Sha256: 646df6f8ecf193d868b55a4588d0dc5503edd31a383249d5b2f1ce1c536df694
Contents?: true
Size: 1.57 KB
Versions: 1
Compression:
Stored size: 1.57 KB
Contents
module Doorkeeper
module OpenidConnect
class IdToken
include ActiveModel::Validations
attr_reader :nonce
def initialize(access_token, nonce = nil)
@access_token = access_token
@nonce = nonce
@resource_owner = Doorkeeper::OpenidConnect.configuration.resource_owner_from_access_token.call(access_token)
@issued_at = Time.now
end
def claims
{
iss: issuer,
sub: subject,
aud: audience,
exp: expiration,
iat: issued_at,
nonce: nonce,
auth_time: auth_time
}.merge ClaimsBuilder.generate(@access_token, :id_token)
end
def as_json(*_)
claims.reject { |_, value| value.nil? || value == '' }
end
def as_jws_token
JSON::JWT.new(as_json).sign(
Doorkeeper::OpenidConnect.signing_key,
Doorkeeper::OpenidConnect.signing_algorithm
).to_s
end
private
def issuer
Doorkeeper::OpenidConnect.configuration.issuer
end
def subject
Doorkeeper::OpenidConnect.configuration.subject.call(@resource_owner, @access_token.application).to_s
end
def audience
@access_token.application.try(:uid)
end
def expiration
(@issued_at.utc + Doorkeeper::OpenidConnect.configuration.expiration).to_i
end
def issued_at
@issued_at.utc.to_i
end
def auth_time
Doorkeeper::OpenidConnect.configuration.auth_time_from_resource_owner.call(@resource_owner).try(:to_i)
end
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| doorkeeper-openid_connect-1.7.1 | lib/doorkeeper/openid_connect/id_token.rb |