class Stytch::JWKSCache

keys or will fetch them on-demand from the Stytch API.
for JWT signature verification. It can be initialized with pre-cached
JWKSCache handles caching and refreshing of JSON Web Key Sets (JWKS)

def get_jwks(project_id:)

Fetches JWKS from the Stytch API using the appropriate endpoint

def get_jwks(project_id:)
  endpoint = if @is_b2b_client
               "/v1/b2b/sessions/jwks/#{project_id}"
             else
               "/v1/sessions/jwks/#{project_id}"
             end
  get_request(endpoint, {})
end

def initialize(connection, project_id, jwks = nil, is_b2b_client: false)

def initialize(connection, project_id, jwks = nil, is_b2b_client: false)
  @connection = connection
  @project_id = project_id
  @is_b2b_client = is_b2b_client
  @cache_last_update = 0
  # If jwks are provided during initialization, use them directly
  return unless jwks
  @cached_keys = { keys: jwks }
  @cache_last_update = Time.now.to_i
end

def loader

Returns a lambda suitable for use with JWT.decode

def loader
  lambda do |options|
    @cached_keys = nil if options[:invalidate] && @cache_last_update < Time.now.to_i - CACHE_EXPIRY_SECONDS
    @cached_keys ||= begin
      @cache_last_update = Time.now.to_i
      keys = []
      get_jwks(project_id: @project_id)['keys'].each do |r|
        keys << r
      end
      { keys: keys }
    end
  end
end

Namespace

Stytch

Included Modules

Stytch::JWKSCache::Stytch::RequestHelper

Instance Methods

Defined in

lib/stytch/jwks_cache.rb