Class: VectorMCP::Security::Strategies::JwtToken

Inherits:

Object

• Object
• VectorMCP::Security::Strategies::JwtToken

Defined in:

lib/vector_mcp/security/strategies/jwt_token.rb

Overview

JWT Token authentication strategy Provides stateless authentication using JSON Web Tokens

Instance Attribute Summary

• #algorithm ⇒ Object readonly

  Returns the value of attribute algorithm.

• #options ⇒ Object readonly

  Returns the value of attribute options.

• #secret ⇒ Object readonly

  Returns the value of attribute secret.

Class Method Summary

• .available? ⇒ Boolean

  Check if JWT gem is available.

Instance Method Summary

• #authenticate(request) ⇒ Hash, false

  Authenticate a request using JWT token.

• #generate_token(payload, expires_in: 3600) ⇒ String

  Generate a JWT token (utility method for testing/development).

• #initialize(secret:, algorithm: "HS256", allow_query_params: false, **options) ⇒ JwtToken constructor

  Initialize JWT strategy.

Constructor Details

#initialize(secret:, algorithm: "HS256", allow_query_params: false, **options) ⇒ JwtToken

Initialize JWT strategy

Parameters:

• secret (String) —

  the secret key for JWT verification

• algorithm (String) (defaults to: "HS256") —

  the JWT algorithm (default: HS256)

• allow_query_params (Boolean) (defaults to: false) —

  whether to accept JWT tokens from query parameters (default: false)

• options (Hash) —

  additional JWT verification options

Raises:

• (LoadError)

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 22

def initialize(secret:, algorithm: "HS256", allow_query_params: false, **options)
  raise LoadError, "JWT gem is required for JWT authentication strategy" unless defined?(JWT)

  @secret = secret
  @algorithm = algorithm
  @allow_query_params = allow_query_params
  @options = {
    algorithm: @algorithm,
    verify_expiration: true,
    verify_iat: true,
    verify_iss: false,
    verify_aud: false
  }.merge(options)
end

Instance Attribute Details

#algorithm ⇒ Object (readonly)

Returns the value of attribute algorithm.

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 15

def algorithm
  @algorithm
end

#options ⇒ Object (readonly)

Returns the value of attribute options.

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 15

def options
  @options
end

#secret ⇒ Object (readonly)

Returns the value of attribute secret.

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 15

def secret
  @secret
end

Class Method Details

.available? ⇒ Boolean

Check if JWT gem is available

Returns:

• (Boolean) —

  true if JWT gem is loaded

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 67

def self.available?
  defined?(JWT)
end

Instance Method Details

#authenticate(request) ⇒ Hash, false

Authenticate a request using JWT token

Parameters:

• request (Hash) —

  the request object

Returns:

• (Hash, false) —

  decoded JWT payload or false if authentication failed

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 40

def authenticate(request)
  token = extract_token(request)
  return false unless token

  begin
    decoded = JWT.decode(token, @secret, true, @options)
    decoded[0]
  rescue JWT::ExpiredSignature, JWT::InvalidIssuerError, JWT::InvalidAudienceError,
         JWT::VerificationError, JWT::DecodeError, StandardError
    false # Token validation failed
  end
end

#generate_token(payload, expires_in: 3600) ⇒ String

Generate a JWT token (utility method for testing/development)

Parameters:

• payload (Hash) —

  the payload to encode

• expires_in (Integer) (defaults to: 3600) —

  expiration time in seconds from now

Returns:

• (String) —

  the generated JWT token

# File 'lib/vector_mcp/security/strategies/jwt_token.rb', line 57

def generate_token(payload, expires_in: 3600)
  exp_payload = payload.merge(
    exp: Time.now.to_i + expires_in,
    iat: Time.now.to_i
  )
  JWT.encode(exp_payload, @secret, @algorithm)
end