mirror of
https://github.com/gitlabhq/gitlabhq.git
synced 2025-07-25 16:00:50 +00:00
60 lines
1.2 KiB
Ruby
60 lines
1.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require 'securerandom'
|
|
|
|
module JSONWebToken
|
|
class Token
|
|
attr_accessor :issuer, :subject, :audience, :id
|
|
attr_accessor :issued_at, :not_before, :expire_time
|
|
|
|
DEFAULT_NOT_BEFORE_TIME = 5
|
|
DEFAULT_EXPIRE_TIME = 60
|
|
|
|
def initialize
|
|
@id = SecureRandom.uuid
|
|
@issued_at = Time.now
|
|
# we give a few seconds for time shift
|
|
@not_before = issued_at - DEFAULT_NOT_BEFORE_TIME
|
|
# default 60 seconds should be more than enough for this authentication token
|
|
@expire_time = issued_at + DEFAULT_EXPIRE_TIME
|
|
@custom_payload = {}
|
|
end
|
|
|
|
def [](key)
|
|
@custom_payload[key]
|
|
end
|
|
|
|
def []=(key, value)
|
|
@custom_payload[key] = value
|
|
end
|
|
|
|
def encoded
|
|
raise NotImplementedError
|
|
end
|
|
|
|
def payload
|
|
predefined_claims
|
|
.merge(@custom_payload)
|
|
.merge(default_payload)
|
|
end
|
|
|
|
private
|
|
|
|
def predefined_claims
|
|
{}
|
|
end
|
|
|
|
def default_payload
|
|
{
|
|
jti: id,
|
|
aud: audience,
|
|
sub: subject,
|
|
iss: issuer,
|
|
iat: issued_at.to_i,
|
|
nbf: not_before.to_i,
|
|
exp: expire_time.to_i
|
|
}.compact
|
|
end
|
|
end
|
|
end
|