RubyGems - stytch - Versions diffs - 3.1.0 → 3.2.1 - Mend

stytch 3.1.0 → 3.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2534e355696eda17e5f4b8dac2b21335fdd54183c29c9ac694ac8886caceccbd
-  data.tar.gz: fcf8fea062ec5e2964fb3a32a2154a869b2e8256f6b7331e7aa29f7e52b2d0a8
+  metadata.gz: 9ae3fdbca4b9b650bd1efe53244d9752888ec610edfb92393b3c593d638ac219
+  data.tar.gz: 49d50b9bf2b9544bfc93b3e586fdf89efeefe3837bd1df07ce9eabdf9df1397c
 SHA512:
-  metadata.gz: deb23398868a541f5a0cf46d2314c27e9d50675948d190edc4696457e7dfd79f412a60bcd36140d2cbd2f17267919b1cd46ff60c648abb8a58c12021f27027b4
-  data.tar.gz: 5f763a8e124baf69867d99b8f80e76cbbe78bfb6d27199be31a097680187d90e24cb69bf66b97580e523b7287f3d41f97a007f5007d729d28d146721c66e314b
+  metadata.gz: b2e8a04d1eed6cced36ad8568b52794d3ca33ba181637739ec47553ba44957c72f5e1a1820c2a083005a69b5a204cb7946d73c58c342321bd87bd74a951ceb4f
+  data.tar.gz: 145f04af5a49a3a7d40f96fd35c9947e642e192e2d8fc7b572f12ed8d5dc3a22a7e5594bb94b68799fa380d9d233c90266e497ab86463c6ada6cf8144b64df73

data/lib/stytch/sessions.rb CHANGED Viewed

@@ -88,6 +88,12 @@ module Stytch
           session_duration_minutes: session_duration_minutes,
         )
       end
+    rescue StandardError
+      # JWT could not be verified locally. Check with the Stytch API.
+      return authenticate(
+        session_jwt: session_jwt,
+        session_duration_minutes: session_duration_minutes,
+      )
     end
     # Parse a JWT and verify the signature locally (without calling /authenticate in the API)
@@ -97,7 +103,7 @@ module Stytch
     def authenticate_jwt_local(session_jwt)
       issuer = "stytch.com/" + @project_id
       begin
-        decoded_token = JWT.decode session_jwt, nil, true,
+        decoded_token = JWT.decode session_jwt, nil, true,
         { jwks: @jwks_loader, iss: issuer, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ["RS256"]}
         return decoded_token[0]
       rescue JWT::InvalidIssuerError
@@ -113,12 +119,14 @@ module Stytch
     def marshal_jwt_into_session(jwt)
       stytch_claim = "https://stytch.com/session"
+      expires_at = jwt[stytch_claim]["expires_at"] || Time.at(jwt["exp"]).to_datetime.utc.strftime('%Y-%m-%dT%H:%M:%SZ')
       return {
-        "session_id" => jwt["jti"],
+        "session_id" => jwt[stytch_claim]["id"],
         "user_id" => jwt["sub"],
         "started_at" => jwt[stytch_claim]["started_at"],
         "last_accessed_at" => jwt[stytch_claim]["last_accessed_at"],
-        "expires_at" => Time.at(jwt["exp"]).to_datetime.iso8601,
+        # For JWTs that include it, prefer the inner expires_at claim.
+        "expires_at" => expires_at,
         "attributes" => jwt[stytch_claim]["attributes"],
         "authentication_factors" => jwt[stytch_claim]["authentication_factors"],
       }

data/lib/stytch/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Stytch
-  VERSION = '3.1.0'
+  VERSION = '3.2.1'
 end

data/stytch.gemspec CHANGED Viewed

@@ -27,6 +27,8 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'faraday', '>= 0.17.0', '< 2.0'
   spec.add_dependency 'faraday_middleware', '>= 0.14.0', '< 2.0'
-  spec.add_dependency 'jwt', '>= 2.3.0'
   spec.add_dependency 'json-jwt', '>=1.13.0'
+  spec.add_dependency 'jwt', '>= 2.3.0'
+  spec.add_development_dependency 'test-unit', '>=3.5.3'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: stytch
 version: !ruby/object:Gem::Version
-  version: 3.1.0
+  version: 3.2.1
 platform: ruby
 authors:
 - stytch
-autorequire:
+autorequire:
 bindir: exe
 cert_chain: []
-date: 2022-04-26 00:00:00.000000000 Z
+date: 2022-05-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
@@ -50,6 +50,20 @@ dependencies:
     - - "<"
       - !ruby/object:Gem::Version
         version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: json-jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.13.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.13.0
 - !ruby/object:Gem::Dependency
   name: jwt
   requirement: !ruby/object:Gem::Requirement
@@ -65,20 +79,20 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 2.3.0
 - !ruby/object:Gem::Dependency
-  name: json-jwt
+  name: test-unit
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.13.0
-  type: :runtime
+        version: 3.5.3
+  type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.13.0
-description:
+        version: 3.5.3
+description:
 email:
 - support@stytch.com
 executables: []
@@ -118,7 +132,7 @@ licenses:
 metadata:
   homepage_uri: https://stytch.com
   source_code_uri: https://github.com/stytchauth/stytch-ruby
-post_install_message:
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -133,8 +147,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3.1
-signing_key:
+rubygems_version: 3.1.6
+signing_key:
 specification_version: 4
 summary: Stytch Ruby Gem
 test_files: []