devise_auth0_jwt_strategy 0.0.6 → 0.0.11
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/lib/devise_auth0_jwt_strategy/strategy.rb +21 -2
- metadata +30 -17
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
|
-
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
2
|
+
SHA256:
|
3
|
+
metadata.gz: 7f2a582447f88910fffd0f71dd4c6b96575a2d4deb48e30bd37002ec9cc30bc4
|
4
|
+
data.tar.gz: 26298442d7793594b3d08f0ce5a831afb0c2be7bb7fe6dac4ee5385ea83a8e46
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: e80eba69ba50b0d93ed017721347dc106aec812dfe6f05b2a18c6575ef7f7d88e35a67d46e3c3e9800cf4b5bc87819bbba4b094214c1cbc288e6004163d9fb82
|
7
|
+
data.tar.gz: 61ef056a21ddcbd48d45e222061594c3144b9e7fe1afc95de977ccd83f6872b7bcd5f8bd2ea962154c53e58d1baba362a35c9ec542ebdab700d5b781ffd072d0
|
@@ -1,5 +1,6 @@
|
|
1
1
|
require 'jwt'
|
2
2
|
require 'devise'
|
3
|
+
require "request_store"
|
3
4
|
|
4
5
|
module Devise
|
5
6
|
module Strategies
|
@@ -51,6 +52,20 @@ module Devise
|
|
51
52
|
( auth0_client_secret? and auth0_client_id? and !!jwt_token )
|
52
53
|
end
|
53
54
|
|
55
|
+
def to_boolean(value)
|
56
|
+
# Most calls to this will pass in nil so have this guard clause first
|
57
|
+
# as a performance optimization
|
58
|
+
return false if value.nil?
|
59
|
+
|
60
|
+
# We interpret a boolean true or the lowercase normalize strings 'true', and 't'
|
61
|
+
# as a true value
|
62
|
+
return value if value == !!value
|
63
|
+
return !!(['true', 't'].index(value.downcase)) if value.kind_of?(::String)
|
64
|
+
|
65
|
+
# All others are always false
|
66
|
+
return false
|
67
|
+
end
|
68
|
+
|
54
69
|
def authenticate!
|
55
70
|
|
56
71
|
if ENV['DEBUG_AUTH0_JWT']
|
@@ -62,20 +77,24 @@ module Devise
|
|
62
77
|
if valid?
|
63
78
|
# This will throw JWT::DecodeError if it fails
|
64
79
|
payload, header = ::JWT.decode(@jwt_token,
|
65
|
-
|
80
|
+
::JWT::Base64.url_decode(auth0_client_secret))
|
66
81
|
|
67
82
|
STDERR.puts payload.inspect if ENV['DEBUG_AUTH0_JWT']
|
68
83
|
|
69
84
|
raise ClaimInvalid.new('JWT has the wrong client id') unless payload['aud'] == auth0_client_id
|
70
85
|
raise ClaimInvalid.new('JWT has expired') unless payload['exp'].to_i > Time.now.to_i
|
71
86
|
|
72
|
-
u = ::User.
|
87
|
+
u = ::User.find_for_devise_auth0_jwt_strategy(payload['email'])
|
73
88
|
|
74
89
|
if u.nil?
|
75
90
|
fail!("Could not log in")
|
76
91
|
|
77
92
|
else
|
78
93
|
u.ignore_timedout = true if u.respond_to?(:ignore_timedout=)
|
94
|
+
u.ignore_active = to_boolean(payload['ignore_active']) if u.respond_to?(:ignore_active=)
|
95
|
+
|
96
|
+
::RequestStore.store[:jwt_scopes] = payload['scopes']
|
97
|
+
|
79
98
|
success!(u)
|
80
99
|
|
81
100
|
end
|
metadata
CHANGED
@@ -1,11 +1,11 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: devise_auth0_jwt_strategy
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.0.
|
4
|
+
version: 0.0.11
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Patrick McGraw
|
8
|
-
autorequire:
|
8
|
+
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
11
|
date: 2015-03-10 00:00:00.000000000 Z
|
@@ -14,60 +14,74 @@ dependencies:
|
|
14
14
|
name: jwt
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
16
16
|
requirements:
|
17
|
-
- - "
|
17
|
+
- - ">="
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version:
|
19
|
+
version: 2.2.0
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
|
-
- - "
|
24
|
+
- - ">="
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version:
|
26
|
+
version: 2.2.0
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: devise
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
30
30
|
requirements:
|
31
|
-
- - "
|
31
|
+
- - ">="
|
32
32
|
- !ruby/object:Gem::Version
|
33
33
|
version: '3.4'
|
34
34
|
type: :runtime
|
35
35
|
prerelease: false
|
36
36
|
version_requirements: !ruby/object:Gem::Requirement
|
37
37
|
requirements:
|
38
|
-
- - "
|
38
|
+
- - ">="
|
39
39
|
- !ruby/object:Gem::Version
|
40
40
|
version: '3.4'
|
41
|
+
- !ruby/object:Gem::Dependency
|
42
|
+
name: request_store
|
43
|
+
requirement: !ruby/object:Gem::Requirement
|
44
|
+
requirements:
|
45
|
+
- - "~>"
|
46
|
+
- !ruby/object:Gem::Version
|
47
|
+
version: '1.3'
|
48
|
+
type: :runtime
|
49
|
+
prerelease: false
|
50
|
+
version_requirements: !ruby/object:Gem::Requirement
|
51
|
+
requirements:
|
52
|
+
- - "~>"
|
53
|
+
- !ruby/object:Gem::Version
|
54
|
+
version: '1.3'
|
41
55
|
- !ruby/object:Gem::Dependency
|
42
56
|
name: rails
|
43
57
|
requirement: !ruby/object:Gem::Requirement
|
44
58
|
requirements:
|
45
59
|
- - ">="
|
46
60
|
- !ruby/object:Gem::Version
|
47
|
-
version:
|
61
|
+
version: 5.0.0
|
48
62
|
type: :development
|
49
63
|
prerelease: false
|
50
64
|
version_requirements: !ruby/object:Gem::Requirement
|
51
65
|
requirements:
|
52
66
|
- - ">="
|
53
67
|
- !ruby/object:Gem::Version
|
54
|
-
version:
|
68
|
+
version: 5.0.0
|
55
69
|
- !ruby/object:Gem::Dependency
|
56
70
|
name: rspec-rails
|
57
71
|
requirement: !ruby/object:Gem::Requirement
|
58
72
|
requirements:
|
59
73
|
- - "~>"
|
60
74
|
- !ruby/object:Gem::Version
|
61
|
-
version: '3.
|
75
|
+
version: '3.7'
|
62
76
|
type: :development
|
63
77
|
prerelease: false
|
64
78
|
version_requirements: !ruby/object:Gem::Requirement
|
65
79
|
requirements:
|
66
80
|
- - "~>"
|
67
81
|
- !ruby/object:Gem::Version
|
68
|
-
version: '3.
|
82
|
+
version: '3.7'
|
69
83
|
description: Authenticate requests using an Auth0 JWT passed by HTTP header
|
70
|
-
email:
|
84
|
+
email: pat@bloodhub.com
|
71
85
|
executables: []
|
72
86
|
extensions: []
|
73
87
|
extra_rdoc_files: []
|
@@ -79,7 +93,7 @@ homepage: http://rubygems.org/gems/devise_auth0_jwt_strategy
|
|
79
93
|
licenses:
|
80
94
|
- MIT
|
81
95
|
metadata: {}
|
82
|
-
post_install_message:
|
96
|
+
post_install_message:
|
83
97
|
rdoc_options: []
|
84
98
|
require_paths:
|
85
99
|
- lib
|
@@ -94,9 +108,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
94
108
|
- !ruby/object:Gem::Version
|
95
109
|
version: '0'
|
96
110
|
requirements: []
|
97
|
-
|
98
|
-
|
99
|
-
signing_key:
|
111
|
+
rubygems_version: 3.0.6
|
112
|
+
signing_key:
|
100
113
|
specification_version: 4
|
101
114
|
summary: Authenticate requests using an Auth0 JWT passed by HTTP header
|
102
115
|
test_files: []
|