urlcrypt 0.1.1 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. checksums.yaml +7 -0
  2. data/README.md +6 -3
  3. data/Rakefile +1 -1
  4. data/lib/URLcrypt.rb +1 -1
  5. data/test/URLcrypt_test.rb +10 -38
  6. data/test/regression_test.rb +36 -0
  7. data/test/test_helper.rb +33 -0
  8. metadata +23 -42
checksums.yaml ADDED
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA256:
3
+ metadata.gz: 43b85d8e2005d9c5fb0b2181f9865acb54c85123b9e4aeac7c7c66360aedbdfd
4
+ data.tar.gz: '008bc1517bf2fd48531d97bdfa4738520b59c855f145716238bd92edc5ba52bc'
5
+ SHA512:
6
+ metadata.gz: 9c663737786ae94458f6a28442936fd6bdcdde71bbb198d13c1693d151a028d03d647ff080ccdb2b243fa49310b6cc97b95ea305abc28fd22d46d918f10e00e0
7
+ data.tar.gz: 92567f8985d16055720cea95be351e0a675c764734ae9aba366cb85f360d763d623e44136385c09edece332765eb417f5f79be943a2046abcf466323baf6b110
data/README.md CHANGED
@@ -20,7 +20,7 @@ that doesn't have other authentication or persistence mechanisms (like cookies):
20
20
  * Links that come with an expiration date (à la S3)
21
21
  * Mini-apps that don't persist data on the server
22
22
 
23
- Works with Ruby 1.8, 1.9 and 2.0.
23
+ Works with Ruby 2.1+
24
24
 
25
25
  **Important**: As a general guideline, URL lengths shouldn't exceed about 2000
26
26
  characters in length, as URLs longer than that will not work in some browsers
@@ -29,14 +29,17 @@ with URLcrypt.
29
29
 
30
30
  **WORD OF WARNING: THERE IS NO GUARANTEE WHATSOEVER THAT THIS GEM IS ACTUALLY SECURE AND WORKS. USE AT YOUR OWN RISK.**
31
31
 
32
- URLcrypt is an extraction from [Freckle Time Tracking](http://letsfreckle.com/),
32
+ URLcrypt is an extraction from [Noko Time Tracking](https://nokotime.com),
33
33
  where it is used to generate URLs for dynamically generated images in emails.
34
34
 
35
35
  Patches are welcome; please include tests!
36
36
 
37
37
  ## Installation
38
38
 
39
- Add `urlcrypt` to your Gemfile.
39
+ Add to your Gemfile:
40
+ ```ruby
41
+ gem 'urlcrypt', '~> 0.1.1', require: 'URLcrypt'
42
+ ```
40
43
 
41
44
  ## Example
42
45
 
data/Rakefile CHANGED
@@ -38,7 +38,7 @@ gemspec = Gem::Specification.new do |s|
38
38
  s.require_paths << 'lib'
39
39
  s.requirements << 'none'
40
40
  s.summary = "Securely encode and decode short pieces of arbitrary binary data in URLs."
41
- s.version = "0.1.1"
41
+ s.version = "0.1.2"
42
42
  end
43
43
 
44
44
  Gem::PackageTask.new(gemspec) do |pkg|
data/lib/URLcrypt.rb CHANGED
@@ -72,7 +72,7 @@ module URLcrypt
72
72
  def self.cipher(mode)
73
73
  cipher = OpenSSL::Cipher.new('aes-256-cbc')
74
74
  cipher.send(mode)
75
- cipher.key = @key
75
+ cipher.key = @key.byteslice(0,cipher.key_len)
76
76
  cipher
77
77
  end
78
78
 
data/test/URLcrypt_test.rb CHANGED
@@ -1,37 +1,7 @@
1
1
  # encoding: utf-8
2
- require 'bundler'
3
- Bundler.require(:default, :test)
4
-
5
- require 'coveralls'
6
- Coveralls.wear!
7
-
8
- require 'test/unit'
9
-
10
- class TestURLcrypt < Test::Unit::TestCase
11
-
12
- require 'URLcrypt'
13
-
14
- def assert_bytes_equal(string1, string2)
15
- bytes1 = string1.bytes.to_a.join(':')
16
- bytes2 = string2.bytes.to_a.join(':')
17
- assert_equal(bytes1, bytes2)
18
- end
19
-
20
- def assert_decoding(encoded, plain)
21
- decoded = URLcrypt.decode(encoded)
22
- assert_bytes_equal(plain, decoded)
23
- end
24
-
25
- def assert_encoding(encoded, plain)
26
- actual = URLcrypt.encode(plain)
27
- assert_bytes_equal(encoded, actual)
28
- end
29
-
30
- def assert_encode_and_decode(encoded, plain)
31
- assert_encoding(encoded, plain)
32
- assert_decoding(encoded, plain)
33
- end
2
+ require 'test_helper'
34
3
 
4
+ class TestURLcrypt < TestClass
35
5
  def test_empty_string
36
6
  assert_encode_and_decode('', '')
37
7
  end
@@ -41,11 +11,11 @@ class TestURLcrypt < Test::Unit::TestCase
41
11
  '111gc86f4nxw5zj1b3qmhpb14n5h25l4m7111',
42
12
  "\0\0awesome \n ü string\0\0")
43
13
  end
44
-
14
+
45
15
  def test_invalid_encoding
46
16
  assert_decoding('ZZZZZ', '')
47
17
  end
48
-
18
+
49
19
  def test_arbitrary_byte_strings
50
20
  0.step(1500,17) do |n|
51
21
  original = (0..n).map{rand(256).chr}.join
@@ -55,10 +25,12 @@ class TestURLcrypt < Test::Unit::TestCase
55
25
  end
56
26
 
57
27
  def test_encryption
58
- # this key was generated via rake secret in a rails app, the pack() converts it into a byte array
59
- URLcrypt::key =
60
- ['d25883a27b9a639da85ea7e159b661218799c9efa63069fac13a6778c954fb6d721968887a19bdb01af8f59eb5a90d256bd9903355c20b0b4b39bf4048b9b17b'].pack('H*')
61
-
28
+ # pack() converts this secret into a byte array
29
+ secret = ['d25883a27b9a639da85ea7e159b661218799c9efa63069fac13a6778c954fb6d'].pack('H*')
30
+ URLcrypt::key = secret
31
+
32
+ assert_equal OpenSSL::Cipher.new('aes-256-cbc').key_len, secret.bytesize
33
+
62
34
  original = "hello world!"
63
35
  encrypted = URLcrypt::encrypt(original)
64
36
  assert_equal(URLcrypt::decrypt(encrypted), original)
data/test/regression_test.rb ADDED
@@ -0,0 +1,36 @@
1
+ # encoding: utf-8
2
+ class URLcryptRegressionTest < TestClass
3
+ def test_encryption_and_decryption
4
+ original = '{"some":"json_data","token":"dfsfsdfsdf"}'
5
+ encrypted = URLcrypt.encrypt(original)
6
+
7
+ encrypted = URLcrypt::encrypt(original)
8
+ assert_equal(URLcrypt::decrypt(encrypted), original)
9
+ end
10
+
11
+ def test_encryption_with_too_long_key
12
+ # this key was generated via rake secret in a rails app, the pack() converts it into a byte array
13
+ secret = ['d25883a27b9a639da85ea7e159b661218799c9efa63069fac13a6778c954fb6d721968887a19bdb01af8f59eb5a90d256bd9903355c20b0b4b39bf4048b9b17b'].pack('H*')
14
+ URLcrypt::key = secret
15
+
16
+ assert OpenSSL::Cipher.new('aes-256-cbc').key_len < secret.bytesize
17
+
18
+ original = "hello world!"
19
+ encrypted = URLcrypt::encrypt(original)
20
+ assert_equal(URLcrypt::decrypt(encrypted), original)
21
+ end
22
+
23
+ def test_encryption_and_decryption_with_too_long_key
24
+ # this key was generated via rake secret in a rails app, the pack() converts it into a byte array
25
+ secret = ['d25883a27b9a639da85ea7e159b661218799c9efa63069fac13a6778c954fb6d721968887a19bdb01af8f59eb5a90d256bd9903355c20b0b4b39bf4048b9b17b'].pack('H*')
26
+ URLcrypt::key = secret
27
+
28
+ assert OpenSSL::Cipher.new('aes-256-cbc').key_len < secret.bytesize
29
+
30
+ original = '{"some":"json_data","token":"dfsfsdfsdf"}'
31
+ encrypted = URLcrypt.encrypt(original)
32
+
33
+ encrypted = URLcrypt::encrypt(original)
34
+ assert_equal(URLcrypt::decrypt(encrypted), original)
35
+ end
36
+ end
data/test/test_helper.rb ADDED
@@ -0,0 +1,33 @@
1
+ # encoding: utf-8
2
+ require 'bundler'
3
+ Bundler.require(:default, :test)
4
+
5
+ require 'coveralls'
6
+ Coveralls.wear!
7
+
8
+ require 'test/unit'
9
+
10
+ class TestClass < Test::Unit::TestCase
11
+ require 'URLcrypt'
12
+
13
+ def assert_bytes_equal(string1, string2)
14
+ bytes1 = string1.bytes.to_a.join(':')
15
+ bytes2 = string2.bytes.to_a.join(':')
16
+ assert_equal(bytes1, bytes2)
17
+ end
18
+
19
+ def assert_decoding(encoded, plain)
20
+ decoded = URLcrypt.decode(encoded)
21
+ assert_bytes_equal(plain, decoded)
22
+ end
23
+
24
+ def assert_encoding(encoded, plain)
25
+ actual = URLcrypt.encode(plain)
26
+ assert_bytes_equal(encoded, actual)
27
+ end
28
+
29
+ def assert_encode_and_decode(encoded, plain)
30
+ assert_encoding(encoded, plain)
31
+ assert_decoding(encoded, plain)
32
+ end
33
+ end
metadata CHANGED
@@ -1,70 +1,51 @@
1
- --- !ruby/object:Gem::Specification
1
+ --- !ruby/object:Gem::Specification
2
2
  name: urlcrypt
3
- version: !ruby/object:Gem::Version
4
- hash: 25
5
- prerelease:
6
- segments:
7
- - 0
8
- - 1
9
- - 1
10
- version: 0.1.1
3
+ version: !ruby/object:Gem::Version
4
+ version: 0.1.2
11
5
  platform: ruby
12
- authors:
6
+ authors:
13
7
  - Thomas Fuchs
14
8
  autorequire:
15
9
  bindir: bin
16
10
  cert_chain: []
17
-
18
- date: 2015-03-18 00:00:00 Z
11
+ date: 2020-11-02 00:00:00.000000000 Z
19
12
  dependencies: []
20
-
21
13
  description:
22
14
  email: thomas@slash7.com
23
15
  executables: []
24
-
25
16
  extensions: []
26
-
27
- extra_rdoc_files:
17
+ extra_rdoc_files:
18
+ - README.md
19
+ files:
28
20
  - README.md
29
- files:
30
21
  - Rakefile
31
22
  - config/environment.rb
32
23
  - lib/URLcrypt.rb
33
24
  - test/URLcrypt_test.rb
34
- - README.md
25
+ - test/regression_test.rb
26
+ - test/test_helper.rb
35
27
  homepage:
36
28
  licenses: []
37
-
29
+ metadata: {}
38
30
  post_install_message:
39
31
  rdoc_options: []
40
-
41
- require_paths:
32
+ require_paths:
42
33
  - lib
43
34
  - lib
44
- required_ruby_version: !ruby/object:Gem::Requirement
45
- none: false
46
- requirements:
35
+ required_ruby_version: !ruby/object:Gem::Requirement
36
+ requirements:
47
37
  - - ">="
48
- - !ruby/object:Gem::Version
49
- hash: 3
50
- segments:
51
- - 0
52
- version: "0"
53
- required_rubygems_version: !ruby/object:Gem::Requirement
54
- none: false
55
- requirements:
38
+ - !ruby/object:Gem::Version
39
+ version: '0'
40
+ required_rubygems_version: !ruby/object:Gem::Requirement
41
+ requirements:
56
42
  - - ">="
57
- - !ruby/object:Gem::Version
58
- hash: 3
59
- segments:
60
- - 0
61
- version: "0"
62
- requirements:
43
+ - !ruby/object:Gem::Version
44
+ version: '0'
45
+ requirements:
63
46
  - none
64
- rubyforge_project:
65
- rubygems_version: 1.8.24
47
+ rubygems_version: 3.1.2
66
48
  signing_key:
67
- specification_version: 3
49
+ specification_version: 4
68
50
  summary: Securely encode and decode short pieces of arbitrary binary data in URLs.
69
51
  test_files: []
70
-