jwt_api_auth 0.0.1.pre.5 → 0.0.2
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 82f4da01fc8302efb2f44ab509f436ed767aa8f92941bce504a4922513b4a13a
|
4
|
+
data.tar.gz: ed4e6b9cb3881688ee1d67e57c558c164c8ea240b226726663e5d20be488e376
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: '08ecf5e7903324c82e6d4d8e9b7ae213fcab1f143a84e4c411cb6e8cfdc47a65a28e4d06a88a6c374a50722c5f535a3aeb7b835ca5f23f787b301f36cccdc77c'
|
7
|
+
data.tar.gz: 715cbb2ce9e0b3a7b2227e02e1ae6ad83a83050f6dcef93930271d25b231841d18488286ea009057711d39d7bf2696e87330a07fffb3485106457d77c032c6f3
|
@@ -16,7 +16,14 @@ module JwtApiAuth
|
|
16
16
|
|
17
17
|
def authenticate_user
|
18
18
|
token = request.headers['Authorization']&.split('Bearer ')&.last
|
19
|
-
|
19
|
+
options = { algorithm: 'HS256' }
|
20
|
+
|
21
|
+
if JwtApiAuth.token_audience.present?
|
22
|
+
options[:aud] = JwtApiAuth.token_audience.map(&:to_s)
|
23
|
+
options[:verify_aud] = true
|
24
|
+
end
|
25
|
+
|
26
|
+
::JWT.decode token, JwtApiAuth.token_secret.call, true, options
|
20
27
|
|
21
28
|
head :unauthorized unless token
|
22
29
|
end
|
data/lib/jwt_api_auth/version.rb
CHANGED
data/lib/jwt_api_auth.rb
CHANGED
@@ -17,7 +17,7 @@ module JwtApiAuth
|
|
17
17
|
self.refresh_token_lifetime = 1.week
|
18
18
|
|
19
19
|
mattr_accessor :token_secret
|
20
|
-
self.token_secret = -> { Rails.application.secrets.secret_key_base }
|
20
|
+
self.token_secret = -> { Rails.application.secrets.secret_key_base || Rails.application.secret_key_base }
|
21
21
|
|
22
22
|
mattr_accessor :model
|
23
23
|
self.model = :user
|
@@ -25,6 +25,9 @@ module JwtApiAuth
|
|
25
25
|
mattr_accessor :refresh_token_model
|
26
26
|
self.refresh_token_model = :refresh_token
|
27
27
|
|
28
|
+
mattr_accessor :token_audience
|
29
|
+
self.token_audience = nil
|
30
|
+
|
28
31
|
def self.setup
|
29
32
|
yield self
|
30
33
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: jwt_api_auth
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.0.
|
4
|
+
version: 0.0.2
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Cristian Stügelmayer
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2021-10-11 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: jwt
|
@@ -290,9 +290,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
290
290
|
version: '0'
|
291
291
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
292
292
|
requirements:
|
293
|
-
- - "
|
293
|
+
- - ">="
|
294
294
|
- !ruby/object:Gem::Version
|
295
|
-
version:
|
295
|
+
version: '0'
|
296
296
|
requirements: []
|
297
297
|
rubygems_version: 3.0.8
|
298
298
|
signing_key:
|