Class: WhopSDK::Helpers::VerifyUserToken::RemoteJwks

Inherits:

Object

Object
WhopSDK::Helpers::VerifyUserToken::RemoteJwks

show all

Defined in:: lib/whop_sdk/helpers/verify_user_token.rb

Overview

Thread-safe, TTL-bounded remote JWKS cache with cooldown-gated refresh on kid miss.

Instance Method Summary collapse

#initialize(url, cache_max_age_seconds:, cooldown_seconds:) ⇒ RemoteJwks constructor

A new instance of RemoteJwks.
#jwk_set(force_refresh: false) ⇒ Object

Returns the current JWK::Set, fetching or refreshing as needed.

Constructor Details

#initialize(url, cache_max_age_seconds:, cooldown_seconds:) ⇒ `RemoteJwks`

Returns a new instance of RemoteJwks.

# File 'lib/whop_sdk/helpers/verify_user_token.rb', line 45

def initialize(url, cache_max_age_seconds:, cooldown_seconds:)
  @url = url
  @cache_max_age_seconds = cache_max_age_seconds
  @cooldown_seconds = cooldown_seconds
  @mutex = Mutex.new
  @jwk_set = nil
  @fetched_at = nil
  @last_refresh_attempt_at = nil
end

Instance Method Details

#jwk_set(force_refresh: false) ⇒ `Object`

Returns the current JWK::Set, fetching or refreshing as needed. When ‘force_refresh` is true, bypass the freshness window but still honor the refetch cooldown.

# File 'lib/whop_sdk/helpers/verify_user_token.rb', line 58

def jwk_set(force_refresh: false)
  @mutex.synchronize do
    now = monotonic_now
    cache_stale = @jwk_set.nil? || @fetched_at.nil? ||
                  (now - @fetched_at) > @cache_max_age_seconds
    cooldown_elapsed = @last_refresh_attempt_at.nil? ||
                       (now - @last_refresh_attempt_at) > @cooldown_seconds

    refresh_now = @jwk_set.nil? || cache_stale ||
                  (force_refresh && cooldown_elapsed)

    fetch! if refresh_now
    @jwk_set
  end
end