Class: OpenID::Server::Signatory

Inherits:

Object

• Object
• OpenID::Server::Signatory

Defined in:

lib/openid/server.rb

Overview

I sign things.

I also check signatures.

All my state is encapsulated in a store, which means I’m not generally pickleable but I am easy to reconstruct.

Constant Summary

@@_normal_key =

keys have a bogus server URL in them because the filestore really does expect that key to be a URL. This seems a little silly for the server store, since I expect there to be only one server URL.

"http://localhost/|normal"

@@_dumb_key =

"http://localhost/|dumb"

Instance Attribute Summary

• #secret_lifetime ⇒ Object

  The number of seconds a secret remains valid.

• #store ⇒ Object

  Returns the value of attribute store.

Class Method Summary

• ._dumb_key ⇒ Object
• ._normal_key ⇒ Object

Instance Method Summary

• #create_association(dumb = true, assoc_type = "HMAC-SHA1") ⇒ Object

  Make a new association.

• #get_association(assoc_handle, dumb, check_expiration = true) ⇒ Object

  Get the association with the specified handle.

• #initialize(store) ⇒ Signatory constructor

  Create a new Signatory.

• #invalidate(assoc_handle, dumb) ⇒ Object

  Invalidates the association with the given handle.

• #sign(response) ⇒ Object

  Sign a response.

• #verify(assoc_handle, message) ⇒ Object

  Verify that the signature for some data is valid.

Constructor Details

#initialize(store) ⇒ Signatory

Create a new Signatory. store is The back-end where my associations are stored.

# File 'lib/openid/server.rb', line 1022

def initialize(store)
  Util.truthy_assert(store)
  @store = store
  @secret_lifetime = 14 * 24 * 60 * 60
end

Instance Attribute Details

#secret_lifetime ⇒ Object

The number of seconds a secret remains valid. Defaults to 14 days.

# File 'lib/openid/server.rb', line 1001

def secret_lifetime
  @secret_lifetime
end

#store ⇒ Object

Returns the value of attribute store.

# File 'lib/openid/server.rb', line 1018

def store
  @store
end

Class Method Details

._dumb_key ⇒ Object

# File 'lib/openid/server.rb', line 1014

def self._dumb_key
  @@_dumb_key
end

._normal_key ⇒ Object

# File 'lib/openid/server.rb', line 1010

def self._normal_key
  @@_normal_key
end

Instance Method Details

#create_association(dumb = true, assoc_type = "HMAC-SHA1") ⇒ Object

Make a new association.

# File 'lib/openid/server.rb', line 1098

def create_association(dumb = true, assoc_type = "HMAC-SHA1")
  secret = CryptUtil.random_string(OpenID.get_secret_size(assoc_type))
  uniq = Util.to_base64(CryptUtil.random_string(4))
  handle = format("{%s}{%x}{%s}", assoc_type, Time.now.to_i, uniq)

  assoc = Association.from_expires_in(
    secret_lifetime, handle, secret, assoc_type
  )

  key = if dumb
    @@_dumb_key
  else
    @@_normal_key
  end

  @store.store_association(key, assoc)
  assoc
end

#get_association(assoc_handle, dumb, check_expiration = true) ⇒ Object

Get the association with the specified handle.

Raises:

• (ArgumentError)

# File 'lib/openid/server.rb', line 1118

def get_association(assoc_handle, dumb, check_expiration = true)
  # Hmm.  We've created an interface that deals almost entirely
  # with assoc_handles.  The only place outside the Signatory
  # that uses this (and thus the only place that ever sees
  # Association objects) is when creating a response to an
  # association request, as it must have the association's
  # secret.

  raise ArgumentError.new("assoc_handle must not be None") unless assoc_handle

  key = if dumb
    @@_dumb_key
  else
    @@_normal_key
  end

  assoc = @store.get_association(key, assoc_handle)
  if assoc and assoc.expires_in <= 0
    Util.log(format(
      "requested %sdumb key %s is expired (by %s seconds)",
      (!dumb) ? "not-" : "",
      assoc_handle,
      assoc.expires_in,
    ))
    if check_expiration
      @store.remove_association(key, assoc_handle)
      assoc = nil
    end
  end

  assoc
end

#invalidate(assoc_handle, dumb) ⇒ Object

Invalidates the association with the given handle.

# File 'lib/openid/server.rb', line 1152

def invalidate(assoc_handle, dumb)
  key = if dumb
    @@_dumb_key
  else
    @@_normal_key
  end

  @store.remove_association(key, assoc_handle)
end

#sign(response) ⇒ Object

Sign a response.

I take an OpenIDResponse, create a signature for everything in its signed list, and return a new copy of the response object with that signature included.

# File 'lib/openid/server.rb', line 1061

def sign(response)
  signed_response = response.copy
  assoc_handle = response.request.assoc_handle
  if assoc_handle
    # normal mode disabling expiration check because even if the
    # association is expired, we still need to know some
    # properties of the association so that we may preserve
    # those properties when creating the fallback association.
    assoc = get_association(assoc_handle, false, false)

    if !assoc or assoc.expires_in <= 0
      # fall back to dumb mode
      signed_response.fields.set_arg(
        OPENID_NS, "invalidate_handle", assoc_handle
      )
      assoc_type = assoc ? assoc.assoc_type : "HMAC-SHA1"
      if assoc and assoc.expires_in <= 0
        # now do the clean-up that the disabled checkExpiration
        # code didn't get to do.
        invalidate(assoc_handle, false)
      end
      assoc = create_association(true, assoc_type)
    end
  else
    # dumb mode.
    assoc = create_association(true)
  end

  begin
    signed_response.fields = assoc.sign_message(signed_response.fields)
  rescue KVFormError => e
    raise EncodingError, e
  end
  signed_response
end

#verify(assoc_handle, message) ⇒ Object

Verify that the signature for some data is valid.

# File 'lib/openid/server.rb', line 1029

def verify(assoc_handle, message)
  assoc = get_association(assoc_handle, true)
  unless assoc
    Util.log(format(
      "failed to get assoc with handle %s to verify " +
                                 "message %s",
      assoc_handle,
      message,
    ))
    return false
  end

  begin
    valid = assoc.check_message_signature(message)
  rescue StandardError => e
    Util.log(format(
      "Error in verifying %s with %s: %s",
      message,
      assoc,
      e,
    ))
    return false
  end

  valid
end