web_authn 0.6.1 → 0.6.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ed4c84df02f2d9399a21ea886d8b2850ed5ba1f68a6aee3d1f97aba2978ccf05
-  data.tar.gz: ea5b30178c0b070324f99be63a7ecdfc617fd2453319333abae3bf443c16dc3f
+  metadata.gz: e9e2c2102ac9f08f68d52d497ed0e1c45c8d034a60460e5bb797165a00d19817
+  data.tar.gz: fd640acbc0889be33315d93e0af526ae90388827eff45bb5ff3350551beb2713
 SHA512:
-  metadata.gz: c3d70d2a36b1a5dd0c5f2ea27379593f195a130d5a09f2a667c2bcf7be619639794cddf36432e7c51aea0fed9d41cc148d4572b120aa12fd0f85fe0b82a1955c
-  data.tar.gz: d855274d4a256b9b0b50f3be4b8296be7be9c3b35056be6ab45f8bb3fb6989111c95eef0a47825b766e794e588a573e91a8cfb49c2d53b5cf853080fc503aa25
+  metadata.gz: 4ce4d9b16ce2b4f439d101c62dbf5e5d27113699ddd50041b374ab1267f62c0fa91d82bf9c118bfebc892e0d2c3800961747a31b58e9d4ae41227ca437e21c17
+  data.tar.gz: 1ce6aa45261bc972d73bb5e7f749c61290559c1c6912340dd765147f55fcd4e0fbe1e2e1c0f190af2a84f04b1a11fc1124ebe83263325703d31efe119776178b

data/.github/FUNDING.yml

@@ -0,0 +1,3 @@
+# These are supported funding model platforms
+
+github: nov

data/.github/workflows/spec.yml

@@ -0,0 +1,30 @@
+name: Spec
+
+on:
+  push:
+  pull_request:
+
+permissions:
+  contents: read
+
+jobs:
+  spec:
+    strategy:
+      matrix:
+        os: ['ubuntu-20.04']
+        ruby-version: ['2.6', '2.7', '3.0', '3.1']
+        # ubuntu 22.04 only supports ssl 3 and thus only ruby 3.1
+        include:
+        - os: 'ubuntu-22.04'
+          ruby-version: '3.1'
+    runs-on: ${{ matrix.os }}
+
+    steps:
+    - uses: actions/checkout@v3
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        ruby-version: ${{ matrix.ruby-version }}
+        bundler-cache: true
+    - name: Run Specs
+      run: bundle exec rake spec

data/README.md

@@ -2,8 +2,6 @@
 
 W3C Web Authentication API (a.k.a. WebAuthN / FIDO 2.0) RP library in Ruby
 
-[![Build Status](https://secure.travis-ci.org/nov/web_authn.png)](http://travis-ci.org/nov/web_authn)
-
 ## Installation
 
 Add this line to your application's Gemfile:

data/VERSION

@@ -1 +1 @@
-0.6.1
+0.6.3

data/lib/web_authn/attestation_statement/packed.rb

@@ -27,7 +27,7 @@ module WebAuthn
           OpenSSL::Digest::SHA256.digest(client_data_json.raw)
         ].join
 
-        if self_issued? && authenticator_data.attested_credential_data.anonymous?
+        if self_issued?
           public_cose_key = authenticator_data.attested_credential_data.public_cose_key
           unless alg == public_cose_key.alg
             raise InvalidAttestation, 'Invalid Packed Self Attestation: alg'

data/lib/web_authn/authenticator_data/flags.rb

@@ -1,15 +1,17 @@
 module WebAuthn
   class AuthenticatorData
     class Flags
-      _flags_ = [:up, :uv, :at, :ex]
+      _flags_ = [:up, :uv, :be, :bs, :at, :ex]
       attr_accessor *_flags_
       _flags_.each do |flag|
         alias_method :"#{flag}?", flag
       end
 
-      def initialize(up:, uv:, at:, ex:)
+      def initialize(up:, uv:, be:, bs:, at:, ex:)
         self.up = up
         self.uv = uv
+        self.be = be
+        self.bs = bs
         self.at = at
         self.ex = ex
       end
@@ -17,6 +19,8 @@ module WebAuthn
       def ==(target)
         up == target.up &&
         uv == target.uv &&
+        be == target.be &&
+        bs == target.bs &&
         at == target.at &&
         ex == target.ex
       end
@@ -27,8 +31,10 @@ module WebAuthn
           new(
             up: bit_array[0] == 1,
             uv: bit_array[2] == 1,
+            be: bit_array[4] == 1,
+            bs: bit_array[5] == 1,
             at: bit_array[6] == 1,
-            ex: bit_array[7] == 1
+            ex: bit_array[7] == 1,
           )
         end
       end

data/spec/authenticator_data/flags_spec.rb

@@ -6,6 +6,8 @@ RSpec.describe WebAuthn::AuthenticatorData::Flags do
       let(:bits) { '00000000' }
       its(:up?) { should == false }
       its(:uv?) { should == false }
+      its(:be?) { should == false }
+      its(:bs?) { should == false }
       its(:at?) { should == false }
       its(:ex?) { should == false }
     end
@@ -14,6 +16,8 @@ RSpec.describe WebAuthn::AuthenticatorData::Flags do
       let(:bits) { '10000000' }
       its(:up?) { should == true }
       its(:uv?) { should == false }
+      its(:be?) { should == false }
+      its(:bs?) { should == false }
       its(:at?) { should == false }
       its(:ex?) { should == false }
     end
@@ -22,6 +26,8 @@ RSpec.describe WebAuthn::AuthenticatorData::Flags do
       let(:bits) { '00100000' }
       its(:up?) { should == false }
       its(:uv?) { should == true }
+      its(:be?) { should == false }
+      its(:bs?) { should == false }
       its(:at?) { should == false }
       its(:ex?) { should == false }
     end
@@ -30,6 +36,8 @@ RSpec.describe WebAuthn::AuthenticatorData::Flags do
       let(:bits) { '00000010' }
       its(:up?) { should == false }
       its(:uv?) { should == false }
+      its(:be?) { should == false }
+      its(:bs?) { should == false }
       its(:at?) { should == true }
       its(:ex?) { should == false }
     end
@@ -38,6 +46,8 @@ RSpec.describe WebAuthn::AuthenticatorData::Flags do
       let(:bits) { '00000001' }
       its(:up?) { should == false }
       its(:uv?) { should == false }
+      its(:be?) { should == false }
+      its(:bs?) { should == false }
       its(:at?) { should == false }
       its(:ex?) { should == true }
     end

data/spec/context/authentication_spec.rb

@@ -18,7 +18,7 @@ RSpec.describe WebAuthn::Context::Authentication do
     end
     let(:flags) do
       WebAuthn::AuthenticatorData::Flags.new(
-        up: true, uv: false, at: false, ex: false
+        up: true, uv: false, be: false, bs: false, at: false, ex: false
       )
     end
     let(:public_key) do

data/spec/context/registration_spec.rb

@@ -17,7 +17,7 @@ RSpec.describe WebAuthn::Context::Registration do
     end
     let(:flags) do
       WebAuthn::AuthenticatorData::Flags.new(
-        up: true, uv: false, at: true, ex: false
+        up: true, uv: false, be: false, bs: false, at: true, ex: false
       )
     end
     let(:public_key_pem) do

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: web_authn
 version: !ruby/object:Gem::Version
-  version: 0.6.1
+  version: 0.6.3
 platform: ruby
 authors:
 - nov matake
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-11-20 00:00:00.000000000 Z
+date: 2022-09-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: openssl
@@ -144,9 +144,10 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/FUNDING.yml"
+- ".github/workflows/spec.yml"
 - ".gitignore"
 - ".rspec"
-- ".travis.yml"
 - Gemfile
 - LICENSE.txt
 - README.md
@@ -181,7 +182,7 @@ homepage: https://github.com/nov/web_authn
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -196,8 +197,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
-signing_key: 
+rubygems_version: 3.3.3
+signing_key:
 specification_version: 4
 summary: WebAuthn RP library
 test_files:

data/.travis.yml

@@ -1,9 +0,0 @@
----
-sudo: false
-language: ruby
-cache: bundler
-rvm:
-  - 2.3.7
-  - 2.4.4
-  - 2.5.1
-before_install: gem install bundler -v 1.16.4