jro_apps/redmine Files · vendor/gems/ruby-openid-2.1.4/lib/openid/store/nonce.rb

Link to watched issues list on my page....

Link to watched issues list on my page. git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@2457 e93f8b46-1217-0410-a6f0-8f06a7374b81

Eric Davis - - Load All Authors

File last commit:

r2376:f70be197e0ae


                r2396:5bdd4291624c

Download file

             nonce.rb
        
                    68 lines
            
             | 1.9 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / vendor / gems / ruby-openid-2.1.4 / lib / openid / store / nonce.rb
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Eric Davis
    
Unpacked OpenID gem. #699...

              r2376
            
      require 'openid/cryptutil'

      require 'date'

      require 'time'

      module OpenID

        module Nonce

          DEFAULT_SKEW = 60*60*5

          TIME_FMT = '%Y-%m-%dT%H:%M:%SZ'

          TIME_STR_LEN = '0000-00-00T00:00:00Z'.size

          @@NONCE_CHRS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"

          TIME_VALIDATOR = /\d\d\d\d-\d\d-\d\dT\d\d:\d\d:\d\dZ/

          @skew = DEFAULT_SKEW

          # The allowed nonce time skew in seconds.  Defaults to 5 hours.

          # Used for checking nonce validity, and by stores' cleanup methods.

          def Nonce.skew

            @skew

          end

          def Nonce.skew=(new_skew)

            @skew = new_skew

          end

          # Extract timestamp from a nonce string

          def Nonce.split_nonce(nonce_str)

            timestamp_str = nonce_str[0...TIME_STR_LEN]

            raise ArgumentError if timestamp_str.size < TIME_STR_LEN

            raise ArgumentError unless timestamp_str.match(TIME_VALIDATOR)

            ts = Time.parse(timestamp_str).to_i

            raise ArgumentError if ts < 0

            return ts, nonce_str[TIME_STR_LEN..-1]

          end

          # Is the timestamp that is part of the specified nonce string

          # within the allowed clock-skew of the current time?

          def Nonce.check_timestamp(nonce_str, allowed_skew=nil, now=nil)

            allowed_skew = skew if allowed_skew.nil?

            begin

              stamp, foo = split_nonce(nonce_str)

            rescue ArgumentError # bad timestamp

              return false

            end

            now = Time.now.to_i unless now

            # times before this are too old

            past = now - allowed_skew

            # times newer than this are too far in the future

            future = now + allowed_skew

            return (past <= stamp and stamp <= future)

          end

          # generate a nonce with the specified timestamp (defaults to now)

          def Nonce.mk_nonce(time = nil)

            salt = CryptUtil::random_string(6, @@NONCE_CHRS)

            if time.nil?

              t = Time.now.getutc

            else

              t = Time.at(time).getutc

            end

            time_str = t.strftime(TIME_FMT)

            return time_str + salt

          end

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Eric Davis Unpacked OpenID gem. #699...	r2376	require 'openid/cryptutil'
		require 'date'
		require 'time'

		module OpenID
		module Nonce
		DEFAULT_SKEW = 60605
		TIME_FMT = '%Y-%m-%dT%H:%M:%SZ'
		TIME_STR_LEN = '0000-00-00T00:00:00Z'.size
		@@NONCE_CHRS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
		TIME_VALIDATOR = /\d\d\d\d-\d\d-\d\dT\d\d:\d\d:\d\dZ/

		@skew = DEFAULT_SKEW

		# The allowed nonce time skew in seconds. Defaults to 5 hours.
		# Used for checking nonce validity, and by stores' cleanup methods.
		def Nonce.skew
		@skew
		end

		def Nonce.skew=(new_skew)
		@skew = new_skew
		end

		# Extract timestamp from a nonce string
		def Nonce.split_nonce(nonce_str)
		timestamp_str = nonce_str[0...TIME_STR_LEN]
		raise ArgumentError if timestamp_str.size < TIME_STR_LEN
		raise ArgumentError unless timestamp_str.match(TIME_VALIDATOR)
		ts = Time.parse(timestamp_str).to_i
		raise ArgumentError if ts < 0
		return ts, nonce_str[TIME_STR_LEN..-1]
		end

		# Is the timestamp that is part of the specified nonce string
		# within the allowed clock-skew of the current time?
		def Nonce.check_timestamp(nonce_str, allowed_skew=nil, now=nil)
		allowed_skew = skew if allowed_skew.nil?
		begin
		stamp, foo = split_nonce(nonce_str)
		rescue ArgumentError # bad timestamp
		return false
		end
		now = Time.now.to_i unless now

		# times before this are too old
		past = now - allowed_skew

		# times newer than this are too far in the future
		future = now + allowed_skew

		return (past <= stamp and stamp <= future)
		end

		# generate a nonce with the specified timestamp (defaults to now)
		def Nonce.mk_nonce(time = nil)
		salt = CryptUtil::random_string(6, @@NONCE_CHRS)
		if time.nil?
		t = Time.now.getutc
		else
		t = Time.at(time).getutc
		end
		time_str = t.strftime(TIME_FMT)
		return time_str + salt
		end

		end
		end