Enhancement: Added functionality to send X-Hub-Signature header with outgoing UserAgent requests to enable recipient to verify the integrity of the request body.

2020-09-30 14:31:33 +02:00 · 2020-09-30 14:31:33 +02:00 · 5b4c7ab886
commit 5b4c7ab886
parent 33b682400d
1 changed files with 22 additions and 0 deletions
--- a/lib/user_agent.rb
+++ b/lib/user_agent.rb
@ -59,6 +59,9 @@ returns
    # set params
    request = set_params(request, params, options)
    # add signature
    request = set_signature(request, options)
    # start http call
    begin
      total_timeout = options[:total_timeout] || 60
@ -118,6 +121,9 @@ returns
    # http basic auth (if needed)
    request = set_basic_auth(request, options)
    # add signature
    request = set_signature(request, options)
    # start http call
    begin
      total_timeout = options[:total_timeout] || 60
@ -176,6 +182,9 @@ returns
    # http basic auth (if needed)
    request = set_basic_auth(request, options)
    # add signature
    request = set_signature(request, options)
    # start http call
    begin
      total_timeout = options[:total_timeout] || 60
@ -227,6 +236,9 @@ returns
    # http basic auth (if needed)
    request = set_basic_auth(request, options)
    # add signature
    request = set_signature(request, options)
    # start http call
    begin
      total_timeout = options[:total_timeout] || 60
@ -359,6 +371,16 @@ returns
    request
  end
  def self.set_signature(request, options)
    return request if options[:signature_token].blank?
    return request if request.body.blank?
    signature = OpenSSL::HMAC.hexdigest('sha1', options[:signature_token], request.body)
    request['X-Hub-Signature'] = "sha1=#{signature}"
    request
  end
  def self.log(url, request, response, options)
    return if !options[:log]