Sha256: ba736c08919e183a08aba1d286eb785f84edc19003c1dcee657e2108928070e5
Contents?: true
Size: 1.02 KB
Versions: 1
Compression:
Stored size: 1.02 KB
Contents
require "openssl"
module SignedForm
class HMAC
attr_accessor :secret_key
def initialize(options = {})
self.secret_key = options[:secret_key]
if secret_key.nil? || secret_key.empty?
if defined?(::Rails) and ::Rails.application.respond_to?(:secrets)
self.secret_key = ::Rails.application.secrets.secret_key_base
end
end
if secret_key.nil? || secret_key.empty?
raise Errors::NoSecretKey, "Please consult the README for instructions on creating a secret key"
end
end
def create(data)
OpenSSL::HMAC.hexdigest OpenSSL::Digest::SHA1.new, secret_key, data
end
def verify(signature, data)
secure_compare OpenSSL::HMAC.hexdigest(OpenSSL::Digest::SHA1.new, secret_key, data), signature
end
private
# After the Rack implementation
def secure_compare(a, b)
return false unless a.bytesize == b.bytesize
l = a.unpack("C*")
r, i = 0, -1
b.each_byte { |v| r |= v ^ l[i+=1] }
r == 0
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| signed_form-0.5.0 | lib/signed_form/hmac.rb |