Class: Braintree::WebhookNotificationGateway

Inherits:
Object
  • Object
show all
Defined in:
lib/braintree/webhook_notification_gateway.rb

Overview

:nodoc:

Instance Method Summary collapse

Constructor Details

#initialize(gateway) ⇒ WebhookNotificationGateway

Returns a new instance of WebhookNotificationGateway.


3
4
5
6
7
# File 'lib/braintree/webhook_notification_gateway.rb', line 3

def initialize(gateway)
  @gateway = gateway
  @config = gateway.config
  @config.assert_has_access_token_or_keys
end

Instance Method Details

#_matching_signature_pair(signature_string) ⇒ Object


26
27
28
29
30
31
32
33
# File 'lib/braintree/webhook_notification_gateway.rb', line 26

def _matching_signature_pair(signature_string)
  signature_pairs = signature_string.split("&")
  valid_pairs = signature_pairs.select { |pair| pair.include?("|") }.map { |pair| pair.split("|") }

  valid_pairs.detect do |public_key, signature|
    public_key == @config.public_key
  end
end

#_verify_signature(signature_string, payload) ⇒ Object

Raises:


35
36
37
38
39
40
41
42
43
44
# File 'lib/braintree/webhook_notification_gateway.rb', line 35

def _verify_signature(signature_string, payload)
  public_key, signature = _matching_signature_pair(signature_string)
  raise InvalidSignature, "no matching public key" if public_key.nil?

  signature_matches = [payload, payload + "\n"].any? do |payload|
    payload_signature = Braintree::Digest.hexdigest(@config.private_key, payload)
    Braintree::Digest.secure_compare(signature, payload_signature)
  end
  raise InvalidSignature, "signature does not match payload - one has been modified" unless signature_matches
end

#parse(signature_string, payload) ⇒ Object

Raises:


9
10
11
12
13
14
15
16
17
18
# File 'lib/braintree/webhook_notification_gateway.rb', line 9

def parse(signature_string, payload)
  raise InvalidSignature, "signature cannot be nil" if signature_string.nil?
  raise InvalidSignature, "payload cannot be nil" if payload.nil?
  if payload =~ /[^A-Za-z0-9+=\/\n]/
    raise InvalidSignature, "payload contains illegal characters"
  end
  _verify_signature(signature_string, payload)
  attributes = Xml.hash_from_xml(Base64.decode64(payload))
  WebhookNotification._new(@gateway, attributes[:notification])
end

#verify(challenge) ⇒ Object

Raises:


20
21
22
23
24
# File 'lib/braintree/webhook_notification_gateway.rb', line 20

def verify(challenge)
  raise InvalidChallenge, "challenge contains non-hex characters" unless challenge =~ /\A[a-f0-9]{20,32}\z/
  digest = Braintree::Digest.hexdigest(@config.private_key, challenge)
  "#{@config.public_key}|#{digest}"
end