ucenter 0.0.3 → 0.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 455a44d1c4adabc58b1e3427ab519d340edae2d2
-  data.tar.gz: 44f6c5b7e7f0b6716fc66ec6680f70ba7173c140
+  metadata.gz: 39fb7334c69206eda4dc53352bc1761faa573f8d
+  data.tar.gz: 59c136c1cd60937283cd40c59ad738be9976ed33
 SHA512:
-  metadata.gz: f53e7f4caa4ef1d23c28446d83e7d1e4296329d2fd30ac33f803843518a186431459c5037609dced43ea82f8922e72ee744d9f3c52a66c918f7467f6f6a28d1d
-  data.tar.gz: ff434fc772fc413ebb1a114f0212d5a80b92179a27d5d3abebc4e6dfbddd85e966182a184647a73383110c9dffd54a023cfe42afe1912271d6275b8366a697a7
+  metadata.gz: 5ab39a314f899cdaf779ba25b52dda6b9ad7b71b5e56aacbc95179c60c6cda71774b20c12325cb6a31e7329a1d673a4f200f34e6924eb741b64581cc21da16b7
+  data.tar.gz: 35d08c5f26b5c8b27b25fdcbd4cfe2f074a1a198a045a1de15a3ae6cf0427275a1ba7d694b0e25d66d256b9b6bfa699f821841e03f04e8abef21480029cba900

data/lib/ucenter.rb

@@ -1,7 +1,14 @@
 require 'ucenter/config'
-require 'ucenter/client'
+
 require 'ucenter/interface/base'
 require 'ucenter/interface/authcode'
 require 'ucenter/interface/user'
-require 'ucenter/interface/xml'
-require 'ucenter/interface/utility'
+require 'ucenter/interface/app'
+
+require 'ucenter/tools/base'
+require 'ucenter/tools/url'
+require 'ucenter/tools/xml'
+require 'ucenter/tools/php'
+
+require 'ucenter/client'
+require 'ucenter/utility'

data/lib/ucenter/client.rb

@@ -1,5 +1,9 @@
 module Ucenter
   class Client
+    def app
+      @app ||= Ucenter::Interface::App.new(self)
+    end
+
     def authcode
       @authcode ||= Ucenter::Interface::Authcode.new(self)
     end
@@ -7,14 +11,5 @@ module Ucenter
     def user
       @user ||= Ucenter::Interface::User.new(self)
     end
-
-    def utility
-      @utility ||= Ucenter::Interface::Utility.new(self)
-    end
-
-    def xml
-      @xml ||= Ucenter::Interface::Xml.new(self)
-    end
-
   end
 end

data/lib/ucenter/interface/app.rb

@@ -0,0 +1,16 @@
+module Ucenter
+  module Interface
+    class App < Base
+      def get_apps(col = '*', where = '')
+        col = db_client.escape(col)
+        where = db_client.escape(where)
+        data = db_client.query("SELECT #{col} FROM #{Ucenter::Config.uc_dbtablepre}applications #{where!="" ? " WHERE #{where} " : ""}").to_a
+        data.each_with_index do |item,index|
+          item['extra'] = Ucenter::Tools::PHP.unserialize(item['extra'])
+          data[index] = item
+        end
+      end
+    end
+  end
+end
+

data/lib/ucenter/interface/authcode.rb

@@ -46,6 +46,56 @@ module Ucenter
         end
       end
 
+      def encode string
+        operation = 'ENCODE'
+        expiry = 0
+        ckey_length = 4
+        key = md5(Ucenter::Config.uc_key)
+        keya = md5(key[0, 16])
+        keyb = md5(key[16, 16])
+        keyc = ckey_length > 0 ? (operation == 'DECODE' ? string[0, ckey_length] : (md5(microtime()))[-ckey_length..-1]) : ''
+        cryptkey = keya + md5(keya+keyc)
+        key_length = cryptkey.size
+        string = operation == 'DECODE' ? base64_url_decode(string[ckey_length..-1]) : sprintf('%010d', expiry>0 ? expiry + Time.now.to_i : 0)+ (md5(string+keyb))[0, 16] + string
+        string_ords = ords(string)
+        string_length = string_ords.size
+        result = ''
+        box = (0..255).to_a
+
+        rndkey = []
+
+        0.upto(255) do |i|
+          rndkey[i] = (cryptkey[i % key_length]).ord
+        end
+
+        j = i = 0
+        while i < 256 do
+          j = (j + box[i] + rndkey[i]) % 256
+          box[i], box[j] = box[j], box[i]
+          i +=1
+        end
+
+        a = j = i = 0
+        while i < string_length
+          a = (a + 1) % 256
+          j = (j + box[a]) % 256
+          box[a], box[j] = box[j], box[a]
+          result += (string_ords[i] ^ (box[(box[a] + box[j]) % 256])).chr
+          i +=1
+        end
+
+        if operation == 'DECODE' then
+          if ( result[0,10] == '0'*10 || (result[0, 10]).to_i - Time.now.to_i  >  0 ) and
+              result[10, 16] == (md5(result[26..-1] + keyb))[0, 16] then
+            return result[26..-1]
+          else
+            return ''
+          end
+        else
+          keyc + (Base64.encode64(result)).gsub(/=/, '')
+        end
+      end
+
       def microtime
         epoch_mirco = Time.now.to_f
         epoch_full = Time.now.to_i
@@ -62,6 +112,10 @@ module Ucenter
         Base64.decode64 str2
       end
 
+      def ords(s)
+        s.bytes.to_a
+      end
+
     end
   end
 end

data/lib/ucenter/interface/user.rb

@@ -3,6 +3,7 @@ module Ucenter
     class User < Base
 
       def get_user(username, is_uid = FALSE)
+        username = db_client.escape(username) unless username.nil?
         if is_uid == 1
           data = get_user_by_uid(username)
         elsif is_uid == 2
@@ -17,7 +18,7 @@ module Ucenter
 
       def check_login(username, password, is_uid = FALSE)
         user = get_user(username, is_uid)
-        if user['username'].nil?
+        if user.nil? or user['username'].nil?
           return [-1,nil]
         elsif user['password'] != md5("#{md5(password)}#{user['salt']}")
           return [-2,nil]
@@ -25,6 +26,45 @@ module Ucenter
         [user['uid'],user]
       end
 
+      def check_username(username)
+        len = username.bytesize
+        return FALSE if len > 15 or len < 3 or !( /\s+|^c:\\con\\con|\[%,\*\"\s\<\>\&\]|\xA1\xA1|\xAC\xA3|^Guest|^\xD3\xCE\xBF\xCD|\xB9\x43\xAB\xC8/is =~ username).nil?
+        TRUE
+      end
+
+      def check_email_format(email)
+        email.bytesize > 6 and !(/^[\w\-\.]+@[\w\-\.]+(\.\w+)+$/ =~ email).nil?
+      end
+
+      def check_email_access(email)
+        # TODO: 验证email权限
+        TRUE
+      end
+
+      def check_email_exist(email, username = '')
+        username = db_client.escape(username)
+        email = db_client.escape(email)
+        sql_add = username != '' ? "AND username<>'#{username}'" : '';
+        db_client.query("SELECT email FROM  #{Ucenter::Config.uc_dbtablepre}members WHERE email='#{email}' #{sql_add}").to_a[0]
+      end
+
+      def check_mergeuser(username)
+        username = db_client.escape(username)
+        db_client.query("SELECT count(*) FROM #{Ucenter::Config.uc_dbtablepre}mergemembers WHERE appid='#{Ucenter::Config.app_id}' AND username='#{username}'").to_a[0]
+      end
+
+      def add_user
+        # TODO: 注册
+      end
+
+      def edit_user
+        # TODO: 修改
+      end
+
+      def delete_user
+        # TODO: 删除
+      end
+
       protected
       def get_user_by_username(username)
         db_client.query("SELECT * FROM #{Ucenter::Config.uc_dbtablepre}members WHERE username='#{username}'").to_a[0]

data/lib/ucenter/tools/base.rb

@@ -0,0 +1,18 @@
+module Ucenter
+  module Tools
+    # The Base class of API
+    class Base
+      def initialize(client)
+        @client = client
+      end
+
+      def get(path, opts={}, &block)
+        request(:get, path, opts, &block)
+      end
+
+      def post(path, opts={}, &block)
+        request(:post, path, opts, &block)
+      end
+    end
+  end
+end

data/lib/ucenter/tools/php.rb

@@ -0,0 +1,317 @@
+#!/usr/bin/env ruby
+# Copyright (c) 2003-2009 Thomas Hurst <tom@hur.st>
+#
+# Permission is hereby granted, free of charge, to any person obtaining a copy
+# of this software and associated documentation files (the "Software"), to deal
+# in the Software without restriction, including without limitation the rights
+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+# copies of the Software, and to permit persons to whom the Software is
+# furnished to do so, subject to the following conditions:
+#
+# The above copyright notice and this permission notice shall be included in
+# all copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+# SOFTWARE.
+
+# PHP serialize() and unserialize() workalikes
+#
+# Release History:
+#  1.0.0 - 2003-06-02 - First release.
+#  1.0.1 - 2003-06-16 - Minor bugfixes.
+#  1.0.2 - 2004-09-17 - Switch all {}'s to explicit Hash.new's.
+#  1.1.0 - 2009-04-01 - Pass assoc to recursive calls (thanks to Edward Speyer).
+#                     - Serialize Symbol like String.
+#                     - Add testsuite.
+#                     - Instantiate auto-generated Structs properly (thanks
+#                       to Philip Hallstrom).
+#                     - Unserialize arrays properly in assoc mode.
+#                     - Add PHP session support (thanks to TJ Vanderpoel).
+#                     - Release as tarball and gem.
+#
+# See http://www.php.net/serialize and http://www.php.net/unserialize for
+# details on the PHP side of all this.
+module Ucenter
+  module Tools
+# string = PHP.serialize(mixed var[, bool assoc])
+#
+# Returns a string representing the argument in a form PHP.unserialize
+# and PHP's unserialize() should both be able to load.
+#
+# Array, Hash, Fixnum, Float, True/FalseClass, NilClass, String and Struct
+# are supported; as are objects which support the to_assoc method, which
+# returns an array of the form [['attr_name', 'value']..].  Anything else
+# will raise a TypeError.
+#
+# If 'assoc' is specified, Array's who's first element is a two value
+# array will be assumed to be an associative array, and will be serialized
+# as a PHP associative array rather than a multidimensional array.
+    class PHP
+      def self.serialize(var, assoc = false) # {{{
+        s = ''
+        case var
+          when Array
+            s << "a:#{var.size}:{"
+            if assoc and var.first.is_a?(Array) and var.first.size == 2
+              var.each { |k,v|
+                s << self.serialize(k, assoc) << self.serialize(v, assoc)
+              }
+            else
+              var.each_with_index { |v,i|
+                s << "i:#{i};#{self.serialize(v, assoc)}"
+              }
+            end
+
+            s << '}'
+
+          when Hash
+            s << "a:#{var.size}:{"
+            var.each do |k,v|
+              s << "#{self.serialize(k, assoc)}#{self.serialize(v, assoc)}"
+            end
+            s << '}'
+
+          when Struct
+            # encode as Object with same name
+            s << "O:#{var.class.to_s.length}:\"#{var.class.to_s.downcase}\":#{var.members.length}:{"
+            var.members.each do |member|
+              s << "#{self.serialize(member, assoc)}#{self.serialize(var[member], assoc)}"
+            end
+            s << '}'
+
+          when String, Symbol
+            s << "s:#{var.to_s.length}:\"#{var.to_s}\";"
+
+          when Fixnum # PHP doesn't have bignums
+            s << "i:#{var};"
+
+          when Float
+            s << "d:#{var};"
+
+          when NilClass
+            s << 'N;'
+
+          when FalseClass, TrueClass
+            s << "b:#{var ? 1 :0};"
+
+          else
+            if var.respond_to?(:to_assoc)
+              v = var.to_assoc
+              # encode as Object with same name
+              s << "O:#{var.class.to_s.length}:\"#{var.class.to_s.downcase}\":#{v.length}:{"
+              v.each do |k,v|
+                s << "#{self.serialize(k.to_s, assoc)}#{self.serialize(v, assoc)}"
+              end
+              s << '}'
+            else
+              raise TypeError, "Unable to serialize type #{var.class}"
+            end
+        end
+
+        s
+      end # }}}
+
+# string = PHP.serialize_session(mixed var[, bool assoc])
+#
+# Like PHP.serialize, but only accepts a Hash or associative Array as the root
+# type.  The results are returned in PHP session format.
+      def self.serialize_session(var, assoc = false) # {{{
+        s = ''
+        case var
+          when Hash
+            var.each do |key,value|
+              if key.to_s =~ /\|/
+                raise IndexError, "Top level names may not contain pipes"
+              end
+              s << "#{key}|#{self.serialize(value, assoc)}"
+            end
+          when Array
+            var.each do |x|
+              case x
+                when Array
+                  if x.size == 2
+                    s << "#{x[0]}|#{self.serialize(x[1])}"
+                  else
+                    raise TypeError, "Array is not associative"
+                  end
+              end
+            end
+          else
+            raise TypeError, "Unable to serialize sessions with top level types other than Hash and associative Array"
+        end
+        s
+      end # }}}
+
+# mixed = PHP.unserialize(string serialized, [hash classmap, [bool assoc]])
+#
+# Returns an object containing the reconstituted data from serialized.
+#
+# If a PHP array (associative; like an ordered hash) is encountered, it
+# scans the keys; if they're all incrementing integers counting from 0,
+# it's unserialized as an Array, otherwise it's unserialized as a Hash.
+# Note: this will lose ordering.  To avoid this, specify assoc=true,
+# and it will be unserialized as an associative array: [[key,value],...]
+#
+# If a serialized object is encountered, the hash 'classmap' is searched for
+# the class name (as a symbol).  Since PHP classnames are not case-preserving,
+# this *must* be a .capitalize()d representation.  The value is expected
+# to be the class itself; i.e. something you could call .new on.
+#
+# If it's not found in 'classmap', the current constant namespace is searched,
+# and failing that, a new Struct(classname) is generated, with the arguments
+# for .new specified in the same order PHP provided; since PHP uses hashes
+# to represent attributes, this should be the same order they're specified
+# in PHP, but this is untested.
+#
+# each serialized attribute is sent to the new object using the respective
+# {attribute}=() method; you'll get a NameError if the method doesn't exist.
+#
+# Array, Hash, Fixnum, Float, True/FalseClass, NilClass and String should
+# be returned identically (i.e. foo == PHP.unserialize(PHP.serialize(foo))
+# for these types); Struct should be too, provided it's in the namespace
+# Module.const_get within unserialize() can see, or you gave it the same
+# name in the Struct.new(<structname>), otherwise you should provide it in
+# classmap.
+#
+# Note: StringIO is required for unserialize(); it's loaded as needed
+      def self.unserialize(string, classmap = nil, assoc = false) # {{{
+        if classmap == true or classmap == false
+          assoc = classmap
+          classmap = {}
+        end
+        classmap ||= {}
+
+        require 'stringio'
+        string = StringIO.new(string)
+        def string.read_until(char)
+          val = ''
+          while (c = self.read(1)) != char
+            val << c
+          end
+          val
+        end
+
+        if string.string =~ /^(\w+)\|/ # session_name|serialized_data
+          ret = Hash.new
+          loop do
+            if string.string[string.pos, 32] =~ /^(\w+)\|/
+              string.pos += $&.size
+              ret[$1] = self.do_unserialize(string, classmap, assoc)
+            else
+              break
+            end
+          end
+          ret
+        else
+          self.do_unserialize(string, classmap, assoc)
+        end
+      end
+
+      private
+      def self.do_unserialize(string, classmap, assoc)
+        val = nil
+        # determine a type
+        type = string.read(2)[0,1]
+        case type
+          when 'a' # associative array, a:length:{[index][value]...}
+            count = string.read_until('{').to_i
+            val = vals = Array.new
+            count.times do |i|
+              vals << [do_unserialize(string, classmap, assoc), do_unserialize(string, classmap, assoc)]
+            end
+            string.read(1) # skip the ending }
+
+            # now, we have an associative array, let's clean it up a bit...
+            # arrays have all numeric indexes, in order; otherwise we assume a hash
+            array = true
+            i = 0
+            vals.each do |key,value|
+              if key != i # wrong index -> assume hash
+                array = false
+                break
+              end
+              i += 1
+            end
+
+            if array
+              vals.collect! do |key,value|
+                value
+              end
+            else
+              if assoc
+                val = vals.map {|v| v }
+              else
+                val = Hash.new
+                vals.each do |key,value|
+                  val[key] = value
+                end
+              end
+            end
+
+          when 'O' # object, O:length:"class":length:{[attribute][value]...}
+            # class name (lowercase in PHP, grr)
+            len = string.read_until(':').to_i + 3 # quotes, seperator
+            klass = string.read(len)[1...-2].capitalize.intern # read it, kill useless quotes
+
+            # read the attributes
+            attrs = []
+            len = string.read_until('{').to_i
+
+            len.times do
+              attr = (do_unserialize(string, classmap, assoc))
+              attrs << [attr.intern, (attr << '=').intern, do_unserialize(string, classmap, assoc)]
+            end
+            string.read(1)
+
+            val = nil
+            # See if we need to map to a particular object
+            if classmap.has_key?(klass)
+              val = classmap[klass].new
+            elsif Struct.const_defined?(klass) # Nope; see if there's a Struct
+              classmap[klass] = val = Struct.const_get(klass)
+              val = val.new
+            else # Nope; see if there's a Constant
+              begin
+                classmap[klass] = val = Module.const_get(klass)
+
+                val = val.new
+              rescue NameError # Nope; make a new Struct
+                classmap[klass] = Struct.new(klass.to_s, *attrs.collect { |v| v[0].to_s })
+                val = val.new
+              end
+            end
+
+            attrs.each do |attr,attrassign,v|
+              val.__send__(attrassign, v)
+            end
+
+          when 's' # string, s:length:"data";
+            len = string.read_until(':').to_i + 3 # quotes, separator
+            val = string.read(len)[1...-2] # read it, kill useless quotes
+
+          when 'i' # integer, i:123
+            val = string.read_until(';').to_i
+
+          when 'd' # double (float), d:1.23
+            val = string.read_until(';').to_f
+
+          when 'N' # NULL, N;
+            val = nil
+
+          when 'b' # bool, b:0 or 1
+            val = (string.read(2)[0] == ?1 ? true : false)
+
+          else
+            raise TypeError, "Unable to unserialize type '#{type}'"
+        end
+
+        val
+      end # }}}
+    end
+  end
+end

data/lib/ucenter/{interface/utility.rb → tools/url.rb}

@@ -1,6 +1,6 @@
 module Ucenter
-  module Interface
-    class Utility < Base
+  module Tools
+    class Url < Base
       def explain_query(query_params)
         query_params = '' if query_params === {}
         # systemname=cets&responsible=sj ==> {"systemname"=>"cets","responsible"=>"sj"}

data/lib/ucenter/{interface → tools}/xml.rb

@@ -1,5 +1,5 @@
 module Ucenter
-  module Interface
+  module Tools
     class Xml < Base
       def parse body
         reader = Nokogiri::XML::Reader(body)

data/lib/ucenter/utility.rb

@@ -0,0 +1,12 @@
+module Ucenter
+  class Utility
+    def url
+      @url ||= Ucenter::Tools::Url.new(self)
+    end
+
+    def xml
+      @xml ||= Ucenter::Tools::Xml.new(self)
+    end
+
+  end
+end

data/lib/ucenter/version.rb

@@ -1,3 +1,3 @@
 module Ucenter
-  VERSION = "0.0.3"
+  VERSION = "0.1.1"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ucenter
 version: !ruby/object:Gem::Version
-  version: 0.0.3
+  version: 0.1.1
 platform: ruby
 authors:
 - Willin Wang
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-08-27 00:00:00.000000000 Z
+date: 2014-08-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -80,11 +80,15 @@ files:
 - lib/ucenter.rb
 - lib/ucenter/client.rb
 - lib/ucenter/config.rb
+- lib/ucenter/interface/app.rb
 - lib/ucenter/interface/authcode.rb
 - lib/ucenter/interface/base.rb
 - lib/ucenter/interface/user.rb
-- lib/ucenter/interface/utility.rb
-- lib/ucenter/interface/xml.rb
+- lib/ucenter/tools/base.rb
+- lib/ucenter/tools/php.rb
+- lib/ucenter/tools/url.rb
+- lib/ucenter/tools/xml.rb
+- lib/ucenter/utility.rb
 - lib/ucenter/version.rb
 - ucenter.gemspec
 homepage: https://github.com/willin/ucenter