Module: Hawk::Crypto

Extended by:

Crypto

Included in:

Crypto

Defined in:

lib/hawk/crypto.rb

Instance Method Summary

• #bewit(options) ⇒ Object
• #hash(options) ⇒ Object
• #mac(options) ⇒ Object
• #normalized_string(options) ⇒ Object
• #openssl_digest(algorithm) ⇒ Object
• #ts_mac(options) ⇒ Object

Instance Method Details

#bewit(options) ⇒ Object

# File 'lib/hawk/crypto.rb', line 84

def bewit(options)
  options[:ts] ||= Time.now.to_i + options[:ttl].to_i

  _mac = mac(options.merge(:type => 'bewit'))

  parts = []

  parts << options[:credentials][:id]
  parts << options[:ts]
  parts << _mac
  parts << options[:ext]

  Base64.urlsafe_encode64(parts.join("\\")).chomp.sub(/=+\Z/, '')
end

#hash(options) ⇒ Object

# File 'lib/hawk/crypto.rb', line 25

def hash(options)
  parts = []

  parts << "hawk.1.payload"
  parts << options[:content_type]
  parts << options[:payload].to_s
  parts << nil # trailing newline

  Base64.encode64(OpenSSL::Digest.const_get(options[:credentials][:algorithm].upcase).digest(parts.join("\n"))).chomp
end

#mac(options) ⇒ Object

# File 'lib/hawk/crypto.rb', line 64

def mac(options)
  Base64.encode64(
    OpenSSL::HMAC.digest(
      openssl_digest(options[:credentials][:algorithm]).new,
      options[:credentials][:key],
      normalized_string(options)
    )
  ).chomp
end

#normalized_string(options) ⇒ Object

# File 'lib/hawk/crypto.rb', line 36

def normalized_string(options)
  options = options.dup
  if !options[:hash] && options.has_key?(:payload) && !options[:payload].nil?
    options[:hash] = hash(options)
  end

  parts = []

  parts << "hawk.1.#{options[:type] || 'header'}"
  parts << options[:ts]
  parts << options[:nonce]
  parts << options[:method].to_s.upcase
  parts << options[:request_uri]
  parts << options[:host]
  parts << options[:port]
  parts << options[:hash]
  parts << options[:ext]

  if options[:app]
    parts << options[:app]
    parts << options[:dig]
  end

  parts << nil # trailing newline

  parts.join("\n")
end

#openssl_digest(algorithm) ⇒ Object

# File 'lib/hawk/crypto.rb', line 99

def openssl_digest(algorithm)
  OpenSSL::Digest.const_get(algorithm.upcase)
end

#ts_mac(options) ⇒ Object

# File 'lib/hawk/crypto.rb', line 74

def ts_mac(options)
  Base64.encode64(
    OpenSSL::HMAC.digest(
      openssl_digest(options[:credentials][:algorithm]).new,
      options[:credentials][:key],
      "hawk.1.ts\n#{options[:ts]}\n"
    )
  ).chomp
end