Contents

require "jwt"

class Card
  module Auth
    # methods for setting current account
    module Token
      SECRET_KEY = Rails.application.secrets.secret_key_base.to_s

      class << self
        def encode user_id, extra_payload={}
          payload = { user_id: user_id, exp: expiration }.merge(extra_payload)

          JWT.encode payload, SECRET_KEY
        end

        # returns Hash if valid, String error message if not

        def validate! token
          payload = decode token
          raise Card::Error::PermissionDenied, payload if payload.is_a? String

          payload
        end

        def decode token
          decoded = JWT.decode(token, SECRET_KEY)[0]
          HashWithIndifferentAccess.new decoded
        rescue JWT::DecodeError => error
          error.message
        end

        def expiration
          Card.config.token_expiry.from_now.to_i
        end
      end
    end
  end
end

Version data entries

12 entries across 12 versions & 1 rubygems

Version	Path
card-1.101.3	lib/card/auth/token.rb
card-1.101.2	lib/card/auth/token.rb
card-1.101.1	lib/card/auth/token.rb
card-1.101.0	lib/card/auth/token.rb
card-1.100.0	lib/card/auth/token.rb
card-1.99.6	lib/card/auth/token.rb
card-1.99.5	lib/card/auth/token.rb
card-1.99.4	lib/card/auth/token.rb
card-1.99.3	lib/card/auth/token.rb
card-1.99.2	lib/card/auth/token.rb
card-1.99.1	lib/card/auth/token.rb
card-1.99.0	lib/card/auth/token.rb