clearance 1.16.1 → 1.16.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: c55f04f730c07adadee693dd2f707d07840e04ec
-  data.tar.gz: 87f6f73dd8258afb514ee7b0b2e6e7fde98d5c27
+SHA256:
+  metadata.gz: eee44dd7c0385116b9826c9bb14cfddf034a0a9aa46ee2535af2da1f6ee77094
+  data.tar.gz: cfe86952de1ec17473707638dfe70858790d0567c7ec5cf90fc486b2da6824b9
 SHA512:
-  metadata.gz: 2084452e4def60daed56e01ccd543532f0073148dd58f6bc23da861e296985addd1e66d4ab44e30e519435cf7eba618e028de77ed7772cf3db6f91976f006ad1
-  data.tar.gz: 0c54e951be1f20610ca47a1184c0af2b9eec61180872e19fa51d2e1180ec84209f0b783ef1d0da34934c9f5e348eefd7f3138b3e1ece07c65e1705b7617c54a4
+  metadata.gz: d1b61514574a5b9d164aad8bac7b1e33eb00aed80a53362fbfe84b8f8ae8279d4b902c212616571f1f6cd7d1e2133e26edd3b2ff2991d48edeedddac84644e93
+  data.tar.gz: 60b43d39aaa046e6962557d83a95199da5190df3114a958a8938e632530c6dd8500b41eb5d026f0210a8c24078e20792cc57e032ebaf08772a54c4750646788a

data/.travis.yml

@@ -4,35 +4,19 @@ language:
   - ruby
 
 rvm:
-  - 1.9.3
-  - 2.0.0
-  - 2.1.8
-  - 2.2.4
-  - 2.3.0
+  - 2.3.8
+  - 2.4.5
+  - 2.5.3
+  - 2.6.1
 
 gemfile:
-  - gemfiles/rails32.gemfile
-  - gemfiles/rails40.gemfile
-  - gemfiles/rails41.gemfile
-  - gemfiles/rails42.gemfile
-  - gemfiles/rails50.gemfile
-
-matrix:
-  exclude:
-    - rvm: 1.9.3
-      gemfile: gemfiles/rails50.gemfile
-    - rvm: 2.0.0
-      gemfile: gemfiles/rails50.gemfile
-    - rvm: 2.1.8
-      gemfile: gemfiles/rails50.gemfile
-    - rvm: 2.2.4
-      gemfile: gemfiles/rails32.gemfile
-    - rvm: 2.3.0
-      gemfile: gemfiles/rails32.gemfile
+  - gemfiles/rails_4.2.gemfile
+  - gemfiles/rails_5.0.gemfile
+  - gemfiles/rails_5.1.gemfile
+  - gemfiles/rails_5.2.gemfile
 
 before_install:
   - gem update --system
-  - gem update bundler
 
 install:
   - "bin/setup"
@@ -42,4 +26,9 @@ branches:
     - master
     - 2.0
 
+matrix:
+  allow_failures:
+    - gemfile: gemfiles/rails_4.2.gemfile
+      rvm: 2.6.1
+
 sudo: false

data/Appraisals

@@ -1,29 +1,15 @@
-if RUBY_VERSION < "2.2.0"
-  appraise 'rails32' do
-    gem 'rails', '~> 3.2.21'
-  end
-end
-
-appraise 'rails40' do
-  gem 'rails', '~> 4.0.13'
-  gem 'test-unit'
-  gem 'mime-types', '~> 2.99'
-end
-
-appraise 'rails41' do
-  gem 'rails', '~> 4.1.9'
-  gem 'mime-types', '~> 2.99'
-end
-
-appraise 'rails42' do
-  gem 'rails', '~> 4.2.0'
-  gem 'mime-types', '~> 2.99'
-end
-
-if RUBY_VERSION >= "2.2.0"
-  appraise "rails50" do
-    gem "rails", "~> 5.0.0.beta3"
-    gem "rails-controller-testing"
-    gem "rspec-rails", "~> 3.5.0.beta1"
+rails_versions = %w(
+  4.2
+  5.0
+  5.1
+  5.2
+)
+
+rails_versions.each do |version|
+  appraise "rails_#{version}" do
+    gem "railties", "~> #{version}.0"
+    if Gem::Version.new(version) >= Gem::Version.new("5.0")
+      gem "rails-controller-testing"
+    end
   end
 end

data/Gemfile

@@ -2,16 +2,16 @@ source 'https://rubygems.org'
 
 gemspec
 
-gem 'addressable', '~> 2.4.0'
+gem 'addressable', '~> 2.6.0'
 gem 'appraisal'
 gem 'ammeter'
 gem 'bundler', '~> 1.3'
 gem 'capybara', '>= 2.6.2'
 gem 'database_cleaner', '~> 1.0'
-gem 'factory_bot_rails', '~> 4.8'
-gem 'nokogiri', '~> 1.6.8'
+gem 'factory_bot_rails', '~> 5.0'
+gem 'nokogiri', '~> 1.10.0'
 gem 'rspec-rails', '~> 3.1'
-gem 'shoulda-matchers', '~> 2.8'
-gem 'sqlite3', '~> 1.3'
+gem 'shoulda-matchers', '~> 4.0'
+gem 'sqlite3', '~> 1.3.13'
 gem 'timecop', '~> 0.6'
 gem 'pry', require: false

data/Gemfile.lock

@@ -1,183 +1,165 @@
 PATH
   remote: .
   specs:
-    clearance (1.16.1)
+    clearance (1.16.2)
+      actionmailer (>= 3.1)
+      activemodel (>= 3.1)
+      activerecord (>= 3.1)
       bcrypt
       email_validator (~> 1.4)
-      rails (>= 3.1)
+      railties (>= 3.1)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    actionmailer (4.2.7.1)
-      actionpack (= 4.2.7.1)
-      actionview (= 4.2.7.1)
-      activejob (= 4.2.7.1)
+    actionmailer (5.2.2)
+      actionpack (= 5.2.2)
+      actionview (= 5.2.2)
+      activejob (= 5.2.2)
       mail (~> 2.5, >= 2.5.4)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-    actionpack (4.2.7.1)
-      actionview (= 4.2.7.1)
-      activesupport (= 4.2.7.1)
-      rack (~> 1.6)
-      rack-test (~> 0.6.2)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
+      rails-dom-testing (~> 2.0)
+    actionpack (5.2.2)
+      actionview (= 5.2.2)
+      activesupport (= 5.2.2)
+      rack (~> 2.0)
+      rack-test (>= 0.6.3)
+      rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (4.2.7.1)
-      activesupport (= 4.2.7.1)
+    actionview (5.2.2)
+      activesupport (= 5.2.2)
       builder (~> 3.1)
-      erubis (~> 2.7.0)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    activejob (4.2.7.1)
-      activesupport (= 4.2.7.1)
-      globalid (>= 0.3.0)
-    activemodel (4.2.7.1)
-      activesupport (= 4.2.7.1)
-      builder (~> 3.1)
-    activerecord (4.2.7.1)
-      activemodel (= 4.2.7.1)
-      activesupport (= 4.2.7.1)
-      arel (~> 6.0)
-    activesupport (4.2.7.1)
-      i18n (~> 0.7)
-      json (~> 1.7, >= 1.7.7)
+      erubi (~> 1.4)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.0, >= 1.0.3)
+    activejob (5.2.2)
+      activesupport (= 5.2.2)
+      globalid (>= 0.3.6)
+    activemodel (5.2.2)
+      activesupport (= 5.2.2)
+    activerecord (5.2.2)
+      activemodel (= 5.2.2)
+      activesupport (= 5.2.2)
+      arel (>= 9.0)
+    activesupport (5.2.2)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 0.7, < 2)
       minitest (~> 5.1)
-      thread_safe (~> 0.3, >= 0.3.4)
       tzinfo (~> 1.1)
-    addressable (2.4.0)
-    ammeter (1.1.3)
+    addressable (2.6.0)
+      public_suffix (>= 2.0.2, < 4.0)
+    ammeter (1.1.4)
       activesupport (>= 3.0)
       railties (>= 3.0)
       rspec-rails (>= 2.2)
-    appraisal (2.1.0)
+    appraisal (2.2.0)
       bundler
       rake
       thor (>= 0.14.0)
-    arel (6.0.4)
-    bcrypt (3.1.11)
+    arel (9.0.0)
+    bcrypt (3.1.12)
     builder (3.2.3)
-    capybara (2.7.1)
+    capybara (3.13.2)
       addressable
-      mime-types (>= 1.16)
-      nokogiri (>= 1.3.3)
-      rack (>= 1.0.0)
-      rack-test (>= 0.5.4)
-      xpath (~> 2.0)
-    coderay (1.1.1)
-    concurrent-ruby (1.0.5)
-    database_cleaner (1.5.3)
-    diff-lcs (1.2.5)
+      mini_mime (>= 0.1.3)
+      nokogiri (~> 1.8)
+      rack (>= 1.6.0)
+      rack-test (>= 0.6.3)
+      regexp_parser (~> 1.2)
+      xpath (~> 3.2)
+    coderay (1.1.2)
+    concurrent-ruby (1.1.4)
+    crass (1.0.4)
+    database_cleaner (1.7.0)
+    diff-lcs (1.3)
     email_validator (1.6.0)
       activemodel
-    erubis (2.7.0)
-    factory_bot (4.8.2)
-      activesupport (>= 3.0.0)
-    factory_bot_rails (4.8.2)
-      factory_bot (~> 4.8.2)
-      railties (>= 3.0.0)
-    globalid (0.4.1)
+    erubi (1.8.0)
+    factory_bot (5.0.2)
+      activesupport (>= 4.2.0)
+    factory_bot_rails (5.0.1)
+      factory_bot (~> 5.0.0)
+      railties (>= 4.2.0)
+    globalid (0.4.2)
       activesupport (>= 4.2.0)
-    i18n (0.7.0)
-    json (1.8.6)
-    loofah (2.0.3)
+    i18n (1.5.3)
+      concurrent-ruby (~> 1.0)
+    loofah (2.2.3)
+      crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
-    mail (2.7.0)
+    mail (2.7.1)
       mini_mime (>= 0.1.1)
-    method_source (0.8.2)
-    mime-types (3.1)
-      mime-types-data (~> 3.2015)
-    mime-types-data (3.2016.0521)
-    mini_mime (0.1.4)
-    mini_portile2 (2.1.0)
-    minitest (5.10.1)
-    nokogiri (1.6.8.1)
-      mini_portile2 (~> 2.1.0)
-    pry (0.10.3)
+    method_source (0.9.2)
+    mini_mime (1.0.1)
+    mini_portile2 (2.4.0)
+    minitest (5.11.3)
+    nokogiri (1.10.1)
+      mini_portile2 (~> 2.4.0)
+    pry (0.12.2)
       coderay (~> 1.1.0)
-      method_source (~> 0.8.1)
-      slop (~> 3.4)
-    rack (1.6.5)
-    rack-test (0.6.3)
-      rack (>= 1.0)
-    rails (4.2.7.1)
-      actionmailer (= 4.2.7.1)
-      actionpack (= 4.2.7.1)
-      actionview (= 4.2.7.1)
-      activejob (= 4.2.7.1)
-      activemodel (= 4.2.7.1)
-      activerecord (= 4.2.7.1)
-      activesupport (= 4.2.7.1)
-      bundler (>= 1.3.0, < 2.0)
-      railties (= 4.2.7.1)
-      sprockets-rails
-    rails-deprecated_sanitizer (1.0.3)
-      activesupport (>= 4.2.0.alpha)
-    rails-dom-testing (1.0.8)
-      activesupport (>= 4.2.0.beta, < 5.0)
-      nokogiri (~> 1.6)
-      rails-deprecated_sanitizer (>= 1.0.1)
-    rails-html-sanitizer (1.0.3)
-      loofah (~> 2.0)
-    railties (4.2.7.1)
-      actionpack (= 4.2.7.1)
-      activesupport (= 4.2.7.1)
+      method_source (~> 0.9.0)
+    public_suffix (3.0.3)
+    rack (2.0.6)
+    rack-test (1.1.0)
+      rack (>= 1.0, < 3)
+    rails-dom-testing (2.0.3)
+      activesupport (>= 4.2.0)
+      nokogiri (>= 1.6)
+    rails-html-sanitizer (1.0.4)
+      loofah (~> 2.2, >= 2.2.2)
+    railties (5.2.2)
+      actionpack (= 5.2.2)
+      activesupport (= 5.2.2)
+      method_source
       rake (>= 0.8.7)
-      thor (>= 0.18.1, < 2.0)
-    rake (12.0.0)
-    rspec-core (3.4.4)
-      rspec-support (~> 3.4.0)
-    rspec-expectations (3.4.0)
+      thor (>= 0.19.0, < 2.0)
+    rake (12.3.2)
+    regexp_parser (1.3.0)
+    rspec-core (3.8.0)
+      rspec-support (~> 3.8.0)
+    rspec-expectations (3.8.2)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.4.0)
-    rspec-mocks (3.4.1)
+      rspec-support (~> 3.8.0)
+    rspec-mocks (3.8.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.4.0)
-    rspec-rails (3.4.2)
-      actionpack (>= 3.0, < 4.3)
-      activesupport (>= 3.0, < 4.3)
-      railties (>= 3.0, < 4.3)
-      rspec-core (~> 3.4.0)
-      rspec-expectations (~> 3.4.0)
-      rspec-mocks (~> 3.4.0)
-      rspec-support (~> 3.4.0)
-    rspec-support (3.4.1)
-    shoulda-matchers (2.8.0)
-      activesupport (>= 3.0.0)
-    slop (3.6.0)
-    sprockets (3.7.1)
-      concurrent-ruby (~> 1.0)
-      rack (> 1, < 3)
-    sprockets-rails (3.2.1)
-      actionpack (>= 4.0)
-      activesupport (>= 4.0)
-      sprockets (>= 3.0.0)
-    sqlite3 (1.3.11)
-    thor (0.19.4)
-    thread_safe (0.3.5)
-    timecop (0.8.1)
-    tzinfo (1.2.2)
+      rspec-support (~> 3.8.0)
+    rspec-rails (3.8.2)
+      actionpack (>= 3.0)
+      activesupport (>= 3.0)
+      railties (>= 3.0)
+      rspec-core (~> 3.8.0)
+      rspec-expectations (~> 3.8.0)
+      rspec-mocks (~> 3.8.0)
+      rspec-support (~> 3.8.0)
+    rspec-support (3.8.0)
+    shoulda-matchers (4.0.0)
+      activesupport (>= 4.2.0)
+    sqlite3 (1.3.13)
+    thor (0.20.3)
+    thread_safe (0.3.6)
+    timecop (0.9.1)
+    tzinfo (1.2.5)
       thread_safe (~> 0.1)
-    xpath (2.0.0)
-      nokogiri (~> 1.3)
+    xpath (3.2.0)
+      nokogiri (~> 1.8)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  addressable (~> 2.4.0)
+  addressable (~> 2.6.0)
   ammeter
   appraisal
   bundler (~> 1.3)
   capybara (>= 2.6.2)
   clearance!
   database_cleaner (~> 1.0)
-  factory_bot_rails (~> 4.8)
-  nokogiri (~> 1.6.8)
+  factory_bot_rails (~> 5.0)
+  nokogiri (~> 1.10.0)
   pry
   rspec-rails (~> 3.1)
-  shoulda-matchers (~> 2.8)
-  sqlite3 (~> 1.3)
+  shoulda-matchers (~> 4.0)
+  sqlite3 (~> 1.3.13)
   timecop (~> 0.6)
 
 BUNDLED WITH
-   1.15.4
+   1.17.3

data/NEWS.md

@@ -3,6 +3,21 @@
 The noteworthy changes for each Clearance version are included here. For a
 complete changelog, see the git history for each version via the version links.
 
+## [1.16.2] - February 25, 2019
+
+### Fixed
+- Added missing translation keys
+- Fix issue where a cookie value could be set more than once when interacting
+  with the `httponly` option
+
+### Changed
+- Remove Rails as a dependency so that clearance does not trigger a cascade of
+  requirements as rails pulls in every framework. Instead, depend on just the
+  frameworks relevant to Clearance.
+- Prevent `Clearance::BackDoor` from being used outside the "test" environment.
+
+[1.16.2]: https://github.com/thoughtbot/clearance/compare/v1.16.1...v1.16.2
+
 ## [1.16.1] - November 2, 2017
 
 ### Fixed