whowas 0.1.4

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 23b13b6e3c208d2ed5d32406ee185c7d9042edb9
+  data.tar.gz: 6d5ebc269ba4ad75720d5b71fe80c7c85d2bb01d
+SHA512:
+  metadata.gz: 2d7885df76e22f2f4f4d3fe213387a001992ad446c43656971d19ffeeee67e1f2a8968294c8ffec0341926b4bc83456e24c1d4fd8732e851795a4beb21867606
+  data.tar.gz: 0354e38f5de7f29de16db613edc10ad9e2dcf83ace7e19135b88125bd9c2efbccda0d56d0aba34df1f2b666a6187e24c40671e07d02a389b18ce42635d051525

data/.gitignore

@@ -0,0 +1,9 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/

data/.rspec

@@ -0,0 +1,2 @@
+--format documentation
+--color

data/.travis.yml

@@ -0,0 +1,14 @@
+language: ruby
+rvm:
+- 2.2.2
+install:
+- travis_retry bundle install
+sudo: false
+cache: bundler
+
+addons:
+  code_climate:
+    repo_token: bd0689fbbea3942f98293e557a67ab25be700ef489f28e680a74e3761b50c3fa
+
+script:
+- bundle exec rspec spec

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2016 Jess Frisch, Tufts University
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,44 @@
+# Whowas
+
+[![Code Climate](https://codeclimate.com/github/TuftsUniversity/whowas/badges/gpa.svg)](https://codeclimate.com/github/TuftsUniversity/whowas) [![Test Coverage](https://codeclimate.com/github/TuftsUniversity/whowas/badges/coverage.svg)](https://codeclimate.com/github/TuftsUniversity/whowas/coverage) [![Build Status](https://travis-ci.org/TuftsUniversity/whowas.svg?branch=master)](https://travis-ci.org/TuftsUniversity/whowas) [![Dependency Status](https://gemnasium.com/TuftsUniversity/whowas.svg)](https://gemnasium.com/TuftsUniversity/whowas)
+
+## Description
+
+Whowas is a simple tool for chaining third-party API searches together.  It is called "Whowas" because it was initially developed to answer the question, "Who was the person (username) using this IP address at that time?"
+
+Whowas can be used to match any piece of data with another through an arbitrary number of API searches, where the result of each search becomes the input to the next search.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'whowas'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install whowas
+
+## Usage
+
+Please see the [wiki](https://github.com/TuftsUniversity/whowas/wiki) for basic usage and other documentation.
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/TuftsUniversity/whowas.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
+

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "whowas"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start

data/bin/setup

@@ -0,0 +1,7 @@
+#!/bin/bash
+set -euo pipefail
+IFS=$'\n\t'
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/lib/apis/splunk.rb

@@ -0,0 +1,52 @@
+require "splunk-sdk-ruby"
+
+module Whowas
+  class Splunk
+    include Whowas::Api
+    
+    @@connection = nil
+    
+    private
+    
+    # Whowas.splunk_config is configured via define_setting in the initializer.
+    # See configuration.rb for more information.
+    def self.connection(config: Whowas.splunk_config)
+      @@connection ||= ::Splunk::connect(config)
+    rescue => e
+      raise Whowas::Errors::ServiceUnavailable, e
+    end
+        
+    def validate(input)
+      (input[:query] && 
+      !input[:query].empty? && 
+      input[:offset].is_a?(Integer) &&
+      DateTime.parse(input[:timestamp]) &&
+      true) ||
+      (raise Whowas::Errors::InvalidInput, "Invalid input for Splunk API")
+    end
+    
+    def format(input)
+      input = {
+        query: "search #{input[:query]}",
+        args: {
+          earliest_time: format_timestamp(input[:timestamp], input[:offset]),
+          latest_time: format_timestamp(input[:timestamp], 0.1)
+        }
+      }
+    end
+    
+    def format_timestamp(timestamp, offset)
+      (DateTime.parse(timestamp).to_time + offset).strftime("%Y-%m-%dT%H:%M:%S.%L%z")
+    end
+    
+    def search_api(input)
+      puts input
+      stream = self.class.connection.create_export(input[:query], input[:args])
+      if results = ::Splunk::MultiResultsReader.new(stream).first.first
+        results["_raw"]
+      else
+        ""
+      end
+    end
+  end
+end

data/lib/generators/whowas/api_generator.rb

@@ -0,0 +1,13 @@
+module Whowas
+  class ApiGenerator < Rails::Generators::NamedBase
+    source_root File.expand_path("../templates", __FILE__)
+    
+    def create
+      copy_file "api.rb", "app/apis/#{file_name}.rb"
+    end
+    
+    def rename_class
+      gsub_file "app/apis/#{file_name}.rb", /MyApi/, name.camelize
+    end
+  end
+end

data/lib/generators/whowas/install_generator.rb

@@ -0,0 +1,9 @@
+module Whowas
+  class InstallGenerator < Rails::Generators::Base
+    source_root File.expand_path("../templates", __FILE__)
+    
+    def copy_initializer
+      copy_file "initializer.rb", "config/initializers/whowas.rb"
+    end
+  end
+end

data/lib/generators/whowas/recipe_generator.rb

@@ -0,0 +1,13 @@
+module Whowas
+  class RecipeGenerator < Rails::Generators::NamedBase
+    source_root File.expand_path("../templates", __FILE__)
+    
+    def create
+      copy_file "recipe.rb", "app/recipes/#{file_name}.rb"
+    end
+    
+    def rename_method
+      gsub_file "app/recipes/#{file_name}.rb", /name_this_recipe/, name.underscore
+    end
+  end
+end

data/lib/generators/whowas/search_method_generator.rb

@@ -0,0 +1,13 @@
+module Whowas
+  class SearchMethodGenerator < Rails::Generators::NamedBase
+    source_root File.expand_path("../templates", __FILE__)
+    
+    def create
+      copy_file "search_method.rb", "app/search_methods/#{file_name}.rb"
+    end
+    
+    def rename_class
+      gsub_file "app/search_methods/#{file_name}.rb", /MySearchMethod/, name.camelize
+    end
+  end
+end

data/lib/generators/whowas/templates/api.rb

@@ -0,0 +1,37 @@
+module Whowas
+  class MyApi
+    # Whowas::Api provides the public interface to your API, accessed through the
+    # "search" instance method.
+    include Whowas::Api
+  
+    # All custom API code is defined in the private methods below.  Naturally,
+    # you can add private methods as needed for connecting to the API, etc. 
+    private
+    
+    ## Required
+    
+    # Sends a search query with provided input to your API and returns results 
+    # as a string.
+    def search_api(input)
+      ""
+    end
+   
+    ## Optional
+    
+    # Validates input to avoid unnecessary API calls.
+    # MUST return true or raise a Whowas::Errors::InvalidInput error.
+    # Replace "true" with your validation code.
+    def validate(input)
+      true ||
+      (raise Whowas::Errors::InvalidInput, "Invalid input for #{self.class.name}")
+    end
+    
+    # Transforms input one last time before API call.
+    # Will be called on input for all search_methods using this API.
+    # For search_method-specific transformations, use the format_input method
+    # in your search_method.
+    def format(input)
+      input
+    end
+  end
+end

data/lib/generators/whowas/templates/initializer.rb

@@ -0,0 +1,40 @@
+# WhoWas configuration options
+Whowas.configuration do |config|
+  ## Recipe Table
+  # You MUST define your default recipe and any other recipes you may use
+  # here.  Viable keys include "default", "ip_default", "mac_default", and
+  # valid IP addresses or CIDR blocks.
+  #
+  # An example of a full recipe table:
+  #
+  # config.recipe_table = {
+  #   "192.168.1.0/24": Whowas.home_wireless,
+  #   "10.0.0.0/8": Whowas.internal_wired,
+  #   ip_default: Whowas.other_ips,
+  #   mac_default: Whowas.search_by_mac,
+  #   default: Whowas.other_ips
+  # }
+  config.recipe_table = {}
+  
+  ## Recipes class
+  # You can change this to a custom defined class if you need to extend the
+  # recipe selection algorithm beyond IP and mac addresses.
+  config.recipe_class = Whowas::Recipes
+  
+  ## API configuration and credentials
+  # If you are not using a bundled API, you can safely ignore this section.
+
+  # Splunk API configuration
+  # The recommended method is to store your Splunk credentials in environment
+  # variables using a gem such as dotenv.
+  #
+  # config.splunk_config = {
+  #   scheme: :https,
+  #   host: ENV['SPLUNK_HOST'],
+  #   port: ENV['SPLUNK_PORT'],
+  #   username: ENV['SPLUNK_USERNAME'],
+  #   password: ENV['SPLUNK_PASSWORD']
+  # }
+  #
+  config.splunk_config = {}
+end

data/lib/generators/whowas/templates/recipe.rb

@@ -0,0 +1,14 @@
+require "middleware"
+
+module Whowas
+  def self.name_this_recipe
+    # All you have to do is specify the search method classes in the order
+    # they should be called.  The output for each search method should match
+    # the input of the next.
+    Middleware::Builder.new do
+      # use MySearchMethod1
+      # use MySearchMethod2
+      # use MySearchMethod3
+    end
+  end
+end

data/lib/generators/whowas/templates/search_method.rb

@@ -0,0 +1,62 @@
+module Whowas
+  class MySearchMethod
+    # All required public methods are contained in the Middleware package.  It 
+    # initializes the search method, calls search on the API with the provided 
+    # input, and returns the output to the next search method or the caller.
+    #
+    # The Searchable modules (Validatable, Formattable, and Parsable) are
+    # technically optional but in practice necessary to ensure usable input and
+    # outputs.
+    include Whowas::Middleware
+    include Whowas::Searchable
+      
+    ## API
+    # You MUST set this to the name of a bundled or custom API class.
+    @@api = API_CLASS_HERE
+    
+    private
+    
+    ## Validatable
+    # Optional but useful to prevent making unnecessary API calls when given
+    # invalid input.
+    
+    # Defines required elements of the input hash.
+    # This should be an array containing the required inputs as symbols.
+    def required_inputs
+      [
+        # :ip,
+        # :timestamp
+      ]
+    end
+    
+    # Validates the values of required inputs.
+    # This should be a hash containing the required input as key, and a lambda 
+    # taking input and returning a boolean as value.
+    def input_formats
+      {
+        # timestamp: lambda { |input| DateTime.parse(input) && true rescue false }
+      }      
+    end
+    
+    ## Formattable
+    
+    # Search method-wide transformations to the input.  For example, if all 
+    # mac addresses given as input to this search method should use colons as 
+    # separators, perform that transformation here.
+    # 
+    # API-wide transformations to the input can be made in the API format method.
+    def format_input(input)
+      input
+    end
+    
+    ## Parsable
+    
+    # Extract pieces of the results string from the API using regex to form the 
+    # input hash for the next search method or the final result.
+    def output_formats
+      {
+        # username: /User <\K\w*/
+      }
+    end    
+  end
+end

data/lib/whowas.rb

@@ -0,0 +1,62 @@
+require "middleware"
+
+require "whowas/api"
+require "whowas/configuration"
+require "whowas/errors"
+require "whowas/formattable"
+require "whowas/middleware"
+require "whowas/parsable"
+require "whowas/recipes"
+require "whowas/searchable"
+require "whowas/validatable"
+require "whowas/version"
+
+# bundled apis
+require "apis/splunk"
+
+
+module Whowas
+  extend Configuration
+  
+  # TODO: create a more sophisticated system for creating and retrieving
+  # recipes
+  #
+  # For now, users must provide their own recipes, which is a Middleware stack.
+  # For documentation, see https://github.com/mitchellh/middleware
+  # 
+  # To create compatible middleware classes, include Whowas::Middleware.
+  # This will create the necessary initialize and call classes.
+  # It requires the underlying class to have a "#search" function which takes
+  # a hash and returns a string.
+  #
+  # Recipes are automatically selected using the recipe_table attribute, which
+  # can be configured by the user, and the Recipes.select algorithm.
+  # 
+  # For more search support, include the Whowas::Searchable module, which adds
+  # validation, formatting, and parsing to the search methods.  Check the source
+  # for more documentation.
+  
+  define_setting :recipe_table, {}
+  define_setting :recipe_class, Whowas::Recipes
+  
+  # configuration defaults
+  define_setting :splunk_config, nil  
+  
+  def self.search(input)
+    recipe = recipe_class.select(input) || Whowas.recipe_table[:default]
+    env = {input: input, results: []}
+    recipe.call(env)
+    env
+  end
+  
+  private
+  
+  # Uses the recipe_table hash to match up the input to the correct recipe type.
+  # If there is an IP address in the input, it tries to match the IP address
+  # against any keys that are valid CIDR blocks.
+  # If there is a mac address, it looks for the key :mac.
+  # Otherwise, it falls back to :default.
+  def select_recipe(input)
+  end
+    
+end

data/lib/whowas/api.rb

@@ -0,0 +1,30 @@
+module Whowas
+  module Api
+    # All APIs use (api_instance).search as the only public method
+    # and follow the pattern below.
+    # Validation and formatting are optional.
+    # search_api must contain the core api search code and return the results.
+    def search(input)
+      validate(input)
+      input = format(input)
+      search_api(input)
+    end
+  
+    private
+  
+    # default methods for APIs to use or override
+    #:nocov:
+    def validate(input)
+      true
+    end
+    
+    def format(input)
+      input
+    end
+    
+    # MUST be overridden (core search functionality)
+    def search_api(input)
+      raise Errors::SubclassResponsibility
+    end
+  end 
+end

data/lib/whowas/configuration.rb

@@ -0,0 +1,32 @@
+module Whowas
+  # This is just a simple way to allow gem users to define their own variables
+  # on whatever this module extends -- mainly the Whowas module itself.
+  #
+  # see the following article:
+  # https://www.viget.com/articles/easy-gem-configuration-variables-with-defaults
+  module Configuration
+    def configuration
+      yield self
+    end
+    
+    def define_setting(name, default = nil)
+      class_variable_set("@@#{name}", default)
+      
+      define_class_method "#{name}=" do |value|
+        class_variable_set("@@#{name}", value)
+      end
+      
+      define_class_method name do
+        class_variable_get("@@#{name}")
+      end
+    end
+    
+    private
+    
+    def define_class_method(name, &block)
+      (class << self; self; end).instance_eval do
+        define_method name, &block
+      end
+    end
+  end
+end

data/lib/whowas/errors.rb

@@ -0,0 +1,21 @@
+module Whowas
+  # A base error class for Whowas.  Most of the errors that will be thrown
+  # from Whowas will inherit from this class.
+  class Error < StandardError  
+  end
+  
+  module Errors
+    # Will be thrown when input is invalid.
+    class InvalidInput < Whowas::Error
+    end
+    
+    # Will be thrown when an external service is unavailable.
+    class ServiceUnavailable < Whowas::Error
+    end
+    
+    # Will be thrown when a subclass or including class doesn't define
+    # a required method.
+    class SubclassResponsibility < Whowas::Error
+    end
+  end
+end

data/lib/whowas/formattable.rb

@@ -0,0 +1,23 @@
+module Whowas
+  module Formattable
+    def format(input)
+      format_input(input)
+    end
+    
+    # :nocov:
+    private
+    # This is a hook for the including class to use to modify the input before
+    # the api gets it.
+    #
+    # For example, when searching in Splunk, the Firewall class (which includes
+    # Searchable) must create the query string from the ip and port, plus any
+    # other parameters like the Splunk index it wants to search.
+    #
+    # By default, this method just returns the arguments given, but note that
+    # most classes _will have_ to modify the input to make it usable by the
+    # API modification method.
+    def format_input(input)
+      input
+    end
+  end
+end

data/lib/whowas/middleware.rb

@@ -0,0 +1,23 @@
+module Whowas
+  module Middleware
+    def initialize(app = nil)
+      @app = app
+    end
+    
+    def call(env)
+      env[:results] ||= Array.new
+      if results = self.search(env[:input])
+        if results[:raw] && !results[:raw].empty?
+          env[:results] << {results[:method] => results[:raw]}
+          env[:input] = results[:input].merge({timestamp: env[:input][:timestamp]})
+          @app.call(env) unless !@app
+        else
+          env[:results] << { results[:method] => "No results found." }
+        end
+      end
+      env[:results]
+    rescue Whowas::Error => e
+      env[:error] = e
+    end
+  end
+end   

data/lib/whowas/parsable.rb

@@ -0,0 +1,45 @@
+module Whowas
+  module Parsable
+    # Parses a raw result into a hash including the raw result and
+    # other data extracted from the raw result to be used as potential inputs
+    # for other searches.
+    #
+    # Example:
+    # Given the raw string "I am a string, but I also have an IP -- 192.168.1.1"
+    # The result should be:
+    #   { 
+    #     raw: "I am a string, but I also have an IP -- 192.168.1.1",
+    #     input: { ip: "192.168.1.1" } 
+    #   }
+    def parse(raw)
+      {
+        raw: raw,
+        input: parse_for_input(raw),
+        method: self.class.name
+      }
+    end
+    
+    # :nocov:
+    private
+    
+    def parse_for_input(raw)
+      if raw && !raw.empty?
+        output_formats.map { |k, v| [k, raw[v]] }.to_h.delete_if{ |k, v| v.nil? }
+      else
+        {}
+      end
+    end
+    
+    # A hook for each including class to define the input names and formats the
+    # parser should look for in the raw result.
+    #
+    # This should be a hash of name -> regex, for example:
+    # {
+    #    ip: /^(?:[0-9]{1,3}\.){3}[0-9]{1,3}$/,
+    #    username: /Username=\K\w*/
+    # }
+    def input_formats
+      {}
+    end
+  end
+end

data/lib/whowas/recipes.rb

@@ -0,0 +1,32 @@
+require "ipaddr"
+
+module Whowas
+  class Recipes
+    def self.select(input)
+      if input[:ip]
+        select_by_ip(input[:ip])
+      elsif input[:mac]
+        Whowas.recipe_table[:mac_default]
+      end
+    end
+    
+    private
+    
+    def self.select_by_ip(ip)
+      ip = IPAddr.new(ip)
+      
+      results = Whowas.recipe_table.select do |key, value|
+        if subnet = (IPAddr.new(key.to_s) rescue nil)
+          subnet.include?(ip)
+        end
+      end
+      
+      if results.empty?
+        Whowas.recipe_table[:ip_default]
+      else
+        results.values.first
+      end
+    end
+  end
+end
+    

data/lib/whowas/searchable.rb

@@ -0,0 +1,26 @@
+module Whowas
+  module Searchable    
+    @@api = nil
+    
+    # The including class *must* set the api class in a class constant.
+    def api
+      @@api || (raise Errors::SubclassResponsibility)
+    end
+
+    # extend the including class with the searchable sub-modules
+    def self.included klass
+      klass.class_eval do
+        include Validatable
+        include Formattable
+        include Parsable
+      end
+    end
+    
+    def search(input)
+      validate(input)
+      input = format(input)
+      result = api.new.search(input)
+      parse(result)
+    end
+  end
+end    

data/lib/whowas/validatable.rb

@@ -0,0 +1,45 @@
+module Whowas
+  module Validatable 
+    # Checks for required inputs and input formats
+    # that the API will need to process the search.
+    #
+    # It does *not* matter if there are other, non-required parameters
+    # in the input hash; they will be ignored later.
+    def validate(input)
+      (check_exists(required_inputs, input) &&
+        check_format(input_formats, input)) || 
+      (raise Errors::InvalidInput, "Invalid input for #{self.class.name}")
+    end
+    
+    # :nocov: 
+    private
+    
+    # hooks for required_inputs and input_formats
+    # must be set by including class
+    def required_inputs
+      []
+    end
+    
+    def input_formats
+      {}
+    end
+
+    # Required keys must exist in the input hash and must have a non-nil,
+    # non-empty value.
+    def check_exists(required, input)
+      required.inject(true) do |result, key|
+        input[key] && result
+      end
+    end
+    
+    # Format is a lambda defined in the api class which returns true or false.
+    # This allows for flexible format checking:
+    #    e.g. regex for ip addresses and DateTime.parse calls for timestamps
+    def check_format(formats, input)
+      formats.inject(true) do |result, (key, format)|
+        format.call(input[key]) && result
+      end
+    end    
+  end
+end
+    

data/lib/whowas/version.rb

@@ -0,0 +1,3 @@
+module Whowas
+  VERSION = "0.1.4"
+end

data/whowas.gemspec

@@ -0,0 +1,38 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'whowas/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "whowas"
+  spec.version       = Whowas::VERSION
+  spec.authors       = ["Jess Frisch"]
+  spec.email         = ["jess.frisch@tufts.edu"]
+
+  spec.summary       = %q{Match an IP address and timestamp to a username.}
+  spec.homepage      = "https://github.com/TuftsUniversity/whowas"
+  spec.license       = "MIT"
+
+  # Prevent pushing this gem to RubyGems.org by setting 'allowed_push_host', or
+  # delete this section to allow pushing this gem to any host.
+  if spec.respond_to?(:metadata)
+    spec.metadata['allowed_push_host'] = "https://rubygems.org"
+  else
+    raise "RubyGems 2.0 or newer is required to protect against public gem pushes."
+  end
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+  
+  spec.add_dependency "middleware"
+  spec.add_dependency "splunk-sdk-ruby"
+  
+  spec.add_development_dependency "bundler", "~> 1.10"
+  spec.add_development_dependency "codeclimate-test-reporter"
+  spec.add_development_dependency "pry-byebug"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec"
+  spec.add_development_dependency "simplecov"
+end

metadata

@@ -0,0 +1,187 @@
+--- !ruby/object:Gem::Specification
+name: whowas
+version: !ruby/object:Gem::Version
+  version: 0.1.4
+platform: ruby
+authors:
+- Jess Frisch
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2016-06-24 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: middleware
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: splunk-sdk-ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.10'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.10'
+- !ruby/object:Gem::Dependency
+  name: codeclimate-test-reporter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: pry-byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- jess.frisch@tufts.edu
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- lib/apis/splunk.rb
+- lib/generators/whowas/api_generator.rb
+- lib/generators/whowas/install_generator.rb
+- lib/generators/whowas/recipe_generator.rb
+- lib/generators/whowas/search_method_generator.rb
+- lib/generators/whowas/templates/api.rb
+- lib/generators/whowas/templates/initializer.rb
+- lib/generators/whowas/templates/recipe.rb
+- lib/generators/whowas/templates/search_method.rb
+- lib/whowas.rb
+- lib/whowas/api.rb
+- lib/whowas/configuration.rb
+- lib/whowas/errors.rb
+- lib/whowas/formattable.rb
+- lib/whowas/middleware.rb
+- lib/whowas/parsable.rb
+- lib/whowas/recipes.rb
+- lib/whowas/searchable.rb
+- lib/whowas/validatable.rb
+- lib/whowas/version.rb
+- whowas.gemspec
+homepage: https://github.com/TuftsUniversity/whowas
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.8
+signing_key: 
+specification_version: 4
+summary: Match an IP address and timestamp to a username.
+test_files: []