class Stytch::Sessions

def marshal_jwt_into_session(jwt)

def marshal_jwt_into_session(jwt)
  stytch_claim = 'https://stytch.com/session'
  expires_at = jwt[stytch_claim]['expires_at'] || Time.at(jwt['exp']).to_datetime.utc.strftime('%Y-%m-%dT%H:%M:%SZ')
  # The custom claim set is all the claims in the payload except for the standard claims and
  # the Stytch session claim. The cleanest way to collect those seems to be naming what we want
  # to omit and filtering the rest to collect the custom claims.
  reserved_claims = ['aud', 'exp', 'iat', 'iss', 'jti', 'nbf', 'sub', stytch_claim]
  custom_claims = jwt.reject { |key, _| reserved_claims.include?(key) }
  {
    'session_id' => jwt[stytch_claim]['id'],
    'user_id' => jwt['sub'],
    'started_at' => jwt[stytch_claim]['started_at'],
    'last_accessed_at' => jwt[stytch_claim]['last_accessed_at'],
    # For JWTs that include it, prefer the inner expires_at claim.
    'expires_at' => expires_at,
    'attributes' => jwt[stytch_claim]['attributes'],
    'authentication_factors' => jwt[stytch_claim]['authentication_factors'],
    'custom_claims' => custom_claims
  }
end

Included Modules

Stytch::RequestHelper

Modules

Classes

class Stytch::Sessions

def marshal_jwt_into_session(jwt)

Included Modules

Instance Methods