Class: Itsdangerousr::Signer

Inherits:

Object

• Object
• Itsdangerousr::Signer

Defined in:

lib/itsdangerousr.rb

Direct Known Subclasses

TimestampSigner

Instance Method Summary

• #derive_key ⇒ Object
• #get_signature(value) ⇒ Object
• #initialize(secret_key, options = {}) ⇒ Signer constructor

  A new instance of Signer.

• #sign(value) ⇒ Object
• #unsign(signed_value) ⇒ Object
• #validate(signed_value) ⇒ Object
• #verify_signature(value, sig) ⇒ Object

Constructor Details

#initialize(secret_key, options = {}) ⇒ Signer

Returns a new instance of Signer.

# File 'lib/itsdangerousr.rb', line 53

def initialize(secret_key, options={})
  defaults = {:salt => 'itsdangerous.Signer', :sep => '.',
              :key_derivation => 'django-concat',
              :digest_method => OpenSSL::Digest::SHA1,
              :algorithm => HMACAlgorithm.new()}
  options = defaults.merge(options)
  @secret_key = secret_key
  @sep = options[:sep]
  @salt = options[:salt]
  @key_derivation = options[:key_derivation]
  @digest_method = options[:digest_method]
  @algorithm = options[:algorithm]
end

Instance Method Details

#derive_key ⇒ Object

# File 'lib/itsdangerousr.rb', line 77

def derive_key
  case @key_derivation
    when 'concat'
      @digest_method.digest(@salt + @secret_key)
    when 'django-concat'
      @digest_method.digest(@salt + 'signer' + @secret_key)
    when 'hmac'
      hmac = OpenSSL::HMAC.new(@secret_key, @digest_method)
      hmac.update(@salt)
      hmac.digest()
    when 'none'
      @secret_key
    else
      raise TypeError, 'Unknown key derivation method'
  end
end

#get_signature(value) ⇒ Object

# File 'lib/itsdangerousr.rb', line 67

def get_signature(value)
  key = derive_key()
  sig = @algorithm.get_signature(key, value)
  Itsdangerousr.base64_encode(sig)
end

#sign(value) ⇒ Object

# File 'lib/itsdangerousr.rb', line 73

def sign(value)
  value + @sep + get_signature(value)
end

#unsign(signed_value) ⇒ Object

# File 'lib/itsdangerousr.rb', line 103

def unsign(signed_value)
  unless signed_value.include?('.')
    raise BadSignature, "No #{@sep} found in signed value"
  end
  value, _, sig = signed_value.rpartition(@sep)
  unless verify_signature(value, sig)
    raise BadSignature.new("Signature #{sig} does not match", value)
  end
  value
end

#validate(signed_value) ⇒ Object

# File 'lib/itsdangerousr.rb', line 94

def validate(signed_value)
  begin
    unsign(signed_value)
    true
  rescue BadSignature
    false
  end
end

#verify_signature(value, sig) ⇒ Object

# File 'lib/itsdangerousr.rb', line 114

def verify_signature(value, sig)
  key = derive_key()
  sig = Itsdangerousr.base64_decode(sig)
  @algorithm.verify_signature(key, value, sig)
end