Class: Innards::DigestHandler

Inherits:

Object

• Object
• Innards::DigestHandler

Includes:

Exceptions

Defined in:

lib/innards/digest_handler.rb

Overview

Handles Digest Authentication

Instance Method Summary

• #build_digest(path, cnonce) ⇒ Object
• #build_for(path) ⇒ Object
• #generate_ha1_hash ⇒ Object
• #generate_ha2_hash(path) ⇒ Object
• #generate_md5_hash(str) ⇒ Object
• #has_opaque? ⇒ Boolean
• #has_qop? ⇒ Boolean
• #initialize(params) ⇒ DigestHandler constructor

  A new instance of DigestHandler.

• #parse(www_authenticate_header) ⇒ Object
• #random ⇒ Object
• #request_nc ⇒ Object

Constructor Details

#initialize(params) ⇒ DigestHandler

Returns a new instance of DigestHandler.

# File 'lib/innards/digest_handler.rb', line 8

def initialize(params)
  @params = params
end

Instance Method Details

#build_digest(path, cnonce) ⇒ Object

# File 'lib/innards/digest_handler.rb', line 50

def build_digest path, cnonce
  digest = @params[:digest]
  digest_parts = [
                  generate_md5_hash(generate_ha1_hash),
                  digest['nonce'],
                  generate_md5_hash(generate_ha2_hash(path))]
  digest_parts.insert(2, request_nc, cnonce, digest['qop']) if has_qop?
  generate_md5_hash(digest_parts.join(":"))
end

#build_for(path) ⇒ Object

# File 'lib/innards/digest_handler.rb', line 24

def build_for path
  digest = @params[:digest]
  return nil if digest.empty?

  cnonce = generate_md5_hash(random)
  header = [
    %Q(Digest username="#{@params[:login_uri].user}"),
    %Q(realm="#{digest['realm']}"),
    %Q(nonce="#{digest['nonce']}"),
    %Q(uri="#{path}"),
    %Q(response="#{build_digest(path, cnonce)}"),
  ]

  if has_qop?
    fields = [
      %Q(cnonce="#{cnonce}"),
      %Q(qop="#{digest['qop']}"),
      %Q(nc=#{request_nc})
    ]
    fields.each { |field| header << field }
  end

  header << %Q(opaque="#{digest['opaque']}") if has_opaque?
  header.join(", ")
end

#generate_ha1_hash ⇒ Object

# File 'lib/innards/digest_handler.rb', line 70

def generate_ha1_hash
  login_uri = @params[:login_uri]
  digest = @params[:digest]
  [login_uri.user, digest['realm'], login_uri.password].join(":")
end

#generate_ha2_hash(path) ⇒ Object

# File 'lib/innards/digest_handler.rb', line 76

def generate_ha2_hash(path)
  ["GET", path].join(":")
end

#generate_md5_hash(str) ⇒ Object

# File 'lib/innards/digest_handler.rb', line 88

def generate_md5_hash(str)
  Digest::MD5.hexdigest(str)
end

#has_opaque? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/innards/digest_handler.rb', line 60

def has_opaque?
  digest = @params[:digest]
  digest.has_key?('opaque') and !digest['opaque'].empty?
end

#has_qop? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/innards/digest_handler.rb', line 65

def has_qop?
  digest = @params[:digest]
  digest.has_key?('qop') and !digest['qop'].empty?
end

#parse(www_authenticate_header) ⇒ Object

# File 'lib/innards/digest_handler.rb', line 12

def parse www_authenticate_header
  digest = {}
  www_authenticate_header.scan(/(\w+)="(.*?)"/) {
    digest[$1] = $2
  }
  if www_authenticate_header =~ /stale=true$/
    digest[:stale] = true
    raise StaleDigestException.new
  end
  @params[:digest] = digest
end

#random ⇒ Object

# File 'lib/innards/digest_handler.rb', line 84

def random
  "%x" % (Time.now.to_i + rand(65535))
end

#request_nc ⇒ Object

# File 'lib/innards/digest_handler.rb', line 80

def request_nc
  "%08d" % @params[:request_count]
end