RubyGems - clerk-sdk-ruby - Versions diffs - 2.1.1 → 2.1.2 - Mend

clerk-sdk-ruby 2.1.1 → 2.1.2

Files changed (6) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8a1b17c701d86ec55c4519f72231005a5b83efc07af4180ae98a292a63e422a5
-  data.tar.gz: 204eb5ac27340d5d4fc64c7edfc93287c293b9c3d973977b5aa1f87e3ba53ea9
+  metadata.gz: dd893298c9206f7cacd07fd7c8db9278c2f1c8353d43582a3275ac2a98558bfb
+  data.tar.gz: 7dc3976d5c922f648df6fbf77afd43ea1d2b185d828d23617dad0ac960ea9503
 SHA512:
-  metadata.gz: af8693eb43e6f61133966fc47d3ee884697df94c1415fd05d921e6ff35f66807c47e65fba24d51d09db2f9e6177c0624267181ac42f0ea566c580c4c503c95fd
-  data.tar.gz: b46bd350059257dcb2b8f8b6d164ead13b563921417ea766b1a4d9847ed5aaa992755f21445ba899503b4f5587b95493121ff3d1a0c7206634f21125611d34ed
+  metadata.gz: 17db456db28fc892f2df82e7ee84d2f3799a804c223e7b1e815fc7f6b0ec5a439ac23c7a781495fa8fc5ff0d3b6d2b52171081349f7ce9f27f53bcb1251d91e1
+  data.tar.gz: 02fb997d526e9d4116558c88201f2da5db5c8cbeef947dd6aac73373b8d8ed235225f661f9f8d11a538c346140edd66bb8a9b3d503949b226195f374fc86e51e

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,9 @@
 ## unreleased
+## 2.1.2 - 2022-08-26
+- fix: Gracefully handle invalid JSON in Authorization header [https://github.com/clerkinc/clerk-sdk-ruby/pull/16]
 ## 2.1.1 - 2022-02-24
 - fix: Make Authv2 middleware thread-safe

data/lib/clerk/authenticatable.rb CHANGED Viewed

@@ -10,7 +10,7 @@ module Clerk
     # the Session object. Subsequent calls to this method will return the cached
     # Session object.
     #
-    # NOTE: For better performance, you can instead use `#clerk_session_claims`
+    # NOTE: For better performance, you can instead use `#clerk_verified_session_claims`
     # which already contains the verified claims as retrieved from the session
     # token.
     def clerk_session
@@ -20,7 +20,7 @@ module Clerk
     # Makes a request to the Clerk API to verify the session again. Returns the
     # session object as fetched from the API.
     #
-    # NOTE: For better performance, you can instead use `#clerk_session_claims`
+    # NOTE: For better performance, you can instead use `#clerk_verified_session_claims`
     # which already contains the verified claims as retrieved from the session
     # token.
     #

data/lib/clerk/rack_middleware_v2.rb CHANGED Viewed

@@ -77,8 +77,12 @@ module Clerk
       #                                                                        #
       ##########################################################################
       if header_token
-        return signed_out(env) if !sdk.decode_token(header_token) # malformed JWT
+        begin
+          return signed_out(env) if !sdk.decode_token(header_token) # malformed JWT
+        rescue JWT::DecodeError
+          return signed_out(env)  # malformed JSON authorization header
+        end
         token = verify_token(header_token)
         return signed_in(env, token, header_token) if token

data/lib/clerk/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Clerk
-  VERSION = "2.1.1"
+  VERSION = "2.1.2"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: clerk-sdk-ruby
 version: !ruby/object:Gem::Version
-  version: 2.1.1
+  version: 2.1.2
 platform: ruby
 authors:
 - Clerk
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2022-02-24 00:00:00.000000000 Z
+date: 2022-08-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
@@ -127,7 +127,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.15
+rubygems_version: 3.2.5
 signing_key:
 specification_version: 4
 summary: Clerk SDK for Ruby.