bcrypt4 4.0.2 → 4.1.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/.travis.yml +7 -9
  3. data/CHANGELOG +3 -0
  4. data/Gemfile.lock +20 -23
  5. data/README.md +5 -4
  6. data/Rakefile +1 -1
  7. data/bcrypt4.gemspec +8 -6
  8. metadata +16 -13
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: b7e2ef2aa50440cba6c84645825a7e81228860da
4
- data.tar.gz: b38c2eb8d1621b3fda32aafe8bde141274273a16
3
+ metadata.gz: ebc8bfadae926c9aeec878993336f55a2500fc25
4
+ data.tar.gz: 47fb56fd2256dcc7255a95d1b88b8505a7d0e9e5
5
5
  SHA512:
6
- metadata.gz: 0445b23872a9b8a23ead7994e8fad4c3e29dd90af0ec9d5650af83af58cc1e16d825319fc69ee33eaf1959320d9ac8f4b874cc100c828a7bee101b6aeb9130ea
7
- data.tar.gz: 394317a40d9594829a830af1720a7267705f60f652bb2a91c900caf3d711f5815ddd82ee231a81c379d001629e5ef062b4be59196773452020b7158965cdcb8c
6
+ metadata.gz: bea8f56d0f6287b0d919497838dbc6d91684eab695880ea455e35e1ebe8731fa053b8f92d80158ef879848c1a56687504715bbf22dbf1434ec1bf502f812b999
7
+ data.tar.gz: 90d11a9197f24fc53b2793957829351b31d6482f00f3d1fd0ee7e5534bf5111638ee28feea03d25134d779e3123af21a0a876be65ffd8fe01e4a23ecd9d38b99
data/.travis.yml CHANGED
@@ -3,8 +3,8 @@ before_install:
3
3
  # jruby-head does not have bundler.
4
4
  - which bundle || gem install bundler
5
5
  rvm:
6
- - 1.8.7
7
- - 1.9.2
6
+ #- 1.8.7 #no longer supported as min requirements are 1.9.3
7
+ #- 1.9.2 #no longer supported as min requirements are 1.9.3
8
8
  - 1.9.3
9
9
  - 2.0.0
10
10
  - 2.1.0
@@ -12,19 +12,17 @@ rvm:
12
12
  - 2.3.0
13
13
  - 2.4.1
14
14
  - ruby-head
15
- - jruby-18mode
15
+ #- jruby-18mode #no longer supported as min requirements are 1.9.3
16
16
  - jruby-19mode
17
17
  - jruby-head
18
18
  - rbx
19
- - ree
19
+ #- ree #no longer supported as min requirements are 1.9.3
20
20
  script: bundle exec rake
21
21
  matrix:
22
22
  allow_failures:
23
- - rvm: rbx
24
- #known issue with jruby 2y hashs
25
- - rvm: jruby-18mode
23
+ #not entirely sure what the error is with this, need to look in to it more, volunteers?
24
+ - rvm: rbx
25
+ #known issues with interop on 2y, jBCrypt has not been updated in years :(
26
26
  - rvm: jruby-19mode
27
27
  - rvm: jruby-head
28
- # known issue with json dependency
29
- - rvm: 2.4.1
30
28
  fast_finish: true
data/CHANGELOG CHANGED
@@ -91,3 +91,6 @@
91
91
 
92
92
  4.0.2 Jul 20 2017
93
93
  - Add note about forthcoming gem which sets min requirements of 1.9.3
94
+
95
+ 4.1.0 Jul 20 2017
96
+ - Drop support for < ruby 1.9.3, update dependencies
data/Gemfile.lock CHANGED
@@ -1,32 +1,29 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- bcrypt4 (4.0.2)
4
+ bcrypt4 (4.1.0)
5
5
 
6
6
  GEM
7
7
  remote: https://rubygems.org/
8
8
  specs:
9
- diff-lcs (1.2.5)
10
- json (1.8.3)
11
- json (1.8.3-java)
12
- rake (10.4.2)
13
- rake-compiler (0.9.5)
9
+ diff-lcs (1.3)
10
+ rake (12.0.0)
11
+ rake-compiler (1.0.4)
14
12
  rake
15
- rdoc (3.12.2)
16
- json (~> 1.4)
17
- rspec (3.3.0)
18
- rspec-core (~> 3.3.0)
19
- rspec-expectations (~> 3.3.0)
20
- rspec-mocks (~> 3.3.0)
21
- rspec-core (3.3.2)
22
- rspec-support (~> 3.3.0)
23
- rspec-expectations (3.3.1)
13
+ rdoc (5.1.0)
14
+ rspec (3.6.0)
15
+ rspec-core (~> 3.6.0)
16
+ rspec-expectations (~> 3.6.0)
17
+ rspec-mocks (~> 3.6.0)
18
+ rspec-core (3.6.0)
19
+ rspec-support (~> 3.6.0)
20
+ rspec-expectations (3.6.0)
24
21
  diff-lcs (>= 1.2.0, < 2.0)
25
- rspec-support (~> 3.3.0)
26
- rspec-mocks (3.3.2)
22
+ rspec-support (~> 3.6.0)
23
+ rspec-mocks (3.6.0)
27
24
  diff-lcs (>= 1.2.0, < 2.0)
28
- rspec-support (~> 3.3.0)
29
- rspec-support (3.3.0)
25
+ rspec-support (~> 3.6.0)
26
+ rspec-support (3.6.0)
30
27
 
31
28
  PLATFORMS
32
29
  java
@@ -36,9 +33,9 @@ PLATFORMS
36
33
 
37
34
  DEPENDENCIES
38
35
  bcrypt4!
39
- rake-compiler (~> 0.9.2)
40
- rdoc (~> 3.12)
41
- rspec (>= 3)
36
+ rake-compiler (~> 1.0.4)
37
+ rdoc (~> 5.1.0)
38
+ rspec (= 3.6)
42
39
 
43
40
  BUNDLED WITH
44
- 1.11.2
41
+ 1.13.6
data/README.md CHANGED
@@ -29,14 +29,15 @@ re-hash those passwords. This vulnerability only affected the JRuby gem.
29
29
 
30
30
  The bcrypt gem is available on the following ruby platforms:
31
31
 
32
- * JRuby
32
+ * JRuby 1.9.3 or greater
33
33
  ** NOTE: due to the reliance on JBCrypt for this library, there is a known issue with bcrypt '2y' format and this will not interoperate with other implementations for '2y' hashes (pull requests welcome).
34
- * RubyInstaller 1.8, 1.9, 2.0, 2.1, and 2.2 builds on win32
35
- * Any 1.8, 1.9, 2.0, 2.1, 2.2, or 2.3 Ruby on a BSD/OS X/Linux system with a compiler
34
+ * RubyInstaller 1.9.3, 2.0, 2.1, and 2.2 builds on win32
35
+ * 1.9.3 and greater or any 2.0, 2.1, 2.2, 2.3, or 2.4 Ruby on a BSD/OS X/Linux system with a compiler
36
+
36
37
 
37
38
  ## How to use `bcrypt()` in your Rails application
38
39
 
39
- *Note*: Rails versions >= 3 ship with `ActiveModel::SecurePassword` which uses bcrypt-ruby.
40
+ *Note*: Rails versions >= 3 ship with `ActiveModel::SecurePassword` which uses bcrypt-ruby. (not this version)
40
41
  `has_secure_password` [docs](http://api.rubyonrails.org/classes/ActiveModel/SecurePassword/ClassMethods.html#method-i-has_secure_password)
41
42
  implements a similar authentication strategy to the code below.
42
43
 
data/Rakefile CHANGED
@@ -9,7 +9,7 @@ require 'benchmark'
9
9
 
10
10
  CLEAN.include(
11
11
  "tmp",
12
- "lib/1.8",
12
+ #"lib/1.8",
13
13
  "lib/1.9",
14
14
  "lib/2.0",
15
15
  "lib/2.1",
data/bcrypt4.gemspec CHANGED
@@ -1,6 +1,6 @@
1
1
  Gem::Specification.new do |s|
2
2
  s.name = 'bcrypt4'
3
- s.version = '4.0.2'
3
+ s.version = '4.1.0'
4
4
 
5
5
  s.summary = "OpenBSD's bcrypt() password hashing algorithm."
6
6
  s.description = <<-EOF
@@ -12,9 +12,11 @@ Gem::Specification.new do |s|
12
12
  s.files = `git ls-files`.split("\n")
13
13
  s.require_path = 'lib'
14
14
 
15
- s.add_development_dependency 'rake-compiler', '~> 0.9.2'
16
- s.add_development_dependency 'rspec', '>= 3'
17
- s.add_development_dependency 'rdoc', '~> 3.12'
15
+ s.required_ruby_version = Gem::Requirement.new(">= 1.9.3".freeze)
16
+
17
+ s.add_development_dependency 'rake-compiler', '~> 1.0.4'
18
+ s.add_development_dependency 'rspec', '3.6'
19
+ s.add_development_dependency 'rdoc', '~> 5.1.0'
18
20
 
19
21
  s.has_rdoc = true
20
22
  s.rdoc_options += ['--title', 'bcrypt-ruby', '--line-numbers', '--inline-source', '--main', 'README.md']
@@ -29,8 +31,8 @@ Gem::Specification.new do |s|
29
31
 
30
32
  s.post_install_message = %q{
31
33
 
32
- This is the last version of the bcrypt4 library that will support any format of ruby lower than 1.9.3
33
- If you are still using 1.9.2 or older, do not update past 4.0.2
34
+ There is a known issue with JRuby and '2y' format bcrypt hashes.
35
+ Due to an unfixed issue in jBCrypt, these hashes are not the same as on other implementations.
34
36
 
35
37
  }
36
38
 
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: bcrypt4
3
3
  version: !ruby/object:Gem::Version
4
- version: 4.0.2
4
+ version: 4.1.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Coda Hale
@@ -16,42 +16,42 @@ dependencies:
16
16
  requirements:
17
17
  - - "~>"
18
18
  - !ruby/object:Gem::Version
19
- version: 0.9.2
19
+ version: 1.0.4
20
20
  type: :development
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - "~>"
25
25
  - !ruby/object:Gem::Version
26
- version: 0.9.2
26
+ version: 1.0.4
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: rspec
29
29
  requirement: !ruby/object:Gem::Requirement
30
30
  requirements:
31
- - - ">="
31
+ - - '='
32
32
  - !ruby/object:Gem::Version
33
- version: '3'
33
+ version: '3.6'
34
34
  type: :development
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
- - - ">="
38
+ - - '='
39
39
  - !ruby/object:Gem::Version
40
- version: '3'
40
+ version: '3.6'
41
41
  - !ruby/object:Gem::Dependency
42
42
  name: rdoc
43
43
  requirement: !ruby/object:Gem::Requirement
44
44
  requirements:
45
45
  - - "~>"
46
46
  - !ruby/object:Gem::Version
47
- version: '3.12'
47
+ version: 5.1.0
48
48
  type: :development
49
49
  prerelease: false
50
50
  version_requirements: !ruby/object:Gem::Requirement
51
51
  requirements:
52
52
  - - "~>"
53
53
  - !ruby/object:Gem::Version
54
- version: '3.12'
54
+ version: 5.1.0
55
55
  description: |2
56
56
  bcrypt() is a sophisticated and secure hash algorithm designed by The OpenBSD project
57
57
  for hashing passwords. The bcrypt Ruby gem provides a simple wrapper for safely handling
@@ -103,9 +103,12 @@ homepage: https://github.com/dissolve/bcrypt-ruby
103
103
  licenses:
104
104
  - MIT
105
105
  metadata: {}
106
- post_install_message: "\n\n This is the last version of the bcrypt4 library that
107
- will support any format of ruby lower than 1.9.3 \n If you are still using 1.9.2
108
- or older, do not update past 4.0.2\n\n"
106
+ post_install_message: |2+
107
+
108
+
109
+ There is a known issue with JRuby and '2y' format bcrypt hashes.
110
+ Due to an unfixed issue in jBCrypt, these hashes are not the same as on other implementations.
111
+
109
112
  rdoc_options:
110
113
  - "--title"
111
114
  - bcrypt-ruby
@@ -119,7 +122,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
119
122
  requirements:
120
123
  - - ">="
121
124
  - !ruby/object:Gem::Version
122
- version: '0'
125
+ version: 1.9.3
123
126
  required_rubygems_version: !ruby/object:Gem::Requirement
124
127
  requirements:
125
128
  - - ">="