Allow decode options to specify required claims

[andyjdavis]

Hi, this is a potential solution for #244

When decoding, the caller can optionally supply an array of claims that must be present for the jwt to be valid. For example requiring the 'exp' claim to both be present and valid.

I wasnt sure whether to put the check within Verify.verify_claims and ultimately added Verify.verify_required_claims alongside. Let me know if you want any changes to how this is structured.

[sourcelevel-bot]

Hello, @andyjdavis! This is your first Pull Request that will be reviewed by SourceLevel, an automatic Code Review service. It will leave comments on this diff with potential issues and style violations found in the code as you push new commits. You can also see all the issues found on this Pull Request on its review page. Please check our documentation for more information.

[sourcelevel-bot]

JWT::MissingRequiredClaim has no descriptive comment

Read more about it here.

[andyjdavis]

None of these error classes have a descriptive comment so I'm not sure I should add one.

[sourcelevel-bot]

SourceLevel has finished reviewing this Pull Request and has found:

• 1 possible new issue (including those that may have been commented here).

See more details about this review.

[anakinj]

Looks good.

Would it make sense to have one "integration" test for this, testing the public JWT.decode interface for the required_claims parameter. For example some of the examples in the readme is also tested in readme_examples_spec.rb.

[andyjdavis]

Just letting you know that I have been on a short holiday but I'm back now. I will get back to this in the next 2-3 days :)

[andyjdavis]

@anakinj Ive pushed a commit with an integration test. Let me know if anything needs more work.

[anakinj]

Looks great. A few minor adjustments to get RuboCop happy and we are ready to merge. https://github.com/jwt/ruby-jwt/pull/430/checks?check_run_id=3077229521

[andyjdavis]

@anakinj I have fixed those rubocop warnings.