RubyGems - keycloak-ruby-client - Versions diffs - 0.0.13 → 0.0.14 - Mend

keycloak-ruby-client 0.0.13 → 0.0.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: cad9329591793b920ce448c860cd14d8f08dde82
-  data.tar.gz: b0fab2a0faa37555449701e1917ff58e6e8b6c2a
+  metadata.gz: ea96c6ce0461b03f3044cef0525da847469201b4
+  data.tar.gz: 6eb43a59c72b12bf0e54aa87b35475a2101203f0
 SHA512:
-  metadata.gz: 8222c591f83d24f86e3e72d9d65601909325d08df60977483fe619d97711f096d096bf296a8a0c4a10a4057f9c07a26a482d7a60ca59eee50c8f71c6b93638fe
-  data.tar.gz: '07964b5edd92032897c98558093c923a864bf35f129755cc91868c1fb3a038e3a78f7aea524fa5767f8279aa4fdb59b35ff7665a5225ea805345fb9188cea7e6'
+  metadata.gz: 1905046d47ebcd9572a4edfe05e7eb79b9aa12b197c1c41b97f7eea1341d600de99c5fa873ad6c04c834888fca95145d3d3c3e62bc9afc6cbad92497030bc221
+  data.tar.gz: 88b9cd6fa32a4bf3d978ba8fddb880fa1f59d2c71eebdf24750ac6bea65bde323e2c703e4aaa101ef7df994744c8ff25f0e58ade079dce587759c978e3080735

data/lib/keycloak/access_token.rb CHANGED Viewed

@@ -3,7 +3,7 @@ module Keycloak
     attr_reader :metadata, :jti, :exp, :sub, :azp, :roles, :scope,
                 :phone_number, :username, :access_token, :client_roles
-    def initialize(realm, access_token, decoded_token)
+    def initialize(realm, access_token, decoded_token, client_id = nil)
       @realm = realm
       @access_token = access_token
       @metadata = decoded_token[0]
@@ -15,13 +15,17 @@ module Keycloak
         @roles = realm_access["roles"] || []
       end
       if resource_access = @metadata["resource_access"]
-        @client_roles = resource_access.dig(realm.name, "roles") || []
+        @client_roles = (client_id && resource_access.dig(client_id, "roles")) || []
       end
       @scope = @metadata["scope"]
       @phone_number = @metadata["phone_number"]
       @username = @metadata["username"] || @metadata["preferred_username"]
     end
+    def client_id
+      @azp
+    end
     def authorization
       "Bearer #{@access_token}"
     end

data/lib/keycloak/realm.rb CHANGED Viewed

@@ -36,10 +36,14 @@ module Keycloak
       realm
     end
-    def parse_access_token(access_token)
+    ParseAccessTokenError = Class.new(StandardError)
+    def parse_access_token(access_token, client_id:)
       alg = JWT.decode(access_token, nil, false)[1]["alg"]
       decoded_token = JWT.decode access_token, public_keys[alg], true, algorithm: alg
-      AccessToken.new self, access_token, decoded_token
+      azp = decoded_token[0]["azp"]
+      raise ParseAccessTokenError, "Unexpected client, expect #{client_id}, got #{azp}" if client_id && azp != client_id
+      AccessToken.new self, access_token, decoded_token, client_id
     end
     def client

data/lib/keycloak/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Keycloak
-  VERSION = "0.0.13"
+  VERSION = "0.0.14"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: keycloak-ruby-client
 version: !ruby/object:Gem::Version
-  version: 0.0.13
+  version: 0.0.14
 platform: ruby
 authors:
 - Fuxin Hao
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2019-09-17 00:00:00.000000000 Z
+date: 2019-09-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails