Class: Tiddle::TokenIssuer

Inherits:
Object
  • Object
show all
Defined in:
lib/tiddle/token_issuer.rb

Constant Summary collapse

MAXIMUM_TOKENS_PER_USER =
20

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(maximum_tokens_per_user) ⇒ TokenIssuer

Returns a new instance of TokenIssuer.



11
12
13
# File 'lib/tiddle/token_issuer.rb', line 11

def initialize(maximum_tokens_per_user)
  self.maximum_tokens_per_user = maximum_tokens_per_user
end

Class Method Details

.buildObject



7
8
9
# File 'lib/tiddle/token_issuer.rb', line 7

def self.build
  new(MAXIMUM_TOKENS_PER_USER)
end

Instance Method Details

#create_and_return_token(resource, request, expires_in: nil, metadata: {}) ⇒ Object



15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
# File 'lib/tiddle/token_issuer.rb', line 15

def create_and_return_token(resource, request, expires_in: nil, metadata: {})
  token_class = authentication_token_class(resource)
  token, token_body = Devise.token_generator.generate(token_class, :body)

  resource.authentication_tokens.create!(
    token_attributes(
      token_body: token_body,
      request: request,
      expires_in: expires_in,
      metadata: 
    )
  )

  token
end

#expire_token(resource, request) ⇒ Object



31
32
33
34
# File 'lib/tiddle/token_issuer.rb', line 31

def expire_token(resource, request)
  find_token(resource, request.headers["X-#{ModelName.new.with_dashes(resource)}-TOKEN"])
    .try(:destroy)
end

#find_token(resource, token_from_headers) ⇒ Object



36
37
38
39
40
41
# File 'lib/tiddle/token_issuer.rb', line 36

def find_token(resource, token_from_headers)
  token_class = authentication_token_class(resource)
  token_body = Devise.token_generator.digest(token_class, :body, token_from_headers)
  # 'find_by' behaves differently in AR vs Mongoid, so using 'where' instead
  resource.authentication_tokens.where(body: token_body).first
end

#purge_old_tokens(resource) ⇒ Object



43
44
45
46
47
48
# File 'lib/tiddle/token_issuer.rb', line 43

def purge_old_tokens(resource)
  resource.authentication_tokens
          .order(last_used_at: :desc)
          .offset(maximum_tokens_per_user)
          .destroy_all
end