Sha256: eb6eb84e1c6aa3330ef7bd1762688f7b152ea8337fef0cf8db568914f87070df
Contents?: true
Size: 966 Bytes
Versions: 2
Compression:
Stored size: 966 Bytes
Contents
require "openssl"
module AssayDepot
class Webhook
def self.construct_event(payload, signature_header, endpoint_secret)
sig_hash = {}
# get t=, v0=, v1= components of the signature
signature_header.split(',').each do |str|
sig_hash[str.split('=')[0]] = str.split('=')[1]
end
mac = OpenSSL::HMAC.hexdigest("SHA256", "#{sig_hash["t"]}0123456789abcdefghijklmnopqrstuvwxyz", payload)
raise AssayDepot::SignatureVerificationError.new "Event (#{Rails.env}) not properly signed." if Rails.env == 'test' || Rails.env == 'development' && mac != sig_hash["v0"]
mac = OpenSSL::HMAC.hexdigest("SHA256", "#{sig_hash["t"]}#{endpoint_secret}", payload)
raise AssayDepot::SignatureVerificationError.new if Rails.env != 'test' && Rails.env != 'development' && mac != sig_hash["v1"]
raise AssayDepot::SignatureVerificationError.new "Invalid timestamp." if sig_hash["t"].to_i < 5.minutes.ago.to_i
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| assaydepot-0.1.1 | lib/assaydepot/event.rb |
| assaydepot-0.0.5 | lib/assaydepot/event.rb |