jwt_api 0.1.3 → 0.1.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2236e6e97f3f4edb359ad86ba0ea5efe092b370756ff4534eec9ef75535b5209
-  data.tar.gz: 4b311aadb65a2816b3b5947916df457e092dd947677bbaa8683240c864e6dd66
+  metadata.gz: 7772f9c066af82798657d3761b4e2591a5d3bc9683983fe5f230bbd063c1d8d8
+  data.tar.gz: 0b7e3c073bd3480c48be3e7610b0d5bc25c75dfdcc1f22e17bade00fc50f9e47
 SHA512:
-  metadata.gz: 505253a7de5e59e0e9c5372c269e24e2f528081d1efcd72b423a8499e2f91ed404c81549921a25f710e52fac1d86f9be1d9b3891332661636d8d42cd726f78be
-  data.tar.gz: a8a9ea38d901d381be290d68de1320e736c4ea5b0a7d8f7a2ed8da2f363cd63370a62717c16583247fc440202eaed7a7ff00d982c50ff77c22c72a95d03e0a89
+  metadata.gz: 59bf83ec8f2afeea4a824a69783dad05f20ccea2895ae608574b391253b4a1b6d089ffb9ab2deeac95c87f623839998e55fdcf8fd63f76fce16c0f6384b4a91a
+  data.tar.gz: f8a201feaf0ea3c2a0443b4a6c6a50e8931f8b57c60fc57e2ae17d818e2d6ee19ff24a5d3646010df15520e55ffe5debeaf3610323df59dcfa6add06fee33481

data/README.md

@@ -56,8 +56,17 @@ Running via Spring preloader in process 56250
 
 1. Make sure that each user that needs access to the API has a JTI generated.
    1. `User.first.jti = SecureRandom.uuid`
-2. Request a JWT at the `/api/authenticate/` endpoint.
-3. Include that token as a `Bearer` token in all other requests.
+2. From your Rails console run `SecureRandom.hex(64)` and make note of the output.
+   - Sample output:
+      ```text
+      "0086870fb04cafbaa15b110cf78352fbca75537cc90e06892e206e07c24caa33ff5f6aadf2649cafac08c4acf6a1b7527b97bfa943481c282ba2480a0a922657"
+      ```
+3. Run `rails credentials:edit --environment=development` (and production, staging when applicable) and set your `jwt_secret` environment variable.
+   ```yml
+      jwt_secret: 0086870fb04cafbaa15b110cf78352fbca75537cc90e06892e206e07c24caa33ff5f6aadf2649cafac08c4acf6a1b7527b97bfa943481c282ba2480a0a922657
+   ```
+3. Request a JWT at the `/api/authenticate/` endpoint.
+4. Include that token as a `Bearer` token in all other requests.
 
 
 [![Run in Postman](https://run.pstmn.io/button.svg)](https://app.getpostman.com/run-collection/6130650-059cc2e3-88f7-48a8-95d0-d7dca1d7caef?action=collection%2Ffork&collection-url=entityId%3D6130650-059cc2e3-88f7-48a8-95d0-d7dca1d7caef%26entityType%3Dcollection%26workspaceId%3D128e0ba1-898b-40bb-8006-a329fb1c28de)

data/jwt_api.gemspec

@@ -9,7 +9,7 @@ Gem::Specification.new do |spec|
   spec.email         = ['lpolicastro@pm.me']
 
   spec.summary       = 'Scaffold a JSON Web Token API'
-  spec.description   = 'Scaffold a JSON Web Token API'
+  spec.description   = 'Scaffold a JSON Web Token API.'
   spec.homepage      = 'https://github.com/leopolicastro/jwt_api/'
   spec.license       = 'MIT'
   spec.required_ruby_version = '>= 2.4.0'

data/lib/generators/jwt_api/templates/initializers/json_web_token.rb

@@ -2,7 +2,7 @@
 
 # JSON Web Token class
 class JsonWebToken
-  def initialize(key = Rails.application.credentials[:secret_key_base], algorithm = 'HS256')
+  def initialize(key = Rails.application.credentials[:jwt_secret], algorithm = 'HS256')
     @key = key
     @algorithm = algorithm
   end

data/lib/jwt_api/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module JwtApi
-  VERSION = '0.1.3'
+  VERSION = '0.1.4'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: jwt_api
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.1.4
 platform: ruby
 authors:
 - Leo Policastro
@@ -30,7 +30,7 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: 2.2.3
-description: Scaffold a JSON Web Token API
+description: Scaffold a JSON Web Token API.
 email:
 - lpolicastro@pm.me
 executables: []
@@ -49,6 +49,7 @@ files:
 - bin/console
 - bin/setup
 - jwt_api-0.1.2.gem
+- jwt_api-0.1.3.gem
 - jwt_api.gemspec
 - lib/generators/jwt_api/setup_generator.rb
 - lib/generators/jwt_api/templates/api/base_controller.rb