Module: Devise::Rownd::Token

Included in:

Strategies

Defined in:

lib/devise/rownd/token.rb

Class Method Summary

• .fetch_jwks_from_api ⇒ Object
• .jwks ⇒ Object
• .verify_token(access_token) ⇒ Object

Class Method Details

.fetch_jwks_from_api ⇒ Object

# File 'lib/devise/rownd/token.rb', line 29

def fetch_jwks_from_api
  response = ::Devise::Rownd::API.make_api_call('/hub/auth/keys')
  return response.body['keys'] if response.success?

  Devise::Rownd::Log.error("Failed to fetch JWKs: #{response.body['message']}")
  nil
end

.jwks ⇒ Object

# File 'lib/devise/rownd/token.rb', line 25

def jwks
  Devise::Rownd::Caching.fetch('rownd_jwks', 15.minutes) { fetch_jwks_from_api }
end

.verify_token(access_token) ⇒ Object

Raises:

• (StandardError)

# File 'lib/devise/rownd/token.rb', line 12

def verify_token(access_token)
  raise StandardError, 'No JWKs' unless jwks

  jwks.each do |jwk|
    response = JOSE::JWT.verify_strict(jwk, ['EdDSA'], access_token)
    return response[1].fields if response[0]
  rescue StandardError => e
    Devise::Rownd::Log.debug("jwt not validated: #{e.message}")
    next
  end
  raise StandardError, 'Failed to verify JWT. No matching JWKs'
end