Class: Ribbon::Intercom::Service::Channel

Inherits:

Object

• Object
• Ribbon::Intercom::Service::Channel

Includes:

BCrypt

Defined in:

lib/ribbon/intercom/service/channel.rb,
lib/ribbon/intercom/service/channel/stores.rb

Defined Under Namespace

Modules: Stores

Instance Attribute Summary

• #name ⇒ Object readonly

  Returns the value of attribute name.

• #secret_hash_crt ⇒ Object readonly

  Returns the value of attribute secret_hash_crt.

• #secret_hash_prv ⇒ Object readonly

  Returns the value of attribute secret_hash_prv.

• #signing_keys ⇒ Object readonly

  Returns the value of attribute signing_keys.

• #store ⇒ Object readonly

  Returns the value of attribute store.

• #token ⇒ Object readonly

  Returns the value of attribute token.

Instance Method Summary

• #==(other) ⇒ Object
• #close ⇒ Object
• #initialize(store, params = {}) ⇒ Channel constructor

  A new instance of Channel.

• #may(*args) ⇒ Object
• #may!(*args) ⇒ Object
• #may?(*perms) ⇒ Boolean
• #permissions ⇒ Object
• #refresh(params = {}) ⇒ Object

  Refreshes the channel.

• #rotate_secret ⇒ Object
• #rotate_secret! ⇒ Object
• #save ⇒ Object
• #secret_crt ⇒ Object
• #secret_prv ⇒ Object
• #sign(data) ⇒ Object
• #valid_secret?(secret) ⇒ Boolean
• #verify(signed_data) ⇒ Object
• #with_lock(&block) ⇒ Object

Constructor Details

#initialize(store, params = {}) ⇒ Channel

Returns a new instance of Channel.

# File 'lib/ribbon/intercom/service/channel.rb', line 18

def initialize(store, params={})
  @store = store
  @name = params[:name] or raise Errors::ChannelNameMissingError
  @token = params[:token]
  refresh(params)
end

Instance Attribute Details

#name ⇒ Object (readonly)

Returns the value of attribute name.

# File 'lib/ribbon/intercom/service/channel.rb', line 11

def name
  @name
end

#secret_hash_crt ⇒ Object (readonly)

Returns the value of attribute secret_hash_crt.

# File 'lib/ribbon/intercom/service/channel.rb', line 15

def secret_hash_crt
  @secret_hash_crt
end

#secret_hash_prv ⇒ Object (readonly)

Returns the value of attribute secret_hash_prv.

# File 'lib/ribbon/intercom/service/channel.rb', line 16

def secret_hash_prv
  @secret_hash_prv
end

#signing_keys ⇒ Object (readonly)

Returns the value of attribute signing_keys.

# File 'lib/ribbon/intercom/service/channel.rb', line 14

def signing_keys
  @signing_keys
end

#store ⇒ Object (readonly)

Returns the value of attribute store.

# File 'lib/ribbon/intercom/service/channel.rb', line 12

def store
  @store
end

#token ⇒ Object (readonly)

Returns the value of attribute token.

# File 'lib/ribbon/intercom/service/channel.rb', line 13

def token
  @token
end

Instance Method Details

#==(other) ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 110

def ==(other)
  other.is_a?(Channel) &&
    name == other.name &&
    store == other.store &&
    token == other.token &&
    secret_crt.to_s == other.secret_crt.to_s &&
    secret_prv.to_s == other.secret_prv.to_s &&
    permissions == other.permissions
end

#close ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 106

def close
  store.delete(self)
end

#may(*args) ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 60

def may(*args)
  (@_allowed_to ||= Hash.new(false)).merge!(
    Hash[
      args.map { |perm| [perm.to_s, true] }
    ]
  ).keys.to_set
end

#may!(*args) ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 68

def may!(*args)
  may(*args).tap { save }
end

#may?(*perms) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/ribbon/intercom/service/channel.rb', line 72

def may?(*perms)
  perms.all? { |perm| _may?(perm) }
end

#permissions ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 76

def permissions
  @_allowed_to.keys.to_set
end

#refresh(params = {}) ⇒ Object

Refreshes the channel. To be called by the store after obtaining a lock.

# File 'lib/ribbon/intercom/service/channel.rb', line 27

def refresh(params={})
  @secret_hash_crt = params[:secret_hash_crt]
  @secret_hash_prv = params[:secret_hash_prv]
  @signing_keys = params[:signing_keys] || {}

  @_allowed_to = nil
  may(*params.fetch(:may, []))
end

#rotate_secret ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 36

def rotate_secret
  SecureRandom.hex(16).tap { |secret|
    @secret_hash_prv = secret_hash_crt
    @secret_hash_crt = Password.create(secret)
  }
end

#rotate_secret! ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 43

def rotate_secret!
  rotate_secret.tap { save }
end

#save ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 96

def save
  # Loop until unique
  unless token
    loop { break unless store.token_exists?(@token = SecureRandom.hex(4)) }
  end

  _run_validations
  store.persist(self)
end

#secret_crt ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 84

def secret_crt
  @__secret_crt ||= _to_bcrypt_pw(secret_hash_crt)
end

#secret_prv ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 88

def secret_prv
  @__secret_prv ||= _to_bcrypt_pw(secret_hash_prv)
end

#sign(data) ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 47

def sign(data)
  key_id, key = _signing_key
  "\x01" + [key_id].pack('N') + Utils::Signer.new(key).sign(data)
end

#valid_secret?(secret) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/ribbon/intercom/service/channel.rb', line 80

def valid_secret?(secret)
  !!secret && (secret_crt == secret || secret_prv == secret)
end

#verify(signed_data) ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 52

def verify(signed_data)
  key_id = signed_data.slice(1, 4).unpack('N').first

  if (key=_retrieve_signing_key(key_id))
    Utils::Signer.new(key).verify(signed_data[5..-1])
  end
end

#with_lock(&block) ⇒ Object

# File 'lib/ribbon/intercom/service/channel.rb', line 92

def with_lock(&block)
  store.with_lock(self, &block)
end