clearance 2.6.1 → 2.7.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 136429332942ad6982566811de66424e672d356bdf19e912c8ee7dbe0ede8765
-  data.tar.gz: 1a8ec9af9ab0ec22be0a35745ee7e7880fbb9b6945cc83db1bf7b5e903d8bbe8
+  metadata.gz: f43e65fb98c36167f024899806818f771cabf396d1c1e147f4a21d1bdccb37dd
+  data.tar.gz: 42a88e8b50b98b5414b923fda5775e1998223791ffe2fcee00ca03163c7f9a50
 SHA512:
-  metadata.gz: 24fd97a070795a1343b7e4971f154765ce0c73e57daff27f0af288769dffb4a84900ea96dc935519da6f761274cbeb4b6dc66c5189eba7b504406d95b350dd0d
-  data.tar.gz: f576ab8afb5725e4919cbb259e692c552bf301420ec61234b86f4fca66d3d34d478bb8a88112d79b95350fe29e317eb93d736d9782eea22b43482a809de5bd16
+  metadata.gz: 680e0a4d6cebe218f7d8fffeadebcdcd9a160cb9a562a5cef3f876ad118556d4caa4338b40e3dd0135e3ee89e47a8034593d6131ee8eeb4ec7f47062b1aafe3a
+  data.tar.gz: cbc137fa5f3f722f28f99c1537909ed27b3b54e5df3aee37b4c7954e2b3e6c452a900f034239072196796171703eb27c3e859edc69b08bb35762bd260f0253a4

data/.github/workflows/dynamic-readme.yml

@@ -0,0 +1,19 @@
+name: update-templates
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - README.md
+  workflow_dispatch:
+
+jobs:
+  update-templates:
+    permissions:
+      contents: write
+      pull-requests: write
+      pages: write
+    uses: thoughtbot/templates/.github/workflows/dynamic-readme.yaml@main
+    secrets:
+      token: ${{ secrets.GITHUB_TOKEN }}

data/.github/workflows/tests.yml

@@ -16,13 +16,13 @@ jobs:
       fail-fast: false
       matrix:
         gemfile:
-          - "6.0"
           - "6.1"
           - "7.0"
+          - "7.1"
         ruby:
-          - "2.7.6"
           - "3.0.4"
           - "3.1.2"
+          - "3.2.2"
 
     env:
       BUNDLE_GEMFILE: gemfiles/rails_${{ matrix.gemfile }}.gemfile
@@ -38,7 +38,9 @@ jobs:
           bundler-cache: true
 
       - name: "Reset app database"
-        run: bundle exec rake dummy:db:reset
+        run: |
+          bundle exec rake dummy:db:drop
+          bundle exec rake dummy:db:setup
 
       - name: "Run tests"
         run: bundle exec rake

data/Appraisals

@@ -1,14 +1,12 @@
-appraise "rails_6.0" do
-  gem "railties", "~> 6.0"
-  gem "net-smtp", require: false # not bundled in ruby 3.1
-  gem "psych", "< 4" # psych 4 switched from unsafe load to safe load
-end
-
 appraise "rails_6.1" do
-  gem "railties", "~> 6.1"
+  gem "railties", "~> 6.1.0"
   gem "net-smtp", require: false # not bundled in ruby 3.1
 end
 
 appraise "rails_7.0" do
-  gem "railties", "~> 7.0"
+  gem "railties", "~> 7.0.0"
+end
+
+appraise "rails_7.1" do
+  gem "railties", "~> 7.1.0"
 end

data/CHANGELOG.md

@@ -5,7 +5,30 @@ complete changelog, see the git history for each version via the version links.
 
 ## [Unreleased]
 
-[Unreleased]: https://github.com/thoughtbot/clearance/compare/v2.6.1...main
+[Unreleased]: https://github.com/thoughtbot/clearance/compare/v2.7.0...main
+
+## [2.7.0] - April 19, 2024
+- Call dynamic README workflow (#1004)
+- Drop Ruby 2.76 and Rails 6.0 (#1005)
+- Update specs to match on translations (#1015)
+- Add configuration options for failure method redirects (#1002) Dan Sharp
+
+[2.7.0]: https://github.com/thoughtbot/clearance/compare/v2.6.2...v2.7.0
+
+## [2.6.2] - January 15, 2024
+- Fix typo in Clearance::Token docs (#1000) Gabe Berke-Williams
+- Add CODEOWNERS file (#994)
+- Add support for Rails 7.1 (#995) Samuel Giddens
+- Fix for setup & CI for Rails 7.1 support, update "MiniTest" to "Minitest",
+add handling for different versions of Rack::Utils.set_cookie_header!, remove
+deprecated active record handling in application.rb (#998)
+- Update argon2 to v2.2.0 (#989) Georg Leciejewski
+- Prefer literal hash creation notation (#984) Ivan Marynych
+- Add Ruby 3.2.2 to testing matrix (#991)
+- Replace mentions of NEWS.md with CHANGELOG.md (#982)
+- Fix broken thoughtbot logo on README.md
+
+[2.6.2]: https://github.com/thoughtbot/clearance/compare/v2.6.1...v2.6.2
 
 ## [2.6.1] - September 23, 2022
 - Document how to report security issues

data/CODEOWNERS

@@ -0,0 +1 @@
+*       @sej3506

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    clearance (2.6.1)
+    clearance (2.7.0)
       actionmailer (>= 5.0)
       activemodel (>= 5.0)
       activerecord (>= 5.0)
@@ -59,11 +59,11 @@ GEM
       bundler
       rake
       thor (>= 0.14.0)
-    argon2 (2.1.1)
-      ffi (~> 1.14)
+    argon2 (2.3.0)
+      ffi (~> 1.15)
       ffi-compiler (~> 1.0)
     ast (2.4.2)
-    bcrypt (3.1.18)
+    bcrypt (3.1.20)
     better_html (1.0.16)
       actionview (>= 4.0)
       activesupport (>= 4.0)
@@ -91,9 +91,9 @@ GEM
       activerecord (>= 5.a)
       database_cleaner-core (~> 2.0.0)
     database_cleaner-core (2.0.1)
+    date (3.3.4)
     diff-lcs (1.5.0)
-    digest (3.1.0)
-    email_validator (2.2.3)
+    email_validator (2.2.4)
       activemodel
     erb_lint (0.1.1)
       activesupport
@@ -109,39 +109,37 @@ GEM
     factory_bot_rails (6.2.0)
       factory_bot (~> 6.2.0)
       railties (>= 5.0.0)
-    ffi (1.15.5)
-    ffi-compiler (1.0.1)
-      ffi (>= 1.0.0)
+    ffi (1.16.3)
+    ffi-compiler (1.3.2)
+      ffi (>= 1.15.5)
       rake
-    globalid (1.0.0)
-      activesupport (>= 5.0)
+    globalid (1.2.1)
+      activesupport (>= 6.1)
     html_tokenizer (0.0.7)
     i18n (1.10.0)
       concurrent-ruby (~> 1.0)
     loofah (2.18.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
-    mail (2.7.1)
+    mail (2.8.1)
       mini_mime (>= 0.1.1)
+      net-imap
+      net-pop
+      net-smtp
     matrix (0.4.2)
     method_source (1.0.0)
     mini_mime (1.1.2)
     mini_portile2 (2.8.0)
     minitest (5.15.0)
-    net-imap (0.2.3)
-      digest
+    net-imap (0.4.10)
+      date
       net-protocol
-      strscan
-    net-pop (0.1.1)
-      digest
+    net-pop (0.1.2)
       net-protocol
+    net-protocol (0.2.2)
       timeout
-    net-protocol (0.1.3)
-      timeout
-    net-smtp (0.3.1)
-      digest
+    net-smtp (0.5.0)
       net-protocol
-      timeout
     nokogiri (1.13.6)
       mini_portile2 (~> 2.8.0)
       racc (~> 1.4)
@@ -173,7 +171,7 @@ GEM
       thor (~> 1.0)
       zeitwerk (~> 2.5)
     rainbow (3.1.1)
-    rake (13.0.6)
+    rake (13.1.0)
     regexp_parser (2.5.0)
     rexml (3.2.5)
     rspec-core (3.11.0)
@@ -209,10 +207,9 @@ GEM
       activesupport (>= 5.2.0)
     smart_properties (1.17.0)
     sqlite3 (1.4.2)
-    strscan (3.0.3)
     thor (1.2.1)
     timecop (0.9.5)
-    timeout (0.3.0)
+    timeout (0.4.1)
     tzinfo (2.0.4)
       concurrent-ruby (~> 1.0)
     unicode-display_width (2.1.0)

data/README.md

@@ -19,7 +19,7 @@ monitored by contributors.
 
 ## Getting Started
 
-Clearance is a Rails engine tested against Rails `>= 6.0` and Ruby `>= 2.7.0`.
+Clearance is a Rails engine tested against Rails `>= 6.1` and Ruby `>= 3.0.0`.
 
 You can add it to your Gemfile with:
 
@@ -59,6 +59,8 @@ Clearance.configure do |config|
   config.mailer_sender = "reply@example.com"
   config.password_strategy = Clearance::PasswordStrategies::BCrypt
   config.redirect_url = "/"
+  config.url_after_destroy = nil
+  config.url_after_denied_access_when_signed_out = nil
   config.rotate_csrf_on_sign_in = true
   config.same_site = nil
   config.secure_cookie = false
@@ -222,8 +224,16 @@ These "failure" methods are called for signed out sessions:
 - `application#url_after_denied_access_when_signed_out`
 - `sessions#url_after_destroy`
 
-They both default to `sign_in_url`. Override this method to change both of their
-behavior, or override them individually to just change one.
+You can override the appropriate method in your subclassed controller or you
+can set a configuration value for either of these URLs:
+
+- `Clearance.configuration.url_after_denied_access_when_signed_out`
+- `Clearance.configuration.url_after_destroy`
+
+Both configurations default to `nil` and if not set will default to
+`sign_in_url` in `sessions_controller.rb` and `authorization.rb` for backwards
+compatibility.
+
 
 ### Views
 
@@ -481,21 +491,10 @@ For security issues it's better to contact <security@thoughtbot.com> (See <https
 
 ## License
 
-Clearance is copyright © 2009-2019 thoughtbot. It is free software, and may be
+Clearance is copyright © 2009 thoughtbot. It is free software, and may be
 redistributed under the terms specified in the [`LICENSE`] file.
 
 [`LICENSE`]: /LICENSE
 
-## About thoughtbot
-
-![thoughtbot](http://presskit.thoughtbot.com/images/thoughtbot-logo-for-readmes.svg)
-
-Clearance is maintained and funded by thoughtbot, inc.
-The names and logos for thoughtbot are trademarks of thoughtbot, inc.
-
-We love open source software!
-See [our other projects][community] or
-[hire us][hire] to design, develop, and grow your product.
-
-[community]: https://thoughtbot.com/community?utm_source=github
-[hire]: https://thoughtbot.com/hire-us?utm_source=github
+<!-- START /templates/footer.md -->
+<!-- END /templates/footer.md -->

data/RELEASING.md

@@ -2,7 +2,7 @@
 
 1. Update version file accordingly.
 1. Run `bundle install` to update Gemfile.lock
-1. Update `NEWS.md` to reflect the changes since last release.
+1. Update `CHANGELOG.md` to reflect the changes since last release.
 1. Commit changes.
    There shouldn't be code changes,
    and thus CI doesn't need to run,
@@ -16,7 +16,7 @@
     gem build clearance.gemspec
     gem push clearance-*.gem
     ```
-1. Add a new GitHub release using the recent `NEWS.md` as the content. Sample
+1. Add a new GitHub release using the recent `CHANGELOG.md` as the content. Sample
    URL: https://github.com/thoughtbot/clearance/releases/new?tag=vVERSION
 1. Announce the new release,
    making sure to say "thank you" to the contributors

data/app/controllers/clearance/sessions_controller.rb

@@ -37,7 +37,7 @@ class Clearance::SessionsController < Clearance::BaseController
   end
 
   def url_after_destroy
-    sign_in_url
+    Clearance.configuration.url_after_destroy || sign_in_url
   end
 
   def url_for_signed_in_users

data/app/controllers/clearance/users_controller.rb

@@ -41,6 +41,6 @@ class Clearance::UsersController < Clearance::BaseController
   end
 
   def user_params
-    params[Clearance.configuration.user_parameter] || Hash.new
+    params[Clearance.configuration.user_parameter] || {}
   end
 end

data/bin/setup

@@ -12,4 +12,5 @@ if [ -z "$CI" ]; then
 fi
 
 # Set up database for the application that Clearance tests against
-RAILS_ENV=test bundle exec rake dummy:db:reset
+RAILS_ENV=test bundle exec rake dummy:db:drop
+RAILS_ENV=test bundle exec rake dummy:db:setup

data/gemfiles/rails_6.1.gemfile

@@ -16,7 +16,7 @@ gem "rspec-rails"
 gem "shoulda-matchers"
 gem "sqlite3"
 gem "timecop"
-gem "railties", "~> 6.1"
+gem "railties", "~> 6.1.0"
 gem "net-smtp", require: false
 
 gemspec path: "../"

data/gemfiles/rails_7.0.gemfile

@@ -16,6 +16,6 @@ gem "rspec-rails"
 gem "shoulda-matchers"
 gem "sqlite3"
 gem "timecop"
-gem "railties", "~> 7.0"
+gem "railties", "~> 7.0.0"
 
 gemspec path: "../"

data/gemfiles/{rails_5.1.gemfile → rails_7.1.gemfile}

@@ -16,6 +16,6 @@ gem "rspec-rails"
 gem "shoulda-matchers"
 gem "sqlite3"
 gem "timecop"
-gem "railties", "~> 5.1"
+gem "railties", "~> 7.1.0"
 
 gemspec path: "../"

data/lib/clearance/authentication.rb

@@ -66,7 +66,12 @@ module Clearance
       clearance_session.sign_in(user, &block)
 
       if signed_in? && Clearance.configuration.rotate_csrf_on_sign_in?
-        session.delete(:_csrf_token)
+        if request.respond_to?(:reset_csrf_token)
+          # Rails 7.1+
+          request.reset_csrf_token
+        else
+          request.session.try(:delete, :_csrf_token)
+        end
         form_authenticity_token
       end
     end

data/lib/clearance/authorization.rb

@@ -114,7 +114,7 @@ module Clearance
     #
     # @return [String]
     def url_after_denied_access_when_signed_out
-      sign_in_url
+      Clearance.configuration.url_after_denied_access_when_signed_out || sign_in_url
     end
   end
 end

data/lib/clearance/configuration.rb

@@ -68,6 +68,20 @@ module Clearance
     # @return [String]
     attr_accessor :redirect_url
 
+    # The default path Clearance will redirect signed out users to.
+    # Defaults to `nil` so that the controller will use `sign_in_url`
+    # for backwards compatibility. This can be set here instead of overriding
+    # the method via an overridden session controller.
+    # @return [String]
+    attr_accessor :url_after_destroy
+
+    # The default path Clearance will redirect non-users to when denied access.
+    # Defaults to `nil` so that the authorization module will use `sign_in_url`
+    # for backwards compatibility. This can be set here instead of overriding
+    # the method via an overridden authorization module.
+    # @return [String]
+    attr_accessor :url_after_denied_access_when_signed_out
+
     # Controls whether Clearance will rotate the CSRF token on sign in.
     # Defaults to `nil` which generates a warning. Will default to true in
     # Clearance 2.0.
@@ -140,6 +154,8 @@ module Clearance
       @same_site = nil
       @mailer_sender = 'reply@example.com'
       @redirect_url = '/'
+      @url_after_destroy = nil
+      @url_after_denied_access_when_signed_out = nil
       @rotate_csrf_on_sign_in = true
       @routes = true
       @secure_cookie = false

data/lib/clearance/session.rb

@@ -185,10 +185,8 @@ module Clearance
 
     # @api private
     def delete_cookie_options
-      Hash.new.tap do |options|
-        if configured_cookie_domain
-          options[:domain] = domain
-        end
+      {}.tap do |options|
+        options[:domain] = domain if configured_cookie_domain
       end
     end
 

data/lib/clearance/testing/deny_access_matcher.rb

@@ -90,7 +90,7 @@ module Clearance
             @failure_message_when_negated <<
               "Didn't expect to redirect to #{@url}."
             true
-          rescue MiniTest::Assertion, ::Test::Unit::AssertionFailedError
+          rescue ::Minitest::Assertion, ::Test::Unit::AssertionFailedError
             @failure_message << "Expected to redirect to #{@url} but did not."
             false
           end

data/lib/clearance/token.rb

@@ -1,8 +1,8 @@
 module Clearance
   # Random token used for password reset and remember tokens.
-  # Clearance tokens are also public API and are inteded to be used anywhere you
-  # need a random token to correspond to a given user (e.g. you added an email
-  # confirmation token).
+  # Clearance tokens are also public API and are intended to be used anywhere
+  # you need a random token to correspond to a given user (e.g. you added an
+  # email confirmation token).
   class Token
     # Generate a new random, 20 byte hex token.
     #

data/lib/clearance/version.rb

@@ -1,3 +1,3 @@
 module Clearance
-  VERSION = "2.6.1".freeze
+  VERSION = "2.7.0".freeze
 end

data/spec/clearance/session_spec.rb

@@ -472,7 +472,8 @@ describe Clearance::Session do
       Rack::Utils.set_cookie_header! header, key, value
     end
 
-    header['Set-Cookie']
+    cookie = header["set-cookie"] || header["Set-Cookie"]
+    cookie
   end
 
   def have_been_called

data/spec/configuration_spec.rb

@@ -109,6 +109,34 @@ describe Clearance::Configuration do
     end
   end
 
+  context "when no url_after_destroy value specified" do
+    it "returns nil as the default" do
+      expect(Clearance::Configuration.new.url_after_destroy).to be_nil
+    end
+  end
+
+  context "when url_after_destroy value is specified" do
+    it "returns the url_after_destroy value" do
+      Clearance.configure { |config| config.url_after_destroy = "/redirect" }
+
+      expect(Clearance.configuration.url_after_destroy).to eq "/redirect"
+    end
+  end
+
+  context "when no url_after_denied_access_when_signed_out value specified" do
+    it "returns nil as the default" do
+      expect(Clearance::Configuration.new.url_after_denied_access_when_signed_out).to be_nil
+    end
+  end
+
+  context "when url_after_denied_access_when_signed_out value is specified" do
+    it "returns the url_after_denied_access_when_signed_out value" do
+      Clearance.configure { |config| config.url_after_denied_access_when_signed_out = "/redirect" }
+
+      expect(Clearance.configuration.url_after_denied_access_when_signed_out).to eq "/redirect"
+    end
+  end
+
   context "when specifying sign in guards" do
     it "returns the stack with added guards" do
       DummyGuard = Class.new

data/spec/controllers/passwords_controller_spec.rb

@@ -33,7 +33,7 @@ describe Clearance::PasswordsController do
         }
 
         email = ActionMailer::Base.deliveries.last
-        expect(email.subject).to match(/change your password/i)
+        expect(email.subject).to match(translated_string("passwords.edit.title"))
       end
 
       it "re-renders the page when turbo is enabled" do
@@ -53,7 +53,7 @@ describe Clearance::PasswordsController do
           password: {},
         }
 
-        expect(flash.now[:alert]).to match(/email can't be blank/i)
+        expect(flash.now[:alert]).to match(translated_string("flashes.failure_when_missing_email"))
         expect(response).to render_template(:new)
       end
 
@@ -74,7 +74,7 @@ describe Clearance::PasswordsController do
           },
         }
 
-        expect(flash.now[:alert]).to match(/email can't be blank/i)
+        expect(flash.now[:alert]).to match(translated_string("flashes.failure_when_missing_email"))
         expect(response).to render_template(:new)
       end
 
@@ -164,7 +164,7 @@ describe Clearance::PasswordsController do
         }
 
         expect(response).to render_template(:new)
-        expect(flash.now[:alert]).to match(/double check the URL/i)
+        expect(flash.now[:alert]).to match(translated_string("flashes.failure_when_forbidden"))
       end
     end
 
@@ -178,7 +178,7 @@ describe Clearance::PasswordsController do
         }
 
         expect(response).to render_template(:new)
-        expect(flash.now[:alert]).to match(/double check the URL/i)
+        expect(flash.now[:alert]).to match(translated_string("flashes.failure_when_forbidden"))
       end
     end
 
@@ -278,7 +278,7 @@ describe Clearance::PasswordsController do
           new_password: "",
         )
 
-        expect(flash.now[:alert]).to match(/password can't be blank/i)
+        expect(flash.now[:alert]).to match(translated_string("flashes.failure_after_update"))
         expect(response).to have_http_status(:unprocessable_entity)
         expect(response).to render_template(:edit)
       end

data/spec/controllers/permissions_controller_spec.rb

@@ -58,7 +58,7 @@ describe PermissionsController do
     it "denies access to show and display a flash message" do
       get :show
 
-      expect(flash[:alert]).to match(/^Please sign in to continue/)
+      expect(flash[:alert]).to match(translated_string("flashes.failure_when_not_signed_in"))
     end
   end
 

data/spec/controllers/sessions_controller_spec.rb

@@ -41,7 +41,7 @@ describe Clearance::SessionsController do
         }
 
         expect(response).to render_template(:new)
-        expect(flash[:alert]).to match(/^Bad email or password/)
+        expect(flash[:alert]).to match(translated_string("flashes.failure_after_create"))
       end
     end
 
@@ -118,6 +118,12 @@ describe Clearance::SessionsController do
   end
 
   describe "on DELETE to #destroy" do
+    let(:configured_redirect_url) { nil }
+
+    before do
+      Clearance.configure { |config| config.url_after_destroy = configured_redirect_url }
+    end
+
     context "given a signed out user" do
       before do
         sign_out
@@ -126,6 +132,12 @@ describe Clearance::SessionsController do
 
       it { should redirect_to_url_after_destroy }
       it { expect(response).to have_http_status(:see_other) }
+
+      context "when the custom redirect URL is set" do
+        let(:configured_redirect_url) { "/redirected" }
+
+        it { should redirect_to(configured_redirect_url) }
+      end
     end
 
     context "with a cookie" do
@@ -145,6 +157,12 @@ describe Clearance::SessionsController do
       it "should unset the current user" do
         expect(request.env[:clearance].current_user).to be_nil
       end
+
+      context "when the custom redirect URL is set" do
+        let(:configured_redirect_url) { "/redirected" }
+
+        it { should redirect_to(configured_redirect_url) }
+      end
     end
   end
 end

data/spec/dummy/application.rb

@@ -19,12 +19,6 @@ module Dummy
     config.paths["log"] = "tmp/log/development.log"
     config.paths.add "config/routes.rb", with: "#{APP_ROOT}/config/routes.rb"
 
-    if Rails.version.match?(/^6.0/)
-      config.active_record.sqlite3.represent_boolean_as_integer = true
-    else
-      config.active_record.legacy_connection_handling = false
-    end
-
     def require_environment!
       initialize!
     end

data/spec/requests/cookie_options_spec.rb

@@ -40,7 +40,7 @@ describe "Cookie options" do
       it { should_have_one_remember_token }
 
       it "should have the httponly flag set" do
-        expect(remember_token_cookies.last).to match(/HttpOnly/)
+        expect(remember_token_cookies.last.downcase).to match(/httponly/)
       end
     end
   end

data/spec/support/cookies.rb

@@ -36,7 +36,7 @@ RSpec::Matchers.define :set_cookie do |name, expected_value, expected_expires_at
   end
 
   def extract_cookies
-    @cookie_headers = @headers['Set-Cookie'] || []
+    @cookie_headers = @headers["Set-Cookie"] || @headers["set-cookie"] || []
     @cookie_headers = [@cookie_headers] if @cookie_headers.respond_to?(:to_str)
   end
 

data/spec/support/html_escape_helper.rb

@@ -0,0 +1,13 @@
+module HTMLEscapeHelper
+  def translated_string(key)
+    if Rails.version >= "7.0"
+      ERB::Util.html_escape_once(I18n.t(key))
+    else
+      I18n.t(key)
+    end
+  end
+end
+
+RSpec.configure do |config|
+  config.include HTMLEscapeHelper
+end

data/spec/support/request_with_remember_token.rb

@@ -16,7 +16,8 @@ module RememberTokenHelpers
   end
 
   def remember_token_cookies
-    cookie_lines = headers["Set-Cookie"].lines.map(&:chomp)
+    set_cookie_header = headers["Set-Cookie"] || headers["set-cookie"]
+    cookie_lines = Array(set_cookie_header).join("\n").lines.map(&:chomp)
     cookie_lines.select { |name| name =~ /^remember_token/ }
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: clearance
 version: !ruby/object:Gem::Version
-  version: 2.6.1
+  version: 2.7.0
 platform: ruby
 authors:
 - Dan Croak
@@ -26,7 +26,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-09-23 00:00:00.000000000 Z
+date: 2024-04-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bcrypt
@@ -146,11 +146,13 @@ extra_rdoc_files:
 - README.md
 files:
 - ".erb-lint.yml"
+- ".github/workflows/dynamic-readme.yml"
 - ".github/workflows/tests.yml"
 - ".gitignore"
 - ".yardopts"
 - Appraisals
 - CHANGELOG.md
+- CODEOWNERS
 - CONTRIBUTING.md
 - Gemfile
 - Gemfile.lock
@@ -181,12 +183,9 @@ files:
 - config/routes.rb
 - db/migrate/20110111224543_create_clearance_users.rb
 - db/schema.rb
-- gemfiles/rails_5.0.gemfile
-- gemfiles/rails_5.1.gemfile
-- gemfiles/rails_5.2.gemfile
-- gemfiles/rails_6.0.gemfile
 - gemfiles/rails_6.1.gemfile
 - gemfiles/rails_7.0.gemfile
+- gemfiles/rails_7.1.gemfile
 - lib/clearance.rb
 - lib/clearance/authentication.rb
 - lib/clearance/authorization.rb
@@ -292,6 +291,7 @@ files:
 - spec/support/fake_model_with_password_strategy.rb
 - spec/support/fake_model_without_password_strategy.rb
 - spec/support/generator_spec_helpers.rb
+- spec/support/html_escape_helper.rb
 - spec/support/request_with_remember_token.rb
 - spec/views/view_helpers_spec.rb
 homepage: https://github.com/thoughtbot/clearance

data/gemfiles/rails_5.0.gemfile

@@ -1,21 +0,0 @@
-# This file was generated by Appraisal
-
-source "https://rubygems.org"
-
-gem "addressable"
-gem "ammeter"
-gem "appraisal"
-gem "capybara", ">= 2.6.2", "< 3.33.0"
-gem "database_cleaner"
-gem "erb_lint", require: false
-gem "factory_bot_rails"
-gem "nokogiri"
-gem "pry", require: false
-gem "rails-controller-testing"
-gem "rspec-rails", "~> 3.1"
-gem "shoulda-matchers"
-gem "sqlite3", "~> 1.3.13"
-gem "timecop"
-gem "railties", "~> 5.0"
-
-gemspec path: "../"

data/gemfiles/rails_5.2.gemfile

@@ -1,21 +0,0 @@
-# This file was generated by Appraisal
-
-source "https://rubygems.org"
-
-gem "addressable"
-gem "ammeter"
-gem "appraisal"
-gem "capybara"
-gem "database_cleaner"
-gem "erb_lint", require: false
-gem "factory_bot_rails"
-gem "nokogiri"
-gem "pry", require: false
-gem "rails-controller-testing"
-gem "rspec-rails"
-gem "shoulda-matchers"
-gem "sqlite3"
-gem "timecop"
-gem "railties", "~> 5.2"
-
-gemspec path: "../"

data/gemfiles/rails_6.0.gemfile

@@ -1,23 +0,0 @@
-# This file was generated by Appraisal
-
-source "https://rubygems.org"
-
-gem "addressable"
-gem "ammeter"
-gem "appraisal"
-gem "capybara"
-gem "database_cleaner"
-gem "erb_lint", require: false
-gem "factory_bot_rails"
-gem "nokogiri"
-gem "pry", require: false
-gem "rails-controller-testing"
-gem "rspec-rails"
-gem "shoulda-matchers"
-gem "sqlite3"
-gem "timecop"
-gem "railties", "~> 6.0"
-gem "net-smtp", require: false
-gem "psych", "< 4"
-
-gemspec path: "../"