action_auth 1.7.2 → 1.7.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 846bfde761f3244d5de683c23fcd43d49d68c97716c77f67e728a32d4109f940
-  data.tar.gz: 2469883be6f32b6a788dddf7fe5ac1711bc7617b21d1d7cba10e434ef52b000a
+  metadata.gz: 15d12d1b57a930d83e079185b0218a3715976bbbfef2e0d711523b2aae9bae85
+  data.tar.gz: 899692e5c6110136cde4a48b919d73287e3c93c04dfc8986ea89384ef05a4f74
 SHA512:
-  metadata.gz: 3be75f50cd128fe1d12cac42c54d668ed79c23043da74419264d0097f17ca8a774357e3aa31bcfaa3feb5d5a3cefe76d77067dd1d137a531a3c500c3c7ce2d04
-  data.tar.gz: 4d16ef0e1ca005bf3a5f10f4ff49c2fbe9ebaa135d48221e5ebd5f428cde5a2486b38cc68d48147e93b6b0595c3a408009af750a1f366af543cab867440ea553
+  metadata.gz: 2acc300b848aa222fc929ba6622db8b539067a7ed128faba00684c57c470fd67d66b893d3fb16b64e2300bad79c3d2935ddb3f9daf4673d5b0f8aa241cb2b289
+  data.tar.gz: cf88f1aacdf1fad6087e5669a1130754c856f6cbbc8638dfc17a59f0369bc5a2a62cb33b7d93a7fc04a3cc62e1f02d6747c4a316b88e8d40a88f1ef9bbebf68b

data/README.md

@@ -26,42 +26,11 @@ user experience akin to that offered by the well-regarded Devise gem.
 12. [License](#license)
 13. [Credits](#credits)
 
-## Breaking Changes
 
-With the release of v1.0.0, there are some breaking changes that have been introduced. The
-biggest change is that the `ActionAuth::User` model now uses the table name of `users` instead
-of `action_auth_users`. This was done to make it easier to integrate with your application
-without having to worry about the table name. If you have an existing application that is
-using ActionAuth, you will need to rename the table to `users` with a migration like
+## Minimum Requirements
 
-```ruby
-rename_table :action_auth_users, :users
-```
-
-Coming from `v0.3.0` to `v1.0.0`, you will need to create a migration to rename the table and foreign keys.
-
-```ruby
-class UpgradeActionAuth < ActiveRecord::Migration[7.1]
-  def change
-    rename_table :action_auth_users, :users
-
-    rename_table :action_auth_sessions, :sessions
-    rename_column :sessions, :action_auth_user_id, :user_id
-
-    rename_table :action_auth_webauthn_credentials, :webauthn_credentials
-    rename_column :webauthn_credentials, :action_auth_user_id, :user_id
-  end
-end
-```
-
-You will then need to undo the migrations where the foreign keys were added in cases where `foreign_key: true` was
-changed to `foreign_key: { to_table: 'action_auth_users' }`. You can do this for each table with a migration like:
-
-```ruby
-add_foreign_key :user_settings, :users, column: :user_id unless foreign_key_exists?(:user_settings, :users)
-add_foreign_key :profiles, :users, column: :user_id unless foreign_key_exists?(:profiles, :users)
-add_foreign_key :nfcs, :users, column: :user_id unless foreign_key_exists?(:nfcs, :users)
-```
+- Ruby 3.3.0 or later recommended
+- Rails 7.2.0 or later **required**
 
 ## Installation
 

data/app/controllers/action_auth/sessions_controller.rb

@@ -3,6 +3,12 @@ module ActionAuth
     before_action :set_current_request_details
     before_action :authenticate_user!, only: [:index, :destroy]
 
+    rate_limit to: 5,
+      within: 20.seconds,
+      only: :create,
+      name: "slow-throttle",
+      with: -> { redirect_to sign_in_path, alert: "Try again later." }
+
     def index
       @action_auth_wide = true
       @sessions = Current.user.sessions.order(created_at: :desc)

data/lib/action_auth/version.rb

@@ -1,3 +1,3 @@
 module ActionAuth
-  VERSION = "1.7.2"
+  VERSION = "1.7.3"
 end

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: action_auth
 version: !ruby/object:Gem::Version
-  version: 1.7.2
+  version: 1.7.3
 platform: ruby
 authors:
 - Dave Kimura
 bindir: bin
 cert_chain: []
-date: 2025-01-17 00:00:00.000000000 Z
+date: 2025-01-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails