Class: Mumukit::Auth::Token

Inherits:

Object

Object
Mumukit::Auth::Token

show all

Defined in:: lib/mumukit/auth/token.rb

Instance Attribute Summary collapse

#jwt ⇒ Object readonly

Returns the value of attribute jwt.

Class Method Summary collapse

Instance Method Summary collapse

#initialize(jwt) ⇒ Token constructor

A new instance of Token.
#metadata ⇒ Object
#permissions(app) ⇒ Object
#verify_client! ⇒ Object

Constructor Details

#initialize(jwt) ⇒ `Token`

Returns a new instance of Token.



7
8
9

# File 'lib/mumukit/auth/token.rb', line 7

def initialize(jwt)
  @jwt = jwt
end

Instance Attribute Details

#jwt ⇒ `Object` (readonly)

Returns the value of attribute jwt.



5
6
7

# File 'lib/mumukit/auth/token.rb', line 5

def jwt
  @jwt
end

Class Method Details

.decode(encoded) ⇒ `Object`

# File 'lib/mumukit/auth/token.rb', line 32

def self.decode(encoded)
  Token.new JWT.decode(encoded, decoded_secret)[0]
rescue JWT::DecodeError => e
  raise Mumukit::Auth::InvalidTokenError.new(e)
end

.decode_header(header) ⇒ `Object`

Raises:

(Mumukit::Auth::InvalidTokenError)

# File 'lib/mumukit/auth/token.rb', line 27

def self.decode_header(header)
  raise Mumukit::Auth::InvalidTokenError.new('missing authorization header') if header.nil?
  decode header.split(' ').last
end

.decoded_secret ⇒ `Object`



46
47
48

# File 'lib/mumukit/auth/token.rb', line 46

def self.decoded_secret
  JWT.base64url_decode(Mumukit::Auth.config.client_secret)
end

.encode_dummy_auth_header(metadata) ⇒ `Object`

# File 'lib/mumukit/auth/token.rb', line 38

def self.encode_dummy_auth_header(metadata)
  encoded_token = JWT.encode(
      {aud: Mumukit::Auth.config.client_id,
       app_metadata: metadata},
      decoded_secret)
  'dummy token ' + encoded_token
end

.from_env(env) ⇒ `Object`



23
24
25

# File 'lib/mumukit/auth/token.rb', line 23

def self.from_env(env)
  new(env.dig('omniauth.auth', 'extra', 'raw_info') || {})
end

Instance Method Details

#metadata ⇒ `Object`



11
12
13

# File 'lib/mumukit/auth/token.rb', line 11

def metadata
  @metadata ||= Mumukit::Auth::Metadata.new(jwt['app_metadata'] || {})
end

#permissions(app) ⇒ `Object`



15
16
17

# File 'lib/mumukit/auth/token.rb', line 15

def permissions(app)
  metadata.permissions(app)
end

#verify_client! ⇒ `Object`

Raises:

(Mumukit::Auth::InvalidTokenError)



19
20
21

# File 'lib/mumukit/auth/token.rb', line 19

def verify_client!
  raise Mumukit::Auth::InvalidTokenError.new('aud mismatch') if Mumukit::Auth.config.client_id != jwt['aud']
end

Class: Mumukit::Auth::Token

Instance Attribute Summary collapse

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(jwt) ⇒ Token

Instance Attribute Details

#jwt ⇒ Object (readonly)

Class Method Details

.decode(encoded) ⇒ Object

.decode_header(header) ⇒ Object

.decoded_secret ⇒ Object

.encode_dummy_auth_header(metadata) ⇒ Object

.from_env(env) ⇒ Object

Instance Method Details

#metadata ⇒ Object

#permissions(app) ⇒ Object

#verify_client! ⇒ Object

#initialize(jwt) ⇒ `Token`

#jwt ⇒ `Object` (readonly)

.decode(encoded) ⇒ `Object`

.decode_header(header) ⇒ `Object`

.decoded_secret ⇒ `Object`

.encode_dummy_auth_header(metadata) ⇒ `Object`

.from_env(env) ⇒ `Object`

#metadata ⇒ `Object`

#permissions(app) ⇒ `Object`

#verify_client! ⇒ `Object`