Sha256: d2f0dda8da81ede83c440b8fa1fdcc629d551d7f32d96872d02f8923301fac91
Contents?: true
Size: 1.83 KB
Versions: 2
Compression:
Stored size: 1.83 KB
Contents
require 'json/jwt'
module OpenIDConnect
class ResponseObject
class IdToken < ResponseObject
class InvalidToken < Exception; end
attr_required :iss, :user_id, :aud, :exp
attr_optional :iso29115, :nonce, :issued_to
def initialize(attributes = {})
super
(all_attributes - [:exp]).each do |key|
self.send "#{key}=", self.send(key).try(:to_s)
end
@exp = @exp.to_i
end
def verify!(client_id)
exp.to_i >= Time.now.to_i && aud == client_id or
raise InvalidToken.new('Invalid audience or expired')
end
def to_jwt(key, algorithm = :RS256)
token = JSON::JWT.new as_json
if algorithm != :none
token = token.sign key, algorithm
end
token.to_s
end
class << self
def from_jwt(jwt_string, key_or_client)
attributes = case key_or_client
when Client
resource_request do
http_client.post key_or_client.check_session_uri, :id_token => jwt_string
end
else
JSON::JWT.decode(jwt_string, key_or_client).with_indifferent_access
end
new attributes
end
def resource_request
res = yield
case res.status
when 200
JSON.parse(res.body).with_indifferent_access
when 400
raise BadRequest.new('Check Session Faild', res)
else
raise HttpError.new(res.status, 'Unknown HttpError', res)
end
end
private
def http_client
_http_client_ = HTTPClient.new(
:agent_name => "OpenIDConnect (#{VERSION})"
)
_http_client_.request_filter << Debugger::RequestFilter.new if OpenIDConnect.debugging?
_http_client_
end
end
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| openid_connect-0.0.30 | lib/openid_connect/response_object/id_token.rb |
| openid_connect-0.0.29 | lib/openid_connect/response_object/id_token.rb |