Sha256: 8491992adbff8cf4779b0da052417a745601b773f09fc97b835ae28d884b0051
Contents?: true
Size: 1.68 KB
Versions: 1
Compression:
Stored size: 1.68 KB
Contents
require 'jwt'
require 'faye/authentication/version'
require 'faye/authentication/server_extension'
require 'faye/authentication/client_extension'
require 'faye/authentication/http_client'
require 'faye/authentication/engine'
module Faye
module Authentication
class AuthError < StandardError; end
class ExpiredError < AuthError; end
class PayloadError < AuthError; end
# Return jwt signature, pass hash of payload including channel and client_id
def self.sign(payload, secret, options = {})
options = {expires_at: Time.now + 12*3600, algorithm: 'HS256'}.merge(options)
JWT.encode(payload.merge(exp: options[:expires_at].to_i), secret, options[:algorithm])
end
# Return signed payload or raise
def self.decode(signature, secret)
payload, _ = JWT.decode(signature, secret) rescue raise(AuthError)
raise ExpiredError if Time.at(payload['exp'].to_i) < Time.now
payload
end
# Return true if signature is valid and correspond to channel and clientId or raise
def self.validate(signature, channel, clientId, secret)
payload = self.decode(signature, secret)
raise PayloadError if channel.to_s.empty? || clientId.to_s.empty?
raise PayloadError unless channel == payload['channel'] && clientId == payload['clientId']
true
end
def self.authentication_required?(message)
subscription_or_channel = message['subscription'] || message['channel']
!public_channel?(subscription_or_channel) && (message['channel'] == '/meta/subscribe' || (!(message['channel'].start_with?('/meta/'))))
end
def self.public_channel?(channel)
channel.start_with?('/public/') and not channel.include?('*')
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| faye-authentication-0.4.0 | lib/faye/authentication.rb |