webauthn 0.0.0 → 0.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6e28ff07e2d21ef95903ef75e6f90afbf15001c045491eb7919c9a76219d75c1
-  data.tar.gz: 2f5412e554ee3580e6183b423982aabc2afb70ff55f6bb2ef1f614662ff1a610
+  metadata.gz: 171f428eb4d325429c9a5e94fb5c217b4449fd1cd0d337a1e826f8c63754405b
+  data.tar.gz: 0fa1366a9247171005f68fed977ad7bab8d4dbb89485a21be3a4017aa22d034f
 SHA512:
-  metadata.gz: 55e257566ed6b03d5eaee26a7042f0e8aef7c6a3031b359c8a0f2e28faae7d5cba02c941d696f11e2ca4ffdf8a11a3cc27dadd02142e58d1aedb520171436c92
-  data.tar.gz: 74ac5d43265be731182304f227cf4ef34642eddc5de54849f270f114279ced4ffe32c18e02e12b9c639edf50fb64548d6fc406408170d37c5f4994ddd3d6d2e4
+  metadata.gz: dd05fe7063e2532255cc2f8e79c5faa72a4e625f35d3e56d2a21320c0d3ce16bd21483578af8ce22d65951cee8de19c765b8245132a407d95c5b82809444f649
+  data.tar.gz: ed40d6cc3da9d6c331b95180cabefd781df08f3bba653501d6a7248cc567a82615a4fa94429e46b68e09764458af9b108a4d8bd201c721154efbaef09e89d1b0

data/.gitignore

@@ -11,3 +11,4 @@
 .rspec_status
 
 /Gemfile.lock
+/.byebug_history

data/.rubocop.yml

@@ -0,0 +1,24 @@
+AllCops:
+  TargetRubyVersion: 2.5
+  DisabledByDefault: true
+
+Bundler:
+  Enabled: true
+
+Gemspec:
+  Enabled: true
+
+Layout:
+  Enabled: true
+
+Performance:
+  Enabled: true
+
+Security:
+  Enabled: true
+
+Style/FrozenStringLiteralComment:
+  Enabled: true
+
+Style/RedundantFreeze:
+  Enabled: true

data/CHANGELOG.md

@@ -0,0 +1,13 @@
+# Changelog
+
+## [Unreleased]
+
+## [v0.1.0] - 2018-05-25
+
+### Added
+
+- `WebAuthn.credential_creation_options` to initiate registration
+- `WebAuthn::AuthenticatorAttestationResponse.valid?` can be used to validate fido-u2f attestations returned by the browser
+
+[Unreleased]: https://github.com/cedarcode/webauthn-ruby/compare/v0.1.0...HEAD/
+[v0.1.0]: https://github.com/cedarcode/webauthn-ruby/compare/v0.0.0...v0.1.0/

data/Gemfile

@@ -1,6 +1,8 @@
+# frozen_string_literal: true
+
 source "https://rubygems.org"
 
-git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
+git_source(:github) { |repo_name| "https://github.com/#{repo_name}" }
 
 # Specify your gem's dependencies in webauthn.gemspec
 gemspec

data/README.md

@@ -1,8 +1,31 @@
-# Webauthn
+# WebAuthn
 
-Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/webauthn`. To experiment with that code, run `bin/console` for an interactive prompt.
+Easily implement WebAuthn in your ruby web server
 
-TODO: Delete this and the text above, and describe your gem
+[![Gem](https://img.shields.io/gem/v/webauthn.svg?style=flat-square)](https://rubygems.org/gems/webauthn)
+[![Travis](https://img.shields.io/travis/cedarcode/webauthn-ruby.svg?style=flat-square)](https://travis-ci.org/cedarcode/webauthn-ruby)
+
+## WARNING: This gem is in the early development phase. Use on production at your own risk.
+
+## What is WebAuthn?
+
+- [WebAuthn article with Google IO 2018 talk](https://developers.google.com/web/updates/2018/05/webauthn)
+- [Web Authentication API draft article by Mozilla](https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API)
+- [W3C Draft Recommendation](https://w3c.github.io/webauthn/)
+
+## Prerequisites
+
+### User Agent compatibility
+
+So far, the only browser that have web authentication support are:
+  - Mozilla Firefox Quantum 60+ (Enabled by default).
+  - Google Chrome 65+ (Disabled by default, go to chrome://flags to enable Web Authentication API feature). Note: it is enabled by default in 67+ as stated [here](https://www.chromestatus.com/feature/5669923372138496).
+
+### Authenticator devices
+
+  These [USB keys from Yubico](https://www.yubico.com/product/security-key-by-yubico/) were used as authenticator devices during the development of this gem.
+  Firefox states ([Firefox 60 release notes](https://www.mozilla.org/en-US/firefox/60.0/releasenotes/)) they only support USB FIDO2 or FIDO U2F enabled devices in their current implementation (version 60).
+  It's up to the gem's user to verify user agent compatibility if any other devise wants to be used as the authenticator component.
 
 ## Installation
 
@@ -22,17 +45,65 @@ Or install it yourself as:
 
 ## Usage
 
-TODO: Write usage instructions here
+### Registration
+
+#### Initiation phase
+
+```ruby
+credential_creation_options = WebAuthn.credential_creation_options
+
+# Store the newly generated challenge somewhere so you can have it
+# for the validation phase.
+#
+# You can read it from the resulting options:
+credential_creation_options[:challenge]
+
+# Send `credential_creation_options` to the browser, so that they can be used
+# to call `navigator.credentials.create({ "publicKey": credentialCreationOptions })`
+```
+
+#### Validation phase
+
+```ruby
+attestation_object = "..." # As came from the browser
+client_data_json = "..." # As came from the browser
+
+attestation_response = WebAuthn::AuthenticatorAttestationResponse.new(
+  attestation_object: attestation_object,
+  client_data_json: client_data_json
+)
+
+# This value needs to match `window.location.origin` evaluated by
+# the User Agent as part of the validation phase.
+original_origin = "https://www.example.com"
+
+if attestation_response.valid?(original_challenge, original_origin)
+  # Register the new user along with it's new `credential_id` for future authentications
+  # Access the new user credential by invoking `attestation_response.credential_id`
+else
+  # Handle error
+end
+```
+
+### Authentication
+
+#### Initiation phase
+
+*Currently under development*
+
+#### Validation phase
+
+*Currently under development*
 
 ## Development
 
-After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake` to run the tests and code-style checks. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
 
 To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
 
 ## Contributing
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/webauthn.
+Bug reports and pull requests are welcome on GitHub at https://github.com/cedarcode/webauthn-ruby.
 
 ## License
 

data/Rakefile

@@ -1,6 +1,10 @@
+# frozen_string_literal: true
+
 require "bundler/gem_tasks"
 require "rspec/core/rake_task"
+require "rubocop/rake_task"
 
 RSpec::Core::RakeTask.new(:spec)
+RuboCop::RakeTask.new
 
-task :default => :spec
+task :default => [:rubocop, :spec]

data/bin/console

@@ -1,4 +1,5 @@
 #!/usr/bin/env ruby
+# frozen_string_literal: true
 
 require "bundler/setup"
 require "webauthn"

data/lib/webauthn.rb

@@ -1,5 +1,25 @@
+# frozen_string_literal: true
+
+require "webauthn/authenticator_attestation_response"
 require "webauthn/version"
 
-module Webauthn
-  # Your code goes here...
+require "securerandom"
+require "base64"
+require "json"
+
+module WebAuthn
+  ES256_ALGORITHM = { type: "public-key", alg: -7 }.freeze
+  RP_NAME = "web-server"
+  USER_ID = "1"
+  USER_NAME = "web-user"
+  CREATE_TYPE = "webauthn.create"
+
+  def self.credential_creation_options
+    {
+      challenge: Base64.urlsafe_encode64(SecureRandom.random_bytes(16)),
+      pubKeyCredParams: [ES256_ALGORITHM],
+      rp: { name: RP_NAME },
+      user: { name: USER_NAME, displayName: USER_NAME, id: Base64.urlsafe_encode64(USER_ID) }
+    }
+  end
 end

data/lib/webauthn/attestation_statement.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+module WebAuthn
+  module AttestationStatement
+    ATTESTATION_FORMAT_NONE = "none"
+    ATTESTATION_FORMAT_FIDO_U2F = "fido-u2f"
+
+    def self.from(format, statement)
+      case format
+      when ATTESTATION_FORMAT_NONE
+        require "webauthn/attestation_statement/none"
+        WebAuthn::AttestationStatement::None.new(statement)
+      when ATTESTATION_FORMAT_FIDO_U2F
+        require "webauthn/attestation_statement/fido_u2f"
+        WebAuthn::AttestationStatement::FidoU2f.new(statement)
+      else
+        raise "Unsupported attestation format '#{attestation_format}'"
+      end
+    end
+  end
+end

data/lib/webauthn/attestation_statement/base.rb

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+
+module WebAuthn
+  module AttestationStatement
+    class Base
+      def initialize(statement)
+        @statement = statement
+      end
+
+      def valid?(*args)
+        raise NotImpelementedError
+      end
+
+      private
+
+      attr_reader :statement
+    end
+  end
+end

data/lib/webauthn/attestation_statement/fido_u2f.rb

@@ -0,0 +1,61 @@
+# frozen_string_literal: true
+
+require "openssl"
+require "webauthn/attestation_statement/base"
+
+module WebAuthn
+  module AttestationStatement
+    class FidoU2f < Base
+      VALID_ATTESTATION_CERTIFICATE_COUNT = 1
+
+      def valid?(authenticator_data, client_data_hash)
+        valid_format? &&
+          valid_certificate_public_key? &&
+          valid_signature?(authenticator_data, client_data_hash)
+      end
+
+      private
+
+      def signature
+        statement["sig"]
+      end
+
+      def valid_format?
+        !!(raw_attestation_certificates && signature) &&
+          raw_attestation_certificates.length == VALID_ATTESTATION_CERTIFICATE_COUNT
+      end
+
+      def valid_certificate_public_key?
+        certificate_public_key.is_a?(OpenSSL::PKey::EC) && certificate_public_key.check_key
+      end
+
+      def certificate_public_key
+        attestation_certificate.public_key
+      end
+
+      def attestation_certificate
+        @attestation_certificate ||= OpenSSL::X509::Certificate.new(raw_attestation_certificates[0])
+      end
+
+      def raw_attestation_certificates
+        statement["x5c"]
+      end
+
+      def valid_signature?(authenticator_data, client_data_hash)
+        certificate_public_key.verify(
+          "SHA256",
+          signature,
+          verification_data(authenticator_data, client_data_hash)
+        )
+      end
+
+      def verification_data(authenticator_data, client_data_hash)
+        "\x00" +
+          authenticator_data.rp_id_hash +
+          client_data_hash +
+          authenticator_data.credential_id +
+          authenticator_data.credential_public_key
+      end
+    end
+  end
+end

data/lib/webauthn/attestation_statement/none.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+require "webauthn/attestation_statement/base"
+
+module WebAuthn
+  module AttestationStatement
+    class None < Base
+      def valid?(*args)
+        true
+      end
+    end
+  end
+end

data/lib/webauthn/authenticator_attestation_response.rb

@@ -0,0 +1,79 @@
+# frozen_string_literal: true
+
+require "cbor"
+require "uri"
+require "openssl"
+
+require "webauthn/authenticator_data"
+require "webauthn/attestation_statement"
+require "webauthn/client_data"
+
+module WebAuthn
+  class AuthenticatorAttestationResponse
+    def initialize(attestation_object:, client_data_json:)
+      @attestation_object = attestation_object
+      @client_data_json = client_data_json
+    end
+
+    def valid?(original_challenge, original_origin)
+      valid_type? &&
+        valid_challenge?(original_challenge) &&
+        valid_origin?(original_origin) &&
+        valid_rp_id?(original_origin) &&
+        authenticator_data.valid? &&
+        user_present? &&
+        attestation_statement.valid?(authenticator_data, client_data.hash)
+    end
+
+    def credential_id
+      authenticator_data.credential_id
+    end
+
+    private
+
+    attr_reader :attestation_object, :client_data_json
+
+    def valid_type?
+      client_data.type == CREATE_TYPE
+    end
+
+    def valid_challenge?(original_challenge)
+      Base64.urlsafe_decode64(client_data.challenge) == Base64.urlsafe_decode64(original_challenge)
+    end
+
+    def valid_origin?(original_origin)
+      client_data.origin == original_origin
+    end
+
+    def attestation_statement
+      @attestation_statement ||=
+        WebAuthn::AttestationStatement.from(attestation["fmt"], attestation["attStmt"])
+    end
+
+    def valid_rp_id?(original_origin)
+      domain = URI.parse(original_origin).host
+
+      OpenSSL::Digest::SHA256.digest(domain) == authenticator_data.rp_id_hash
+    end
+
+    def user_present?
+      authenticator_data.user_present?
+    end
+
+    def client_data
+      @client_data ||= WebAuthn::ClientData.new(client_data_json)
+    end
+
+    def authenticator_data
+      @authenticator_data ||= WebAuthn::AuthenticatorData.new(attestation["authData"])
+    end
+
+    def attestation_format
+      attestation["fmt"]
+    end
+
+    def attestation
+      @attestation ||= CBOR.decode(Base64.urlsafe_decode64(attestation_object))
+    end
+  end
+end

data/lib/webauthn/authenticator_data.rb

@@ -0,0 +1,82 @@
+# frozen_string_literal: true
+
+require "webauthn/authenticator_data/attested_credential_data"
+
+module WebAuthn
+  class AuthenticatorData
+    RP_ID_HASH_POSITION = 0
+
+    RP_ID_HASH_LENGTH = 32
+    FLAGS_LENGTH = 1
+    SIGN_COUNT_LENGTH = 4
+
+    USER_PRESENT_FLAG_POSITION = 0
+    ATTESTED_CREDENTIAL_DATA_INCLUDED_FLAG_POSITION = 6
+
+    def initialize(data)
+      @data = data
+    end
+
+    def valid?
+      if attested_credential_data_included?
+        data.length > base_length && attested_credential_data.valid?
+      else
+        data.length == base_length
+      end
+    end
+
+    def user_present?
+      flags[USER_PRESENT_FLAG_POSITION] == "1"
+    end
+
+    def rp_id_hash
+      @rp_id_hash ||=
+        if valid?
+          data_at(RP_ID_HASH_POSITION, RP_ID_HASH_LENGTH)
+        end
+    end
+
+    def credential_id
+      @credential_id ||= attested_credential_data.id
+    end
+
+    def credential_public_key
+      @credential_public_key ||= attested_credential_data.public_key
+    end
+
+    private
+
+    attr_reader :data
+
+    def attested_credential_data
+      @attested_credential_data ||=
+        AttestedCredentialData.new(data_at(attested_credential_data_position))
+    end
+
+    def attested_credential_data_position
+      base_length
+    end
+
+    def base_length
+      RP_ID_HASH_LENGTH + FLAGS_LENGTH + SIGN_COUNT_LENGTH
+    end
+
+    def flags
+      @flags ||= data_at(flags_position, FLAGS_LENGTH).unpack("b*").first
+    end
+
+    def flags_position
+      RP_ID_HASH_LENGTH
+    end
+
+    def attested_credential_data_included?
+      flags[ATTESTED_CREDENTIAL_DATA_INCLUDED_FLAG_POSITION] == "1"
+    end
+
+    def data_at(position, length = nil)
+      length ||= data.size - position
+
+      data[position..(position + length - 1)]
+    end
+  end
+end

data/lib/webauthn/authenticator_data/attested_credential_data.rb

@@ -0,0 +1,65 @@
+# frozen_string_literal: true
+
+require "webauthn/authenticator_data/attested_credential_data/public_key_u2f"
+
+module WebAuthn
+  class AuthenticatorData
+    class AttestedCredentialData
+      AAGUID_LENGTH = 16
+      ID_LENGTH_LENGTH = 2
+
+      UINT16_BIG_ENDIAN_FORMAT = "n*"
+
+      def initialize(data)
+        @data = data
+      end
+
+      def valid?
+        data.length >= AAGUID_LENGTH + ID_LENGTH_LENGTH && public_key.valid?
+      end
+
+      def id
+        if valid?
+          data_at(id_position, id_length)
+        end
+      end
+
+      def public_key
+        @public_key ||= PublicKeyU2f.new(data_at(public_key_position, public_key_length))
+      end
+
+      private
+
+      attr_reader :data
+
+      def id_position
+        id_length_position + ID_LENGTH_LENGTH
+      end
+
+      def id_length
+        @id_length ||=
+          data_at(id_length_position, ID_LENGTH_LENGTH)
+          .unpack(UINT16_BIG_ENDIAN_FORMAT)
+          .first
+      end
+
+      def id_length_position
+        AAGUID_LENGTH
+      end
+
+      def public_key_position
+        id_position + id_length
+      end
+
+      def public_key_length
+        data.size - (AAGUID_LENGTH + ID_LENGTH_LENGTH + id_length)
+      end
+
+      def data_at(position, length = nil)
+        length ||= data.size - position
+
+        data[position..(position + length - 1)]
+      end
+    end
+  end
+end

data/lib/webauthn/authenticator_data/attested_credential_data/public_key_u2f.rb

@@ -0,0 +1,43 @@
+# frozen_string_literal: true
+
+module WebAuthn
+  class AuthenticatorData
+    class AttestedCredentialData
+      class PublicKeyU2f
+        COORDINATE_LENGTH = 32
+        X_COORDINATE_KEY = -2
+        Y_COORDINATE_KEY = -3
+
+        def initialize(data)
+          @data = data
+        end
+
+        def valid?
+          data.size >= COORDINATE_LENGTH * 2 &&
+            x_coordinate.length == COORDINATE_LENGTH &&
+            y_coordinate.length == COORDINATE_LENGTH
+        end
+
+        def to_str
+          "\x04" + x_coordinate + y_coordinate
+        end
+
+        private
+
+        attr_reader :data
+
+        def x_coordinate
+          decoded_data[X_COORDINATE_KEY]
+        end
+
+        def y_coordinate
+          decoded_data[Y_COORDINATE_KEY]
+        end
+
+        def decoded_data
+          @decoded_data ||= CBOR.decode(data)
+        end
+      end
+    end
+  end
+end

data/lib/webauthn/client_data.rb

@@ -0,0 +1,46 @@
+# frozen_string_literal: true
+
+require "openssl"
+
+module WebAuthn
+  class ClientData
+    def initialize(client_data_json)
+      @client_data_json = client_data_json
+    end
+
+    def type
+      data["type"]
+    end
+
+    def challenge
+      data["challenge"]
+    end
+
+    def origin
+      data["origin"]
+    end
+
+    def hash
+      OpenSSL::Digest::SHA256.digest(decoded_client_data_json)
+    end
+
+    private
+
+    attr_reader :client_data_json
+
+    def decoded_client_data_json
+      @decoded_client_data_json ||= Base64.urlsafe_decode64(client_data_json)
+    end
+
+    def data
+      @data ||=
+        begin
+          if client_data_json
+            JSON.parse(decoded_client_data_json)
+          else
+            raise "Missing client_data_json"
+          end
+        end
+    end
+  end
+end

data/lib/webauthn/version.rb

@@ -1,3 +1,5 @@
-module Webauthn
-  VERSION = "0.0.0"
+# frozen_string_literal: true
+
+module WebAuthn
+  VERSION = "0.1.0"
 end

data/webauthn.gemspec

@@ -1,25 +1,37 @@
+# frozen_string_literal: true
+
 lib = File.expand_path("../lib", __FILE__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require "webauthn/version"
 
 Gem::Specification.new do |spec|
   spec.name          = "webauthn"
-  spec.version       = Webauthn::VERSION
-  spec.authors       = ["Gonzalo Rodriguez"]
-  spec.email         = ["gonzalo0@cedarcode.com"]
+  spec.version       = WebAuthn::VERSION
+  spec.authors       = ["Gonzalo Rodriguez", "Braulio Martinez"]
+  spec.email         = ["gonzalo@cedarcode.com", "braulio@cedarcode.com"]
 
   spec.summary       = %q{Web Authentication API Relying Party in ruby}
-  spec.homepage      = "https://github.com/cedarcode/webauthn"
+  spec.homepage      = "https://github.com/cedarcode/webauthn-ruby"
   spec.license       = "MIT"
 
-  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+  spec.metadata = {
+    "bug_tracker_uri" => "https://github.com/cedarcode/webauthn-ruby/issues",
+    "changelog_uri" => "https://github.com/cedarcode/webauthn-ruby/blob/master/CHANGELOG.md",
+    "source_code_uri" => "https://github.com/cedarcode/webauthn-ruby"
+  }
+
+  spec.files = `git ls-files -z`.split("\x0").reject do |f|
     f.match(%r{^(test|spec|features)/})
   end
   spec.bindir        = "exe"
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
 
+  spec.add_dependency "cbor", "~> 0.5.9.2"
+
   spec.add_development_dependency "bundler", "~> 1.16"
+  spec.add_development_dependency "byebug", "~> 10.0"
   spec.add_development_dependency "rake", "~> 10.0"
   spec.add_development_dependency "rspec", "~> 3.0"
+  spec.add_development_dependency "rubocop", "0.56.0"
 end

metadata

@@ -1,15 +1,30 @@
 --- !ruby/object:Gem::Specification
 name: webauthn
 version: !ruby/object:Gem::Version
-  version: 0.0.0
+  version: 0.1.0
 platform: ruby
 authors:
 - Gonzalo Rodriguez
+- Braulio Martinez
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2018-05-09 00:00:00.000000000 Z
+date: 2018-05-25 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: cbor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.5.9.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.5.9.2
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -24,6 +39,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.16'
+- !ruby/object:Gem::Dependency
+  name: byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -52,16 +81,33 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.56.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.56.0
 description: 
 email:
-- gonzalo0@cedarcode.com
+- gonzalo@cedarcode.com
+- braulio@cedarcode.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
 - ".gitignore"
 - ".rspec"
+- ".rubocop.yml"
 - ".travis.yml"
+- CHANGELOG.md
 - Gemfile
 - LICENSE.txt
 - README.md
@@ -69,12 +115,24 @@ files:
 - bin/console
 - bin/setup
 - lib/webauthn.rb
+- lib/webauthn/attestation_statement.rb
+- lib/webauthn/attestation_statement/base.rb
+- lib/webauthn/attestation_statement/fido_u2f.rb
+- lib/webauthn/attestation_statement/none.rb
+- lib/webauthn/authenticator_attestation_response.rb
+- lib/webauthn/authenticator_data.rb
+- lib/webauthn/authenticator_data/attested_credential_data.rb
+- lib/webauthn/authenticator_data/attested_credential_data/public_key_u2f.rb
+- lib/webauthn/client_data.rb
 - lib/webauthn/version.rb
 - webauthn.gemspec
-homepage: https://github.com/cedarcode/webauthn
+homepage: https://github.com/cedarcode/webauthn-ruby
 licenses:
 - MIT
-metadata: {}
+metadata:
+  bug_tracker_uri: https://github.com/cedarcode/webauthn-ruby/issues
+  changelog_uri: https://github.com/cedarcode/webauthn-ruby/blob/master/CHANGELOG.md
+  source_code_uri: https://github.com/cedarcode/webauthn-ruby
 post_install_message: 
 rdoc_options: []
 require_paths: