Module: SecureRequest

Defined in:

lib/secure_request.rb,
lib/secure_request/version.rb

Constant Summary

VERSION =

'0.0.9'

Class Method Summary

• .delete(url, timeout = 60) ⇒ Object
• .get(url, timeout = 60) ⇒ Object
• .post(url, body, timeout = 60) ⇒ Object
• .put(url, body, timeout = 60) ⇒ Object
• .verify(request) ⇒ Object

Class Method Details

.delete(url, timeout = 60) ⇒ Object

# File 'lib/secure_request.rb', line 13

def self.delete(url, timeout = 60)
	HTTParty.delete url, headers: make_httparty_headers(url.strip, Time.now, timeout)
end

.get(url, timeout = 60) ⇒ Object

# File 'lib/secure_request.rb', line 17

def self.get(url, timeout = 60)
	HTTParty.get url, headers: make_httparty_headers(url.strip, Time.now, timeout)
end

.post(url, body, timeout = 60) ⇒ Object

# File 'lib/secure_request.rb', line 5

def self.post(url, body, timeout = 60)
	HTTParty.post url, body: body.strip, headers: make_httparty_headers(url.strip + body.strip, Time.now, timeout)
end

.put(url, body, timeout = 60) ⇒ Object

# File 'lib/secure_request.rb', line 9

def self.put(url, body, timeout = 60)
	HTTParty.put url, body: body.strip, headers: make_httparty_headers(url.strip + body.strip, Time.now, timeout)
end

.verify(request) ⇒ Object

# File 'lib/secure_request.rb', line 21

def self.verify(request)
	http_s = request.env['HTTP_X_SECUREREQUEST_S']
	http_ts = request.env['HTTP_X_SECUREREQUEST_TS']
	http_to = request.env['HTTP_X_SECUREREQUEST_TO']

	return false unless http_s and http_ts and http_to

	signature = http_s.strip
	timestamp = Time.at http_ts.to_i
	timeout = http_to.to_i

	data = request.url.strip

	if request.body.size > 0
		request.body.pos = 0
		data += request.body.gets.strip
	end

	Signatron.verify data, timestamp, timeout, signature
end