Class: TokenValidation::V2::Client

Inherits:

Common::Client::Base

• Object
• Common::Client::Base
• TokenValidation::V2::Client

Defined in:

lib/token_validation/v2/client.rb

Instance Method Summary

• #initialize(api_key:) ⇒ Client constructor

  A new instance of Client.

• #permitted_scopes(response:) ⇒ Object private
• #token_permits_scope?(scope:, response:) ⇒ Boolean private
• #token_valid?(audience:, token:, scope:) ⇒ Boolean

Methods inherited from Common::Client::Base

#config, configuration, #connection, #delete, #get, #perform, #post, #put, #raise_backend_exception, #raise_not_authenticated, #request, #sanitize_headers!, #service_name

Methods included from SentryLogging

#log_exception_to_sentry, #log_message_to_sentry, #non_nil_hash?, #normalize_level, #rails_logger, #set_sentry_metadata

Constructor Details

#initialize(api_key:) ⇒ Client

Returns a new instance of Client.

# File 'lib/token_validation/v2/client.rb', line 11

def initialize(api_key:)
  @api_key = api_key
end

Instance Method Details

#permitted_scopes(response:) ⇒ Object (private)

# File 'lib/token_validation/v2/client.rb', line 36

def permitted_scopes(response:)
  JSON.parse(response.body)['data']['attributes']['scp']
end

#token_permits_scope?(scope:, response:) ⇒ Boolean (private)

Returns:

• (Boolean)

# File 'lib/token_validation/v2/client.rb', line 31

def token_permits_scope?(scope:, response:)
  permitted_scopes = permitted_scopes(response:)
  permitted_scopes.include?(scope)
end

#token_valid?(audience:, token:, scope:) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/token_validation/v2/client.rb', line 15

def token_valid?(audience:, token:, scope:)
  json = URI.encode_www_form({ 'aud': audience })
  headers = {
    'apiKey': @api_key,
    'Authorization': "Bearer #{token}",
    'Content-Type': 'application/x-www-form-urlencoded'
  }
  response = perform(:post, 'v2/validation', json, headers)

  return false unless response.status == 200

  token_permits_scope?(scope:, response:)
end