Merge pull request #2 from jrconlin/feature/tests

feat: Added tests, restructured code

Author: jrconlin

CHANGELOG.md

@@ -1,3 +1,7 @@
+## 0.2 (2016-04-27)
+feat: Added tests, restructured code
+
+
 ## 0.1 (2016-04-25)
 
 Initial release

README.md

@@ -2,7 +2,7 @@
 
 This is a work in progress.
 
-## App Installation
+## Installation
 
 You'll need to run `python virtualenv`.
 Then
@@ -11,7 +11,39 @@ bin/pip install -r requirements.txt
 bin/python setup.py develop
 ```
 
-### App Usage
+## Usage
 
-`webpush/publish.py` contains an example in the stand-alone function.
+In the browser, the promise handler for
+[registration.pushManager.subscribe()](https://developer.mozilla.org/en-US/docs/Web/API/PushManager/subscribe)
+returns a
+[PushSubscription](https://developer.mozilla.org/en-US/docs/Web/API/PushSubscription)
+object. This object has a .toJSON() method that will return a JSON
+object that contains all the info we need to encrypt and push data.
 
+As illustration, a subscription info object may look like:
+```
+{"endpoint": "https://updates.push.services.mozilla.com/push/v1/gAA...", "keys": {"auth": "k8J...", "p256dh": "BOr..."}}
+```
+
+How you send the PushSubscription data to your backend, store it
+referenced to the user who requested it, and recall it when there's
+new a new push subscription update is left as an excerise for the
+reader.
+
+The data can be any serial content (string, bit array, serialized
+JSON, etc), but be sure that your receiving application is able to
+parse and understand it. (e.g. `data = "Mary had a little lamb."`)
+
+`headers` is a `dict`ionary of additional HTTP header values (e.g.
+[VAPID](https://github.com/mozilla-services/vapid/tree/master/python)
+self identification headers). It is optional and may be omitted.
+
+to send:
+```
+WebPusher(subscription_info).send(data, headers)
+```
+You can also simply encode the data to send later by calling
+
+```
+encoded = WebPush(subscription_info).encode(data)
+```

requirements.txt

@@ -1,2 +1,3 @@
 http-ece==0.5.0
 python-jose==0.5.6
+requests==2.9.1

setup.cfg

@@ -0,0 +1,8 @@
+[nosetests]
+verbose=True
+verbosity=1
+cover-tests=True
+cover-erase=True
+with-coverage=True
+detailed-errors=True
+cover-package=webpush

setup.py

@@ -3,20 +3,30 @@
 
 from setuptools import setup
 
+__version__ = "0.2"
+
+
+def read_from(file):
+    reply = []
+    with io.open(os.path.join(here, file), encoding='utf8') as f:
+        for l in f:
+            l = l.strip()
+            if not l:
+                break
+            if l[0] != '#' or l[:2] != '//':
+                reply.append(l)
+    return reply
+
+
 here = os.path.abspath(os.path.dirname(__file__))
 with io.open(os.path.join(here, 'README.md'), encoding='utf8') as f:
     README = f.read()
 with io.open(os.path.join(here, 'CHANGELOG.md'), encoding='utf8') as f:
     CHANGES = f.read()
 
-extra_options = {
-    "packages": ["http-ece==0.5.0"]
-}
-
-
-setup(name="Webpusher",
-      version="0.1",
-      description='Webpush publication library',
+setup(name="pywebpush",
+      version="0.2",
+      description='WebPush publication library',
       long_description=README + '\n\n' + CHANGES,
       classifiers=["Topic :: Internet :: WWW/HTTP",
                    "Programming Language :: Python :: Implementation :: PyPy",
@@ -27,11 +37,11 @@
       keywords='push webpush publication',
       author="jr conlin",
       author_email="src+webpusher@jrconlin.com",
-      url='http:///',
+      url='https://github.com/jrconlin/pywebpush',
       license="MPL2",
       test_suite="nose.collector",
       include_package_data=True,
       zip_safe=False,
-      tests_require=['nose', 'coverage', 'mock>=1.0.1', 'moto>=0.4.1'],
-      **extra_options
+      install_requires=read_from('requirements.txt'),
+      tests_require=read_from('test-requirements.txt')
       )

test-requirements.txt

@@ -0,0 +1,3 @@
+nose
+coverage
+mock>=1.0.1

webpush/__init__.py

@@ -0,0 +1,145 @@
+# This Source Code Form is subject to the terms of the Mozilla Public
+# License, v. 2.0. If a copy of the MPL was not distributed with this
+# file, You can obtain one at http://mozilla.org/MPL/2.0/.
+
+import base64
+import os
+
+import http_ece
+import pyelliptic
+import requests
+
+
+class WebPushException(Exception):
+    pass
+
+
+class WebPusher:
+    """WebPusher encrypts a data block using HTTP Encrypted Content Encoding
+    for WebPush.
+
+    See https://tools.ietf.org/html/draft-ietf-webpush-protocol-04
+    for the current specification, and
+    https://developer.mozilla.org/en-US/docs/Web/API/Push_API for an
+    overview of Web Push.
+
+    Example of use:
+
+    The javascript promise handler for PushManager.subscribe()
+    receives a subscription_info object. subscription_info.getJSON()
+    will return a JSON representation.
+    (e.g.
+    .. code-block:: javascript
+        subscription_info.getJSON() ==
+        {"endpoint": "https://push...",
+         "keys":{"auth": "...", "p256dh": "..."}
+        }
+    )
+
+    This subscription_info block can be stored.
+
+    To send a subscription update:
+
+    .. code-block:: python
+        # Optional
+        # headers = py_vapid.sign({"aud": "http://your.site.com",
+                                   "sub": "mailto:your_admin@your.site.com"})
+        data = "Mary had a little lamb, with a nice mint jelly"
+        WebPusher(subscription_info).send(data, headers)
+
+    """
+    subscription_info = {}
+
+    def __init__(self, subscription_info):
+        """Initialize using the info provided by the client PushSubscription
+        object (See
+        https://developer.mozilla.org/en-US/docs/Web/API/PushManager/subscribe)
+
+        :param subscription_info: a dict containing the subscription_info from
+            the client.
+
+        """
+        if 'endpoint' not in subscription_info:
+            raise WebPushException("subscription_info missing endpoint URL")
+        if 'keys' not in subscription_info:
+            raise WebPushException("subscription_info missing keys dictionary")
+        self.subscription_info = subscription_info
+        keys = self.subscription_info['keys']
+        for k in ['p256dh', 'auth']:
+            if keys.get(k) is None:
+                raise WebPushException("Missing keys value: %s", k)
+        receiver_raw = base64.urlsafe_b64decode(self._repad(keys['p256dh']))
+        if len(receiver_raw) != 65 and receiver_raw[0] != "\x04":
+            raise WebPushException("Invalid p256dh key specified")
+        self.receiver_key = receiver_raw
+        self.auth_key = base64.urlsafe_b64decode(self._repad(keys['auth']))
+
+    def _repad(self, str):
+        """Add base64 padding to the end of a string, if required"""
+        return str + "===="[:len(str) % 4]
+
+    def encode(self, data):
+        """Encrypt the data.
+
+        :param data: A serialized block of data (String, JSON, bit array,
+            etc.) Make sure that whatever you send, your client knows how
+            to understand it.
+
+        """
+        # Salt is a random 16 byte array.
+        salt = os.urandom(16)
+        # The server key is an ephemeral ECDH key used only for this
+        # transaction
+        server_key = pyelliptic.ECC(curve="prime256v1")
+        # the ID is the base64 of the raw key, minus the leading "\x04"
+        # ID tag.
+        server_key_id = base64.urlsafe_b64encode(server_key.get_pubkey()[1:])
+
+        # http_ece requires that these both be set BEFORE encrypt or
+        # decrypt is called.
+        http_ece.keys[server_key_id] = server_key
+        http_ece.labels[server_key_id] = "P-256"
+
+        encrypted = http_ece.encrypt(
+            data,
+            salt=salt,
+            keyid=server_key_id,
+            dh=self.receiver_key,
+            authSecret=self.auth_key)
+
+        return {
+            'crypto_key': base64.urlsafe_b64encode(
+                server_key.get_pubkey()).strip('='),
+            'salt': base64.urlsafe_b64encode(salt).strip("="),
+            'body': encrypted,
+        }
+
+    def send(self, data, headers={}, ttl=0):
+        """Encode and send the data to the Push Service.
+
+        :param data: A serialized block of data (see encode() ).
+        :param headers: A dictionary containing any additional HTTP headers.
+        :param ttl: The Time To Live in seconds for this message if the
+            recipient is not online. (Defaults to "0", which discards the
+            message immediately if the recipient is unavailable.)
+
+        """
+        # Encode the data.
+        encoded = self.encode(data)
+        # Append the p256dh to the end of any existing crypto-key
+        crypto_key = headers.get("crypto-key", "")
+        if crypto_key:
+            crypto_key += ','
+        crypto_key += "keyid=p256dh;dh=" + encoded["crypto_key"]
+        headers.update({
+            'crypto-key': crypto_key,
+            'content-encoding': 'aesgcm',
+            'encryption': "keyid=p256dh;salt=" + encoded['salt'],
+        })
+        if 'ttl' not in headers or ttl:
+            headers['ttl'] = ttl
+        # Additionally useful headers:
+        # Authorization / Crypto-Key (VAPID headers)
+        return requests.post(self.subscription_info['endpoint'],
+                             data=encoded.get('body'),
+                             headers=headers)