Class: Ably::Realtime::Auth

Inherits:

Object

• Object
• Ably::Realtime::Auth

Extended by:

Forwardable

Includes:

Modules::AsyncWrapper

Defined in:

lib/ably/realtime/auth.rb

Overview

Auth is responsible for authentication with Ably using basic or token authentication This Realtime::Auth class wraps the Synchronous Ably::Auth class in an EventMachine friendly way using Deferrables for all IO. See Ably::Auth for more information

Find out more about Ably authentication at: www.ably.com/docs/general/authentication/

Instance Attribute Summary

• #authentication_security_requirements_met? ⇒ Boolean readonly

  Returns false when attempting to send an API Key over a non-secure connection Token auth must be used for non-secure connections.

• #client_id ⇒ Object readonly
• #current_token_details ⇒ Object readonly

  Returns the value of attribute current_token_details.

• #key ⇒ Object readonly
• #key_name ⇒ Object readonly
• #key_secret ⇒ Object readonly
• #options ⇒ Object readonly

  Returns the value of attribute options.

• #token ⇒ Object readonly
• #token_params ⇒ Object readonly

  Returns the value of attribute options.

• #token_renewable? ⇒ Boolean readonly

  True if prerequisites for creating a new token request are present.

• #using_basic_auth? ⇒ Object readonly

  True when Basic Auth is being used to authenticate with Ably.

• #using_token_auth? ⇒ Object readonly

  True when Token Auth is being used to authenticate with Ably.

Instance Method Summary

• #auth_header {|String| ... } ⇒ Ably::Util::SafeDeferrable

  Auth header string used in HTTP requests to Ably Will reauthorize implicitly if required and capable.

• #auth_header_sync ⇒ String

  Synchronous version of #auth_header.

• #auth_params {|Hash| ... } ⇒ Ably::Util::SafeDeferrable

  Auth params used in URI endpoint for Realtime connections Will reauthorize implicitly if required and capable.

• #auth_params_sync ⇒ Hash

  Synchronous version of #auth_params.

• #authorise(*args, &block) ⇒ Object deprecated Deprecated.

  Use #authorize instead

• #authorise_sync(*args) ⇒ Object deprecated Deprecated.

  Use #authorize_sync instead

• #authorization_in_flight? ⇒ Boolean private
• #authorize(token_params = nil, auth_options = nil) {|Ably::Models::TokenDetails| ... } ⇒ Ably::Util::SafeDeferrable

  For new connections, ensures valid auth credentials are present for the library instance.

• #authorize_sync(token_params = nil, auth_options = nil) ⇒ Ably::Models::TokenDetails

  Synchronous version of #authorize.

• #create_token_request(token_params = {}, auth_options = {}) {|Models::TokenRequest| ... } ⇒ Ably::Util::SafeDeferrable

  Creates and signs a token request that can then subsequently be used by any client to request a token.

• #create_token_request_sync(token_params = {}, auth_options = {}) ⇒ Ably::Models::TokenRequest

  Synchronous version of #create_token_request.

• #initialize(client) ⇒ Auth constructor

  A new instance of Auth.

• #request_token(token_params = {}, auth_options = {}) {|Ably::Models::TokenDetails| ... } ⇒ Ably::Util::SafeDeferrable

  Request a Models::TokenDetails which can be used to make authenticated token based requests.

• #request_token_sync(token_params = {}, auth_options = {}) ⇒ Ably::Models::TokenDetails

  Synchronous version of #request_token.

Constructor Details

#initialize(client) ⇒ Auth

Returns a new instance of Auth.

# File 'lib/ably/realtime/auth.rb', line 49

def initialize(client)
  @client = client
  @auth_sync = client.rest_client.auth
end

Instance Attribute Details

#authentication_security_requirements_met? ⇒ Boolean (readonly)

Returns false when attempting to send an API Key over a non-secure connection Token auth must be used for non-secure connections

Returns:

• (Boolean)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#client_id ⇒ Object (readonly)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#current_token_details ⇒ Object (readonly)

Returns the value of attribute current_token_details.

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#key ⇒ Object (readonly)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#key_name ⇒ Object (readonly)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#key_secret ⇒ Object (readonly)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#options ⇒ Object (readonly)

Returns the value of attribute options.

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#token ⇒ Object (readonly)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#token_params ⇒ Object (readonly)

Returns the value of attribute options.

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#token_renewable? ⇒ Boolean (readonly)

True if prerequisites for creating a new token request are present

One of the following criterion must be met:

• Valid API key and token option not provided as token options cannot be determined

• Authentication callback for new token requests

• Authentication URL for new token requests

Returns:

• (Boolean)

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#using_basic_auth? ⇒ Object (readonly)

True when Basic Auth is being used to authenticate with Ably

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

#using_token_auth? ⇒ Object (readonly)

True when Token Auth is being used to authenticate with Ably

# File 'lib/ably/realtime/auth.rb', line 35

class Auth
  extend Forwardable
  include Ably::Modules::AsyncWrapper

  def_delegators :auth_sync, :client_id
  def_delegators :auth_sync, :token_client_id_allowed?, :configure_client_id, :client_id_validated?
  def_delegators :auth_sync, :can_assume_client_id?, :has_client_id?
  def_delegators :auth_sync, :current_token_details, :token
  def_delegators :auth_sync, :key, :key_name, :key_secret, :options, :auth_options, :token_params
  def_delegators :auth_sync, :using_basic_auth?, :using_token_auth?
  def_delegators :auth_sync, :token_renewable?, :authentication_security_requirements_met?
  def_delegators :client, :logger
  def_delegators :client, :connection

  def initialize(client)
    @client = client
    @auth_sync = client.rest_client.auth
  end

  # For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary.
  # If a connection is already established, the connection will be upgraded with a new token
  #
  # In the event that a new token request is made, the provided options are used
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # will issue a simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.authorize do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def authorize(token_params = nil, auth_options = nil, &success_callback)
    Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
      # Wrap the sync authorize method and wait for the result from the deferrable
      async_wrap do
        authorize_sync(token_params, auth_options)
      end.tap do |auth_operation|
        # Authorize operation succeeded and we have a new token, now let's perform inline authentication
        auth_operation.callback do |token|
          case connection.state.to_sym
          when :initialized, :disconnected, :suspended, :closed, :closing, :failed
            connection.connect
          when :connected
            perform_inline_auth token
          when :connecting
            # Fail all current connection attempts and try again with the new token, see #RTC8b
            connection.manager.release_and_establish_new_transport
          else
            logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
            authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
            next
          end

          # Indicate success or failure based on response from realtime, see #RTC8b1
          auth_deferrable_resolved = false

          connection.unsafe_once(:connected, :update) do
            auth_deferrable_resolved = true
            authorize_method_deferrable.succeed token
          end
          connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
            auth_deferrable_resolved = true
            authorize_method_deferrable.fail state_change.reason
          end
        end

        # Authorize failed, likely due to auth_url or auth_callback failing
        auth_operation.errback do |error|
          client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
          authorize_method_deferrable.fail error
        end
      end

      # Call the block provided to this method upon success of this deferrable
      authorize_method_deferrable.callback do |token|
        yield token if block_given?
      end
    end
  end

  # @deprecated Use {#authorize} instead
  def authorise(*args, &block)
    logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
    authorize(*args, &block)
  end

  # Synchronous version of {#authorize}. See {Ably::Auth#authorize} for method definition
  # Please note that authorize_sync will however not upgrade the current connection's token as this requires
  # an synchronous operation to send the new authentication details to Ably over a realtime connection
  #
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def authorize_sync(token_params = nil, auth_options = nil)
    @authorization_in_flight = true
    auth_sync.authorize(token_params, auth_options)
  ensure
    @authorization_in_flight = false
  end

  # @api private
  def authorization_in_flight?
    @authorization_in_flight
  end

  # @deprecated Use {#authorize_sync} instead
  def authorise_sync(*args)
    logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
    authorize_sync(*args)
  end

  # Request a {Ably::Models::TokenDetails} which can be used to make authenticated token based requests
  #
  # @param (see Ably::Auth#request_token)
  # @option (see Ably::Auth#request_token)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Ably::Models::TokenDetails]
  #
  # @example
  #    # simple token request using basic auth
  #    client = Ably::Rest::Client.new(key: 'key.id:secret')
  #    client.auth.request_token do |token_details|
  #      token_details #=> Ably::Models::TokenDetails
  #    end
  #
  def request_token(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      request_token_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#request_token}. See {Ably::Auth#request_token} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenDetails]
  #
  def request_token_sync(token_params = {}, auth_options = {})
    auth_sync.request_token(token_params, auth_options)
  end

  # Creates and signs a token request that can then subsequently be used by any client to request a token
  #
  # @param (see Ably::Auth#create_token_request)
  # @option (see Ably::Auth#create_token_request)
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Models::TokenRequest]
  #
  # @example
  #   client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  #     token_request #=> Ably::Models::TokenRequest
  #   end
  def create_token_request(token_params = {}, auth_options = {}, &success_callback)
    async_wrap(success_callback) do
      create_token_request_sync(token_params, auth_options)
    end
  end

  # Synchronous version of {#create_token_request}. See {Ably::Auth#create_token_request} for method definition
  # @param (see Ably::Auth#authorize)
  # @option (see Ably::Auth#authorize)
  # @return [Ably::Models::TokenRequest]
  #
  def create_token_request_sync(token_params = {}, auth_options = {})
    auth_sync.create_token_request(token_params, auth_options)
  end

  # Auth header string used in HTTP requests to Ably
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header(&success_callback)
    async_wrap(success_callback) do
      auth_header_sync
    end
  end

  # Synchronous version of {#auth_header}. See {Ably::Auth#auth_header} for method definition
  # @return [String] HTTP authentication value used in HTTP_AUTHORIZATION header
  #
  def auth_header_sync
    auth_sync.auth_header
  end

  # Auth params used in URI endpoint for Realtime connections
  # Will reauthorize implicitly if required and capable
  #
  # @return [Ably::Util::SafeDeferrable]
  # @yield [Hash] Auth params for a new Realtime connection
  #
  def auth_params(&success_callback)
    fail_callback = lambda do |error, deferrable|
      logger.error { "Failed to authenticate: #{error}" }
      if error.kind_of?(Ably::Exceptions::BaseAblyException)
        # Use base exception if it exists carrying forward the status codes
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
      else
        deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
      end
    end
    async_wrap(success_callback, fail_callback) do
      auth_params_sync
    end
  end

  # Synchronous version of {#auth_params}. See {Ably::Auth#auth_params} for method definition
  # @return [Hash] Auth params for a new Realtime connection
  #
  def auth_params_sync
    auth_sync.auth_params
  end

  private
  # The synchronous Auth class instanced by the Rest client
  # @return [Ably::Auth]
  def auth_sync
    @auth_sync
  end

  def client
    @client
  end

  # Sends an AUTH ProtocolMessage on the existing connection triggering
  # an inline AUTH process, see #RTC8a
  def perform_inline_auth(token)
    logger.debug { "Performing inline AUTH with Ably using token #{token}" }
    connection.send_protocol_message(
      action: Ably::Models::ProtocolMessage::ACTION.Auth.to_i,
      auth: { access_token: token.token }
    )
  end
end

Instance Method Details

#auth_header {|String| ... } ⇒ Ably::Util::SafeDeferrable

Auth header string used in HTTP requests to Ably Will reauthorize implicitly if required and capable

Yields:

• (String) —

  HTTP authentication value used in HTTP_AUTHORIZATION header

Returns:

• (Ably::Util::SafeDeferrable)

# File 'lib/ably/realtime/auth.rb', line 216

def auth_header(&success_callback)
  async_wrap(success_callback) do
    auth_header_sync
  end
end

#auth_header_sync ⇒ String

Synchronous version of #auth_header. See Auth#auth_header for method definition

Returns:

• (String) —

  HTTP authentication value used in HTTP_AUTHORIZATION header

# File 'lib/ably/realtime/auth.rb', line 225

def auth_header_sync
  auth_sync.auth_header
end

#auth_params {|Hash| ... } ⇒ Ably::Util::SafeDeferrable

Auth params used in URI endpoint for Realtime connections Will reauthorize implicitly if required and capable

Yields:

• (Hash) —

  Auth params for a new Realtime connection

Returns:

• (Ably::Util::SafeDeferrable)

# File 'lib/ably/realtime/auth.rb', line 235

def auth_params(&success_callback)
  fail_callback = lambda do |error, deferrable|
    logger.error { "Failed to authenticate: #{error}" }
    if error.kind_of?(Ably::Exceptions::BaseAblyException)
      # Use base exception if it exists carrying forward the status codes
      deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, nil, nil, error)
    else
      deferrable.fail Ably::Exceptions::AuthenticationFailed.new(error.message, 500, Ably::Exceptions::Codes::CLIENT_CONFIGURED_AUTHENTICATION_PROVIDER_REQUEST_FAILED)
    end
  end
  async_wrap(success_callback, fail_callback) do
    auth_params_sync
  end
end

#auth_params_sync ⇒ Hash

Synchronous version of #auth_params. See Auth#auth_params for method definition

Returns:

• (Hash) —

  Auth params for a new Realtime connection

# File 'lib/ably/realtime/auth.rb', line 253

def auth_params_sync
  auth_sync.auth_params
end

#authorise(*args, &block) ⇒ Object

Deprecated.

Use #authorize instead

# File 'lib/ably/realtime/auth.rb', line 122

def authorise(*args, &block)
  logger.warn { "Auth#authorise is deprecated and will be removed in 1.0. Please use Auth#authorize instead" }
  authorize(*args, &block)
end

#authorise_sync(*args) ⇒ Object

Deprecated.

Use #authorize_sync instead

# File 'lib/ably/realtime/auth.rb', line 148

def authorise_sync(*args)
  logger.warn { "Auth#authorise_sync is deprecated and will be removed in 1.0. Please use Auth#authorize_sync instead" }
  authorize_sync(*args)
end

#authorization_in_flight? ⇒ Boolean

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Returns:

• (Boolean)

# File 'lib/ably/realtime/auth.rb', line 143

def authorization_in_flight?
  @authorization_in_flight
end

#authorize(token_params = nil, auth_options = nil) {|Ably::Models::TokenDetails| ... } ⇒ Ably::Util::SafeDeferrable

For new connections, ensures valid auth credentials are present for the library instance. This may rely on an already-known and valid token, and will obtain a new token if necessary. If a connection is already established, the connection will be upgraded with a new token

In the event that a new token request is made, the provided options are used

Examples:

# will issue a simple token request using basic auth
client = Ably::Rest::Client.new(key: 'key.id:secret')
client.auth.authorize do |token_details|
  token_details #=> Ably::Models::TokenDetails
end

Parameters:

• token_params (Hash, nil) (defaults to: nil) —

  the token params used for future token requests. When nil, previously configured token params are used

• auth_options (Hash, nil) (defaults to: nil) —

  the authentication options used for future token requests. When nil, previously configure authentication options are used

Options Hash (token_params):

• :client_id (String) —

  A client ID to associate with this token. The generated token may be used to authenticate as this client_id

• :ttl (Integer) —

  validity time in seconds for the requested Models::TokenDetails. Limits may apply, see https://www.ably.com/docs/general/authentication

• :capability (Hash) —

  canonicalised representation of the resource paths and associated operations

• :timestamp (Time) —

  the time of the request

• :nonce (String) —

  an unquoted, unescaped random string of at least 16 characters

Options Hash (auth_options):

• :auth_url (String) —

  a URL to be used to GET or POST a set of token request params, to obtain a signed token request

• :auth_headers (Hash) —

  a set of application-specific headers to be added to any request made to the auth_url

• :auth_params (Hash) —

  a set of application-specific query params to be added to any request made to the auth_url

• :auth_method (Symbol) — default: :get —

  HTTP method to use with auth_url, must be either :get or :post

• :auth_callback (Proc) —

  when provided, the Proc will be called with the token params hash as the first argument, whenever a new token is required. The Proc should return a token string, Models::TokenDetails or JSON equivalent, Models::TokenRequest or JSON equivalent

• :key (String) —

  API key comprising the key name and key secret in a single string

• :client_id (String) —

  client ID identifying this connection to other clients (will use client_id specified when library was instanced if provided)

• :query_time (Boolean) —

  when true will query the Ably system for the current time instead of using the local time

• :token_params (Hash) —

  convenience to pass in token_params within the auth_options argument, especially useful when setting default token_params in the client constructor

Yields:

• (Ably::Models::TokenDetails)

Returns:

• (Ably::Util::SafeDeferrable)

# File 'lib/ably/realtime/auth.rb', line 72

def authorize(token_params = nil, auth_options = nil, &success_callback)
  Ably::Util::SafeDeferrable.new(logger).tap do |authorize_method_deferrable|
    # Wrap the sync authorize method and wait for the result from the deferrable
    async_wrap do
      authorize_sync(token_params, auth_options)
    end.tap do |auth_operation|
      # Authorize operation succeeded and we have a new token, now let's perform inline authentication
      auth_operation.callback do |token|
        case connection.state.to_sym
        when :initialized, :disconnected, :suspended, :closed, :closing, :failed
          connection.connect
        when :connected
          perform_inline_auth token
        when :connecting
          # Fail all current connection attempts and try again with the new token, see #RTC8b
          connection.manager.release_and_establish_new_transport
        else
          logger.fatal { "Auth#authorize: unsupported state #{connection.state}" }
          authorize_method_deferrable.fail Ably::Exceptions::InvalidState.new("Unsupported state #{connection.state} for Auth#authorize")
          next
        end

        # Indicate success or failure based on response from realtime, see #RTC8b1
        auth_deferrable_resolved = false

        connection.unsafe_once(:connected, :update) do
          auth_deferrable_resolved = true
          authorize_method_deferrable.succeed token
        end
        connection.unsafe_once(:suspended, :closed, :failed) do |state_change|
          auth_deferrable_resolved = true
          authorize_method_deferrable.fail state_change.reason
        end
      end

      # Authorize failed, likely due to auth_url or auth_callback failing
      auth_operation.errback do |error|
        client.connection.transition_state_machine :failed, reason: error if error.kind_of?(Ably::Exceptions::IncompatibleClientId)
        authorize_method_deferrable.fail error
      end
    end

    # Call the block provided to this method upon success of this deferrable
    authorize_method_deferrable.callback do |token|
      yield token if block_given?
    end
  end
end

#authorize_sync(token_params = nil, auth_options = nil) ⇒ Ably::Models::TokenDetails

Synchronous version of #authorize. See Auth#authorize for method definition Please note that authorize_sync will however not upgrade the current connection's token as this requires an synchronous operation to send the new authentication details to Ably over a realtime connection

Parameters:

• token_params (Hash, nil) (defaults to: nil) —

  the token params used for future token requests. When nil, previously configured token params are used

• auth_options (Hash, nil) (defaults to: nil) —

  the authentication options used for future token requests. When nil, previously configure authentication options are used

Options Hash (token_params):

• :client_id (String) —

  A client ID to associate with this token. The generated token may be used to authenticate as this client_id

• :ttl (Integer) —

  validity time in seconds for the requested Models::TokenDetails. Limits may apply, see https://www.ably.com/docs/general/authentication

• :capability (Hash) —

  canonicalised representation of the resource paths and associated operations

• :timestamp (Time) —

  the time of the request

• :nonce (String) —

  an unquoted, unescaped random string of at least 16 characters

Options Hash (auth_options):

• :auth_url (String) —

  a URL to be used to GET or POST a set of token request params, to obtain a signed token request

• :auth_headers (Hash) —

  a set of application-specific headers to be added to any request made to the auth_url

• :auth_params (Hash) —

  a set of application-specific query params to be added to any request made to the auth_url

• :auth_method (Symbol) — default: :get —

  HTTP method to use with auth_url, must be either :get or :post

• :auth_callback (Proc) —

  when provided, the Proc will be called with the token params hash as the first argument, whenever a new token is required. The Proc should return a token string, Models::TokenDetails or JSON equivalent, Models::TokenRequest or JSON equivalent

• :key (String) —

  API key comprising the key name and key secret in a single string

• :client_id (String) —

  client ID identifying this connection to other clients (will use client_id specified when library was instanced if provided)

• :query_time (Boolean) —

  when true will query the Ably system for the current time instead of using the local time

• :token_params (Hash) —

  convenience to pass in token_params within the auth_options argument, especially useful when setting default token_params in the client constructor

Returns:

• (Ably::Models::TokenDetails)

# File 'lib/ably/realtime/auth.rb', line 135

def authorize_sync(token_params = nil, auth_options = nil)
  @authorization_in_flight = true
  auth_sync.authorize(token_params, auth_options)
ensure
  @authorization_in_flight = false
end

#create_token_request(token_params = {}, auth_options = {}) {|Models::TokenRequest| ... } ⇒ Ably::Util::SafeDeferrable

Creates and signs a token request that can then subsequently be used by any client to request a token

Examples:

client.auth.create_token_request({ ttl: 3600 }, id: 'asd.asd') do |token_request|
  token_request #=> Ably::Models::TokenRequest
end

Parameters:

• token_params (Hash) (defaults to: {}) —

  the token params used in the token request

• auth_options (Hash) (defaults to: {}) —

  the authentication options for the token request

Options Hash (token_params):

• :client_id (String) —

  A client ID to associate with this token. The generated token may be used to authenticate as this client_id

• :ttl (Integer) —

  validity time in seconds for the requested Models::TokenDetails. Limits may apply, see https://www.ably.com/docs/general/authentication

• :capability (Hash) —

  canonicalised representation of the resource paths and associated operations

• :timestamp (Time) —

  the time of the request

• :nonce (String) —

  an unquoted, unescaped random string of at least 16 characters

Options Hash (auth_options):

• :key (String) —

  API key comprising the key name and key secret in a single string

• :client_id (String) —

  client ID identifying this connection to other clients (will use client_id specified when library was instanced if provided)

• :query_time (Boolean) —

  when true will query the Ably system for the current time instead of using the local time

• :token_params (Hash) —

  convenience to pass in token_params within the auth_options argument, especially useful when setting default token_params in the client constructor

Yields:

• (Models::TokenRequest)

Returns:

• (Ably::Util::SafeDeferrable)

# File 'lib/ably/realtime/auth.rb', line 195

def create_token_request(token_params = {}, auth_options = {}, &success_callback)
  async_wrap(success_callback) do
    create_token_request_sync(token_params, auth_options)
  end
end

#create_token_request_sync(token_params = {}, auth_options = {}) ⇒ Ably::Models::TokenRequest

Synchronous version of #create_token_request. See Auth#create_token_request for method definition

Parameters:

• token_params (Hash, nil) (defaults to: {}) —

  the token params used for future token requests. When nil, previously configured token params are used

• auth_options (Hash, nil) (defaults to: {}) —

  the authentication options used for future token requests. When nil, previously configure authentication options are used

Options Hash (token_params):

• :client_id (String) —

  A client ID to associate with this token. The generated token may be used to authenticate as this client_id

• :ttl (Integer) —

  validity time in seconds for the requested Models::TokenDetails. Limits may apply, see https://www.ably.com/docs/general/authentication

• :capability (Hash) —

  canonicalised representation of the resource paths and associated operations

• :timestamp (Time) —

  the time of the request

• :nonce (String) —

  an unquoted, unescaped random string of at least 16 characters

Options Hash (auth_options):

• :auth_url (String) —

  a URL to be used to GET or POST a set of token request params, to obtain a signed token request

• :auth_headers (Hash) —

  a set of application-specific headers to be added to any request made to the auth_url

• :auth_params (Hash) —

  a set of application-specific query params to be added to any request made to the auth_url

• :auth_method (Symbol) — default: :get —

  HTTP method to use with auth_url, must be either :get or :post

• :auth_callback (Proc) —

  when provided, the Proc will be called with the token params hash as the first argument, whenever a new token is required. The Proc should return a token string, Models::TokenDetails or JSON equivalent, Models::TokenRequest or JSON equivalent

• :key (String) —

  API key comprising the key name and key secret in a single string

• :client_id (String) —

  client ID identifying this connection to other clients (will use client_id specified when library was instanced if provided)

• :query_time (Boolean) —

  when true will query the Ably system for the current time instead of using the local time

• :token_params (Hash) —

  convenience to pass in token_params within the auth_options argument, especially useful when setting default token_params in the client constructor

Returns:

• (Ably::Models::TokenRequest)

# File 'lib/ably/realtime/auth.rb', line 206

def create_token_request_sync(token_params = {}, auth_options = {})
  auth_sync.create_token_request(token_params, auth_options)
end

#request_token(token_params = {}, auth_options = {}) {|Ably::Models::TokenDetails| ... } ⇒ Ably::Util::SafeDeferrable

Request a Models::TokenDetails which can be used to make authenticated token based requests

Examples:

# simple token request using basic auth
client = Ably::Rest::Client.new(key: 'key.id:secret')
client.auth.request_token do |token_details|
  token_details #=> Ably::Models::TokenDetails
end

Parameters:

• auth_options (Hash) (defaults to: {}) —

  (see #create_token_request)

• token_params (Hash) (defaults to: {}) —

  (see #create_token_request)

Options Hash (token_params):

• :client_id (String) —

  A client ID to associate with this token. The generated token may be used to authenticate as this client_id

• :ttl (Integer) —

  validity time in seconds for the requested Models::TokenDetails. Limits may apply, see https://www.ably.com/docs/general/authentication

• :capability (Hash) —

  canonicalised representation of the resource paths and associated operations

• :timestamp (Time) —

  the time of the request

• :nonce (String) —

  an unquoted, unescaped random string of at least 16 characters

Options Hash (auth_options):

• :auth_url (String) —

  a URL to be used to GET or POST a set of token request params, to obtain a signed token request

• :auth_headers (Hash) —

  a set of application-specific headers to be added to any request made to the auth_url

• :auth_params (Hash) —

  a set of application-specific query params to be added to any request made to the auth_url

• :auth_method (Symbol) — default: :get —

  HTTP method to use with auth_url, must be either :get or :post

• :auth_callback (Proc) —

  when provided, the Proc will be called with the token params hash as the first argument, whenever a new token is required. The Proc should return a token string, Models::TokenDetails or JSON equivalent, Models::TokenRequest or JSON equivalent

• :key (String) —

  API key comprising the key name and key secret in a single string

• :client_id (String) —

  client ID identifying this connection to other clients (will use client_id specified when library was instanced if provided)

• :query_time (Boolean) —

  when true will query the Ably system for the current time instead of using the local time

• :token_params (Hash) —

  convenience to pass in token_params within the auth_options argument, especially useful when setting default token_params in the client constructor

Yields:

• (Ably::Models::TokenDetails)

Returns:

• (Ably::Util::SafeDeferrable)

# File 'lib/ably/realtime/auth.rb', line 168

def request_token(token_params = {}, auth_options = {}, &success_callback)
  async_wrap(success_callback) do
    request_token_sync(token_params, auth_options)
  end
end

#request_token_sync(token_params = {}, auth_options = {}) ⇒ Ably::Models::TokenDetails

Synchronous version of #request_token. See Auth#request_token for method definition

Parameters:

• token_params (Hash, nil) (defaults to: {}) —

  the token params used for future token requests. When nil, previously configured token params are used

• auth_options (Hash, nil) (defaults to: {}) —

  the authentication options used for future token requests. When nil, previously configure authentication options are used

Options Hash (token_params):

• :client_id (String) —

  A client ID to associate with this token. The generated token may be used to authenticate as this client_id

• :ttl (Integer) —

  validity time in seconds for the requested Models::TokenDetails. Limits may apply, see https://www.ably.com/docs/general/authentication

• :capability (Hash) —

  canonicalised representation of the resource paths and associated operations

• :timestamp (Time) —

  the time of the request

• :nonce (String) —

  an unquoted, unescaped random string of at least 16 characters

Options Hash (auth_options):

• :auth_url (String) —

  a URL to be used to GET or POST a set of token request params, to obtain a signed token request

• :auth_headers (Hash) —

  a set of application-specific headers to be added to any request made to the auth_url

• :auth_params (Hash) —

  a set of application-specific query params to be added to any request made to the auth_url

• :auth_method (Symbol) — default: :get —

  HTTP method to use with auth_url, must be either :get or :post

• :auth_callback (Proc) —

  when provided, the Proc will be called with the token params hash as the first argument, whenever a new token is required. The Proc should return a token string, Models::TokenDetails or JSON equivalent, Models::TokenRequest or JSON equivalent

• :key (String) —

  API key comprising the key name and key secret in a single string

• :client_id (String) —

  client ID identifying this connection to other clients (will use client_id specified when library was instanced if provided)

• :query_time (Boolean) —

  when true will query the Ably system for the current time instead of using the local time

• :token_params (Hash) —

  convenience to pass in token_params within the auth_options argument, especially useful when setting default token_params in the client constructor

Returns:

• (Ably::Models::TokenDetails)

# File 'lib/ably/realtime/auth.rb', line 179

def request_token_sync(token_params = {}, auth_options = {})
  auth_sync.request_token(token_params, auth_options)
end