Class: JWT::Verify
- Inherits:
-
Object
- Object
- JWT::Verify
- Defined in:
- lib/jwt/verify.rb
Overview
JWT verify methods
Instance Method Summary collapse
-
#initialize(payload, options) ⇒ Verify
constructor
A new instance of Verify.
- #verify_aud ⇒ Object
- #verify_expiration ⇒ Object
- #verify_iat ⇒ Object
- #verify_iss ⇒ Object
- #verify_jti ⇒ Object
- #verify_not_before ⇒ Object
- #verify_sub ⇒ Object
Constructor Details
#initialize(payload, options) ⇒ Verify
Returns a new instance of Verify.
14 15 16 17 |
# File 'lib/jwt/verify.rb', line 14 def initialize(payload, ) @payload = payload @options = end |
Instance Method Details
#verify_aud ⇒ Object
19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 |
# File 'lib/jwt/verify.rb', line 19 def verify_aud return unless ( = extract_option(:aud)) if @payload['aud'].is_a?(Array) fail( JWT::InvalidAudError, 'Invalid audience' ) unless @payload['aud'].include?(.to_s) else fail( JWT::InvalidAudError, "Invalid audience. Expected #{}, received #{@payload['aud'] || '<none>'}" ) unless @payload['aud'].to_s == .to_s end end |
#verify_expiration ⇒ Object
35 36 37 38 39 40 41 |
# File 'lib/jwt/verify.rb', line 35 def verify_expiration return unless @payload.include?('exp') if @payload['exp'].to_i < (Time.now.to_i - leeway) fail(JWT::ExpiredSignature, 'Signature has expired') end end |
#verify_iat ⇒ Object
43 44 45 46 47 48 49 |
# File 'lib/jwt/verify.rb', line 43 def verify_iat return unless @payload.include?('iat') if !(@payload['iat'].is_a?(Numeric)) || @payload['iat'].to_f > (Time.now.to_f + leeway) fail(JWT::InvalidIatError, 'Invalid iat') end end |
#verify_iss ⇒ Object
51 52 53 54 55 56 57 58 59 60 |
# File 'lib/jwt/verify.rb', line 51 def verify_iss return unless ( = extract_option(:iss)) if @payload['iss'].to_s != .to_s fail( JWT::InvalidIssuerError, "Invalid issuer. Expected #{}, received #{@payload['iss'] || '<none>'}" ) end end |
#verify_jti ⇒ Object
62 63 64 65 66 67 68 69 |
# File 'lib/jwt/verify.rb', line 62 def verify_jti = extract_option(:verify_jti) if .respond_to?(:call) fail(JWT::InvalidJtiError, 'Invalid jti') unless .call(@payload['jti']) else fail(JWT::InvalidJtiError, 'Missing jti') if @payload['jti'].to_s.strip.empty? end end |
#verify_not_before ⇒ Object
71 72 73 74 75 76 77 |
# File 'lib/jwt/verify.rb', line 71 def verify_not_before return unless @payload.include?('nbf') if @payload['nbf'].to_i > (Time.now.to_i + leeway) fail(JWT::ImmatureSignature, 'Signature nbf has not been reached') end end |
#verify_sub ⇒ Object
79 80 81 82 83 84 85 86 |
# File 'lib/jwt/verify.rb', line 79 def verify_sub return unless ( = extract_option(:sub)) fail( JWT::InvalidSubError, "Invalid subject. Expected #{}, received #{@payload['sub'] || '<none>'}" ) unless @payload['sub'].to_s == .to_s end |