sharpetronics/stripe-ruby
1
0
Fork 0
mirror of https://github.com/stripe/stripe-ruby.git synced 2025-12-08 00:01:02 -05:00
Code Issues Projects Releases Wiki Activity

Allow the CA bundle to be configured

Browse Source 
As requested in #370, this will allow advanced users to configure a
certificate bundle that is expected to be more up-to-date than what
we've managed to include with the gem.
This commit is contained in:
Brandur 2016-01-26 14:16:45 -08:00
parent 91f42f4bc2
commit 61ba47d619
3 changed files with 39 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
README.rdoc
View File

@ -62,6 +62,12 @@ Run a single test:
== Configuration == Configuration
=== ca_bundle_path
The location of a file containing a bundle of CA certificates. By default the
library will use an included bundle that can successfully validate Stripe
certificates.
=== max_network_retries === max_network_retries
When `max_network_retries` is set to a positive integer, stripe will retry requests that When `max_network_retries` is set to a positive integer, stripe will retry requests that

15
lib/stripe.rb
View File

@ -72,7 +72,7 @@ module Stripe
@max_network_retry_delay = 2 @max_network_retry_delay = 2
@initial_network_retry_delay = 0.5 @initial_network_retry_delay = 0.5
@ssl_bundle_path = DEFAULT_CA_BUNDLE_PATH @ca_bundle_path = DEFAULT_CA_BUNDLE_PATH
@verify_ssl_certs = true @verify_ssl_certs = true
@open_timeout = 30 @open_timeout = 30
@ -109,7 +109,7 @@ module Stripe
if verify_ssl_certs if verify_ssl_certs
request_opts = {:verify_ssl => OpenSSL::SSL::VERIFY_PEER, request_opts = {:verify_ssl => OpenSSL::SSL::VERIFY_PEER,
:ssl_ca_file => @ssl_bundle_path} :ssl_ca_file => @ca_bundle_path}
else else
request_opts = {:verify_ssl => false} request_opts = {:verify_ssl => false}
unless @verify_ssl_warned unless @verify_ssl_warned
@ -145,6 +145,17 @@ module Stripe
[parse(response), api_key] [parse(response), api_key]
end end
# The location of a file containing a bundle of CA certificates. By default
# the library will use an included bundle that can successfully validate
# Stripe certificates.
def self.ca_bundle_path
@ca_bundle_path
end
def self.ca_bundle_path=(path)
@ca_bundle_path = path
end
def self.max_network_retries def self.max_network_retries
@max_network_retries || 0 @max_network_retries || 0
end end

20
test/stripe_test.rb
View File

@ -13,4 +13,24 @@ class StripeTest < Test::Unit::TestCase
$stderr = old_stderr $stderr = old_stderr
end end
end end
should "allow ca_bundle_path to be configured" do
begin
old = Stripe.ca_bundle_path
Stripe.ca_bundle_path = "path/to/ca/bundle"
assert_equal "path/to/ca/bundle", Stripe.ca_bundle_path
ensure
Stripe.ca_bundle_path = old
end
end
should "allow max_network_retries to be configured" do
begin
old = Stripe.max_network_retries
Stripe.max_network_retries = 99
assert_equal 99, Stripe.max_network_retries
ensure
Stripe.max_network_retries = old
end
end
end end