authentic-rb 1.5.0 → 1.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cb2f7b5ad8a00dff35d176f3da8bcb7d8064d5f843eeda674f3fdd09be1a8e62
-  data.tar.gz: '0468d1f9e132b58ece69b58b024ae44bd537194a5071f32142cec77388a04d2c'
+  metadata.gz: bb1a72bbd0adfdc4e710bc9cb998eed816b68c2d478ee69d7e891028249a9b78
+  data.tar.gz: a05603819fde73ff95e53a6c3feba89ddab1481bebf64a2fb2dffe6443231d62
 SHA512:
-  metadata.gz: 86f68149c8764e0f38f284c336711eb12804c6d0b51515c2ed69df4d141bc36955e5ece42ba065d47177ed7a30129a522e9c6f449ed2e777298ba146883e06c2
-  data.tar.gz: bf9cbced07b3c33500d6b491b49763ef9c93225b5a48fc0d18390cd96142030b44482753b9b5f19d05665b0e7c32b9b35edb196200b897ed57b28befe6c2b2ab
+  metadata.gz: ff375b3fa277837009eb7027a918d395a0aaebcd5eebc633b71070f02519407107112b6a1775143d0e3831441efe7e0188af0c3d1ae95de1866bf90e9b7a4660
+  data.tar.gz: 8f48caceb8e1302b4a54d2a41bf42af3df2b8c66f609f5d5621368305c5efe0867945c311b2c52423840d63288520ad1fa2ea94f12f176a8f61a82bd7c56cc37

data/lib/authentic/error.rb

@@ -19,4 +19,7 @@ module Authentic
 
   # Public: Represents a bad JWT.
   class InvalidToken < StandardError; end
+
+  # Public: Represents an expired JWT.
+  class ExpiredToken < StandardError; end
 end

data/lib/authentic/validator.rb

@@ -25,7 +25,7 @@ module Authentic
     def valid?(token)
       ensure_valid(token)
       true
-    rescue InvalidToken, InvalidKey, RequestError
+    rescue InvalidToken, ExpiredToken, InvalidKey, RequestError
       false
     end
 
@@ -41,16 +41,17 @@ module Authentic
 
         # Slightly more accurate to raise a key error here for nil key,
         # rather then verify raising an error that would lead to InvalidToken
-        raise InvalidKey, 'invalid JWK' if key.nil?
+        raise InvalidKey if key.nil?
 
-        raise InvalidToken, 'expired JWT' unless Time.at(jwt[:exp]) > Time.now
+        exp = Time.at(jwt[:exp])
+        raise ExpiredToken, "Token expired at #{exp}" unless exp > Time.now
 
         jwt.verify!(key)
       end
     rescue JSON::JWT::UnexpectedAlgorithm, JSON::JWT::VerificationFailed
-      raise InvalidToken, 'failed to validate token against JWK'
+      raise InvalidToken, 'Failed to validate token against JWK'
     rescue OpenSSL::PKey::PKeyError
-      raise InvalidKey, 'invalid JWK'
+      raise InvalidKey
     end
 
     # Decodes and does basic validation of JWT.
@@ -59,13 +60,13 @@ module Authentic
     #
     # Returns JSON::JWT
     def decode_jwt(token)
-      raise InvalidToken, 'invalid nil JWT provided' unless token
+      raise InvalidToken, 'JWT was nil' unless token
 
       JSON::JWT.decode(token, :skip_verification).tap do |jwt|
         raise InvalidToken, 'JWT iss was not located in provided whitelist' unless iss_whitelist.include?(jwt[:iss])
       end
     rescue JSON::JWT::InvalidFormat
-      raise InvalidToken, 'invalid JWT format'
+      raise InvalidToken, 'JWT was in an invalid format'
     end
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: authentic-rb
 version: !ruby/object:Gem::Version
-  version: 1.5.0
+  version: 1.6.0
 platform: ruby
 authors:
 - Articulate
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-01-25 00:00:00.000000000 Z
+date: 2019-03-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: json-jwt
@@ -35,14 +35,14 @@ dependencies:
   name: rest-client
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '2.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '2.0'
 description: Ruby toolkit for Auth0 API https://auth0.com.