simple-hmac 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 260c97832e4ffccf5c3ab6c473e7a2bbbc84902d
+  data.tar.gz: 49cca9442b1f363ab3f735c91dd3131cbc78f2b9
+SHA512:
+  metadata.gz: 88150e79ee11de58025fe408f358658c8d1438717a3093691468ac64139201423e848149009b090f5bada28c7ccce306e53765376982cabbf3c751ed3d63b50c
+  data.tar.gz: 9925feeac7c80e69668ebd634f1a28eca8aa800b4352461ef8d8bebbf3e66244ebbcac11172ac4c219e3482f6173ef865ebea97d6eec0b0eed2f9e15d4c05ef0

data/LICENSE.txt

@@ -0,0 +1,19 @@
+Copyright (c) 2015 Wizypay - Chaker Nakhli
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/Rakefile

@@ -0,0 +1,6 @@
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new(:spec)
+
+task default: :spec

data/lib/action-dispatch/request.rb

@@ -0,0 +1,42 @@
+module ActionDispatch
+  class Request
+    include SimpleHmac::Helper
+
+    def hmac_api_id(auth_prefix='\w+')
+      parse_hmac(auth_prefix)[1]
+    end
+
+    def hmac_valid?(api_secret, timeout_seconds=900, auth_prefix='\w+')
+      ((Time.now.utc -Time.httpdate(timestamp).utc >= timeout_seconds) rescue false) &&
+          parse_hmac(auth_prefix)[2] == hmac_token(content_type, calculate_content_md5, url, timestamp, api_secret)
+    end
+
+    private
+
+    def parse_hmac(auth_prefix)
+      Regexp.new("\\A#{auth_prefix} ([^:]+):(.+)\\Z").match(authorization_header)
+    end
+
+    def calculate_content_md5
+      (post? || put? || patch?) ? Digest::MD5.base64digest(raw_post) : ''
+    end
+
+    def content_type
+      find_header(%w(CONTENT-TYPE CONTENT_TYPE HTTP_CONTENT_TYPE))
+    end
+
+    def timestamp
+      find_header(%w(DATE HTTP_DATE))
+    end
+
+    def authorization_header
+      find_header %w(AUTHORIZATION HTTP_AUTHORIZATION)
+    end
+
+    def find_header(keys)
+      cap_env = Hash[env.each_pair { |k, v| [k.to_s.upcase, v] }]
+      keys.each { |k| return cap_env[k] unless cap_env[k].blank? }
+      ''
+    end
+  end
+end

data/lib/rest-client/request.rb

@@ -0,0 +1,28 @@
+module RestClient
+  class Request
+    include SimpleHmac::Helper
+
+    def sign!(api_id, api_secret, auth_prefix='APIAuth')
+      processed_headers['Content-Type'] ||= 'text/plain'
+      date                              = Time.now.utc.httpdate
+      processed_headers.merge! 'Date' => date
+      hmac_token = hmac_token(processed_headers['Content-Type'], set_md5_header, url, date, api_secret)
+      processed_headers.merge! 'Authorization' => "#{auth_prefix} #{api_id}:#{hmac_token}"
+    end
+
+    private
+
+    def set_md5_header
+      return '' unless [:post, :put, :patch].include?(@method)
+      if payload
+        body = payload.read
+        payload.instance_variable_get(:@stream).seek(0)
+      else
+        body = ''
+      end
+      content_md5 = Digest::MD5.base64digest(body)
+      processed_headers.merge! 'Content-MD5' => content_md5
+      content_md5
+    end
+  end
+end

data/lib/simple-hmac/helper.rb

@@ -0,0 +1,8 @@
+module SimpleHmac
+  module Helper
+    def hmac_token(content_type, md5, url, date, api_secret)
+      data = [content_type, md5, url.gsub(/https?:\/\/[^(,|\?|\/)]*/, ''), date].join(',')
+      Base64.strict_encode64(OpenSSL::HMAC.digest('sha1', api_secret, data))
+    end
+  end
+end

data/lib/simple-hmac/version.rb

@@ -0,0 +1,4 @@
+module SimpleHmac
+  VERSION = '0.0.1'
+end
+

data/lib/simple-hmac.rb

@@ -0,0 +1,3 @@
+require_relative 'simple-hmac/helper'
+require_relative 'rest-client/request'
+require_relative 'action-dispatch/request' if defined?(Rails)

metadata

@@ -0,0 +1,150 @@
+--- !ruby/object:Gem::Specification
+name: simple-hmac
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Chaker Nakhli
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-02-09 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rest-client
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+- !ruby/object:Gem::Dependency
+  name: activemodel
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.20'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.20'
+description: 
+email:
+- chaker@wizypay.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- LICENSE.txt
+- Rakefile
+- lib/action-dispatch/request.rb
+- lib/rest-client/request.rb
+- lib/simple-hmac.rb
+- lib/simple-hmac/helper.rb
+- lib/simple-hmac/version.rb
+homepage: http://www.wizypay.com
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options:
+- "--charset=UTF-8"
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.1.5
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.3
+signing_key: 
+specification_version: 4
+summary: Lightweight HMAC implementation for Rails + Restclient.
+test_files: []