RubyGems - yoti - Versions diffs - 1.6.4 → 1.10.0 - Mend

yoti 1.6.4 → 1.10.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (105) hide show

data/lib/yoti/http/request.rb CHANGED

@@ -1,11 +1,19 @@
 require 'securerandom'
+require 'cgi'
 module Yoti
   # Manage the API's HTTPS requests
   class Request
+    # @deprecated will be removed in 2.0.0 - token is now provided with the endpoint
     # @return [String] the URL token received from Yoti Connect
     attr_accessor :encrypted_connect_token
+    # @return [String] the base URL
+    attr_writer :base_url
+    # @return [Hash] query params to add to the request
+    attr_accessor :query_params
     # @return [String] the HTTP method used for the request
     # The allowed methods are: GET, DELETE, POST, PUT, PATCH
     attr_accessor :http_method
@@ -13,36 +21,93 @@ module Yoti
     # @return [String] the API endpoint for the request
     attr_accessor :endpoint
-    # @return [Hash] the body sent with the request
+    # @return [#to_json,String] the body sent with the request
     attr_accessor :payload
     def initialize
       @headers = {}
     end
+    #
+    # @return [RequestBuilder]
+    #
+    def self.builder
+      RequestBuilder.new
+    end
+    #
     # Adds a HTTP header to the request
+    #
+    # @param [String] header
+    # @param [String] value
+    #
     def add_header(header, value)
       @headers[header] = value
     end
+    #
     # Makes a HTTP request after signing the headers
-    # @return [Hash] the body from the HTTP request
-    def body
+    #
+    # @return [HTTPResponse]
+    #
+    def execute
       raise RequestError, 'The request requires a HTTP method.' unless @http_method
-      raise RequestError, 'The payload needs to be a hash.' unless @payload.to_s.empty? || @payload.is_a?(Hash)
-      res = Net::HTTP.start(uri.hostname, Yoti.configuration.api_port, use_ssl: https_uri?) do |http|
+      http_res = Net::HTTP.start(uri.hostname, Yoti.configuration.api_port, use_ssl: https_uri?) do |http|
         signed_request = SignedRequest.new(unsigned_request, path, @payload).sign
         http.request(signed_request)
       end
-      raise RequestError, "Unsuccessful Yoti API call: #{res.message}" unless res.code == '200'
+      raise RequestError.new("Unsuccessful Yoti API call: #{http_res.message}", http_res) unless response_is_success(http_res)
-      res.body
+      http_res
+    end
+    #
+    # Makes a HTTP request and returns the body after signing the headers
+    #
+    # @return [String]
+    #
+    def body
+      execute.body
+    end
+    #
+    # @return [String] the base URL
+    #
+    def base_url
+      @base_url ||= Yoti.configuration.api_endpoint
     end
     private
+    #
+    # @param [Net::HTTPResponse] http_res
+    #
+    # @return [Boolean]
+    #
+    def response_is_success(http_res)
+      http_res.code.to_i >= 200 && http_res.code.to_i < 300
+    end
+    #
+    # Adds payload to provided HTTP request
+    #
+    # @param [Net::HTTPRequest] http_req
+    #
+    def add_payload(http_req)
+      return if @payload.to_s.empty?
+      if @payload.is_a?(String)
+        http_req.body = @payload
+      elsif @payload.respond_to?(:to_json)
+        http_req.body = @payload.to_json
+      end
+    end
+    #
+    # @return [Net::HTTPRequest] the unsigned HTTP request
+    #
     def unsigned_request
       case @http_method
       when 'GET'
@@ -51,13 +116,13 @@ module Yoti
         http_req = Net::HTTP::Delete.new(uri)
       when 'POST'
         http_req = Net::HTTP::Post.new(uri)
-        http_req.body = @payload.to_json unless @payload.to_s.empty?
+        add_payload(http_req)
       when 'PUT'
         http_req = Net::HTTP::Put.new(uri)
-        http_req.body = @payload.to_json unless @payload.to_s.empty?
+        add_payload(http_req)
       when 'PATCH'
         http_req = Net::HTTP::Patch.new(uri)
-        http_req.body = @payload.to_json unless @payload.to_s.empty?
+        add_payload(http_req)
       else
         raise RequestError, "Request method not allowed: #{@http_method}"
       end
@@ -69,22 +134,27 @@ module Yoti
       http_req
     end
+    #
+    # @return [URI] the full request URI
+    #
     def uri
-      @uri ||= URI(Yoti.configuration.api_endpoint + path)
+      @uri ||= URI(base_url + path)
     end
+    #
+    # @return [String] the path with query string
+    #
     def path
       @path ||= begin
-        nonce = SecureRandom.uuid
-        timestamp = Time.now.to_i
-        "/#{@endpoint}/#{token}"\
-        "?nonce=#{nonce}"\
-        "&timestamp=#{timestamp}"\
-        "&appId=#{Yoti.configuration.client_sdk_id}"
+        "/#{@endpoint}/#{token}".chomp('/') + "?#{query_string}"
       end
     end
+    #
+    # @deprecated will be removed in 2.0.0 - token is now provided with the endpoint
+    #
+    # @return [String] the decrypted connect token
+    #
     def token
       return '' unless @encrypted_connect_token
@@ -94,5 +164,136 @@ module Yoti
     def https_uri?
       uri.scheme == 'https'
     end
+    #
+    # Builds query string including nonce and timestamp
+    #
+    # @return [String]
+    #
+    def query_string
+      params = {
+        nonce: SecureRandom.uuid,
+        timestamp: Time.now.to_i
+      }
+      if @query_params.nil?
+        # @deprecated this default will be removed in 2.0.0
+        # Append appId when no custom query params are provided.
+        params.merge!(appId: Yoti.configuration.client_sdk_id)
+      else
+        Validation.assert_is_a(Hash, @query_params, 'query_params')
+        params.merge!(@query_params)
+      end
+      params.map do |k, v|
+        "#{CGI.escape(k.to_s)}=#{CGI.escape(v.to_s)}"
+      end.join('&')
+    end
+  end
+  #
+  # Builder for {Request}
+  #
+  class RequestBuilder
+    def initialize
+      @headers = {}
+      @query_params = {}
+    end
+    #
+    # Sets the base URL
+    #
+    # @param [String] base_url
+    #
+    # @return [self]
+    #
+    def with_base_url(base_url)
+      Validation.assert_is_a(String, base_url, 'base_url')
+      @base_url = base_url
+      self
+    end
+    #
+    # Adds a HTTP header to the request
+    #
+    # @param [String] header
+    # @param [String] value
+    #
+    # @return [self]
+    #
+    def with_header(header, value)
+      Validation.assert_is_a(String, header, 'header')
+      Validation.assert_is_a(String, value, 'value')
+      @headers[header] = value
+      self
+    end
+    #
+    # Adds a query parameter to the request
+    #
+    # @param [String] key
+    # @param [String] value
+    #
+    # @return [self]
+    #
+    def with_query_param(key, value)
+      Validation.assert_is_a(String, key, 'key')
+      Validation.assert_is_a(String, value, 'value')
+      @query_params[key] = value
+      self
+    end
+    #
+    # Sets the HTTP method
+    #
+    # @param [String] http_method
+    #
+    # @return [self]
+    #
+    def with_http_method(http_method)
+      Validation.assert_is_a(String, http_method, 'http_method')
+      @http_method = http_method
+      self
+    end
+    #
+    # Sets the API endpoint for the request
+    #
+    # @param [String] endpoint
+    #
+    # @return [self]
+    #
+    def with_endpoint(endpoint)
+      Validation.assert_is_a(String, endpoint, 'endpoint')
+      @endpoint = endpoint
+      self
+    end
+    #
+    # Sets the body sent with the request
+    #
+    # @param [#to_json,String] payload
+    #
+    # @return [self]
+    #
+    def with_payload(payload)
+      Validation.assert_respond_to(:to_json, payload, 'payload') unless payload.is_a?(String)
+      @payload = payload
+      self
+    end
+    #
+    # @return [Request]
+    #
+    def build
+      request = Request.new
+      request.base_url = @base_url
+      request.endpoint = @endpoint
+      request.query_params = @query_params
+      request.http_method = @http_method
+      request.payload = @payload
+      @headers.map { |k, v| request.add_header(k, v) }
+      request
+    end
   end
 end

data/lib/yoti/http/signed_request.rb CHANGED

@@ -3,6 +3,11 @@ require 'base64'
 module Yoti
   # Converts a basic Net::HTTP request into a Yoti Signed Request
   class SignedRequest
+    #
+    # @param [Net::HTTPRequest] unsigned_request
+    # @param [String] path
+    # @param [#to_json,String] payload
+    #
     def initialize(unsigned_request, path, payload = {})
       @http_req = unsigned_request
       @path = path
@@ -10,6 +15,9 @@ module Yoti
       @auth_key = Yoti::SSL.auth_key_from_pem
     end
+    #
+    # @return [Net::HTTPRequest]
+    #
     def sign
       @http_req['X-Yoti-Auth-Digest'] = message_signature
       @http_req['X-Yoti-SDK'] = Yoti.configuration.sdk_identifier
@@ -20,18 +28,19 @@ module Yoti
     private
     def message_signature
-      @message_signature ||= Yoti::SSL.get_secure_signature("#{http_method}&#{@path}#{payload_string}")
+      @message_signature ||= Yoti::SSL.get_secure_signature("#{http_method}&#{@path}#{base64_payload}")
     end
     def http_method
       @http_req.method
     end
-    # Create the base64 encoded request body
-    def payload_string
+    def base64_payload
       return '' unless @payload
-      '&' + Base64.strict_encode64(@payload.to_json)
+      payload_string = @payload.is_a?(String) ? @payload : @payload.to_json
+      "&#{Base64.strict_encode64(payload_string)}"
     end
   end
 end

data/lib/yoti/protobuf/main.rb CHANGED

@@ -3,12 +3,12 @@ $LOAD_PATH.unshift File.expand_path('./attrpubapi/', __dir__)
 require 'google/protobuf'
 require 'json'
-require_relative 'attrpubapi/List_pb.rb'
-require_relative 'compubapi/EncryptedData_pb.rb'
-require_relative 'compubapi/SignedTimestamp_pb.rb'
-require_relative 'sharepubapi/ExtraData_pb.rb'
-require_relative 'sharepubapi/IssuingAttributes_pb.rb'
-require_relative 'sharepubapi/ThirdPartyAttribute_pb.rb'
+require_relative 'attrpubapi/List_pb'
+require_relative 'compubapi/EncryptedData_pb'
+require_relative 'compubapi/SignedTimestamp_pb'
+require_relative 'sharepubapi/ExtraData_pb'
+require_relative 'sharepubapi/IssuingAttributes_pb'
+require_relative 'sharepubapi/ThirdPartyAttribute_pb'
 module Yoti
   module Protobuf
@@ -91,9 +91,9 @@ module Yoti
       private
       def convert_multi_value(value)
-        proto_multi_value = Yoti::Protobuf::Attrpubapi::MultiValue.decode(value)
+        proto_multi_values = Yoti::Protobuf::Attrpubapi::MultiValue.decode(value).values
         items = []
-        proto_multi_value.values.each do |item|
+        proto_multi_values.each do |item|
           items << value_based_on_content_type(item.data, item.content_type)
         end
         MultiValue.new(items)

data/lib/yoti/share/attribute_issuance_details.rb CHANGED

@@ -5,6 +5,7 @@ require 'base64'
 module Yoti
   module Share
     class Definition
+      # @return [String]
       attr_reader :name
       #
@@ -18,8 +19,13 @@ module Yoti
     end
     class AttributeIssuanceDetails
+      # @return [String]
       attr_reader :token
+      # @return [Array<Yoti::Share::Definition>]
       attr_reader :attributes
+      # @return [DateTime|nil]
       attr_reader :expiry_date
       #

data/lib/yoti/ssl.rb CHANGED

@@ -32,7 +32,7 @@ module Yoti
       end
       # Extracts the public key from pem key, converts it to a DER base 64 encoded value
-      # @return [String] base 64 encoded anthentication key
+      # @return [String] base 64 encoded authentication key
       def auth_key_from_pem
         public_key = private_key.public_key
         Base64.strict_encode64(public_key.to_der)
@@ -42,13 +42,13 @@ module Yoti
       # @param message [String] message to be signed
       # @return [String] signed message encoded in base 64
       def get_secure_signature(message)
-        digest = OpenSSL::Digest::SHA256.new
+        digest = OpenSSL::Digest.new('SHA256')
         Base64.strict_encode64(private_key.sign(digest, message))
       end
       # Uses the decrypted receipt key and the current user's iv to decode the text
       # @param key [String] base 64 decoded key
-      # @param iv [String] base 64 decoded iv
+      # @param user_iv [String] base 64 decoded iv
       # @param text [String] base 64 decoded cyphered text
       # @return [String] base 64 decoded deciphered text
       def decipher(key, user_iv, text)
@@ -60,7 +60,7 @@ module Yoti
       end
       # Reset and reload the Private Key used for SSL functions
-      # @deprecated 2.0.0
+      # @deprecated will be removed in 2.0.0
       def reload!
         @private_key = nil
         @pem = nil

data/lib/yoti/util/age_processor.rb CHANGED

@@ -2,7 +2,7 @@ module Yoti
   #
   # Process age attribute
   #
-  # @deprecated 2.0.0 - replaced by Yoti::AgeVerification
+  # @deprecated will be removed in 2.0.0 - replaced by Yoti::AgeVerification
   #
   class AgeProcessor
     AGE_PATTERN = 'age_(over|under):[1-9][0-9]?[0-9]?'