Module: Myclear::Sign

Defined in:
lib/myclear/sign.rb

Class Method Summary collapse

Class Method Details

.generate(str, options = {}) ⇒ Object 



3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
 
# File 'lib/myclear/sign.rb', line 3

def self.generate(str, options = {})
  key = OpenSSL::PKey::RSA.new(Myclear.private_key)
  digest_type = options[:digest_type] || Myclear.digest_type
  digest = case digest_type
           when 'SHA1'
             OpenSSL::Digest::SHA1.new
           when 'SHA256'
             OpenSSL::Digest::SHA256.new
           when 'SHA512'
             OpenSSL::Digest::SHA512.new
           else
             raise ArgumentError, "invalid digest_type #{digest_type}, allow value: 'SHA1', 'SHA256', 'SHA512'"
           end
  Myclear::Utils.binary_to_hex(key.sign(digest, str))
end

.verify?(sign, str, options = {}) ⇒ Boolean

Returns:

  • (Boolean) 


19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
 
# File 'lib/myclear/sign.rb', line 19

def self.verify?(sign, str, options = {})
  cer = OpenSSL::X509::Certificate.new(Myclear.fpx_certification)
  if(cer.not_after < Time.now && !Myclear.fpx_standby_certification.nil?)
    warn("Myclear Warn: the main certification has expired, please replace a new one.")
    cer = Myclear.fpx_standby_certification
  end
  digest_type = options[:digest_type] || Myclear.digest_type
  digest = case digest_type
           when 'SHA1'
             OpenSSL::Digest::SHA1.new
           when 'SHA256'
             OpenSSL::Digest::SHA256.new
           when 'SHA512'
             OpenSSL::Digest::SHA512.new
           else
             raise ArgumentError, "invalid digest_type #{digest_type}, allow value: 'SHA1', 'SHA256', 'SHA512'"
           end
  cer.public_key.verify(digest, Myclear::Utils.hex_to_binary(sign), str)
end