Class: Spaceship::ConnectAPI::Token

Inherits:

Object

• Object
• Spaceship::ConnectAPI::Token

Defined in:

spaceship/lib/spaceship/connect_api/token.rb

Constant Summary

MAX_TOKEN_DURATION =

maximum expiration supported by AppStore (20 minutes)

1200

Instance Attribute Summary

• #duration ⇒ Object readonly

  Returns the value of attribute duration.

• #expiration ⇒ Object readonly

  Returns the value of attribute expiration.

• #in_house ⇒ Object

  Temporary attribute not needed to create the JWT text There is no way to determine if the team associated with this key is for App Store or Enterprise so this is the temporary workaround.

• #issuer_id ⇒ Object readonly

  Returns the value of attribute issuer_id.

• #key_id ⇒ Object readonly

  Returns the value of attribute key_id.

• #text ⇒ Object readonly

  Returns the value of attribute text.

Class Method Summary

• .create(key_id: nil, issuer_id: nil, filepath: nil, key: nil, is_key_content_base64: false, duration: nil, in_house: nil) ⇒ Object
• .from(hash: nil, filepath: nil) ⇒ Object
• .from_json_file(filepath) ⇒ Object

Instance Method Summary

• #expired? ⇒ Boolean
• #initialize(key_id: nil, issuer_id: nil, key: nil, key_raw: nil, duration: nil, in_house: nil) ⇒ Token constructor

  A new instance of Token.

• #refresh! ⇒ Object
• #write_key_to_file(path) ⇒ Object

Constructor Details

#initialize(key_id: nil, issuer_id: nil, key: nil, key_raw: nil, duration: nil, in_house: nil) ⇒ Token

Returns a new instance of Token.

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 75

def initialize(key_id: nil, issuer_id: nil, key: nil, key_raw: nil, duration: nil, in_house: nil)
  @key_id = key_id
  @key = key
  @key_raw = key_raw
  @issuer_id = issuer_id
  @duration = duration
  @in_house = in_house

  @duration ||= MAX_TOKEN_DURATION
  @duration = @duration.to_i if @duration

  refresh!
end

Instance Attribute Details

#duration ⇒ Object (readonly)

Returns the value of attribute duration.

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 20

def duration
  @duration
end

#expiration ⇒ Object (readonly)

Returns the value of attribute expiration.

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 21

def expiration
  @expiration
end

#in_house ⇒ Object

Temporary attribute not needed to create the JWT text There is no way to determine if the team associated with this key is for App Store or Enterprise so this is the temporary workaround

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 26

def in_house
  @in_house
end

#issuer_id ⇒ Object (readonly)

Returns the value of attribute issuer_id.

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 18

def issuer_id
  @issuer_id
end

#key_id ⇒ Object (readonly)

Returns the value of attribute key_id.

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 17

def key_id
  @key_id
end

#text ⇒ Object (readonly)

Returns the value of attribute text.

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 19

def text
  @text
end

Class Method Details

.create(key_id: nil, issuer_id: nil, filepath: nil, key: nil, is_key_content_base64: false, duration: nil, in_house: nil) ⇒ Object

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 49

def self.create(key_id: nil, issuer_id: nil, filepath: nil, key: nil, is_key_content_base64: false, duration: nil, in_house: nil, **)
  key_id ||= ENV['SPACESHIP_CONNECT_API_KEY_ID']
  issuer_id ||= ENV['SPACESHIP_CONNECT_API_ISSUER_ID']
  filepath ||= ENV['SPACESHIP_CONNECT_API_KEY_FILEPATH']
  duration ||= ENV['SPACESHIP_CONNECT_API_TOKEN_DURATION']

  in_house_env = ENV['SPACESHIP_CONNECT_API_IN_HOUSE']
  in_house ||= !["", "no", "false", "off", "0"].include?(in_house_env) if in_house_env

  key ||= ENV['SPACESHIP_CONNECT_API_KEY']
  key ||= File.binread(filepath)

  if !key.nil? && is_key_content_base64
    key = Base64.decode64(key)
  end

  self.new(
    key_id: key_id,
    issuer_id: issuer_id,
    key: OpenSSL::PKey::EC.new(key),
    key_raw: key,
    duration: duration,
    in_house: in_house
  )
end

.from(hash: nil, filepath: nil) ⇒ Object

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 28

def self.from(hash: nil, filepath: nil)
  api_token ||= self.create(**hash) if hash
  api_token ||= self.from_json_file(filepath) if filepath
  return api_token
end

.from_json_file(filepath) ⇒ Object

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 34

def self.from_json_file(filepath)
  json = JSON.parse(File.read(filepath), { symbolize_names: true })

  missing_keys = []
  missing_keys << 'key_id' unless json.key?(:key_id)
  missing_keys << 'issuer_id' unless json.key?(:issuer_id)
  missing_keys << 'key' unless json.key?(:key)

  unless missing_keys.empty?
    raise "App Store Connect API key JSON is missing field(s): #{missing_keys.join(', ')}"
  end

  self.create(**json)
end

Instance Method Details

#expired? ⇒ Boolean

Returns:

• (Boolean)

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 105

def expired?
  @expiration < Time.now
end

#refresh! ⇒ Object

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 89

def refresh!
  @expiration = Time.now + @duration

  header = {
    kid: key_id
  }

  payload = {
    iss: issuer_id,
    exp: @expiration.to_i,
    aud: 'appstoreconnect-v1'
  }

  @text = JWT.encode(payload, @key, 'ES256', header)
end

#write_key_to_file(path) ⇒ Object

# File 'spaceship/lib/spaceship/connect_api/token.rb', line 109

def write_key_to_file(path)
  File.open(path, 'w') { |f| f.write(@key_raw) }
end