Sha256: 9087e04b5e4270d825cc815699e98402a75005fa39dc68a5f0b4ed045f55072d
Contents?: true
Size: 1.21 KB
Versions: 1
Compression:
Stored size: 1.21 KB
Contents
require 'base64'
require 'openssl'
module FbGraph
class Auth
class SignedRequest
def self.verify(client, signed_request)
signature, payload = signed_request.split('.')
raise VerificationFailed.new(401, 'No Signature') if signature.blank?
raise VerificationFailed.new(401, 'No Payload') if payload.blank?
signature = base64_url_decode signature
data = decode_json base64_url_decode(payload)
raise VerificationFailed.new(401, 'Unexpected Signature Algorithm') unless data[:algorithm] == 'HMAC-SHA256'
_signature_ = sign(client.secret, payload)
raise VerificationFailed.new(401, 'Signature Invalid') unless signature == _signature_
data
end
private
def self.sign(key, data)
klass = OpenSSL::Digest::SHA256.new
OpenSSL::HMAC.digest(klass, key, data)
end
def self.decode_json(json)
JSON.parse(json).with_indifferent_access
rescue => e
raise VerificationFailed.new(400, 'Invalid JSON')
end
def self.base64_url_decode(str)
str += '=' * (4 - str.length.modulo(4))
str = str.gsub('-', '+').gsub('_', '/')
Base64.decode64 str
end
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| fb_graph-1.5.4 | lib/fb_graph/auth/signed_request.rb |