authorize_action 1.0.0 → 1.1.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data.tar.gz.sig +1 -0
- data/CHANGES.md +4 -0
- data/README.md +18 -7
- data/Rakefile +15 -1
- data/authorize_action.gemspec +7 -3
- data/certs/jarmo.pem +21 -0
- data/checksum/.keep +0 -0
- metadata +32 -8
- metadata.gz.sig +1 -0
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: a968ff7c861dd07d4c584a18944a2dff098ad831
|
4
|
+
data.tar.gz: 81e4ee0ba13c6b8c320eb973951789c7cabd5a41
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 2118a88d9d44f4eeb8b9952d2c6e72f892415cd3004cf2b82ba616c58e7afeda6d29738534dc5095f16a8b56fc9f58aca426b7d47552d1f66a47e4c846851cc5
|
7
|
+
data.tar.gz: 5ac369a27f657698e97827915693e094b6dc1de104ba7178f688f175649b7255f6bfea98e90e6e58f5acf135e6b6c36d092692721f3ebcfe1438db1f781ea022
|
checksums.yaml.gz.sig
ADDED
Binary file
|
data.tar.gz.sig
ADDED
@@ -0,0 +1 @@
|
|
1
|
+
F����n���)���4�2�����̋�lFh�N!r��D���R�?�����pO��l*�ѐQ$�&��K�a�b�KҲ��3�oV0K2ə]�8/`K%���?c���:��w��m I`[�1IB���ʰ����;B[!���lp���_�����n7�B�;⧌�ȯ|ᬔ<$��0�pɨ1R0Z��Y��LMK�C�`^d�Y����#
|
data/CHANGES.md
CHANGED
data/README.md
CHANGED
@@ -59,21 +59,32 @@ compared to all the rest:
|
|
59
59
|
it's going to follow [Semantic Versioning](http://semver.org/),
|
60
60
|
which adds some additional guarantees to developers.
|
61
61
|
|
62
|
+
* Is cryptographically **signed**
|
63
|
+
* _authorize_action_ is one of these few gems which are cryptographically signed so you can be sure
|
64
|
+
that the code you're running is signed by me. In addition, I have a [calculated checksum](https://github.com/jarmo/authorize_action/tree/master/checksum) for each gem
|
65
|
+
version to be extra sure.
|
66
|
+
|
62
67
|
## Installation
|
63
68
|
|
64
|
-
|
69
|
+
_authorize_action_ is cryptographically signed. To be sure the gem you install hasn’t been tampered with:
|
70
|
+
|
71
|
+
* Add my public key (if you haven’t already) as a trusted certificate:
|
72
|
+
|
73
|
+
`$ gem cert --add <(curl -Ls https://raw.github.com/jarmo/authorize_action/master/certs/jarmo.pem)`
|
74
|
+
|
75
|
+
* Add this line to your application's Gemfile:
|
65
76
|
|
66
77
|
```ruby
|
67
78
|
gem 'authorize_action'
|
68
79
|
```
|
69
80
|
|
70
|
-
And then execute:
|
71
|
-
|
72
|
-
|
81
|
+
* And then execute:
|
82
|
+
|
83
|
+
`$ bundle install --trust-policy HighSecurity`
|
73
84
|
|
74
|
-
Or install it yourself as:
|
85
|
+
* Or install it yourself as:
|
75
86
|
|
76
|
-
|
87
|
+
`$ gem install authorize_action --trust-policy HighSecurity`
|
77
88
|
|
78
89
|
## Usage
|
79
90
|
|
@@ -256,7 +267,7 @@ Here's an example:
|
|
256
267
|
# views/posts/edit.html.erb
|
257
268
|
|
258
269
|
<% if current_user.admin? %>
|
259
|
-
<%= link_to "Delete", @post, method: :delete
|
270
|
+
<%= link_to "Delete", @post, method: :delete %>
|
260
271
|
<% end %>
|
261
272
|
```
|
262
273
|
|
data/Rakefile
CHANGED
@@ -4,4 +4,18 @@ require "rspec/core/rake_task"
|
|
4
4
|
RSpec::Core::RakeTask.new(:spec)
|
5
5
|
|
6
6
|
task default: :spec
|
7
|
-
|
7
|
+
|
8
|
+
task "release:guard_clean" do
|
9
|
+
calculate_checksum
|
10
|
+
end
|
11
|
+
|
12
|
+
def calculate_checksum
|
13
|
+
require "digest/sha2"
|
14
|
+
gem_spec = Gem::Specification.load(Dir.glob("*.gemspec")[0])
|
15
|
+
gem_file_name = "#{gem_spec.name}-#{gem_spec.version}.gem"
|
16
|
+
checksum = Digest::SHA512.new.hexdigest(File.read("pkg/#{gem_file_name}"))
|
17
|
+
FileUtils.mkdir_p("checksum")
|
18
|
+
checksum_file_path = "checksum/#{gem_file_name}.sha512"
|
19
|
+
File.open(checksum_file_path, "w" ) {|f| f.write(checksum) }
|
20
|
+
`git commit -m "Add checksum for #{gem_file_name}. #{checksum_file_path}"`
|
21
|
+
end
|
data/authorize_action.gemspec
CHANGED
@@ -4,13 +4,17 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
|
4
4
|
|
5
5
|
Gem::Specification.new do |spec|
|
6
6
|
spec.name = "authorize_action"
|
7
|
-
spec.version = "1.
|
7
|
+
spec.version = "1.1.0"
|
8
8
|
spec.authors = ["Jarmo Pertman"]
|
9
9
|
spec.email = ["jarmo.p@gmail.com"]
|
10
|
-
spec.
|
10
|
+
spec.description = %q{Really secure and simple authorization library for your Rails, Sinatra or whatever web framework, which doesn't suck.}
|
11
|
+
spec.summary = %q{Really secure and simple authorization library.}
|
11
12
|
spec.homepage = "https://github.com/jarmo/authorize_action"
|
12
13
|
spec.license = "MIT"
|
13
14
|
|
15
|
+
spec.cert_chain = ["certs/jarmo.pem"]
|
16
|
+
spec.signing_key = File.expand_path("~/.ssh/gem-private_key.pem") if $0 =~ /gem\z/
|
17
|
+
|
14
18
|
spec.files = `git ls-files -z`.split("\x0")
|
15
19
|
spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
|
16
20
|
spec.test_files = spec.files.grep(%r{^(test|spec|features)/})
|
@@ -18,5 +22,5 @@ Gem::Specification.new do |spec|
|
|
18
22
|
|
19
23
|
spec.add_development_dependency "bundler", "~> 1.7"
|
20
24
|
spec.add_development_dependency "rake", "~> 10.0"
|
21
|
-
spec.add_development_dependency "rspec", "~> 3.1
|
25
|
+
spec.add_development_dependency "rspec", "~> 3.1"
|
22
26
|
end
|
data/certs/jarmo.pem
ADDED
@@ -0,0 +1,21 @@
|
|
1
|
+
-----BEGIN CERTIFICATE-----
|
2
|
+
MIIDbDCCAlSgAwIBAgIBATANBgkqhkiG9w0BAQUFADA+MRAwDgYDVQQDDAdqYXJt
|
3
|
+
by5wMRUwEwYKCZImiZPyLGQBGRYFZ21haWwxEzARBgoJkiaJk/IsZAEZFgNjb20w
|
4
|
+
HhcNMTUwNzA4MTEyNTE5WhcNMTYwNzA3MTEyNTE5WjA+MRAwDgYDVQQDDAdqYXJt
|
5
|
+
by5wMRUwEwYKCZImiZPyLGQBGRYFZ21haWwxEzARBgoJkiaJk/IsZAEZFgNjb20w
|
6
|
+
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN725qGiA4YOxay5z6YpDk
|
7
|
+
APkZJJndeO1TPqqjCl6zWqNClym8Pn+Sng5cNnmGO/Ug/MOkB4tTY/xe8a5aKOWJ
|
8
|
+
lsWPQcVI0KwTc9CbgnIkCRAB8munJ32aRks92nhkt6dBlG+8KNU/ymeQAU3tlT5c
|
9
|
+
lGgH89xwLJ0hKkTYqUU5s46BAUiYERSWpvIwlluTH6hFO48DC3I7HY4bsdJgShO0
|
10
|
+
Jt9OzfXNRfrMHkNCjZbPDlrrLHUA23xJ+gY/gSrdl3SD8I+xnfPNKeJadOCYkYWv
|
11
|
+
WvAzR31PSQ4HAxRDtrYZTBWpcWfdX0K1vtPvISzjEPtLDg3GGfTAFwix6tl+V1NR
|
12
|
+
AgMBAAGjdTBzMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgSwMB0GA1UdDgQWBBQpovKb
|
13
|
+
ePGj5UadJGVBc3brVW6IOjAcBgNVHREEFTATgRFqYXJtby5wQGdtYWlsLmNvbTAc
|
14
|
+
BgNVHRIEFTATgRFqYXJtby5wQGdtYWlsLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEA
|
15
|
+
SJaAQsG8JwwHZ56dgT/ob94BJCD278vFB13ZRv6AxSLw6dtgXSKjkvh3d49Bq6ZS
|
16
|
+
FzjEtga69jMkRezfasbMOI8aUTW0GGblY5TGIwm5B/vrvnMpnEAvyYKs2MnnHGUA
|
17
|
+
kX7cRxBGEzzsV6Na6IWPG8ut/0E1U28BklPlYEFZtXY47mG+rPQ+URy8jJKhhYyM
|
18
|
+
vgtL23FIe4DqnUrJKQ6fkGh5FgtSwbtXG5yGoSWt/NjeU+Y/F53qDDo3jVEqEOrW
|
19
|
+
kNODmkT2c/u7RD1KhdbnJpupOH0YR/1HY2Mb0mX6OUbhtYST2dbHu0KcbVtT/VPB
|
20
|
+
qlb/zDlcR8hD6AbtoW7Ceg==
|
21
|
+
-----END CERTIFICATE-----
|
data/checksum/.keep
ADDED
File without changes
|
metadata
CHANGED
@@ -1,14 +1,36 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: authorize_action
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.1.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Jarmo Pertman
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
|
-
cert_chain:
|
11
|
-
|
10
|
+
cert_chain:
|
11
|
+
- |
|
12
|
+
-----BEGIN CERTIFICATE-----
|
13
|
+
MIIDbDCCAlSgAwIBAgIBATANBgkqhkiG9w0BAQUFADA+MRAwDgYDVQQDDAdqYXJt
|
14
|
+
by5wMRUwEwYKCZImiZPyLGQBGRYFZ21haWwxEzARBgoJkiaJk/IsZAEZFgNjb20w
|
15
|
+
HhcNMTUwNzA4MTEyNTE5WhcNMTYwNzA3MTEyNTE5WjA+MRAwDgYDVQQDDAdqYXJt
|
16
|
+
by5wMRUwEwYKCZImiZPyLGQBGRYFZ21haWwxEzARBgoJkiaJk/IsZAEZFgNjb20w
|
17
|
+
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN725qGiA4YOxay5z6YpDk
|
18
|
+
APkZJJndeO1TPqqjCl6zWqNClym8Pn+Sng5cNnmGO/Ug/MOkB4tTY/xe8a5aKOWJ
|
19
|
+
lsWPQcVI0KwTc9CbgnIkCRAB8munJ32aRks92nhkt6dBlG+8KNU/ymeQAU3tlT5c
|
20
|
+
lGgH89xwLJ0hKkTYqUU5s46BAUiYERSWpvIwlluTH6hFO48DC3I7HY4bsdJgShO0
|
21
|
+
Jt9OzfXNRfrMHkNCjZbPDlrrLHUA23xJ+gY/gSrdl3SD8I+xnfPNKeJadOCYkYWv
|
22
|
+
WvAzR31PSQ4HAxRDtrYZTBWpcWfdX0K1vtPvISzjEPtLDg3GGfTAFwix6tl+V1NR
|
23
|
+
AgMBAAGjdTBzMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgSwMB0GA1UdDgQWBBQpovKb
|
24
|
+
ePGj5UadJGVBc3brVW6IOjAcBgNVHREEFTATgRFqYXJtby5wQGdtYWlsLmNvbTAc
|
25
|
+
BgNVHRIEFTATgRFqYXJtby5wQGdtYWlsLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEA
|
26
|
+
SJaAQsG8JwwHZ56dgT/ob94BJCD278vFB13ZRv6AxSLw6dtgXSKjkvh3d49Bq6ZS
|
27
|
+
FzjEtga69jMkRezfasbMOI8aUTW0GGblY5TGIwm5B/vrvnMpnEAvyYKs2MnnHGUA
|
28
|
+
kX7cRxBGEzzsV6Na6IWPG8ut/0E1U28BklPlYEFZtXY47mG+rPQ+URy8jJKhhYyM
|
29
|
+
vgtL23FIe4DqnUrJKQ6fkGh5FgtSwbtXG5yGoSWt/NjeU+Y/F53qDDo3jVEqEOrW
|
30
|
+
kNODmkT2c/u7RD1KhdbnJpupOH0YR/1HY2Mb0mX6OUbhtYST2dbHu0KcbVtT/VPB
|
31
|
+
qlb/zDlcR8hD6AbtoW7Ceg==
|
32
|
+
-----END CERTIFICATE-----
|
33
|
+
date: 2015-07-08 00:00:00.000000000 Z
|
12
34
|
dependencies:
|
13
35
|
- !ruby/object:Gem::Dependency
|
14
36
|
name: bundler
|
@@ -44,15 +66,16 @@ dependencies:
|
|
44
66
|
requirements:
|
45
67
|
- - "~>"
|
46
68
|
- !ruby/object:Gem::Version
|
47
|
-
version: 3.1
|
69
|
+
version: '3.1'
|
48
70
|
type: :development
|
49
71
|
prerelease: false
|
50
72
|
version_requirements: !ruby/object:Gem::Requirement
|
51
73
|
requirements:
|
52
74
|
- - "~>"
|
53
75
|
- !ruby/object:Gem::Version
|
54
|
-
version: 3.1
|
55
|
-
description:
|
76
|
+
version: '3.1'
|
77
|
+
description: Really secure and simple authorization library for your Rails, Sinatra
|
78
|
+
or whatever web framework, which doesn't suck.
|
56
79
|
email:
|
57
80
|
- jarmo.p@gmail.com
|
58
81
|
executables: []
|
@@ -67,6 +90,8 @@ files:
|
|
67
90
|
- README.md
|
68
91
|
- Rakefile
|
69
92
|
- authorize_action.gemspec
|
93
|
+
- certs/jarmo.pem
|
94
|
+
- checksum/.keep
|
70
95
|
- lib/authorize_action.rb
|
71
96
|
- lib/authorize_action/rails.rb
|
72
97
|
- lib/authorize_action/sinatra.rb
|
@@ -97,8 +122,7 @@ rubyforge_project:
|
|
97
122
|
rubygems_version: 2.4.5
|
98
123
|
signing_key:
|
99
124
|
specification_version: 4
|
100
|
-
summary: Really secure and simple authorization library
|
101
|
-
whatever web framework, which doesn't suck.
|
125
|
+
summary: Really secure and simple authorization library.
|
102
126
|
test_files:
|
103
127
|
- spec/authorize_action/rails_spec.rb
|
104
128
|
- spec/authorize_action/sinatra_spec.rb
|
metadata.gz.sig
ADDED
@@ -0,0 +1 @@
|
|
1
|
+
����Il�z�1�$F�l�8�_���oĺ��!8<�H�����S3���˽_�Pg���:�teAGج���F� �0�UX����R�U~F� 1.�(ū7O#��D���������Dj�P��UM�B��G)�s&�$'�>;Y��Gm�"7����+�y���p[�e<ԧ/&k ��h�Y�*a�
|