auth0 5.17.0 → 5.19.0

data/.github/PULL_REQUEST_TEMPLATE.md

@@ -1,35 +0,0 @@
-### Changes
-
-Please describe both what is changing and why this is important. Include:
-
-- Endpoints added, deleted, deprecated, or changed
-- Classes and methods added, deleted, deprecated, or changed
-- Screenshots of new or changed UI, if applicable
-- A summary of usage if this is a new feature or change to a public API (this should also be added to relevant documentation once released)
-
-### References
-
-Please include relevant links supporting this change such as a:
-
-- support ticket
-- community post
-- StackOverflow post
-- support forum thread
-
-Please note any links that are not publicly accessible.
-
-### Testing
-
-Please describe how this can be tested by reviewers. Be specific about anything not tested and reasons why. If this library has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.
-
-* [ ] This change adds unit test coverage
-* [ ] This change adds integration test coverage
-* [ ] This change has been tested on the latest version of Ruby
-
-### Checklist
-
-* [ ] I have read the [Auth0 general contribution guidelines](https://github.com/auth0/open-source-template/blob/master/GENERAL-CONTRIBUTING.md)
-* [ ] I have read the [Auth0 Code of Conduct](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md)
-* [ ] All existing and new tests complete without errors
-* [ ] Rubocop passes on all added/modified files
-* [ ] All active GitHub checks have passed

data/.github/actions/get-prerelease/action.yml

@@ -1,30 +0,0 @@
-name: Return a boolean indicating if the version contains prerelease identifiers
-
-#
-# Returns a simple true/false boolean indicating whether the version indicates it's a prerelease or not.
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  version:
-    required: true
-
-outputs:
-  prerelease:
-    value: ${{ steps.get_prerelease.outputs.PRERELEASE }}
-
-runs:
-  using: composite
-
-  steps:
-    - id: get_prerelease
-      shell: bash
-      run: |
-        if [[ "${VERSION}" == *"beta"* || "${VERSION}" == *"alpha"* ]]; then
-          echo "PRERELEASE=true" >> $GITHUB_OUTPUT
-        else
-          echo "PRERELEASE=false" >> $GITHUB_OUTPUT
-        fi
-      env:
-        VERSION: ${{ inputs.version }}

data/.github/actions/get-release-notes/action.yml

@@ -1,42 +0,0 @@
-name: Return the release notes extracted from the PR body
-
-#
-# Returns the release notes from the content of a pull request linked to a release branch. It expects the branch name to be in the format release/vX.Y.Z, release/X.Y.Z, release/vX.Y.Z-beta.N. etc.
-#
-# TODO: Remove once the common repo is public.
-#
-inputs:
-  version:
-    required: true
-  repo_name:
-    required: false
-  repo_owner:
-    required: true
-  token:
-    required: true
-
-outputs:
-  release-notes:
-    value: ${{ steps.get_release_notes.outputs.RELEASE_NOTES }}
-
-runs:
-  using: composite
-
-  steps:
-    - uses: actions/github-script@v7
-      id: get_release_notes
-      with:
-        result-encoding: string
-        script: |
-          const { data: pulls } = await github.rest.pulls.list({
-            owner: process.env.REPO_OWNER,
-            repo: process.env.REPO_NAME,
-            state: 'all',
-            head: `${process.env.REPO_OWNER}:release/${process.env.VERSION}`,
-          });
-          core.setOutput('RELEASE_NOTES', pulls[0].body);
-      env:
-        GITHUB_TOKEN: ${{ inputs.token }}
-        REPO_OWNER: ${{ inputs.repo_owner }}
-        REPO_NAME: ${{ inputs.repo_name }}
-        VERSION: ${{ inputs.version }}

data/.github/actions/get-version/action.yml

@@ -1,21 +0,0 @@
-name: Return the version extracted from the branch name
-
-#
-# Returns the version from the .version file.
-#
-# TODO: Remove once the common repo is public.
-#
-
-outputs:
-  version:
-    value: ${{ steps.get_version.outputs.VERSION }}
-
-runs:
-  using: composite
-
-  steps:
-    - id: get_version
-      shell: bash
-      run: |
-        VERSION=$(head -1 .version)
-        echo "VERSION=${VERSION}" >> $GITHUB_OUTPUT

data/.github/actions/release-create/action.yml

@@ -1,47 +0,0 @@
-name: Create a GitHub release
-
-#
-# Creates a GitHub release with the given version.
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  token:
-    required: true
-  files:
-    required: false
-  name:
-    required: true
-  body:
-    required: true
-  tag:
-    required: true
-  commit:
-    required: true
-  draft:
-    default: false
-    required: false
-  prerelease:
-    default: false
-    required: false
-  fail_on_unmatched_files:
-    default: true
-    required: false
-
-runs:
-  using: composite
-
-  steps:
-    - uses: softprops/action-gh-release@de2c0eb89ae2a093876385947365aca7b0e5f844
-      with:
-        body: ${{ inputs.body }}
-        name: ${{ inputs.name }}
-        tag_name: ${{ inputs.tag }}
-        target_commitish: ${{ inputs.commit }}
-        draft: ${{ inputs.draft }}
-        prerelease: ${{ inputs.prerelease }}
-        fail_on_unmatched_files: ${{ inputs.fail_on_unmatched_files }}
-        files: ${{ inputs.files }}
-      env:
-        GITHUB_TOKEN: ${{ inputs.token }}

data/.github/actions/rubygems-publish/action.yml

@@ -1,30 +0,0 @@
-name: Publishes to RubyGems
-
-#
-# Publishes to RubyGems
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  rubygems-token:
-    required: true
-  ruby-version:
-    required: true
-
-runs:
-  using: composite
-
-  steps:
-    - name: Configure Ruby
-      uses: ./.github/actions/setup
-      with:
-        ruby: ${{ inputs.ruby-version }}
-
-    - name: Publish to RubyGems
-      shell: bash
-      run: |
-        gem build *.gemspec
-        gem push *.gem
-      env:
-        GEM_HOST_API_KEY: ${{ inputs.rubygems-token }}

data/.github/actions/setup/action.yml

@@ -1,32 +0,0 @@
-name: Build package
-description: Build the SDK package
-
-inputs:
-  ruby:
-    description: The Ruby version to use
-    required: false
-    default: 3.2
-  bundle-path:
-    description: The path to the bundle cache
-    required: false
-    default: vendor/bundle
-  bundler-cache:
-    description: Whether to use the bundler cache
-    required: false
-    default: true
-
-runs:
-  using: composite
-
-  steps:
-    - name: Configure Ruby
-      uses: ruby/setup-ruby@v1
-      with:
-        ruby-version: ${{ inputs.ruby }}
-        bundler-cache: ${{ inputs.bundle-cache }}
-
-    - name: Install dependencies
-      run: bundle check || bundle install
-      shell: bash
-      env:
-        BUNDLE_PATH: ${{ inputs.bundle-path }}

data/.github/actions/tag-exists/action.yml

@@ -1,36 +0,0 @@
-name: Return a boolean indicating if a tag already exists for the repository
-
-#
-# Returns a simple true/false boolean indicating whether the tag exists or not.
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  token:
-    required: true
-  tag:
-    required: true
-
-outputs:
-  exists:
-    description: 'Whether the tag exists or not'
-    value: ${{ steps.tag-exists.outputs.EXISTS }}
-
-runs:
-  using: composite
-
-  steps:
-    - id: tag-exists
-      shell: bash
-      run: |
-        GET_API_URL="https://api.github.com/repos/${GITHUB_REPOSITORY}/git/ref/tags/${TAG_NAME}"
-        http_status_code=$(curl -LI $GET_API_URL -o /dev/null -w '%{http_code}\n' -s -H "Authorization: token ${GITHUB_TOKEN}")
-        if [ "$http_status_code" -ne "404" ] ; then
-          echo "EXISTS=true" >> $GITHUB_OUTPUT
-        else
-          echo "EXISTS=false" >> $GITHUB_OUTPUT
-        fi
-      env:
-        TAG_NAME: ${{ inputs.tag }}
-        GITHUB_TOKEN: ${{ inputs.token }}

data/.github/dependabot.yml

@@ -1,13 +0,0 @@
-version: 2
-updates:
-  - package-ecosystem: "bundler"
-    directory: "/"
-    schedule:
-      interval: "daily"
-    ignore:
-      - dependency-name: "*"
-        update-types: ["version-update:semver-major"]
-  - package-ecosystem: 'github-actions'
-    directory: '/'
-    schedule:
-      interval: 'daily'

data/.github/stale.yml

@@ -1,20 +0,0 @@
-# Configuration for probot-stale - https://github.com/probot/stale
-
-# Number of days of inactivity before an Issue or Pull Request becomes stale
-daysUntilStale: 90
-
-# Number of days of inactivity before an Issue or Pull Request with the stale label is closed.
-daysUntilClose: 7
-
-# Issues or Pull Requests with these labels will never be considered stale. Set to `[]` to disable
-exemptLabels: []
-
-# Set to true to ignore issues with an assignee (defaults to false)
-exemptAssignees: true
-
-# Label to use when marking as stale
-staleLabel: closed:stale
-
-# Comment to post when marking as stale. Set to `false` to disable
-markComment: >
-  This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. If you have not received a response for our team (apologies for the delay) and this is still a blocker, please reply with additional information or just a ping. Thank you for your contribution! 🙇‍♂️

data/.github/workflows/codeql.yml

@@ -1,53 +0,0 @@
-name: CodeQL
-
-on:
-  merge_group:
-  pull_request:
-    types:
-      - opened
-      - synchronize
-  push:
-    branches:
-      - master
-  schedule:
-    - cron: "37 10 * * 2"
-
-permissions:
-  actions: read
-  contents: read
-  security-events: write
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
-  cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
-
-jobs:
-  analyze:
-    name: Check for Vulnerabilities
-    runs-on: ubuntu-latest
-
-    strategy:
-      fail-fast: false
-      matrix:
-        language: [ruby]
-
-    steps:
-      - if: github.actor == 'dependabot[bot]' || github.event_name == 'merge_group'
-        run: exit 0 # Skip unnecessary test runs for dependabot and merge queues. Artifically flag as successful, as this is a required check for branch protection.
-
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3
-        with:
-          languages: ${{ matrix.language }}
-          queries: +security-and-quality
-
-      - name: Autobuild
-        uses: github/codeql-action/autobuild@v3
-
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v3
-        with:
-          category: "/language:${{ matrix.language }}"

data/.github/workflows/matrix.json

@@ -1,3 +0,0 @@
-{
-  "include": [{ "ruby": "3.1" }, { "ruby": "3.2" }, { "ruby": "3.3" }]
-}

data/.github/workflows/release.yml

@@ -1,22 +0,0 @@
-name: Create Release
-
-on:
-  pull_request:
-    types:
-      - closed
-  workflow_dispatch:
-
-permissions:
-  contents: write
-
-### TODO: Replace instances of './.github/workflow/' w/ `auth0/dx-sdk-actions/` and append `@latest` after the common `dx-sdk-actions` repo is made public.
-### TODO: Also remove `get-prerelease`, `get-version`, `rubygems-publish`, `release-create`, `tag-create` and `tag-exists` actions from this repo's .github/actions folder and `ruby-release` from `./github/workflows` once the repo is public.
-
-jobs:
-  release:
-    uses: ./.github/workflows/ruby-release.yml
-    with:
-      ruby-version: 3.2
-    secrets:
-      github-token: ${{ secrets.GITHUB_TOKEN }}
-      rubygems-token: ${{ secrets.RUBYGEMS_AUTH_TOKEN }}

data/.github/workflows/ruby-release.yml

@@ -1,72 +0,0 @@
-name: Create Release
-
-on:
-  workflow_call:
-    inputs:
-      ruby-version:
-        required: true
-        type: string
-    secrets:
-      github-token:
-        required: true
-      rubygems-token:
-        required: true
-
-jobs:
-  release:
-    if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && startsWith(github.event.pull_request.head.ref, 'release/'))
-    runs-on: ubuntu-latest
-    environment: release
-
-    steps:
-      # Checkout the code
-      - uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-
-      # Get the version from the branch name
-      - id: get_version
-        uses: ./.github/actions/get-version
-
-      # Get the prerelease flag from the branch name
-      - id: get_prerelease
-        uses: ./.github/actions/get-prerelease
-        with:
-          version: ${{ steps.get_version.outputs.version }}
-
-      # Get the release notes
-      # This will expose the release notes as env.RELEASE_NOTES
-      - id: get_release_notes
-        uses: ./.github/actions/get-release-notes
-        with:
-          token: ${{ secrets.github-token }}
-          version: ${{ steps.get_version.outputs.version }}
-          repo_owner: ${{ github.repository_owner }}
-          repo_name: ${{ github.event.repository.name }}
-
-      # Check if the tag already exists
-      - id: tag_exists
-        uses: ./.github/actions/tag-exists
-        with:
-          tag: ${{ steps.get_version.outputs.version }}
-          token: ${{ secrets.github-token }}
-
-      # If the tag already exists, exit with an error
-      - if: steps.tag_exists.outputs.exists == 'true'
-        run: exit 1
-
-      # Publish the release to our package manager
-      - uses: ./.github/actions/rubygems-publish
-        with:
-          ruby-version: ${{ inputs.ruby-version }}
-          rubygems-token: ${{ secrets.rubygems-token }}
-
-      # Create a release for the tag
-      - uses: ./.github/actions/release-create
-        with:
-          token: ${{ secrets.github-token }}
-          name: ${{ steps.get_version.outputs.version }}
-          body: ${{ steps.get_release_notes.outputs.release-notes }}
-          tag: ${{ steps.get_version.outputs.version }}
-          commit: ${{ github.sha }}
-          prerelease: ${{ steps.get_prerelease.outputs.prerelease }}

data/.github/workflows/semgrep.yml

@@ -1,49 +0,0 @@
-name: Semgrep
-
-on:
-  merge_group:
-  pull_request_target:
-    types:
-      - opened
-      - synchronize
-  push:
-    branches:
-      - master
-  schedule:
-    - cron: '30 0 1,15 * *'
-
-permissions:
-  contents: read
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
-  cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
-
-jobs:
-  authorize:
-    name: Authorize
-    environment: ${{ github.actor != 'dependabot[bot]' && github.event_name == 'pull_request_target' && github.event.pull_request.head.repo.full_name != github.repository && 'external' || 'internal' }}
-    runs-on: ubuntu-latest
-    steps:
-      - run: true
-
-  run:
-    needs: authorize # Require approval before running on forked pull requests
-
-    name: Check for Vulnerabilities
-    runs-on: ubuntu-latest
-
-    container:
-      image: returntocorp/semgrep
-
-    steps:
-      - if: github.actor == 'dependabot[bot]' || github.event_name == 'merge_group'
-        run: exit 0 # Skip unnecessary test runs for dependabot and merge queues. Artifically flag as successful, as this is a required check for branch protection.
-
-      - uses: actions/checkout@v4
-        with:
-          ref: ${{ github.event.pull_request.head.sha || github.ref }}
-
-      - run: semgrep ci
-        env:
-          SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}

data/.github/workflows/snyk.yml

@@ -1,49 +0,0 @@
-name: Snyk
-
-on:
-  merge_group:
-  workflow_dispatch:
-  pull_request_target:
-    types:
-      - opened
-      - synchronize
-  push:
-    branches:
-      - master
-  schedule:
-    - cron: "30 0 1,15 * *"
-
-permissions:
-  contents: read
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
-  cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
-
-jobs:
-  authorize:
-    name: Authorize
-    environment: ${{ github.actor != 'dependabot[bot]' && github.event_name == 'pull_request_target' && github.event.pull_request.head.repo.full_name != github.repository && 'external' || 'internal' }}
-    runs-on: ubuntu-latest
-    steps:
-      - run: true
-
-  check:
-    needs: authorize
-
-    name: Check for Vulnerabilities
-    runs-on: ubuntu-latest
-
-    steps:
-      - if: github.actor == 'dependabot[bot]' || github.event_name == 'merge_group'
-        run: exit 0 # Skip unnecessary test runs for dependabot and merge queues. Artifically flag as successful, as this is a required check for branch protection.
-
-      - uses: actions/checkout@v4
-        with:
-          ref: ${{ github.event.pull_request.head.sha || github.ref }}
-
-      - run: npm install -g snyk
-
-      - run: snyk test
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

data/.github/workflows/test.yml

@@ -1,69 +0,0 @@
-name: Build and Test
-
-on:
-  merge_group:
-  workflow_dispatch:
-  pull_request:
-    branches:
-      - master
-  push:
-    branches:
-      - master
-
-permissions:
-  contents: read
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
-  cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
-
-env:
-  CACHE_KEY: "${{ github.ref }}-${{ github.run_id }}-${{ github.run_attempt }}"
-
-jobs:
-  configure:
-    name: Configure Build Matrix
-    runs-on: ubuntu-latest
-
-    outputs:
-      matrix: ${{ steps.set-matrix.outputs.matrix }}
-
-    steps:
-      - uses: actions/checkout@v4
-        with:
-          ref: ${{ github.event.pull_request.head.sha || github.ref }}
-
-      - id: set-matrix
-        run: echo "matrix=$(jq -c . < ./.github/workflows/matrix.json)" >> $GITHUB_OUTPUT
-
-  unit:
-    needs: configure
-
-    name: Run Unit Tests
-    runs-on: ubuntu-latest
-
-    strategy:
-      matrix: ${{ fromJson(needs.configure.outputs.matrix) }}
-
-    env:
-      DOMAIN: example.auth0.dev
-      CLIENT_ID: example-client
-      CLIENT_SECRET: example-secret
-      MASTER_JWT: example-jwt
-      BUNDLE_PATH: vendor/bundle
-
-    steps:
-      - name: Checkout code
-        uses: actions/checkout@v4
-
-      - name: Configure Ruby
-        uses: ./.github/actions/setup
-        with:
-          ruby: ${{ matrix.ruby }}
-
-      - name: Run tests
-        run: bundle exec rake test
-
-      - name: Upload coverage
-        if: matrix.ruby == '3.2' || matrix.ruby == '3.3'
-        uses: codecov/codecov-action@4fe8c5f003fae66aa5ebb77cfd3e7bfbbda0b6b0 # pin@3.1.5

data/.gitignore

@@ -1,18 +0,0 @@
-bin/
-!examples/ruby-on-rails-api/bin/
-vendor/
-doc/
-.DS_Store
-.ruby-version
-coverage
-*.gem
-.ruby-gemset
-*.swp
-*.swo
-spec/auth0.yml
-.env
-/.yardoc/checksums
-/.yardoc/complete
-/.yardoc/object_types
-/.yardoc/objects/root.dat
-/.yardoc/proxy_types

data/.rspec

@@ -1,3 +0,0 @@
---color
---format Fuubar
---color

data/.rubocop.yml

@@ -1,10 +0,0 @@
-inherit_from: .rubocop_todo.yml
-require:
-  - rubocop-rails
-Rails:
-  Enabled: true
-AllCops:
- Exclude:
-   - bin/**/*
-   - vendor/**/*
-   - auth0.gemspec

data/.rubocop_todo.yml

@@ -1,5 +0,0 @@
-Metrics/MethodLength:
-  Max: 15
-
-Metrics/LineLength:
-  Max: 121

data/.semgrepignore

@@ -1,6 +0,0 @@
-.bundle/
-.circleci/
-.devcontainer/
-.github/
-examples/
-spec/