jwt-auth 3.1.1 → 4.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +5 -5
- data/lib/jwt/auth/token.rb +8 -8
- data/lib/jwt/auth/version.rb +1 -1
- data/spec/token_spec.rb +11 -9
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
|
-
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
2
|
+
SHA256:
|
|
3
|
+
metadata.gz: 3c956f873db709997837bf27371d2dc5f6315d072004be257a99a554f59ad67e
|
|
4
|
+
data.tar.gz: f8066ab1085f05a481d59f937c279e3a8d88a572761d36b76daed80db72b512f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: ae88929951aaae1affd6bb29b9c6ef8392ae582ecd81b2a59bd02777798d1d2830ab266f9900d3b9b4374b61d4be18e7f1b22dffc61e046fb99cba7cba2e8043
|
|
7
|
+
data.tar.gz: 3b93f3b8b80cffc983a2baed9b3bbc296736bb1faacf0823ad78ce608e21d34faf2dfcdf5271068e0bbec1f4ca543bd31ec96dbb96327875ff24bedb24f8e4d3
|
data/lib/jwt/auth/token.rb
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require 'active_support/core_ext/numeric/time'
|
|
3
|
+
# require 'active_support/core_ext/numeric/time'
|
|
4
4
|
|
|
5
5
|
require 'jwt/auth/configuration'
|
|
6
6
|
|
|
@@ -10,14 +10,14 @@ module JWT
|
|
|
10
10
|
# In-memory representation of JWT
|
|
11
11
|
#
|
|
12
12
|
class Token
|
|
13
|
-
attr_accessor :
|
|
13
|
+
attr_accessor :issued_at, :subject, :token_version
|
|
14
14
|
|
|
15
15
|
def valid?
|
|
16
16
|
# Reload subject to prevent caching the old token_version
|
|
17
17
|
subject && subject.reload
|
|
18
18
|
|
|
19
|
-
return false if subject.nil? ||
|
|
20
|
-
return false if Time.at(
|
|
19
|
+
return false if subject.nil? || issued_at.nil? || token_version.nil?
|
|
20
|
+
return false if Time.at(issued_at + lifetime.to_i).past?
|
|
21
21
|
return false if token_version != subject.token_version
|
|
22
22
|
|
|
23
23
|
true
|
|
@@ -26,7 +26,7 @@ module JWT
|
|
|
26
26
|
end
|
|
27
27
|
|
|
28
28
|
def renew!
|
|
29
|
-
self.
|
|
29
|
+
self.issued_at = nil
|
|
30
30
|
self.token_version = nil
|
|
31
31
|
end
|
|
32
32
|
|
|
@@ -43,7 +43,7 @@ module JWT
|
|
|
43
43
|
|
|
44
44
|
def payload
|
|
45
45
|
{
|
|
46
|
-
:
|
|
46
|
+
:iat => issued_at || Time.now.to_i,
|
|
47
47
|
:sub => subject.id,
|
|
48
48
|
:ver => token_version || subject.token_version
|
|
49
49
|
}
|
|
@@ -56,12 +56,12 @@ module JWT
|
|
|
56
56
|
def self.from_token(token)
|
|
57
57
|
begin
|
|
58
58
|
@decoded_payload = JWT.decode(token, JWT::Auth.secret).first
|
|
59
|
-
rescue JWT::
|
|
59
|
+
rescue JWT::DecodeError
|
|
60
60
|
@decoded_payload = {}
|
|
61
61
|
end
|
|
62
62
|
|
|
63
63
|
token = self.new
|
|
64
|
-
token.
|
|
64
|
+
token.issued_at = @decoded_payload['iat']
|
|
65
65
|
token.token_version = @decoded_payload['ver']
|
|
66
66
|
|
|
67
67
|
if @decoded_payload['sub']
|
data/lib/jwt/auth/version.rb
CHANGED
data/spec/token_spec.rb
CHANGED
|
@@ -7,9 +7,9 @@ RSpec.describe JWT::Auth::Token do
|
|
|
7
7
|
describe 'properties' do
|
|
8
8
|
let(:token) { JWT::Auth::Token.from_user user }
|
|
9
9
|
|
|
10
|
-
it 'has an
|
|
11
|
-
expect(token).to respond_to :
|
|
12
|
-
expect(token.
|
|
10
|
+
it 'has an issued at' do
|
|
11
|
+
expect(token).to respond_to :issued_at
|
|
12
|
+
expect(token.issued_at).to be_nil
|
|
13
13
|
end
|
|
14
14
|
|
|
15
15
|
it 'has a subject' do
|
|
@@ -54,7 +54,7 @@ RSpec.describe JWT::Auth::Token do
|
|
|
54
54
|
end
|
|
55
55
|
|
|
56
56
|
it 'is invalid on past date' do
|
|
57
|
-
token.
|
|
57
|
+
token.issued_at = (JWT::Auth.token_lifetime + 1.second).ago.to_i
|
|
58
58
|
|
|
59
59
|
t = JWT::Auth::Token.from_token token.to_jwt
|
|
60
60
|
|
|
@@ -62,7 +62,7 @@ RSpec.describe JWT::Auth::Token do
|
|
|
62
62
|
end
|
|
63
63
|
|
|
64
64
|
it 'is invalid after expiry date' do
|
|
65
|
-
token.
|
|
65
|
+
token.issued_at = JWT::Auth.token_lifetime.ago.to_i
|
|
66
66
|
sleep 2
|
|
67
67
|
|
|
68
68
|
t = JWT::Auth::Token.from_token token.to_jwt
|
|
@@ -87,14 +87,16 @@ RSpec.describe JWT::Auth::Token do
|
|
|
87
87
|
|
|
88
88
|
expect(new_token).to be_valid
|
|
89
89
|
expect(new_jwt).not_to eq old_jwt
|
|
90
|
-
expect(new_token.
|
|
90
|
+
expect(new_token.issued_at).not_to eq old_token.issued_at
|
|
91
91
|
end
|
|
92
92
|
end
|
|
93
93
|
|
|
94
94
|
describe 'from token' do
|
|
95
|
+
let(:issued_at) { 1.second.ago.to_i }
|
|
96
|
+
|
|
95
97
|
let(:jwt) do
|
|
96
98
|
payload = {
|
|
97
|
-
:
|
|
99
|
+
:iat => issued_at,
|
|
98
100
|
:sub => user.id,
|
|
99
101
|
:ver => user.token_version
|
|
100
102
|
}
|
|
@@ -103,8 +105,8 @@ RSpec.describe JWT::Auth::Token do
|
|
|
103
105
|
|
|
104
106
|
let(:token) { JWT::Auth::Token.from_token jwt }
|
|
105
107
|
|
|
106
|
-
it 'matches
|
|
107
|
-
expect(token.
|
|
108
|
+
it 'matches issued at' do
|
|
109
|
+
expect(token.issued_at).to eq issued_at
|
|
108
110
|
end
|
|
109
111
|
|
|
110
112
|
it 'matches subject' do
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: jwt-auth
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version:
|
|
4
|
+
version: 4.0.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Florian Dejonckheere
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2018-07-25 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: jwt
|
|
@@ -279,7 +279,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
279
279
|
version: '0'
|
|
280
280
|
requirements: []
|
|
281
281
|
rubyforge_project:
|
|
282
|
-
rubygems_version: 2.
|
|
282
|
+
rubygems_version: 2.7.3
|
|
283
283
|
signing_key:
|
|
284
284
|
specification_version: 4
|
|
285
285
|
summary: JWT-based authentication for Rails API
|