Add devise-jwt gem and configure JWT authentication

Author: tuanle03

Gemfile

@@ -44,6 +44,8 @@ gem "bootsnap", require: false
 
 gem "devise"
 
+gem 'devise-jwt'
+
 # Use Sass to process CSS
 # gem "sassc-rails"
 

Gemfile.lock

@@ -94,7 +94,19 @@ GEM
       railties (>= 4.1.0)
       responders
       warden (~> 1.2.3)
+    devise-jwt (0.11.0)
+      devise (~> 4.0)
+      warden-jwt_auth (~> 0.8)
     diff-lcs (1.5.0)
+    dry-auto_inject (1.0.1)
+      dry-core (~> 1.0)
+      zeitwerk (~> 2.6)
+    dry-configurable (1.1.0)
+      dry-core (~> 1.0, < 2)
+      zeitwerk (~> 2.6)
+    dry-core (1.0.1)
+      concurrent-ruby (~> 1.0)
+      zeitwerk (~> 2.6)
     erubi (1.12.0)
     globalid (1.2.1)
       activesupport (>= 6.1)
@@ -110,6 +122,7 @@ GEM
     jbuilder (2.11.5)
       actionview (>= 5.0.0)
       activesupport (>= 5.0.0)
+    jwt (2.7.1)
     loofah (2.20.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
@@ -229,6 +242,11 @@ GEM
       concurrent-ruby (~> 1.0)
     warden (1.2.9)
       rack (>= 2.0.9)
+    warden-jwt_auth (0.8.0)
+      dry-auto_inject (>= 0.8, < 2)
+      dry-configurable (>= 0.13, < 2)
+      jwt (~> 2.1)
+      warden (~> 1.2)
     web-console (4.2.0)
       actionview (>= 6.0.0)
       activemodel (>= 6.0.0)
@@ -254,6 +272,7 @@ DEPENDENCIES
   capybara
   debug
   devise
+  devise-jwt
   importmap-rails
   jbuilder
   puma (~> 5.0)

app/models/user.rb

@@ -2,5 +2,11 @@ class User < ApplicationRecord
   # Include default devise modules. Others available are:
   # :confirmable, :lockable, :timeoutable, :trackable and :omniauthable
   devise :database_authenticatable, :registerable,
-         :recoverable, :rememberable, :validatable
+    :recoverable, :rememberable, :validatable,
+    :jwt_authenticatable, jwt_revocation_strategy: Devise::JWT::RevocationStrategies::Null
+
+  def generate_jwt
+    payload = { user_id: id, exp: 1.day.from_now.to_i }
+    JWT::Encoder.encode(payload, Rails.application.credentials.devise_jwt_secret_key)
+  end
 end

config/credentials.yml.enc

@@ -1 +1 @@
-+82DHvhl+EoVC282T7Bm1c6pjG+zPDk33genA0A2taWvpooSCVUgK8HQhk+t5/DiDdhiPRQxHPq6obXFum9uTmOSOUf47K+hBs4oKFISJqbRWC3GayB3FjYJy/xaeRV3JgCClr9D8Dr9ZSg8DR0WtcPxQpNFlEDwskaKVRigVQykmtG+FSmRcd6cw7oc5P/lS3Umeen97P0rU3ykEclW+SI9iZMT9F9H5KIFFvawZe4z08DdPbEnzsRLy5JjnoraiNW0pBs1+pe+Nl07nbxtewaWcek7HBEKh3c/WTRx2ZmobH6htdmu5Mic3iDuTG8dtGifZrjPO64aHiy51pZ2ctQ6H5Eos28Oh0za7oQd0lLhuQx0QQPAOP6jFfskSc+oplosKrXzZ5YNW9JlZ7ekUDwr6KK0E1elLmVD--DXQ1OcBZYOyZZ5md--zFU0gwGcEs4cNMz9k9vLmw==
+bnMbcO9jI+ZVwANkEbRXicq4F3Cz65ANfWLuPoCiCdkq0aRrgJY9ytGg2F+eFBbFBcSIUXiUsapE+1O8FO8SG3uk/6OPT5PYpvd4oZrnVUG71bkQY8+gz3VWhHm6L9U6CdQCViktRGkdIbTyX5vQWEjZQXD1gzeQpYrWgOFJDux8DlqQCvWSTzwmIdSC2i5tZjZ0ViidDZ6ac1LOvQniFjtXlV2TXwsPIUbwVEXVoVajKRu7IS3qb77kXPfxuvS8wYh/xg6Z75w6hQ/3OxgTeYDKeqVfvAxDULmMAqx32/Rug14hb5PXp/MODk0Su/ddz/GCYRtIZrDwmwTnyHppCdPMGZhpVRFfInCjlRaHSZw0BreIwUU1GHDr9hiLq4sMm7MhDgWp1CW/28bg2kfETiq97ln2R0ssNlt7j4r/KnRlq4hzwfJ3ZPxVCRC2Fx4kx3vMotZ/0QVBUqJH/dA=--gM9qn9Lvnfpo8C0L--k5jFAP7f8FpGe/K0HRa0wg==

config/initializers/devise.rb

@@ -16,6 +16,14 @@
   # by default. You can change it below and use your own secret key.
   # config.secret_key = '8d60f8b304bf1c82db63b6edf2e8b1a69568f1c55699e471df807605bbb8c9cfdf00836cccd21e2afb8d6625498459af3642129e3e872b9c95d9cbacaa993b1c'
 
+  config.jwt do |jwt|
+    jwt.secret = Rails.application.credentials.devise_jwt_secret_key!
+    jwt.dispatch_requests = [
+      ['POST', %r{^/api/login$}] # Thay đổi đường dẫn và phương thức HTTP tương ứng với API của bạn
+    ]
+    jwt.expiration_time = 1.day.to_i
+  end
+
   # ==> Controller configuration
   # Configure the parent class to the devise controllers.
   # config.parent_controller = 'DeviseController'