Allow dynamically starting strategies + expand GenServer-ness of the DefaultStrategyTemplate

.github/dependabot.yml

@@ -0,0 +1,18 @@
+# Basic set up for three package managers
+
+version: 2
+updates:
+
+  # Maintain dependencies for GitHub Actions
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"
+
+  # Maintain dependencies for elixir
+  - package-ecosystem: "mix"
+    directory: "/"
+    schedule:
+      interval: "daily"
+    # Allow up to 10 open pull requests for pip dependencies
+    open-pull-requests-limit: 10

.github/workflows/ci.yml

@@ -0,0 +1,69 @@
+on: [pull_request, push, fork]
+
+jobs:
+  dependencies:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        elixir: ["1.13.0"]
+        otp: ["24.1.7"]
+    steps:
+      - name: Cancel previous runs
+        uses: styfle/[email protected]
+        with:
+          access_token: ${{ github.token }}
+      - name: Checkout Github repo
+        uses: actions/checkout@v2
+      - name: Sets up an Erlang/OTP environment
+        uses: erlef/setup-beam@v1
+        with:
+          elixir-version: ${{ matrix.elixir }}
+          otp-version: ${{ matrix.otp }}
+      - name: Retrieve cached dependencies
+        uses: actions/cache@v2
+        id: mix-cache
+        with:
+          path: |
+            deps
+            _build
+            priv/plts
+          key: ${{ runner.os }}-${{ matrix.otp }}-${{ matrix.elixir }}-${{ hashFiles('mix.lock') }}
+      - name: Install dependencies
+        if: steps.mix-cache.outputs.cache-hit != 'true'
+        run: |
+          mkdir -p priv/plts
+          mix local.rebar --force
+          mix local.hex --force
+          mix deps.get
+          mix deps.compile
+          MIX_NEV=test mix deps.compile
+
+  static-code-analysis:
+    needs: dependencies
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        elixir: ["1.13.0"]
+        otp: ["24.1.7"]
+    steps:
+      - name: Cancel previous runs
+        uses: styfle/[email protected]
+        with:
+          access_token: ${{ github.token }}
+      - name: Checkout Github repo
+        uses: actions/checkout@v2
+      - name: Sets up an Erlang/OTP environment
+        uses: erlef/setup-beam@v1
+        with:
+          elixir-version: ${{ matrix.elixir }}
+          otp-version: ${{ matrix.otp }}
+      - name: Retrieve cached dependencies
+        uses: actions/cache@v2
+        id: mix-cache
+        with:
+          path: |
+            deps
+            _build
+            priv/plts
+          key: ${{ runner.os }}-${{ matrix.otp }}-${{ matrix.elixir }}-${{ hashFiles('mix.lock') }}
+      - run: mix format --check-formatted

lib/joken_jwks.ex

@@ -58,6 +58,41 @@ defmodule JokenJwks do
     end
   end
 
+  @doc """
+  Use this for dynamically generated strategies.
+  We can't use add_hook() for dynamically generated strategies because they are runtime based,
+  and add_hook is compile time.
+
+  ## Example
+  ```
+
+      defmodule TestTokenOne do
+        use Joken.Config
+
+        @impl true
+        def before_verify(hook_options, {_token, _signer} = config_tuple) do
+          strategy_pid =
+            JokenJwks.DynamicDefaultStrategyRegistry.lookup_by_name!(:tenant_1_jwks_strategy)
+
+          strategy = JokenJwks.DynamicDefaultStrategySupervisor.DefaultStrategy
+
+          JokenJwks.before_verify_by_pid(strategy, strategy_pid, hook_options, config_tuple)
+        end
+
+        def token_config, do: %{}
+      end
+
+  ```
+  """
+  def before_verify_by_pid(strategy, strategy_pid, hook_options, {token, _signer}) do
+    with {:ok, kid} <- get_token_kid(token),
+         {:ok, signer} <- strategy.match_signer_for_kid(strategy_pid, kid, hook_options) do
+      {:cont, {token, signer}}
+    else
+      err -> {:halt, err}
+    end
+  end
+
   defp get_token_kid(token) do
     with {:ok, headers} <- Joken.peek_header(token),
          {:kid, kid} when not is_nil(kid) <- {:kid, headers["kid"]} do