Module: JWT

Extended by:

Json

Defined in:

lib/jwt.rb,
lib/jwt/json.rb

Defined Under Namespace

Modules: Json Classes: DecodeError, ExpiredSignature, ImmatureSignature, InvalidAudError, InvalidIatError, InvalidIssuerError, InvalidJtiError, InvalidSubError, VerificationError

Class Method Summary

• .base64url_decode(str) ⇒ Object
• .base64url_encode(str) ⇒ Object
• .decode(jwt, key = nil, verify = true, options = {}, &keyfinder) ⇒ Object
• .decode_header_and_payload(header_segment, payload_segment) ⇒ Object
• .decoded_segments(jwt, verify = true) ⇒ Object
• .encode(payload, key, algorithm = "HS256", header_fields = {}) ⇒ Object
• .encoded_header(algorithm = "HS256", header_fields = {}) ⇒ Object
• .encoded_payload(payload) ⇒ Object
• .encoded_signature(signing_input, key, algorithm) ⇒ Object
• .raw_segments(jwt, verify = true) ⇒ Object
• .secure_compare(a, b) ⇒ Object

  From devise constant-time comparison algorithm to prevent timing attacks.

• .sign(algorithm, msg, key) ⇒ Object
• .sign_hmac(algorithm, msg, key) ⇒ Object
• .sign_rsa(algorithm, msg, private_key) ⇒ Object
• .signature_algorithm_and_key(header, key, &keyfinder) ⇒ Object
• .verify_rsa(algorithm, public_key, signing_input, signature) ⇒ Object
• .verify_signature(algo, key, signing_input, signature) ⇒ Object

Methods included from Json

decode_json, encode_json

Class Method Details

.base64url_decode(str) ⇒ Object

# File 'lib/jwt.rb', line 47

def base64url_decode(str)
  str += "=" * (4 - str.length.modulo(4))
  Base64.decode64(str.tr("-_", "+/"))
end

.base64url_encode(str) ⇒ Object

# File 'lib/jwt.rb', line 52

def base64url_encode(str)
  Base64.encode64(str).tr("+/", "-_").gsub(/[\n=]/, "")
end

.decode(jwt, key = nil, verify = true, options = {}, &keyfinder) ⇒ Object

Raises:

• (JWT::DecodeError)

# File 'lib/jwt.rb', line 104

def decode(jwt, key=nil, verify=true, options={}, &keyfinder)
  raise JWT::DecodeError.new("Nil JSON web token") unless jwt

  header, payload, signature, signing_input = decoded_segments(jwt, verify)
  raise JWT::DecodeError.new("Not enough or too many segments") unless header && payload

  default_options = {
    :verify_expiration => true,
    :verify_not_before => true,
    :verify_iss => true,
    :verify_iat => true,
    :verify_jti => true,
    :verify_aud => true,
    :verify_sub => true,
    :leeway => 0
  }

  options = default_options.merge(options)

  if verify
    algo, key = signature_algorithm_and_key(header, key, &keyfinder)
    verify_signature(algo, key, signing_input, signature)
  end

  if options[:verify_expiration] && payload.include?('exp')
    raise JWT::ExpiredSignature.new("Signature has expired") unless payload['exp'].to_i > (Time.now.to_i - options[:leeway])
  end
  if options[:verify_not_before] && payload.include?('nbf')
    raise JWT::ImmatureSignature.new("Signature nbf has not been reached") unless payload['nbf'].to_i < (Time.now.to_i + options[:leeway])
  end
  if options[:verify_iss] && payload.include?('iss')
    raise JWT::InvalidIssuerError.new("Invalid issuer") unless payload['iss'].to_s == options['iss'].to_s
  end
  if options[:verify_iat] && payload.include?('iat')
    raise JWT::InvalidIatError.new("Invalid iat") unless (payload['iat'].is_a?(Integer) and payload['iat'].to_i <= Time.now.to_i)
  end
  if options[:verify_aud] && payload.include?('aud')
    if payload['aud'].is_a?(Array)
      raise JWT::InvalidAudError.new("Invalid audience") unless payload['aud'].include?(options['aud'])
    else
      raise JWT::InvalidAudError.new("Invalid audience") unless payload['aud'].to_s == options['aud'].to_s
    end
  end
  if options[:verify_sub] && payload.include?('sub')
    raise JWT::InvalidSubError.new("Invalid subject") unless payload['sub'].to_s == options['sub'].to_s
  end
  if options[:verify_jti] && payload.include?('jti')
    raise JWT::InvalidJtiError.new("need iat for verify jwt id") unless payload.include?('iat')
    raise JWT::InvalidJtiError.new("Not a uniq jwt id") unless options['jti'].to_s == Digest::MD5.hexdigest("#{key}:#{payload['iat']}")
  end

  return payload,header
end

.decode_header_and_payload(header_segment, payload_segment) ⇒ Object

# File 'lib/jwt.rb', line 90

def decode_header_and_payload(header_segment, payload_segment)
  header = decode_json(base64url_decode(header_segment))
  payload = decode_json(base64url_decode(payload_segment))
  [header, payload]
end

.decoded_segments(jwt, verify = true) ⇒ Object

# File 'lib/jwt.rb', line 96

def decoded_segments(jwt, verify=true)
  header_segment, payload_segment, crypto_segment = raw_segments(jwt, verify)
  header, payload = decode_header_and_payload(header_segment, payload_segment)
  signature = base64url_decode(crypto_segment.to_s) if verify
  signing_input = [header_segment, payload_segment].join(".")
  [header, payload, signature, signing_input]
end

.encode(payload, key, algorithm = "HS256", header_fields = {}) ⇒ Object

# File 'lib/jwt.rb', line 74

def encode(payload, key, algorithm="HS256", header_fields={})
  algorithm ||= "none"
  segments = []
  segments << encoded_header(algorithm, header_fields)
  segments << encoded_payload(payload)
  segments << encoded_signature(segments.join("."), key, algorithm)
  segments.join(".")
end

.encoded_header(algorithm = "HS256", header_fields = {}) ⇒ Object

# File 'lib/jwt.rb', line 56

def encoded_header(algorithm="HS256", header_fields={})
  header = {"typ" => "JWT", "alg" => algorithm}.merge(header_fields)
  base64url_encode(encode_json(header))
end

.encoded_payload(payload) ⇒ Object

# File 'lib/jwt.rb', line 61

def encoded_payload(payload)
  base64url_encode(encode_json(payload))
end

.encoded_signature(signing_input, key, algorithm) ⇒ Object

# File 'lib/jwt.rb', line 65

def encoded_signature(signing_input, key, algorithm)
  if algorithm == "none"
    ""
  else
    signature = sign(algorithm, signing_input, key)
    base64url_encode(signature)
  end
end

.raw_segments(jwt, verify = true) ⇒ Object

Raises:

• (JWT::DecodeError)

# File 'lib/jwt.rb', line 83

def raw_segments(jwt, verify=true)
  segments = jwt.split(".")
  required_num_segments = verify ? [3] : [2,3]
  raise JWT::DecodeError.new("Not enough or too many segments") unless required_num_segments.include? segments.length
  segments
end

.secure_compare(a, b) ⇒ Object

From devise constant-time comparison algorithm to prevent timing attacks

# File 'lib/jwt.rb', line 183

def secure_compare(a, b)
  return false if a.nil? || b.nil? || a.empty? || b.empty? || a.bytesize != b.bytesize
  l = a.unpack "C#{a.bytesize}"

  res = 0
  b.each_byte { |byte| res |= byte ^ l.shift }
  res == 0
end

.sign(algorithm, msg, key) ⇒ Object

# File 'lib/jwt.rb', line 25

def sign(algorithm, msg, key)
  if ["HS256", "HS384", "HS512"].include?(algorithm)
    sign_hmac(algorithm, msg, key)
  elsif ["RS256", "RS384", "RS512"].include?(algorithm)
    sign_rsa(algorithm, msg, key)
  else
    raise NotImplementedError.new("Unsupported signing method")
  end
end

.sign_hmac(algorithm, msg, key) ⇒ Object

# File 'lib/jwt.rb', line 43

def sign_hmac(algorithm, msg, key)
  OpenSSL::HMAC.digest(OpenSSL::Digest.new(algorithm.sub("HS", "sha")), key, msg)
end

.sign_rsa(algorithm, msg, private_key) ⇒ Object

# File 'lib/jwt.rb', line 35

def sign_rsa(algorithm, msg, private_key)
  private_key.sign(OpenSSL::Digest.new(algorithm.sub("RS", "sha")), msg)
end

.signature_algorithm_and_key(header, key, &keyfinder) ⇒ Object

# File 'lib/jwt.rb', line 158

def signature_algorithm_and_key(header, key, &keyfinder)
  if keyfinder
    key = keyfinder.call(header)
  end
  [header['alg'], key]
end

.verify_rsa(algorithm, public_key, signing_input, signature) ⇒ Object

# File 'lib/jwt.rb', line 39

def verify_rsa(algorithm, public_key, signing_input, signature)
  public_key.verify(OpenSSL::Digest.new(algorithm.sub("RS", "sha")), signature, signing_input)
end

.verify_signature(algo, key, signing_input, signature) ⇒ Object

# File 'lib/jwt.rb', line 165

def verify_signature(algo, key, signing_input, signature)
  begin
    if ["HS256", "HS384", "HS512"].include?(algo)
      raise JWT::VerificationError.new("Signature verification failed") unless secure_compare(signature, sign_hmac(algo, signing_input, key))
    elsif ["RS256", "RS384", "RS512"].include?(algo)
      raise JWT::VerificationError.new("Signature verification failed") unless verify_rsa(algo, key, signing_input, signature)
    else
      raise JWT::VerificationError.new("Algorithm not supported")
    end
  rescue OpenSSL::PKey::PKeyError
    raise JWT::VerificationError.new("Signature verification failed")
  ensure
    OpenSSL.errors.clear
  end
end