RubyGems - jwt-auth - Versions diffs - 4.2.0 → 5.0.0 - Mend

jwt-auth 4.2.0 → 5.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (76) hide show

checksums.yaml +4 -4
data/.travis.yml +3 -0
data/Gemfile +3 -0
data/README.md +119 -18
data/bin/build +22 -0
data/bin/release +40 -0
data/jwt-auth.gemspec +18 -15
data/lib/jwt/auth.rb +2 -0
data/lib/jwt/auth/access_token.rb +20 -0
data/lib/jwt/auth/authenticatable.rb +16 -0
data/lib/jwt/auth/authentication.rb +63 -22
data/lib/jwt/auth/configuration.rb +4 -1
data/lib/jwt/auth/refresh_token.rb +20 -0
data/lib/jwt/auth/token.rb +49 -41
data/lib/jwt/auth/version.rb +3 -1
data/spec/controllers/content_controller_spec.rb +95 -0
data/spec/controllers/tokens_controller_spec.rb +140 -0
data/spec/dummy/Rakefile +2 -0
data/spec/dummy/app/channels/application_cable/channel.rb +2 -0
data/spec/dummy/app/channels/application_cable/connection.rb +2 -0
data/spec/dummy/app/controllers/application_controller.rb +6 -1
data/spec/dummy/app/controllers/content_controller.rb +29 -0
data/spec/dummy/app/controllers/tokens_controller.rb +53 -0
data/spec/dummy/app/helpers/application_helper.rb +2 -0
data/spec/dummy/app/helpers/authentication_helper.rb +2 -0
data/spec/dummy/app/jobs/application_job.rb +2 -0
data/spec/dummy/app/mailers/application_mailer.rb +3 -1
data/spec/dummy/app/models/application_record.rb +2 -0
data/spec/dummy/app/models/user.rb +3 -6
data/spec/dummy/bin/bundle +2 -0
data/spec/dummy/bin/rails +2 -0
data/spec/dummy/bin/rake +2 -0
data/spec/dummy/bin/setup +2 -0
data/spec/dummy/bin/update +2 -0
data/spec/dummy/bin/yarn +7 -7
data/spec/dummy/config.ru +2 -0
data/spec/dummy/config/application.rb +2 -0
data/spec/dummy/config/boot.rb +3 -1
data/spec/dummy/config/environment.rb +2 -0
data/spec/dummy/config/environments/development.rb +3 -1
data/spec/dummy/config/environments/production.rb +4 -2
data/spec/dummy/config/environments/test.rb +2 -0
data/spec/dummy/config/initializers/application_controller_renderer.rb +2 -0
data/spec/dummy/config/initializers/assets.rb +2 -0
data/spec/dummy/config/initializers/backtrace_silencers.rb +2 -0
data/spec/dummy/config/initializers/content_security_policy.rb +2 -0
data/spec/dummy/config/initializers/cookies_serializer.rb +2 -0
data/spec/dummy/config/initializers/filter_parameter_logging.rb +2 -0
data/spec/dummy/config/initializers/inflections.rb +2 -0
data/spec/dummy/config/initializers/jwt_auth.rb +9 -2
data/spec/dummy/config/initializers/mime_types.rb +2 -0
data/spec/dummy/config/initializers/new_framework_defaults_5_2.rb +2 -0
data/spec/dummy/config/initializers/wrap_parameters.rb +3 -1
data/spec/dummy/config/puma.rb +5 -3
data/spec/dummy/config/routes.rb +5 -4
data/spec/dummy/config/spring.rb +4 -2
data/spec/dummy/db/migrate/20170726110751_create_users.rb +2 -0
data/spec/dummy/db/migrate/20170726110825_add_token_version_to_user.rb +2 -0
data/spec/dummy/db/migrate/20170726112117_add_activated_to_user.rb +2 -0
data/spec/dummy/db/migrate/20190221100103_add_password_to_user.rb +7 -0
data/spec/dummy/db/schema.rb +10 -9
data/spec/jwt/auth/access_token_spec.rb +35 -0
data/spec/jwt/auth/configuration_spec.rb +36 -0
data/spec/jwt/auth/refresh_token_spec.rb +35 -0
data/spec/jwt/auth/token_spec.rb +144 -0
data/spec/models/user_spec.rb +24 -0
data/spec/rails_helper.rb +8 -0
data/spec/spec_helper.rb +51 -53
data/spec/support/database_cleaner.rb +22 -0
data/spec/support/matchers/return_token.rb +33 -0
data/version.yml +1 -0
metadata +119 -54
data/spec/authentication_spec.rb +0 -136
data/spec/configuration_spec.rb +0 -18
data/spec/dummy/app/controllers/authentication_controller.rb +0 -22
data/spec/token_spec.rb +0 -125

data/spec/configuration_spec.rb DELETED

@@ -1,18 +0,0 @@
-# frozen_string_literal: true
-require 'securerandom'
-require 'rails_helper'
-RSpec.describe JWT::Auth do
-  it 'configures correctly' do
-    JWT::Auth.configure do |config|
-      config.token_lifetime = 24.hours
-      config.secret = 'mysecret'
-    end
-    expect(subject.token_lifetime).to eq 24.hours
-    expect(subject.secret).to eq 'mysecret'
-    expect(subject.model).to eq 'User'
-  end
-end

data/spec/dummy/app/controllers/authentication_controller.rb DELETED

@@ -1,22 +0,0 @@
-class AuthenticationController < ApplicationController
-  # Authenticates user from request header
-  before_action :authenticate_user, :only => :private
-  # Validate token
-  before_action :validate_token, :only => :validate
-  # Renew token and set response header
-  after_action :renew_token
-  def public
-    head :no_content
-  end
-  def private
-    head :no_content
-  end
-  def validate
-    head :no_content
-  end
-end

data/spec/token_spec.rb DELETED

@@ -1,125 +0,0 @@
-# frozen_string_literal: true
-RSpec.describe JWT::Auth::Token do
-  let(:user) { User.create! :activated => true }
-  let(:token) { JWT::Auth::Token.from_user user }
-  describe 'properties' do
-    let(:token) { JWT::Auth::Token.from_user user }
-    it 'has an issued at' do
-      expect(token).to respond_to :issued_at
-      expect(token.issued_at).to be_nil
-    end
-    it 'has a subject' do
-      expect(token).to respond_to :subject
-      expect(token.subject).to eq user
-    end
-    it 'has a token_version' do
-      expect(token).to respond_to :token_version
-      expect(token.token_version).to be_nil
-    end
-  end
-  describe 'valid?' do
-    it 'is invalid without subject' do
-      jwt = token.to_jwt
-      user.destroy
-      t = JWT::Auth::Token.from_token jwt
-      expect(t).not_to be_valid
-    end
-    it 'is invalid without subject 2' do
-      t = JWT::Auth::Token.from_token token.to_jwt
-      user.destroy
-      expect(t).not_to be_valid
-    end
-    it 'is invalid on token_version increment' do
-      t = JWT::Auth::Token.from_token token.to_jwt
-      expect(t).to be_valid
-      user.increment_token_version!
-      user.reload
-      expect(t).not_to be_valid
-    end
-    it 'is invalid on past date' do
-      token.issued_at = (JWT::Auth.token_lifetime + 1.second).ago.to_i
-      t = JWT::Auth::Token.from_token token.to_jwt
-      expect(t).not_to be_valid
-    end
-    it 'is invalid after expiry date' do
-      token.issued_at = JWT::Auth.token_lifetime.ago.to_i
-      sleep 2
-      t = JWT::Auth::Token.from_token token.to_jwt
-      expect(t).not_to be_valid
-    end
-    it 'is invalid on future tokens' do
-      token.issued_at = 1.year.from_now.to_i
-      t = JWT::Auth::Token.from_token token.to_jwt
-      expect(t).not_to be_valid
-    end
-  end
-  describe 'renew!' do
-    it 'renews a token' do
-      old_jwt = token.to_jwt
-      old_token = JWT::Auth::Token.from_token old_jwt
-      expect(old_token).to be_valid
-      sleep 2
-      old_token.renew!
-      new_jwt = old_token.to_jwt
-      new_token = JWT::Auth::Token.from_token new_jwt
-      expect(new_token).to be_valid
-      expect(new_jwt).not_to eq old_jwt
-      expect(new_token.issued_at).not_to eq old_token.issued_at
-    end
-  end
-  describe 'from token' do
-    let(:issued_at) { 1.second.ago.to_i }
-    let(:jwt) do
-      payload = {
-        :iat => issued_at,
-        :sub => user.id,
-        :ver => user.token_version
-      }
-      JWT.encode payload, JWT::Auth.secret
-    end
-    let(:token) { JWT::Auth::Token.from_token jwt }
-    it 'matches issued at' do
-      expect(token.issued_at).to eq issued_at
-    end
-    it 'matches subject' do
-      expect(token.subject.id).to eq user.id
-      expect(token.subject.token_version).to eq user.token_version
-    end
-  end
-end