Sha256: 83ed188e1a5a0a2c6f77f9ca40e4ab18dc4968d7e1d8e87e8b49739244c7c684
Contents?: true
Size: 1.84 KB
Versions: 1
Compression:
Stored size: 1.84 KB
Contents
module G5AuthenticatableApi
class TokenValidator
attr_reader :error
def initialize(params={},headers={},warden=nil)
@params = params || {}
@headers = headers || {}
@warden = warden
end
def validate!
begin
auth_client.token_info unless skip_validation?
rescue StandardError => @error
raise error
end
end
def valid?
begin
validate!
true
rescue StandardError => e
false
end
end
def access_token
@access_token ||= (extract_token_from_header ||
@params['access_token'] ||
@warden.try(:user).try(:g5_access_token))
end
def auth_response_header
if error
auth_header = "Bearer"
if access_token
auth_header << " error=\"#{error_code}\""
auth_header << ",error_description=\"#{error_description}\"" if error_description
end
auth_header
end
end
def auth_client
@auth_client ||= G5AuthenticationClient::Client.new(allow_password_credentials: 'false',
access_token: access_token)
end
private
def error_code
error_code = error.code if error.respond_to?(:code)
error_code || 'invalid_request'
end
def error_description
error_description = error.description if error.respond_to?(:description)
error_description
end
def extract_token_from_header
if authorization_header
parts = authorization_header.match(/Bearer (?<access_token>\S+)/)
parts['access_token']
end
end
def skip_validation?
@warden.try(:user) && !G5AuthenticatableApi.strict_token_validation
end
def authorization_header
@headers['Authorization'] || @headers['AUTHORIZATION']
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| g5_authenticatable_api-0.3.2 | lib/g5_authenticatable_api/token_validator.rb |