RubyGems - authify-middleware - Versions diffs - 0.0.2 → 0.0.3 - Mend

authify-middleware 0.0.2 → 0.0.3

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/authify/middleware/jwt_auth.rb +34 -28
data/lib/authify/middleware/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: a70bafbe49d2c12644453de94990825f565e184e
-  data.tar.gz: 8954a67e93e6daa587c6f0ab0d2065e336c10e23
+  metadata.gz: ca1abb9985205ef5498ff6ee21bd3545d2823a01
+  data.tar.gz: d55bff436475c78126b6d3e7f52b436e38b11b6c
 SHA512:
-  metadata.gz: 3542bcf9d3e0bf90fb72fa4f8c10373be28a617053761d76eafabc26da331259c40bc9caf0f5eca1c2764068474430dd776f9c733586113afd0667212d998626
-  data.tar.gz: 450d421ab9252df77ad97a96c1d371f0474de5178b9afb4f66a50725db15c1f2a61132381c6c9edd14a8147563815e9be5e2648cd27caf6e99098925c294fde4
+  metadata.gz: 7486aa62b037bc13ed3fcf7784c458a56559dc72d281bc3518260a3b2a2416c7332ede384cec9bd0c0c23fe702e8d8c92649c3e29a2f5a9a36195cfce83e93b7
+  data.tar.gz: 6e3d8ee82ab128677ff52212518a3b8da10f4dd051f42235f7cd3d4710e2b8163ec7ea277d1ac3150960f3b710571e8aa147dae6c6acdfa8cfb8f58d252a574c

data/lib/authify/middleware/jwt_auth.rb CHANGED

@@ -9,39 +9,45 @@ module Authify
       end
       # rubocop:disable Metrics/MethodLength
+      # rubocop:disable Metrics/AbcSize
       def call(env)
-        options = { algorithm: 'ES256', iss: CONFIG[:jwt][:issuer] }
-        bearer = env.fetch('HTTP_AUTHORIZATION', '').slice(7..-1)
-        payload, _header = JWT.decode bearer, public_key, true, options
+        payload = process_token
         env[:scopes] = payload['scopes']
         env[:user] = payload['user']
+        env[:authenticated] = Time.now
+      rescue JWT::DecodeError => e
+        env[:authenticated] = false
+        env[:authentication_errors] ||= []
+        env[:authentication_errors] << e
+      rescue JWT::ExpiredSignature => e
+        env[:authenticated] = false
+        env[:authentication_errors] ||= []
+        env[:authentication_errors] << e
+      rescue JWT::InvalidIssuerError => e
+        env[:authenticated] = false
+        env[:authentication_errors] ||= []
+        env[:authentication_errors] << e
+      rescue JWT::InvalidIatError => e
+        env[:authenticated] = false
+        env[:authentication_errors] ||= []
+        env[:authentication_errors] << e
+      ensure
         @app.call env
-      rescue JWT::DecodeError
-        [
-          401,
-          { 'Content-Type' => 'text/plain' },
-          ['A token must be passed.']
-        ]
-      rescue JWT::ExpiredSignature
-        [
-          403,
-          { 'Content-Type' => 'text/plain' },
-          ['The token has expired.']
-        ]
-      rescue JWT::InvalidIssuerError
-        [
-          403,
-          { 'Content-Type' => 'text/plain' },
-          ['The token does not have a valid issuer.']
-        ]
-      rescue JWT::InvalidIatError
-        [
-          403,
-          { 'Content-Type' => 'text/plain' },
-          ['The token does not have a valid "issued at" time.']
-        ]
+      end
+      private
+      def process_token
+        options = {
+          algorithm: 'ES256',
+          verify_iss: true,
+          verify_iat: true,
+          iss: CONFIG[:jwt][:issuer]
+        }
+        bearer = env.fetch('HTTP_AUTHORIZATION', '').slice(7..-1)
+        JWT.decode(bearer, public_key, true, options)[0]
       end
     end
   end

data/lib/authify/middleware/version.rb CHANGED

@@ -3,7 +3,7 @@ module Authify
     VERSION = [
       0, # Major
       0, # Minor
-      2  # Patch
+      3  # Patch
     ].join('.')
   end
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: authify-middleware
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.0.3
 platform: ruby
 authors:
 - Jonathan Gnagy
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2017-02-03 00:00:00.000000000 Z
+date: 2017-02-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack