anycable-rails-jwt 0.1.0 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7e38b60305bc5b61376f47a37f89c09e1abb328e9c8df059cce318db9442f8e2
-  data.tar.gz: 077eadd6f914cfa06076dbf8b58ae7884ca24d760a4184b8433301ba7e453cc4
+  metadata.gz: 05712c4f8339d089c73fb8a23c4cb1a185f7c00c18561145c454c119c54a8651
+  data.tar.gz: 64b6c9ffd9dc13a7750bf4e5728653f0e08740314952b39573e4bacbac71afbc
 SHA512:
-  metadata.gz: b12e6a72e8fa9564922875b30df8842a4d46d5609c19ebbe74d85ce95dac9d05f127c29ebdea32fd818c20b26b31b80de32b5c18384f4265dcd50a87ee6d893f
-  data.tar.gz: 2f2475a62ffd70990edd0e9936c39a883285a77582804f7a15a02fcb38add534320e4245ed894b62994b272f5db0fd77a3706ec1dcc502f31532632a96b25fe2
+  metadata.gz: 6a7da5fc88d87a21ea118037436f7ee4612a6afcdf0acbbe1fd8a3713b479baf7692d684f8dfd0a23cf53fd6ed18f6af82794fe49349ef4f014b872709c53fcf
+  data.tar.gz: 79035b6aa1581ceaf3295d809f493a7ff967448b178ff46e21e98986ae25c75f60a7b30fac3c2f6516171b5e63bf85d612841ccd1314f745c52f201e5a1c2459

data/CHANGELOG.md

@@ -2,6 +2,11 @@
 
 ## master
 
+## 0.2.0 (2023-07-25)
+
+- Changed **anycable-rails** dependency to **anycable-rails-core**.
+- **Ruby 2.7+** is required.
+
 ## 0.1.0 (2020-09-23)
 
 - Initial version.

data/LICENSE.txt

@@ -1,4 +1,4 @@
-Copyright (c) 2021 Vladimir Dementyev
+Copyright (c) 2021-2023 Vladimir Dementyev
 
 MIT License
 

data/README.md

@@ -58,7 +58,7 @@ module ApplicationCable
     identified_by :current_user
 
     def connect
-      token = request.params[:token]
+      token = request.params[:jid]
 
       identifiers = AnyCable::Rails::JWT.decode(token)
       identifiers.each do |k, v|
@@ -71,6 +71,30 @@ module ApplicationCable
 end
 ```
 
+In AnyCable a token's TTL is checked by the `anycable-go` server. In case the token is expired, the server [would disconnect with a specific reason](https://anycable.io/blog/jwt-identification-and-hot-streams/) `token_expired`.
+
+To mimic this behavior without AnyCable, you can add a simple patch to your application connection:
+
+```ruby
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+    # ...
+
+    private
+
+    # Overload the +ActionCable::Connection::Base+ to handle JWT expiration
+    # as rejected connection with a specific reason.
+    # (in AnyCable this check is <also> done by the `anycable-go` server).
+    def handle_open
+      super
+    rescue JWT::ExpiredSignature
+      logger.error "An expired JWT token was rejected"
+      close(reason: "token_expired", reconnect: false) if websocket.alive?
+    end
+  end
+end
+```
+
 ## Contributing
 
 Bug reports and pull requests are welcome on GitHub at [https://github.com/anycable/anycable-rails-jwt](https://github.com/anycable/anycable-rails-jwt).

data/lib/anycable/rails/jwt/version.rb

@@ -3,7 +3,7 @@
 module AnyCable
   module Rails
     module JWT # :nodoc:
-      VERSION = "0.1.0"
+      VERSION = "0.2.0"
     end
   end
 end

metadata

@@ -1,17 +1,17 @@
 --- !ruby/object:Gem::Specification
 name: anycable-rails-jwt
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - Vladimir Dementyev
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-09-23 00:00:00.000000000 Z
+date: 2023-07-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: anycable-rails
+  name: anycable-rails-core
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
@@ -126,14 +126,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.6'
+      version: '2.7'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.15
+rubygems_version: 3.4.8
 signing_key:
 specification_version: 4
 summary: AnyCable Rails helpers for JWT-based authentication