auth0 5.18.1 → 5.19.0

data/.github/ISSUE_TEMPLATE/Feature Request.yml

@@ -1,53 +0,0 @@
-name: 🧩 Feature request
-description: Suggest an idea or a feature for this library
-labels: ["feature request"]
-
-body:
-  - type: checkboxes
-    id: checklist
-    attributes:
-      label: Checklist
-      options:
-        - label: I have looked into the [Readme](https://github.com/auth0/ruby-auth0#readme) and [Examples](https://github.com/auth0/ruby-auth0/blob/master/EXAMPLES.md), and have not found a suitable solution or answer.
-          required: true
-        - label: I have looked into the [API documentation](https://www.rubydoc.info/gems/auth0) and have not found a suitable solution or answer.
-          required: true
-        - label: I have searched the [issues](https://github.com/auth0/ruby-auth0/issues) and have not found a suitable solution or answer.
-          required: true
-        - label: I have searched the [Auth0 Community](https://community.auth0.com) forums and have not found a suitable solution or answer.
-          required: true
-        - label: I agree to the terms within the [Auth0 Code of Conduct](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md).
-          required: true
-
-  - type: textarea
-    id: description
-    attributes:
-      label: Describe the problem you'd like to have solved
-      description: A clear and concise description of what the problem is.
-      placeholder: I'm always frustrated when...
-    validations:
-      required: true
-
-  - type: textarea
-    id: ideal-solution
-    attributes:
-      label: Describe the ideal solution
-      description: A clear and concise description of what you want to happen.
-    validations:
-      required: true
-
-  - type: textarea
-    id: alternatives-and-workarounds
-    attributes:
-      label: Alternatives and current workarounds
-      description: A clear and concise description of any alternatives you've considered or any workarounds that are currently in place.
-    validations:
-      required: false
-
-  - type: textarea
-    id: additional-context
-    attributes:
-      label: Additional context
-      description: Add any other context or screenshots about the feature request here.
-    validations:
-      required: false

data/.github/ISSUE_TEMPLATE/config.yml

@@ -1,8 +0,0 @@
-blank_issues_enabled: false
-contact_links:
-  - name: Auth0 Community
-    url: https://community.auth0.com
-    about: Discuss this SDK in the Auth0 Community forums
-  - name: SDK API Documentation
-    url: https://www.rubydoc.info/gems/auth0
-    about: Read the API documentation for this SDK

data/.github/PULL_REQUEST_TEMPLATE.md

@@ -1,35 +0,0 @@
-### Changes
-
-Please describe both what is changing and why this is important. Include:
-
-- Endpoints added, deleted, deprecated, or changed
-- Classes and methods added, deleted, deprecated, or changed
-- Screenshots of new or changed UI, if applicable
-- A summary of usage if this is a new feature or change to a public API (this should also be added to relevant documentation once released)
-
-### References
-
-Please include relevant links supporting this change such as a:
-
-- support ticket
-- community post
-- StackOverflow post
-- support forum thread
-
-Please note any links that are not publicly accessible.
-
-### Testing
-
-Please describe how this can be tested by reviewers. Be specific about anything not tested and reasons why. If this library has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.
-
-* [ ] This change adds unit test coverage
-* [ ] This change adds integration test coverage
-* [ ] This change has been tested on the latest version of Ruby
-
-### Checklist
-
-* [ ] I have read the [Auth0 general contribution guidelines](https://github.com/auth0/open-source-template/blob/master/GENERAL-CONTRIBUTING.md)
-* [ ] I have read the [Auth0 Code of Conduct](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md)
-* [ ] All existing and new tests complete without errors
-* [ ] Rubocop passes on all added/modified files
-* [ ] All active GitHub checks have passed

data/.github/actions/get-prerelease/action.yml

@@ -1,30 +0,0 @@
-name: Return a boolean indicating if the version contains prerelease identifiers
-
-#
-# Returns a simple true/false boolean indicating whether the version indicates it's a prerelease or not.
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  version:
-    required: true
-
-outputs:
-  prerelease:
-    value: ${{ steps.get_prerelease.outputs.PRERELEASE }}
-
-runs:
-  using: composite
-
-  steps:
-    - id: get_prerelease
-      shell: bash
-      run: |
-        if [[ "${VERSION}" == *"beta"* || "${VERSION}" == *"alpha"* ]]; then
-          echo "PRERELEASE=true" >> $GITHUB_OUTPUT
-        else
-          echo "PRERELEASE=false" >> $GITHUB_OUTPUT
-        fi
-      env:
-        VERSION: ${{ inputs.version }}

data/.github/actions/get-release-notes/action.yml

@@ -1,42 +0,0 @@
-name: Return the release notes extracted from the PR body
-
-#
-# Returns the release notes from the content of a pull request linked to a release branch. It expects the branch name to be in the format release/vX.Y.Z, release/X.Y.Z, release/vX.Y.Z-beta.N. etc.
-#
-# TODO: Remove once the common repo is public.
-#
-inputs:
-  version:
-    required: true
-  repo_name:
-    required: false
-  repo_owner:
-    required: true
-  token:
-    required: true
-
-outputs:
-  release-notes:
-    value: ${{ steps.get_release_notes.outputs.RELEASE_NOTES }}
-
-runs:
-  using: composite
-
-  steps:
-    - uses: actions/github-script@v7
-      id: get_release_notes
-      with:
-        result-encoding: string
-        script: |
-          const { data: pulls } = await github.rest.pulls.list({
-            owner: process.env.REPO_OWNER,
-            repo: process.env.REPO_NAME,
-            state: 'all',
-            head: `${process.env.REPO_OWNER}:release/${process.env.VERSION}`,
-          });
-          core.setOutput('RELEASE_NOTES', pulls[0].body);
-      env:
-        GITHUB_TOKEN: ${{ inputs.token }}
-        REPO_OWNER: ${{ inputs.repo_owner }}
-        REPO_NAME: ${{ inputs.repo_name }}
-        VERSION: ${{ inputs.version }}

data/.github/actions/get-version/action.yml

@@ -1,21 +0,0 @@
-name: Return the version extracted from the branch name
-
-#
-# Returns the version from the .version file.
-#
-# TODO: Remove once the common repo is public.
-#
-
-outputs:
-  version:
-    value: ${{ steps.get_version.outputs.VERSION }}
-
-runs:
-  using: composite
-
-  steps:
-    - id: get_version
-      shell: bash
-      run: |
-        VERSION=$(head -1 .version)
-        echo "VERSION=${VERSION}" >> $GITHUB_OUTPUT

data/.github/actions/release-create/action.yml

@@ -1,47 +0,0 @@
-name: Create a GitHub release
-
-#
-# Creates a GitHub release with the given version.
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  token:
-    required: true
-  files:
-    required: false
-  name:
-    required: true
-  body:
-    required: true
-  tag:
-    required: true
-  commit:
-    required: true
-  draft:
-    default: false
-    required: false
-  prerelease:
-    default: false
-    required: false
-  fail_on_unmatched_files:
-    default: true
-    required: false
-
-runs:
-  using: composite
-
-  steps:
-    - uses: softprops/action-gh-release@de2c0eb89ae2a093876385947365aca7b0e5f844
-      with:
-        body: ${{ inputs.body }}
-        name: ${{ inputs.name }}
-        tag_name: ${{ inputs.tag }}
-        target_commitish: ${{ inputs.commit }}
-        draft: ${{ inputs.draft }}
-        prerelease: ${{ inputs.prerelease }}
-        fail_on_unmatched_files: ${{ inputs.fail_on_unmatched_files }}
-        files: ${{ inputs.files }}
-      env:
-        GITHUB_TOKEN: ${{ inputs.token }}

data/.github/actions/rl-scanner/action.yml

@@ -1,71 +0,0 @@
-name: 'Reversing Labs Scanner'
-description: 'Runs the Reversing Labs scanner on a specified artifact.'
-inputs:
-  artifact-path:
-    description: 'Path to the artifact to be scanned.'
-    required: true
-  version:
-    description: 'Version of the artifact.'
-    required: true
-
-runs:
-  using: 'composite'
-  steps:
-    - name: Set up Python
-      uses: actions/setup-python@v4
-      with:
-        python-version: '3.10'
-
-    - name: Install Python dependencies
-      shell: bash
-      run: |
-        pip install boto3 requests
-
-    - name: Configure AWS credentials
-      uses: aws-actions/configure-aws-credentials@v1
-      with:
-        role-to-assume: ${{ env.PRODSEC_TOOLS_ARN }}
-        aws-region: us-east-1
-        mask-aws-account-id: true
-
-    - name: Install RL Wrapper
-      shell: bash
-      run: |
-        pip install rl-wrapper>=1.0.0 --index-url "https://${{ env.PRODSEC_TOOLS_USER }}:${{ env.PRODSEC_TOOLS_TOKEN }}@a0us.jfrog.io/artifactory/api/pypi/python-local/simple"
-
-    - name: Run RL Scanner
-      shell: bash
-      env:
-        RLSECURE_LICENSE: ${{ env.RLSECURE_LICENSE }}
-        RLSECURE_SITE_KEY: ${{ env.RLSECURE_SITE_KEY }}
-        SIGNAL_HANDLER_TOKEN: ${{ env.SIGNAL_HANDLER_TOKEN }}
-        PYTHONUNBUFFERED: 1
-      run: |
-        if [ ! -f "${{ inputs.artifact-path }}" ]; then
-          echo "Artifact not found: ${{ inputs.artifact-path }}"
-          exit 1
-        fi
-
-        rl-wrapper \
-          --artifact "${{ inputs.artifact-path }}" \
-          --name "${{ github.event.repository.name }}" \
-          --version "${{ inputs.version }}" \
-          --repository "${{ github.repository }}" \
-          --commit "${{ github.sha }}" \
-          --build-env "github_actions" \
-          --suppress_output
-
-        # Check the outcome of the scanner
-        if [ $? -ne 0 ]; then
-          echo "RL Scanner failed."
-          echo "scan-status=failed" >> $GITHUB_ENV
-          exit 1
-        else
-          echo "RL Scanner passed."
-          echo "scan-status=success" >> $GITHUB_ENV
-        fi
-
-outputs:
-  scan-status:
-    description: 'The outcome of the scan process.'
-    value: ${{ env.scan-status }}

data/.github/actions/rubygems-publish/action.yml

@@ -1,30 +0,0 @@
-name: Publishes to RubyGems
-
-#
-# Publishes to RubyGems
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  rubygems-token:
-    required: true
-  ruby-version:
-    required: true
-
-runs:
-  using: composite
-
-  steps:
-    - name: Configure Ruby
-      uses: ./.github/actions/setup
-      with:
-        ruby: ${{ inputs.ruby-version }}
-
-    - name: Publish to RubyGems
-      shell: bash
-      run: |
-        gem build *.gemspec
-        gem push *.gem
-      env:
-        GEM_HOST_API_KEY: ${{ inputs.rubygems-token }}

data/.github/actions/setup/action.yml

@@ -1,32 +0,0 @@
-name: Build package
-description: Build the SDK package
-
-inputs:
-  ruby:
-    description: The Ruby version to use
-    required: false
-    default: 3.2
-  bundle-path:
-    description: The path to the bundle cache
-    required: false
-    default: vendor/bundle
-  bundler-cache:
-    description: Whether to use the bundler cache
-    required: false
-    default: true
-
-runs:
-  using: composite
-
-  steps:
-    - name: Configure Ruby
-      uses: ruby/setup-ruby@v1
-      with:
-        ruby-version: ${{ inputs.ruby }}
-        bundler-cache: ${{ inputs.bundle-cache }}
-
-    - name: Install dependencies
-      run: bundle check || bundle install
-      shell: bash
-      env:
-        BUNDLE_PATH: ${{ inputs.bundle-path }}

data/.github/actions/tag-exists/action.yml

@@ -1,36 +0,0 @@
-name: Return a boolean indicating if a tag already exists for the repository
-
-#
-# Returns a simple true/false boolean indicating whether the tag exists or not.
-#
-# TODO: Remove once the common repo is public.
-#
-
-inputs:
-  token:
-    required: true
-  tag:
-    required: true
-
-outputs:
-  exists:
-    description: 'Whether the tag exists or not'
-    value: ${{ steps.tag-exists.outputs.EXISTS }}
-
-runs:
-  using: composite
-
-  steps:
-    - id: tag-exists
-      shell: bash
-      run: |
-        GET_API_URL="https://api.github.com/repos/${GITHUB_REPOSITORY}/git/ref/tags/${TAG_NAME}"
-        http_status_code=$(curl -LI $GET_API_URL -o /dev/null -w '%{http_code}\n' -s -H "Authorization: token ${GITHUB_TOKEN}")
-        if [ "$http_status_code" -ne "404" ] ; then
-          echo "EXISTS=true" >> $GITHUB_OUTPUT
-        else
-          echo "EXISTS=false" >> $GITHUB_OUTPUT
-        fi
-      env:
-        TAG_NAME: ${{ inputs.tag }}
-        GITHUB_TOKEN: ${{ inputs.token }}

data/.github/dependabot.yml

@@ -1,13 +0,0 @@
-version: 2
-updates:
-  - package-ecosystem: "bundler"
-    directory: "/"
-    schedule:
-      interval: "daily"
-    ignore:
-      - dependency-name: "*"
-        update-types: ["version-update:semver-major"]
-  - package-ecosystem: 'github-actions'
-    directory: '/'
-    schedule:
-      interval: 'daily'

data/.github/stale.yml

@@ -1,20 +0,0 @@
-# Configuration for probot-stale - https://github.com/probot/stale
-
-# Number of days of inactivity before an Issue or Pull Request becomes stale
-daysUntilStale: 90
-
-# Number of days of inactivity before an Issue or Pull Request with the stale label is closed.
-daysUntilClose: 7
-
-# Issues or Pull Requests with these labels will never be considered stale. Set to `[]` to disable
-exemptLabels: []
-
-# Set to true to ignore issues with an assignee (defaults to false)
-exemptAssignees: true
-
-# Label to use when marking as stale
-staleLabel: closed:stale
-
-# Comment to post when marking as stale. Set to `false` to disable
-markComment: >
-  This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. If you have not received a response for our team (apologies for the delay) and this is still a blocker, please reply with additional information or just a ping. Thank you for your contribution! 🙇‍♂️

data/.github/workflows/codeql.yml

@@ -1,53 +0,0 @@
-name: CodeQL
-
-on:
-  merge_group:
-  pull_request:
-    types:
-      - opened
-      - synchronize
-  push:
-    branches:
-      - master
-  schedule:
-    - cron: "37 10 * * 2"
-
-permissions:
-  actions: read
-  contents: read
-  security-events: write
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
-  cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
-
-jobs:
-  analyze:
-    name: Check for Vulnerabilities
-    runs-on: ubuntu-latest
-
-    strategy:
-      fail-fast: false
-      matrix:
-        language: [ruby]
-
-    steps:
-      - if: github.actor == 'dependabot[bot]' || github.event_name == 'merge_group'
-        run: exit 0 # Skip unnecessary test runs for dependabot and merge queues. Artifically flag as successful, as this is a required check for branch protection.
-
-      - name: Checkout
-        uses: actions/checkout@v6
-
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@v4
-        with:
-          languages: ${{ matrix.language }}
-          queries: +security-and-quality
-
-      - name: Autobuild
-        uses: github/codeql-action/autobuild@v4
-
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v4
-        with:
-          category: "/language:${{ matrix.language }}"

data/.github/workflows/matrix.json

@@ -1,3 +0,0 @@
-{
-  "include": [{ "ruby": "3.1" }, { "ruby": "3.2" }, { "ruby": "3.3" }]
-}

data/.github/workflows/release.yml

@@ -1,36 +0,0 @@
-name: Create Release
-
-on:
-  pull_request:
-    types:
-      - closed
-  workflow_dispatch:
-
-permissions:
-  contents: write
-  id-token: write # This is required for requesting the JWT
-
-### TODO: Replace instances of './.github/workflow/' w/ `auth0/dx-sdk-actions/` and append `@latest` after the common `dx-sdk-actions` repo is made public.
-### TODO: Also remove `get-prerelease`, `get-version`, `rubygems-publish`, `release-create`, `tag-create` and `tag-exists` actions from this repo's .github/actions folder and `ruby-release` from `./github/workflows` once the repo is public.
-
-jobs:
-  rl-scanner:
-    uses: ./.github/workflows/rl-scanner.yml
-    with:
-      ruby-version: 3.2
-    secrets:
-      RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}
-      RLSECURE_SITE_KEY: ${{ secrets.RLSECURE_SITE_KEY }}
-      SIGNAL_HANDLER_TOKEN: ${{ secrets.SIGNAL_HANDLER_TOKEN }}
-      PRODSEC_TOOLS_USER: ${{ secrets.PRODSEC_TOOLS_USER }}
-      PRODSEC_TOOLS_TOKEN: ${{ secrets.PRODSEC_TOOLS_TOKEN }}
-      PRODSEC_TOOLS_ARN: ${{ secrets.PRODSEC_TOOLS_ARN }}
-
-  release:
-    uses: ./.github/workflows/ruby-release.yml
-    needs: rl-scanner
-    with:
-      ruby-version: 3.2
-    secrets:
-      github-token: ${{ secrets.GITHUB_TOKEN }}
-      rubygems-token: ${{ secrets.RUBYGEMS_AUTH_TOKEN }}

data/.github/workflows/rl-scanner.yml

@@ -1,65 +0,0 @@
-name: RL-Secure Workflow
-
-on:
-  workflow_call:
-    inputs:
-      ruby-version:
-        required: true
-        type: string
-    secrets:
-      RLSECURE_LICENSE:
-        required: true
-      RLSECURE_SITE_KEY:
-        required: true
-      SIGNAL_HANDLER_TOKEN:
-        required: true
-      PRODSEC_TOOLS_USER:
-        required: true
-      PRODSEC_TOOLS_TOKEN:
-        required: true
-      PRODSEC_TOOLS_ARN:
-        required: true
-
-jobs:
-  rl-scanner:
-    if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && startsWith(github.event.pull_request.head.ref, 'release/'))
-    runs-on: ubuntu-latest
-    outputs:
-      scan-status: ${{ steps.rl-scan-conclusion.outcome }}
-
-    steps:
-      - name: Checkout code
-        uses: actions/checkout@v6
-
-      - name: Configure Ruby
-        uses: ./.github/actions/setup
-        with:
-          ruby-version: ${{ inputs.ruby-version }}
-
-      - name: Build RubyGems
-        shell: bash
-        run: |
-          gem build *.gemspec
-          export GEM_FILE=$(ls *.gem)
-          echo "gem_file=$GEM_FILE" >> $GITHUB_ENV
-
-      - name: Get Artifact Version
-        id: get_version
-        uses: ./.github/actions/get-version
-
-      - name: Run RL Scanner
-        id: rl-scan-conclusion
-        uses: ./.github/actions/rl-scanner
-        with:
-          artifact-path: "$(pwd)/${{ env.gem_file }}"
-          version: "${{ steps.get_version.outputs.version }}"
-        env:
-          RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}
-          RLSECURE_SITE_KEY: ${{ secrets.RLSECURE_SITE_KEY }}
-          SIGNAL_HANDLER_TOKEN: ${{ secrets.SIGNAL_HANDLER_TOKEN }}
-          PRODSEC_TOOLS_USER: ${{ secrets.PRODSEC_TOOLS_USER }}
-          PRODSEC_TOOLS_TOKEN: ${{ secrets.PRODSEC_TOOLS_TOKEN }}
-          PRODSEC_TOOLS_ARN: ${{ secrets.PRODSEC_TOOLS_ARN }}
-
-      - name: Output scan result
-        run: echo "scan-status=${{ steps.rl-scan-conclusion.outcome }}" >> $GITHUB_ENV

data/.github/workflows/ruby-release.yml

@@ -1,72 +0,0 @@
-name: Create Release
-
-on:
-  workflow_call:
-    inputs:
-      ruby-version:
-        required: true
-        type: string
-    secrets:
-      github-token:
-        required: true
-      rubygems-token:
-        required: true
-
-jobs:
-  release:
-    if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && startsWith(github.event.pull_request.head.ref, 'release/'))
-    runs-on: ubuntu-latest
-    environment: release
-
-    steps:
-      # Checkout the code
-      - uses: actions/checkout@v6
-        with:
-          fetch-depth: 0
-
-      # Get the version from the branch name
-      - id: get_version
-        uses: ./.github/actions/get-version
-
-      # Get the prerelease flag from the branch name
-      - id: get_prerelease
-        uses: ./.github/actions/get-prerelease
-        with:
-          version: ${{ steps.get_version.outputs.version }}
-
-      # Get the release notes
-      # This will expose the release notes as env.RELEASE_NOTES
-      - id: get_release_notes
-        uses: ./.github/actions/get-release-notes
-        with:
-          token: ${{ secrets.github-token }}
-          version: ${{ steps.get_version.outputs.version }}
-          repo_owner: ${{ github.repository_owner }}
-          repo_name: ${{ github.event.repository.name }}
-
-      # Check if the tag already exists
-      - id: tag_exists
-        uses: ./.github/actions/tag-exists
-        with:
-          tag: ${{ steps.get_version.outputs.version }}
-          token: ${{ secrets.github-token }}
-
-      # If the tag already exists, exit with an error
-      - if: steps.tag_exists.outputs.exists == 'true'
-        run: exit 1
-
-      # Publish the release to our package manager
-      - uses: ./.github/actions/rubygems-publish
-        with:
-          ruby-version: ${{ inputs.ruby-version }}
-          rubygems-token: ${{ secrets.rubygems-token }}
-
-      # Create a release for the tag
-      - uses: ./.github/actions/release-create
-        with:
-          token: ${{ secrets.github-token }}
-          name: ${{ steps.get_version.outputs.version }}
-          body: ${{ steps.get_release_notes.outputs.release-notes }}
-          tag: ${{ steps.get_version.outputs.version }}
-          commit: ${{ github.sha }}
-          prerelease: ${{ steps.get_prerelease.outputs.prerelease }}