nuabase 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: f89d067530102ee8cdb37b20b324dca303ca41b10954259558d2e1c4d40d91b4
+  data.tar.gz: dccc82369f84feefd1282d278ab67cf133d7b5d4670da363a8f2a4ae64bf66ce
+SHA512:
+  metadata.gz: a2b1cdab5555cb04011e6386270cb3436e684b7271da0c73c8303a9f8cc294621a87ec0b7333512ba6f36d967be1eeea4232f40d220d44fc05fba21b5919a89e
+  data.tar.gz: 1bb7801e7d67105076f11ca8562fe956d28b72453c3c0a0610326653d36646f06e30a01ccbe2e06e3fffbfa9d9aeba345b738325edde0fe85acea309ea01c8b7

data/DEVELOPMENT.md

@@ -0,0 +1,5 @@
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and the created tag, and push the `.gem` file to [rubygems.org](https://rubygems.org).

data/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Nuabase
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

data/README.md

@@ -0,0 +1,102 @@
+# Nuabase
+
+## Installation
+
+Install the gem and add to the application's Gemfile by executing:
+
+    $ bundle add nuabase
+
+## Usage
+
+### Prerequisites
+
+Obtain a Signing Key Secret from the [Nuabase Console](https://console.nuabase.com/dashboard/signing-keys/new).
+
+This key is a secret and must be stored securely on your backend server. It must **not** be exposed to the client-side code. We recommend storing it as an encrypted Rails credential or as an environment variable named `NUABASE_SIGNING_KEY_SECRET`.
+
+The Signing Key Secret is used by your backend to generate short-lived JWT tokens via this SDK. The typical workflow is:
+
+1.  Expose an endpoint on your backend (e.g., `POST /.well-known/nuabase/token`).
+2.  **IMPORTANT**: This endpoint MUST be authenticated. You must verify the user's identity before generating a token. Do not expose this endpoint publicly.
+3.  Your frontend, loaded by an authenticated user, calls this endpoint.
+4.  Your backend uses the Nuabase SDK to generate a token for that specific user.
+5.  The frontend receives the token and uses it to directly make authenticated LLM calls to the Nuabase server, using the [Nuabase TypeScript SDK](https://github.com/nuabase/ts-sdk).
+
+### Basic Usage
+
+```ruby
+require 'nuabase'
+
+# Initialize the generator with your signing key secret and the user ID
+generator = Nuabase::NuaTokenGenerator.new(
+  signing_key_secret: 'pk_...', # Your Nuabase Signing Key Secret
+  user_id: 'user_123'           # The ID of the user in your system
+)
+
+# Generate the token
+token_data = generator.generate
+
+# token_data is a Hash containing:
+# {
+#   access_token: "eyJhbGci...",
+#   expires_in: 180,
+#   expires_at: 1732398765
+# }
+puts token_data[:access_token]
+```
+
+### Rails Integration
+
+You can integrate Nuabase into your Rails application by creating a controller to serve the token.
+
+1. Add the route in `config/routes.rb`:
+
+```ruby
+Rails.application.routes.draw do
+  # ... other routes
+
+  namespace :nuabase, path: ".well-known/nuabase", defaults: { format: :json } do
+    resource :token, only: :create
+  end
+end
+```
+
+2. Create the controller `app/controllers/nuabase/tokens_controller.rb`:
+
+```ruby
+module Nuabase
+  class TokensController < ApplicationController
+    # IMPORTANT: Ensure the user is authenticated.
+    # Replace `authenticate_user!` with your application's authentication filter.
+    before_action :authenticate_user!
+
+    def create
+      # Replace `current_user` with whatever object stores the authenticated user in your app
+      token = Nuabase::NuaTokenGenerator.new(
+        user_id: current_user.id,
+        signing_key_secret: ENV['NUABASE_SIGNING_KEY_SECRET']
+      ).generate
+
+      render json: token, status: :ok
+    end
+  end
+end
+```
+
+### Token Expiration and Automatic Refresh
+
+Tokens expire after 180 seconds by default. You can override the TTL by passing `expiry_seconds:` when instantiating `Nuabase::NuaTokenGenerator`:
+
+```ruby
+token_data = Nuabase::NuaTokenGenerator.new(
+  signing_key_secret: 'pk_...',
+  user_id: 'user_123',
+  expiry_seconds: 300 # token will last for 5 minutes
+).generate
+```
+
+Keep the expiration short, to prevent abuse of leaked token. The Nuabase TypeScript SDK will automatically refresh the token when it expires.
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/nuabase/ruby-sdk

data/Rakefile

@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+task default: %i[]

data/lib/nuabase/nua_token_generator.rb

@@ -0,0 +1,53 @@
+require 'jwt'
+require 'securerandom'
+require "base64"
+
+module Nuabase
+  class NuaTokenGenerator
+    class InvalidSecretKeyError < StandardError; end
+
+    SIGNING_KEY_PREFIX = "pk_".freeze
+    ALGORITHM = 'HS256'.freeze
+    EXPIRY_SECONDS = 180
+
+    def initialize(signing_key_secret:, user_id:, expiry_seconds: EXPIRY_SECONDS)
+      @user_id = user_id
+      @expiry_seconds = expiry_seconds
+      parse_signing_key(signing_key_secret)
+    end
+
+    def generate
+      current_time = Time.now.to_i
+
+      payload = {
+        iss: @client_id,
+        sub: @user_id,
+        kid: @key_id,
+        jti: SecureRandom.uuid,
+        exp: current_time + @expiry_seconds,
+        iat: current_time,
+        aud: "https://api.nuabase.com"
+      }
+
+      token = JWT.encode(payload, @secret_b64, ALGORITHM)
+
+      {
+        access_token: token,
+        expires_in: @expiry_seconds,
+        expires_at: payload[:exp]
+      }
+    end
+
+    private
+
+    def parse_signing_key(signing_key_secret)
+      raise InvalidSecretKeyError, "invalid Nuabase token secret" unless signing_key_secret.start_with?(SIGNING_KEY_PREFIX)
+      body = signing_key_secret[SIGNING_KEY_PREFIX.length..] # strip "pk_"
+      parts = body.split(".", 3)
+      raise InvalidSecretKeyError, "invalid API key format" unless parts.size == 3
+      client_id_b64, key_id_b64, @secret_b64 = parts
+      @client_id = Base64.urlsafe_decode64(client_id_b64)
+      @key_id = Base64.urlsafe_decode64(key_id_b64)
+    end
+  end
+end

data/lib/nuabase/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module Nuabase
+  VERSION = "0.1.0"
+end

data/lib/nuabase.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+require_relative "nuabase/version"
+require_relative "nuabase/nua_token_generator"
+
+module Nuabase
+  class Error < StandardError; end
+end
+

data/sig/nuabase.rbs

@@ -0,0 +1,4 @@
+module Nuabase
+  VERSION: String
+  # See the writing guide of rbs: https://github.com/ruby/rbs#guides
+end

metadata

@@ -0,0 +1,66 @@
+--- !ruby/object:Gem::Specification
+name: nuabase
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Jasim A Basheer
+autorequire:
+bindir: exe
+cert_chain: []
+date: 2025-11-23 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Ruby SDK for Nuabase
+email:
+- jasim@protoship.io
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- DEVELOPMENT.md
+- LICENSE
+- README.md
+- Rakefile
+- lib/nuabase.rb
+- lib/nuabase/nua_token_generator.rb
+- lib/nuabase/version.rb
+- sig/nuabase.rbs
+homepage: https://github.com/nuabase/ruby-sdk
+licenses: []
+metadata:
+  homepage_uri: https://github.com/nuabase/ruby-sdk
+  source_code_uri: https://github.com/nuabase/ruby-sdk
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 3.0.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.5.17
+signing_key:
+specification_version: 4
+summary: Nuabase Ruby SDK
+test_files: []