Class: JWTSessions::CSRFToken

Inherits:

Object

• Object
• JWTSessions::CSRFToken

Defined in:

lib/jwt_sessions/csrf_token.rb

Constant Summary

CSRF_LENGTH =

32

Instance Attribute Summary

• #encoded ⇒ Object readonly

  Returns the value of attribute encoded.

• #token ⇒ Object readonly

  Returns the value of attribute token.

Instance Method Summary

• #initialize(csrf_token = nil) ⇒ CSRFToken constructor

  A new instance of CSRFToken.

• #valid_authenticity_token?(encoded_masked_token) ⇒ Boolean

Constructor Details

#initialize(csrf_token = nil) ⇒ CSRFToken

Returns a new instance of CSRFToken.

# File 'lib/jwt_sessions/csrf_token.rb', line 9

def initialize(csrf_token = nil)
  @encoded = csrf_token || SecureRandom.base64(CSRF_LENGTH)
  @token   = masked_token
end

Instance Attribute Details

#encoded ⇒ Object (readonly)

Returns the value of attribute encoded.

# File 'lib/jwt_sessions/csrf_token.rb', line 7

def encoded
  @encoded
end

#token ⇒ Object (readonly)

Returns the value of attribute token.

# File 'lib/jwt_sessions/csrf_token.rb', line 7

def token
  @token
end

Instance Method Details

#valid_authenticity_token?(encoded_masked_token) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/jwt_sessions/csrf_token.rb', line 14

def valid_authenticity_token?(encoded_masked_token)
  if !encoded_masked_token.is_a?(String) || encoded_masked_token.empty?
    return false
  end

  begin
    masked_token = Base64.strict_decode64(encoded_masked_token)
  rescue ArgumentError
    return false
  end

  if masked_token.length == CSRF_LENGTH
    secure_compare(masked_token, raw_token)
  elsif masked_token.length == CSRF_LENGTH * 2
    csrf_token = unmask_token(masked_token)
    secure_compare(csrf_token, raw_token)
  else
    false
  end
end