Class: Pnthr::Security

Inherits:

Object

• Object
• Pnthr::Security

Defined in:

lib/pnthr.rb

Instance Attribute Summary

• #cipher ⇒ Object

  Returns the value of attribute cipher.

• #request ⇒ Object

  Returns the value of attribute request.

Instance Method Summary

• #decrypt(data, key = nil, iv = nil) ⇒ Object

  Decrypt - Simple AES decryption.

• #encrypt(data, key = nil, iv = nil) ⇒ Object

  Encrypt - Simple AES encryption.

• #initialize(id, secret, options = {}) ⇒ Security constructor

  A new instance of Security.

• #roar(payload) ⇒ Object

  Roar - Encrypts the payload, makes the request and returns the response.

Constructor Details

#initialize(id, secret, options = {}) ⇒ Security

Returns a new instance of Security.

# File 'lib/pnthr.rb', line 12

def initialize(id, secret, options = {})
  @cipher = OpenSSL::Cipher::AES.new(secret.length * 8, :CFB)

  options[:url] ||= 'https://pnthr-api.herokuapp.com/'
  options[:ssl] = options[:ssl].nil? ? true : options[:ssl]
  options[:iv] ||= Base64.encode64(rand.to_s)[0..15]

  @request = {
    url: options[:url],
    uri: URI.parse(options[:url]),
    id: id,
    iv: options[:iv],
    secret: secret,
    ssl: options[:ssl]
  }
end

Instance Attribute Details

#cipher ⇒ Object

Returns the value of attribute cipher.

# File 'lib/pnthr.rb', line 10

def cipher
  @cipher
end

#request ⇒ Object

Returns the value of attribute request.

# File 'lib/pnthr.rb', line 10

def request
  @request
end

Instance Method Details

#decrypt(data, key = nil, iv = nil) ⇒ Object

Decrypt - Simple AES decryption

+ Needs to retrieve IV from the first layer

# File 'lib/pnthr.rb', line 61

def decrypt(data, key = nil, iv = nil)
  key ||= @request[:secret]
  iv ||= @request[:iv]

  @cipher.decrypt
  @cipher.key = key
  @cipher.iv = iv

  @cipher.update(Base64.decode64(data))
end

#encrypt(data, key = nil, iv = nil) ⇒ Object

Encrypt - Simple AES encryption

• a variable length key is used for greatest flexibility

• CFB is used

+ Needs HMAC + Needs variable IV to be passed with request

# File 'lib/pnthr.rb', line 45

def encrypt(data, key = nil, iv = nil)
  key ||= @request[:secret]
  iv ||= @request[:iv]

  @cipher.encrypt
  @cipher.key = key
  @cipher.iv = iv

  @cipher.update(data)
end

#roar(payload) ⇒ Object

Roar - Encrypts the payload, makes the request and returns the response

# File 'lib/pnthr.rb', line 32

def roar(payload)
  make_request(encrypt(payload))
end