trusona 0.16.0

data/lib/trusona/services/device_user_bindings_service.rb

@@ -0,0 +1,22 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    #
+    ## Device User Bindings Service
+    class DeviceUserBindingsService < BaseService
+      def initialize(
+          client: Trusona::Api::HTTPClient.new(Trusona.config.api_host),
+          mapper: Trusona::Mappers::DeviceUserBindingMapper.new
+        )
+        @client = client
+        @mapper = mapper
+        @resource_path = '/api/v2/user_devices'
+      end
+
+      def verify_response(_response)
+        true
+      end
+    end
+  end
+end

data/lib/trusona/services/devices_service.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    ##
+    # A service to interact with the Device resource in the Trusona REST API
+    class DevicesService < BaseService
+      def initialize(client: Trusona::Api::HTTPClient.new,
+                     mapper: Trusona::Mappers::DeviceMapper.new)
+        super
+        @resource_path = '/api/v2/devices'
+      end
+    end
+  end
+end

data/lib/trusona/services/identity_documents_service.rb

@@ -0,0 +1,31 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    #
+    ## Identity Documents Service
+    class IdentityDocumentsService < BaseService
+      def initialize(
+          client: Trusona::Api::HTTPClient.new(Trusona.config.api_host),
+          mapper: Trusona::Mappers::IdentityDocumentMapper.new
+        )
+        @client = client
+        @mapper = mapper
+        @resource_path = '/api/v2/identity_documents'
+      end
+
+      def index(user_identifier = nil)
+        modified_collection_path =
+          "#{collection_path}?user_identifier=#{user_identifier}"
+
+        handle(@client.get(modified_collection_path))
+      end
+
+      private
+
+      def not_found
+        nil
+      end
+    end
+  end
+end

data/lib/trusona/services/tru_codes_service.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    #
+    ## A service for interacting with TruCode TruCodes
+    class TruCodesService < BaseService
+      def initialize(
+        client: Trusona::Api::HTTPClient.new(Trusona.config.tru_codes_host),
+        mapper: Trusona::Mappers::TruCodeMapper.new
+      )
+        @client = client
+        @mapper = mapper
+        @resource_path = '/api/v2/trucodes'
+      end
+
+      def member_path(resource)
+        [@resource_path, resource.id].join('/')
+      end
+
+      def verify_response(_response)
+        true
+      end
+    end
+  end
+end

data/lib/trusona/services/trusonafication_service.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    ##
+    # A service to interact with the Trusonafications resource
+    # in the Trusona REST API
+    class TrusonaficationService < BaseService
+      def initialize(client: Trusona::Api::HTTPClient.new,
+                     mapper: Trusona::Mappers::TrusonaficationMapper.new)
+        super
+        @resource_path = '/api/v2/trusonafications'
+      end
+    end
+  end
+end

data/lib/trusona/services/user_accounts_service.rb

@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    #
+    ## User Accounts Service
+    class UserAccountsService < BaseService
+      def initialize(client: nil, mapper: nil)
+        @client = client || Trusona::Api::HTTPClient.new(
+          Trusona.config.api_host
+        )
+        @mapper = mapper || Trusona::Mappers::UserAccountMapper.new
+        @resource_path = '/internal/v1/users'
+      end
+    end
+  end
+end

data/lib/trusona/services/user_identifiers_service.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Services
+    #
+    ## User Identifiers Service
+    class UserIdentifiersService < BaseService
+      def initialize(client: nil, mapper: nil)
+        @client = client ||
+                  Trusona::Api::HTTPClient.new(Trusona.config.api_host)
+        @mapper = mapper || Trusona::Mappers::UserIdentifierMapper.new
+        @resource_path = '/api/v2/user_identifiers'
+      end
+    end
+  end
+end

data/lib/trusona/tru_code.rb

@@ -0,0 +1,38 @@
+# frozen_string_literal: true
+
+module Trusona
+  ##
+  # A scannable, pairable TruCode to assist magic logins
+  class TruCode
+    ##
+    # Finds a TruCode using its ID
+    #
+    # @param id [String] The id of the TruCode we're looking for
+    # @return [Trusona::Resources::TruCode] The found TruCode
+    # @raise [Trusona::ResourceNotFoundError] if the TruCode cannot be found
+    # @raise [Trusona::BadRequestError] if the request is improperly formatted
+    # @raise [Trusona::UnauthorizedRequestError] if the request is unauthorized.
+    #  Typically the result of invalid or revoked Trusona SDK keys.
+    # @raise [Trusona::ApiError] if the Trusona API is experiencing problems.
+    # @raise [ArgumentError] if the TruCode id is missing
+    #
+    def self.find(id)
+      Trusona::Workers::TruCodeFinder.new.find(id)
+    end
+
+    ##
+    # Finds a TruCode using its ID
+    #
+    # @param id [String] The id of the TruCode we're looking for
+    # @return [Trusona::Resources::TruCode] The found TruCode
+    # @raise (see .find)
+    #
+    def self.status(id)
+      Trusona::Workers::TruCodeStatus.new.status(id)
+    end
+
+    def self.create(code)
+      Trusona::Workers::TruCodeCreator.new.create(code)
+    end
+  end
+end

data/lib/trusona/tru_code_config.rb

@@ -0,0 +1,45 @@
+# frozen_string_literal: true
+
+module Trusona
+  ##
+  #
+  class TruCodeConfig
+    def tru_code_url
+      "https://api.example.net/?relying_party_id=#{relying_party_id}"
+    end
+
+    def relying_party_id
+      jwt     = Trusona.config.token ||
+                raise_token_error
+      middle  = jwt_body(jwt)
+      decoded = Base64.decode64(middle)
+      parsed = parse_jwt(decoded)
+      relying_party_id = extract_subject(parsed)
+
+      relying_party_id
+    end
+
+    private
+
+    def jwt_body(jwt)
+      split_jwt = jwt.split('.')
+      raise_token_error if split_jwt.empty? || split_jwt[1].nil?
+      split_jwt[1]
+    end
+
+    def parse_jwt(decoded)
+      JSON.parse(decoded)
+    rescue JSON::ParserError
+      raise_token_error('JWT Format is Invalid.')
+    end
+
+    def extract_subject(parsed)
+      raise_token_error('Subject is Missing.') if parsed['sub'].nil?
+      parsed['sub']
+    end
+
+    def raise_token_error(msg = 'API Token is missing.')
+      raise(Trusona::ConfigurationError, msg)
+    end
+  end
+end

data/lib/trusona/trusonafication.rb

@@ -0,0 +1,133 @@
+# frozen_string_literal: true
+
+module Trusona
+  ##
+  # Defines a nice public api for interacting with Trusonafications
+  class Trusonafication
+    extend Trusona::Helpers::KeyNormalizer
+
+    ##
+    # Finds existing Trusonafications using their ID
+    #
+    # @param trusonafication_id [String] the ID of an existing Trusonafication
+    # @return [Trusona::Resources::Trusonafication] The found Trusonafication
+    # @raise [Trusona::InvalidRecordIdentifier] if the +trusonafication_id+ is
+    #   empty or nil.
+    # @raise [Trusona::ResourceNotFoundError] if the resource does not exist
+    #   in the Trusona API
+    # @raise (see .create)
+    #
+    # @example
+    #   Trusona::Trusonafication.find('602CB166-A6FC-4EBE-BE83-82E54CF5D161')
+    #
+    def self.find(trusonafication_id)
+      if trusonafication_id.nil? || trusonafication_id.empty?
+        raise Trusona::InvalidRecordIdentifier, 'Trusonafication ID is missing'
+      end
+
+      Trusona::Workers::TrusonaficationFinder.new.find(trusonafication_id)
+    end
+
+    ##
+    # Creates a Trusonafication using the supplied options
+    #
+    # @param [Hash] params A list of options for creating the Trusonafication
+    # @option params [String] :action The action you want the user to take
+    #   (e.g. 'login', 'verify')
+    # @option params [String] :resource The resource to which the user is
+    #   performing the action (e.g. 'website', 'account')
+    # @option params [String] :device_identifier The device identifier,
+    #  retrieved from the mobile SDK, of the device to which this
+    #  Trusonafication will be sent.
+    # @option params [String] :user_identifier The user identifier,
+    #  previously registered with Trusona, of the user to which this
+    #  Trusonafication will be sent.
+    # @option params [String] :trucode_id The TruCode ID that has either been
+    #  scanned or will be scanned using the mobile SDK that will be used to
+    #  determine which device to send the Trusonafication to.
+    # @option params [Boolean] :user_presence (true) Should the user be required
+    #  to demonstrate presence (e.g. via Biometric) when accepting this
+    #  Trusonafication?
+    # @option params [Boolean] :prompt (true) Should the user be prompted to
+    #  Accept or Reject this Trusonafication?
+    # @option params [String] :callback_url ('') A URL that will be called when
+    #  the Trusonafication is completed.
+    # @option params [String] :expires_at ('90 seconds') The ISO-8601 UTC
+    #  timestamp of the Trusonafication's expiration.
+    # @param timeout [Int] (30) The max amount of time, in seconds, to wait
+    #  for a response from the Trusona API when polling for a Trusonafication
+    #  result
+    # @yield [Trusona::Resources::Trusonafication] Yields the completed
+    #  Trusonafication to the block
+    # @raise [Trusona::InvalidResourceError] if the resource is not +valid?+
+    # @see Trusona::Resources::BaseResource#valid?
+    # @raise [Trusona::BadRequestError] if the request is improperly formatted
+    # @raise [Trusona::UnauthorizedRequestError] if the request is unauthorized.
+    #  Typically the result of invalid or revoked Trusona SDK keys.
+    # @raise [Trusona::ApiError] if the Trusona API is experiencing problems.
+    #
+    def self.create(params: {}, timeout: nil, &block)
+      normal = normalize_keys(params)
+
+      raise ArgumentError, 'Missing user identifier' unless
+        identifier_present?(normal)
+
+      raise ArgumentError, 'Missing action and resource' unless
+        normal[:action] && normal[:resource]
+
+      Trusona::Workers::TrusonaficationCreator.new.create(
+        params: normal,
+        timeout: timeout,
+        &block
+      )
+    end
+
+    def self.identifier_present?(normalized_params)
+      normalized_params[:user_identifier] ||
+        normalized_params[:device_identifier] ||
+        normalized_params[:trucode_id] ||
+        normalized_params[:trusona_id]
+    end
+  end
+
+  ##
+  # Creates Essential level Trusonafications. Syntactic sugar on top of
+  # {Trusona::Trusonafication}.
+  #
+  # @example
+  #   Trusona::EssentialTrusonafication.create(params: {
+  #     action: 'login',
+  #     resource: 'Acme Bank',
+  #     device_identifier: 'PBanKaajTmz_Cq1pDkrRzyeISBSBoGjExzp5r6-UjcI'
+  #   })
+  #
+  # @see Trusona::Trusonafication.create
+  # @see Trusona::Trusonafication.find
+  #
+  class EssentialTrusonafication < Trusonafication
+    def self.create(params: {}, timeout: nil, &block)
+      level = params[:user_presence] == false ? 1 : 2
+      super(params: params.merge!(level: level), timeout: timeout, &block)
+    end
+  end
+
+  ##
+  # Creates Executive level Trusonafications. Syntactic sugar on top of
+  # {Trusona::Trusonafication}.
+  #
+  # @example
+  #   Trusona::ExecutiveLevelTrusonafication.create(params: {
+  #     action: 'login',
+  #     resource: 'Acme Bank',
+  #     device_identifier: 'PBanKaajTmz_Cq1pDkrRzyeISBSBoGjExzp5r6-UjcI'
+  #   })
+  #
+  # @see Trusona::Trusonafication.create
+  # @see Trusona::Trusonafication.find
+  #
+  class ExecutiveTrusonafication < Trusonafication
+    def self.create(params: {}, timeout: nil, &block)
+      super(params: params.merge!(level: 3), timeout: timeout, &block)
+    end
+  end
+end

data/lib/trusona/user_account.rb

@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+
+module Trusona
+  #
+  ## Makes it easy to interface with the User and Accounts APIs
+  class UserAccounts
+    def self.find_by(opts = {})
+      raise ArgumentError unless
+        opts[:trusona_id] ||
+        opts[:email] ||
+        opts['trusona_id'] ||
+        opts['email']
+
+      Trusona::Workers::UserAccountFinder.new.find(opts)
+    end
+  end
+end

data/lib/trusona/user_identifier.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module Trusona
+  #
+  ## Makes it easy to interface with the User Identifier APIs
+  class UserIdentifier
+    def self.find_by(opts = {})
+      Trusona::Workers::UserIdentifierFinder.new.find(opts)
+    end
+
+    def self.create(identifier)
+      Trusona::Workers::UserIdentifierCreator.new.create(identifier)
+    end
+  end
+end

data/lib/trusona/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module Trusona
+  VERSION = '0.16.0'
+end

data/lib/trusona/workers/device_finder.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Workers
+    #
+    ## Handles finding Devices
+    class DeviceFinder
+      def initialize(service: Trusona::Services::DevicesService.new)
+        @service = service
+      end
+
+      def find(id = nil)
+        raise(ArgumentError, 'A device identifier is required.') unless id
+        @service.get(Trusona::Resources::Device.new(id: id))
+      end
+    end
+  end
+end

data/lib/trusona/workers/device_user_binding_activator.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+module Trusona
+  module Workers
+    #
+    ## Activates Device and User binding records
+    class DeviceUserBindingActivator
+      def initialize(service: nil)
+        @service = service || Trusona::Services::DeviceUserBindingsService.new
+      end
+
+      def activate(id: nil)
+        raise ArgumentError, 'Missing Device+User Binding Id' if
+          id.nil? || id.empty?
+
+        resource = Trusona::Resources::DeviceUserBindingActivation.new(
+          id: id,
+          active: true
+        )
+
+        @service.update(resource)
+      end
+    end
+  end
+end