grape-jwt-authentication 1.2.0 → 2.0.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7900166f72226d3f5dc97a2f025ff3d2e515555a3828382aaa6bbe40f76e7fd6
-  data.tar.gz: bd31474aac492ba98f0eb86b1b669e948daac39686b4a12b7e658954a8687813
+  metadata.gz: 6e3f66e76b4c2b311f69dd18a6a5ad9288ec5ece3fc34a3cc7d11a685adf991c
+  data.tar.gz: da5277432b5e8eedad129c1fbf1236b1eca71bb01d32b9c2748dc5525e7e83d4
 SHA512:
-  metadata.gz: d2f26a9a534a847b94cfc05db8dde97bf9592ff1ab42204e21e3c7334cfd9f6a2d4328948a23e536c07e48c027932ef17b68c58c9a40226d014cbb00498b6bf0
-  data.tar.gz: dfa9f8e2362e79126df5e5ff6de634ef47c9cc2cb1f2cb44907766902772025d9d16e22a0fbc487c9c7058c1853f38b1459746100a4c06538e5b2d26fb6f8c11
+  metadata.gz: 002fcd02712c1b23edc746d7b396cf53fe1cc1586b91bf8c1b4d72eaa44daaf4ff1a6e39064f211543f46bdf0bf473baaacaf66134d2f17e75ada1f3f58f6a10
+  data.tar.gz: 9c9ca3eab5b1e6031bf0eca71655931c1ee742010cb02cb324e2be91f20e4cbb967be8153205d86b44e48288ad2f614a4b50c1a43b915054df9e46e5f47ea509

data/.gitignore

@@ -6,6 +6,7 @@
 /pkg/
 /spec/reports/
 /tmp/
+/Gemfile.lock
 
 # rspec failure tracking
 .rspec_status

data/.travis.yml

@@ -1,6 +1,6 @@
 env:
   global:
-    - CC_TEST_REPORTER_ID=6e5d2de1ccc0412cdc8d01fdddc560fe3051b14f1c15fea55b0d6e32e27a81cf
+    - CC_TEST_REPORTER_ID=ecb753423174dbd8e4aaf04fb62bf4ef9c2a54904ac49a33fdf2b908b3c5e5f3
 
 sudo: false
 language: ruby
@@ -8,7 +8,6 @@ rvm:
   - 2.6
   - 2.5
   - 2.4
-  - 2.3
 
 before_install: gem install bundler
 

data/CHANGELOG.md

@@ -1,3 +1,33 @@
+### 2.0.3
+
+* Pinned rspec-expectations to <= 3.9.2
+* Removed the rspec-expectations pinning
+
+### 2.0.2
+
+* Corrected some documentation glitches
+
+### 2.0.1
+
+* Corrected a migration bug on the configuration which used the wrong namespace
+  for `RsaPublicKey` (resulted in `uninitialized constant
+  Grape::Jwt::Authentication::Configuration::RsaPublicKey`)
+
+### 2.0.0
+
+* Extracted the JWT verification functionality into its own gem
+  ([keyless](https://github.com/hausgold/keyless)) (#6)
+  * This extraction allows users to use the JWT/RSA key handling without Grape
+  * The API/configuration stays the same
+* With the major update to 2.0 we dropped a lot of code which is now located at
+  the Keyless gem:
+  * `Grape::Jwt::Authentication::Jwt` was replace with `Keyless::Jwt`
+  * `Grape::Jwt::Authentication::RsaPublicKey` was replace with `Keyless::RsaPublicKey`
+
+### 1.3.0
+
+* Dropped support for EOL Ruby 2.3 (in addition to Grape)
+
 ### 1.2.0
 
 * Check the remote response on public key fetching (#3)

data/README.md

@@ -1,9 +1,9 @@
 ![grape-jwt-authentication](doc/assets/project.svg)
 
-[![Build Status](https://travis-ci.org/hausgold/grape-jwt-authentication.svg?branch=master)](https://travis-ci.org/hausgold/grape-jwt-authentication)
+[![Build Status](https://travis-ci.com/hausgold/grape-jwt-authentication.svg?branch=master)](https://travis-ci.com/hausgold/grape-jwt-authentication)
 [![Gem Version](https://badge.fury.io/rb/grape-jwt-authentication.svg)](https://badge.fury.io/rb/grape-jwt-authentication)
-[![Maintainability](https://api.codeclimate.com/v1/badges/446f3eff18bebff9c174/maintainability)](https://codeclimate.com/github/hausgold/grape-jwt-authentication/maintainability)
-[![Test Coverage](https://api.codeclimate.com/v1/badges/446f3eff18bebff9c174/test_coverage)](https://codeclimate.com/github/hausgold/grape-jwt-authentication/test_coverage)
+[![Maintainability](https://api.codeclimate.com/v1/badges/ab14a3bab572edfbf305/maintainability)](https://codeclimate.com/repos/5cac8bc06c282f791c009a66/maintainability)
+[![Test Coverage](https://api.codeclimate.com/v1/badges/ab14a3bab572edfbf305/test_coverage)](https://codeclimate.com/repos/5cac8bc06c282f791c009a66/test_coverage)
 [![API docs](https://img.shields.io/badge/docs-API-blue.svg)](https://www.rubydoc.info/gems/grape-jwt-authentication)
 
 This gem is dedicated to easily integrate a JWT authentication to your
@@ -185,18 +185,18 @@ have your own mechanism.
 
 ```ruby
 # Get your public key, by using the global configuration
-public_key = Grape::Jwt::Authentication::RsaPublicKey.fetch
+public_key = Keyless::RsaPublicKey.fetch
 # => OpenSSL::PKey::RSA
 
 # Using a local configuration
-fetcher = Grape::Jwt::Authentication::RsaPublicKey.instance
+fetcher = Keyless::RsaPublicKey.instance
 fetcher.url = 'https://your.identity.provider/rsa_public_key'
 public_key = fetcher.fetch
 # => OpenSSL::PKey::RSA
 ```
 
 The following examples show you how to configure the
-`Grape::Jwt::Authentication::RsaPublicKey` class the global way. This is useful
+`Keyless::RsaPublicKey` class the global way. This is useful
 for a shared initializer place.
 
 ##### RSA public key location (URL)
@@ -261,7 +261,7 @@ the `RsaPublicKey` fetcher class. (by default)
 raw_token = 'eyJ0eXAiOiJKV1QifQ.eyJ0ZXN0Ijp0cnVlfQ.'
 
 # Parse the raw token and create a instance of it
-token = Grape::Jwt::Authentication::Jwt.new(raw_token)
+token = Keyless::Jwt.new(raw_token)
 
 # Access the payload easily (recursive-open-struct)
 token.payload.test
@@ -274,7 +274,7 @@ token.valid?
 ```
 
 The following examples show you how to configure the
-`Grape::Jwt::Authentication::Jwt` class the global way. This is useful for a
+`Keyless::Jwt` class the global way. This is useful for a
 shared initializer place.
 
 ##### Issuer verification
@@ -305,7 +305,7 @@ end
 You can configure a different JSON Web Token verification option hash if your
 algorithm differs or you want some extra/different options.  Just watch out
 that you have to pass a proc to this configuration property. On the
-`Grape::Jwt::Authentication::Jwt` class it has to be a simple hash. The default
+`Keyless::Jwt` class it has to be a simple hash. The default
 is here the `RS256` algorithm with enabled expiration check, and issuer+audience
 check when the `jwt_issuer` / `jwt_beholder` are configured accordingly.
 
@@ -323,7 +323,7 @@ end
 You can configure your own verification key on the `Jwt` wrapper class.  This
 way you can pass your HMAC secret or your ECDSA public key to the JSON Web
 Token validation method. Here you need to pass a proc, on the
-`Grape::Jwt::Authentication::Jwt` class it has to be a scalar value. By default
+`Keyless::Jwt` class it has to be a scalar value. By default
 we use the `RsaPublicKey` class to retrieve the RSA public key.
 
 ```ruby
@@ -394,7 +394,7 @@ Grape::Jwt::Authentication.configure do |conf|
   # Custom verification logic.
   conf.authenticator = proc do |token|
     # Parse and instantiate a JWT verification instance
-    jwt = Grape::Jwt::Authentication::Jwt.new(token)
+    jwt = Keyless::Jwt.new(token)
 
     # We just allow valid access tokens
     jwt.access_token? && jwt.valid?

data/grape-jwt-authentication.gemspec

@@ -25,7 +25,7 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'rack', '~> 2.0'
   spec.add_development_dependency 'rack-test', '~> 0.8.2'
   spec.add_development_dependency 'rake', '~> 10.0'
-  spec.add_development_dependency 'rspec', '~> 3.0'
+  spec.add_development_dependency 'rspec', '~> 3.9'
   spec.add_development_dependency 'simplecov', '~> 0.15'
   spec.add_development_dependency 'timecop', '~> 0.9.1'
   spec.add_development_dependency 'vcr', '~> 3.0'
@@ -36,4 +36,5 @@ Gem::Specification.new do |spec|
   spec.add_runtime_dependency 'httparty'
   spec.add_runtime_dependency 'jwt', '~> 2.1'
   spec.add_runtime_dependency 'recursive-open-struct', '~> 1.0'
+  spec.add_runtime_dependency 'keyless', '~> 1.0'
 end

data/lib/grape/jwt/authentication.rb

@@ -7,15 +7,13 @@ require 'active_support/cache'
 require 'active_support/core_ext/hash'
 require 'active_support/time'
 require 'active_support/time_with_zone'
-
 require 'jwt'
-
+require 'keyless'
 require 'grape'
 require 'grape/jwt/authentication/version'
 require 'grape/jwt/authentication/configuration'
+require 'grape/jwt/authentication/dependencies'
 require 'grape/jwt/authentication/jwt_handler'
-require 'grape/jwt/authentication/jwt'
-require 'grape/jwt/authentication/rsa_public_key'
 
 module Grape
   module Jwt
@@ -43,11 +41,13 @@ module Grape
       #   end
       def self.configure
         yield(configuration)
+        configure_dependencies
       end
 
       # Reset the current configuration with the default one.
       def self.reset_configuration!
         self.configuration = Configuration.new
+        configure_dependencies
       end
 
       included do
@@ -65,7 +65,7 @@ module Grape
           # date, etc inside your API definition. When the authenticator stated
           # that the validation failed, then the parsed token is +nil+.
           #
-          # @return [Grape::Jwt::Authentication::Jwt, nil] the parsed token
+          # @return [Keyless::Jwt, nil] the parsed token
           def request_jwt
             env['grape_jwt_auth.parsed_token']
           end

data/lib/grape/jwt/authentication/configuration.rb

@@ -96,10 +96,10 @@ module Grape
         # You can configure a different JSON Web Token verification option hash
         # if your algorithm differs or you want some extra/different options.
         # Just watch out that you have to pass a proc to this configuration
-        # property. On the {Grape::Jwt::Authentication::Jwt} class it has to be
-        # a simple hash. The default is here the RS256 algorithm with enabled
-        # expiration check, and issuer+audience check when the
-        # {jwt_issuer}/{jwt_beholder} are configured accordingly.
+        # property. On the {Keyless::Jwt} class it has to be a simple hash. The
+        # default is here the RS256 algorithm with enabled expiration check,
+        # and issuer+audience check when the {jwt_issuer}/{jwt_beholder} are
+        # configured accordingly.
         config_accessor(:jwt_options) do
           proc do
             conf = Grape::Jwt::Authentication.configuration
@@ -117,12 +117,11 @@ module Grape
         # You can configure your own verification key on the Jwt wrapper class.
         # This way you can pass your HMAC secret or your ECDSA public key to
         # the JSON Web Token validation method. Here you need to pass a proc,
-        # on the {Grape::Jwt::Authentication::Jwt} class it has to be a scalar
-        # value. By default we use the
-        # {Grape::Jwt::Authentication::RsaPublicKey} class to retrieve the RSA
-        # public key.
+        # on the {Keyless::Jwt} class it has to be a scalar value. By default
+        # we use the {Keyless::RsaPublicKey} class to retrieve the RSA public
+        # key.
         config_accessor(:jwt_verification_key) do
-          proc { RsaPublicKey.instance.fetch }
+          proc { Keyless::RsaPublicKey.instance.fetch }
         end
       end
     end

data/lib/grape/jwt/authentication/dependencies.rb

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+module Grape
+  module Jwt
+    module Authentication
+      # Specifies which configuration keys are shared between keyless
+      # and grape-jwt-authentication, so that we can easily pass through
+      # our configuration to keyless.
+      KEYLESS_CONFIGURATION = %i[
+        authenticator rsa_public_key_url rsa_public_key_caching
+        rsa_public_key_expiration jwt_issuer jwt_beholder jwt_options
+        jwt_verification_key
+      ]
+
+      # (Re)configure our gem dependencies. We take care of setting up
+      # +Keyless+, which has been extracted from this gem.
+      def self.configure_dependencies
+        configure_keyless
+      end
+
+      # Configure the +Keyless+ gem with our configuration.
+      def self.configure_keyless
+        configuration = Grape::Jwt::Authentication.configuration
+
+        Keyless.configure do |keyless|
+          KEYLESS_CONFIGURATION.each do |option|
+            keyless.send("#{option}=", configuration.send(option))
+          end
+        end
+      end
+    end
+  end
+end

data/lib/grape/jwt/authentication/jwt_handler.rb

@@ -91,8 +91,8 @@ module Grape
         # @param env [Hash{String => Mixed}] the Rack environment
         # @param token [String] the token parsed from the HTTP header
         def inject_token_into_env(env, token)
-          env['grape_jwt_auth.parsed_token'] = Jwt.new(token)
-        rescue *Jwt::RESCUE_JWT_EXCEPTIONS
+          env['grape_jwt_auth.parsed_token'] = Keyless::Jwt.new(token)
+        rescue *Keyless::Jwt::RESCUE_JWT_EXCEPTIONS
           env['grape_jwt_auth.parsed_token'] = nil
         ensure
           env['grape_jwt_auth.original_token'] = token

data/lib/grape/jwt/authentication/version.rb

@@ -3,7 +3,7 @@
 module Grape
   module Jwt
     module Authentication
-      VERSION = '1.2.0'.freeze
+      VERSION = '2.0.3'.freeze
     end
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: grape-jwt-authentication
 version: !ruby/object:Gem::Version
-  version: 1.2.0
+  version: 2.0.3
 platform: ruby
 authors:
 - Hermann Mayer
-autorequire: 
+autorequire:
 bindir: exe
 cert_chain: []
-date: 2019-02-14 00:00:00.000000000 Z
+date: 2021-05-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -78,14 +78,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.9'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.9'
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -212,6 +212,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: keyless
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
 description: A reusable Grape JWT authentication concern
 email:
 - hermann.mayer92@gmail.com
@@ -227,7 +241,6 @@ files:
 - ".travis.yml"
 - CHANGELOG.md
 - Gemfile
-- Gemfile.lock
 - LICENSE
 - README.md
 - Rakefile
@@ -237,14 +250,13 @@ files:
 - grape-jwt-authentication.gemspec
 - lib/grape/jwt/authentication.rb
 - lib/grape/jwt/authentication/configuration.rb
-- lib/grape/jwt/authentication/jwt.rb
+- lib/grape/jwt/authentication/dependencies.rb
 - lib/grape/jwt/authentication/jwt_handler.rb
-- lib/grape/jwt/authentication/rsa_public_key.rb
 - lib/grape/jwt/authentication/version.rb
 homepage: https://github.com/hausgold/grape-jwt-authentication
 licenses: []
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -259,8 +271,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.2
-signing_key: 
+rubygems_version: 3.2.16
+signing_key:
 specification_version: 4
 summary: A reusable Grape JWT authentication concern
 test_files: []

data/Gemfile.lock

@@ -1,118 +0,0 @@
-PATH
-  remote: .
-  specs:
-    grape-jwt-authentication (1.1.0)
-      activesupport (>= 3.2.0)
-      grape (~> 1.0)
-      httparty
-      jwt (~> 2.1)
-      recursive-open-struct (~> 1.0)
-
-GEM
-  remote: https://rubygems.org/
-  specs:
-    activesupport (5.2.2)
-      concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (>= 0.7, < 2)
-      minitest (~> 5.1)
-      tzinfo (~> 1.1)
-    addressable (2.6.0)
-      public_suffix (>= 2.0.2, < 4.0)
-    axiom-types (0.1.1)
-      descendants_tracker (~> 0.0.4)
-      ice_nine (~> 0.11.0)
-      thread_safe (~> 0.3, >= 0.3.1)
-    builder (3.2.3)
-    coercible (1.0.0)
-      descendants_tracker (~> 0.0.1)
-    concurrent-ruby (1.1.4)
-    crack (0.4.3)
-      safe_yaml (~> 1.0.0)
-    descendants_tracker (0.0.4)
-      thread_safe (~> 0.3, >= 0.3.1)
-    diff-lcs (1.3)
-    docile (1.3.1)
-    equalizer (0.0.11)
-    grape (1.2.3)
-      activesupport
-      builder
-      mustermann-grape (~> 1.0.0)
-      rack (>= 1.3.0)
-      rack-accept
-      virtus (>= 1.0.0)
-    hashdiff (0.3.8)
-    httparty (0.16.4)
-      mime-types (~> 3.0)
-      multi_xml (>= 0.5.2)
-    i18n (1.5.3)
-      concurrent-ruby (~> 1.0)
-    ice_nine (0.11.2)
-    json (2.1.0)
-    jwt (2.1.0)
-    mime-types (3.2.2)
-      mime-types-data (~> 3.2015)
-    mime-types-data (3.2018.0812)
-    minitest (5.11.3)
-    multi_xml (0.6.0)
-    mustermann (1.0.3)
-    mustermann-grape (1.0.0)
-      mustermann (~> 1.0.0)
-    public_suffix (3.0.3)
-    rack (2.0.6)
-    rack-accept (0.4.5)
-      rack (>= 0.4)
-    rack-test (0.8.3)
-      rack (>= 1.0, < 3)
-    rake (10.5.0)
-    recursive-open-struct (1.1.0)
-    rspec (3.8.0)
-      rspec-core (~> 3.8.0)
-      rspec-expectations (~> 3.8.0)
-      rspec-mocks (~> 3.8.0)
-    rspec-core (3.8.0)
-      rspec-support (~> 3.8.0)
-    rspec-expectations (3.8.2)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.8.0)
-    rspec-mocks (3.8.0)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.8.0)
-    rspec-support (3.8.0)
-    safe_yaml (1.0.4)
-    simplecov (0.16.1)
-      docile (~> 1.1)
-      json (>= 1.8, < 3)
-      simplecov-html (~> 0.10.0)
-    simplecov-html (0.10.2)
-    thread_safe (0.3.6)
-    timecop (0.9.1)
-    tzinfo (1.2.5)
-      thread_safe (~> 0.1)
-    vcr (3.0.3)
-    virtus (1.0.5)
-      axiom-types (~> 0.1)
-      coercible (~> 1.0)
-      descendants_tracker (~> 0.0, >= 0.0.3)
-      equalizer (~> 0.0, >= 0.0.9)
-    webmock (3.5.1)
-      addressable (>= 2.3.6)
-      crack (>= 0.3.2)
-      hashdiff
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  bundler (>= 1.16, < 3)
-  grape-jwt-authentication!
-  rack (~> 2.0)
-  rack-test (~> 0.8.2)
-  rake (~> 10.0)
-  rspec (~> 3.0)
-  simplecov (~> 0.15)
-  timecop (~> 0.9.1)
-  vcr (~> 3.0)
-  webmock (~> 3.1)
-
-BUNDLED WITH
-   1.17.3

data/lib/grape/jwt/authentication/jwt.rb

@@ -1,113 +0,0 @@
-# frozen_string_literal: true
-
-require 'recursive-open-struct'
-
-module Grape
-  module Jwt
-    module Authentication
-      # A easy to use model for verification of JSON Web Tokens. This is just a
-      # wrapper class for the excellent ruby-jwt gem. It's completely up to you
-      # to use it. But be aware, its a bit optinionated by default.
-      class Jwt
-        # All the following JWT verification issues lead to a failed validation.
-        RESCUE_JWT_EXCEPTIONS = [
-          ::JWT::DecodeError,
-          ::JWT::VerificationError,
-          ::JWT::ExpiredSignature,
-          ::JWT::IncorrectAlgorithm,
-          ::JWT::ImmatureSignature,
-          ::JWT::InvalidIssuerError,
-          ::JWT::InvalidIatError,
-          ::JWT::InvalidAudError,
-          ::JWT::InvalidSubError,
-          ::JWT::InvalidJtiError,
-          ::JWT::InvalidPayload
-        ].freeze
-
-        # :reek:Attribute because its fine to be extern-modifiable at these
-        # instances
-        attr_reader :payload, :token
-        attr_writer :verification_key, :jwt_options
-        attr_accessor :issuer, :beholder
-
-        # Setup a new JWT instance. You have to pass the raw JSON Web Token to
-        # the initializer. Example:
-        #
-        #   Jwt.new('j.w.t')
-        #   # => <Jwt>
-        #
-        # @return [Jwt]
-        def initialize(token)
-          parsed_payload = JWT.decode(token, nil, false).first.symbolize_keys
-          @token = token
-          @payload = RecursiveOpenStruct.new(parsed_payload)
-        end
-
-        # Checks if the payload says this is a refresh token.
-        #
-        # @return [Boolean] Whenever this is a access token
-        def access_token?
-          payload.typ == 'access'
-        end
-
-        # Checks if the payload says this is a refresh token.
-        #
-        # @return [Boolean] Whenever this is a refresh token
-        def refresh_token?
-          payload.typ == 'refresh'
-        end
-
-        # Retrives the expiration date from the payload when set.
-        #
-        # @return [nil|ActiveSupport::TimeWithZone] The expiration date
-        def expires_at
-          exp = payload.exp
-          return nil unless exp
-
-          Time.zone.at(exp)
-        end
-
-        # Deliver the public key for verification by default. This uses the
-        # {RsaPublicKey} class, but you can configure the verification key the
-        # way you like. (Especially for different algorithms, like HMAC or
-        # ECDSA) Just make use of the same named setter.
-        #
-        # @return [OpenSSL::PKey::RSA|Mixed] The verification key
-        def verification_key
-          unless @verification_key
-            conf = Grape::Jwt::Authentication.configuration
-            return conf.jwt_verification_key.call
-          end
-          @verification_key
-        end
-
-        # This getter passes back the default JWT verification option hash
-        # which is optinionated.  You can change this the way you like by
-        # configuring your options with the help of the same named setter.
-        #
-        # @return [Hash] The JWT verification options hash
-        def jwt_options
-          unless @jwt_options
-            conf = Grape::Jwt::Authentication.configuration
-            return conf.jwt_options.call
-          end
-          @jwt_options
-        end
-
-        # Verify the current token by our hard and strict rules. Whenever the
-        # token was not parsed from a string, we encode the current state to a
-        # JWT string representation and check this.
-        #
-        # @return [Boolean] Whenever the token is valid or not
-        #
-        # :reek:NilCheck because we have to check the token
-        #                origin and react on it
-        def valid?
-          JWT.decode(token, verification_key, true, jwt_options) && true
-        rescue *RESCUE_JWT_EXCEPTIONS
-          false
-        end
-      end
-    end
-  end
-end

data/lib/grape/jwt/authentication/rsa_public_key.rb

@@ -1,132 +0,0 @@
-# frozen_string_literal: true
-
-require 'singleton'
-require 'openssl'
-require 'httparty'
-
-module Grape
-  module Jwt
-    module Authentication
-      # A common purpose RSA public key fetching/caching helper. With the help
-      # of this class you are able to retrieve the RSA public key from a remote
-      # server or a local file. This is naturally only useful if you care about
-      # JSON Web Token which are signed by the RSA algorithm.
-      class RsaPublicKey
-        # A internal exception handling for failed fetch attempts.
-        class FetchError < StandardError; end
-
-        include Singleton
-
-        # Setup all the getters and setters.
-        attr_accessor :cache
-        attr_writer :url, :expiration, :caching
-
-        # Setup the instance.
-        def initialize
-          @expiration = 1.hour
-          @cache = ActiveSupport::Cache::MemoryStore.new
-        end
-
-        # Just a simple shortcut class method to access the fetch method
-        # without specifying the singleton instance.
-        #
-        # @return [OpenSSL::PKey::RSA]
-        def self.fetch
-          instance.fetch
-        end
-
-        # Configure the single instance. This is just a wrapper (like tap)
-        # to the instance itself.
-        def configure
-          yield(self)
-        end
-
-        # Fetch the public key with the help of the configuration.  You can
-        # configure the public key location (local file, remote (HTTP/HTTPS)
-        # file), whenever we should cache and how long to cache.
-        #
-        # @return [OpenSSL::PKey::RSA]
-        def fetch
-          encoded_key = if cache?
-                          cache.fetch('encoded_key', expires_in: expiration) do
-                            fetch_encoded_key
-                          end
-                        else
-                          fetch_encoded_key
-                        end
-
-          OpenSSL::PKey::RSA.new(encoded_key)
-        end
-
-        # Fetch the encoded (DER, or PEM) public key from a remote or local
-        # location.
-        #
-        # @return [String] The encoded public key
-        def fetch_encoded_key
-          raise ArgumentError, 'No URL for RsaPublicKey configured' unless url
-
-          if remote?
-            res = HTTParty.get(url)
-            raise FetchError, res.inspect unless (200..299).include? res.code
-            res.body
-          else
-            File.read(url)
-          end
-        end
-
-        # A helper for the caching configuration.
-        #
-        # @return [Boolean]
-        def cache?
-          caching && true
-        end
-
-        # A helper to determine if the configured URL is on a remote server or
-        # it is local on the filesystem. Whenever the configured URL specifies
-        # the HTTP/HTTPS protocol, we assume it is remote.
-        #
-        # @return [Boolean]
-        def remote?
-          !(url =~ /^https?/).nil?
-        end
-
-        # This getter passes back the default RSA public key.  You can change
-        # this the way you like by configuring your URL with the help of the
-        # same named setter.
-        #
-        # @return [String] The configured public key location
-        def url
-          unless @url
-            conf = Grape::Jwt::Authentication.configuration
-            return conf.rsa_public_key_url
-          end
-          @url
-        end
-
-        # This getter passes back the default public key cache expiration time.
-        # You can change this time with the help of the same named setter.
-        #
-        # @return [Integer] The configured cache expiration time
-        def expiration
-          unless @expiration
-            conf = Grape::Jwt::Authentication.configuration
-            return conf.rsa_public_key_expiration
-          end
-          @expiration
-        end
-
-        # This getter passes back the caching flag. You can change this flag
-        # with the help of the same named setter.
-        #
-        # @return [Boolean] Whenever we should cache or not
-        def caching
-          unless @caching
-            conf = Grape::Jwt::Authentication.configuration
-            return conf.rsa_public_key_caching
-          end
-          @caching
-        end
-      end
-    end
-  end
-end