RubyGems - vidibus-secure - Versions diffs - 0.1.0 → 0.1.1 - Mend

vidibus-secure 0.1.0 → 0.1.1

Files changed (15) hide show

data/README.md +27 -0
data/lib/vidibus/secure.rb +1 -1
data/lib/vidibus/secure/version.rb +1 -1
metadata +10 -20
data/.bundle/config +0 -2
data/.gitignore +0 -6
data/.rspec +0 -2
data/.travis.yml +0 -1
data/Gemfile +0 -4
data/README.rdoc +0 -45
data/spec/spec_helper.rb +0 -21
data/spec/vidibus/secure/extensions/controller_spec.rb +0 -65
data/spec/vidibus/secure/mongoid_spec.rb +0 -89
data/spec/vidibus/secure_spec.rb +0 -368
data/vidibus-secure.gemspec +0 -37

data/README.md ADDED Viewed

@@ -0,0 +1,27 @@
+# Vidibus::Secure [![](http://travis-ci.org/vidibus/vidibus-secure.png)](http://travis-ci.org/vidibus/vidibus-secure) [![](http://stillmaintained.com/vidibus/vidibus-secure.png)](http://stillmaintained.com/vidibus/vidibus-secure)
+Allows encryption and signing of requests and storing encrypted data within Mongoid documents.
+This gem is part of [Vidibus](http://vidibus.org), an open source toolset for building distributed (video) applications.
+## Installation
+Add `gem "vidibus-secure"` to your Gemfile. Then call `bundle install` on your console.
+If you want to use Vidibus::Secure::Mongoid on your models, you should generate an initializer to set an unique encryption key by calling `rails generate vidibus_secure_key`, also on your console.
+## Usage
+TODO
+## TODO
+* Documentation
+## Copyright
+&copy; 2010-2011 Andre Pankratz. See LICENSE for details.

data/lib/vidibus/secure.rb CHANGED Viewed

@@ -145,7 +145,7 @@ module Vidibus
       def params_identifier(params, level = 1)
         array = []
         for key, value in params
-          if [Array, Hash].include?(value.class)
+          if value.is_a?(Array) or value.is_a?(Hash)
             value = params_identifier(value, level + 1)
           end
           array << "#{level}:#{key}:#{value}"

data/lib/vidibus/secure/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Vidibus
   module Secure
-    VERSION = "0.1.0"
+    VERSION = "0.1.1"
   end
 end

metadata CHANGED Viewed

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: vidibus-secure
 version: !ruby/object:Gem::Version
-  hash: 27
+  hash: 25
   prerelease:
   segments:
   - 0
   - 1
-  - 0
-  version: 0.1.0
+  - 1
+  version: 0.1.1
 platform: ruby
 authors:
 - Andre Pankratz
@@ -15,7 +15,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2011-07-09 00:00:00 +02:00
+date: 2011-07-14 00:00:00 +02:00
 default_executable:
 dependencies:
 - !ruby/object:Gem::Dependency
@@ -199,26 +199,16 @@ extensions: []
 extra_rdoc_files: []
 files:
-- .bundle/config
-- .gitignore
-- .rspec
-- .travis.yml
-- Gemfile
-- LICENSE
-- README.rdoc
-- Rakefile
 - lib/generators/vidibus_secure_key/vidibus_secure_key_generator.rb
-- lib/vidibus-secure.rb
-- lib/vidibus/secure.rb
-- lib/vidibus/secure/extensions.rb
 - lib/vidibus/secure/extensions/controller.rb
+- lib/vidibus/secure/extensions.rb
 - lib/vidibus/secure/mongoid.rb
 - lib/vidibus/secure/version.rb
-- spec/spec_helper.rb
-- spec/vidibus/secure/extensions/controller_spec.rb
-- spec/vidibus/secure/mongoid_spec.rb
-- spec/vidibus/secure_spec.rb
-- vidibus-secure.gemspec
+- lib/vidibus/secure.rb
+- lib/vidibus-secure.rb
+- LICENSE
+- README.md
+- Rakefile
 has_rdoc: true
 homepage: https://github.com/vidibus/vidibus-secure
 licenses: []

data/.bundle/config DELETED Viewed

	@@ -1,2 +0,0 @@
1	- ---
2	- BUNDLE_DISABLE_SHARED_GEMS: "1"

data/.gitignore DELETED Viewed

@@ -1,6 +0,0 @@
-pkg/*
-Gemfile.lock
-*.gem
-.bundle
-rdoc
-coverage

data/.rspec DELETED Viewed

	@@ -1,2 +0,0 @@
1	- --colour
2	- --format nested

data/.travis.yml DELETED Viewed

	@@ -1 +0,0 @@
1	- script: "bundle exec rspec spec --format progress"

data/Gemfile DELETED Viewed

@@ -1,4 +0,0 @@
-source :gemcutter
-# Specify your gem's dependencies in vidibus-resource.gemspec
-gemspec

data/README.rdoc DELETED Viewed

@@ -1,45 +0,0 @@
-= Vidibus::Secure
-Allows encryption and signing of requests and storing encrypted data within Mongoid documents.
-This gem is part of {Vidibus}[http://vidibus.org], an open source toolset for building distributed (video) applications.
-== Compatibility
-Vidibus::Secure is tested against Ruby 1.8.7.
-http://travis-ci.org/vidibus/vidibus-secure.png  {Build History}[http://travis-ci.org/vidibus/vidibus-secure]
-== Installation
-Add the dependency to the Gemfile of your application:
-  gem "vidibus-secure"
-Then call `bundle install` on your console.
-If you want to use Vidibus::Secure::Mongoid on your models, you should generate an initializer to set an unique encryption key:
-  rails generate vidibus_secure_key
-== Usage
-TODO: Describe
-=== Usage in Mongoid model
-TODO: Describe
-== TODO
-* Documentation
-== Copyright
-Copyright (c) 2010-2011 Andre Pankratz. See LICENSE for details.

data/spec/spec_helper.rb DELETED Viewed

@@ -1,21 +0,0 @@
-$LOAD_PATH.unshift(File.dirname(__FILE__))
-$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), "..", "lib"))
-require "rubygems"
-require "mongoid"
-require "rspec"
-require "rr"
-require "vidibus-secure"
-Mongoid.configure do |config|
-  name = "vidibus-secure_test"
-  host = "localhost"
-  config.master = Mongo::Connection.new.db(name)
-end
-RSpec.configure do |config|
-  config.mock_with :rr
-  config.after :suite do
-    Mongoid.master.collections.select {|c| c.name !~ /system/ }.each(&:drop)
-  end
-end

data/spec/vidibus/secure/extensions/controller_spec.rb DELETED Viewed

@@ -1,65 +0,0 @@
-require "ostruct"
-require "spec_helper"
-require "action_controller"
-class Controller < ActionController::Base; end
-describe "Vidibus::Secure::Extensions::Controller" do
-  let(:controller) { Controller.new }
-  let(:secret) { "mysecret" }
-  before do
-    stub(controller).request do
-      @request ||= begin
-        Struct.new("Request", :protocol, :host_with_port, :fullpath, :method, :request_parameters) unless defined?(Struct::Request)
-        Struct::Request.new("http://", "vidibus.org", "/", "get", {})
-      end
-    end
-  end
-  describe "#valid_request?" do
-    it "should be available to controllers that stem from ActionController::Base" do
-      controller.should respond_to(:valid_request?)
-    end
-    it "should build URI from request object if no :uri is provided" do
-      mock(controller.request).protocol {"http://"}
-      mock(controller.request).host_with_port {"vidibus.org"}
-      mock(controller.request).fullpath {"/"}
-      controller.valid_request?(secret, :method => "get", :params => {})
-    end
-    it "should use request.method if no :method is provided" do
-      mock(controller.request).method {"get"}
-      controller.valid_request?(secret, :uri => "something", :params => {})
-    end
-    it "should use request_parameters unless params are provided" do
-      mock(controller.request).request_parameters
-      controller.valid_request?(secret, :uri => "something/?with=params", :method => "get")
-    end
-    it "should use given params" do
-      dont_allow(controller).request
-      controller.valid_request?(secret, :method => "get", :uri => "something", :params => {})
-    end
-    it "should return true for valid requests" do
-      params = {}
-      Vidibus::Secure.sign_request(:get, "http://vidibus.org/", params, secret)
-      controller.request.fullpath = "?sign=#{params[:sign]}"
-      controller.valid_request?(secret).should be_true
-    end
-    it "should use given custom params" do
-      params = { :action => "index", :controller => "application", :id => "12" }
-      Vidibus::Secure.sign_request(:get, "http://vidibus.org/", params, secret)
-      controller.valid_request?(secret, :params => params).should be_true
-    end
-    it "should call Vidibus::Secure.verify_request" do
-      mock(Vidibus::Secure).verify_request("get", "http://vidibus.org/", {}, secret)
-      controller.valid_request?(secret)
-    end
-  end
-end

data/spec/vidibus/secure/mongoid_spec.rb DELETED Viewed

@@ -1,89 +0,0 @@
-require "spec_helper"
-ENV["VIDIBUS_SECURE_KEY"] = "c4l60HC/lyerr2VEnrP7s2YAldyZGfIBePUzCl+tBsTs1EWJOc8dEJ7F2Vty7KPEeRuBWGxZHVAbku8pLo+UvXRpLcRiF7lxKiKl"
-class Model
-  include Mongoid::Document
-  include Vidibus::Secure::Mongoid
-  attr_encrypted :my_secret, :another_secret
-end
-describe "Vidibus::Secure::Mongoid" do
-  let(:model) { Model.new }
-  let(:secret) { "My name is Bond." }
-  let(:encrypted_secret) { "+PlBG1ChiqUAYMrHlJzDL4NwXHtGBIUm/KQ2ZWfwxjM=\n" }
-  it "should add a field :my_secret_encrypted" do
-    model.should respond_to(:my_secret_encrypted)
-  end
-  it "should add a setter for :my_secret" do
-    model.should respond_to(:my_secret=)
-  end
-  it "should add a getter for :my_secret" do
-    model.should respond_to(:my_secret)
-  end
-  it "should add a field :another_secret_encrypted" do
-    model.should respond_to(:another_secret_encrypted)
-  end
-  it "should add a setter for :another_secret" do
-    model.should respond_to(:another_secret=)
-  end
-  it "should add a getter for :another_secret" do
-    model.should respond_to(:another_secret)
-  end
-  describe "#my_secret=" do
-    it "should set :my_secret_encrypted" do
-      model.my_secret_encrypted.should be_nil
-      model.my_secret = "my_secret"
-      model.my_secret_encrypted.should_not be_nil
-    end
-    it "should encrypt a given value" do
-      model.my_secret = secret
-      model.my_secret_encrypted.should eql(encrypted_secret)
-    end
-    it "should be persistent" do
-      model.my_secret = secret
-      model.save!
-      model.reload
-      model.my_secret_encrypted.should eql(encrypted_secret)
-    end
-    it "should not encrypt nil" do
-      model.my_secret = nil
-      model.my_secret_encrypted.should eql(nil)
-    end
-  end
-  describe "#my_secret" do
-    it "should get :my_secret_encrypted" do
-      model.my_secret.should be_nil
-      model.my_secret_encrypted = encrypted_secret
-      model.my_secret.should_not be_nil
-    end
-    it "should decrypt value of :my_secret_encrypted" do
-      model.my_secret_encrypted = encrypted_secret
-      model.my_secret.should eql(secret)
-    end
-    it "should be persistent" do
-      model.my_secret_encrypted = encrypted_secret
-      model.save!
-      model.reload
-      model.my_secret.should eql(secret)
-    end
-    it "should not decrypt nil" do
-      model.my_secret_encrypted = nil
-      model.my_secret.should eql(nil)
-    end
-  end
-end

data/spec/vidibus/secure_spec.rb DELETED Viewed

@@ -1,368 +0,0 @@
-require "spec_helper"
-describe "Vidibus::Secure" do
-  let(:key) { "8KTbTanrBTQ5c8CjANpJQjPWcIstFxq/uFIUQBF3gRnztM565xIfe8MStVcLilbEhjYwfZiD4lFWINF22Aw8gVEbkSf2rLN0fnuO9YtNqFLQU6m/OldO5JbsBJPCwuzsPYmZ1w==" }
-  let(:data) { "My name is Bond. You know the rest." }
-  let(:data_hash) {{"name" => "James Bond"}}
-  let(:data_array) {["Bond", "James"]}
-  let(:encrypted_base64) { "hXUWa3gHRpYr/Fi2qm9xdTyZg7NSpYq8X2p1EL+/wffUg9IeIjVbSvyUYAvy\nTLbc\n" }
-  let(:encrypted_base64_array) { "pG9SNq9r2fQVxCiN8jYNciukklnZ+5YagtCE0LAj2bg=\n" }
-  let(:encrypted_base64_hash) { "kjV3/v52KcsGKoNs7zgcmHih90uvc+hP5X90s6X27GE=\n" }
-  let(:encrypted_hex) { "8575166b780746962bfc58b6aa6f71753c9983b352a58abc5f6a7510bfbfc1f7d483d21e22355b4afc94600bf24cb6dc" }
-  let(:encrypted_hex_array) { "8575166b780746962bfc58b6aa6f71753c9983b352a58abc5f6a7510bfbfc1f7d483d21e22355b4afc94600bf24cb6dc" }
-  let(:encrypted_hex_hash) { "8575166b780746962bfc58b6aa6f71753c9983b352a58abc5f6a7510bfbfc1f7d483d21e22355b4afc94600bf24cb6dc" }
-  let(:signature_base64) { "AhTlmymUI9q2bdrtJ0vLdyV8Y8eUf2U5xrzoK5PdWKQ=\n" }
-  let(:signature_hex) { "0214e59b299423dab66ddaed274bcb77257c63c7947f6539c6bce82b93dd58a4" }
-  let(:base64_format) { /([A-Z]|\+|\/)/ }
-  let(:hex_format) { /^[0-9a-f]+$/ }
-  describe ".settings" do
-    context "for :random" do
-      it "should default to a length of 50" do
-        Vidibus::Secure.settings[:random][:length].should eql(50)
-      end
-      it "should default to base64 encoding" do
-        Vidibus::Secure.settings[:random][:encoding].should eql(:base64)
-      end
-    end
-    context "for :sign" do
-      it "should default to SHA256 algorithm" do
-        Vidibus::Secure.settings[:sign][:algorithm].should eql("SHA256")
-      end
-      it "should default to hex encoding" do
-        Vidibus::Secure.settings[:sign][:encoding].should eql(:hex)
-      end
-    end
-    context "for :crypt" do
-      it "should default to AES-256-CBC algorithm" do
-        Vidibus::Secure.settings[:crypt][:algorithm].should eql("AES-256-CBC")
-      end
-      it "should default to base64 encoding" do
-        Vidibus::Secure.settings[:crypt][:encoding].should eql(:base64)
-      end
-    end
-  end
-  describe ".random" do
-    it "should create a base64 random string with a length of 50 chars" do
-      random = Vidibus::Secure.random
-      random.length.should eql(50)
-      random.should match(base64_format)
-    end
-    it "should create a hexadecimal random string with a length of 50 chars if :encoding is provided" do
-      random = Vidibus::Secure.random(:encoding => :hex)
-      random.length.should eql(50)
-      random.should match(hex_format)
-    end
-    it "should create a random string with a length of 60 chars if :length is provided" do
-      Vidibus::Secure.random(:length => 60).length.should eql(60)
-    end
-    it "should create a hexadecimal random string if settings for :random are changed" do
-      Vidibus::Secure.settings[:random][:encoding] = :hex
-      Vidibus::Secure.random.should match(hex_format)
-      Vidibus::Secure.settings[:random][:encoding] = :base64
-    end
-  end
-  describe ".sign" do
-    it "should create a hexadecimal signature of given data by default" do
-      Vidibus::Secure.sign(data, key).should eql(signature_hex)
-    end
-    it "should create a base64 signature of given data if :encoding is provided" do
-      Vidibus::Secure.sign(data, key, :encoding => :base64).should eql(signature_base64)
-    end
-    it "should create a base64 signature of given data if settings for :sign are changed" do
-      Vidibus::Secure.settings[:sign][:encoding] = :base64
-      Vidibus::Secure.sign(data, key).should eql(signature_base64)
-      Vidibus::Secure.settings[:sign][:encoding] = :hex
-    end
-    it "should raise a KeyError if given secret key is nil" do
-      expect {Vidibus::Secure.sign(data, nil)}.to raise_error(Vidibus::Secure::KeyError)
-    end
-  end
-  describe ".encrypt" do
-    it "should encrypt data as base64 string" do
-      Vidibus::Secure.encrypt(data, key).should eql(encrypted_base64)
-    end
-    it "should encrypt data as hexadecimal string if :encoding is provided" do
-      Vidibus::Secure.encrypt(data, key, :encoding => :hex).should eql(encrypted_hex)
-    end
-    it "should encrypt data as hexadecimal string if encoding settings for :crypt are set to hex" do
-      Vidibus::Secure.settings[:crypt][:encoding] = :hex
-      Vidibus::Secure.encrypt(data, key).should eql(encrypted_hex)
-      Vidibus::Secure.settings[:crypt][:encoding] = :base64
-    end
-    it "should raise an error if given secret key is nil" do
-      expect {Vidibus::Secure.sign(data, nil)}.to raise_error(Vidibus::Secure::KeyError)
-    end
-    it "should encrypt array data" do
-      Vidibus::Secure.encrypt(data_array, key).should eql(encrypted_base64_array)
-    end
-    it "should encrypt hash data" do
-      Vidibus::Secure.encrypt(data_hash, key).should eql(encrypted_base64_hash)
-    end
-  end
-  describe ".decrypt" do
-    it "should decrypt a base64 string" do
-      Vidibus::Secure.decrypt(encrypted_base64, key).should eql(data)
-    end
-    it "should decrypt array data from base64 string" do
-      Vidibus::Secure.decrypt(encrypted_base64_array, key).should eql(data_array)
-    end
-    it "should decrypt hash data from base64 string" do
-      Vidibus::Secure.decrypt(encrypted_base64_hash, key).should eql(data_hash)
-    end
-    it "should decrypt a hexadecimal string if :encoding is provided" do
-      Vidibus::Secure.decrypt(encrypted_hex, key, :encoding => :hex).should eql(data)
-    end
-    it "should decrypt a hexadecimal string if encoding settings for :crypt are set to hex" do
-      Vidibus::Secure.settings[:crypt][:encoding] = :hex
-      Vidibus::Secure.decrypt(encrypted_hex, key).should eql(data)
-      Vidibus::Secure.settings[:crypt][:encoding] = :base64
-    end
-    it "should raise a KeyError if given secret key is nil" do
-      expect {Vidibus::Secure.sign(data, nil)}.to raise_error(Vidibus::Secure::KeyError)
-    end
-  end
-  describe ".sign_request" do
-    it "should not modifiy path for POST and PUT requests" do
-      for verb in %w[post put]
-        path, params = Vidibus::Secure.sign_request(verb, "/whazzup", {}, key)
-        path.should eql("/whazzup")
-      end
-    end
-    it "should raise an InputError if given params is not a Hash" do
-      params = %w[1 2 3]
-      expect {Vidibus::Secure.sign_request(:post, "/", params, key)}.to raise_error(Vidibus::Secure::InputError, "Given params is not a Hash.")
-    end
-    context "for requests without body" do
-      it "should add signature to params, if no params are given in URI and params argument is a hash" do
-        path = "http://vidibus.org/status"
-        params = {}
-        Vidibus::Secure.sign_request(:get, path, params, key)
-        path.should eql("http://vidibus.org/status")
-        params.should eql(:sign => "09247a2534f14e57081193ef6834b08843352c796af264f77e76445472dae9ed")
-      end
-      it "should add signature to URI, if no params are given in URI and params argument nil" do
-        path = "http://vidibus.org/status"
-        params = nil
-        Vidibus::Secure.sign_request(:get, path, params, key)
-        path.should eql("http://vidibus.org/status?sign=09247a2534f14e57081193ef6834b08843352c796af264f77e76445472dae9ed")
-        params.should be_nil
-      end
-      it "should add signature to URI, if params argument is a hash, but params are also given in URI" do
-        path = "http://vidibus.org/status?feel=good"
-        params = {}
-        Vidibus::Secure.sign_request(:get, path, params, key)
-        path.should eql("http://vidibus.org/status?feel=good&sign=2be2169f27f11ccc519456887838dcbfef54eb461492d60b847d2f01adca9326")
-        params.should eql({})
-      end
-      it "should accept a custom name as signature param" do
-        path = "http://vidibus.org/status"
-        Vidibus::Secure.sign_request(:get, path, nil, key, "privado")
-        path.should eql("http://vidibus.org/status?privado=09247a2534f14e57081193ef6834b08843352c796af264f77e76445472dae9ed")
-      end
-      it "should create a signature of a given URL" do
-        path = "http://vidibus.org/"
-        Vidibus::Secure.sign_request(:get, path, nil, key)
-        path.should eql("http://vidibus.org/?sign=0ff9ec7056fd6a2b8ea1d2a1f462458719e3cf0b65485c55035ac906fd3d3368")
-      end
-      it "should create identical signatures for URLs with and without trailing slash" do
-        signature = "0ff9ec7056fd6a2b8ea1d2a1f462458719e3cf0b65485c55035ac906fd3d3368"
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org", nil, key).first.should match(signature)
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/", nil, key).first.should match(signature)
-      end
-      it "should create a signature of a given URI" do
-        path = "http://vidibus.org/status"
-        Vidibus::Secure.sign_request(:get, path, nil, key)
-        path.should eql("http://vidibus.org/status?sign=09247a2534f14e57081193ef6834b08843352c796af264f77e76445472dae9ed")
-      end
-      it "should create identical signatures for URIs with and without trailing slash" do
-        signature = "09247a2534f14e57081193ef6834b08843352c796af264f77e76445472dae9ed"
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/status", nil, key).first.should match(signature)
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/status/", nil, key).first.should match(signature)
-      end
-      it "should create a signature of URI with params" do
-        path = "http://vidibus.org/status?type=server"
-        Vidibus::Secure.sign_request(:get, path, {}, key)
-        path.should eql("http://vidibus.org/status?type=server&sign=ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0")
-      end
-      it "should create identical signatures for URIs with params with and without trailing slash" do
-        signature = "ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0"
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/status?type=server", {}, key).first.should match(signature)
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/status/?type=server", {}, key).first.should match(signature)
-      end
-      it "should replace signature in URI with params" do
-        path = "http://vidibus.org/status?interval=2&sign=something&type=server"
-        Vidibus::Secure.sign_request(:get, path, {}, key)
-        path.should eql("http://vidibus.org/status?interval=2&sign=bd66fe642c39d01005090bb9d0a7f62f5c6d563878e6397261ed12bd79bdb92d&type=server")
-      end
-      it "should replace signature in URI without other params" do
-        path = "http://vidibus.org/status?sign=something"
-        Vidibus::Secure.sign_request(:get, path, {}, key)
-        path.should eql("http://vidibus.org/status?sign=09247a2534f14e57081193ef6834b08843352c796af264f77e76445472dae9ed")
-      end
-      it "should create identical signatures for URIs with different params order" do
-        signature = "116b6628f5b79a42ea9f8eb0e7901404ff641c34baa289dc32b6e2aa57c9281d"
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/status?a=1&b=2", {}, key).first.should match(signature)
-        Vidibus::Secure.sign_request(:get, "http://vidibus.org/status/?b=2&a=1", {}, key).first.should match(signature)
-      end
-    end
-    context "for request with body" do
-      it "should create a signature of path and params" do
-        params = {:some => "thing"}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params[:sign].should eql("a41b51acf01f7207d250a0a486e60ed385050f848237251efcdb58448e57d20d")
-      end
-      it "should create a signature of path and nested params" do
-        params = {:some => {:nested => "params", :are => {:really => ["serious", "stuff"]}}}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params[:sign].should eql("3a899c65b9a68fa473e3bc3388b7656538c85498cc63cdcac59eebfe9f68ce07")
-      end
-      it "should create a different signature of path and nested params with switched keys" do
-        params = {:some => {:are => "params", :nested => {:really => ["serious", "stuff"]}}}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params[:sign].should eql("d28b073381dad3c30bc8f5ff5984d7ff29e04dd95bc9ca04cd1ac95e878e4663")
-      end
-      it "should replace existing signature" do
-        params = {:some => "thing", :sign => "something"}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params[:sign].should eql("a41b51acf01f7207d250a0a486e60ed385050f848237251efcdb58448e57d20d")
-      end
-      it "should add signature param as string if params are given as strings" do
-        params = {"some" => "thing"}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params["some"].should eql("thing")
-        params["sign"].should_not be_nil
-        params[:sign].should be_nil
-      end
-      it "should add signature param as symbol if params are given as symbols" do
-        params = {:some => "thing"}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params[:some].should eql("thing")
-        params[:sign].should_not be_nil
-        params["sign"].should be_nil
-      end
-      it "should add signature param as symbol if no params are given" do
-        params = {}
-        Vidibus::Secure.sign_request(:post, "/", params, key)
-        params[:sign].should_not be_nil
-      end
-    end
-  end
-  describe ".verify_request" do
-    it "should return true for a valid GET request" do
-      path = "http://vidibus.org/status?type=server&sign=ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0"
-      Vidibus::Secure.verify_request(:get, path, {}, key).should be_true
-    end
-    it "should return true for a valid GET request even if verb is upcase" do
-      path = "http://vidibus.org/status?type=server&sign=ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0"
-      Vidibus::Secure.verify_request("GET", path, {}, key).should be_true
-    end
-    it "should return true for a valid GET request if params are given as hash" do
-      path = "http://vidibus.org/status"
-      params = {:type => "server", :sign => "ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0"}
-      Vidibus::Secure.verify_request("GET", path, params, key).should be_true
-    end
-    it "should return false if additional params are given" do
-      path = "http://vidibus.org/status?type=server&sign=ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0"
-      Vidibus::Secure.verify_request("GET", path, { :some => "thing" }, key).should be_false
-    end
-    it "should return true for a valid POST request with params given as symbols" do
-      params = {:some => "thing", :sign => "a41b51acf01f7207d250a0a486e60ed385050f848237251efcdb58448e57d20d"}
-      Vidibus::Secure.verify_request(:post, "/", params, key).should be_true
-    end
-    it "should return true for a valid POST request with params given as string" do
-      params = {"some"=>"thing", "sign"=>"a41b51acf01f7207d250a0a486e60ed385050f848237251efcdb58448e57d20d"}
-      Vidibus::Secure.verify_request(:post, "/", params, key).should be_true
-    end
-    it "should return true for a valid POST request with nested params" do
-      params = {
-        :sign => "3a899c65b9a68fa473e3bc3388b7656538c85498cc63cdcac59eebfe9f68ce07",
-        :some => {:nested => "params", :are => {:really => ["serious", "stuff"]}}
-      }
-      Vidibus::Secure.verify_request(:post, "/", params, key).should be_true
-    end
-    it "should return false if signature is invalid" do
-      path = "http://vidibus.org/status?type=server&sign=invalid"
-      Vidibus::Secure.verify_request(:get, path, {}, key).should be_false
-    end
-    it "should return false if path does not match signature" do
-      path = "http://vidibus.org/invalid?type=server&sign=068dbf2695798e3cda2710ae34d74043653eae41d82cbbdf39edebd7e2ae9a50"
-      Vidibus::Secure.verify_request(:get, path, {}, key).should be_false
-    end
-    it "should return false if request verb does not match signature" do
-      path = "http://vidibus.org/status?type=server&sign=ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0"
-      Vidibus::Secure.verify_request(:delete, path, {}, key).should be_false
-    end
-    it "should return false if params do not match signature" do
-      params = {"sign" => "ff98a086cca8af703537afe873009f16ea5554826fa5d2665c212a13e44f7da0", "some" => "invalid"}
-      Vidibus::Secure.verify_request(:post, "/", params, key).should be_false
-    end
-    it "should return false if signature does not match params" do
-      params = {"sign" => "invalid", "some" => "thing"}
-      Vidibus::Secure.verify_request(:post, "/", params, key).should be_false
-    end
-    it "should accept nil params" do
-      expect { Vidibus::Secure.verify_request(:get, "", nil, key) }.to_not raise_error
-    end
-  end
-end

data/vidibus-secure.gemspec DELETED Viewed

@@ -1,37 +0,0 @@
-# -*- encoding: utf-8 -*-
-lib = File.expand_path("../lib/", __FILE__)
-$:.unshift lib unless $:.include?(lib)
-require "vidibus/secure/version"
-Gem::Specification.new do |s|
-  s.name        = "vidibus-secure"
-  s.version     = Vidibus::Secure::VERSION
-  s.platform    = Gem::Platform::RUBY
-  s.authors     = "Andre Pankratz"
-  s.email       = "andre@vidibus.com"
-  s.homepage    = "https://github.com/vidibus/vidibus-secure"
-  s.summary     = "Security tools for Vidibus applications"
-  s.description = "Allows encryption and signing of requests and storing encrypted data within Mongoid documents."
-  s.required_rubygems_version = ">= 1.3.6"
-  s.rubyforge_project         = "vidibus-resource"
-  s.add_dependency "rack", "~> 1.2.1"
-  s.add_dependency "mongoid", "~> 2"
-  s.add_dependency "activesupport", "~> 3"
-  s.add_dependency "json"
-  s.add_dependency "vidibus-core_extensions"
-  s.add_development_dependency "bundler", ">= 1.0.0"
-  s.add_development_dependency "rake"
-  s.add_development_dependency "rdoc"
-  s.add_development_dependency "rspec", "~> 2"
-  s.add_development_dependency "rr"
-  s.add_development_dependency "rcov"
-  s.add_development_dependency "actionpack", "~> 3"
-  s.files        = `git ls-files`.split("\n")
-  s.executables  = `git ls-files`.split("\n").map{|f| f =~ /^bin\/(.*)/ ? $1 : nil}.compact
-  s.require_path = 'lib'
-end