RubyGems - yubikey - Versions diffs - 1.0.2 → 1.1.0 - Mend

yubikey 1.0.2 → 1.1.0

Files changed (6) hide show

data/README.rdoc CHANGED

@@ -5,7 +5,9 @@
 A library to decode, decrypt and parse Yubikey[http://www.yubico.com/home/index/] one-time passwords.
 == Usage
+=== OTP Decryption
   key = 'ecde18dbe76fbd0c33330f1c354871db'
   otp = 'dteffujehknhfjbrjnlnldnhcujvddbikngjrtgh'
   token = Yubikey::OTP.new(otp, key)
@@ -16,7 +18,21 @@ A library to decode, decrypt and parse Yubikey[http://www.yubico.com/home/index/
   p "Session activation counter: #{token.session_counter}" #=> 17
   p "Session timestamp: #{token.timestamp}" #=> 49712
   p "OTP random data: #{token.random_number}" #=> 40904
+== OTP Verification
+  begin
+    otp = Yubikey::OTP::Verify.new('dteffujehknhfjbrjnlnldnhcujvddbikngjrtgh')
+    if otp.valid?
+      p 'valid OTP'
+    elsif otp.replayed?
+      p 'replayed OTP'
+    end
+  rescue Yubikey::OTP::InvalidOTPError
+    p 'invalid OTP'
+  end
 == Install
   sudo gem install yubikey
@@ -28,6 +44,9 @@ A library to decode, decrypt and parse Yubikey[http://www.yubico.com/home/index/
   Copyright (c) 2009 Jonathan Rudenberg
   The MIT License. See LICENSE.
+=== Contributors
+  Erik Ruwalder
 === AES, ModHex, and CRC code
   Written by Simon Josefsson <simon@josefsson.org>
   Copyright (c) 2006, 2007, 2008, 2009 Yubico AB

data/ext/yubikey_ext/yubikey.h CHANGED

@@ -44,23 +44,6 @@
 #define yubikey_crc_ok_p(tok) (yubikey_crc16 ((tok), YUBIKEY_BLOCK_SIZE) == YUBIKEY_CRC_OK_RESIDUE)
-/*
- * Low-level functions; ModHex.
- */
-#define YUBIKEY_MODHEX_MAP "cbdefghijklnrtuv"
-/* ModHex encode input string SRC of length SRCSIZE and put the zero
-   terminated output string in DST.  The size of the output string DST
-   must be at least 2*SRCSIZE+1.  The output string is always
-   2*SRCSIZE large plus the terminating zero.  */
-extern void yubikey_modhex_encode(char *dst, const char *src, size_t srcsize);
-/* ModHex decode input string SRC of length DSTSIZE/2 into output
-   string DST.  The output string DST is always DSTSIZE/2 large plus
-   the terminating zero.  */
-extern void yubikey_modhex_decode(char *dst, const char *src, size_t dstsize);
 /* Low-level functions; AES. */
 /* AES-decrypt one 16-byte block STATE using the 128-bit KEY, leaving

data/lib/yubikey.rb CHANGED

@@ -1,7 +1,11 @@
 $:.unshift(File.dirname(__FILE__)) unless
   $:.include?(File.dirname(__FILE__)) || $:.include?(File.expand_path(File.dirname(__FILE__)))
+require 'net/http'
+require 'openssl'
 require 'yubikey_ext'
 require 'yubikey/hex'
 require 'yubikey/modhex'
-require 'yubikey/otp'
+require 'yubikey/otp'
+require 'yubikey/otp_verify'

@@ -0,0 +1,44 @@
+module Yubikey
+  API_URL = 'https://api.yubico.com/wsapi/'
+  API_ID  = 2549
+  API_KEY = 'e928a7d3076516a8c8c879f42c3ea0388f3b19f'
+  class OTP::Verify
+    # The raw status from the Yubico server
+    attr_reader :status
+    def initialize(otp)
+      verify("id=#{API_ID}&otp=#{otp}")
+    end
+    def valid?
+      @status == 'OK'
+    end
+    def replayed?
+      @status == 'REPLAYED_OTP'
+    end
+    private
+    def verify(query)
+      uri = URI.parse(API_URL) + 'verify'
+      uri.query = query
+      http = Net::HTTP.new(uri.host, uri.port)
+      http.use_ssl = true
+      http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+      req = Net::HTTP::Get.new(uri.request_uri)
+      result = http.request(req).body
+      @status = result[/status=(.*)$/,1].strip
+      if @status == 'BAD_OTP' || @status == 'BACKEND_ERROR'
+        raise OTP::InvalidOTPError, "Received error: #{@status}"
+      end
+    end
+  end # OTP::Verify
+end # Yubikey

@@ -0,0 +1,38 @@
+require File.dirname(__FILE__) + '/spec_helper.rb'
+describe 'Yubikey::OTP::Verify' do
+  before do
+    @otp = 'dteffujehknhfjbrjnlnldnhcujvddbikngjrtgh'
+    @mock_http = mock('http')
+    @mock_http_get = mock('http_get')
+    Net::HTTP.should_receive(:new).with('api.yubico.com', 443).and_return(@mock_http)
+    @mock_http.should_receive(:use_ssl=).and_return(nil)
+    @mock_http.should_receive(:verify_mode=).and_return(nil)
+    @mock_http.should_receive(:request).with(@mock_http_get).and_return(@mock_http_get)
+    Net::HTTP::Get.should_receive(:new).with(/otp=#{@otp}/).and_return(@mock_http_get)
+  end
+  it 'should verify a valid OTP' do
+    @mock_http_get.should_receive(:body).and_return('status=OK')
+    otp = Yubikey::OTP::Verify.new(@otp)
+    otp.valid?.should == true
+    otp.replayed?.should == false
+  end
+  it 'should verify a replayed OTP' do
+    @mock_http_get.should_receive(:body).and_return('status=REPLAYED_OTP')
+    otp = Yubikey::OTP::Verify.new(@otp)
+    otp.valid?.should == false
+    otp.replayed?.should == true
+  end
+  it 'should raise on invalid OTP' do
+    @mock_http_get.should_receive(:body).and_return('status=BAD_OTP')
+    lambda { otp = Yubikey::OTP::Verify.new(@otp) }.should raise_error(Yubikey::OTP::InvalidOTPError)
+  end
+end

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: yubikey
 version: !ruby/object:Gem::Version
-  version: 1.0.2
+  version: 1.1.0
 platform: ruby
 authors:
 - Jonathan Rudenberg
@@ -9,7 +9,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2009-04-21 00:00:00 -04:00
+date: 2009-06-04 00:00:00 -04:00
 default_executable:
 dependencies: []
@@ -34,12 +34,14 @@ files:
 - lib/yubikey/hex.rb
 - lib/yubikey/modhex.rb
 - lib/yubikey/otp.rb
+- lib/yubikey/otp_verify.rb
 - spec/hex_spec.rb
 - spec/spec.opts
 - spec/spec_helper.rb
 - spec/yubikey_ext_spec.rb
 - spec/yubikey_modhex_spec.rb
 - spec/yubikey_otp_spec.rb
+- spec/yubikey_otp_verify_spec.rb
 - LICENSE
 - README.rdoc
 has_rdoc: true
@@ -70,7 +72,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
 requirements: []
 rubyforge_project: yubikey
-rubygems_version: 1.3.2
+rubygems_version: 1.3.4
 signing_key:
 specification_version: 3
 summary: A library to decode, decrypt and parse Yubikey one-time passwords.
@@ -80,4 +82,5 @@ test_files:
 - spec/yubikey_ext_spec.rb
 - spec/yubikey_modhex_spec.rb
 - spec/yubikey_otp_spec.rb
+- spec/yubikey_otp_verify_spec.rb
 - examples/otp.rb