Module: DashApi::JsonWebToken

Defined in:: app/services/dash_api/json_web_token.rb

Constant Summary collapse

JWT_HASH_ALGORITHM =

'HS256'

GOOGLE_CERTS_URL =

'https://www.googleapis.com/robot/v1/metadata/x509/[email protected]'

Class Method Summary collapse

Class Method Details

.decode(jwt_token) ⇒ `Object`

# File 'app/services/dash_api/json_web_token.rb', line 16

def self.decode(jwt_token)
  jwt = JWT.decode(jwt_token, DashApi.jwt_secret, true, {
    algorithm: DashApi.jwt_algorithm || JWT_HASH_ALGORITHM
  })
  HashWithIndifferentAccess.new(jwt[0])
end

.decode_firebase(jwt_token) ⇒ `Object`

# File 'app/services/dash_api/json_web_token.rb', line 23

def self.decode_firebase(jwt_token)
  firebase_web_key = DashApi.firebase_web_key
  jwt = JWT.decode(jwt_token, firebase_web_key, true, { algorithm: 'RS256' })  do |header|
    url = URI(GOOGLE_CERTS_URL)
    json = JSON.parse(Net::HTTP.get(url))
    public_key = OpenSSL::X509::Certificate.new(json[header['kid']]).public_key
  end
  jwt = jwt[0].merge({ role: "user", provider: "firebase" })
  HashWithIndifferentAccess.new(jwt)
end

.decode_unverified(jwt_token) ⇒ `Object`



34
35
36

# File 'app/services/dash_api/json_web_token.rb', line 34

def self.decode_unverified(jwt_token)
  HashWithIndifferentAccess.new(JWT.decode(jwt_token, nil, false)[0])
end

.encode(payload:, expiration:) ⇒ `Object`

# File 'app/services/dash_api/json_web_token.rb', line 11

def self.encode(payload:, expiration:)
  payload[:exp] = expiration || 15.minutes.from_now.to_i
  JWT.encode(payload, DashApi.jwt_secret, DashApi.jwt_hash_algorithm || JWT_HASH_ALGORITHM)
end

Module: DashApi::JsonWebToken

Constant Summary collapse

Class Method Summary collapse

Class Method Details

.decode(jwt_token) ⇒ Object

.decode_firebase(jwt_token) ⇒ Object

.decode_unverified(jwt_token) ⇒ Object

.encode(payload:, expiration:) ⇒ Object

.decode(jwt_token) ⇒ `Object`

.decode_firebase(jwt_token) ⇒ `Object`

.decode_unverified(jwt_token) ⇒ `Object`

.encode(payload:, expiration:) ⇒ `Object`