clerk-sdk-ruby 4.1.0 → 4.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2c5d13e407e2b3827d2d451604f62d018e90ecb79fb28b12864318358bc7bcdf
-  data.tar.gz: c0c69cab555345231c04bec2dfb48316f4f4c66a04f8a5270588ba9a8e98230f
+  metadata.gz: 4d73e8c0d702443d6715799708a1a2dab6de8667c3a9ba655d60e462587eebbb
+  data.tar.gz: 5d6194058d16f155e868199472684f26ec981d9c6a1fe33a433221600ddf10cc
 SHA512:
-  metadata.gz: 3f3b78b75a176ee0667fc492e85bb3672ce258c8fa869cc2196943ed85014e47526abc677d8771d034bcd505ee4edb4999a790f3e16206e0417b2cdaa29cbf96
-  data.tar.gz: 5b7f5366e6ed26d47c4e9856622c0424d46e6dbaf07f218e94f908e587755700b876069e677ecd4c75dc49ced41d18f113d4c2fdd9653dadde99922c8ea3da1f
+  metadata.gz: f75517c210e9d8811d4a2e3405e4d0c7e9ea3c448cb290d069d51e12897f9363d441f8b1f7b7846b83eaadd5aba4388bb43c83faf116bddf179b6902293c7394
+  data.tar.gz: 780f4cc23e135a8dc90e5a50b19c80022322eb47626d43bacc3b7570c02c2bd88aaa7c4c9bd51b5833b85bcfde70de4c8d7cfa681a9eb2cae92bd54e267888f1

data/CHANGELOG.md

@@ -1,6 +1,47 @@
+## 4.2.0 - 2025-05-20
+
+- feat: Add explicit support for lowercased headers [https://github.com/clerk/clerk-sdk-ruby/pull/93]
+- fix: Ensure resiliency of v2 JWT organization claims [https://github.com/clerk/clerk-sdk-ruby/pull/94]
+- feat: Enable support for older versions of Rack [https://github.com/clerk/clerk-sdk-ruby/pull/95]
+- chore: Update dependencies
+
 ## 4.1.0 - 2025-04-10
 
-- feat: Add support for org. claims of v2 session tokens [https://github.com/clerk/clerk-sdk-ruby/pull/89]
+- feat: Add support for token v2 org claims [https://github.com/clerk/clerk-sdk-ruby/pull/89]
+- feat: Emit `Clerk-Version-API` header [https://github.com/clerk/clerk-sdk-ruby/pull/89]
+
+## 4.0.1 - 2025-01-27
+
+- fix: Ensure that the logger was being correctly passed to the API client  [https://github.com/clerk/clerk-sdk-ruby/pull/87]
+- docs: Expand sections within the README [https://github.com/clerk/clerk-sdk-ruby/pull/86]
+
+## 4.0.0 - 2025-01-27
+
+- chore: Relese v4.0.0 based on v4.0.0.beta7 [https://github.com/clerk/clerk-sdk-ruby/pull/85]
+
+## 4.0.0.beta7 - 2025-01-27
+
+- chore: Bump dependency versions [https://github.com/clerk/clerk-sdk-ruby/pull/82]
+
+## 4.0.0.beta6 - 2025-01-27
+ 
+- feat: Allows for users to be able to skip the automatic addition of the Clerk Middleware via Railties. [https://github.com/clerk/clerk-sdk-ruby/pull/81]
+- build: Introduces a repeatable release flow. [https://github.com/clerk/clerk-sdk-ruby/pull/81]
+
+## 4.0.0.beta5 - 2025-01-27
+
+[BREAKING] This release introduces our new `clerk-http-client` gem, which is a generated directly from the Clerk API OpenAPI specs. This will help to ensure that the SDK is always in sync with the Clerk API.
+
+- feat: Add support for the `clerk-http-client` gem [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- feat: Add support for Revalidation [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- feat: Add support for Rails API mode [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- feat: Add support for Sinatra [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- feat: Middleware cache defaults to `Rails.cache` -> `ActiveSupport::Cache::MemoryStore` (if available) -> no caching [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- chore: Refactor Clerk helper methods for Rails and Rack [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- fix: Update configuration naming of `api_key` to `secret_key` [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+- docs: Add example applications for Rails, Sinatra, and Rack under `apps/` [https://github.com/clerk/clerk-sdk-ruby/pull/77]
+
+
 
 ## 4.0.0.beta4 - 2025-01-06
 

data/Gemfile

@@ -9,13 +9,13 @@ group :development do
   gem "activesupport", "~> 8.0", require: false
   gem "dotenv", "~> 3.1", require: false
   gem "puma", "~> 6.4", ">= 6.4.3", require: false
-  gem "rack", "~> 3.1", ">= 3.1.8", require: false
+  gem "rack", "~> 3.1", ">= 3.1.14", require: false
   gem "rbs", "~> 3.6"
   gem "rake", "~> 13.0"
   gem "rackup", "~> 2.2", require: false
   gem "rb-fsevent", "~> 0.11", ">= 0.11.2", platform: [:ruby], require: false
   gem "rerun", "~> 0.14", require: false
-  gem "sinatra", "~> 4.1", require: false
+  gem "sinatra", "~> 4.1", ">= 4.1.1", require: false
   gem "standard", "~> 1.42"
   gem "wdm", "~> 0.2", platform: [:mswin, :windows]
 end

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    clerk-sdk-ruby (4.1.0)
+    clerk-sdk-ruby (4.2.0)
       clerk-http-client (~> 2.0)
       concurrent-ruby (~> 1.1)
       faraday (>= 1.4.1, < 3.0)
@@ -130,9 +130,10 @@ GEM
       shellany (~> 0.0)
     ostruct (0.6.1)
     parallel (1.26.3)
-    parser (3.3.6.0)
+    parser (3.3.8.0)
       ast (~> 2.4.1)
       racc
+    prism (1.4.0)
     pry (0.15.2)
       coderay (~> 1.1)
       method_source (~> 1.0)
@@ -142,7 +143,7 @@ GEM
     puma (6.5.0)
       nio4r (~> 2.0)
     racc (1.8.1)
-    rack (3.1.8)
+    rack (3.1.15)
     rack-protection (4.1.1)
       base64 (>= 0.1.0)
       logger (>= 1.6.0)
@@ -204,21 +205,24 @@ GEM
       rspec-mocks (~> 3.13)
       rspec-support (~> 3.13)
     rspec-support (3.13.2)
-    rubocop (1.69.2)
+    rubocop (1.75.6)
       json (~> 2.3)
-      language_server-protocol (>= 3.17.0)
+      language_server-protocol (~> 3.17.0.2)
+      lint_roller (~> 1.1.0)
       parallel (~> 1.10)
       parser (>= 3.3.0.2)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 2.9.3, < 3.0)
-      rubocop-ast (>= 1.36.2, < 2.0)
+      rubocop-ast (>= 1.44.0, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 2.4.0, < 4.0)
-    rubocop-ast (1.37.0)
-      parser (>= 3.3.1.0)
-    rubocop-performance (1.23.1)
-      rubocop (>= 1.48.1, < 2.0)
-      rubocop-ast (>= 1.31.1, < 2.0)
+    rubocop-ast (1.44.1)
+      parser (>= 3.3.7.2)
+      prism (~> 1.4)
+    rubocop-performance (1.25.0)
+      lint_roller (~> 1.1)
+      rubocop (>= 1.75.0, < 2.0)
+      rubocop-ast (>= 1.38.0, < 2.0)
     ruby-progressbar (1.13.0)
     ruby2_keywords (0.0.5)
     securerandom (0.4.1)
@@ -236,18 +240,18 @@ GEM
       rack-protection (= 4.1.1)
       rack-session (>= 2.0.0, < 3)
       tilt (~> 2.0)
-    standard (1.43.0)
+    standard (1.50.0)
       language_server-protocol (~> 3.17.0.2)
       lint_roller (~> 1.0)
-      rubocop (~> 1.69.1)
+      rubocop (~> 1.75.5)
       standard-custom (~> 1.0.0)
-      standard-performance (~> 1.6)
+      standard-performance (~> 1.8)
     standard-custom (1.0.2)
       lint_roller (~> 1.0)
       rubocop (~> 1.50)
-    standard-performance (1.6.0)
+    standard-performance (1.8.0)
       lint_roller (~> 1.1)
-      rubocop-performance (~> 1.23.0)
+      rubocop-performance (~> 1.25.0)
     stringio (3.1.2)
     thor (1.3.2)
     tilt (2.5.0)
@@ -277,7 +281,7 @@ DEPENDENCIES
   guard-rake (~> 1.0)
   guard-rspec (~> 4.7)
   puma (~> 6.4, >= 6.4.3)
-  rack (~> 3.1, >= 3.1.8)
+  rack (~> 3.1, >= 3.1.14)
   rackup (~> 2.2)
   rake (~> 13.0)
   rb-fsevent (~> 0.11, >= 0.11.2)
@@ -286,7 +290,7 @@ DEPENDENCIES
   rspec (~> 3.0)
   rspec-rails (~> 7.1)
   simplecov
-  sinatra (~> 4.1)
+  sinatra (~> 4.1, >= 4.1.1)
   standard (~> 1.42)
   timecop (~> 0.9.4)
   wdm (~> 0.2)

data/clerk-sdk-ruby.gemspec

@@ -10,13 +10,13 @@ Gem::Specification.new do |spec|
 
   spec.summary       = "Clerk SDK for Ruby."
   spec.description   = "Client SDK for the Clerk"
-  spec.homepage      = "https://github.com/clerkinc/clerk-sdk-ruby"
+  spec.homepage      = "https://github.com/clerk/clerk-sdk-ruby"
   spec.license       = "MIT"
   spec.required_ruby_version = Gem::Requirement.new(">= 2.4.0")
 
   spec.metadata["homepage_uri"] = spec.homepage
-  spec.metadata["source_code_uri"] = "https://github.com/clerkinc/clerk-sdk-ruby"
-  spec.metadata["changelog_uri"] = "https://github.com/clerkinc/clerk-sdk-ruby/blob/main/CHANGELOG.md"
+  spec.metadata["source_code_uri"] = "https://github.com/clerk/clerk-sdk-ruby"
+  spec.metadata["changelog_uri"] = "https://github.com/clerk/clerk-sdk-ruby/blob/main/CHANGELOG.md"
 
   # Specify which files should be added to the gem when it is released.
   # The `git ls-files -z` loads the files in the RubyGem that have been added into git.

data/lib/clerk/authenticate_context.rb

@@ -31,12 +31,12 @@ module Clerk
       })
 
       @headers = OpenStruct.new({
-        accept: request.env[ACCEPT_HEADER].to_s,
+        accept: Utils.retrieve_header_from_request(request, ACCEPT_HEADER),
         host: request.host,
-        origin: request.env[ORIGIN_HEADER].to_s,
+        origin: Utils.retrieve_header_from_request(request, ORIGIN_HEADER),
         port: request.port,
-        sec_fetch_dest: request.env[SEC_FETCH_DEST_HEADER],
-        session_token_in_header: request.env[AUTHORIZATION_HEADER].to_s.gsub(/bearer/i, "").strip
+        sec_fetch_dest: Utils.retrieve_header_from_request(request, SEC_FETCH_DEST_HEADER),
+        session_token_in_header: Utils.retrieve_header_from_request(request, AUTHORIZATION_HEADER).gsub(/bearer/i, "").strip
       })
     end
 

data/lib/clerk/constants.rb

@@ -12,11 +12,10 @@ module Clerk
   HANDSHAKE_COOKIE_DIRECTIVES_KEY = "handshake"
 
   # auth debug response headers
-  AUTH_STATUS_HEADER = "X-Clerk-Auth-Status"
-  AUTH_REASON_HEADER = "X-Clerk-Auth-Reason"
-  AUTH_MESSAGE_HEADER = "X-Clerk-Auth-Message"
+  AUTH_STATUS_HEADER = "x-clerk-auth-status"
+  AUTH_REASON_HEADER = "x-clerk-auth-reason"
+  AUTH_MESSAGE_HEADER = "x-clerk-auth-message"
 
-  CONTENT_TYPE_HEADER = "Content-Type"
   SEC_FETCH_DEST_HEADER = "HTTP_SEC_FETCH_DEST"
 
   # headers used in response - should be lowered case and without http prefix

data/lib/clerk/rack_middleware.rb

@@ -63,7 +63,7 @@ module Clerk
       def set_cookie_headers!(headers, cookie_headers)
         cookie_headers.each do |cookie_header|
           cookie_key = parse_cookie_key(cookie_header)
-          cookie = ::Rack::Utils.parse_cookies_header(cookie_header)
+          cookie = ::Clerk::Utils.parse_cookies_header(cookie_header)
           cookie_params = convert_http_cookie_to_cookie_setter_params(cookie_key, cookie)
           ::Rack::Utils.set_cookie_header!(headers, cookie_key, cookie_params)
         end

data/lib/clerk/sdk.rb

@@ -63,9 +63,9 @@ module Clerk
     private
 
     def compute_org_permissions_from_v2_token(claims)
-      features    = claims["fea"].split(",")
-      permissions = claims["o"]["per"].split(",")
-      mappings    = claims["o"]["fpm"].split(",")
+      features    = claims["fea"] ? claims["fea"].split(",") : []
+      permissions = claims["o"]["per"] ? claims["o"]["per"].split(",") : []
+      mappings    = claims["o"]["fpm"] ? claims["o"]["fpm"].split(",") : []
       org_permissions = []
 
       mappings.each_with_index do |mapping, i|

data/lib/clerk/utils.rb

@@ -28,6 +28,10 @@ module Clerk
         [filtered_routes, filtered_wildcard_routes]
       end
 
+      def retrieve_header_from_request(request, key)
+        (request.env[key] || request.env[key.downcase]).to_s
+      end
+
       def retrieve_from_query_string(url, key)
         ::Rack::Utils.parse_query(url.query)[key]
       end
@@ -46,6 +50,24 @@ module Clerk
       def valid_publishable_key_prefix?(publishable_key)
         publishable_key.start_with?("pk_live_", "pk_test_")
       end
+
+      # NOTE: This is a copy of Rack::Utils.parse_cookies_header to allow for
+      # compatibility with older versions of Rack.
+      def parse_cookies_header(value)
+        return {} unless value
+
+        value.split(/; */n).each_with_object({}) do |cookie, cookies|
+          next if cookie.empty?
+          key, value = cookie.split('=', 2)
+          cookies[key] = (unescape(value) rescue value) unless cookies.key?(key)
+        end
+      end
+
+      private 
+
+      def unescape(s, encoding = Encoding::UTF_8)
+        URI.decode_www_form_component(s, encoding)
+      end
     end
   end
 end

data/lib/clerk/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Clerk
-  VERSION = "4.1.0"
+  VERSION = "4.2.0"
 end

metadata

@@ -1,14 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: clerk-sdk-ruby
 version: !ruby/object:Gem::Version
-  version: 4.1.0
+  version: 4.2.0
 platform: ruby
 authors:
 - Clerk
-autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-04-10 00:00:00.000000000 Z
+date: 2025-05-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
@@ -300,14 +299,13 @@ files:
 - lib/clerk/sinatra.rb
 - lib/clerk/utils.rb
 - lib/clerk/version.rb
-homepage: https://github.com/clerkinc/clerk-sdk-ruby
+homepage: https://github.com/clerk/clerk-sdk-ruby
 licenses:
 - MIT
 metadata:
-  homepage_uri: https://github.com/clerkinc/clerk-sdk-ruby
-  source_code_uri: https://github.com/clerkinc/clerk-sdk-ruby
-  changelog_uri: https://github.com/clerkinc/clerk-sdk-ruby/blob/main/CHANGELOG.md
-post_install_message:
+  homepage_uri: https://github.com/clerk/clerk-sdk-ruby
+  source_code_uri: https://github.com/clerk/clerk-sdk-ruby
+  changelog_uri: https://github.com/clerk/clerk-sdk-ruby/blob/main/CHANGELOG.md
 rdoc_options: []
 require_paths:
 - lib
@@ -322,8 +320,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.3
-signing_key:
+rubygems_version: 3.6.2
 specification_version: 4
 summary: Clerk SDK for Ruby.
 test_files: []