api_guard 0.5.2 → 0.6.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +1 -1
- data/lib/api_guard/jwt_auth/json_web_token.rb +3 -2
- data/lib/api_guard/jwt_auth/refresh_jwt_token.rb +9 -3
- data/lib/api_guard/version.rb +1 -1
- data/lib/api_guard.rb +3 -0
- data/lib/generators/api_guard/initializer/templates/initializer.rb +4 -0
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 664b5fd08385f8cb690e350127d83bdeb8228264ccf179bc2a4242841e27e114
|
|
4
|
+
data.tar.gz: 6c94a5a7867c4ce5aa186f4f18fbfd4706b654818de791e23b8d83827e58fcf1
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 4d5b0b0145c8c2c82a4a679c2ece7249e397ec3ad497dc9336388fff6d6830e76f70078336a50b790ace86f374967840c99535b86989bb2bec570d30fbe5b912
|
|
7
|
+
data.tar.gz: e90af09ed86e505eb7a38f489f3347fbfc9f906f7d141748c4c4bc28365cf165cbfa668832eceef29e744dcb9ea929e4b568181730cd6337023183b64cd5cd40
|
data/README.md
CHANGED
|
@@ -424,7 +424,7 @@ To include token refreshing in your application you need to create a table to st
|
|
|
424
424
|
Use below command to create a model `RefeshToken` with columns to store the token and the user reference
|
|
425
425
|
|
|
426
426
|
```bash
|
|
427
|
-
$ rails generate model refresh_token token:string:uniq user:references
|
|
427
|
+
$ rails generate model refresh_token token:string:uniq user:references expire_at:datetime
|
|
428
428
|
```
|
|
429
429
|
|
|
430
430
|
Then, run migration to create the `refresh_tokens` table
|
|
@@ -34,7 +34,8 @@ module ApiGuard
|
|
|
34
34
|
# Also, create refresh token if enabled for the resource.
|
|
35
35
|
#
|
|
36
36
|
# This creates expired JWT token if the argument 'expired_token' is true which can be used for testing.
|
|
37
|
-
|
|
37
|
+
# This creates expired refresh token if the argument 'expired_refresh_token' is true which can be used for testing.
|
|
38
|
+
def jwt_and_refresh_token(resource, resource_name, expired_token = false, expired_refresh_token = false)
|
|
38
39
|
payload = {
|
|
39
40
|
"#{resource_name}_id": resource.id,
|
|
40
41
|
exp: expired_token ? token_issued_at : token_expire_at,
|
|
@@ -44,7 +45,7 @@ module ApiGuard
|
|
|
44
45
|
# Add custom data in the JWT token payload
|
|
45
46
|
payload.merge!(resource.jwt_token_payload) if resource.respond_to?(:jwt_token_payload)
|
|
46
47
|
|
|
47
|
-
[encode(payload), new_refresh_token(resource)]
|
|
48
|
+
[encode(payload), new_refresh_token(resource, expired_refresh_token)]
|
|
48
49
|
end
|
|
49
50
|
|
|
50
51
|
# Create tokens and set response headers
|
|
@@ -4,6 +4,11 @@ module ApiGuard
|
|
|
4
4
|
module JwtAuth
|
|
5
5
|
# Common module for refresh token functionality
|
|
6
6
|
module RefreshJwtToken
|
|
7
|
+
|
|
8
|
+
def refresh_token_expire_at
|
|
9
|
+
@refresh_token_expire_at ||= (Time.now.utc + ApiGuard.refresh_token_validity)
|
|
10
|
+
end
|
|
11
|
+
|
|
7
12
|
def refresh_token_association(resource)
|
|
8
13
|
resource.class.refresh_token_association
|
|
9
14
|
end
|
|
@@ -18,7 +23,7 @@ module ApiGuard
|
|
|
18
23
|
end
|
|
19
24
|
|
|
20
25
|
def find_refresh_token_of(resource, refresh_token)
|
|
21
|
-
refresh_tokens_for(resource).
|
|
26
|
+
refresh_tokens_for(resource).where(token: refresh_token).where('expire_at IS NULL OR expire_at > ?', Time.now.utc).first
|
|
22
27
|
end
|
|
23
28
|
|
|
24
29
|
# Generate and return unique refresh token for the resource
|
|
@@ -30,10 +35,11 @@ module ApiGuard
|
|
|
30
35
|
end
|
|
31
36
|
|
|
32
37
|
# Create a new refresh_token for the current resource
|
|
33
|
-
|
|
38
|
+
# This creates expired refresh_token if the argument 'expired_refresh_token' is true which can be used for testing.
|
|
39
|
+
def new_refresh_token(resource, expired_refresh_token = false)
|
|
34
40
|
return unless refresh_token_enabled?(resource)
|
|
35
41
|
|
|
36
|
-
refresh_tokens_for(resource).create(token: uniq_refresh_token(resource)).token
|
|
42
|
+
refresh_tokens_for(resource).create(token: uniq_refresh_token(resource), expire_at: expired_refresh_token ? Time.now.utc : refresh_token_expire_at).token
|
|
37
43
|
end
|
|
38
44
|
|
|
39
45
|
def destroy_all_refresh_tokens(resource)
|
data/lib/api_guard/version.rb
CHANGED
data/lib/api_guard.rb
CHANGED
|
@@ -4,6 +4,10 @@ ApiGuard.setup do |config|
|
|
|
4
4
|
# Validity of the JWT access token
|
|
5
5
|
# Default: 1 day
|
|
6
6
|
# config.token_validity = 1.day
|
|
7
|
+
|
|
8
|
+
# Validity of the refresh token
|
|
9
|
+
# Default: 2 weeks
|
|
10
|
+
# config.refresh_token_validity = 2.weeks
|
|
7
11
|
|
|
8
12
|
# Secret key for signing (encoding & decoding) the JWT access token
|
|
9
13
|
# Default: 'secret_key_base' from Rails secrets
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: api_guard
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.6.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Gokul Murali
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2022-03-21 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: jwt
|