RubyGems - fb-jwt-auth - Versions diffs - 0.2.2 → 0.3.0 - Mend

fb-jwt-auth 0.2.2 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/fb/jwt/auth.rb +10 -2
data/lib/fb/jwt/auth/service_token_client.rb +9 -2
data/lib/fb/jwt/auth/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a361b57c2b001ce5d99eae92c8c90536a478d0e27e5d93417dfa157dfc92fc54
-  data.tar.gz: e9ec232adbdc8bc109a9f6e27e57fb5ac17a2289d69ba029dbde7b6f71f928b0
+  metadata.gz: 809db265860e3142598f429c53482e4b642543717c83cab5c6fbe46fd4834ee5
+  data.tar.gz: a26191f1f776d29b42f3095f4ae9c9dca20d032ab31f8add3efd7dbca99239a9
 SHA512:
-  metadata.gz: d742d7ede999d0695a3d72da858c8c8314382b31539f4df7156c97c5ea01e45e0b4833952b05eeffd97fc172b6a675726829282e2ad594654d445dacf5220e9d
-  data.tar.gz: 45366b1a2238884d9b1cd5818dde5ef5f63340461d15867eb86b7e6852f132876baf3174c14397e25cc0d7d4b0093fa9867628b05a85015d95693ad583b69b86
+  metadata.gz: 9c86735004359b8c7b0261808d0bf90ed5b7ebd56cca83f83dcbb950c1894825df06051c8fc85f23ceef3c6cc79c16a05fd1cd293676d80832dd3e2c3843e1f6
+  data.tar.gz: 318864900ac94c5f51c1e781ba5aa9b990604acb85084db810144963cb93941465b7428931dafd71d0918343d4cb925778b16b3a5c8bc48899373923332d6317

data/lib/fb/jwt/auth.rb CHANGED

@@ -44,8 +44,7 @@ module Fb
         application_details = find_application_info
         begin
-          hmac_secret = public_key(application_details)
-          payload, _header = decode(hmac_secret: hmac_secret)
+          payload, _header = retrieve_and_decode_public_key(application_details)
         rescue StandardError => e
           error_message = "Token is not valid: error #{e}"
           logger.debug(error_message)
@@ -67,6 +66,15 @@ module Fb
         payload
       end
+      def retrieve_and_decode_public_key(application_details)
+        hmac_secret = public_key(application_details)
+        decode(hmac_secret: hmac_secret)
+      rescue JWT::VerificationError
+        logger.debug('First validation failed. Requesting non cached public key')
+        hmac_secret = public_key(application_details.merge(ignore_cache: true))
+        decode(hmac_secret: hmac_secret)
+      end
       def decode(verify: true, hmac_secret: nil)
         JWT.decode(
           token,

data/lib/fb/jwt/auth/service_token_client.rb CHANGED

@@ -12,9 +12,10 @@ class Fb::Jwt::Auth::ServiceTokenClient
   attr_accessor :application, :namespace, :root_url, :api_version
-  def initialize(application:, namespace: nil)
+  def initialize(application:, namespace: nil, ignore_cache: false)
     @application = application
     @namespace = namespace
+    @ignore_cache = ignore_cache
     @root_url = Fb::Jwt::Auth.service_token_cache_root_url
     @api_version = Fb::Jwt::Auth.service_token_cache_api_version || :v2
   end
@@ -38,8 +39,14 @@ class Fb::Jwt::Auth::ServiceTokenClient
   private
+  attr_reader :ignore_cache
   def public_key_uri
-    URI.join(root_url, version_url)
+    URI.join(root_url, "#{version_url}#{query_param}")
+  end
+  def query_param
+    ignore_cache ? '?ignore_cache=true' : ''
   end
   def version_url

data/lib/fb/jwt/auth/version.rb CHANGED

@@ -1,7 +1,7 @@
 module Fb
   module Jwt
     class Auth
-      VERSION = "0.2.2"
+      VERSION = "0.3.0"
     end
   end
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: fb-jwt-auth
 version: !ruby/object:Gem::Version
-  version: 0.2.2
+  version: 0.3.0
 platform: ruby
 authors:
 - Form builder developers
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2020-10-29 00:00:00.000000000 Z
+date: 2020-11-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jwt