Module: Tinytokenauth::Authorizable

Defined in:

lib/tinytokenauth/authorizable.rb

Instance Method Summary

• #authorize_with_header ⇒ Object
• #current_user ⇒ Object
• #require_current_user(&block) ⇒ Object
• #set_current_user ⇒ Object
• #sign_in_with_token(user) ⇒ Object
• #sign_out_with_token ⇒ Object

Instance Method Details

#authorize_with_header ⇒ Object

# File 'lib/tinytokenauth/authorizable.rb', line 16

def authorize_with_header
  token = ''
  header = request.headers['Authorization']
  token = header.split(' ').last if header

  begin
    @decoded = JsonWebToken.decode(Tinytokenauth.configuration.token_secret, token)
    @current_user = Tinytokenauth.configuration.user_class.constantize.send 'find', @decoded[:tinytokenauth_id]
  rescue ActiveRecord::RecordNotFound => e
    render json: { errors: e.message }, status: :unauthorized
  rescue JWT::DecodeError => e
    render json: { errors: e.message }, status: :unauthorized
  end
end

#current_user ⇒ Object

# File 'lib/tinytokenauth/authorizable.rb', line 79

def current_user
  @current_user
end

#require_current_user(&block) ⇒ Object

# File 'lib/tinytokenauth/authorizable.rb', line 31

def require_current_user(&block)
  token = cookies[Tinytokenauth.configuration.cookie_name]
  begin
    @decoded = JsonWebToken.decode(Tinytokenauth.configuration.token_secret, token)
    @current_user = Tinytokenauth.configuration.user_class.constantize.send 'find', @decoded[:tinytokenauth_id]
    @exp = @decoded[:exp]
    if Tinytokenauth.configuration.token_auto_renew_hours &&
      @exp < Tinytokenauth.configuration.token_auto_renew_hours.hours.from_now.to_i
      sign_in_with_token @current_user
    end
  rescue ActiveRecord::RecordNotFound => e
    if block_given? && current_user.nil?
      block.call
    else
      raise e
    end
  rescue JWT::DecodeError => e
    if block_given? && current_user.nil?
      block.call
    else
      raise e
    end
  end
end

#set_current_user ⇒ Object

# File 'lib/tinytokenauth/authorizable.rb', line 56

def set_current_user
  begin
    require_current_user
  rescue ActiveRecord::RecordNotFound
    # Ignored
  rescue JWT::DecodeError
    # Ignored
  end
  @current_user
end

#sign_in_with_token(user) ⇒ Object

# File 'lib/tinytokenauth/authorizable.rb', line 67

def sign_in_with_token(user)
  @current_user = user
  jwt = JsonWebToken.encode(Tinytokenauth.configuration.token_validity_hours.hours.from_now,
                            Tinytokenauth.configuration.token_secret,
                            tinytokenauth_id: user.id,)
  cookies[Tinytokenauth.configuration.cookie_name] = jwt
end

#sign_out_with_token ⇒ Object

# File 'lib/tinytokenauth/authorizable.rb', line 75

def sign_out_with_token
  cookies[Tinytokenauth.configuration.cookie_name] = nil
end