Class: NemID::Authentication::Response

Inherits:

Object

• Object
• NemID::Authentication::Response

Defined in:

lib/nemid/authentication/response.rb

Constant Summary

PID_REGEX =

/\APID:([0-9-]+)\Z/.freeze

RID_REGEX =

/\ARID:([0-9-]+)\Z/.freeze

Instance Method Summary

• #extract_pid ⇒ Object
• #extract_pid_or_rid ⇒ Object
• #extract_rid ⇒ Object
• #has_pid? ⇒ Boolean
• #has_rid? ⇒ Boolean
• #initialize(string) ⇒ Response constructor

  A new instance of Response.

• #user_certificate_expired? ⇒ Boolean
• #user_certificate_revoked? ⇒ Boolean
• #valid_certificate_chain? ⇒ Boolean
• #valid_signature? ⇒ Boolean
• #validate_response ⇒ Object

Constructor Details

#initialize(string) ⇒ Response

Returns a new instance of Response.

# File 'lib/nemid/authentication/response.rb', line 7

def initialize(string)
  if string.match?(/\A[A-Za-z0-9+\/\r\n]+={0,2}\z/)
    decoded_string = Base64.decode64(string)
    if decoded_string.start_with? '<?xml'
      @doc = NemID::XMLDSig::Document.new(decoded_string)
    else
      raise error(decoded_string)
    end
  elsif string.start_with? '<?xml'
    @doc = NemID::XMLDSig::Document.new(string)
  else
    raise NemID::Errors::ResponseError
  end
end

Instance Method Details

#extract_pid ⇒ Object

# File 'lib/nemid/authentication/response.rb', line 22

def extract_pid
  if has_pid?
    serial_number.match(PID_REGEX)[1]
  end
end

#extract_pid_or_rid ⇒ Object

# File 'lib/nemid/authentication/response.rb', line 34

def extract_pid_or_rid
  serial_number
end

#extract_rid ⇒ Object

# File 'lib/nemid/authentication/response.rb', line 28

def extract_rid
  if has_rid?
    serial_number.match(RID_REGEX)[1]
  end
end

#has_pid? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/nemid/authentication/response.rb', line 38

def has_pid?
  serial_number.match?(PID_REGEX)
end

#has_rid? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/nemid/authentication/response.rb', line 42

def has_rid?
  serial_number.match?(RID_REGEX)
end

#user_certificate_expired? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/nemid/authentication/response.rb', line 46

def user_certificate_expired?
  @doc.user_certificate_expired?
end

#user_certificate_revoked? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/nemid/authentication/response.rb', line 50

def user_certificate_revoked?
  @doc.user_certificate_revoked?
end

#valid_certificate_chain? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/nemid/authentication/response.rb', line 54

def valid_certificate_chain?
  @doc.validate_certificate_chain
end

#valid_signature? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/nemid/authentication/response.rb', line 67

def valid_signature?
  @doc.validate_signature
end

#validate_response ⇒ Object

Raises:

• (NemID::Errors::InvalidSignature)

# File 'lib/nemid/authentication/response.rb', line 58

def validate_response
  raise NemID::Errors::InvalidSignature if not valid_signature?
  raise NemID::Errors::InvalidCertificateChain if not valid_certificate_chain?
  raise NemID::Errors::UserCertificateExpired if user_certificate_expired?
  raise NemID::Errors::UserCertificateRevoked if user_certificate_revoked?

  true
end