jro_apps/redmine Files · vendor/gems/ruby-openid-2.1.4/lib/openid/store/nonce.rb

Link to watched issues list on my page....

Link to watched issues list on my page. git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@2457 e93f8b46-1217-0410-a6f0-8f06a7374b81

Eric Davis - - Load All Authors

File last commit:

r2376:f70be197e0ae


                r2396:5bdd4291624c

Download file

             nonce.rb
        
                    68 lines
            
             | 1.9 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / vendor / gems / ruby-openid-2.1.4 / lib / openid / store / nonce.rb
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      require 'openid/cryptutil'

      require 'date'

      require 'time'

      module OpenID

        module Nonce

          DEFAULT_SKEW = 60*60*5

          TIME_FMT = '%Y-%m-%dT%H:%M:%SZ'

          TIME_STR_LEN = '0000-00-00T00:00:00Z'.size

          @@NONCE_CHRS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"

          TIME_VALIDATOR = /\d\d\d\d-\d\d-\d\dT\d\d:\d\d:\d\dZ/

          @skew = DEFAULT_SKEW

          # The allowed nonce time skew in seconds.  Defaults to 5 hours.

          # Used for checking nonce validity, and by stores' cleanup methods.

          def Nonce.skew

            @skew

          end

          def Nonce.skew=(new_skew)

            @skew = new_skew

          end

          # Extract timestamp from a nonce string

          def Nonce.split_nonce(nonce_str)

            timestamp_str = nonce_str[0...TIME_STR_LEN]

            raise ArgumentError if timestamp_str.size < TIME_STR_LEN

            raise ArgumentError unless timestamp_str.match(TIME_VALIDATOR)

            ts = Time.parse(timestamp_str).to_i

            raise ArgumentError if ts < 0

            return ts, nonce_str[TIME_STR_LEN..-1]

          end

          # Is the timestamp that is part of the specified nonce string

          # within the allowed clock-skew of the current time?

          def Nonce.check_timestamp(nonce_str, allowed_skew=nil, now=nil)

            allowed_skew = skew if allowed_skew.nil?

            begin

              stamp, foo = split_nonce(nonce_str)

            rescue ArgumentError # bad timestamp

              return false

            end

            now = Time.now.to_i unless now

            # times before this are too old

            past = now - allowed_skew

            # times newer than this are too far in the future

            future = now + allowed_skew

            return (past <= stamp and stamp <= future)

          end

          # generate a nonce with the specified timestamp (defaults to now)

          def Nonce.mk_nonce(time = nil)

            salt = CryptUtil::random_string(6, @@NONCE_CHRS)

            if time.nil?

              t = Time.now.getutc

            else

              t = Time.at(time).getutc

            end

            time_str = t.strftime(TIME_FMT)

            return time_str + salt

          end

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				require 'openid/cryptutil'
				require 'date'
				require 'time'

				module OpenID
				module Nonce
				DEFAULT_SKEW = 60605
				TIME_FMT = '%Y-%m-%dT%H:%M:%SZ'
				TIME_STR_LEN = '0000-00-00T00:00:00Z'.size
				@@NONCE_CHRS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
				TIME_VALIDATOR = /\d\d\d\d-\d\d-\d\dT\d\d:\d\d:\d\dZ/

				@skew = DEFAULT_SKEW

				# The allowed nonce time skew in seconds. Defaults to 5 hours.
				# Used for checking nonce validity, and by stores' cleanup methods.
				def Nonce.skew
				@skew
				end

				def Nonce.skew=(new_skew)
				@skew = new_skew
				end

				# Extract timestamp from a nonce string
				def Nonce.split_nonce(nonce_str)
				timestamp_str = nonce_str[0...TIME_STR_LEN]
				raise ArgumentError if timestamp_str.size < TIME_STR_LEN
				raise ArgumentError unless timestamp_str.match(TIME_VALIDATOR)
				ts = Time.parse(timestamp_str).to_i
				raise ArgumentError if ts < 0
				return ts, nonce_str[TIME_STR_LEN..-1]
				end

				# Is the timestamp that is part of the specified nonce string
				# within the allowed clock-skew of the current time?
				def Nonce.check_timestamp(nonce_str, allowed_skew=nil, now=nil)
				allowed_skew = skew if allowed_skew.nil?
				begin
				stamp, foo = split_nonce(nonce_str)
				rescue ArgumentError # bad timestamp
				return false
				end
				now = Time.now.to_i unless now

				# times before this are too old
				past = now - allowed_skew

				# times newer than this are too far in the future
				future = now + allowed_skew

				return (past <= stamp and stamp <= future)
				end

				# generate a nonce with the specified timestamp (defaults to now)
				def Nonce.mk_nonce(time = nil)
				salt = CryptUtil::random_string(6, @@NONCE_CHRS)
				if time.nil?
				t = Time.now.getutc
				else
				t = Time.at(time).getutc
				end
				time_str = t.strftime(TIME_FMT)
				return time_str + salt
				end

				end
				end