jwt_signed_request 1.2.0 → 1.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +3 -2
  3. data/lib/jwt_signed_request/middlewares/rack.rb +14 -6
  4. data/lib/jwt_signed_request/version.rb +1 -1
  5. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 63ee8746247f0608359ddce429288ffdc221c557
4
- data.tar.gz: 287faa1a7791c0dbe34594b18f64107ac55b52d0
3
+ metadata.gz: 12f82e6c9a8cf8a78430870a13956801c8d41c52
4
+ data.tar.gz: '09eaae125e6f453acff68839cb7c17e817871bb5'
5
5
  SHA512:
6
- metadata.gz: 585079a4bde041f67d87d0209d18bdc3912b9d282947b3d258c02ae152beabc85bd7da6306b5ddb657e7f9f0f7432f833aa455f3817d1737eac67648798e6290
7
- data.tar.gz: 6e08fcfcb59f449c7745c0d4b17ad16b316edfb0db78e1fea73bb0ff7abaea047ca9e2fe66b6a7637601655ca8faae34d472e1a7fe2a7c6ba3d3fdd2eef1086a
6
+ metadata.gz: d1e00ca21e83575c1f8690d7000c35ec0da86b7f481708928d1045d53d50fb5594afb4240a04f44bd8c17132cf94dbabf4f38e98635c97b05216548d6d0b2a71
7
+ data.tar.gz: b73cf2457388eac51c97d492ac0533a10b754190a842b524155b28326fa0a96def9403665fbefc330e4422065ce2c36c3e34445a547507de7b875106eab30fbe
data/README.md CHANGED
@@ -155,8 +155,9 @@ exDdlmXEjHYaixzYIduluGXd3cjg4H2gjqsY/NCpJ9nM8/AAINSrq+qPuA==
155
155
  """
156
156
 
157
157
  class Server < Sinatra::Base
158
- use JWTSignedRequest::Middlewares::Rack
159
- secret_key: OpenSSL::PKey::EC.new(PUBLIC_KEY)
158
+ use JWTSignedRequest::Middlewares::Rack,
159
+ secret_key: OpenSSL::PKey::EC.new(PUBLIC_KEY),
160
+ exclude_paths: /public|health/ # optional regex
160
161
  end
161
162
  ```
162
163
 
data/lib/jwt_signed_request/middlewares/rack.rb CHANGED
@@ -10,15 +10,18 @@ module JWTSignedRequest
10
10
  @app = app
11
11
  @secret_key = options.fetch(:secret_key)
12
12
  @algorithm = options[:algorithm]
13
+ @exclude_paths = options[:exclude_paths]
13
14
  end
14
15
 
15
16
  def call(env)
16
17
  begin
17
- ::JWTSignedRequest.verify(
18
- request: ::Rack::Request.new(env),
19
- secret_key: secret_key,
20
- algorithm: algorithm
21
- )
18
+ unless excluded_path?(env)
19
+ ::JWTSignedRequest.verify(
20
+ request: ::Rack::Request.new(env),
21
+ secret_key: secret_key,
22
+ algorithm: algorithm
23
+ )
24
+ end
22
25
 
23
26
  app.call(env)
24
27
  rescue ::JWTSignedRequest::UnauthorizedRequestError => e
@@ -28,7 +31,12 @@ module JWTSignedRequest
28
31
 
29
32
  private
30
33
 
31
- attr_reader :app, :secret_key, :algorithm
34
+ attr_reader :app, :secret_key, :algorithm, :exclude_paths
35
+
36
+ def excluded_path?(env)
37
+ !exclude_paths.nil? &&
38
+ env['REQUEST_PATH'].match(exclude_paths)
39
+ end
32
40
  end
33
41
  end
34
42
  end
data/lib/jwt_signed_request/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module JWTSignedRequest
2
- VERSION = "1.2.0".freeze
2
+ VERSION = "1.2.1".freeze
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: jwt_signed_request
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.2.0
4
+ version: 1.2.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Toan Nguyen
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2017-03-28 00:00:00.000000000 Z
11
+ date: 2017-05-08 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: jwt
@@ -141,7 +141,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
141
141
  version: '0'
142
142
  requirements: []
143
143
  rubyforge_project:
144
- rubygems_version: 2.4.5.1
144
+ rubygems_version: 2.6.11
145
145
  signing_key:
146
146
  specification_version: 4
147
147
  summary: JWT request signing and verification for Internal APIs