Skip to content
This repository has been archived by the owner on Dec 27, 2022. It is now read-only.

leopolicastro/jwt_api

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits

bin

bin

 
 

lib

lib

 
 

spec

spec

 
 

.gitignore

.gitignore

 
 

.rspec

.rspec

 
 

CHANGELOG.md

CHANGELOG.md

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

Gemfile

Gemfile

 
 

Gemfile.lock

Gemfile.lock

 
 

LICENSE.txt

LICENSE.txt

 
 

README.md

README.md

 
 

Rakefile

Rakefile

 
 

jwt_api-0.1.5.gem

jwt_api-0.1.5.gem

 
 

jwt_api.gemspec

jwt_api.gemspec

 
 

Repository files navigation

JwtApi

Scaffold a JSON Web Token API.

Installation

Add this line to your application's Gemfile:

gem 'jwt_api'

And then execute:

$ bundle install

Or install it yourself as:

$ gem install jwt_api

Generate your API:

$ rails g jwt_api:setup

Running via Spring preloader in process 56238
      create  app/controllers/api
      create  app/controllers/api/base_controller.rb
      create  app/controllers/api/v1/authentication_controller.rb
      create  app/controllers/api/v1/passwords_controller.rb
      create  app/controllers/api/v1/users_controller.rb
      insert  config/routes.rb
      create  app/views/users
      create  app/views/users/_user.html.erb
      create  app/views/users/_user.json.jbuilder
      create  app/mailers/jwt_mailer.rb
      create  app/views/jwt_mailer
      create  app/views/jwt_mailer/reset_password.html.erb
      create  config/initializers/json_web_token.rb
    generate  migration
       rails  generate migration add_jti_to_users jti:string:uniq:index
Running via Spring preloader in process 56250
      invoke  active_record
      create    db/migrate/20210827123255_add_jti_to_users.rb
        rake  db:migrate
== 20210827123255 AddJtiToUsers: migrating ====================================
-- add_column(:users, :jti, :string)
   -> 0.0061s
-- add_index(:users, :jti, {:unique=>true})
   -> 0.0196s
== 20210827123255 AddJtiToUsers: migrated (0.0259s) ===========================

$ rails db:migrate

Usage

  1. Make sure that each user that needs access to the API has a JTI generated.
    1. User.first.jti = SecureRandom.uuid
  2. From your Rails console run SecureRandom.hex(64) and make note of the output.
    • Sample output: 
      "0086870fb04cafbaa15b110cf78352fbca75537cc90e06892e206e07c24caa33ff5f6aadf2649cafac08c4acf6a1b7527b97bfa943481c282ba2480a0a922657"
  3. Run rails credentials:edit --environment=development (and production, staging when applicable) and set your jwt_secret environment variable. 
       jwt_secret: 0086870fb04cafbaa15b110cf78352fbca75537cc90e06892e206e07c24caa33ff5f6aadf2649cafac08c4acf6a1b7527b97bfa943481c282ba2480a0a922657
  4. Request a JWT at the /api/authenticate/ endpoint.
  5. Include that token as a Bearer token in all other requests.

Run in Postman

Docs

Limitations

  • Currently this will only work with a devise User model.

Contributing

Bug reports and pull requests are welcome on GitHub at https://github.com/leopolicastro/jwt_api. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the code of conduct.

License

The gem is available as open source under the terms of the MIT License.

Code of Conduct

Everyone interacting in the JwtApi project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the code of conduct.

About

Scaffold a JSON Web Token API

rubygems.org/gems/jwt_api

Topics

api-rest ruby-on-rails jwt-authentication

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages