Class: Sepa::ApplicationResponse

Inherits:

Object

• Object
• Sepa::ApplicationResponse

Includes:

ActiveModel::Validations, Utilities

Defined in:

lib/sepa/application_response.rb

Instance Attribute Summary

• #xml ⇒ Object readonly

  Returns the value of attribute xml.

Instance Method Summary

• #certificate ⇒ Object
• #doc ⇒ Object
• #hashes_match? ⇒ Boolean

  Checks that the hash value reported in the signature matches the actual one.

• #initialize(app_resp) ⇒ ApplicationResponse constructor

  A new instance of ApplicationResponse.

• #signature_is_valid? ⇒ Boolean

  Checks that the signature is signed with the private key of the certificate’s public key.

• #to_s ⇒ Object

Methods included from Utilities

#calculate_digest, #canonicalize_exclusively, #canonicalized_node, #cert_is_trusted, #cert_request_valid?, #check_validity_against_schema, #csr_to_binary, #decode, #encode, #extract_cert, #format_cert, #format_cert_request, #hmac, #iso_time, #load_body_template, #process_cert_value, #rsa_key, #x509_certificate, #xml_doc

Constructor Details

#initialize(app_resp) ⇒ ApplicationResponse

Returns a new instance of ApplicationResponse.

# File 'lib/sepa/application_response.rb', line 11

def initialize(app_resp)
  @xml = app_resp
end

Instance Attribute Details

#xml ⇒ Object (readonly)

Returns the value of attribute xml.

# File 'lib/sepa/application_response.rb', line 6

def xml
  @xml
end

Instance Method Details

#certificate ⇒ Object

# File 'lib/sepa/application_response.rb', line 50

def certificate
  extract_cert(doc, 'X509Certificate', DSIG)
end

#doc ⇒ Object

# File 'lib/sepa/application_response.rb', line 15

def doc
  @doc ||= xml_doc @xml
end

#hashes_match? ⇒ Boolean

Checks that the hash value reported in the signature matches the actual one.

Returns:

• (Boolean)

# File 'lib/sepa/application_response.rb', line 20

def hashes_match?
  are = doc.clone

  digest_value = are.at('xmlns|DigestValue', xmlns: DSIG).content.strip

  are.at('xmlns|Signature', xmlns: DSIG).remove

  actual_digest = calculate_digest(are)

  return true if digest_value == actual_digest

  false
end

#signature_is_valid? ⇒ Boolean

Checks that the signature is signed with the private key of the certificate’s public key.

Returns:

• (Boolean)

# File 'lib/sepa/application_response.rb', line 35

def signature_is_valid?
  node = doc.at('xmlns|SignedInfo', 'xmlns' => DSIG)
  node = node.canonicalize

  signature = doc.at('xmlns|SignatureValue', 'xmlns' => DSIG).content
  signature = decode(signature)

  # Return true or false
  certificate.public_key.verify(OpenSSL::Digest::SHA1.new, signature, node)
end

#to_s ⇒ Object

# File 'lib/sepa/application_response.rb', line 46

def to_s
  @xml
end