RubyGems - stripe - Versions diffs - 4.17.0 → 5.32.0 - Mend

stripe 4.17.0 → 5.32.0

Files changed (227) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +193 -1
data/CODE_OF_CONDUCT.md +77 -0
data/Gemfile +10 -14
data/README.md +167 -63
data/Rakefile +8 -7
data/VERSION +1 -1
data/lib/stripe/api_operations/create.rb +1 -1
data/lib/stripe/api_operations/delete.rb +7 -3
data/lib/stripe/api_operations/list.rb +1 -12
data/lib/stripe/api_operations/nested_resource.rb +36 -27
data/lib/stripe/api_operations/request.rb +47 -8
data/lib/stripe/api_operations/save.rb +8 -7
data/lib/stripe/api_resource.rb +30 -5
data/lib/stripe/connection_manager.rb +164 -0
data/lib/stripe/error_object.rb +94 -0
data/lib/stripe/errors.rb +31 -10
data/lib/stripe/instrumentation.rb +82 -0
data/lib/stripe/list_object.rb +41 -7
data/lib/stripe/multipart_encoder.rb +131 -0
data/lib/stripe/oauth.rb +8 -6
data/lib/stripe/object_types.rb +102 -0
data/lib/stripe/{account.rb → resources/account.rb} +44 -33
data/lib/stripe/{account_link.rb → resources/account_link.rb} +2 -1
data/lib/stripe/resources/alipay_account.rb +34 -0
data/lib/stripe/{apple_pay_domain.rb → resources/apple_pay_domain.rb} +2 -1
data/lib/stripe/resources/application_fee.rb +14 -0
data/lib/stripe/resources/application_fee_refund.rb +30 -0
data/lib/stripe/{balance.rb → resources/balance.rb} +2 -1
data/lib/stripe/{balance_transaction.rb → resources/balance_transaction.rb} +2 -5
data/lib/stripe/resources/bank_account.rb +43 -0
data/lib/stripe/{issuing/dispute.rb → resources/billing_portal/configuration.rb} +4 -3
data/lib/stripe/{checkout → resources/billing_portal}/session.rb +3 -2
data/lib/stripe/{bitcoin_receiver.rb → resources/bitcoin_receiver.rb} +4 -3
data/lib/stripe/{bitcoin_transaction.rb → resources/bitcoin_transaction.rb} +1 -1
data/lib/stripe/{capability.rb → resources/capability.rb} +11 -4
data/lib/stripe/{card.rb → resources/card.rb} +12 -3
data/lib/stripe/resources/charge.rb +23 -0
data/lib/stripe/resources/checkout/session.rb +16 -0
data/lib/stripe/{country_spec.rb → resources/country_spec.rb} +2 -1
data/lib/stripe/{coupon.rb → resources/coupon.rb} +2 -1
data/lib/stripe/resources/credit_note.rb +33 -0
data/lib/stripe/resources/credit_note_line_item.rb +7 -0
data/lib/stripe/resources/customer.rb +41 -0
data/lib/stripe/resources/customer_balance_transaction.rb +30 -0
data/lib/stripe/{discount.rb → resources/discount.rb} +1 -1
data/lib/stripe/resources/dispute.rb +22 -0
data/lib/stripe/{ephemeral_key.rb → resources/ephemeral_key.rb} +6 -2
data/lib/stripe/{event.rb → resources/event.rb} +2 -1
data/lib/stripe/{exchange_rate.rb → resources/exchange_rate.rb} +2 -1
data/lib/stripe/{file.rb → resources/file.rb} +7 -12
data/lib/stripe/{file_link.rb → resources/file_link.rb} +2 -1
data/lib/stripe/resources/invoice.rb +74 -0
data/lib/stripe/{invoice_item.rb → resources/invoice_item.rb} +2 -1
data/lib/stripe/{invoice_line_item.rb → resources/invoice_line_item.rb} +1 -1
data/lib/stripe/{issuing → resources/issuing}/authorization.rb +14 -5
data/lib/stripe/{issuing → resources/issuing}/card.rb +8 -3
data/lib/stripe/{issuing → resources/issuing}/card_details.rb +1 -1
data/lib/stripe/{issuing → resources/issuing}/cardholder.rb +2 -1
data/lib/stripe/resources/issuing/dispute.rb +25 -0
data/lib/stripe/{issuing → resources/issuing}/transaction.rb +2 -1
data/lib/stripe/resources/line_item.rb +7 -0
data/lib/stripe/resources/login_link.rb +14 -0
data/lib/stripe/resources/mandate.rb +8 -0
data/lib/stripe/resources/order.rb +33 -0
data/lib/stripe/{order_return.rb → resources/order_return.rb} +2 -1
data/lib/stripe/resources/payment_intent.rb +43 -0
data/lib/stripe/{payment_method.rb → resources/payment_method.rb} +14 -5
data/lib/stripe/resources/payout.rb +33 -0
data/lib/stripe/{person.rb → resources/person.rb} +8 -3
data/lib/stripe/{plan.rb → resources/plan.rb} +2 -1
data/lib/stripe/resources/price.rb +12 -0
data/lib/stripe/{product.rb → resources/product.rb} +2 -1
data/lib/stripe/resources/promotion_code.rb +12 -0
data/lib/stripe/resources/radar/early_fraud_warning.rb +12 -0
data/lib/stripe/{radar → resources/radar}/value_list.rb +2 -1
data/lib/stripe/{radar → resources/radar}/value_list_item.rb +2 -1
data/lib/stripe/{recipient.rb → resources/recipient.rb} +2 -5
data/lib/stripe/{recipient_transfer.rb → resources/recipient_transfer.rb} +1 -1
data/lib/stripe/{refund.rb → resources/refund.rb} +2 -1
data/lib/stripe/{reporting → resources/reporting}/report_run.rb +2 -1
data/lib/stripe/{reporting → resources/reporting}/report_type.rb +2 -1
data/lib/stripe/resources/reversal.rb +29 -0
data/lib/stripe/{review.rb → resources/review.rb} +8 -3
data/lib/stripe/resources/setup_attempt.rb +10 -0
data/lib/stripe/resources/setup_intent.rb +33 -0
data/lib/stripe/{sigma → resources/sigma}/scheduled_query_run.rb +2 -1
data/lib/stripe/{sku.rb → resources/sku.rb} +2 -1
data/lib/stripe/{source.rb → resources/source.rb} +22 -15
data/lib/stripe/{source_transaction.rb → resources/source_transaction.rb} +1 -1
data/lib/stripe/{subscription.rb → resources/subscription.rb} +12 -13
data/lib/stripe/resources/subscription_item.rb +26 -0
data/lib/stripe/resources/subscription_schedule.rb +33 -0
data/lib/stripe/resources/tax_id.rb +26 -0
data/lib/stripe/{tax_rate.rb → resources/tax_rate.rb} +2 -1
data/lib/stripe/{terminal → resources/terminal}/connection_token.rb +2 -1
data/lib/stripe/{terminal → resources/terminal}/location.rb +2 -1
data/lib/stripe/{terminal → resources/terminal}/reader.rb +2 -1
data/lib/stripe/{three_d_secure.rb → resources/three_d_secure.rb} +2 -1
data/lib/stripe/{token.rb → resources/token.rb} +2 -1
data/lib/stripe/{topup.rb → resources/topup.rb} +8 -3
data/lib/stripe/resources/transfer.rb +27 -0
data/lib/stripe/resources/usage_record.rb +7 -0
data/lib/stripe/{usage_record_summary.rb → resources/usage_record_summary.rb} +1 -1
data/lib/stripe/{webhook_endpoint.rb → resources/webhook_endpoint.rb} +2 -1
data/lib/stripe/resources.rb +85 -0
data/lib/stripe/singleton_api_resource.rb +3 -1
data/lib/stripe/stripe_client.rb +576 -254
data/lib/stripe/stripe_configuration.rb +194 -0
data/lib/stripe/stripe_object.rb +80 -61
data/lib/stripe/stripe_response.rb +53 -21
data/lib/stripe/util.rb +76 -121
data/lib/stripe/version.rb +1 -1
data/lib/stripe/webhook.rb +43 -10
data/lib/stripe.rb +42 -203
data/stripe.gemspec +23 -7
metadata +107 -284
data/.gitattributes +0 -4
data/.github/ISSUE_TEMPLATE.md +0 -5
data/.gitignore +0 -8
data/.rubocop.yml +0 -32
data/.rubocop_todo.yml +0 -50
data/.travis.yml +0 -42
data/lib/stripe/alipay_account.rb +0 -27
data/lib/stripe/application_fee.rb +0 -23
data/lib/stripe/application_fee_refund.rb +0 -22
data/lib/stripe/bank_account.rb +0 -32
data/lib/stripe/charge.rb +0 -86
data/lib/stripe/credit_note.rb +0 -18
data/lib/stripe/customer.rb +0 -95
data/lib/stripe/dispute.rb +0 -23
data/lib/stripe/invoice.rb +0 -48
data/lib/stripe/issuer_fraud_record.rb +0 -9
data/lib/stripe/login_link.rb +0 -11
data/lib/stripe/order.rb +0 -34
data/lib/stripe/payment_intent.rb +0 -30
data/lib/stripe/payout.rb +0 -24
data/lib/stripe/reversal.rb +0 -22
data/lib/stripe/subscription_item.rb +0 -17
data/lib/stripe/subscription_schedule.rb +0 -35
data/lib/stripe/subscription_schedule_revision.rb +0 -25
data/lib/stripe/tax_id.rb +0 -22
data/lib/stripe/transfer.rb +0 -25
data/lib/stripe/usage_record.rb +0 -14
data/test/api_stub_helpers.rb +0 -1
data/test/openapi/README.md +0 -9
data/test/stripe/account_link_test.rb +0 -18
data/test/stripe/account_test.rb +0 -428
data/test/stripe/alipay_account_test.rb +0 -37
data/test/stripe/api_operations_test.rb +0 -81
data/test/stripe/api_resource_test.rb +0 -526
data/test/stripe/apple_pay_domain_test.rb +0 -46
data/test/stripe/application_fee_refund_test.rb +0 -37
data/test/stripe/application_fee_test.rb +0 -58
data/test/stripe/balance_test.rb +0 -13
data/test/stripe/bank_account_test.rb +0 -36
data/test/stripe/capability_test.rb +0 -45
data/test/stripe/charge_test.rb +0 -80
data/test/stripe/checkout/session_test.rb +0 -41
data/test/stripe/country_spec_test.rb +0 -20
data/test/stripe/coupon_test.rb +0 -61
data/test/stripe/credit_note_test.rb +0 -61
data/test/stripe/customer_card_test.rb +0 -42
data/test/stripe/customer_test.rb +0 -226
data/test/stripe/dispute_test.rb +0 -51
data/test/stripe/ephemeral_key_test.rb +0 -93
data/test/stripe/errors_test.rb +0 -20
data/test/stripe/exchange_rate_test.rb +0 -20
data/test/stripe/file_link_test.rb +0 -41
data/test/stripe/file_test.rb +0 -97
data/test/stripe/file_upload_test.rb +0 -79
data/test/stripe/invoice_item_test.rb +0 -66
data/test/stripe/invoice_line_item_test.rb +0 -8
data/test/stripe/invoice_test.rb +0 -213
data/test/stripe/issuer_fraud_record_test.rb +0 -20
data/test/stripe/issuing/authorization_test.rb +0 -72
data/test/stripe/issuing/card_test.rb +0 -62
data/test/stripe/issuing/cardholder_test.rb +0 -53
data/test/stripe/issuing/dispute_test.rb +0 -45
data/test/stripe/issuing/transaction_test.rb +0 -48
data/test/stripe/list_object_test.rb +0 -156
data/test/stripe/login_link_test.rb +0 -37
data/test/stripe/oauth_test.rb +0 -88
data/test/stripe/order_return_test.rb +0 -21
data/test/stripe/order_test.rb +0 -75
data/test/stripe/payment_intent_test.rb +0 -107
data/test/stripe/payment_method_test.rb +0 -84
data/test/stripe/payout_test.rb +0 -57
data/test/stripe/person_test.rb +0 -46
data/test/stripe/plan_test.rb +0 -98
data/test/stripe/product_test.rb +0 -59
data/test/stripe/radar/value_list_item_test.rb +0 -48
data/test/stripe/radar/value_list_test.rb +0 -61
data/test/stripe/recipient_test.rb +0 -62
data/test/stripe/refund_test.rb +0 -39
data/test/stripe/reporting/report_run_test.rb +0 -33
data/test/stripe/reporting/report_type_test.rb +0 -22
data/test/stripe/reversal_test.rb +0 -43
data/test/stripe/review_test.rb +0 -27
data/test/stripe/sigma/scheduled_query_run_test.rb +0 -22
data/test/stripe/sku_test.rb +0 -60
data/test/stripe/source_test.rb +0 -99
data/test/stripe/source_transaction_test.rb +0 -19
data/test/stripe/stripe_client_test.rb +0 -842
data/test/stripe/stripe_object_test.rb +0 -525
data/test/stripe/stripe_response_test.rb +0 -49
data/test/stripe/subscription_item_test.rb +0 -63
data/test/stripe/subscription_schedule_revision_test.rb +0 -37
data/test/stripe/subscription_schedule_test.rb +0 -116
data/test/stripe/subscription_test.rb +0 -80
data/test/stripe/tax_id_test.rb +0 -31
data/test/stripe/tax_rate_test.rb +0 -43
data/test/stripe/terminal/connection_token_test.rb +0 -16
data/test/stripe/terminal/location_test.rb +0 -68
data/test/stripe/terminal/reader_test.rb +0 -62
data/test/stripe/three_d_secure_test.rb +0 -23
data/test/stripe/topup_test.rb +0 -62
data/test/stripe/transfer_test.rb +0 -88
data/test/stripe/usage_record_summary_test.rb +0 -19
data/test/stripe/usage_record_test.rb +0 -28
data/test/stripe/util_test.rb +0 -402
data/test/stripe/webhook_endpoint_test.rb +0 -59
data/test/stripe/webhook_test.rb +0 -96
data/test/stripe_mock.rb +0 -77
data/test/stripe_test.rb +0 -63
data/test/test_data.rb +0 -61
data/test/test_helper.rb +0 -73

data/lib/stripe/stripe_response.rb CHANGED Viewed

@@ -4,6 +4,53 @@ module Stripe
   # StripeResponse encapsulates some vitals of a response that came back from
   # the Stripe API.
   class StripeResponse
+    # Headers provides an access wrapper to an API response's header data. It
+    # mainly exists so that we don't need to expose the entire
+    # `Net::HTTPResponse` object while still getting some of its benefits like
+    # case-insensitive access to header names and flattening of header values.
+    class Headers
+      # Initializes a Headers object from a Net::HTTP::HTTPResponse object.
+      def self.from_net_http(resp)
+        new(resp.to_hash)
+      end
+      # `hash` is expected to be a hash mapping header names to arrays of
+      # header values. This is the default format generated by calling
+      # `#to_hash` on a `Net::HTTPResponse` object because headers can be
+      # repeated multiple times. Using `#[]` will collapse values down to just
+      # the first.
+      def initialize(hash)
+        if !hash.is_a?(Hash) ||
+           !hash.keys.all? { |n| n.is_a?(String) } ||
+           !hash.values.all? { |a| a.is_a?(Array) } ||
+           !hash.values.all? { |a| a.all? { |v| v.is_a?(String) } }
+          raise ArgumentError,
+                "expect hash to be a map of string header names to arrays of " \
+                "header values"
+        end
+        @hash = {}
+        # This shouldn't be strictly necessary because `Net::HTTPResponse` will
+        # produce a hash with all headers downcased, but do it anyway just in
+        # case an object of this class was constructed manually.
+        #
+        # Also has the effect of duplicating the hash, which is desirable for a
+        # little extra object safety.
+        hash.each do |k, v|
+          @hash[k.downcase] = v
+        end
+      end
+      def [](name)
+        values = @hash[name.downcase]
+        if values && values.count > 1
+          warn("Duplicate header values for `#{name}`; returning only first")
+        end
+        values ? values.first : nil
+      end
+    end
     # The data contained by the HTTP body of the response deserialized from
     # JSON.
     attr_accessor :data
@@ -20,30 +67,15 @@ module Stripe
     # The Stripe request ID of the response.
     attr_accessor :request_id
-    # Initializes a StripeResponse object from a Hash like the kind returned as
-    # part of a Faraday exception.
-    #
-    # This may throw JSON::ParserError if the response body is not valid JSON.
-    def self.from_faraday_hash(http_resp)
-      resp = StripeResponse.new
-      resp.data = JSON.parse(http_resp[:body], symbolize_names: true)
-      resp.http_body = http_resp[:body]
-      resp.http_headers = http_resp[:headers]
-      resp.http_status = http_resp[:status]
-      resp.request_id = http_resp[:headers]["Request-Id"]
-      resp
-    end
-    # Initializes a StripeResponse object from a Faraday HTTP response object.
-    #
-    # This may throw JSON::ParserError if the response body is not valid JSON.
-    def self.from_faraday_response(http_resp)
+    # Initializes a StripeResponse object from a Net::HTTP::HTTPResponse
+    # object.
+    def self.from_net_http(http_resp)
       resp = StripeResponse.new
       resp.data = JSON.parse(http_resp.body, symbolize_names: true)
       resp.http_body = http_resp.body
-      resp.http_headers = http_resp.headers
-      resp.http_status = http_resp.status
-      resp.request_id = http_resp.headers["Request-Id"]
+      resp.http_headers = Headers.from_net_http(http_resp)
+      resp.http_status = http_resp.code.to_i
+      resp.request_id = http_resp["request-id"]
       resp
     end
   end

data/lib/stripe/util.rb CHANGED Viewed

@@ -24,103 +24,27 @@ module Stripe
       OPTS_USER_SPECIFIED + Set[:client] - Set[:idempotency_key]
     ).freeze
-    def self.objects_to_ids(h)
-      case h
+    def self.objects_to_ids(obj)
+      case obj
       when APIResource
-        h.id
+        obj.id
       when Hash
         res = {}
-        h.each { |k, v| res[k] = objects_to_ids(v) unless v.nil? }
+        obj.each { |k, v| res[k] = objects_to_ids(v) unless v.nil? }
         res
       when Array
-        h.map { |v| objects_to_ids(v) }
+        obj.map { |v| objects_to_ids(v) }
       else
-        h
+        obj
       end
     end
-    def self.object_classes # rubocop:disable Metrics/MethodLength
-      @object_classes ||= {
-        # data structures
-        ListObject::OBJECT_NAME => ListObject,
-        # business objects
-        Account::OBJECT_NAME                      => Account,
-        AccountLink::OBJECT_NAME                  => AccountLink,
-        AlipayAccount::OBJECT_NAME                => AlipayAccount,
-        ApplePayDomain::OBJECT_NAME               => ApplePayDomain,
-        ApplicationFee::OBJECT_NAME               => ApplicationFee,
-        ApplicationFeeRefund::OBJECT_NAME         => ApplicationFeeRefund,
-        Balance::OBJECT_NAME                      => Balance,
-        BalanceTransaction::OBJECT_NAME           => BalanceTransaction,
-        BankAccount::OBJECT_NAME                  => BankAccount,
-        BitcoinReceiver::OBJECT_NAME              => BitcoinReceiver,
-        BitcoinTransaction::OBJECT_NAME           => BitcoinTransaction,
-        Capability::OBJECT_NAME                   => Capability,
-        Card::OBJECT_NAME                         => Card,
-        Charge::OBJECT_NAME                       => Charge,
-        Checkout::Session::OBJECT_NAME            => Checkout::Session,
-        CountrySpec::OBJECT_NAME                  => CountrySpec,
-        Coupon::OBJECT_NAME                       => Coupon,
-        CreditNote::OBJECT_NAME                   => CreditNote,
-        Customer::OBJECT_NAME                     => Customer,
-        Discount::OBJECT_NAME                     => Discount,
-        Dispute::OBJECT_NAME                      => Dispute,
-        EphemeralKey::OBJECT_NAME                 => EphemeralKey,
-        Event::OBJECT_NAME                        => Event,
-        ExchangeRate::OBJECT_NAME                 => ExchangeRate,
-        File::OBJECT_NAME                         => File,
-        File::OBJECT_NAME_ALT                     => File,
-        FileLink::OBJECT_NAME                     => FileLink,
-        Invoice::OBJECT_NAME                      => Invoice,
-        InvoiceItem::OBJECT_NAME                  => InvoiceItem,
-        InvoiceLineItem::OBJECT_NAME              => InvoiceLineItem,
-        IssuerFraudRecord::OBJECT_NAME            => IssuerFraudRecord,
-        Issuing::Authorization::OBJECT_NAME       => Issuing::Authorization,
-        Issuing::Card::OBJECT_NAME                => Issuing::Card,
-        Issuing::CardDetails::OBJECT_NAME         => Issuing::CardDetails,
-        Issuing::Cardholder::OBJECT_NAME          => Issuing::Cardholder,
-        Issuing::Dispute::OBJECT_NAME             => Issuing::Dispute,
-        Issuing::Transaction::OBJECT_NAME         => Issuing::Transaction,
-        LoginLink::OBJECT_NAME                    => LoginLink,
-        Order::OBJECT_NAME                        => Order,
-        OrderReturn::OBJECT_NAME                  => OrderReturn,
-        PaymentIntent::OBJECT_NAME                => PaymentIntent,
-        PaymentMethod::OBJECT_NAME                => PaymentMethod,
-        Payout::OBJECT_NAME                       => Payout,
-        Person::OBJECT_NAME                       => Person,
-        Plan::OBJECT_NAME                         => Plan,
-        Product::OBJECT_NAME                      => Product,
-        Radar::ValueList::OBJECT_NAME             => Radar::ValueList,
-        Radar::ValueListItem::OBJECT_NAME         => Radar::ValueListItem,
-        Recipient::OBJECT_NAME                    => Recipient,
-        RecipientTransfer::OBJECT_NAME            => RecipientTransfer,
-        Refund::OBJECT_NAME                       => Refund,
-        Reporting::ReportRun::OBJECT_NAME         => Reporting::ReportRun,
-        Reporting::ReportType::OBJECT_NAME        => Reporting::ReportType,
-        Reversal::OBJECT_NAME                     => Reversal,
-        Review::OBJECT_NAME                       => Review,
-        SKU::OBJECT_NAME                          => SKU,
-        Sigma::ScheduledQueryRun::OBJECT_NAME     => Sigma::ScheduledQueryRun,
-        Source::OBJECT_NAME                       => Source,
-        SourceTransaction::OBJECT_NAME            => SourceTransaction,
-        Subscription::OBJECT_NAME                 => Subscription,
-        SubscriptionItem::OBJECT_NAME             => SubscriptionItem,
-        SubscriptionSchedule::OBJECT_NAME         => SubscriptionSchedule,
-        SubscriptionScheduleRevision::OBJECT_NAME => SubscriptionScheduleRevision,
-        TaxId::OBJECT_NAME                        => TaxId,
-        TaxRate::OBJECT_NAME                      => TaxRate,
-        Terminal::ConnectionToken::OBJECT_NAME    => Terminal::ConnectionToken,
-        Terminal::Location::OBJECT_NAME           => Terminal::Location,
-        Terminal::Reader::OBJECT_NAME             => Terminal::Reader,
-        ThreeDSecure::OBJECT_NAME                 => ThreeDSecure,
-        Token::OBJECT_NAME                        => Token,
-        Topup::OBJECT_NAME                        => Topup,
-        Transfer::OBJECT_NAME                     => Transfer,
-        UsageRecord::OBJECT_NAME                  => UsageRecord,
-        UsageRecordSummary::OBJECT_NAME           => UsageRecordSummary,
-        WebhookEndpoint::OBJECT_NAME              => WebhookEndpoint,
-      }
+    def self.object_classes
+      @object_classes ||= Stripe::ObjectTypes.object_names_to_classes
+    end
+    def self.object_name_matches_class?(object_name, klass)
+      Util.object_classes[object_name] == klass
     end
     # Converts a hash of fields or an array of hashes into a +StripeObject+ or
@@ -142,34 +66,42 @@ module Stripe
       when Array
         data.map { |i| convert_to_stripe_object(i, opts) }
       when Hash
-        # Try converting to a known object class.  If none available, fall back to generic StripeObject
-        object_classes.fetch(data[:object], StripeObject).construct_from(data, opts)
+        # Try converting to a known object class.  If none available, fall back
+        # to generic StripeObject
+        object_classes.fetch(data[:object], StripeObject)
+                      .construct_from(data, opts)
       else
         data
       end
     end
     def self.log_error(message, data = {})
-      if !Stripe.logger.nil? ||
-         !Stripe.log_level.nil? && Stripe.log_level <= Stripe::LEVEL_ERROR
-        log_internal(message, data, color: :cyan,
-                                    level: Stripe::LEVEL_ERROR, logger: Stripe.logger, out: $stderr)
+      config = data.delete(:config) || Stripe.config
+      logger = config.logger || Stripe.logger
+      if !logger.nil? ||
+         !config.log_level.nil? && config.log_level <= Stripe::LEVEL_ERROR
+        log_internal(message, data, color: :cyan, level: Stripe::LEVEL_ERROR,
+                                    logger: Stripe.logger, out: $stderr)
       end
     end
     def self.log_info(message, data = {})
-      if !Stripe.logger.nil? ||
-         !Stripe.log_level.nil? && Stripe.log_level <= Stripe::LEVEL_INFO
-        log_internal(message, data, color: :cyan,
-                                    level: Stripe::LEVEL_INFO, logger: Stripe.logger, out: $stdout)
+      config = data.delete(:config) || Stripe.config
+      logger = config.logger || Stripe.logger
+      if !logger.nil? ||
+         !config.log_level.nil? && config.log_level <= Stripe::LEVEL_INFO
+        log_internal(message, data, color: :cyan, level: Stripe::LEVEL_INFO,
+                                    logger: Stripe.logger, out: $stdout)
       end
     end
     def self.log_debug(message, data = {})
-      if !Stripe.logger.nil? ||
-         !Stripe.log_level.nil? && Stripe.log_level <= Stripe::LEVEL_DEBUG
-        log_internal(message, data, color: :blue,
-                                    level: Stripe::LEVEL_DEBUG, logger: Stripe.logger, out: $stdout)
+      config = data.delete(:config) || Stripe.config
+      logger = config.logger || Stripe.logger
+      if !logger.nil? ||
+         !config.log_level.nil? && config.log_level <= Stripe::LEVEL_DEBUG
+        log_internal(message, data, color: :blue, level: Stripe::LEVEL_DEBUG,
+                                    logger: Stripe.logger, out: $stdout)
       end
     end
@@ -246,6 +178,18 @@ module Stripe
       result
     end
+    # `Time.now` can be unstable in cases like an administrator manually
+    # updating its value or a reconcilation via NTP. For this reason, prefer
+    # the use of the system's monotonic clock especially where comparing times
+    # to calculate an elapsed duration.
+    #
+    # Shortcut for getting monotonic time, mostly for purposes of line length
+    # and test stubbing. Returns time in seconds since the event used for
+    # monotonic reference purposes by the platform (e.g. system boot time).
+    def self.monotonic_time
+      Process.clock_gettime(Process::CLOCK_MONOTONIC)
+    end
     def self.normalize_id(id)
       if id.is_a?(Hash) # overloaded id
         params_hash = id.dup
@@ -272,11 +216,13 @@ module Stripe
     def self.check_string_argument!(key)
       raise TypeError, "argument must be a string" unless key.is_a?(String)
       key
     end
     def self.check_api_key!(key)
       raise TypeError, "api_key must be a string" unless key.is_a?(String)
       key
     end
@@ -304,13 +250,13 @@ module Stripe
     # Constant time string comparison to prevent timing attacks
     # Code borrowed from ActiveSupport
-    def self.secure_compare(a, b)
-      return false unless a.bytesize == b.bytesize
+    def self.secure_compare(str_a, str_b)
+      return false unless str_a.bytesize == str_b.bytesize
-      l = a.unpack "C#{a.bytesize}"
+      l = str_a.unpack "C#{str_a.bytesize}"
       res = 0
-      b.each_byte { |byte| res |= byte ^ l.shift }
+      str_b.each_byte { |byte| res |= byte ^ l.shift }
       res.zero?
     end
@@ -319,14 +265,14 @@ module Stripe
     #
     COLOR_CODES = {
-      black:   0, light_black:   60,
-      red:     1, light_red:     61,
-      green:   2, light_green:   62,
-      yellow:  3, light_yellow:  63,
-      blue:    4, light_blue:    64,
+      black: 0, light_black: 60,
+      red: 1, light_red: 61,
+      green: 2, light_green: 62,
+      yellow: 3, light_yellow: 63,
+      blue: 4, light_blue: 64,
       magenta: 5, light_magenta: 65,
-      cyan:    6, light_cyan:    66,
-      white:   7, light_white:   67,
+      cyan: 6, light_cyan: 66,
+      white: 7, light_white: 67,
       default: 9,
     }.freeze
     private_constant :COLOR_CODES
@@ -355,23 +301,32 @@ module Stripe
     end
     private_class_method :level_name
-    # TODO: Make these named required arguments when we drop support for Ruby
-    # 2.0.
-    def self.log_internal(message, data = {}, color: nil, level: nil, logger: nil, out: nil)
+    def self.log_internal(message, data = {}, color:, level:, logger:, out:)
       data_str = data.reject { |_k, v| v.nil? }
                      .map do |(k, v)|
-        format("%s=%s", colorize(k, color, logger.nil? && !out.nil? && out.isatty), wrap_logfmt_value(v))
+        format("%<key>s=%<value>s",
+               key: colorize(k, color, logger.nil? && !out.nil? && out.isatty),
+               value: wrap_logfmt_value(v))
       end.join(" ")
       if !logger.nil?
         # the library's log levels are mapped to the same values as the
         # standard library's logger
         logger.log(level,
-                   format("message=%s %s", wrap_logfmt_value(message), data_str))
+                   format("message=%<message>s %<data_str>s",
+                          message: wrap_logfmt_value(message),
+                          data_str: data_str))
       elsif out.isatty
-        out.puts format("%s %s %s", colorize(level_name(level)[0, 4].upcase, color, out.isatty), message, data_str)
+        out.puts format("%<level>s %<message>s %<data_str>s",
+                        level: colorize(level_name(level)[0, 4].upcase,
+                                        color, out.isatty),
+                        message: message,
+                        data_str: data_str)
       else
-        out.puts format("message=%s level=%s %s", wrap_logfmt_value(message), level_name(level), data_str)
+        out.puts format("message=%<message>s level=%<level>s %<data_str>s",
+                        message: wrap_logfmt_value(message),
+                        level: level_name(level),
+                        data_str: data_str)
       end
     end
     private_class_method :log_internal
@@ -389,7 +344,7 @@ module Stripe
       if %r{[^\w\-/]} =~ val
         # If the string contains any special characters, escape any double
         # quotes it has, remove newlines, and wrap the whole thing in quotes.
-        format(%("%s"), val.gsub('"', '\"').delete("\n"))
+        format(%("%<value>s"), value: val.gsub('"', '\"').delete("\n"))
       else
         # Otherwise use the basic value if it looks like a standard set of
         # characters (and allow a few special characters like hyphens, and

data/lib/stripe/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Stripe
-  VERSION = "4.17.0".freeze
+  VERSION = "5.32.0"
 end

data/lib/stripe/webhook.rb CHANGED Viewed

@@ -8,7 +8,8 @@ module Stripe
     #
     # This may raise JSON::ParserError if the payload is not valid JSON, or
     # SignatureVerificationError if the signature verification fails.
-    def self.construct_event(payload, sig_header, secret, tolerance: DEFAULT_TOLERANCE)
+    def self.construct_event(payload, sig_header, secret,
+                             tolerance: DEFAULT_TOLERANCE)
       Signature.verify_header(payload, sig_header, secret, tolerance: tolerance)
       # It's a good idea to parse the payload only after verifying it. We use
@@ -21,12 +22,39 @@ module Stripe
     end
     module Signature
-      EXPECTED_SCHEME = "v1".freeze
+      EXPECTED_SCHEME = "v1"
-      def self.compute_signature(payload, secret)
-        OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new("sha256"), secret, payload)
+      # Computes a webhook signature given a time (probably the current time),
+      # a payload, and a signing secret.
+      def self.compute_signature(timestamp, payload, secret)
+        raise ArgumentError, "timestamp should be an instance of Time" \
+          unless timestamp.is_a?(Time)
+        raise ArgumentError, "payload should be a string" \
+          unless payload.is_a?(String)
+        raise ArgumentError, "secret should be a string" \
+          unless secret.is_a?(String)
+        timestamped_payload = "#{timestamp.to_i}.#{payload}"
+        OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new("sha256"), secret,
+                                timestamped_payload)
+      end
+      # Generates a value that would be added to a `Stripe-Signature` for a
+      # given webhook payload.
+      #
+      # Note that this isn't needed to verify webhooks in any way, and is
+      # mainly here for use in test cases (those that are both within this
+      # project and without).
+      def self.generate_header(timestamp, signature, scheme: EXPECTED_SCHEME)
+        raise ArgumentError, "timestamp should be an instance of Time" \
+          unless timestamp.is_a?(Time)
+        raise ArgumentError, "signature should be a string" \
+          unless signature.is_a?(String)
+        raise ArgumentError, "scheme should be a string" \
+          unless scheme.is_a?(String)
+        "t=#{timestamp.to_i},#{scheme}=#{signature}"
       end
-      private_class_method :compute_signature
       # Extracts the timestamp and the signature(s) with the desired scheme
       # from the header
@@ -34,7 +62,7 @@ module Stripe
         list_items = header.split(/,\s*/).map { |i| i.split("=", 2) }
         timestamp = Integer(list_items.select { |i| i[0] == "t" }[0][1])
         signatures = list_items.select { |i| i[0] == scheme }.map { |i| i[1] }
-        [timestamp, signatures]
+        [Time.at(timestamp), signatures]
       end
       private_class_method :get_timestamp_and_signatures
@@ -50,7 +78,13 @@ module Stripe
       # Returns true otherwise
       def self.verify_header(payload, header, secret, tolerance: nil)
         begin
-          timestamp, signatures = get_timestamp_and_signatures(header, EXPECTED_SCHEME)
+          timestamp, signatures =
+            get_timestamp_and_signatures(header, EXPECTED_SCHEME)
+        # TODO: Try to knock over this blanket rescue as it can unintentionally
+        # swallow many valid errors. Instead, try to validate an incoming
+        # header one piece at a time, and error with a known exception class if
+        # any part is found to be invalid. Rescue that class here.
         rescue StandardError
           raise SignatureVerificationError.new(
             "Unable to extract timestamp and signatures from header",
@@ -65,8 +99,7 @@ module Stripe
           )
         end
-        signed_payload = "#{timestamp}.#{payload}"
-        expected_sig = compute_signature(signed_payload, secret)
+        expected_sig = compute_signature(timestamp, payload, secret)
         unless signatures.any? { |s| Util.secure_compare(expected_sig, s) }
           raise SignatureVerificationError.new(
             "No signatures found matching the expected signature for payload",
@@ -74,7 +107,7 @@ module Stripe
           )
         end
-        if tolerance && timestamp < Time.now.to_f - tolerance
+        if tolerance && timestamp < Time.now - tolerance
           raise SignatureVerificationError.new(
             "Timestamp outside the tolerance zone (#{Time.at(timestamp)})",
             header, http_body: payload