Class: Boxr::WebhookValidator

Inherits:

Object

• Object
• Boxr::WebhookValidator

Defined in:

lib/boxr/webhook_validator.rb

Constant Summary

MAXIMUM_MESSAGE_AGE =

10 minutes (in seconds)

600

Instance Attribute Summary

• #payload ⇒ Object readonly

  Returns the value of attribute payload.

• #primary_signature ⇒ Object readonly

  Returns the value of attribute primary_signature.

• #primary_signature_key ⇒ Object readonly

  Returns the value of attribute primary_signature_key.

• #secondary_signature ⇒ Object readonly

  Returns the value of attribute secondary_signature.

• #secondary_signature_key ⇒ Object readonly

  Returns the value of attribute secondary_signature_key.

• #timestamp ⇒ Object readonly

  Returns the value of attribute timestamp.

Instance Method Summary

• #generate_signature(key) ⇒ Object
• #initialize(headers, payload, primary_signature_key: nil, secondary_signature_key: nil) ⇒ WebhookValidator constructor

  A new instance of WebhookValidator.

• #valid_message? ⇒ Boolean
• #verify_delivery_timestamp ⇒ Object
• #verify_signature ⇒ Object

Constructor Details

#initialize(headers, payload, primary_signature_key: nil, secondary_signature_key: nil) ⇒ WebhookValidator

Returns a new instance of WebhookValidator.

# File 'lib/boxr/webhook_validator.rb', line 16

def initialize(headers, payload, primary_signature_key: nil, secondary_signature_key: nil)
  @payload                 = payload
  @timestamp               = headers['BOX-DELIVERY-TIMESTAMP'].to_s
  @primary_signature_key   = primary_signature_key.to_s
  @secondary_signature_key = secondary_signature_key.to_s
  @primary_signature       = headers['BOX-SIGNATURE-PRIMARY']
  @secondary_signature     = headers['BOX-SIGNATURE-SECONDARY']
end

Instance Attribute Details

#payload ⇒ Object (readonly)

Returns the value of attribute payload.

# File 'lib/boxr/webhook_validator.rb', line 5

def payload
  @payload
end

#primary_signature ⇒ Object (readonly)

Returns the value of attribute primary_signature.

# File 'lib/boxr/webhook_validator.rb', line 5

def primary_signature
  @primary_signature
end

#primary_signature_key ⇒ Object (readonly)

Returns the value of attribute primary_signature_key.

# File 'lib/boxr/webhook_validator.rb', line 5

def primary_signature_key
  @primary_signature_key
end

#secondary_signature ⇒ Object (readonly)

Returns the value of attribute secondary_signature.

# File 'lib/boxr/webhook_validator.rb', line 5

def secondary_signature
  @secondary_signature
end

#secondary_signature_key ⇒ Object (readonly)

Returns the value of attribute secondary_signature_key.

# File 'lib/boxr/webhook_validator.rb', line 5

def secondary_signature_key
  @secondary_signature_key
end

#timestamp ⇒ Object (readonly)

Returns the value of attribute timestamp.

# File 'lib/boxr/webhook_validator.rb', line 5

def timestamp
  @timestamp
end

Instance Method Details

#generate_signature(key) ⇒ Object

# File 'lib/boxr/webhook_validator.rb', line 37

def generate_signature(key)
  message_as_bytes = (payload.bytes + timestamp.bytes).pack('U')
  digest = OpenSSL::HMAC.hexdigest('SHA256', key, message_as_bytes)
  Base64.encode64(digest)
end

#valid_message? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/boxr/webhook_validator.rb', line 25

def valid_message?
  verify_delivery_timestamp && verify_signature
end

#verify_delivery_timestamp ⇒ Object

# File 'lib/boxr/webhook_validator.rb', line 29

def verify_delivery_timestamp
  message_age < MAXIMUM_MESSAGE_AGE
end

#verify_signature ⇒ Object

# File 'lib/boxr/webhook_validator.rb', line 33

def verify_signature
  generate_signature(primary_signature_key) == primary_signature || generate_signature(secondary_signature_key) == secondary_signature
end