signature 0.1.2 → 0.1.3

data/.travis.yml

@@ -0,0 +1,11 @@
+language: ruby
+rvm:
+  - 1.8.7
+  - 1.9.2
+  - 1.9.3
+  - jruby-18mode # JRuby in 1.8 mode
+  - jruby-19mode # JRuby in 1.9 mode
+  - rbx-18mode
+  - rbx-19mode
+
+script: bundle exec rspec spec

data/Gemfile.lock

@@ -1,29 +1,24 @@
 PATH
   remote: .
   specs:
-    signature (0.1.2)
-      ruby-hmac
+    signature (0.1.3)
 
 GEM
   remote: http://rubygems.org/
   specs:
-    diff-lcs (1.1.2)
-    rspec (2.0.1)
-      rspec-core (~> 2.0.1)
-      rspec-expectations (~> 2.0.1)
-      rspec-mocks (~> 2.0.1)
-    rspec-core (2.0.1)
-    rspec-expectations (2.0.1)
-      diff-lcs (>= 1.1.2)
-    rspec-mocks (2.0.1)
-      rspec-core (~> 2.0.1)
-      rspec-expectations (~> 2.0.1)
-    ruby-hmac (0.4.0)
+    diff-lcs (1.1.3)
+    rspec (2.9.0)
+      rspec-core (~> 2.9.0)
+      rspec-expectations (~> 2.9.0)
+      rspec-mocks (~> 2.9.0)
+    rspec-core (2.9.0)
+    rspec-expectations (2.9.1)
+      diff-lcs (~> 1.1.3)
+    rspec-mocks (2.9.0)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  rspec (~> 2.0.0)
-  ruby-hmac
+  rspec (~> 2.9.0)
   signature!

data/README.md

@@ -1,47 +1,55 @@
 signature
 =========
 
+[![Build Status](https://secure.travis-ci.org/mloughran/signature.png?branch=master)](http://travis-ci.org/mloughran/signature)
+
 Examples
 --------
 
 Client example
 
-    params = {:some => 'parameters'}
-    token = Signature::Token.new('my_key', 'my_secret')
-    request = Signature::Request.new('POST', '/api/thing', params)
-    auth_hash = request.sign(token)
-    query_params = params.merge(auth_hash)
-    
-    HTTParty.post('http://myservice/api/thing', {
-      :query => query_params
-    })
+```ruby
+params       = {:some => 'parameters'}
+token        = Signature::Token.new('my_key', 'my_secret')
+request      = Signature::Request.new('POST', '/api/thing', params)
+auth_hash    = request.sign(token)
+query_params = params.merge(auth_hash)
+
+HTTParty.post('http://myservice/api/thing', {
+  :query => query_params
+})
+```
 
 `query_params` looks like:
 
-    {
-      :some => "parameters",
-      :auth_timestamp => 1273231888,
-      :auth_signature => "28b6bb0f242f71064916fad6ae463fe91f5adc302222dfc02c348ae1941eaf80",
-      :auth_version => "1.0",
-      :auth_key => "my_key"
-    }
+```ruby
+{
+  :some           => "parameters",
+  :auth_timestamp => 1273231888,
+  :auth_signature => "28b6bb0f242f71064916fad6ae463fe91f5adc302222dfc02c348ae1941eaf80",
+  :auth_version   => "1.0",
+  :auth_key       => "my_key"
+}
 
+```
 Server example (sinatra)
 
-    error Signature::AuthenticationError do |controller|
-      error = controller.env["sinatra.error"]
-      halt 401, "401 UNAUTHORIZED: #{error.message}\n"
-    end
+```ruby
+error Signature::AuthenticationError do |controller|
+  error = controller.env["sinatra.error"]
+  halt 401, "401 UNAUTHORIZED: #{error.message}\n"
+end
 
-    post '/api/thing' do
-      request = Authentication::Request.new('POST', env["REQUEST_PATH"], params)
-      # This will raise a Signature::AuthenticationError if request does not authenticate
-      token = request.authenticate do |key|
-        Signature::Token.new(key, lookup_secret(key))
-      end
+post '/api/thing' do
+  request = Signature::Request.new('POST', env["REQUEST_PATH"], params)
+  # This will raise a Signature::AuthenticationError if request does not authenticate
+  token = request.authenticate do |key|
+    Signature::Token.new(key, lookup_secret(key))
+  end
 
-      # Do whatever you need to do
-    end
+  # Do whatever you need to do
+end
+```
 
 Developing
 ----------
@@ -49,6 +57,8 @@ Developing
     bundle
     bundle exec rspec spec/*_spec.rb
 
+Please see the travis status for a list of rubies tested against
+
 Copyright
 ---------
 

data/lib/signature.rb

@@ -1,4 +1,4 @@
-require 'hmac-sha2'
+require 'openssl'
 
 module Signature
   class AuthenticationError < RuntimeError; end
@@ -90,7 +90,8 @@ module Signature
     private
 
       def signature(token)
-        HMAC::SHA256.hexdigest(token.secret, string_to_sign)
+        digest = OpenSSL::Digest::SHA256.new
+        OpenSSL::HMAC.hexdigest(digest, token.secret, string_to_sign)
       end
 
       def string_to_sign

data/lib/signature/version.rb

@@ -1,3 +1,3 @@
 module Signature
-  VERSION = "0.1.2"
+  VERSION = "0.1.3"
 end

data/signature.gemspec

@@ -17,6 +17,6 @@ Gem::Specification.new do |s|
   s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
   s.require_paths = ["lib"]
 
-  s.add_dependency "ruby-hmac"
-  s.add_development_dependency "rspec", "~> 2.0.0"
+  s.add_dependency "jruby-openssl" if defined?(JRUBY_VERSION)
+  s.add_development_dependency "rspec", "~> 2.9.0"
 end

metadata

@@ -1,60 +1,37 @@
---- !ruby/object:Gem::Specification 
+--- !ruby/object:Gem::Specification
 name: signature
-version: !ruby/object:Gem::Version 
-  prerelease: false
-  segments: 
-  - 0
-  - 1
-  - 2
-  version: 0.1.2
+version: !ruby/object:Gem::Version
+  version: 0.1.3
+  prerelease: 
 platform: ruby
-authors: 
+authors:
 - Martyn Loughran
 autorequire: 
 bindir: bin
 cert_chain: []
-
-date: 2010-10-29 00:00:00 +01:00
-default_executable: 
-dependencies: 
-- !ruby/object:Gem::Dependency 
-  name: ruby-hmac
-  prerelease: false
-  requirement: &id001 !ruby/object:Gem::Requirement 
-    requirements: 
-    - - ">="
-      - !ruby/object:Gem::Version 
-        segments: 
-        - 0
-        version: "0"
-  type: :runtime
-  version_requirements: *id001
-- !ruby/object:Gem::Dependency 
+date: 2012-05-06 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
   name: rspec
-  prerelease: false
-  requirement: &id002 !ruby/object:Gem::Requirement 
-    requirements: 
+  requirement: &70163026801480 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
     - - ~>
-      - !ruby/object:Gem::Version 
-        segments: 
-        - 2
-        - 0
-        - 0
-        version: 2.0.0
+      - !ruby/object:Gem::Version
+        version: 2.9.0
   type: :development
-  version_requirements: *id002
+  prerelease: false
+  version_requirements: *70163026801480
 description: Simple key/secret based authentication for apis
-email: 
+email:
 - me@mloughran.com
 executables: []
-
 extensions: []
-
 extra_rdoc_files: []
-
-files: 
+files:
 - .document
 - .gitignore
+- .travis.yml
 - Gemfile
 - Gemfile.lock
 - LICENSE
@@ -66,36 +43,31 @@ files:
 - signature.gemspec
 - spec/signature_spec.rb
 - spec/spec_helper.rb
-has_rdoc: true
 homepage: http://github.com/mloughran/signature
 licenses: []
-
 post_install_message: 
 rdoc_options: []
-
-require_paths: 
+require_paths:
 - lib
-required_ruby_version: !ruby/object:Gem::Requirement 
-  requirements: 
-  - - ">="
-    - !ruby/object:Gem::Version 
-      segments: 
-      - 0
-      version: "0"
-required_rubygems_version: !ruby/object:Gem::Requirement 
-  requirements: 
-  - - ">="
-    - !ruby/object:Gem::Version 
-      segments: 
-      - 0
-      version: "0"
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
 requirements: []
-
 rubyforge_project: 
-rubygems_version: 1.3.6
+rubygems_version: 1.8.10
 signing_key: 
 specification_version: 3
 summary: Simple key/secret based authentication for apis
-test_files: 
+test_files:
 - spec/signature_spec.rb
 - spec/spec_helper.rb
+has_rdoc: