1 -1
data/test/test_helper.rb +15 -0
metadata +3 -3

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: e8fbb8495a8ef64c200672b7b95856c63373e4d2
-  data.tar.gz: 0d89865ffa9d69de4c25252ead68e6865d99d326
+  metadata.gz: bd61a928b1047406c415f8e76b8dddbd8f303ca8
+  data.tar.gz: 999e4c7a9d47219e5a22907cf59d85e9921ff4b7
 SHA512:
-  metadata.gz: 229d1763748a90cbc02c9d2395c2b7d8737fdc584d68c97c96becca0aecca888780a72e4f73067a86c3bf1307e3812535e472b1912bf0a0c4ea06d6235a1501b
-  data.tar.gz: 12e4f735a16657b501354349d886f6e52e88a9a8e2e33b4567d83b23107f347983e73c0d943c100a856be1b71171dfb057990ad60bca7fa27cc6844febc1039e
+  metadata.gz: 0c0e5960cc2e6a0941533fae597be7a041b8f4274a3eec0b92b69b9ca84bc5d69c5eb456f8049ecce39f87060a564cd32e1f2ab50426bb10c55e27bd77f1e732
+  data.tar.gz: 1e27582d39e099255357ffd6068bee42521e385e4410565cfbc9ff467c4b94eea80c39781aad39b7144144c465054915ef46f02be476d403905890a1185c57e2

data/lib/sepa/application_request.rb CHANGED

@@ -8,18 +8,18 @@ module Sepa
         instance_variable_set("@#{key}", value)
       end
-      @ar = load_body_template AR_TEMPLATE_PATH
+      @application_request = load_body_template AR_TEMPLATE_PATH
     end
     def to_xml
       set_common_nodes
       set_nodes_contents
       process_signature
-      @ar.to_xml
+      @application_request.to_xml
     end
     def to_base64
-      Base64.encode64(to_xml)
+      encode to_xml
     end
     def to_nokogiri
@@ -29,11 +29,11 @@ module Sepa
     private
       def set_node(node, value)
-        @ar.at_css(node).content = value
+        @application_request.at_css(node).content = value
       end
       def set_node_b(node, value)
-        set_node node, Base64.encode64(value)
+        set_node node, encode(value)
       end
       def pretty_command
@@ -109,28 +109,30 @@ module Sepa
       end
       def remove_node(node, xmlns)
-        @ar.at_css("xmlns|#{node}", 'xmlns' => xmlns).remove
+        @application_request.at_css("xmlns|#{node}", 'xmlns' => xmlns).remove
       end
       def add_node_to_root(node)
-        @ar.root.add_child(node)
+        @application_request.root.add_child(node)
       end
       def calculate_digest
         sha1 = OpenSSL::Digest::SHA1.new
-        Base64.encode64(sha1.digest(@ar.canonicalize))
+        encode(sha1.digest(@application_request.canonicalize))
       end
       def add_value_to_signature(node, value)
-        sig = @ar.at_css("dsig|#{node}", 'dsig' => 'http://www.w3.org/2000/09/xmldsig#')
+        dsig = 'http://www.w3.org/2000/09/xmldsig#'
+        sig = @application_request.at_css("dsig|#{node}", 'dsig' => dsig)
         sig.content = value
       end
       def calculate_signature
         sha1 = OpenSSL::Digest::SHA1.new
-        node = @ar.at_css("dsig|SignedInfo", 'dsig' => 'http://www.w3.org/2000/09/xmldsig#')
+        dsig = 'http://www.w3.org/2000/09/xmldsig#'
+        node = @application_request.at_css("dsig|SignedInfo", 'dsig' => dsig)
         signature = @private_key.sign(sha1, node.canonicalize)
-        Base64.encode64(signature)
+        encode signature
       end
       def process_signature

data/lib/sepa/application_response.rb CHANGED

@@ -3,29 +3,26 @@ module Sepa
     include ActiveModel::Validations
     include Utilities
-    attr_accessor :ar, :certificate
+    attr_reader :xml
     validate :response_must_validate_against_schema
     validate :validate_document_format
     def initialize(app_resp)
-      self.ar = app_resp
-      self.certificate = extract_cert(ar, 'X509Certificate', 'http://www.w3.org/2000/09/xmldsig#')
+      @xml = app_resp
+    end
+    def doc
+      @doc ||= xml_doc @xml
     end
     # Checks that the hash value reported in the signature matches the actual one.
     def hashes_match?
-      are = ar.clone
+      are = doc.clone
-      digest_value = are.at_css(
-        'xmlns|DigestValue',
-        'xmlns' => 'http://www.w3.org/2000/09/xmldsig#'
-      ).content.strip
+      digest_value = are.at('xmlns|DigestValue', xmlns: DSIG).content.strip
-      are.at_css(
-        "xmlns|Signature",
-        'xmlns' => 'http://www.w3.org/2000/09/xmldsig#'
-      ).remove
+      are.at('xmlns|Signature', xmlns: DSIG).remove
       actual_digest = calculate_digest(are)
@@ -36,31 +33,34 @@ module Sepa
     # Checks that the signature is signed with the private key of the certificate's public key.
     def signature_is_valid?
-      node = ar.at_css('xmlns|SignedInfo', 'xmlns' => 'http://www.w3.org/2000/09/xmldsig#')
+      node = doc.at('xmlns|SignedInfo', 'xmlns' => DSIG)
       node = node.canonicalize
-      signature = ar.at_css(
-        'xmlns|SignatureValue',
-        'xmlns' => 'http://www.w3.org/2000/09/xmldsig#'
-      ).content
-      signature = Base64.decode64(signature)
+      signature = doc.at('xmlns|SignatureValue', 'xmlns' => DSIG).content
+      signature = decode(signature)
       # Return true or false
       certificate.public_key.verify(OpenSSL::Digest::SHA1.new, signature, node)
     end
+    def to_s
+      @xml
+    end
+    def certificate
+      extract_cert(doc, 'X509Certificate', DSIG)
+    end
     private
       def validate_document_format
-        unless ar.respond_to?(:canonicalize)
-          errors.add(:base, 'Document must be a Nokogiri XML file')
+        unless doc.respond_to?(:canonicalize)
+          errors.add(:base, 'Document must be a valid XML file')
         end
       end
       def response_must_validate_against_schema
-        check_validity_against_schema(ar, 'application_response.xsd')
+        check_validity_against_schema(doc, 'application_response.xsd')
       end
   end

data/lib/sepa/attribute_checks.rb CHANGED

@@ -50,27 +50,6 @@ module Sepa
       end
     end
-    def wsdl
-      case bank
-        when :nordea
-          if command == :get_certificate
-            file = "wsdl_nordea_cert.xml"
-          else
-            file = "wsdl_nordea.xml"
-          end
-        when :danske
-          if [:get_bank_certificate, :create_certificate].include? command
-            file = "wsdl_danske_cert.xml"
-          else
-            file = "wsdl_danske.xml"
-          end
-        else
-          return nil
-      end
-      "#{WSDL_PATH}/#{file}"
-    end
     def check_wsdl
       return unless wsdl.present?

data/lib/sepa/banks/danske/danske_response.rb CHANGED

@@ -1,19 +1,45 @@
 module Sepa
   class DanskeResponse < Response
-    attr_reader :bank_encryption_cert, :bank_signing_cert, :bank_root_cert, :own_encryption_cert,
-                :own_signing_cert, :ca_certificate
-    # Namespace used in danske bank certificate responses and requests
-    TNS = 'http://danskebank.dk/PKI/PKIFactoryService/elements'
-    def initialize(response, command: nil)
-      super
-      @bank_encryption_cert = extract_cert(soap, 'BankEncryptionCert', TNS)
-      @bank_signing_cert = extract_cert(soap, 'BankSigningCert', TNS)
-      @bank_root_cert = extract_cert(soap, 'BankRootCert', TNS)
-      @own_encryption_cert = extract_cert(soap, 'EncryptionCert', TNS)
-      @own_signing_cert = extract_cert(soap, 'SigningCert', TNS)
-      @ca_certificate = extract_cert(soap, 'CACert', TNS)
+    def bank_encryption_cert
+      @bank_encryption_cert ||= extract_cert(doc, 'BankEncryptionCert', DANSKE_PKI)
+    end
+    def bank_signing_cert
+      @bank_signing_cert ||= extract_cert(doc, 'BankSigningCert', DANSKE_PKI)
+    end
+    def bank_root_cert
+      @bank_root_cert ||= extract_cert(doc, 'BankRootCert', DANSKE_PKI)
+    end
+    def own_encryption_cert
+      @own_encryption_cert ||= extract_cert(doc, 'EncryptionCert', DANSKE_PKI)
+    end
+    def own_signing_cert
+      @own_signing_cert ||= extract_cert(doc, 'SigningCert', DANSKE_PKI)
+    end
+    def ca_certificate
+      @ca_certificate ||= extract_cert(doc, 'CACert', DANSKE_PKI)
+    end
+    def certificate
+      if @command == :create_certificate
+        @certificate ||= begin
+          extract_cert(doc, 'X509Certificate', DSIG)
+        end
+      end
     end
+    private
+      def find_node_by_uri(uri)
+        node = doc.at("[xml|id='#{uri}']")
+        node.at('xmlns|Signature', xmlns: DSIG).remove
+        node
+      end
   end
 end

data/lib/sepa/banks/danske/soap_danske.rb CHANGED

@@ -1,132 +1,134 @@
 module Sepa
   module DanskeSoapRequest
-    def find_correct_build
-      case @command
-      when :create_certificate
-        build_certificate_request
-      when :upload_file, :download_file, :get_user_info, :download_file_list
-        build_danske_generic_request
-      when :get_bank_certificate
-        build_get_bank_certificate_request
+    private
+      def find_correct_build
+        case @command
+        when :create_certificate
+          build_certificate_request
+        when :upload_file, :download_file, :get_user_info, :download_file_list
+          build_danske_generic_request
+        when :get_bank_certificate
+          build_get_bank_certificate_request
+        end
+      end
+      def encrypt_application_request
+        encryption_cert = OpenSSL::X509::Certificate.new(@enc_cert)
+        encryption_public_key = encryption_cert.public_key
+        encryption_cert = format_cert(encryption_cert)
+        encrypted_ar, key = encrypt_ar
+        encrypted_key = encrypt_key(key, encryption_public_key)
+        build_encrypted_ar(encryption_cert, encrypted_key, encrypted_ar)
+      end
+      # Encrypts a given symmetric encryption key with a public key and returns it in base64 encoded
+      # format
+      def encrypt_key(key, public_key)
+        encrypted_key = public_key.public_encrypt(key)
+        encode encrypted_key
+      end
+      # Encrypts the application request and returns it in base64 encoded format.
+      # Also returns the key needed to decrypt it
+      def encrypt_ar
+        cipher = OpenSSL::Cipher.new('DES-EDE3-CBC').encrypt
+        key = cipher.random_key
+        iv = cipher.random_iv
+        encrypted_data = cipher.update(@application_request.to_xml)
+        encrypted_data << cipher.final
+        encrypted_data = iv + encrypted_data
+        encrypted_data = encode encrypted_data
+        return encrypted_data, key
+      end
+      def build_encrypted_ar(cert, encrypted_data, encrypted_key)
+        ar = Nokogiri::XML File.open "#{AR_TEMPLATE_PATH}/encrypted_request.xml"
+        set_node(ar, 'dsig|X509Certificate', cert)
+        set_node(ar, 'dsig|KeyInfo xenc|CipherValue', encrypted_data)
+        set_node(ar, 'xenc|EncryptedData > xenc|CipherData > xenc|CipherValue', encrypted_key)
+        ar
+      end
+      def set_generic_request_contents
+        set_node(@template, 'bxd|SenderId', @customer_id)
+        set_node(@template, 'bxd|RequestId', request_id)
+        set_node(@template, 'bxd|Timestamp', iso_time)
+        set_node(@template, 'bxd|Language', @language)
+        set_node(@template, 'bxd|UserAgent', "Sepa Transfer Library version " + VERSION)
+        set_node(@template, 'bxd|ReceiverId', @target_id)
+      end
+      def set_create_cert_contents
+        set_node(@template, 'pkif|SenderId', @customer_id)
+        set_node(@template, 'pkif|CustomerId', @customer_id)
+        set_node(@template, 'pkif|RequestId', request_id)
+        set_node(@template, 'pkif|Timestamp', iso_time)
+        set_node(@template, 'pkif|InterfaceVersion', 1)
+        set_node(@template, 'pkif|Environment', @environment)
+      end
+      def set_bank_certificate_contents
+        set_node(@template, 'pkif|SenderId', @customer_id)
+        set_node(@template, 'pkif|CustomerId', @customer_id)
+        set_node(@template, 'pkif|RequestId', request_id)
+        set_node(@template, 'pkif|Timestamp', iso_time)
+        set_node(@template, 'pkif|InterfaceVersion', 1)
+      end
+      def build_danske_generic_request
+        set_generic_request_contents
+        encrypted_request = encrypt_application_request
+        add_encrypted_generic_request_to_soap(encrypted_request)
+        process_header
+        add_body_to_header
+      end
+      def build_certificate_request
+        set_create_cert_contents
+        encrypted_request = encrypt_application_request
+        add_encrypted_request_to_soap(encrypted_request)
+      end
+      def build_get_bank_certificate_request
+        set_bank_certificate_contents
+        add_bank_certificate_body_to_soap
+      end
+      def add_encrypted_request_to_soap(encrypted_request)
+        encrypted_request = Nokogiri::XML(encrypted_request.to_xml)
+        encrypted_request = encrypted_request.root
+        @template.at_css('pkif|CreateCertificateIn').add_child(encrypted_request)
+        @template
+      end
+      def add_encrypted_generic_request_to_soap(encrypted_request)
+        encrypted_request = Nokogiri::XML(encrypted_request.to_xml)
+        encrypted_request = encrypted_request.root
+        encrypted_request = encode encrypted_request.to_xml
+        @template.at_css('bxd|ApplicationRequest').add_child(encrypted_request)
+        @template
+      end
+      def add_bank_certificate_body_to_soap
+        ar = @application_request.to_nokogiri
+        ar = ar.at_css('elem|GetBankCertificateRequest')
+        @template.at_css('pkif|GetBankCertificateIn').add_child(ar)
+        @template
+      end
+      def request_id
+        SecureRandom.hex(5)
       end
-    end
-    def encrypt_application_request
-      encryption_cert = OpenSSL::X509::Certificate.new(@enc_cert)
-      encryption_public_key = encryption_cert.public_key
-      encryption_cert = format_cert(encryption_cert)
-      encrypted_ar, key = encrypt_ar
-      encrypted_key = encrypt_key(key, encryption_public_key)
-      build_encrypted_ar(encryption_cert, encrypted_key, encrypted_ar)
-    end
-    # Encrypts a given symmetric encryption key with a public key and returns it in base64 encoded
-    # format
-    def encrypt_key(key, public_key)
-      encrypted_key = public_key.public_encrypt(key)
-      Base64.encode64(encrypted_key)
-    end
-    # Encrypts the application request and returns it in base64 encoded format.
-    # Also returns the key needed to decrypt it
-    def encrypt_ar
-      cipher = OpenSSL::Cipher.new('DES-EDE3-CBC').encrypt
-      key = cipher.random_key
-      iv = cipher.random_iv
-      encrypted_data = cipher.update(@ar.to_xml)
-      encrypted_data << cipher.final
-      encrypted_data = iv + encrypted_data
-      encrypted_data = Base64.encode64(encrypted_data)
-      return encrypted_data, key
-    end
-    def build_encrypted_ar(cert, encrypted_data, encrypted_key)
-      ar = Nokogiri::XML File.open "#{AR_TEMPLATE_PATH}/encrypted_request.xml"
-      set_node(ar, 'dsig|X509Certificate', cert)
-      set_node(ar, 'dsig|KeyInfo xenc|CipherValue', encrypted_data)
-      set_node(ar, 'xenc|EncryptedData > xenc|CipherData > xenc|CipherValue', encrypted_key)
-      ar
-    end
-    def set_generic_request_contents
-      set_node(@template, 'bxd|SenderId', @customer_id)
-      set_node(@template, 'bxd|RequestId', request_id)
-      set_node(@template, 'bxd|Timestamp', iso_time)
-      set_node(@template, 'bxd|Language', @language)
-      set_node(@template, 'bxd|UserAgent', "Sepa Transfer Library version " + VERSION)
-      set_node(@template, 'bxd|ReceiverId', @target_id)
-    end
-    def set_create_cert_contents
-      set_node(@template, 'pkif|SenderId', @customer_id)
-      set_node(@template, 'pkif|CustomerId', @customer_id)
-      set_node(@template, 'pkif|RequestId', request_id)
-      set_node(@template, 'pkif|Timestamp', iso_time)
-      set_node(@template, 'pkif|InterfaceVersion', 1)
-      set_node(@template, 'pkif|Environment', @environment)
-    end
-    def set_bank_certificate_contents
-      set_node(@template, 'pkif|SenderId', @customer_id)
-      set_node(@template, 'pkif|CustomerId', @customer_id)
-      set_node(@template, 'pkif|RequestId', request_id)
-      set_node(@template, 'pkif|Timestamp', iso_time)
-      set_node(@template, 'pkif|InterfaceVersion', 1)
-    end
-    def build_danske_generic_request
-      set_generic_request_contents
-      encrypted_request = encrypt_application_request
-      add_encrypted_generic_request_to_soap(encrypted_request)
-      process_header
-      add_body_to_header
-    end
-    def build_certificate_request
-      set_create_cert_contents
-      encrypted_request = encrypt_application_request
-      add_encrypted_request_to_soap(encrypted_request)
-    end
-    def build_get_bank_certificate_request
-      set_bank_certificate_contents
-      add_bank_certificate_body_to_soap
-    end
-    def add_encrypted_request_to_soap(encrypted_request)
-      encrypted_request = Nokogiri::XML(encrypted_request.to_xml)
-      encrypted_request = encrypted_request.root
-      @template.at_css('pkif|CreateCertificateIn').add_child(encrypted_request)
-      @template
-    end
-    def add_encrypted_generic_request_to_soap(encrypted_request)
-      encrypted_request = Nokogiri::XML(encrypted_request.to_xml)
-      encrypted_request = encrypted_request.root
-      encrypted_request = Base64.encode64(encrypted_request.to_xml)
-      @template.at_css('bxd|ApplicationRequest').add_child(encrypted_request)
-      @template
-    end
-    def add_bank_certificate_body_to_soap
-      ar = @ar.to_nokogiri
-      ar = ar.at_css('elem|GetBankCertificateRequest')
-      @template.at_css('pkif|GetBankCertificateIn').add_child(ar)
-      @template
-    end
-    def request_id
-      SecureRandom.hex(5)
-    end
   end
 end