simple-gnupg-keyserver 1.2.0 → 1.3.0

data/README.rdoc

@@ -90,6 +90,53 @@ the use of humans:
 * uploadForm.html
 * footer.html
 
+== SYNCHRONIZATION
+
+A 'simpleHKP/echo' class has been added which knows how to echo keys from 
+one key server to another.
+
+So that for example the following ruby script could be placed into one 
+of your machine's /etc/daily directories and the script would ensure 
+all key servers are synchronized daily.
+
+  #!/usr/bin/env ruby
+
+  # A simple key server sychronization example
+  #
+  # We use a hub-spoke model. We choose one "hub" key server to act as
+  # the master key server and amalgamate all of the keys from the spoke
+  # key server back to the hub key server. We then push the amalgamated
+  # keys in the hub back to the spokes, so that after two passes, all key
+  # servers have the same keys.
+
+  require 'simpleHKP/echo'
+
+  hubKeyServer    = 'hubKeyServer'
+  spokeKeyServers = [ 
+    'spokeKeyServer1',
+    'spokeKeyServer2',
+    'spokeKeyServer3'
+  ]
+
+  # Start by bringing all spoke keys into the hub
+  #
+  spokeKeyServers.each do | aKeyServer |
+    SimpleHKPEcho.echoFromTo(aKeyServer, hubKeyServer)
+  end
+
+  # now send the amalgamated hub keys back to each spoke
+  #
+  spokeKeyServers.each do | aKeyServer |
+    SimpleHKPEcho.echoFromTo(hubKeyServer, aKeyServer)
+  end
+
+Where the "hubKeyServer" and "spokeKeyServersX" are the fully qualified 
+domain or IP address of each of your key servers.
+
+The SimpleHKPEcho.echoFromTo method fails gracefully if a given key 
+server is offline, by simply returning. In the example above, all other 
+echo pairs (from, to) will be tried.
+
 == REQUIREMENTS:
 
 There are explicitly no external Ruby requirements other than Ruby and 

data/lib/simpleHKP.rb

@@ -41,7 +41,7 @@ require 'fileutils'
 
 class SimpleHKP
 
-  VERSION = "1.2.0"
+  VERSION = "1.3.0"
 
   def saveLastKey(lastKey)
     lastKey['colonData'].gsub!(/\\x3a/,':') if 

data/lib/simpleHKP/echo.rb

@@ -0,0 +1,86 @@
+require 'uri'
+require 'net/http'
+require 'pp'
+
+# This code provides a simple way to ensure keys are synchronized 
+# between a pair of key servers.
+
+# It conforms to: The OpenPGP HTTP Keyserver Protocol (HKP)
+#   draft-shaw-openpgp-hkp-00.txt
+#     http://tools.ietf.org/html/draft-shaw-openpgp-hkp-00
+
+# See also the doc/DETAILS file in the gnupg2 source code
+
+# Copyright (C) 2015 Stephen Gaito
+#
+# (The MIT License)
+#
+# Copyright (c) 2015 Stephen Gaito
+#
+# Permission is hereby granted, free of charge, to any person obtaining a
+# copy of this software and associated documentation files (the
+# 'Software'), to deal in the Software without restriction, including
+# without limitation the rights to use, copy, modify, merge, publish,
+# distribute, sublicense, and/or sell copies of the Software, and to
+# permit persons to whom the Software is furnished to do so, subject to
+# the following conditions:
+#
+# The above copyright notice and this permission notice shall be included
+# in all copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND, EXPRESS
+# OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+# IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+# CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+# TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+# SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+class SimpleHKPEcho
+
+  class << self
+
+    def convertToHttp(aKeyServerStr)
+      aKeyServerStr = aKeyServerStr+':11371' unless
+        aKeyServerStr =~ /:/
+      aKeyServerStr = 'http://'+aKeyServerStr unless 
+        aKeyServerStr =~ /^http/
+      aKeyServerStr
+    end
+
+    def echoFromTo(fromKeyServer, toKeyServer, options = {})
+      begin
+        debug = options.delete('debug')
+        puts fromKeyServer if debug
+        fromKeyServer = convertToHttp(fromKeyServer)
+        puts fromKeyServer if debug
+        puts toKeyServer if debug
+        toKeyServer   = convertToHttp(toKeyServer)
+        puts toKeyServer if debug
+
+        keys = Array.new
+        url = URI.parse(fromKeyServer+'/lookup?search=&op=index&options=mr')
+        response = Net::HTTP.get_response(url)
+        response.body.each_line do | aLine |
+          next unless aLine =~ /^pub/
+          keys.push(aLine.split(/:/)[1])
+        end
+        pp keys if debug
+        keys.each do | aKey |
+          keyData = ""
+          url = URI.parse(fromKeyServer+"/lookup?op=get&options=mr&search=#{aKey}")
+          response = Net::HTTP.get_response(url)
+          keyData = response.body
+          puts aKey if debug
+          puts keyData if debug
+          url = URI.parse(toKeyServer+'/add')
+          Net::HTTP.post_form(url, { 'keytext' => keyData })
+        end
+      rescue SocketError => se
+        puts "Cound not echo keys from #{fromKeyServer} to #{toKeyServer}"
+      end
+    end
+
+  end
+
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: simple-gnupg-keyserver
 version: !ruby/object:Gem::Version
-  version: 1.2.0
+  version: 1.3.0
   prerelease: 
 platform: ruby
 authors:
@@ -64,6 +64,7 @@ files:
 - README.rdoc
 - Rakefile
 - lib/simpleHKP.rb
+- lib/simpleHKP/echo.rb
 homepage: https://github.com/stephengaito/rGem-simple-gnupg-keyserver
 licenses:
 - MIT