nyaa-pantsu/vendor/github.com/dgrijalva/jwt-go/map_claims.go

package jwt

import (
	"encoding/json"
	"errors"
	// "fmt"
)

// Claims type that uses the map[string]interface{} for JSON decoding
// This is the default claims type if you don't supply one
type MapClaims map[string]interface{}

// Compares the aud claim against cmp.
// If required is false, this method will return true if the value matches or is unset
func (m MapClaims) VerifyAudience(cmp string, req bool) bool {
	aud, _ := m["aud"].(string)
	return verifyAud(aud, cmp, req)
}

// Compares the exp claim against cmp.
// If required is false, this method will return true if the value matches or is unset
func (m MapClaims) VerifyExpiresAt(cmp int64, req bool) bool {
	switch exp := m["exp"].(type) {
	case float64:
		return verifyExp(int64(exp), cmp, req)
	case json.Number:
		v, _ := exp.Int64()
		return verifyExp(v, cmp, req)
	}
	return req == false
}

// Compares the iat claim against cmp.
// If required is false, this method will return true if the value matches or is unset
func (m MapClaims) VerifyIssuedAt(cmp int64, req bool) bool {
	switch iat := m["iat"].(type) {
	case float64:
		return verifyIat(int64(iat), cmp, req)
	case json.Number:
		v, _ := iat.Int64()
		return verifyIat(v, cmp, req)
	}
	return req == false
}

// Compares the iss claim against cmp.
// If required is false, this method will return true if the value matches or is unset
func (m MapClaims) VerifyIssuer(cmp string, req bool) bool {
	iss, _ := m["iss"].(string)
	return verifyIss(iss, cmp, req)
}

// Compares the nbf claim against cmp.
// If required is false, this method will return true if the value matches or is unset
func (m MapClaims) VerifyNotBefore(cmp int64, req bool) bool {
	switch nbf := m["nbf"].(type) {
	case float64:
		return verifyNbf(int64(nbf), cmp, req)
	case json.Number:
		v, _ := nbf.Int64()
		return verifyNbf(v, cmp, req)
	}
	return req == false
}

// Validates time based claims "exp, iat, nbf".
// There is no accounting for clock skew.
// As well, if any of the above claims are not in the token, it will still
// be considered a valid claim.
func (m MapClaims) Valid() error {
	vErr := new(ValidationError)
	now := TimeFunc().Unix()

	if m.VerifyExpiresAt(now, false) == false {
		vErr.Inner = errors.New("Token is expired")
		vErr.Errors |= ValidationErrorExpired
	}

	if m.VerifyIssuedAt(now, false) == false {
		vErr.Inner = errors.New("Token used before issued")
		vErr.Errors |= ValidationErrorIssuedAt
	}

	if m.VerifyNotBefore(now, false) == false {
		vErr.Inner = errors.New("Token is not valid yet")
		vErr.Errors |= ValidationErrorNotValidYet
	}

	if vErr.valid() {
		return nil
	}

	return vErr
}
OAuth API [done] (#1275) * Initial Commit for OAuth API This builds and run and return the right error. Need to test it and then adding all users as possible client * Added mising dependency * just compile already... * Fixing template test * Imrpovements Moved db stuff in models Added some tests Added form in modpanel to add/update a client Added controllers for add/update of client * Added Forms + speed improvements Controller oauth client listing + html Controller oauth client delete + messages Messages on comment delete New ES config that disable ES if set to false. Improve load speed on local development Fix a load config bug Fix index admin & translation string sign_out broken by @ewhal * Sanitize empty strig in form array + css Multiple empty array of strings are sanitized for the oauth client create form Added some css for the form display * Upload and Create form works * Fix splitting response types * Removing required on secret when updating * fix travis error * Fix travis template test * Update dependency * Moved to jinzhu instead of azhao * randomizen secret on creation * Final touch on oath api improved display name fix grant form csrf fix login csrf on oauth * Fix gorm test * fix template test * Fixing deleted dependency issue * Make travis faster * Fix typo * Fix csrf for api calls * This shouldn't be exempt * Removing hard coded hash @ewhal Don't forget to replace the hash in tokens.go with another one * Added an example on how to use OAuth middleware * Renamed fosite utils to oauth2 utils 2017-07-28 05:46:40 +02:00			`package jwt`

			`import (`
			`"encoding/json"`
			`"errors"`
			`// "fmt"`
			`)`

			`// Claims type that uses the map[string]interface{} for JSON decoding`
			`// This is the default claims type if you don't supply one`
			`type MapClaims map[string]interface{}`

			`// Compares the aud claim against cmp.`
			`// If required is false, this method will return true if the value matches or is unset`
			`func (m MapClaims) VerifyAudience(cmp string, req bool) bool {`
			`aud, _ := m["aud"].(string)`
			`return verifyAud(aud, cmp, req)`
			`}`

			`// Compares the exp claim against cmp.`
			`// If required is false, this method will return true if the value matches or is unset`
			`func (m MapClaims) VerifyExpiresAt(cmp int64, req bool) bool {`
			`switch exp := m["exp"].(type) {`
			`case float64:`
			`return verifyExp(int64(exp), cmp, req)`
			`case json.Number:`
			`v, _ := exp.Int64()`
			`return verifyExp(v, cmp, req)`
			`}`
			`return req == false`
			`}`

			`// Compares the iat claim against cmp.`
			`// If required is false, this method will return true if the value matches or is unset`
			`func (m MapClaims) VerifyIssuedAt(cmp int64, req bool) bool {`
			`switch iat := m["iat"].(type) {`
			`case float64:`
			`return verifyIat(int64(iat), cmp, req)`
			`case json.Number:`
			`v, _ := iat.Int64()`
			`return verifyIat(v, cmp, req)`
			`}`
			`return req == false`
			`}`

			`// Compares the iss claim against cmp.`
			`// If required is false, this method will return true if the value matches or is unset`
			`func (m MapClaims) VerifyIssuer(cmp string, req bool) bool {`
			`iss, _ := m["iss"].(string)`
			`return verifyIss(iss, cmp, req)`
			`}`

			`// Compares the nbf claim against cmp.`
			`// If required is false, this method will return true if the value matches or is unset`
			`func (m MapClaims) VerifyNotBefore(cmp int64, req bool) bool {`
			`switch nbf := m["nbf"].(type) {`
			`case float64:`
			`return verifyNbf(int64(nbf), cmp, req)`
			`case json.Number:`
			`v, _ := nbf.Int64()`
			`return verifyNbf(v, cmp, req)`
			`}`
			`return req == false`
			`}`

			`// Validates time based claims "exp, iat, nbf".`
			`// There is no accounting for clock skew.`
			`// As well, if any of the above claims are not in the token, it will still`
			`// be considered a valid claim.`
			`func (m MapClaims) Valid() error {`
			`vErr := new(ValidationError)`
			`now := TimeFunc().Unix()`

			`if m.VerifyExpiresAt(now, false) == false {`
			`vErr.Inner = errors.New("Token is expired")`
			`vErr.Errors \|= ValidationErrorExpired`
			`}`

			`if m.VerifyIssuedAt(now, false) == false {`
			`vErr.Inner = errors.New("Token used before issued")`
			`vErr.Errors \|= ValidationErrorIssuedAt`
			`}`

			`if m.VerifyNotBefore(now, false) == false {`
			`vErr.Inner = errors.New("Token is not valid yet")`
			`vErr.Errors \|= ValidationErrorNotValidYet`
			`}`

			`if vErr.valid() {`
			`return nil`
			`}`

			`return vErr`
			`}`