Class: OmniAuth::Strategies::JWT

Inherits:

Object

Object
OmniAuth::Strategies::JWT

show all

Includes:: OmniAuth::Strategy

Defined in:: lib/omniauth/strategies/jwt.rb

Direct Known Subclasses

Jwt

Defined Under Namespace

Classes: ClaimInvalid

Instance Method Summary collapse

Instance Method Details

#callback_phase ⇒ `Object`

# File 'lib/omniauth/strategies/jwt.rb', line 35

def callback_phase
  super
rescue ClaimInvalid => e
  fail! :claim_invalid, e
end

#decoded ⇒ `Object`

Raises:

(ClaimInvalid)

# File 'lib/omniauth/strategies/jwt.rb', line 25

def decoded
  @decoded ||= ::JWT.decode(request.params['jwt'], options.secret, options.algorithm)
  (options.required_claims || []).each do |field|
    raise ClaimInvalid.new("Missing required '#{field}' claim.") if !@decoded.key?(field.to_s)
  end
  raise ClaimInvalid.new("Missing required 'iat' claim.") if options.valid_within && !@decoded["iat"]
  raise ClaimInvalid.new("'iat' timestamp claim is too skewed from present.") if options.valid_within && (Time.now.to_i - @decoded["iat"]).abs > options.valid_within
  @decoded
end

#request_phase ⇒ `Object`



21
22
23

# File 'lib/omniauth/strategies/jwt.rb', line 21

def request_phase
  redirect options.auth_url
end

Class: OmniAuth::Strategies::JWT

Direct Known Subclasses

Defined Under Namespace

Instance Method Summary collapse

Instance Method Details

#callback_phase ⇒ Object

#decoded ⇒ Object

#request_phase ⇒ Object

#callback_phase ⇒ `Object`

#decoded ⇒ `Object`

#request_phase ⇒ `Object`