tuwien_logon 0.1.1 → 0.2.0

data/VERSION

@@ -1 +1 @@
-0.1.1
+0.2.0

data/lib/tuwien_logon/configuration.rb

@@ -4,13 +4,15 @@ module TuwienLogon
   class Configuration
     include Singleton
     
-    attr_accessor :authentication_url, :user_info_url, :secret, :user_info_params
+    attr_accessor :authentication_url, :user_info_url, :secret, :user_info_params, :time_tolerance, :server_time_offset
     
     def initialize
       @authentication_url = 'https://iu.zid.tuwien.ac.at/AuthServ.authenticate'
       @user_info_url = 'https://iu.zid.tuwien.ac.at/AuthServ.userInfo'
       @secret = '123456'
       @user_info_params = [:oid, :firstname, :lastname, :title, :matriculation_number, :institute_symbol]
+      @time_tolerance = 5
+      @server_time_offset = 0
     end
   end
 end

data/test/test_authentication.rb

@@ -0,0 +1,101 @@
+require 'helper'
+require 'tuwien_logon/authentication'
+
+class TestAuthentication < Test::Unit::TestCase
+  include TuwienLogon::Authentication
+  
+  context 'The authentication' do
+    setup do
+      @time = Time.now
+      @authentication = Authentication.new 1, 'client', 'secret', 0, @time
+    end
+    
+    should 'generate the correct skey' do
+      assert_equal correct_key(@authentication, @time), @authentication.skey
+    end
+    
+    should 'generate the incorrect skey' do
+      key = Digest::SHA1.hexdigest("1clientsecret")
+      
+      assert_not_equal key, @authentication.skey
+    end
+    
+    should 'generate the correct skey with time offset' do
+      offset = 10
+      assert_equal correct_key(@authentication, @time + offset * 10), @authentication.skey(offset)
+    end
+    
+    should 'generate the incorrect skey with wrong time offset' do
+      assert_not_equal correct_key(@authentication, @time + 1000), @authentication.skey(10)
+    end
+    
+    should 'validate a correct key' do
+      assert @authentication.valid? correct_key(@authentication, @time)
+    end
+    
+    should 'not validate an incorrect key' do
+      assert !(@authentication.valid? correct_key(@authentication, @time + 10))
+    end
+    
+    should 'validate a correct key with tolerance' do
+      @authentication.tolerance = 5
+      assert @authentication.valid? correct_key(@authentication, @time + 50)
+      assert @authentication.valid? correct_key(@authentication, @time - 50)
+    end
+    
+    should 'not validate a key out of tolerance' do
+      @authentication.tolerance = 5
+      assert !(@authentication.valid? correct_key(@authentication, @time + 100))
+      assert !(@authentication.valid? correct_key(@authentication, @time - 100))
+    end
+    
+    context 'method' do
+      should 'raise an exception if there are not all required arguments' do
+        [:user_id, :host, :skey].each do |param|
+          hash = authentication_hash(@authentication)
+          hash.delete param
+          assert_raise(RuntimeError) { authenticated? hash }
+        end
+      end
+      
+      should 'authenticate a valid user' do
+        assert authenticated? authentication_hash(@authentication)
+      end
+
+      should 'not authenticate an invalid user' do
+        hash = authentication_hash(@authentication)
+        hash[:user_id] = 2
+
+        assert !(authenticated? hash)
+      end
+
+      should 'authenticate a user with time offset' do
+        hash = authentication_hash(@authentication)
+        hash[:server_time_offset] = 1000
+        hash[:time] = Time.now - 1000
+
+        assert authenticated? hash
+      end
+
+      should 'not authenticate a user with wrong time offset' do
+        hash = authentication_hash(@authentication)
+        hash[:server_time_offset] = 1000
+
+        assert !(authenticated? hash)
+      end
+    end
+  end
+  
+  def correct_key(authentication, time)
+    Digest::SHA1.hexdigest("#{authentication.user_id}#{time.to_i / 10}#{authentication.client_host_name}#{authentication.secret}")
+  end
+  
+  def authentication_hash(authentication)
+    {
+      :user_id => @authentication.user_id,
+      :host => @authentication.client_host_name,
+      :skey => correct_key(@authentication, @time),
+      :secret => @authentication.secret
+    }
+  end
+end

data/tuwien_logon.gemspec

@@ -5,11 +5,11 @@
 
 Gem::Specification.new do |s|
   s.name = %q{tuwien_logon}
-  s.version = "0.1.1"
+  s.version = "0.2.0"
 
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Clemens Helm"]
-  s.date = %q{2010-04-15}
+  s.date = %q{2010-04-21}
   s.description = %q{Provides an authentication solution for ruby applications being used at the Vienna University of Technology}
   s.email = %q{clemens.helm@gmail.com}
   s.extra_rdoc_files = [
@@ -40,6 +40,7 @@ Gem::Specification.new do |s|
   s.summary = %q{Ruby client for Vienna UT authentication service}
   s.test_files = [
     "test/helper.rb",
+     "test/test_authentication.rb",
      "test/test_tuwien_logon.rb",
      "test/test_user_info.rb",
      "test/test_user_info_request.rb"

metadata

@@ -4,9 +4,9 @@ version: !ruby/object:Gem::Version
   prerelease: false
   segments: 
   - 0
-  - 1
-  - 1
-  version: 0.1.1
+  - 2
+  - 0
+  version: 0.2.0
 platform: ruby
 authors: 
 - Clemens Helm
@@ -14,7 +14,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-04-15 00:00:00 +02:00
+date: 2010-04-21 00:00:00 +02:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -86,6 +86,7 @@ specification_version: 3
 summary: Ruby client for Vienna UT authentication service
 test_files: 
 - test/helper.rb
+- test/test_authentication.rb
 - test/test_tuwien_logon.rb
 - test/test_user_info.rb
 - test/test_user_info_request.rb