Module: JWT
- Extended by:
- Configuration
- Defined in:
- lib/jwt.rb,
lib/jwt/jwa.rb,
lib/jwt/jwk.rb,
lib/jwt/json.rb,
lib/jwt/error.rb,
lib/jwt/token.rb,
lib/jwt/base64.rb,
lib/jwt/claims.rb,
lib/jwt/decode.rb,
lib/jwt/encode.rb,
lib/jwt/jwa/ps.rb,
lib/jwt/jwk/ec.rb,
lib/jwt/verify.rb,
lib/jwt/jwa/rsa.rb,
lib/jwt/jwk/rsa.rb,
lib/jwt/jwk/set.rb,
lib/jwt/version.rb,
lib/jwt/jwa/hmac.rb,
lib/jwt/jwa/none.rb,
lib/jwt/jwk/hmac.rb,
lib/jwt/jwa/ecdsa.rb,
lib/jwt/jwa/eddsa.rb,
lib/jwt/jwa/compat.rb,
lib/jwt/claims/crit.rb,
lib/jwt/jwa/wrapper.rb,
lib/jwt/deprecations.rb,
lib/jwt/jwk/key_base.rb,
lib/jwt/claims/issuer.rb,
lib/jwt/claims/jwt_id.rb,
lib/jwt/configuration.rb,
lib/jwt/encoded_token.rb,
lib/jwt/claims/numeric.rb,
lib/jwt/claims/subject.rb,
lib/jwt/jwk/key_finder.rb,
lib/jwt/jwk/okp_rbnacl.rb,
lib/jwt/jwk/thumbprint.rb,
lib/jwt/x5c_key_finder.rb,
lib/jwt/claims/audience.rb,
lib/jwt/claims/required.rb,
lib/jwt/claims/verifier.rb,
lib/jwt/jwa/hmac_rbnacl.rb,
lib/jwt/jwa/unsupported.rb,
lib/jwt/claims/issued_at.rb,
lib/jwt/claims_validator.rb,
lib/jwt/claims/expiration.rb,
lib/jwt/claims/not_before.rb,
lib/jwt/jwa/hmac_rbnacl_fixed.rb,
lib/jwt/jwa/signing_algorithm.rb,
lib/jwt/jwk/kid_as_key_digest.rb,
lib/jwt/claims/decode_verifier.rb,
lib/jwt/configuration/container.rb,
lib/jwt/claims/verification_methods.rb,
lib/jwt/configuration/jwk_configuration.rb,
lib/jwt/configuration/decode_configuration.rb more...
Overview
JSON Web Token implementation
Should be up to date with the latest spec: tools.ietf.org/html/rfc7519
Defined Under Namespace
Modules: Claims, Configuration, Deprecations, JWA, JWK, VERSION Classes: Base64, Base64DecodeError, ClaimsValidator, Decode, DecodeError, Encode, EncodeError, EncodedToken, ExpiredSignature, ImmatureSignature, IncorrectAlgorithm, InvalidAudError, InvalidCritError, InvalidIatError, InvalidIssuerError, InvalidJtiError, InvalidPayload, InvalidSubError, JSON, JWKError, MissingRequiredClaim, RequiredDependencyError, Token, UnsupportedEcdsaCurve, VerificationError, Verify, X5cKeyFinder
Class Method Summary collapse
-
.decode(jwt, key = nil, verify = true, options = {}, &keyfinder) ⇒ Array<Hash>
Decodes a JWT to extract the payload and header.
-
.encode(payload, key, algorithm = 'HS256', header_fields = {}) ⇒ String
Encodes a payload into a JWT.
-
.gem_version ⇒ Gem::Version
Returns the gem version of the JWT library.
-
.openssl_3? ⇒ Boolean
private
Checks if the OpenSSL version is 3 or greater.
-
.openssl_3_hmac_empty_key_regression? ⇒ Boolean
private
Checks if there is an OpenSSL 3 HMAC empty key regression.
-
.openssl_version ⇒ Gem::Version
private
Returns the OpenSSL version.
-
.rbnacl? ⇒ Boolean
private
Checks if the RbNaCl library is defined.
-
.rbnacl_6_or_greater? ⇒ Boolean
private
Checks if the RbNaCl library version is 6.0.0 or greater.
Methods included from Configuration
Class Method Details
permalink .decode(jwt, key = nil, verify = true, options = {}, &keyfinder) ⇒ Array<Hash>
Decodes a JWT to extract the payload and header
49 50 51 52 53 |
# File 'lib/jwt.rb', line 49 def decode(jwt, key = nil, verify = true, = {}, &keyfinder) # rubocop:disable Style/OptionalBooleanParameter Deprecations.context do Decode.new(jwt, key, verify, configuration.decode.to_h.merge(), &keyfinder).decode_segments end end |
permalink .encode(payload, key, algorithm = 'HS256', header_fields = {}) ⇒ String
Encodes a payload into a JWT.
35 36 37 38 39 40 |
# File 'lib/jwt.rb', line 35 def encode(payload, key, algorithm = 'HS256', header_fields = {}) Encode.new(payload: payload, key: key, algorithm: algorithm, headers: header_fields).segments end |
permalink .gem_version ⇒ Gem::Version
Returns the gem version of the JWT library.
11 12 13 |
# File 'lib/jwt/version.rb', line 11 def self.gem_version Gem::Version.new(VERSION::STRING) end |
permalink .openssl_3? ⇒ Boolean
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
Checks if the OpenSSL version is 3 or greater.
29 30 31 32 33 |
# File 'lib/jwt/version.rb', line 29 def self.openssl_3? return false if OpenSSL::OPENSSL_VERSION.include?('LibreSSL') true if 3 * 0x10000000 <= OpenSSL::OPENSSL_VERSION_NUMBER end |
permalink .openssl_3_hmac_empty_key_regression? ⇒ Boolean
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
Checks if there is an OpenSSL 3 HMAC empty key regression.
55 56 57 |
# File 'lib/jwt/version.rb', line 55 def self.openssl_3_hmac_empty_key_regression? openssl_3? && openssl_version <= ::Gem::Version.new('3.0.0') end |
permalink .openssl_version ⇒ Gem::Version
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
Returns the OpenSSL version.
63 64 65 |
# File 'lib/jwt/version.rb', line 63 def self.openssl_version @openssl_version ||= ::Gem::Version.new(OpenSSL::VERSION) end |
permalink .rbnacl? ⇒ Boolean
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
Checks if the RbNaCl library is defined.
39 40 41 |
# File 'lib/jwt/version.rb', line 39 def self.rbnacl? defined?(::RbNaCl) end |
permalink .rbnacl_6_or_greater? ⇒ Boolean
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
Checks if the RbNaCl library version is 6.0.0 or greater.
47 48 49 |
# File 'lib/jwt/version.rb', line 47 def self.rbnacl_6_or_greater? rbnacl? && ::Gem::Version.new(::RbNaCl::VERSION) >= ::Gem::Version.new('6.0.0') end |