RubyGems - spambust - Versions diffs - 0.1.1 - Mend

spambust 0.1.1

Files changed (13) hide show

checksums.yaml +15 -0
data/LICENSE +20 -0
data/README.md +8 -0
data/lib/spambust/form_helpers.rb +46 -0
data/lib/spambust/version.rb +3 -0
data/lib/spambust.rb +1 -0
data/spec/spambust/demo_app.rb +29 -0
data/spec/spambust/form_helpers_integration_spec.rb +63 -0
data/spec/spambust/form_helpers_spec.rb +123 -0
data/spec/spambust/views/index.erb +21 -0
data/spec/spambust/views/layout.erb +8 -0
data/spec/spec_helper.rb +7 -0
metadata +110 -0

checksums.yaml ADDED Viewed

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    NTk2ZWQ3NDRhM2Y4ZTExYTYzMzcyYmU0NDdlNjc0MTYwZDFlZDFkNA==
+  data.tar.gz: !binary |-
+    ZGNiOWU4ODM5MjViOWZhNWQ5ZDdmYjI0MTBjYzAzYjRkZDIwNGM0ZQ==
+SHA512:
+  metadata.gz: !binary |-
+    ZGIwMzYzMjA3NjIxODkwNzE5MjQ5YTRhZWE3YmU5YjA4ZDAyMjhhYWVmZGZi
+    NDQ4ZDk0MjNlYmQwYTdkYzU5ZjNhY2YwNGM3MmZiOTY1NmU2NWI3NTQ2ZmRj
+    ODhhNzNkZTllYjdiZjZlOTBlMDc1MDU1NTU1OTg5OTAxOWZiZGI=
+  data.tar.gz: !binary |-
+    NzMyYzRlY2QzOWE4MDg4NDA5NTM0YmQ2OTc3YWU2YzZkN2Y4NzQ3NmNiYzlj
+    YzFmYWYwNWQ2YTk3ZmQxMDYzYWQ0YzJjYmJiNzQ1NDk0NTZiMzZjODY5OWZj
+    NDcyNGE4MWNiNzk0ZGZlYWMxZDM3N2QzZWQ3M2QyZjRhM2FjMDA=

data/LICENSE ADDED Viewed

@@ -0,0 +1,20 @@
+The MIT License (MIT)
+Copyright (c) 2013 Chirantan Mitra
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md ADDED Viewed

@@ -0,0 +1,8 @@
+spambust
+=======
+Sinatra form helper to reduce spams
+Render input tags with a masked name. The input tags with proper tags are hidden.
+We expect a spam bot to fill the incorrect input tags. The server would pick the spam bot
+and respond accordingly.

data/lib/spambust/form_helpers.rb ADDED Viewed

@@ -0,0 +1,46 @@
+require "digest/md5"
+module Spambust
+  module FormHelpers
+    def input(paths, options = {})
+      type               = options.delete(:type) || "text"
+      options_without_id = options.select { |key, value| key != :id }
+      others             = hash_to_options(options)
+      others_without_id  = hash_to_options(options_without_id)
+      digested_paths     = paths.map { |path| Digest::MD5.hexdigest(path) }
+      %Q(<input type="#{type}" name="#{namify digested_paths}"#{others} /><input type="hidden" name="#{namify paths}"#{others_without_id} />)
+    end
+    def submit(text, options = {})
+      others = hash_to_options(options)
+      %Q(<input type="submit" value="#{text}"#{others} />)
+    end
+    def namify(paths)
+      first = paths[0]
+      rest  = paths[1..-1].reduce("") { |acc, path| acc << "[#{path}]" }
+      "#{first}#{rest}"
+    end
+    def decrypt(lookup, global)
+      fake = global[lookup] || {}
+      hashed_lookup = Digest::MD5.hexdigest(lookup)
+      subset = global[hashed_lookup] || {}
+      fake.reduce({}) do |real, (key, value)|
+        real[key] = subset[Digest::MD5.hexdigest(key)]
+        real
+      end
+    end
+    def valid?(lookup, global)
+      fake = global[lookup] || {}
+      fake.none? { |key, value| value != "" }
+    end
+    def hash_to_options(hash)
+      hash.reduce("") { |acc, (key, value)| acc << %Q( #{key}="#{value}") }
+    end
+    private :hash_to_options
+  end
+end

data/lib/spambust/version.rb ADDED Viewed

@@ -0,0 +1,3 @@
+module Spambust
+  VERSION="0.1.1"
+end

data/lib/spambust.rb ADDED Viewed

	@@ -0,0 +1 @@
1	+ require_relative "spambust/form_helpers"

data/spec/spambust/demo_app.rb ADDED Viewed

@@ -0,0 +1,29 @@
+require "sinatra"
+require File.expand_path "../../lib/spambust/form_helpers", File.dirname(__FILE__)
+module Spambust
+  class TestApp < Sinatra::Base
+    helpers Spambust::FormHelpers
+    class << self
+      def start_app
+        run!
+      end
+      def direct_script_execution?
+        app_file == $0
+      end
+    end
+    get "/" do
+      erb :index
+    end
+    post '/' do
+      @result = valid?("user", params) ? "Users is #{decrypt("user", params)}" : "Faking is bad"
+      erb :index
+    end
+    start_app if direct_script_execution? && ENV["environment"] != "test"
+  end
+end

data/spec/spambust/form_helpers_integration_spec.rb ADDED Viewed

@@ -0,0 +1,63 @@
+require File.expand_path "../spec_helper", File.dirname(__FILE__)
+require File.expand_path "demo_app", File.dirname(__FILE__)
+describe "test application" do
+  include Rack::Test::Methods
+  let(:app)            { Spambust::TestApp }
+  let(:user_md5)       { Digest::MD5.hexdigest("user") }
+  let(:first_name_md5) { Digest::MD5.hexdigest("first_name") }
+  let(:last_name_md5)  { Digest::MD5.hexdigest("last_name") }
+  let(:email_md5)      { Digest::MD5.hexdigest("email") }
+  describe "when loading a form" do
+    it "contains hidden input fields" do
+      get "/"
+      last_response.body.must_include %Q(<input type="hidden" name="user[email]" size="40" />)
+    end
+  end
+  describe "when posting a form" do
+    describe "when hidden fields aren't filled" do
+      it "is accepted" do
+        params = {
+          user_md5 => {
+            first_name_md5 => "True first name",
+            last_name_md5  => "True last name",
+            email_md5      => "True email",
+          },
+          "user" => {
+            "first_name" => "",
+            "last_name"  => "",
+            "email"      => "",
+          }
+        }
+        post "/", params
+        last_response.body.must_include %Q({"first_name"=>"True first name", "last_name"=>"True last name", "email"=>"True email"})
+      end
+    end
+    describe "when hidden fields aren't filled" do
+      it "is is identified as fake" do
+        params = {
+          user_md5 => {
+            first_name_md5 => "True first name",
+            last_name_md5  => "True last name",
+            email_md5      => "True email",
+          },
+          "user" => {
+            "first_name" => "Fake first name",
+            "last_name"  => "Fake last name",
+            "email"      => "Fake email",
+          }
+        }
+        post "/", params
+        last_response.body.must_include "Faking is bad"
+      end
+    end
+  end
+end

data/spec/spambust/form_helpers_spec.rb ADDED Viewed

@@ -0,0 +1,123 @@
+require "digest/md5"
+require File.expand_path "../spec_helper", File.dirname(__FILE__)
+require File.expand_path "../../lib/spambust/form_helpers", File.dirname(__FILE__)
+class TestApp
+  include Spambust::FormHelpers
+end
+describe "Bustspam::FormHelpers" do
+  subject { TestApp.new }
+  let(:user_md5) { Digest::MD5.hexdigest("user") }
+  let(:name_md5) { Digest::MD5.hexdigest("name") }
+  describe "#input" do
+    describe "when type is not mentioned" do
+      it "renders an input tag of type 'text'" do
+        subject.input(["user", "name"]).must_equal %Q(<input type="text" name="#{user_md5}[#{name_md5}]" /><input type="hidden" name="user[name]" />)
+      end
+    end
+    describe "when type is mentioned" do
+      it "renders an input tag of specified type" do
+        subject.input(["user", "name"], :type => "password").must_equal %Q(<input type="password" name="#{user_md5}[#{name_md5}]" /><input type="hidden" name="user[name]" />)
+      end
+    end
+    describe "when other options are mentioned" do
+      it "renders the options" do
+        subject.input(["user", "name"], :id => "name", :class => "name").must_equal %Q(<input type="text" name="#{user_md5}[#{name_md5}]" id="name" class="name" /><input type="hidden" name="user[name]" class="name" />)
+      end
+    end
+  end
+  describe "#submit" do
+    describe "when type is mentioned" do
+      it "renders an input tag of specified 'submit" do
+        subject.submit("Submit").must_equal %Q(<input type="submit" value="Submit" />)
+      end
+    end
+    describe "when other options are mentioned" do
+      it "renders the options" do
+        subject.submit("Submit", :id => "submit", :class => "submit").must_equal %Q(<input type="submit" value="Submit" id="submit" class="submit" />)
+      end
+    end
+  end
+  describe "#namify" do
+    describe "when size is one" do
+      it "is the word itself" do
+        subject.namify(["user"]).must_equal "user"
+      end
+    end
+    describe "when size is more than one" do
+      it "nests the items in successive square brackets" do
+        subject.namify(["user", "name", "first"]).must_equal "user[name][first]"
+      end
+    end
+  end
+  describe "#decrypt" do
+    it "pulls the values corresponding to decrypted the keys under the lookup" do
+      params = {
+        "user" => { "name" => "spam value"},
+        user_md5 => { name_md5 => "true value" }
+      }
+      subject.decrypt("user", params).must_equal("name" => "true value")
+    end
+    describe "when lookup doesn't exist" do
+      it "is empty" do
+        params = {
+          "user" => { "name" => "spam value"},
+          user_md5 => { name_md5 => "true value" }
+        }
+        subject.decrypt("missing_user", params).must_equal({})
+      end
+    end
+    describe "when fake keys don't conform to the decrypted keys" do
+      it "populates the key with a nil value" do
+        params = {
+          "user" => { "name" => "spam value"},
+          user_md5.succ => { name_md5 => "true value" }
+        }
+        subject.decrypt("user", params).must_equal({"name" => nil})
+      end
+    end
+  end
+  describe "#valid?" do
+    it "is true is none of the paths under lookup are populated" do
+      params = {
+        "user" => { "name" => ""},
+        user_md5 => { name_md5 => "true value" }
+      }
+      subject.valid?("user", params).must_equal true
+    end
+    it "is false is one of the paths under lookup is populated" do
+      params = {
+        "user" => { "name" => "spam value"},
+        user_md5 => { name_md5 => "true value" }
+      }
+      subject.valid?("user", params).must_equal false
+    end
+    it "is true is lookup doesn't exist" do
+      params = {
+        "user" => { "name" => "spam value"},
+        user_md5 => { name_md5 => "true value" }
+      }
+      subject.valid?("user_missing", params).must_equal true
+    end
+  end
+end

data/spec/spambust/views/index.erb ADDED Viewed

@@ -0,0 +1,21 @@
+<html>
+   <head>
+      <title>Sample Sinatra application</title>
+    </head>
+    <body>
+      <div id="result"><%= @result %></div>
+      <form method="post" action="/">
+        <label for="user-first-name">First name</label>
+        <%= input ["user", "first_name"], :id => "user-first-name" %>
+        <label for="user-last-name">Last name</label>
+        <%= input ["user", "last_name"], :id => "user-last-name" %>
+        <label for="user-email">Email</label>
+        <%= input ["user", "email"], :size => 40, :id => "user-email" %>
+        <%= submit "Create account", :id => "user-submit" %>
+      </form>
+   </body>
+</html>

data/spec/spambust/views/layout.erb ADDED Viewed

@@ -0,0 +1,8 @@
+<html>
+   <head>
+      <title>Sample Sinatra application</title>
+    </head>
+    <body>
+      <%= yield %>
+   </body>
+</html>

data/spec/spec_helper.rb ADDED Viewed

@@ -0,0 +1,7 @@
+require "rack/test"
+require "sinatra/base"
+require "minitest/autorun"
+require "minitest/spec"
+ENV["environment"] = "test"

metadata ADDED Viewed

@@ -0,0 +1,110 @@
+--- !ruby/object:Gem::Specification
+name: spambust
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- Chirantan Mitra
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2013-11-11 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: ! 'Render input tags with a masked name. The input tags with proper tags
+  are hidden.
+  We expect a spam bot to fill the incorrect input tags. The server would pick the
+  spam bot
+  and respond accordingly.
+'
+email:
+- chirantan.mitra@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/spambust/form_helpers.rb
+- lib/spambust/version.rb
+- lib/spambust.rb
+- spec/spambust/demo_app.rb
+- spec/spambust/form_helpers_integration_spec.rb
+- spec/spambust/form_helpers_spec.rb
+- spec/spambust/views/index.erb
+- spec/spambust/views/layout.erb
+- spec/spec_helper.rb
+- LICENSE
+- README.md
+homepage: https://github.com/chiku/spambust
+licenses: []
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: spambust
+rubygems_version: 2.1.10
+signing_key:
+specification_version: 4
+summary: Sinatra form helper to reduce spams
+test_files:
+- spec/spambust/demo_app.rb
+- spec/spambust/form_helpers_integration_spec.rb
+- spec/spambust/form_helpers_spec.rb
+- spec/spambust/views/index.erb
+- spec/spambust/views/layout.erb
+- spec/spec_helper.rb