auth0 5.7.0 → 5.8.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 620d2e620738de16a0d93b03b0c0aa0bfb8ec4237f15bf5d162c265422c32a1c
-  data.tar.gz: 4793187b1546e9a5bf2432de5d208971d689934444e2dcb50d962380bb020ab5
+  metadata.gz: a86bd11253ba07c2bf5d7440e773dbffca4e9c36a606722934aa4e3d649a6461
+  data.tar.gz: 752e1e0239f3c0282922b7c93c36d79ad903c0f2c0ba98731b84c43a4ac028a5
 SHA512:
-  metadata.gz: 1940c62f9398063cbd3b24dceb8538ea7d8872091ec280f5580a4f880198767f3d7b0be0d512e1c63ee25ba380f3666eca1bbf823da0689fb6f17454c695daec
-  data.tar.gz: 8994e0f38d80460bc770567c2a62b53dfafe302fe631f9ddb2edd559cb5af33356f9442014bc710c635bbb4c0064e8997bdf6dbdf42a9192e125b87ba55f03ec
+  metadata.gz: bc9f15b05b0414d83adfa88ada8e815b9d0b50782fdf68c0d8f8ade75da731ab5e564b5a2af0d122cb026ed7443c68769b76bb70fe57585e8c559356a6bcda6b
+  data.tar.gz: 41893dfa7b2f9223a1e54be8f981512402e51755a0e1ed38f8cd8005f53c6305ac9caf6009b984cbea2c5bff8bc4ffbbc51bb17ce6a399c78016ffc164cc186d

data/CHANGELOG.md

@@ -1,5 +1,18 @@
 # Change Log
 
+## [v5.8.0](https://github.com/auth0/ruby-auth0/tree/v5.8.0) (2022-03-25)
+[Full Changelog](https://github.com/auth0/ruby-auth0/compare/v5.7.0...v5.8.0)
+
+**Added**
+- Add parameters for pager to device_credentials method [\#318](https://github.com/auth0/ruby-auth0/pull/318) ([shibayu36](https://github.com/shibayu36))
+
+**Fixed**
+- Cache RS256 JWKS by url to allow for multiple Auth0 tenants per runtime [\#325](https://github.com/auth0/ruby-auth0/pull/325) ([rmm5t](https://github.com/rmm5t))
+- Allow to pass nil to client_id arg of device_credentials [\#321](https://github.com/auth0/ruby-auth0/pull/321) ([shibayu36](https://github.com/shibayu36))
+
+**Security**
+- Bump nokogiri from 1.13.1 to 1.13.3 [\#320](https://github.com/auth0/ruby-auth0/pull/320) ([dependabot[bot]](https://github.com/apps/dependabot))
+
 ## [v5.7.0](https://github.com/auth0/ruby-auth0/tree/v5.7.0) (2022-02-17)
 [Full Changelog](https://github.com/auth0/ruby-auth0/compare/v5.6.1...v5.7.0)
 

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    auth0 (5.7.0)
+    auth0 (5.8.0)
       addressable (~> 2.8)
       jwt (~> 2.2)
       rest-client (~> 2.1)
@@ -11,20 +11,20 @@ PATH
 GEM
   remote: https://rubygems.org/
   specs:
-    actionpack (7.0.2.2)
-      actionview (= 7.0.2.2)
-      activesupport (= 7.0.2.2)
+    actionpack (7.0.2.3)
+      actionview (= 7.0.2.3)
+      activesupport (= 7.0.2.3)
       rack (~> 2.0, >= 2.2.0)
       rack-test (>= 0.6.3)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.2.0)
-    actionview (7.0.2.2)
-      activesupport (= 7.0.2.2)
+    actionview (7.0.2.3)
+      activesupport (= 7.0.2.3)
       builder (~> 3.1)
       erubi (~> 1.4)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.1, >= 1.2.0)
-    activesupport (7.0.2.2)
+    activesupport (7.0.2.3)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (>= 1.6, < 2)
       minitest (>= 5.1)
@@ -36,7 +36,7 @@ GEM
     codecov (0.6.0)
       simplecov (>= 0.15, < 0.22)
     coderay (1.1.3)
-    concurrent-ruby (1.1.9)
+    concurrent-ruby (1.1.10)
     coveralls (0.7.1)
       multi_json (~> 1.3)
       rest-client
@@ -55,8 +55,8 @@ GEM
       dotenv (= 2.7.6)
       railties (>= 3.2)
     erubi (1.10.0)
-    faker (2.19.0)
-      i18n (>= 1.6, < 2)
+    faker (2.20.0)
+      i18n (>= 1.8.11, < 2)
     ffi (1.15.5)
     formatador (1.1.0)
     fuubar (2.5.1)
@@ -87,7 +87,7 @@ GEM
     listen (3.7.1)
       rb-fsevent (~> 0.10, >= 0.10.3)
       rb-inotify (~> 0.9, >= 0.9.10)
-    loofah (2.14.0)
+    loofah (2.15.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
     lumberjack (1.2.8)
@@ -95,19 +95,19 @@ GEM
     mime-types (3.4.1)
       mime-types-data (~> 3.2015)
     mime-types-data (3.2022.0105)
-    mini_portile2 (2.7.1)
+    mini_portile2 (2.8.0)
     minitest (5.15.0)
     multi_json (1.15.0)
     nenv (0.3.0)
     netrc (0.11.0)
-    nokogiri (1.13.1)
-      mini_portile2 (~> 2.7.0)
+    nokogiri (1.13.3)
+      mini_portile2 (~> 2.8.0)
       racc (~> 1.4)
     notiffany (0.1.3)
       nenv (~> 0.1)
       shellany (~> 0.0)
-    parallel (1.21.0)
-    parser (3.1.0.0)
+    parallel (1.22.0)
+    parser (3.1.1.0)
       ast (~> 2.4.1)
     pry (0.12.2)
       coderay (~> 1.1.0)
@@ -124,9 +124,9 @@ GEM
       nokogiri (>= 1.6)
     rails-html-sanitizer (1.4.2)
       loofah (~> 2.3)
-    railties (7.0.2.2)
-      actionpack (= 7.0.2.2)
-      activesupport (= 7.0.2.2)
+    railties (7.0.2.3)
+      actionpack (= 7.0.2.3)
+      activesupport (= 7.0.2.3)
       method_source
       rake (>= 12.2)
       thor (~> 1.0)
@@ -157,18 +157,18 @@ GEM
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.11.0)
     rspec-support (3.11.0)
-    rubocop (1.25.1)
+    rubocop (1.26.1)
       parallel (~> 1.10)
       parser (>= 3.1.0.0)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 1.8, < 3.0)
       rexml
-      rubocop-ast (>= 1.15.1, < 2.0)
+      rubocop-ast (>= 1.16.0, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 1.4.0, < 3.0)
-    rubocop-ast (1.15.2)
-      parser (>= 3.0.1.1)
-    rubocop-rails (2.13.2)
+    rubocop-ast (1.16.0)
+      parser (>= 3.1.1.0)
+    rubocop-rails (2.14.2)
       activesupport (>= 4.2.0)
       rack (>= 1.1)
       rubocop (>= 1.7.0, < 2.0)
@@ -185,16 +185,16 @@ GEM
       tins (~> 1.0)
     terminal-notifier-guard (1.7.0)
     thor (1.2.1)
-    timecop (0.9.4)
+    timecop (0.9.5)
     tins (1.31.0)
       sync
     tzinfo (2.0.4)
       concurrent-ruby (~> 1.0)
     unf (0.1.4)
       unf_ext
-    unf_ext (0.0.8)
+    unf_ext (0.0.8.1)
     unicode-display_width (2.1.0)
-    vcr (6.0.0)
+    vcr (6.1.0)
     webmock (3.14.0)
       addressable (>= 2.8.0)
       crack (>= 0.3.2)

data/README.md

@@ -45,7 +45,7 @@ end
 ... and a Controller to handle that route:
 
 ```ruby
-# app/controllers/all_users_controllers.rb
+# app/controllers/all_users_controller.rb
 require 'auth0'
 
 class AllUsersController < ApplicationController

data/lib/auth0/api/authentication_endpoints.rb

@@ -152,7 +152,7 @@ module Auth0
       # @param password [string] User's new password. This is only available
       #   on legacy tenants with change password v1 flow enabled
       # @param connection_name [string] Database connection name
-      # @deprecated Use {#password_reset} instead.
+      # @deprecated Use {#reset_password} instead.
       def change_password(email, password, connection_name = UP_AUTH)
         raise Auth0::InvalidParameter, 'Must supply a valid email' if email.to_s.empty?
 

data/lib/auth0/api/v2/device_credentials.rb

@@ -13,18 +13,23 @@ module Auth0
         #   * :include_fields [boolean] True if the fields specified are to be included in the result, false otherwise.
         #   * :user_id [string] The user_id of the devices to retrieve.
         #   * :type [string] Type of credentials to retrieve. Must be 'public_key', 'refresh_token' or 'rotating_refresh_token'
+        #   * :page [integer] The page number. Zero based
+        #   * :per_page [integer] The amount of entries per page
+        #   * :include_totals [boolean] Return results inside an object that contains the total result count (true) or as a direct array of results (false, default).
         #
         # @return [json] Returns the list of existing devices for the specified client_id.
         # rubocop:disable Metrics/AbcSize
-        def device_credentials(client_id, options = {})
+        def device_credentials(client_id = nil, options = {})
           request_params = {
             fields: options.fetch(:fields, nil),
             include_fields: options.fetch(:include_fields, nil),
             user_id: options.fetch(:user_id, nil),
             client_id: client_id,
-            type: options.fetch(:type, nil)
+            type: options.fetch(:type, nil),
+            page: options.fetch(:page, nil),
+            per_page: options.fetch(:per_page, nil),
+            include_totals: options.fetch(:include_totals, nil)
           }
-          raise Auth0::InvalidParameter, 'Must supply a valid client_id' if client_id.to_s.empty?
           if !request_params[:type].nil? && !%w(public_key refresh_token rotating_refresh_token).include?(request_params[:type])
             raise Auth0::InvalidParameter, 'Type must be one of \'public_key\', \'refresh_token\', \'rotating_refresh_token\''
           end

data/lib/auth0/mixins/validation.rb

@@ -286,7 +286,7 @@ module Auth0
 
             # Clear the JWK set cache.
             def remove_jwks
-              @@cache.remove(:jwks)
+              @@cache.remove_by { true }
             end
           end
 
@@ -311,13 +311,13 @@ module Auth0
             result = fetch_jwks if force
 
             if result
-              @@cache.put(:jwks, result, lifetime: @lifetime)
+              @@cache.put(@jwks_url, result, lifetime: @lifetime)
               return result
             end
 
-            previous_value = @@cache.last(:jwks)
+            previous_value = @@cache.last(@jwks_url)
 
-            @@cache.get(:jwks, lifetime: @lifetime, dirty: true) do
+            @@cache.get(@jwks_url, lifetime: @lifetime, dirty: true) do
               new_value = fetch_jwks
 
               raise Auth0::InvalidIdToken, 'Could not fetch the JWK set' unless new_value || previous_value

data/lib/auth0/version.rb

@@ -1,4 +1,4 @@
 # current version of gem
 module Auth0
-  VERSION = '5.7.0'.freeze
+  VERSION = '5.8.0'.freeze
 end

data/spec/lib/auth0/api/v2/device_credentials_spec.rb

@@ -1,29 +1,58 @@
 require 'spec_helper'
 describe Auth0::Api::V2::DeviceCredentials do
-  attr_reader :client_id
-
   before :all do
     dummy_instance = DummyClass.new
     dummy_instance.extend(Auth0::Api::V2::DeviceCredentials)
     @instance = dummy_instance
-    @client_id = Faker::Lorem.word
   end
   context '.device_credentials' do
     it { expect(@instance).to respond_to(:device_credentials) }
     it { expect(@instance).to respond_to(:list_device_credentials) }
-    it 'is expected to send get request to /api/v2/device-credentials' do
+    it 'is expected to send get request with no parameters to /api/v2/device-credentials' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/device-credentials', {
+        fields: nil,
+        include_fields: nil,
+        user_id: nil,
+        client_id: nil,
+        type: nil,
+        page: nil,
+        per_page: nil,
+        include_totals: nil
+      })
+      expect { @instance.device_credentials }.not_to raise_error
+    end
+    it 'is expected to send get request with client_id to /api/v2/device-credentials' do
+      client_id = Faker::Lorem.word
       expect(@instance).to receive(:get).with(
         '/api/v2/device-credentials', {
         fields: nil,
         include_fields: nil,
         user_id: nil,
         client_id: client_id,
-        type: nil
+        type: nil,
+        page: nil,
+        per_page: nil,
+        include_totals: nil
       })
       expect { @instance.device_credentials(client_id) }.not_to raise_error
     end
+    it 'is expected to send get request with options to /api/v2/device-credentials' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/device-credentials', {
+        fields: 'name',
+        include_fields: true,
+        user_id: '1',
+        client_id: 'client_id',
+        type: 'rotating_refresh_token',
+        page: 1,
+        per_page: 10,
+        include_totals: true
+      })
+      expect { @instance.device_credentials('client_id', fields: 'name', include_fields: true, user_id: '1', type: 'rotating_refresh_token', page: 1, per_page: 10, include_totals: true) }.not_to raise_error
+    end
     it 'is expect to raise an error when type is not one of \'public_key\', \'refresh_token\', \'rotating_refresh_token\'' do
-      expect { @instance.device_credentials(client_id, type: 'invalid_type') }.to raise_error(
+      expect { @instance.device_credentials('client_id', type: 'invalid_type') }.to raise_error(
         'Type must be one of \'public_key\', \'refresh_token\', \'rotating_refresh_token\''
       )
     end

data/spec/lib/auth0/mixins/validation_spec.rb

@@ -6,6 +6,7 @@ RSA_PUB_KEY_JWK_2 = { 'kty': "RSA", 'use': 'sig', 'n': "uGbXWiK3dQTyCbX5xdE4yCuY
 JWKS_RESPONSE_1 = { 'keys': [RSA_PUB_KEY_JWK_1] }.freeze
 JWKS_RESPONSE_2 = { 'keys': [RSA_PUB_KEY_JWK_2] }.freeze
 JWKS_URL = 'https://tokens-test.auth0.com/.well-known/jwks.json'.freeze
+JWKS_URL_2 = 'https://tokens-test2.auth0.com/.well-known/jwks.json'.freeze
 HMAC_SHARED_SECRET = 'secret'.freeze
 
 LEEWAY = 60
@@ -459,6 +460,19 @@ describe Auth0::Algorithm::RS256 do
       expect(a_request(:get, JWKS_URL)).to have_been_made.once
     end
 
+    it 'is expected to fetch the jwks from multiple urls' do
+      stub_jwks(JWKS_RESPONSE_2, JWKS_URL_2)
+
+      instance1 = Auth0::Algorithm::RS256.jwks_url(JWKS_URL)
+      instance2 = Auth0::Algorithm::RS256.jwks_url(JWKS_URL_2)
+      instance1.jwks
+      instance2.jwks
+      instance1.jwks
+
+      expect(a_request(:get, JWKS_URL)).to have_been_made.once
+      expect(a_request(:get, JWKS_URL_2)).to have_been_made.once
+    end
+
     it 'is expected to forcibly fetch the jwks from the url' do
       instance = Auth0::Algorithm::RS256.jwks_url(JWKS_URL)
       instance.jwks
@@ -493,6 +507,6 @@ describe Auth0::Algorithm::RS256 do
 end
 # rubocop:enable Metrics/BlockLength
 
-def stub_jwks(stub = JWKS_RESPONSE_1)
-  stub_request(:get, JWKS_URL).to_return(body: stub.to_json)
+def stub_jwks(stub = JWKS_RESPONSE_1, url = JWKS_URL)
+  stub_request(:get, url).to_return(body: stub.to_json)
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: auth0
 version: !ruby/object:Gem::Version
-  version: 5.7.0
+  version: 5.8.0
 platform: ruby
 authors:
 - Auth0
@@ -11,7 +11,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-02-17 00:00:00.000000000 Z
+date: 2022-03-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client