Class: SelfSDK::JwtService

Inherits:

Object

• Object
• SelfSDK::JwtService

Defined in:

lib/jwt_service.rb

Instance Attribute Summary

• #id ⇒ Object readonly

  Returns the value of attribute id.

• #key ⇒ Object readonly

  Returns the value of attribute key.

• #key_id ⇒ Object readonly

  Returns the value of attribute key_id.

Instance Method Summary

• #auth_token ⇒ Object

  Generates the auth_token based on the app’s private key.

• #decode(input) ⇒ Object

  Base64 decodes the input string.

• #encode(input) ⇒ Object

  Encodes the input with base64.

• #initialize(app_id, app_key) ⇒ JwtService constructor

  Jwt initializer.

• #parse(input) ⇒ Object
• #prepare(input) ⇒ Object

  Prepares a jwt object based on an input.

• #sign(input) ⇒ Object

  Signs the given input with the configured Ed25519 key.

• #signed(input) ⇒ Object
• #verify(payload, key) ⇒ Object

Constructor Details

#initialize(app_id, app_key) ⇒ JwtService

Jwt initializer

Parameters:

• app_id (string) —

  the app id.

• app_key (string) —

  the app api key provided by developer portal.

# File 'lib/jwt_service.rb', line 14

def initialize(app_id, app_key)
  @id = app_id
  parts = app_key.split(':')
  if parts.length > 1
    @key_id = parts[0]
    @key = parts[1]
  else
    @key_id = "1"
    @key = app_key
  end
end

Instance Attribute Details

#id ⇒ Object (readonly)

Returns the value of attribute id.

# File 'lib/jwt_service.rb', line 8

def id
  @id
end

#key ⇒ Object (readonly)

Returns the value of attribute key.

# File 'lib/jwt_service.rb', line 8

def key
  @key
end

#key_id ⇒ Object (readonly)

Returns the value of attribute key_id.

# File 'lib/jwt_service.rb', line 8

def key_id
  @key_id
end

Instance Method Details

#auth_token ⇒ Object

Generates the auth_token based on the app’s private key.

# File 'lib/jwt_service.rb', line 81

def auth_token
  payload = header + "." + encode({
    jti: SecureRandom.uuid,
    cid: SecureRandom.uuid,
    typ: 'auth.token',
    iat: (SelfSDK::Time.now - 5).to_i,
    exp: (SelfSDK::Time.now + 60).to_i,
    iss: @id,
    sub: @id}.to_json)
  signature = sign(payload)
  "#{payload}.#{signature}"
end

#decode(input) ⇒ Object

Base64 decodes the input string

Parameters:

• input (string) —

  the string to be decoded.

# File 'lib/jwt_service.rb', line 56

def decode(input)
  Base64.urlsafe_decode64(input)
end

#encode(input) ⇒ Object

Encodes the input with base64

Parameters:

• input (string) —

  the string to be encoded.

# File 'lib/jwt_service.rb', line 49

def encode(input)
  Base64.urlsafe_encode64(input, padding: false)
end

#parse(input) ⇒ Object

# File 'lib/jwt_service.rb', line 42

def parse(input)
  JSON.parse(input, symbolize_names: true)
end

#prepare(input) ⇒ Object

Prepares a jwt object based on an input

Parameters:

• input (string) —

  input to be prepared

# File 'lib/jwt_service.rb', line 29

def prepare(input)
  signed(input).to_json
end

#sign(input) ⇒ Object

Signs the given input with the configured Ed25519 key.

Parameters:

• input (string) —

  the string to be signed.

# File 'lib/jwt_service.rb', line 63

def sign(input)
  signing_key = Ed25519::SigningKey.new(decode(@key))
  signature = signing_key.sign(input)
  encode(signature)
end

#signed(input) ⇒ Object

# File 'lib/jwt_service.rb', line 33

def signed(input)
  payload = encode(input.to_json)
  {
    payload: payload,
    protected: header,
    signature: sign("#{header}.#{payload}")
  }
end

#verify(payload, key) ⇒ Object

# File 'lib/jwt_service.rb', line 69

def verify(payload, key)
  verify_key = Ed25519::VerifyKey.new(decode(key))
  if verify_key.verify(decode(payload[:signature]), "#{payload[:protected]}.#{payload[:payload]}")
    return true
  end
  false
rescue StandardError => e
  SelfSDK.logger.info e
  false
end