require "otp/utils" require "otp/base32" require "otp/uri" module OTP class Base include OTP::Utils DEFAULT_DIGITS = 6 DEFAULT_ALGORITHM = "SHA1" attr_accessor :secret attr_accessor :algorithm attr_accessor :digits attr_accessor :issuer, :accountname def initialize(secret=nil, algorithm=nil, digits=nil) self.secret = secret self.algorithm = algorithm || DEFAULT_ALGORITHM self.digits = digits || DEFAULT_DIGITS end def new_secret(num_bytes=10) s = (0...num_bytes).map{ Random.rand(256).chr }.join self.secret = OTP::Base32.encode(s) end def moving_factor raise NotImplementedError end def otp(generation=0) hash = hmac(algorithm, OTP::Base32.decode(secret), pack_int64(moving_factor+generation)) return truncate(hash) end def password(generation=0) pw = (otp(generation) % (10 ** digits)).to_s pw = "0" + pw while pw.length < digits return pw end def verify(given_pw, last:0, post:0) raise "last must be greater than or equal to 0" if last < 0 raise "post must be greater than or equal to 0" if post < 0 return false if given_pw.nil? || given_pw.empty? return (-last..post).any?{|i| compare(password(i), given_pw) } end ## URI related methods def to_uri OTP::URI.format(self) end def type_specific_uri_params raise NotImplementedError end def extract_type_specific_uri_params(query) raise NotImplementedError end end end