Class: Rack::PrxAuth::TokenData

Inherits:

Object

• Object
• Rack::PrxAuth::TokenData

Defined in:

lib/rack/prx_auth/token_data.rb

Constant Summary

WILDCARD_RESOURCE_NAME =

'*'

Instance Attribute Summary

• #attributes ⇒ Object readonly

  Returns the value of attribute attributes.

• #authorized_resources ⇒ Object readonly

  Returns the value of attribute authorized_resources.

• #scopes ⇒ Object readonly

  Returns the value of attribute scopes.

Instance Method Summary

• #authorized?(resource, scope = nil) ⇒ Boolean
• #globally_authorized?(scope) ⇒ Boolean
• #initialize(attrs = {}) ⇒ TokenData constructor

  A new instance of TokenData.

• #user_id ⇒ Object

Constructor Details

#initialize(attrs = {}) ⇒ TokenData

Returns a new instance of TokenData.

# File 'lib/rack/prx_auth/token_data.rb', line 8

def initialize(attrs = {})
  @attributes = attrs
  if attrs['aur']
    @authorized_resources = unpack_aur(attrs['aur']).freeze
  else
    @authorized_resources = {}.freeze
  end
  if attrs['scope']
    @scopes = attrs['scope'].split(' ').freeze
  else
    @scopes = [].freeze
  end
end

Instance Attribute Details

#attributes ⇒ Object (readonly)

Returns the value of attribute attributes.

# File 'lib/rack/prx_auth/token_data.rb', line 6

def attributes
  @attributes
end

#authorized_resources ⇒ Object (readonly)

Returns the value of attribute authorized_resources.

# File 'lib/rack/prx_auth/token_data.rb', line 6

def authorized_resources
  @authorized_resources
end

#scopes ⇒ Object (readonly)

Returns the value of attribute scopes.

# File 'lib/rack/prx_auth/token_data.rb', line 6

def scopes
  @scopes
end

Instance Method Details

#authorized?(resource, scope = nil) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/rack/prx_auth/token_data.rb', line 26

def authorized?(resource, scope=nil)
  if resource == WILDCARD_RESOURCE_NAME
    globally_authorized?(scope)
  elsif scope.nil?
    authorized_for_resource?(resource, scope)
  else
    authorized_for_resource?(resource, scope) || globally_authorized?(scope)
  end
end

#globally_authorized?(scope) ⇒ Boolean

Returns:

• (Boolean)

Raises:

• (ArgumentError)

# File 'lib/rack/prx_auth/token_data.rb', line 36

def globally_authorized?(scope)
  raise ArgumentError if scope.nil?

  authorized_for_resource?(WILDCARD_RESOURCE_NAME, scope)
end

#user_id ⇒ Object

# File 'lib/rack/prx_auth/token_data.rb', line 22

def user_id
  @attributes['sub']
end