Class: JWT::Verify
- Inherits:
-
Object
- Object
- JWT::Verify
- Defined in:
- lib/jwt/verify.rb
Overview
JWT verify methods
Instance Method Summary collapse
-
#initialize(payload, options) ⇒ Verify
constructor
A new instance of Verify.
- #verify_aud ⇒ Object
- #verify_aud_array(audience, options_aud) ⇒ Object
- #verify_expiration ⇒ Object
- #verify_iat ⇒ Object
- #verify_iss ⇒ Object
- #verify_jti ⇒ Object
- #verify_not_before ⇒ Object
- #verify_sub ⇒ Object
Constructor Details
#initialize(payload, options) ⇒ Verify
Returns a new instance of Verify.
15 16 17 18 |
# File 'lib/jwt/verify.rb', line 15 def initialize(payload, ) @payload = payload @options = end |
Instance Method Details
#verify_aud ⇒ Object
20 21 22 23 24 25 26 27 28 29 30 31 |
# File 'lib/jwt/verify.rb', line 20 def verify_aud return unless ( = extract_option(:aud)) if @payload['aud'].is_a?(Array) verify_aud_array(@payload['aud'], ) else raise( JWT::InvalidAudError, "Invalid audience. Expected #{}, received #{@payload['aud'] || '<none>'}" ) unless @payload['aud'].to_s == .to_s end end |
#verify_aud_array(audience, options_aud) ⇒ Object
33 34 35 36 37 38 39 40 41 |
# File 'lib/jwt/verify.rb', line 33 def verify_aud_array(audience, ) if .is_a?(Array) .each do |aud| raise(JWT::InvalidAudError, 'Invalid audience') unless audience.include?(aud.to_s) end else raise(JWT::InvalidAudError, 'Invalid audience') unless audience.include?(.to_s) end end |
#verify_expiration ⇒ Object
43 44 45 46 47 48 49 |
# File 'lib/jwt/verify.rb', line 43 def verify_expiration return unless @payload.include?('exp') if @payload['exp'].to_i <= (Time.now.to_i - leeway) raise(JWT::ExpiredSignature, 'Signature has expired') end end |
#verify_iat ⇒ Object
51 52 53 54 55 56 57 |
# File 'lib/jwt/verify.rb', line 51 def verify_iat return unless @payload.include?('iat') if !@payload['iat'].is_a?(Numeric) || @payload['iat'].to_f > (Time.now.to_f + leeway) raise(JWT::InvalidIatError, 'Invalid iat') end end |
#verify_iss ⇒ Object
59 60 61 62 63 64 65 66 67 68 |
# File 'lib/jwt/verify.rb', line 59 def verify_iss return unless ( = extract_option(:iss)) if @payload['iss'].to_s != .to_s raise( JWT::InvalidIssuerError, "Invalid issuer. Expected #{}, received #{@payload['iss'] || '<none>'}" ) end end |
#verify_jti ⇒ Object
70 71 72 73 74 75 76 77 |
# File 'lib/jwt/verify.rb', line 70 def verify_jti = extract_option(:verify_jti) if .respond_to?(:call) raise(JWT::InvalidJtiError, 'Invalid jti') unless .call(@payload['jti']) else raise(JWT::InvalidJtiError, 'Missing jti') if @payload['jti'].to_s.strip.empty? end end |
#verify_not_before ⇒ Object
79 80 81 82 83 84 85 |
# File 'lib/jwt/verify.rb', line 79 def verify_not_before return unless @payload.include?('nbf') if @payload['nbf'].to_i > (Time.now.to_i + leeway) raise(JWT::ImmatureSignature, 'Signature nbf has not been reached') end end |
#verify_sub ⇒ Object
87 88 89 90 91 92 93 94 |
# File 'lib/jwt/verify.rb', line 87 def verify_sub return unless ( = extract_option(:sub)) raise( JWT::InvalidSubError, "Invalid subject. Expected #{}, received #{@payload['sub'] || '<none>'}" ) unless @payload['sub'].to_s == .to_s end |