RubyGems - webget_ruby_password_hash - Versions diffs - 1.2.0 - Mend

webget_ruby_password_hash 1.2.0

Files changed (5) hide show

data.tar.gz.sig +0 -0
data/lib/webget_ruby_password_hash.rb +52 -0
data/test/webget_ruby_password_hash_test.rb +24 -0
metadata +78 -0
metadata.gz.sig +3 -0

data.tar.gz.sig ADDED Viewed

Binary file

data/lib/webget_ruby_password_hash.rb ADDED Viewed

@@ -0,0 +1,52 @@
+=begin rdoc
+= WebGet Ruby Gem: Password Hash to do secure SHA256 passwords.
+Author:: Joel Parker Henderson, joelparkerhenderson@gmail.com
+Copyright:: Copyright (c) 2006-2010 Joel Parker Henderson
+License:: CreativeCommons License, Non-commercial Share Alike
+License:: LGPL, GNU Lesser General Public License
+Password hash tool to create secure passwords,
+This uses SHA256 hexdigest for the cryptographic hash,
+and authenticates a password, salt, and hash.
+To create a password:
+  require 'webget_ruby_password_hash'
+  text = 'mysecret'
+  salt = 'azsxdcfv'
+  hash = PasswordHash.new(text,salt)
+To create a password using our helpers:
+  require 'webget_ruby_password_hash'
+  require 'webget_ruby_password_salt'
+  require 'webget_ruby_password_text'
+  text = PasswordText.new
+  salt = PasswordSalt.new
+  hash = PasswordHash.new(text,salt)
+To verify a password:
+  hash.valid?(text,salt)
+To verify a password from a web form for a user:
+  user = User.find(params[:id]) or raise 'user not found'
+  user.hash.valid?(params[:password],user.salt)
+=end
+require 'digest/sha2'
+class PasswordHash < String
+ def initialize(text,salt)
+  text or raise "text:#{text}"
+  salt or raise "salt:#{salt}"
+  super(Digest::SHA256.hexdigest(text+salt))
+ end
+ def valid?(text,salt)
+  self == Digest::SHA256.hexdigest(text+salt)
+ end
+end

data/test/webget_ruby_password_hash_test.rb ADDED Viewed

@@ -0,0 +1,24 @@
+require 'test/unit'
+require 'webget_ruby_password_hash'
+class Testing < Test::Unit::TestCase
+ def test_new
+  p = PasswordHash.new('foo','bar')
+  assert_not_nil(p,"p")
+  assert(p.is_a?(String),"p is a string")
+ end
+ def test_valid
+  p = PasswordHash.new('foo','bar')
+  assert(p.valid?('foo','bar'), "p.valid? foo bar")
+ end
+ def test_invalid
+  p = PasswordHash.new('foo','bar')
+  assert(!p.valid?('foo','xxx'), "p.valid? foo xxx")
+  assert(!p.valid?('xxx','bar'), "p.valid? xxx bar")
+ end
+end

metadata ADDED Viewed

@@ -0,0 +1,78 @@
+--- !ruby/object:Gem::Specification
+name: webget_ruby_password_hash
+version: !ruby/object:Gem::Version
+  version: 1.2.0
+platform: ruby
+authors:
+- WebGet
+autorequire:
+bindir: bin
+cert_chain:
+- |
+  -----BEGIN CERTIFICATE-----
+  MIIDvDCCAyWgAwIBAgIJAIlSqEkDQaZIMA0GCSqGSIb3DQEBBQUAMIGbMQswCQYD
+  VQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNU2FuIEZyYW5j
+  aXNjbzETMBEGA1UEChMKV2ViR2V0LmNvbTETMBEGA1UECxMKV2ViR2V0LmNvbTET
+  MBEGA1UEAxMKV2ViR2V0LmNvbTEgMB4GCSqGSIb3DQEJARYRd2ViZ2V0QHdlYmdl
+  dC5jb20wHhcNMDkwMjI2MTk0NDU4WhcNMTExMTIzMTk0NDU4WjCBmzELMAkGA1UE
+  BhMCVVMxEzARBgNVBAgTCkNhbGlmb3JuaWExFjAUBgNVBAcTDVNhbiBGcmFuY2lz
+  Y28xEzARBgNVBAoTCldlYkdldC5jb20xEzARBgNVBAsTCldlYkdldC5jb20xEzAR
+  BgNVBAMTCldlYkdldC5jb20xIDAeBgkqhkiG9w0BCQEWEXdlYmdldEB3ZWJnZXQu
+  Y29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDXCFYfW6hCQl0ToNjaMIXG
+  ZfPF6OoR20BO/Tg6V37qPi7gDSZ6vIC6Mxcs8LtEcju85cD9lnKKl/lo4S5/w9Ha
+  hGD2ZFFfbF8420X5Za5G2KuriS3GzRz7F5dKCTjb1NH9TPlgOc71bcrDmCwwtFJl
+  T+tdfBju0YxLSBiMXf4y5QIDAQABo4IBBDCCAQAwHQYDVR0OBBYEFHB1kXO/Xd4g
+  G+AJ2/wwh6JOWXzNMIHQBgNVHSMEgcgwgcWAFHB1kXO/Xd4gG+AJ2/wwh6JOWXzN
+  oYGhpIGeMIGbMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQG
+  A1UEBxMNU2FuIEZyYW5jaXNjbzETMBEGA1UEChMKV2ViR2V0LmNvbTETMBEGA1UE
+  CxMKV2ViR2V0LmNvbTETMBEGA1UEAxMKV2ViR2V0LmNvbTEgMB4GCSqGSIb3DQEJ
+  ARYRd2ViZ2V0QHdlYmdldC5jb22CCQCJUqhJA0GmSDAMBgNVHRMEBTADAQH/MA0G
+  CSqGSIb3DQEBBQUAA4GBADzVXlwuff0/w3yK4LflGKKhtC3oChIrwmSyP6tk628N
+  BHokpc4Kz63xSXqzYTnBS7rFBwlYThtNalQeWmoUjGh3Z0ZR0JlhU0ln8899LuJ3
+  DXnLFY0cVuBnNDMOOFl8vk1qIcZjcTovhzgcixpG6Uk5qmUsKHRLQf4oQJx7TfLK
+  -----END CERTIFICATE-----
+date: 2010-02-17 00:00:00 -08:00
+default_executable:
+dependencies: []
+description:
+email: webget@webget.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/webget_ruby_password_hash.rb
+has_rdoc: true
+homepage: http://webget.com/
+licenses: []
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: "0"
+  version:
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: "0"
+  version:
+requirements: []
+rubyforge_project:
+rubygems_version: 1.3.5
+signing_key:
+specification_version: 3
+summary: "WebGet Ruby Gem: PasswordHash class for secure password hashing with plain text and random salt"
+test_files:
+- test/webget_ruby_password_hash_test.rb

metadata.gz.sig ADDED Viewed

@@ -0,0 +1,3 @@
+p�[2�ҞSm
+y`p2�
+G!���,{������&��r+�L��i��i	��;�Z�%g�B��4��Q<�s�