tripwire-server 0.1.1 → 0.3.0

data/spec/sealed-token.md

@@ -7,7 +7,7 @@ This document is the language-agnostic contract for verifying those tokens in pu
 ## Overview
 
 - Input: a base64-encoded sealed token string
-- Output: a JSON payload describing the scored Tripwire result for the current action
+- Output: a JSON payload describing the verified Tripwire session decision for the current action
 - Confidentiality and integrity: AES-256-GCM
 - Compression: zlib deflate/inflate
 
@@ -65,23 +65,42 @@ Any failure in decoding, parsing, authentication, decompression, or JSON parsing
 
 The decrypted JSON payload currently includes:
 
-- `eventId`
-- `sessionId`
-- `verdict`
-- `score`
-- `manipulationScore`
-- `manipulationVerdict`
-- `evaluationDuration`
-- `scoredAt`
-- `metadata`
+- `object`
+- `session_id`
+- `decision`
+- `request`
+- `visitor_fingerprint`
 - `signals`
-- `categoryScores`
-- `botAttribution`
-- `visitorId`
-- `visitorIdConfidence`
-- `embedContext`
-- `phase`
-- `provisional`
+- `score_breakdown`
+- `attribution`
+- `embed`
+
+The payload is aligned to the same public vocabulary as the Sessions API:
+
+- `decision`
+  - `event_id`
+  - `verdict`
+  - `risk_score`
+  - `phase`
+  - `is_provisional`
+  - `manipulation`
+  - `evaluation_duration_ms`
+  - `evaluated_at`
+- `request`
+  - `url`
+  - `user_agent`
+  - `ip_address`
+  - `screen_size`
+  - `is_touch_capable`
+- `visitor_fingerprint`
+  - `object`
+  - `id`
+  - `confidence`
+  - `identified_at`
+- `score_breakdown`
+  - `categories`
+- `attribution`
+  - `bot`
 
 Public SDKs should treat the payload as forward-compatible:
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: tripwire-server
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.3.0
 platform: ruby
 authors:
 - ABXY Labs
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2026-03-25 00:00:00.000000000 Z
+date: 2026-04-05 00:00:00.000000000 Z
 dependencies: []
 description: Customer-facing Ruby SDK for Tripwire Sessions, Fingerprints, Teams,
   and sealed token verification.
@@ -22,27 +22,49 @@ files:
 - README.md
 - lib/tripwire/server.rb
 - lib/tripwire/server/client.rb
+- lib/tripwire/server/crypto_support.rb
 - lib/tripwire/server/errors.rb
+- lib/tripwire/server/gate_delivery.rb
 - lib/tripwire/server/sealed_token.rb
 - lib/tripwire/server/types.rb
 - lib/tripwire/server/version.rb
 - spec/LICENSE
 - spec/README.md
+- spec/fixtures/api/fingerprints/detail.json
+- spec/fixtures/api/fingerprints/list.json
+- spec/fixtures/api/gate/agent-token-revoke.json
+- spec/fixtures/api/gate/agent-token-verify.json
+- spec/fixtures/api/gate/login-session-consume.json
+- spec/fixtures/api/gate/login-session-create.json
+- spec/fixtures/api/gate/registry-detail.json
+- spec/fixtures/api/gate/registry-list.json
+- spec/fixtures/api/gate/service-create.json
+- spec/fixtures/api/gate/service-detail.json
+- spec/fixtures/api/gate/service-disable.json
+- spec/fixtures/api/gate/service-update.json
+- spec/fixtures/api/gate/services-list.json
+- spec/fixtures/api/gate/session-ack.json
+- spec/fixtures/api/gate/session-create.json
+- spec/fixtures/api/gate/session-poll.json
+- spec/fixtures/api/sessions/detail.json
+- spec/fixtures/api/sessions/list.json
+- spec/fixtures/api/teams/api-key-create.json
+- spec/fixtures/api/teams/api-key-list.json
+- spec/fixtures/api/teams/api-key-revoke.json
+- spec/fixtures/api/teams/api-key-rotate.json
+- spec/fixtures/api/teams/team-create.json
+- spec/fixtures/api/teams/team-update.json
+- spec/fixtures/api/teams/team.json
 - spec/fixtures/errors/invalid-api-key.json
 - spec/fixtures/errors/missing-api-key.json
 - spec/fixtures/errors/not-found.json
 - spec/fixtures/errors/validation-error.json
-- spec/fixtures/public-api/fingerprints/detail.json
-- spec/fixtures/public-api/fingerprints/list.json
-- spec/fixtures/public-api/sessions/detail.json
-- spec/fixtures/public-api/sessions/list.json
-- spec/fixtures/public-api/teams/api-key-create.json
-- spec/fixtures/public-api/teams/api-key-list.json
-- spec/fixtures/public-api/teams/api-key-revoke.json
-- spec/fixtures/public-api/teams/api-key-rotate.json
-- spec/fixtures/public-api/teams/team-create.json
-- spec/fixtures/public-api/teams/team-update.json
-- spec/fixtures/public-api/teams/team.json
+- spec/fixtures/gate-delivery/approved-webhook-payload.valid.json
+- spec/fixtures/gate-delivery/delivery-request.json
+- spec/fixtures/gate-delivery/env-policy.json
+- spec/fixtures/gate-delivery/vector.v1.json
+- spec/fixtures/gate-delivery/webhook-signature.json
+- spec/fixtures/manifest.json
 - spec/fixtures/sealed-token/invalid.json
 - spec/fixtures/sealed-token/vector.v1.json
 - spec/openapi.json
@@ -59,7 +81,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.6.0
+      version: 3.3.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="

data/spec/fixtures/public-api/fingerprints/detail.json

@@ -1,40 +0,0 @@
-{
-  "data": {
-    "object": "fingerprint",
-    "id": "vis_example_one",
-    "firstSeenAt": "2026-03-24T19:58:00.000Z",
-    "lastSeenAt": "2026-03-24T20:00:05.000Z",
-    "seenCount": 3,
-    "lastUserAgent": "Mozilla/5.0",
-    "lastIp": "203.0.113.9",
-    "expiresAt": "2026-06-22T20:00:05.000Z",
-    "anchorWebglHash": null,
-    "anchorParamsHash": null,
-    "anchorAudioHash": null,
-    "fingerprintVector": [
-      1,
-      0,
-      1
-    ],
-    "hasCookie": true,
-    "hasLs": true,
-    "hasIdb": true,
-    "hasSw": false,
-    "hasWn": false,
-    "sessions": [
-      {
-        "eventId": "evt_example_one",
-        "verdict": "human",
-        "riskScore": 9,
-        "scoredAt": "2026-03-24T20:00:05.000Z",
-        "userAgent": "Mozilla/5.0",
-        "url": "https://example.com/signup",
-        "clientIp": "203.0.113.9",
-        "screenSize": "1440x900",
-        "categoryScores": {
-          "behavioral": 9
-        }
-      }
-    ]
-  }
-}

data/spec/fixtures/public-api/fingerprints/list.json

@@ -1,31 +0,0 @@
-{
-  "data": [
-    {
-      "object": "fingerprint",
-      "id": "vis_example_one",
-      "firstSeenAt": "2026-03-24T19:58:00.000Z",
-      "lastSeenAt": "2026-03-24T20:00:05.000Z",
-      "seenCount": 3,
-      "lastUserAgent": "Mozilla/5.0",
-      "lastIp": "203.0.113.9",
-      "expiresAt": "2026-06-22T20:00:05.000Z",
-      "anchorWebglHash": null,
-      "anchorParamsHash": null,
-      "anchorAudioHash": null,
-      "fingerprintVector": [
-        1,
-        0,
-        1
-      ],
-      "hasCookie": true,
-      "hasLs": true,
-      "hasIdb": true,
-      "hasSw": false,
-      "hasWn": false
-    }
-  ],
-  "pagination": {
-    "limit": 50,
-    "hasMore": false
-  }
-}

data/spec/fixtures/public-api/sessions/detail.json

@@ -1,47 +0,0 @@
-{
-  "data": {
-    "object": "session",
-    "id": "sid_example_one",
-    "createdAt": "2026-03-24T20:00:00.000Z",
-    "latestEventId": "evt_example_one",
-    "latestResult": {
-      "eventId": "evt_example_one",
-      "verdict": "human",
-      "riskScore": 9,
-      "phase": "behavioral",
-      "provisional": false,
-      "manipulationScore": 0,
-      "manipulationVerdict": "none",
-      "evaluationDuration": 142,
-      "scoredAt": "2026-03-24T20:00:05.000Z",
-      "visitorId": "vis_example_one",
-      "metadata": {
-        "userAgent": "Mozilla/5.0",
-        "url": "https://example.com/signup",
-        "screenSize": "1440x900",
-        "touchDevice": false,
-        "clientIp": "203.0.113.9"
-      }
-    },
-    "ipIntel": null,
-    "fingerprint": {
-      "object": "fingerprint",
-      "id": "vis_example_one",
-      "confidence": 94,
-      "timestamp": "2026-03-24T20:00:05.000Z"
-    },
-    "resultHistory": [
-      {
-        "eventId": "evt_example_one",
-        "verdict": "human",
-        "riskScore": 9,
-        "phase": "behavioral",
-        "provisional": false,
-        "manipulationScore": 0,
-        "manipulationVerdict": "none",
-        "evaluationDuration": 142,
-        "scoredAt": "2026-03-24T20:00:05.000Z"
-      }
-    ]
-  }
-}

data/spec/fixtures/public-api/sessions/list.json

@@ -1,33 +0,0 @@
-{
-  "data": [
-    {
-      "object": "session",
-      "id": "sid_example_one",
-      "createdAt": "2026-03-24T20:00:00.000Z",
-      "latestEventId": "evt_example_one",
-      "latestResult": {
-        "eventId": "evt_example_one",
-        "verdict": "human",
-        "riskScore": 9,
-        "phase": "behavioral",
-        "provisional": false,
-        "manipulationScore": 0,
-        "manipulationVerdict": "none",
-        "evaluationDuration": 142,
-        "scoredAt": "2026-03-24T20:00:05.000Z"
-      },
-      "fingerprint": {
-        "object": "fingerprint",
-        "id": "vis_example_one",
-        "confidence": 94,
-        "timestamp": "2026-03-24T20:00:05.000Z"
-      },
-      "lastScoredAt": "2026-03-24T20:00:05.000Z"
-    }
-  ],
-  "pagination": {
-    "limit": 50,
-    "hasMore": true,
-    "nextCursor": "cur_sessions_page_2"
-  }
-}

data/spec/fixtures/public-api/teams/api-key-create.json

@@ -1,18 +0,0 @@
-{
-  "data": {
-    "object": "api_key",
-    "id": "key_example",
-    "key": "pk_live_example",
-    "secretKey": "sk_live_example",
-    "name": "Production",
-    "isTest": false,
-    "allowedOrigins": [
-      "https://example.com"
-    ],
-    "rateLimit": 600,
-    "status": "active",
-    "createdAt": "2026-03-24T19:00:00.000Z",
-    "rotatedAt": null,
-    "revokedAt": null
-  }
-}

data/spec/fixtures/public-api/teams/api-key-list.json

@@ -1,23 +0,0 @@
-{
-  "data": [
-    {
-      "object": "api_key",
-      "id": "key_example",
-      "key": "pk_live_example",
-      "name": "Production",
-      "isTest": false,
-      "allowedOrigins": [
-        "https://example.com"
-      ],
-      "rateLimit": 600,
-      "status": "active",
-      "createdAt": "2026-03-24T19:00:00.000Z",
-      "rotatedAt": null,
-      "revokedAt": null
-    }
-  ],
-  "pagination": {
-    "limit": 50,
-    "hasMore": false
-  }
-}

data/spec/fixtures/public-api/teams/api-key-rotate.json

@@ -1,18 +0,0 @@
-{
-  "data": {
-    "object": "api_key",
-    "id": "key_rotated",
-    "key": "pk_live_rotated",
-    "secretKey": "sk_live_rotated",
-    "name": "Production",
-    "isTest": false,
-    "allowedOrigins": [
-      "https://example.com"
-    ],
-    "rateLimit": 600,
-    "status": "active",
-    "createdAt": "2026-03-24T19:10:00.000Z",
-    "rotatedAt": null,
-    "revokedAt": null
-  }
-}

data/spec/fixtures/public-api/teams/team-create.json

@@ -1,11 +0,0 @@
-{
-  "data": {
-    "object": "team",
-    "id": "team_example",
-    "name": "Example Team",
-    "slug": "example-team",
-    "status": "active",
-    "createdAt": "2026-03-24T19:00:00.000Z",
-    "updatedAt": "2026-03-24T19:00:00.000Z"
-  }
-}

data/spec/fixtures/public-api/teams/team-update.json

@@ -1,11 +0,0 @@
-{
-  "data": {
-    "object": "team",
-    "id": "team_example",
-    "name": "Updated Example Team",
-    "slug": "example-team",
-    "status": "active",
-    "createdAt": "2026-03-24T19:00:00.000Z",
-    "updatedAt": "2026-03-24T19:10:00.000Z"
-  }
-}

data/spec/fixtures/public-api/teams/team.json

@@ -1,11 +0,0 @@
-{
-  "data": {
-    "object": "team",
-    "id": "team_example",
-    "name": "Example Team",
-    "slug": "example-team",
-    "status": "active",
-    "createdAt": "2026-03-24T19:00:00.000Z",
-    "updatedAt": "2026-03-24T19:10:00.000Z"
-  }
-}