signet 0.1.0

data/CHANGELOG

@@ -0,0 +1,3 @@
+== 0.1.0
+
+* initial release

data/LICENSE

@@ -0,0 +1,202 @@
+
+                              Apache License
+                        Version 2.0, January 2004
+                     http://www.apache.org/licenses/
+
+TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+1. Definitions.
+
+   "License" shall mean the terms and conditions for use, reproduction,
+   and distribution as defined by Sections 1 through 9 of this document.
+
+   "Licensor" shall mean the copyright owner or entity authorized by
+   the copyright owner that is granting the License.
+
+   "Legal Entity" shall mean the union of the acting entity and all
+   other entities that control, are controlled by, or are under common
+   control with that entity. For the purposes of this definition,
+   "control" means (i) the power, direct or indirect, to cause the
+   direction or management of such entity, whether by contract or
+   otherwise, or (ii) ownership of fifty percent (50%) or more of the
+   outstanding shares, or (iii) beneficial ownership of such entity.
+
+   "You" (or "Your") shall mean an individual or Legal Entity
+   exercising permissions granted by this License.
+
+   "Source" form shall mean the preferred form for making modifications,
+   including but not limited to software source code, documentation
+   source, and configuration files.
+
+   "Object" form shall mean any form resulting from mechanical
+   transformation or translation of a Source form, including but
+   not limited to compiled object code, generated documentation,
+   and conversions to other media types.
+
+   "Work" shall mean the work of authorship, whether in Source or
+   Object form, made available under the License, as indicated by a
+   copyright notice that is included in or attached to the work
+   (an example is provided in the Appendix below).
+
+   "Derivative Works" shall mean any work, whether in Source or Object
+   form, that is based on (or derived from) the Work and for which the
+   editorial revisions, annotations, elaborations, or other modifications
+   represent, as a whole, an original work of authorship. For the purposes
+   of this License, Derivative Works shall not include works that remain
+   separable from, or merely link (or bind by name) to the interfaces of,
+   the Work and Derivative Works thereof.
+
+   "Contribution" shall mean any work of authorship, including
+   the original version of the Work and any modifications or additions
+   to that Work or Derivative Works thereof, that is intentionally
+   submitted to Licensor for inclusion in the Work by the copyright owner
+   or by an individual or Legal Entity authorized to submit on behalf of
+   the copyright owner. For the purposes of this definition, "submitted"
+   means any form of electronic, verbal, or written communication sent
+   to the Licensor or its representatives, including but not limited to
+   communication on electronic mailing lists, source code control systems,
+   and issue tracking systems that are managed by, or on behalf of, the
+   Licensor for the purpose of discussing and improving the Work, but
+   excluding communication that is conspicuously marked or otherwise
+   designated in writing by the copyright owner as "Not a Contribution."
+
+   "Contributor" shall mean Licensor and any individual or Legal Entity
+   on behalf of whom a Contribution has been received by Licensor and
+   subsequently incorporated within the Work.
+
+2. Grant of Copyright License. Subject to the terms and conditions of
+   this License, each Contributor hereby grants to You a perpetual,
+   worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+   copyright license to reproduce, prepare Derivative Works of,
+   publicly display, publicly perform, sublicense, and distribute the
+   Work and such Derivative Works in Source or Object form.
+
+3. Grant of Patent License. Subject to the terms and conditions of
+   this License, each Contributor hereby grants to You a perpetual,
+   worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+   (except as stated in this section) patent license to make, have made,
+   use, offer to sell, sell, import, and otherwise transfer the Work,
+   where such license applies only to those patent claims licensable
+   by such Contributor that are necessarily infringed by their
+   Contribution(s) alone or by combination of their Contribution(s)
+   with the Work to which such Contribution(s) was submitted. If You
+   institute patent litigation against any entity (including a
+   cross-claim or counterclaim in a lawsuit) alleging that the Work
+   or a Contribution incorporated within the Work constitutes direct
+   or contributory patent infringement, then any patent licenses
+   granted to You under this License for that Work shall terminate
+   as of the date such litigation is filed.
+
+4. Redistribution. You may reproduce and distribute copies of the
+   Work or Derivative Works thereof in any medium, with or without
+   modifications, and in Source or Object form, provided that You
+   meet the following conditions:
+
+   (a) You must give any other recipients of the Work or
+       Derivative Works a copy of this License; and
+
+   (b) You must cause any modified files to carry prominent notices
+       stating that You changed the files; and
+
+   (c) You must retain, in the Source form of any Derivative Works
+       that You distribute, all copyright, patent, trademark, and
+       attribution notices from the Source form of the Work,
+       excluding those notices that do not pertain to any part of
+       the Derivative Works; and
+
+   (d) If the Work includes a "NOTICE" text file as part of its
+       distribution, then any Derivative Works that You distribute must
+       include a readable copy of the attribution notices contained
+       within such NOTICE file, excluding those notices that do not
+       pertain to any part of the Derivative Works, in at least one
+       of the following places: within a NOTICE text file distributed
+       as part of the Derivative Works; within the Source form or
+       documentation, if provided along with the Derivative Works; or,
+       within a display generated by the Derivative Works, if and
+       wherever such third-party notices normally appear. The contents
+       of the NOTICE file are for informational purposes only and
+       do not modify the License. You may add Your own attribution
+       notices within Derivative Works that You distribute, alongside
+       or as an addendum to the NOTICE text from the Work, provided
+       that such additional attribution notices cannot be construed
+       as modifying the License.
+
+   You may add Your own copyright statement to Your modifications and
+   may provide additional or different license terms and conditions
+   for use, reproduction, or distribution of Your modifications, or
+   for any such Derivative Works as a whole, provided Your use,
+   reproduction, and distribution of the Work otherwise complies with
+   the conditions stated in this License.
+
+5. Submission of Contributions. Unless You explicitly state otherwise,
+   any Contribution intentionally submitted for inclusion in the Work
+   by You to the Licensor shall be under the terms and conditions of
+   this License, without any additional terms or conditions.
+   Notwithstanding the above, nothing herein shall supersede or modify
+   the terms of any separate license agreement you may have executed
+   with Licensor regarding such Contributions.
+
+6. Trademarks. This License does not grant permission to use the trade
+   names, trademarks, service marks, or product names of the Licensor,
+   except as required for reasonable and customary use in describing the
+   origin of the Work and reproducing the content of the NOTICE file.
+
+7. Disclaimer of Warranty. Unless required by applicable law or
+   agreed to in writing, Licensor provides the Work (and each
+   Contributor provides its Contributions) on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+   implied, including, without limitation, any warranties or conditions
+   of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+   PARTICULAR PURPOSE. You are solely responsible for determining the
+   appropriateness of using or redistributing the Work and assume any
+   risks associated with Your exercise of permissions under this License.
+
+8. Limitation of Liability. In no event and under no legal theory,
+   whether in tort (including negligence), contract, or otherwise,
+   unless required by applicable law (such as deliberate and grossly
+   negligent acts) or agreed to in writing, shall any Contributor be
+   liable to You for damages, including any direct, indirect, special,
+   incidental, or consequential damages of any character arising as a
+   result of this License or out of the use or inability to use the
+   Work (including but not limited to damages for loss of goodwill,
+   work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses), even if such Contributor
+   has been advised of the possibility of such damages.
+
+9. Accepting Warranty or Additional Liability. While redistributing
+   the Work or Derivative Works thereof, You may choose to offer,
+   and charge a fee for, acceptance of support, warranty, indemnity,
+   or other liability obligations and/or rights consistent with this
+   License. However, in accepting such obligations, You may act only
+   on Your own behalf and on Your sole responsibility, not on behalf
+   of any other Contributor, and only if You agree to indemnify,
+   defend, and hold each Contributor harmless for any liability
+   incurred by, or claims asserted against, such Contributor by reason
+   of your accepting any such warranty or additional liability.
+
+END OF TERMS AND CONDITIONS
+
+APPENDIX: How to apply the Apache License to your work.
+
+   To apply the Apache License to your work, attach the following
+   boilerplate notice, with the fields enclosed by brackets "[]"
+   replaced with your own identifying information. (Don't include
+   the brackets!)  The text should be enclosed in the appropriate
+   comment syntax for the file format. We also recommend that a
+   file or class name and description of purpose be included on the
+   same "printed page" as the copyright notice for easier
+   identification within third-party archives.
+
+Copyright [yyyy] [name of copyright owner]
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.

data/README

@@ -0,0 +1,47 @@
+== Signet
+
+Homepage::  signet.rubyforge.org[http://signet.rubyforge.org/]
+Author::    Bob Aman  (mailto:bobaman@google.com)
+Copyright:: Copyright © 2010 Google Inc.
+License::   Apache 2.0
+
+== Description
+
+Signet is an OAuth 1.0 / OAuth 2.0 implementation.
+
+== Reference
+
+- {Signet::OAuth1}
+- {Signet::OAuth1::Client}
+- {Signet::OAuth1::Credential}
+
+== Example Usage for Google
+
+  require 'signet/oauth_1/client'
+  client = Signet::OAuth1::Client.new(
+    :temporary_credential_uri =>
+      'https://www.google.com/accounts/OAuthGetRequestToken',
+    :authorization_uri =>
+      'https://www.google.com/accounts/OAuthAuthorizeToken',
+    :token_credential_uri =>
+      'https://www.google.com/accounts/OAuthGetAccessToken',
+    :client_credential_key => 'anonymous',
+    :client_credential_secret => 'anonymous'
+  )
+  client.fetch_temporary_credential!(:additional_parameters => {
+    :scope => 'https://mail.google.com/mail/feed/atom'
+  })
+  # Send the user to client.authorization_uri, obtain verifier
+  client.fetch_token_credential!(:verifier => '12345')
+  response = client.fetch_protected_resource(
+    :uri => 'https://mail.google.com/mail/feed/atom'
+  )
+  status, headers, body = response
+
+== Example Usage for Twitter
+
+# Example usage goes here
+
+== Install
+
+* sudo gem install signet

data/Rakefile

@@ -0,0 +1,59 @@
+lib_dir = File.expand_path(File.join(File.dirname(__FILE__), "lib"))
+$:.unshift(lib_dir)
+$:.uniq!
+
+require 'rubygems'
+require 'rake'
+require 'rake/testtask'
+require 'rake/rdoctask'
+require 'rake/packagetask'
+require 'rake/gempackagetask'
+require 'rake/contrib/rubyforgepublisher'
+
+begin
+  require 'spec/rake/spectask'
+rescue LoadError
+  STDERR.puts "Please install rspec:"
+  STDERR.puts "sudo gem install rspec"
+  exit(1)
+end
+
+require File.join(File.dirname(__FILE__), 'lib/signet', 'version')
+
+PKG_DISPLAY_NAME   = 'Signet'
+PKG_NAME           = PKG_DISPLAY_NAME.downcase
+PKG_VERSION        = Signet::VERSION::STRING
+PKG_FILE_NAME      = "#{PKG_NAME}-#{PKG_VERSION}"
+
+RELEASE_NAME       = "REL #{PKG_VERSION}"
+
+RUBY_FORGE_PROJECT = PKG_NAME
+RUBY_FORGE_USER    = "sporkmonger"
+RUBY_FORGE_PATH    = "/var/www/gforge-projects/#{RUBY_FORGE_PROJECT}"
+RUBY_FORGE_URL     = "http://#{RUBY_FORGE_PROJECT}.rubyforge.org/"
+
+PKG_AUTHOR         = "Bob Aman"
+PKG_AUTHOR_EMAIL   = "bobaman@google.com"
+PKG_HOMEPAGE       = RUBY_FORGE_URL
+PKG_SUMMARY        = "Package Summary"
+PKG_DESCRIPTION    = <<-TEXT
+Signet is an OAuth 1.0 / OAuth 2.0 implementation.
+TEXT
+
+PKG_FILES = FileList[
+    "lib/**/*", "spec/**/*", "vendor/**/*",
+    "tasks/**/*", "website/**/*",
+    "[A-Z]*", "Rakefile"
+].exclude(/database\.yml/).exclude(/[_\.]git$/)
+
+RCOV_ENABLED = (RUBY_PLATFORM != "java" && RUBY_VERSION =~ /^1\.8/)
+if RCOV_ENABLED
+  task :default => "spec:verify"
+else
+  task :default => "spec"
+end
+
+WINDOWS = (RUBY_PLATFORM =~ /mswin|win32|mingw|bccwin|cygwin/) rescue false
+SUDO = WINDOWS ? '' : ('sudo' unless ENV['SUDOLESS'])
+
+Dir['tasks/**/*.rake'].each { |rake| load rake }

data/lib/compat/digest/hmac.rb

@@ -0,0 +1,104 @@
+# = digest/hmac.rb
+#
+# An implementation of HMAC keyed-hashing algorithm
+#
+# == Overview 
+# 
+# This library adds a method named hmac() to Digest classes, which
+# creates a Digest class for calculating HMAC digests.
+#
+# == Examples
+#
+#   require 'digest/hmac'
+#
+#   # one-liner example
+#   puts Digest::HMAC.hexdigest("data", "hash key", Digest::SHA1)
+#
+#   # rather longer one
+#   hmac = Digest::HMAC.new("foo", Digest::RMD160)
+#
+#   buf = ""
+#   while stream.read(16384, buf)
+#     hmac.update(buf)
+#   end
+#
+#   puts hmac.bubblebabble
+#
+# == License
+#
+# Copyright (c) 2006 Akinori MUSHA <knu@iDaemons.org>
+#
+# Documentation by Akinori MUSHA
+#
+# All rights reserved.  You can redistribute and/or modify it under
+# the same terms as Ruby.
+#
+#   $Id: hmac.rb 14881 2008-01-04 07:26:14Z akr $
+#
+
+require 'digest'
+
+unless defined?(Digest::HMAC)
+  module Digest
+    class HMAC < Digest::Class
+      def initialize(key, digester)
+        @md = digester.new
+
+        block_len = @md.block_length
+
+        if key.bytesize > block_len
+          key = @md.digest(key)
+        end
+
+        ipad = Array.new(block_len).fill(0x36)
+        opad = Array.new(block_len).fill(0x5c)
+
+        key.bytes.each_with_index { |c, i|
+          ipad[i] ^= c
+          opad[i] ^= c
+        }
+
+        @key = key.freeze
+        @ipad = ipad.inject('') { |s, c| s << c.chr }.freeze
+        @opad = opad.inject('') { |s, c| s << c.chr }.freeze
+        @md.update(@ipad)
+      end
+
+      def initialize_copy(other)
+        @md = other.instance_eval { @md.clone }
+      end
+
+      def update(text)
+        @md.update(text)
+        self
+      end
+      alias << update
+
+      def reset
+        @md.reset
+        @md.update(@ipad)
+        self
+      end
+
+      def finish
+        d = @md.digest!
+        @md.update(@opad)
+        @md.update(d)
+        @md.digest!
+      end
+      private :finish
+
+      def digest_length
+        @md.digest_length
+      end
+
+      def block_length
+        @md.block_length
+      end
+
+      def inspect
+        sprintf('#<%s: key=%s, digest=%s>', self.class.name, @key.inspect, @md.inspect.sub(/^\#<(.*)>$/) { $1 });
+      end
+    end
+  end
+end

data/lib/compat/securerandom.rb

@@ -0,0 +1,202 @@
+# = Secure random number generator interface.
+#
+# This library is an interface for secure random number generator which is
+# suitable for generating session key in HTTP cookies, etc.
+#
+# It supports following secure random number generators.
+#
+# * openssl
+# * /dev/urandom
+# * Win32
+#
+# == Example
+#
+# # random hexadecimal string.
+# p SecureRandom.hex(10) #=> "52750b30ffbc7de3b362"
+# p SecureRandom.hex(10) #=> "92b15d6c8dc4beb5f559"
+# p SecureRandom.hex(11) #=> "6aca1b5c58e4863e6b81b8"
+# p SecureRandom.hex(12) #=> "94b2fff3e7fd9b9c391a2306"
+# p SecureRandom.hex(13) #=> "39b290146bea6ce975c37cfc23"
+# ...
+#
+# # random base64 string.
+# p SecureRandom.base64(10) #=> "EcmTPZwWRAozdA=="
+# p SecureRandom.base64(10) #=> "9b0nsevdwNuM/w=="
+# p SecureRandom.base64(10) #=> "KO1nIU+p9DKxGg=="
+# p SecureRandom.base64(11) #=> "l7XEiFja+8EKEtY="
+# p SecureRandom.base64(12) #=> "7kJSM/MzBJI+75j8"
+# p SecureRandom.base64(13) #=> "vKLJ0tXBHqQOuIcSIg=="
+# ...
+#
+# # random binary string.
+# p SecureRandom.random_bytes(10) #=> "\016\t{\370g\310pbr\301"
+# p SecureRandom.random_bytes(10) #=> "\323U\030TO\234\357\020\a\337"
+# ...
+
+if !defined?(SecureRandom)
+  begin
+    require 'openssl'
+  rescue LoadError
+  end
+
+  module SecureRandom
+    # SecureRandom.random_bytes generates a random binary string.
+    #
+    # The argument n specifies the length of the result string.
+    #
+    # If n is not specified, 16 is assumed.
+    # It may be larger in future.
+    #
+    # If secure random number generator is not available,
+    # NotImplementedError is raised.
+    def self.random_bytes(n=nil)
+      n ||= 16
+
+      if defined? OpenSSL::Random
+        return OpenSSL::Random.random_bytes(n)
+      end
+
+      if !defined?(@has_urandom) || @has_urandom
+        flags = File::RDONLY
+        flags |= File::NONBLOCK if defined? File::NONBLOCK
+        flags |= File::NOCTTY if defined? File::NOCTTY
+        flags |= File::NOFOLLOW if defined? File::NOFOLLOW
+        begin
+          File.open("/dev/urandom", flags) {|f|
+            unless f.stat.chardev?
+              raise Errno::ENOENT
+            end
+            @has_urandom = true
+            ret = f.readpartial(n)
+            if ret.length != n
+              raise NotImplementedError,
+                "Unexpected partial read from random device"
+            end
+            return ret
+          }
+        rescue Errno::ENOENT
+          @has_urandom = false
+        end
+      end
+
+      if !defined?(@has_win32)
+        begin
+          require 'Win32API'
+
+          crypt_acquire_context = Win32API.new(
+            "advapi32", "CryptAcquireContext", 'PPPII', 'L'
+          )
+          @crypt_gen_random = Win32API.new(
+            "advapi32", "CryptGenRandom", 'LIP', 'L'
+          )
+
+          hProvStr = " " * 4
+          prov_rsa_full = 1
+          crypt_verifycontext = 0xF0000000
+
+          if crypt_acquire_context.call(
+              hProvStr, nil, nil, prov_rsa_full, crypt_verifycontext) == 0
+            raise SystemCallError,
+              "CryptAcquireContext failed: #{lastWin32ErrorMessage}"
+          end
+          @hProv, = hProvStr.unpack('L')
+
+          @has_win32 = true
+        rescue LoadError
+          @has_win32 = false
+        end
+      end
+      if @has_win32
+        bytes = " " * n
+        if @crypt_gen_random.call(@hProv, bytes.size, bytes) == 0
+          raise SystemCallError,
+            "CryptGenRandom failed: #{lastWin32ErrorMessage}"
+        end
+        return bytes
+      end
+
+      raise NotImplementedError, "No random device"
+    end
+
+    # SecureRandom.hex generates a random hex string.
+    #
+    # The argument n specifies the length of the random length.
+    # The length of the result string is twice of n.
+    #
+    # If n is not specified, 16 is assumed.
+    # It may be larger in future.
+    #
+    # If secure random number generator is not available,
+    # NotImplementedError is raised.
+    def self.hex(n=nil)
+      random_bytes(n).unpack("H*")[0]
+    end
+
+    # SecureRandom.base64 generates a random base64 string.
+    #
+    # The argument n specifies the length of the random length.
+    # The length of the result string is about 4/3 of n.
+    #
+    # If n is not specified, 16 is assumed.
+    # It may be larger in future.
+    #
+    # If secure random number generator is not available,
+    # NotImplementedError is raised.
+    def self.base64(n=nil)
+      [random_bytes(n)].pack("m*").delete("\n")
+    end
+
+    # SecureRandom.random_number generates a random number.
+    #
+    # If an positive integer is given as n,
+    # SecureRandom.random_number returns an integer:
+    # 0 <= SecureRandom.random_number(n) < n.
+    #
+    # If 0 is given or an argument is not given,
+    # SecureRandom.random_number returns an float:
+    # 0.0 <= SecureRandom.random_number() < 1.0.
+    def self.random_number(n=0)
+      if 0 < n
+        hex = n.to_s(16)
+        hex = '0' + hex if (hex.length & 1) == 1
+        bin = [hex].pack("H*")
+        first = bin[0..0]
+        mask = first.respond_to?(:ord) ? first.ord : first.sum(8)
+        mask |= mask >> 1
+        mask |= mask >> 2
+        mask |= mask >> 4
+        begin
+          rnd = SecureRandom.random_bytes(bin.length)
+          first = rnd[0..0]
+          ordinal = first.respond_to?(:ord) ? first.ord : first.sum(8)
+          rnd[0..0] = (ordinal & mask).chr
+        end until rnd < bin
+        rnd.unpack("H*")[0].hex
+      else
+        # assumption: Float::MANT_DIG <= 64
+        i64 = SecureRandom.random_bytes(8).unpack("Q")[0]
+        Math.ldexp(i64 >> (64-Float::MANT_DIG), -Float::MANT_DIG)
+      end
+    end
+
+    # Following code is based on David Garamond's GUID library for Ruby.
+    def self.lastWin32ErrorMessage # :nodoc:
+      get_last_error = Win32API.new(
+        "kernel32", "GetLastError", '', 'L'
+      )
+      format_message = Win32API.new(
+        "kernel32", "FormatMessageA", 'LPLLPLPPPPPPPP', 'L'
+      )
+      format_message_ignore_inserts = 0x00000200
+      format_message_from_system    = 0x00001000
+
+      code = get_last_error.call
+      msg = "\0" * 1024
+      len = format_message.call(
+        format_message_ignore_inserts + format_message_from_system,
+        0, code, 0, msg, 1024, nil, nil, nil, nil, nil, nil, nil, nil
+      )
+      msg[0, len].tr("\r", '').chomp
+    end
+  end
+end