lpr-partynest/spec/models/rsa_key_spec.rb

# frozen_string_literal: true

require 'rails_helper'

RSpec.describe RSAKey do
  subject { create :rsa_key }

  describe '#account' do
    it { is_expected.to belong_to(:account).optional }

    it { is_expected.not_to validate_presence_of :account }
    it { is_expected.not_to validate_uniqueness_of :account }
  end

  describe '#public_key_pem' do
    it { is_expected.to validate_presence_of :public_key_pem }
    it { is_expected.to validate_uniqueness_of :public_key_pem }
  end

  describe '#public_key_der' do
    it { is_expected.to validate_presence_of :public_key_der }
    it { is_expected.to validate_uniqueness_of :public_key_der }
  end

  describe '#bits' do
    it { is_expected.to validate_inclusion_of(:bits).in_array([2048, 4096]) }
  end

  describe '#sha1' do
    it { is_expected.to validate_presence_of :sha1 }
    it { is_expected.to validate_uniqueness_of(:sha1).case_insensitive }
  end

  describe '#sha256' do
    it { is_expected.to validate_presence_of :sha256 }
    it { is_expected.to validate_uniqueness_of(:sha256).case_insensitive }
  end

  describe '#private_key_pem_iv' do
    it { is_expected.not_to validate_presence_of :private_key_pem_iv }
  end

  describe '#private_key_pem_ciphertext' do
    it { is_expected.not_to validate_presence_of :private_key_pem_ciphertext }
  end

  describe '#encrypt_private_key_pem' do
    subject { create :rsa_key, private_key_pem: cleartext }

    let(:cleartext) { OpenSSL::PKey::RSA.new.to_pem.freeze }

    specify do
      expect(subject.encrypt_private_key_pem).to be_instance_of String
    end

    specify do
      expect(subject.encrypt_private_key_pem).to be_frozen
    end

    specify do
      expect(subject.encrypt_private_key_pem).to \
        equal subject.private_key_pem_secret
    end

    specify do
      expect { subject.encrypt_private_key_pem }.to \
        change(subject, :private_key_pem_iv)
        .from(nil)
    end

    specify do
      expect { subject.encrypt_private_key_pem }.to \
        change(subject, :private_key_pem_secret)
        .from(nil)
    end

    specify do
      expect { subject.encrypt_private_key_pem }.to \
        change(subject, :private_key_pem_ciphertext)
        .from(nil)
    end

    context 'after call' do
      before { subject.encrypt_private_key_pem }

      specify do
        expect(subject.private_key_pem).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem_iv).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem_secret).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem_ciphertext).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem).to be_frozen
      end

      specify do
        expect(subject.private_key_pem_iv).to be_frozen
      end

      specify do
        expect(subject.private_key_pem_secret).to be_frozen
      end

      specify do
        expect(subject.private_key_pem_ciphertext).to be_frozen
      end

      specify do
        expect(subject.private_key_pem).to eq cleartext
      end

      specify do
        expect(subject.private_key_pem_iv).not_to be_blank
      end

      specify do
        expect(subject.private_key_pem_secret).not_to be_blank
      end

      specify do
        expect(subject.private_key_pem_ciphertext).not_to be_blank
      end

      specify do
        cipher = OpenSSL::Cipher::AES256.new
        cipher.encrypt

        cipher.iv  = subject.private_key_pem_iv
        cipher.key = subject.private_key_pem_secret

        ciphertext = [
          cipher.update(cleartext),
          cipher.final,
        ].join.freeze

        expect(subject.private_key_pem_ciphertext).to eq ciphertext
      end
    end
  end

  describe '#decrypt_private_key_pem' do
    subject do
      create(
        :rsa_key,
        private_key_pem_iv: iv,
        private_key_pem_secret: secret,
        private_key_pem_ciphertext: ciphertext,
      )
    end

    let(:cleartext) { OpenSSL::PKey::RSA.new.to_pem.freeze }

    let!(:cipher) { OpenSSL::Cipher::AES256.new.tap(&:encrypt) }

    let!(:iv)     { cipher.random_iv.freeze }
    let!(:secret) { cipher.random_key.freeze }

    let!(:ciphertext) { [cipher.update(cleartext), cipher.final].join.freeze }

    specify do
      expect(subject.decrypt_private_key_pem).to be_instance_of String
    end

    specify do
      expect(subject.decrypt_private_key_pem).to be_frozen
    end

    specify do
      expect(subject.decrypt_private_key_pem).to equal subject.private_key_pem
    end

    specify do
      expect { subject.decrypt_private_key_pem }.to \
        change(subject, :private_key_pem)
        .from(nil)
        .to(cleartext)
    end

    context 'after call' do
      before { subject.decrypt_private_key_pem }

      specify do
        expect(subject.private_key_pem).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem_iv).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem_secret).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem_ciphertext).to be_instance_of String
      end

      specify do
        expect(subject.private_key_pem).to be_frozen
      end

      specify do
        expect(subject.private_key_pem_iv).to be_frozen
      end

      specify do
        expect(subject.private_key_pem_secret).to be_frozen
      end

      specify do
        expect(subject.private_key_pem_ciphertext).to be_frozen
      end

      specify do
        expect(subject.private_key_pem).to eq cleartext
      end

      specify do
        expect(subject.private_key_pem_iv).to equal iv
      end

      specify do
        expect(subject.private_key_pem_secret).to equal secret
      end

      specify do
        expect(subject.private_key_pem_ciphertext).to equal ciphertext
      end
    end
  end
end
Add model RSAPublicKey 2019-09-10 08:08:23 -04:00			`# frozen_string_literal: true`

			`require 'rails_helper'`

Rename model RSAPublicKey to RSAKey 2019-09-13 13:14:28 -04:00			`RSpec.describe RSAKey do`
			`subject { create :rsa_key }`
Add model RSAPublicKey 2019-09-10 08:08:23 -04:00
Add association RSAKey#account 2019-09-13 15:26:43 -04:00			`describe '#account' do`
			`it { is_expected.to belong_to(:account).optional }`

			`it { is_expected.not_to validate_presence_of :account }`
			`it { is_expected.not_to validate_uniqueness_of :account }`
			`end`

Rename column RSAPublicKey#pem to #public_key_pem 2019-09-11 21:48:26 -04:00			`describe '#public_key_pem' do`
			`it { is_expected.to validate_presence_of :public_key_pem }`
Add validations 2019-09-13 08:53:35 -04:00			`it { is_expected.to validate_uniqueness_of :public_key_pem }`
Add model RSAPublicKey 2019-09-10 08:08:23 -04:00			`end`

Add column RSAPublicKey#public_key_der 2019-09-13 08:52:03 -04:00			`describe '#public_key_der' do`
			`it { is_expected.to validate_presence_of :public_key_der }`
Add validations 2019-09-13 08:53:35 -04:00			`it { is_expected.to validate_uniqueness_of :public_key_der }`
Add column RSAPublicKey#public_key_der 2019-09-13 08:52:03 -04:00			`end`

Add model RSAPublicKey 2019-09-10 08:08:23 -04:00			`describe '#bits' do`
			`it { is_expected.to validate_inclusion_of(:bits).in_array([2048, 4096]) }`
			`end`
Add column RSAPublicKey#private_pem_ciphertext 2019-09-11 17:12:14 -04:00
Add columns RSAPublicKey#sha1, #sha256 2019-09-12 01:00:50 -04:00			`describe '#sha1' do`
			`it { is_expected.to validate_presence_of :sha1 }`
			`it { is_expected.to validate_uniqueness_of(:sha1).case_insensitive }`
			`end`

			`describe '#sha256' do`
			`it { is_expected.to validate_presence_of :sha256 }`
			`it { is_expected.to validate_uniqueness_of(:sha256).case_insensitive }`
			`end`

Add column RSAPublicKey#private_pem_ciphertext 2019-09-11 17:12:14 -04:00			`describe '#private_key_pem_iv' do`
			`it { is_expected.not_to validate_presence_of :private_key_pem_iv }`
			`end`

			`describe '#private_key_pem_ciphertext' do`
			`it { is_expected.not_to validate_presence_of :private_key_pem_ciphertext }`
			`end`
Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00
Add method RSAPublicKey#encrypt_private_key_pem 2019-09-11 23:21:17 -04:00			`describe '#encrypt_private_key_pem' do`
Rename model RSAPublicKey to RSAKey 2019-09-13 13:14:28 -04:00			`subject { create :rsa_key, private_key_pem: cleartext }`
Add method RSAPublicKey#encrypt_private_key_pem 2019-09-11 23:21:17 -04:00
			`let(:cleartext) { OpenSSL::PKey::RSA.new.to_pem.freeze }`

			`specify do`
			`expect(subject.encrypt_private_key_pem).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.encrypt_private_key_pem).to be_frozen`
			`end`

			`specify do`
			`expect(subject.encrypt_private_key_pem).to \`
			`equal subject.private_key_pem_secret`
			`end`

			`specify do`
			`expect { subject.encrypt_private_key_pem }.to \`
			`change(subject, :private_key_pem_iv)`
			`.from(nil)`
			`end`

			`specify do`
			`expect { subject.encrypt_private_key_pem }.to \`
			`change(subject, :private_key_pem_secret)`
			`.from(nil)`
			`end`

			`specify do`
			`expect { subject.encrypt_private_key_pem }.to \`
			`change(subject, :private_key_pem_ciphertext)`
			`.from(nil)`
			`end`

			`context 'after call' do`
			`before { subject.encrypt_private_key_pem }`

			`specify do`
			`expect(subject.private_key_pem).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem_iv).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem_secret).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem_ciphertext).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem_iv).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem_secret).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem_ciphertext).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem).to eq cleartext`
			`end`

			`specify do`
			`expect(subject.private_key_pem_iv).not_to be_blank`
			`end`

			`specify do`
			`expect(subject.private_key_pem_secret).not_to be_blank`
			`end`

			`specify do`
			`expect(subject.private_key_pem_ciphertext).not_to be_blank`
			`end`
Add more specs 2019-09-11 23:30:54 -04:00
			`specify do`
			`cipher = OpenSSL::Cipher::AES256.new`
			`cipher.encrypt`

			`cipher.iv = subject.private_key_pem_iv`
			`cipher.key = subject.private_key_pem_secret`

			`ciphertext = [`
			`cipher.update(cleartext),`
			`cipher.final,`
			`].join.freeze`

			`expect(subject.private_key_pem_ciphertext).to eq ciphertext`
			`end`
Add method RSAPublicKey#encrypt_private_key_pem 2019-09-11 23:21:17 -04:00			`end`
			`end`

Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00			`describe '#decrypt_private_key_pem' do`
Add more specs 2019-09-11 23:02:54 -04:00			`subject do`
			`create(`
Rename model RSAPublicKey to RSAKey 2019-09-13 13:14:28 -04:00			`:rsa_key,`
Add more specs 2019-09-11 23:02:54 -04:00			`private_key_pem_iv: iv,`
			`private_key_pem_secret: secret,`
			`private_key_pem_ciphertext: ciphertext,`
			`)`
			`end`

Add method RSAPublicKey#encrypt_private_key_pem 2019-09-11 23:21:17 -04:00			`let(:cleartext) { OpenSSL::PKey::RSA.new.to_pem.freeze }`
Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00
Add more specs 2019-09-11 23:02:54 -04:00			`let!(:cipher) { OpenSSL::Cipher::AES256.new.tap(&:encrypt) }`
Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00
Add more specs 2019-09-11 23:02:54 -04:00			`let!(:iv) { cipher.random_iv.freeze }`
			`let!(:secret) { cipher.random_key.freeze }`
Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00
Add more specs 2019-09-11 23:02:54 -04:00			`let!(:ciphertext) { [cipher.update(cleartext), cipher.final].join.freeze }`
Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00
			`specify do`
			`expect(subject.decrypt_private_key_pem).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.decrypt_private_key_pem).to be_frozen`
			`end`

			`specify do`
			`expect(subject.decrypt_private_key_pem).to equal subject.private_key_pem`
			`end`

			`specify do`
			`expect { subject.decrypt_private_key_pem }.to \`
			`change(subject, :private_key_pem)`
			`.from(nil)`
			`.to(cleartext)`
			`end`
Add more specs 2019-09-11 23:02:54 -04:00
			`context 'after call' do`
			`before { subject.decrypt_private_key_pem }`

			`specify do`
			`expect(subject.private_key_pem).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem_iv).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem_secret).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem_ciphertext).to be_instance_of String`
			`end`

			`specify do`
			`expect(subject.private_key_pem).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem_iv).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem_secret).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem_ciphertext).to be_frozen`
			`end`

			`specify do`
			`expect(subject.private_key_pem).to eq cleartext`
			`end`

			`specify do`
			`expect(subject.private_key_pem_iv).to equal iv`
			`end`

			`specify do`
			`expect(subject.private_key_pem_secret).to equal secret`
			`end`

			`specify do`
			`expect(subject.private_key_pem_ciphertext).to equal ciphertext`
			`end`
			`end`
Add method RSAPublicKey#decrypt_private_key_pem 2019-09-11 22:29:35 -04:00			`end`
Add model RSAPublicKey 2019-09-10 08:08:23 -04:00			`end`