Class: Keycloak::Client

Inherits:

Object

Object
Keycloak::Client

show all

Defined in:: lib/libkeycloak.rb

Overview

TODO: try adding functions to ffi class

Instance Method Summary collapse

Constructor Details

#initialize(json) ⇒ `Client`

Returns a new instance of Client.

# File 'lib/libkeycloak.rb', line 354

def initialize(json)
  client_ptr = FFI::LibC.malloc(Keycloak_FFI::KeycloakClient.size)
  @ptr = Keycloak_FFI::KeycloakClient.new(client_ptr)
  err = Keycloak_FFI.keycloak_create_client(@ptr, json)
  if err[:errcode] != :OK
    raise Keycloak::Error, err
  end
end

Instance Method Details

#auth_server_url ⇒ `Object`



371
372
373

# File 'lib/libkeycloak.rb', line 371

def auth_server_url
  @ptr[:auth_server_url]
end

#decode_and_validate_jwt(token, iss: nil, sub: nil, aud: nil, jti: nil, typ: nil, validate_exp: false, exp_tolerance: 0, validate_nbf: false, nbf_tolerance: 0, validate_iat: false, iat_tolerance: 0) ⇒ `Object`

# File 'lib/libkeycloak.rb', line 513

def decode_and_validate_jwt(
  token,
  iss: nil,
  sub: nil,
  aud: nil,
  jti: nil,
  typ: nil,
  validate_exp: false,
  exp_tolerance: 0,
  validate_nbf: false,
  nbf_tolerance: 0,
  validate_iat: false,
  iat_tolerance: 0
)
  valid = FFI::MemoryPointer.new(:uint8)
  jwt_ptr = FFI::LibC.malloc(Keycloak_FFI::KeycloakJWT.size)
  jwt = Keycloak_FFI::KeycloakJWT.new(jwt_ptr)
  err = Keycloak_FFI.keycloak_decode_and_validate_jwt_ex(
    @ptr,
    token,
    iss, iss.nil? ? 0 : iss.size,
    sub, sub.nil? ? 0 : sub.size,
    aud, aud.nil? ? 0 : aud.size,
    jti, jti.nil? ? 0 : jti.size,
    typ, typ.nil? ? 0 : typ.size,
    validate_exp, exp_tolerance,
    validate_nbf, nbf_tolerance,
    validate_iat, iat_tolerance,
    valid,
    jwt
  )

  if err[:errcode] != :OK
    raise err
  end

  reason = Keycloak_FFI::KeycloakJWTValidationResult[valid.read(:uint8).to_i]
  return JWTDecodeResult.new(
    JWTValidationResult.new(
      reason == :VALID,
      reason
    ),
    jwt
  )
end

#get_token(user, pass, scopes: nil) ⇒ `Object`

# File 'lib/libkeycloak.rb', line 383

def get_token(user, pass, scopes: nil)
  tokens_ptr = FFI::LibC.malloc(Keycloak_FFI::KeycloakTokens.size)
  tokens = Keycloak_FFI::KeycloakTokens.new(tokens_ptr)
  err_response_ptr = FFI::MemoryPointer.new(:string)
  scopes_ptr = nil
  scopes_len = 0
  unless scopes.nil?
    scopes_len = scopes.size
    scopes_ptr = FFI::MemoryPointer.new(:pointer, scopes_len)
    ptr_arr = scopes.map do |scope, i|
      ptr = FFI::MemoryPointer.from_string scope
    end
    scopes_ptr.put_array_of_pointer 0, ptr_arr
  end
  err = Keycloak_FFI.keycloak_get_token(
    @ptr,
    user, pass,
    scopes_ptr, scopes_len,
    tokens,
    err_response_ptr
  )

  if err[:errcode] == :HTTP
    err = Keycloak::Error.new(err, err_response_ptr)
    raise err
  elsif err[:errcode] != :OK
    raise Keycloak::Error, err
  end

  return tokens
end

#get_userinfo(tokens) ⇒ `Object`

# File 'lib/libkeycloak.rb', line 447

def get_userinfo(tokens)
  userinfo_ptr = FFI::LibC.malloc(Keycloak_FFI::KeycloakUserinfo.size)
  userinfo = Keycloak_FFI::KeycloakUserinfo.new(userinfo_ptr)

  err_response_ptr = FFI::MemoryPointer.new(:string)

  err = Keycloak_FFI.keycloak_get_userinfo(
    @ptr,
    tokens,
    userinfo,
    err_response_ptr
  )

  if err[:errcode] == :HTTP
    err = Keycloak::Error.new(err, err_response_ptr)
    raise err
  elsif err[:errcode] != :OK
    raise Keycloak::Error, err
  end

  return userinfo
end

#realm ⇒ `Object`



363
364
365

# File 'lib/libkeycloak.rb', line 363

def realm
  @ptr[:realm]
end

#realm_info ⇒ `Object`



379
380
381

# File 'lib/libkeycloak.rb', line 379

def realm_info
  @ptr[:realm_info]
end

#refresh_token(refresh_token, scopes: nil) ⇒ `Object`

# File 'lib/libkeycloak.rb', line 415

def refresh_token(refresh_token, scopes: nil)
  tokens_ptr = FFI::LibC.malloc(Keycloak_FFI::KeycloakTokens.size)
  tokens = Keycloak_FFI::KeycloakTokens.new(tokens_ptr)
  err_response_ptr = FFI::MemoryPointer.new(:string)
  scopes_ptr = nil
  scopes_len = 0
  unless scopes.nil?
    scopes_len = scopes.size
    scopes_ptr = FFI::MemoryPointer.new(:pointer, scopes_len)
    ptr_arr = scopes.map do |scope, i|
      ptr = FFI::MemoryPointer.from_string scope
    end
    scopes_ptr.put_array_of_pointer 0, ptr_arr
  end
  err = Keycloak_FFI.keycloak_refresh_token(
    @ptr,
    refresh_token,
    scopes_ptr, scopes_len,
    tokens,
    err_response_ptr
  )

  if err[:errcode] == :HTTP
    err = Keycloak::Error.new(err, err_response_ptr)
    raise err
  elsif err[:errcode] != :OK
    raise Keycloak::Error, err
  end

  return tokens
end

#resource ⇒ `Object`



367
368
369

# File 'lib/libkeycloak.rb', line 367

def resource
  @ptr[:resource]
end

#secret ⇒ `Object`



375
376
377

# File 'lib/libkeycloak.rb', line 375

def secret
  @ptr[:secret]
end

#validate_jwt(token, iss: nil, sub: nil, aud: nil, jti: nil, typ: nil, validate_exp: false, exp_tolerance: 0, validate_nbf: false, nbf_tolerance: 0, validate_iat: false, iat_tolerance: 0) ⇒ `Object`

# File 'lib/libkeycloak.rb', line 470

def validate_jwt(
  token,
  # strings
  iss: nil,
  sub: nil,
  aud: nil,
  jti: nil,
  typ: nil,
  # booleans
  validate_exp: false,
  # Tolerance in seconds
  exp_tolerance: 0,
  validate_nbf: false,
  nbf_tolerance: 0,
  validate_iat: false,
  iat_tolerance: 0
)
  valid = FFI::MemoryPointer.new(:uint8)
  err = Keycloak_FFI.keycloak_validate_jwt_ex(
    @ptr,
    token,
    iss, iss.nil? ? 0 : iss.size,
    sub, sub.nil? ? 0 : sub.size,
    aud, aud.nil? ? 0 : aud.size,
    jti, jti.nil? ? 0 : jti.size,
    typ, typ.nil? ? 0 : typ.size,
    validate_exp, exp_tolerance,
    validate_nbf, nbf_tolerance,
    validate_iat, iat_tolerance,
    valid
  )

  if err[:errcode] != :OK
    raise err
  end

  reason = Keycloak_FFI::KeycloakJWTValidationResult[valid.read(:uint8).to_i]
  return JWTValidationResult.new(
    reason == :VALID,
    reason
  )
end

Class: Keycloak::Client

Overview

Instance Method Summary collapse

Constructor Details

#initialize(json) ⇒ Client

Instance Method Details

#auth_server_url ⇒ Object

#decode_and_validate_jwt(token, iss: nil, sub: nil, aud: nil, jti: nil, typ: nil, validate_exp: false, exp_tolerance: 0, validate_nbf: false, nbf_tolerance: 0, validate_iat: false, iat_tolerance: 0) ⇒ Object

#get_token(user, pass, scopes: nil) ⇒ Object

#get_userinfo(tokens) ⇒ Object

#realm ⇒ Object

#realm_info ⇒ Object

#refresh_token(refresh_token, scopes: nil) ⇒ Object

#resource ⇒ Object

#secret ⇒ Object

#validate_jwt(token, iss: nil, sub: nil, aud: nil, jti: nil, typ: nil, validate_exp: false, exp_tolerance: 0, validate_nbf: false, nbf_tolerance: 0, validate_iat: false, iat_tolerance: 0) ⇒ Object

#initialize(json) ⇒ `Client`

#auth_server_url ⇒ `Object`

#decode_and_validate_jwt(token, iss: nil, sub: nil, aud: nil, jti: nil, typ: nil, validate_exp: false, exp_tolerance: 0, validate_nbf: false, nbf_tolerance: 0, validate_iat: false, iat_tolerance: 0) ⇒ `Object`

#get_token(user, pass, scopes: nil) ⇒ `Object`

#get_userinfo(tokens) ⇒ `Object`

#realm ⇒ `Object`

#realm_info ⇒ `Object`

#refresh_token(refresh_token, scopes: nil) ⇒ `Object`

#resource ⇒ `Object`

#secret ⇒ `Object`

#validate_jwt(token, iss: nil, sub: nil, aud: nil, jti: nil, typ: nil, validate_exp: false, exp_tolerance: 0, validate_nbf: false, nbf_tolerance: 0, validate_iat: false, iat_tolerance: 0) ⇒ `Object`