Module: Slosilo

Defined in:

lib/slosilo/jwt.rb,
lib/slosilo/key.rb,
lib/slosilo/errors.rb,
lib/slosilo/random.rb,
lib/slosilo/version.rb,
lib/slosilo/keystore.rb,
lib/slosilo/symmetric.rb,
lib/slosilo/attr_encrypted.rb,
lib/slosilo/adapters/file_adapter.rb,
lib/slosilo/adapters/mock_adapter.rb,
lib/slosilo/adapters/memory_adapter.rb,
lib/slosilo/adapters/sequel_adapter.rb,
lib/slosilo/adapters/abstract_adapter.rb,
lib/slosilo/adapters/sequel_adapter/migration.rb

Defined Under Namespace

Modules: Adapters, EncryptedAttributes, Extension, Random Classes: Error, JWT, Key, Keystore, Symmetric

Constant Summary

VERSION =

"3.0.0"

Class Attribute Summary

• .adapter ⇒ Object

  Returns the value of attribute adapter.

• .encryption_key ⇒ Object

Class Method Summary

• .[](id) ⇒ Object
• .[]=(id, value) ⇒ Object
• .each(&block) ⇒ Object
• .JWT(raw) ⇒ Object

  Try to convert by detecting token representation and parsing.

• .sign(object) ⇒ Object
• .token_signer(token) ⇒ Object

  Looks up the signer by public key fingerprint and checks the validity of the signature.

• .token_valid?(token) ⇒ Boolean

Class Attribute Details

.adapter ⇒ Object

Returns the value of attribute adapter.

# File 'lib/slosilo/keystore.rb', line 82

def adapter
  @adapter
end

.encryption_key ⇒ Object

# File 'lib/slosilo/attr_encrypted.rb', line 79

def encryption_key
  @encryption_key
end

Class Method Details

.[](id) ⇒ Object

# File 'lib/slosilo/keystore.rb', line 46

def [] id
  keystore.get id
end

.[]=(id, value) ⇒ Object

# File 'lib/slosilo/keystore.rb', line 42

def []= id, value
  keystore.put id, value
end

.each(&block) ⇒ Object

# File 'lib/slosilo/keystore.rb', line 50

def each(&block)
  keystore.each(&block)
end

.JWT(raw) ⇒ Object

Try to convert by detecting token representation and parsing

# File 'lib/slosilo/jwt.rb', line 111

def self.JWT raw
  if raw.is_a? JWT
    raw
  elsif raw.respond_to?(:to_h) || raw =~ /\A\s*\{/
    JWT.parse_json raw
  else
    JWT.parse_compact raw
  end
rescue
  raise ArgumentError, "invalid value for JWT(): #{raw.inspect}"
end

.sign(object) ⇒ Object

# File 'lib/slosilo/keystore.rb', line 54

def sign object
  self[:own].sign object
end

.token_signer(token) ⇒ Object

Looks up the signer by public key fingerprint and checks the validity of the signature. If the token is JWT, exp and/or iat claims are also verified; the caller is responsible for validating any other claims.

# File 'lib/slosilo/keystore.rb', line 65

def token_signer token
  begin
    # see if maybe it's a JWT
    token = JWT token
    fingerprint = token.header['kid']
  rescue ArgumentError
    fingerprint = token['key']
  end

  key, id = keystore.get_by_fingerprint fingerprint
  if key && key.token_valid?(token)
    return id
  else
    return nil
  end
end

.token_valid?(token) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/slosilo/keystore.rb', line 58

def token_valid? token
  keystore.any? { |k| k.token_valid? token }
end