Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/nov/json-jwt
JSON Web Token and its family (JSON Web Signature, JSON Web Encryption and JSON Web Key) in Ruby
https://github.com/nov/json-jwt
jose json-web-encryption json-web-key json-web-signature json-web-token jwe jwk jws jwt
Last synced: 3 days ago
JSON representation
JSON Web Token and its family (JSON Web Signature, JSON Web Encryption and JSON Web Key) in Ruby
- Host: GitHub
- URL: https://github.com/nov/json-jwt
- Owner: nov
- License: mit
- Created: 2011-09-14T16:09:22.000Z (over 13 years ago)
- Default Branch: main
- Last Pushed: 2024-10-15T16:02:41.000Z (3 months ago)
- Last Synced: 2024-12-19T14:57:51.993Z (23 days ago)
- Topics: jose, json-web-encryption, json-web-key, json-web-signature, json-web-token, jwe, jwk, jws, jwt
- Language: Ruby
- Homepage:
- Size: 384 KB
- Stars: 298
- Watchers: 14
- Forks: 81
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Funding: .github/FUNDING.yml
- License: LICENSE
Awesome Lists containing this project
- awesome-ruby-toolbox - json-jwt - JSON Web Token and its family (JSON Web Signature, JSON Web Encryption and JSON Web Key) in Ruby (Security / Security Tools)
- awesome-jwt - json-jwt - JSON Web Signature, JSON Web Encryption and JSON Web Key and JWT in Ruby. (Libraries / Ruby)
README
# JSON::JWT
JSON Web Token and its family (JSON Web Signature, JSON Web Encryption and JSON Web Key) in Ruby
## Installation
```
gem install json-jwt
```
## Resources
* View Source on GitHub (https://github.com/nov/json-jwt)
* Report Issues on GitHub (https://github.com/nov/json-jwt/issues)
* Documentation on GitHub (https://github.com/nov/json-jwt/wiki)
## Examples
```ruby
require 'json/jwt'
private_key = OpenSSL::PKey::RSA.new <<-PEM
-----BEGIN RSA PRIVATE KEY-----
MIIEpAIBAAKCAQEAyBKIFSH8dP6bDkGBziB6RXTTfZVTaaNSWNtIzDmgRFi6FbLo
:
-----END RSA PRIVATE KEY-----
PEM
public_key = OpenSSL::PKey::RSA.new <<-PEM
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBKIFSH8dP6bDkGBziB6
:
-----END PUBLIC KEY-----
PEM
# Sign & Encode
claim = {
iss: 'nov',
exp: 1.week.from_now,
nbf: Time.now
}
jws = JSON::JWT.new(claim).sign(private_key, :RS256)
jws.to_s
# Decode & Verify
input = "jwt_header.jwt_claims.jwt_signature"
JSON::JWT.decode(input, public_key)
```
If you need to get a JWK from `jwks_uri` of OpenID Connect IdP, you can use `JSON::JWK::Set::Fetcher` to fetch (& optionally cache) it.
```ruby
# JWK Set Fetching & Caching
# NOTE: Optionally by setting cache instance, JWKs are cached by kid.
JSON::JWK::Set::Fetcher.cache = Rails.cache
JSON::JWK::Set::Fetcher.fetch(jwks_uri, kid: kid)
# => returns JSON::JWK instance or raise JSON::JWK::Set::KidNotFound
```
For more details, read [Documentation Wiki](https://github.com/nov/json-jwt/wiki).
## Note on Patches/Pull Requests
* Fork the project.
* Make your feature addition or bug fix.
* Add tests for it. This is important so I don't break it in a
future version unintentionally.
* Commit, do not mess with rakefile, version, or history.
(if you want to have your own version, that is fine but bump version in a commit by itself I can ignore when I pull)
* Send me a pull request. Bonus points for topic branches.
## Copyright
Copyright (c) 2011 nov matake. See LICENSE for details.