xmpp4r_facebook 0.1 → 0.1.1

data/lib/xmpp4r_facebook.rb

@@ -0,0 +1,145 @@
+#coding:utf-8
+require 'xmpp4r'
+
+module Jabber
+  module SASL
+    class XFacebookPlatform < Base
+      def initialize(stream, api_key, access_token, secret_key)
+        super(stream)
+        challenge = {}
+        error = nil
+        @stream.send(generate_auth('X-FACEBOOK-PLATFORM')) { |reply|
+          if reply.name == 'challenge' and reply.namespace == NS_SASL
+            challenge = decode_challenge(reply.text)
+          else
+            error = reply.first_element(nil).name
+          end
+          true
+        }
+        raise error if error
+        
+        @nonce = challenge['nonce']
+        @realm = challenge['realm']
+        @method = challenge['method']
+        @api_key = api_key
+        @access_token = access_token
+        @secret_key = secret_key
+      end
+      
+      def decode_challenge(challenge)
+        text = Base64::decode64(challenge)
+        res = {}
+        state = :key
+        key = ''
+        value = ''
+        text.scan(/./) do |ch|
+          if state == :key
+            if ch == '='
+              state = :value
+            else
+            key += ch
+            end
+          elsif state == :value
+            if ch == '&'
+              # due to our home-made parsing of the challenge, the key could have
+              # leading whitespace. strip it, or that would break jabberd2 support.
+              key = key.strip
+              res[key] = value
+              key = ''
+              value = ''
+              state = :key
+            elsif ch == '"' and value == ''
+              state = :quote
+            else
+            value += ch
+            end
+          elsif state == :quote
+            if ch == '"'
+              state = :value
+            else
+            value += ch
+            end
+          end
+        end
+        # due to our home-made parsing of the challenge, the key could have
+        # leading whitespace. strip it, or that would break jabberd2 support.
+        key = key.strip
+        res[key] = value unless key == ''
+        Jabber::debuglog("SASL DIGEST-MD5 challenge:\n#{text}\n#{res.inspect}")
+        res
+      end
+      
+      ##
+      # * Send a response
+      # * Wait for the server's challenge (which aren't checked)
+      # * Send a blind response to the server's challenge
+      def auth(password)
+        response2 = {}
+        response2['api_key'] = @api_key
+        response2['call_id'] = Time.new.tv_sec
+        response2['method'] = @method
+        response2['nonce'] = @nonce
+        response2['access_token'] = @access_token
+        response2['v'] ='1.0'
+        
+        response_text = response2.collect { |k,v| "#{k}=#{v}" }.join('&')
+        #Jabber::debuglog("SASL DIGEST-MD5 response:\n#{response_text}\n#{response.inspect}")
+        
+        r = REXML::Element.new('response')
+        r.add_namespace NS_SASL
+        r.text = Base64::encode64(response_text)
+        success_already = false
+        error = nil
+        @stream.send(r) { |reply|
+          if reply.name == 'success'
+          success_already = true
+          elsif reply.name != 'challenge'
+            error = reply.first_element(nil).name
+          end
+          true
+        }
+        
+        return if success_already
+        raise error if error
+        
+        # TODO: check the challenge from the server
+        
+        r.text = nil
+        @stream.send(r) { |reply|
+          if reply.name != 'success'
+            error = reply.first_element(nil).name
+          end
+          true
+        }
+        
+        raise error if error
+      end
+      
+      private
+      
+      ##
+      # Function from RFC2831
+      def h(s); Digest::MD5.digest(s); end
+      
+      ##
+      # Function from RFC2831
+      def hh(s); Digest::MD5.hexdigest(s); end
+      
+      ##
+      # Calculate the value for the response field
+      def response_value(username, realm, digest_uri, passwd, nonce, cnonce, qop, authzid)
+        a1_h = h("#{username}:#{realm}:#{passwd}")
+        a1 = "#{a1_h}:#{nonce}:#{cnonce}"
+        if authzid
+          a1 += ":#{authzid}"
+        end
+        if qop == 'auth-int' || qop == 'auth-conf'
+          a2 = "AUTHENTICATE:#{digest_uri}:00000000000000000000000000000000"
+        else
+          a2 = "AUTHENTICATE:#{digest_uri}"
+        end
+        hh("#{hh(a1)}:#{nonce}:00000001:#{cnonce}:#{qop}:#{hh(a2)}")
+      end
+    end
+  end
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: xmpp4r_facebook
 version: !ruby/object:Gem::Version
-  version: '0.1'
+  version: 0.1.1
   prerelease: 
 platform: ruby
 authors:
@@ -13,7 +13,7 @@ date: 2012-02-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: xmpp4r
-  requirement: &84115460 !ruby/object:Gem::Requirement
+  requirement: &83866630 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -21,13 +21,14 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *84115460
+  version_requirements: *83866630
 description: Expansion XMPP4R to authenticate with Facebook Connect in Ruby
 email: kissrobber@gmail.com
 executables: []
 extensions: []
 extra_rdoc_files: []
-files: []
+files:
+- lib/xmpp4r_facebook.rb
 homepage: https://github.com/kissrobber
 licenses: []
 post_install_message: