Contents

# frozen_string_literal: true

require 'digest'

module Evervault
  module Utils
    class ValidationUtils
      def self.validate_app_uuid_and_api_key(app_uuid, api_key)
        if app_uuid.nil?
          raise Evervault::Errors::EvervaultError,
                'No App ID provided. The App ID can be retrieved in the Evervault dashboard (App Settings).'
        end
        if api_key.nil?
          raise Evervault::Errors::EvervaultError,
                'The provided App ID is invalid. The App ID can be retrieved in the Evervault dashboard (App Settings).'
        end
        return unless api_key.start_with?('ev:key')

        # Scoped API key
        app_uuid_hash = Digest::SHA512.base64digest(app_uuid)[0, 6]
        app_uuid_hash_from_api_key = api_key.split(':')[4]
        return unless app_uuid_hash != app_uuid_hash_from_api_key

        raise Evervault::Errors::EvervaultError,
              "The API key is not valid for app #{app_uuid}. Make sure to use an API key belonging to the ap'\
        'p #{app_uuid}."
      end
    end
  end
end

Version data entries

1 entries across 1 versions & 1 rubygems

Version	Path
evervault-3.0.1	lib/evervault/utils/validation_utils.rb