Module: Paseto

Defined in:

lib/paseto.rb,
lib/paseto/error.rb,
lib/paseto/local.rb,
lib/paseto/token.rb,
lib/paseto/public.rb,
lib/paseto/version.rb

Defined Under Namespace

Modules: V2 Classes: Token

Constant Summary

EMPTY_FOOTER =

''.freeze

UNSIGNED_LITTLE_64 =

An Array#pack format to pack an unsigned little-endian 64-bit integer

'Q<'.freeze

Error =

Class.new(StandardError)

HeaderError =

Class.new(Error)

TokenError =

Class.new(Error)

AuthenticationError =

Class.new(Error)

VERSION =

"0.3.1"

Class Method Summary

• .decode64(str) ⇒ Object
• .encode64(bin) ⇒ Object
• .encode_length(n) ⇒ Object

  github.com/paragonie/paseto/blob/master/docs/01-Protocol-Versions/Common.md#pae-definition.

• .parse(raw) ⇒ Object
• .pre_auth_encode(*pieces) ⇒ Object

  github.com/paragonie/paseto/blob/master/docs/01-Protocol-Versions/Common.md#pae-definition.

• .verify_token(token, expected_header, expected_footer) ⇒ Object

Class Method Details

.decode64(str) ⇒ Object

# File 'lib/paseto.rb', line 31

def self.decode64(str)
  Base64.urlsafe_decode64(str)
end

.encode64(bin) ⇒ Object

# File 'lib/paseto.rb', line 35

def self.encode64(bin)
  # Remove the padding on the encode64
  Base64.urlsafe_encode64(bin).gsub(/=+$/, '')
end

.encode_length(n) ⇒ Object

github.com/paragonie/paseto/blob/master/docs/01-Protocol-Versions/Common.md#pae-definition

# File 'lib/paseto.rb', line 17

def self.encode_length(n)
  [n].pack(UNSIGNED_LITTLE_64)
end

.parse(raw) ⇒ Object

# File 'lib/paseto/token.rb', line 28

def self.parse(raw)
  version, purpose, payload, footer = raw.split('.')

  header = "#{version}.#{purpose}"
  footer = footer.nil? ? EMPTY_FOOTER : Paseto.decode64(footer)
  payload = Paseto.decode64(payload) unless payload.nil?

  Token.new(header, payload, footer)
end

.pre_auth_encode(*pieces) ⇒ Object

github.com/paragonie/paseto/blob/master/docs/01-Protocol-Versions/Common.md#pae-definition

# File 'lib/paseto.rb', line 22

def self.pre_auth_encode(*pieces)
  initial_output = encode_length(pieces.length)

  pieces.reduce(initial_output) do |output, piece|
    output += encode_length(piece.length)
    output += piece
  end
end

.verify_token(token, expected_header, expected_footer) ⇒ Object

# File 'lib/paseto/token.rb', line 15

def self.verify_token(token, expected_header, expected_footer)
  token = parse(token) unless token.is_a? Token
  if token.header != expected_header
    raise HeaderError.new("Invalid message header: #{token.header}")
  end

  if token.footer != expected_footer
    raise TokenError.new("Invalid message footer: #{token.footer.inspect}")
  end

  token
end