gitlab-org--gitlab-foss/lib/json_web_token/token.rb

# frozen_string_literal: true

require 'securerandom'

module JSONWebToken
  class Token
    attr_accessor :issuer, :subject, :audience, :id
    attr_accessor :issued_at, :not_before, :expire_time

    DEFAULT_NOT_BEFORE_TIME = 5
    DEFAULT_EXPIRE_TIME = 60

    def initialize
      @id = SecureRandom.uuid
      @issued_at = Time.now
      # we give a few seconds for time shift
      @not_before = issued_at - DEFAULT_NOT_BEFORE_TIME
      # default 60 seconds should be more than enough for this authentication token
      @expire_time = issued_at + DEFAULT_EXPIRE_TIME
      @custom_payload = {}
    end

    def [](key)
      @custom_payload[key]
    end

    def []=(key, value)
      @custom_payload[key] = value
    end

    def encoded
      raise NotImplementedError
    end

    def payload
      @custom_payload.merge(default_payload)
    end

    private

    def default_payload
      {
        jti: id,
        aud: audience,
        sub: subject,
        iss: issuer,
        iat: issued_at.to_i,
        nbf: not_before.to_i,
        exp: expire_time.to_i
      }.compact
    end
  end
end
Enable even more frozen string in lib/*/.rb Enables frozen string for the following files: * lib/generators/*/.rb * lib/gitaly/*/.rb * lib/google_api/*/.rb * lib/haml_lint/*/.rb * lib/json_web_token/*/.rb * lib/mattermost/*/.rb * lib/microsoft_teams/*/.rb * lib/object_storage/*/.rb * lib/omni_auth/*/.rb * lib/peek/*/.rb * lib/rouge/*/.rb * lib/rspec_flaky/*/.rb * lib/system_check/*/.rb Partially addresses #47424. 2018-10-08 14:50:39 +00:00			`# frozen_string_literal: true`

Relocate JSONWebToken::HMACToken from EE 2018-11-08 09:28:13 +00:00			`require 'securerandom'`

Rename JWT to JSONWebToken 2016-05-14 23:23:31 +00:00			`module JSONWebToken`
Split docker authentication service 2016-05-02 12:32:16 +00:00			`class Token`
			`attr_accessor :issuer, :subject, :audience, :id`
			`attr_accessor :issued_at, :not_before, :expire_time`

Relocate JSONWebToken::HMACToken from EE 2018-11-08 09:28:13 +00:00			`DEFAULT_NOT_BEFORE_TIME = 5`
			`DEFAULT_EXPIRE_TIME = 60`

Split docker authentication service 2016-05-02 12:32:16 +00:00			`def initialize`
			`@id = SecureRandom.uuid`
			`@issued_at = Time.now`
Rename DockerAuthenticationService to ContainerRegistryAuthenticationService 2016-05-09 19:04:42 +00:00			`# we give a few seconds for time shift`
Relocate JSONWebToken::HMACToken from EE 2018-11-08 09:28:13 +00:00			`@not_before = issued_at - DEFAULT_NOT_BEFORE_TIME`
Rename DockerAuthenticationService to ContainerRegistryAuthenticationService 2016-05-09 19:04:42 +00:00			`# default 60 seconds should be more than enough for this authentication token`
Relocate JSONWebToken::HMACToken from EE 2018-11-08 09:28:13 +00:00			`@expire_time = issued_at + DEFAULT_EXPIRE_TIME`
Rename DockerAuthenticationService to ContainerRegistryAuthenticationService 2016-05-09 19:04:42 +00:00			`@custom_payload = {}`
Split docker authentication service 2016-05-02 12:32:16 +00:00			`end`

			`def [](key)`
Rename DockerAuthenticationService to ContainerRegistryAuthenticationService 2016-05-09 19:04:42 +00:00			`@custom_payload[key]`
Split docker authentication service 2016-05-02 12:32:16 +00:00			`end`

			`def []=(key, value)`
Rename DockerAuthenticationService to ContainerRegistryAuthenticationService 2016-05-09 19:04:42 +00:00			`@custom_payload[key] = value`
Split docker authentication service 2016-05-02 12:32:16 +00:00			`end`

			`def encoded`
			`raise NotImplementedError`
			`end`

			`def payload`
Rename DockerAuthenticationService to ContainerRegistryAuthenticationService 2016-05-09 19:04:42 +00:00			`@custom_payload.merge(default_payload)`
Split docker authentication service 2016-05-02 12:32:16 +00:00			`end`

			`private`

			`def default_payload`
			`{`
			`jti: id,`
			`aud: audience,`
			`sub: subject,`
			`iss: issuer,`
			`iat: issued_at.to_i,`
			`nbf: not_before.to_i,`
			`exp: expire_time.to_i`
			`}.compact`
			`end`
			`end`
Fix CI tests 2016-05-12 17:47:55 +00:00			`end`