cognito_token_verifier 0.2.0 → 0.5.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.travis.yml +9 -7
- data/CHANGELOG.md +26 -1
- data/Gemfile.lock +68 -63
- data/README.md +2 -2
- data/cognito_token_verifier.gemspec +5 -5
- data/gemfiles/rails52.gemfile +1 -1
- data/gemfiles/{rails42.gemfile → rails6.gemfile} +4 -4
- data/gemfiles/{rails51.gemfile → rails61.gemfile} +4 -4
- data/lib/cognito_token_verifier/version.rb +1 -1
- metadata +22 -23
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: b1cdcaef0b4d5ca7837dfedbaae4205e218675defa5318cbb9f99d9ed8eced3e
|
4
|
+
data.tar.gz: 195886dac29323c2f739333807ca256cc86576963bf8cfd0ff87d7ab7d858518
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 8cd7ad61ad6e589a7d440a0ef2f395a6fded8f5c7d6656954231b851930dd332bb4aae2fad43a6affecda83c9374b469877678f10463520e79cb7de9905c4bfa
|
7
|
+
data.tar.gz: 5be66162f09998b41dc691cfbaf12af71a597cedfc91925c8d3def18c3bba92b09d62fe48ce8807d667a14c685f3aedec88aaad6c22ddd128f5840e19496544e
|
data/.travis.yml
CHANGED
@@ -3,13 +3,15 @@ sudo: false
|
|
3
3
|
language: ruby
|
4
4
|
cache: bundler
|
5
5
|
rvm:
|
6
|
-
- 2.
|
7
|
-
- 2.
|
8
|
-
-
|
9
|
-
|
10
|
-
before_install: gem install bundler -v 2.0.1
|
6
|
+
- 2.6.6
|
7
|
+
- 2.7.2
|
8
|
+
- 3.0.0
|
9
|
+
before_install: gem install bundler
|
11
10
|
gemfile:
|
12
11
|
- Gemfile
|
13
|
-
- gemfiles/rails42.gemfile
|
14
|
-
- gemfiles/rails51.gemfile
|
15
12
|
- gemfiles/rails52.gemfile
|
13
|
+
- gemfiles/rails6.gemfile
|
14
|
+
- gemfiles/rails61.gemfile
|
15
|
+
|
16
|
+
# jobs:
|
17
|
+
# exclude:
|
data/CHANGELOG.md
CHANGED
@@ -1,4 +1,29 @@
|
|
1
|
-
# CHANGELOG
|
1
|
+
# CHANGELOG
|
2
|
+
|
3
|
+
## 0.5.0 (2021-01-27)
|
4
|
+
|
5
|
+
- Update `nokogiri` version to 1.11 for security patch in gem development
|
6
|
+
- Test against Ruby 3.0 and remove near-EOL Ruby 2.5 from test matrix
|
7
|
+
- Add Rails 6.1 support
|
8
|
+
|
9
|
+
## 0.4.0 (2020-09-12)
|
10
|
+
|
11
|
+
- Update development version of Rails gems for `actionview` security patch
|
12
|
+
- Remove Rails < 5.2 support due to EOL by Rails team
|
13
|
+
- Remove EOL Ruby 2.4 from test matrix, and add Ruby 2.7
|
14
|
+
|
15
|
+
## 0.3.2 (2020-03-31)
|
16
|
+
|
17
|
+
- Update development version of Rails gems for `actionview` security patch
|
18
|
+
|
19
|
+
## 0.3.1 (2020-02-27)
|
20
|
+
|
21
|
+
- Update `nokogiri` version to 1.10.8 for security patches in gem development
|
22
|
+
|
23
|
+
## 0.3.0 (2019-11-14)
|
24
|
+
|
25
|
+
- Add Rails 6 support
|
26
|
+
- Update minimum json-jwt and loofah libraries for CVEs
|
2
27
|
|
3
28
|
## 0.2.0 (2019-02-21)
|
4
29
|
|
data/Gemfile.lock
CHANGED
@@ -1,116 +1,121 @@
|
|
1
1
|
PATH
|
2
2
|
remote: .
|
3
3
|
specs:
|
4
|
-
cognito_token_verifier (0.
|
5
|
-
activesupport (>=
|
6
|
-
json-jwt (~> 1.
|
4
|
+
cognito_token_verifier (0.5.0)
|
5
|
+
activesupport (>= 5.2, < 6.2)
|
6
|
+
json-jwt (~> 1.11)
|
7
7
|
rest-client (~> 2.0)
|
8
8
|
|
9
9
|
GEM
|
10
10
|
remote: https://rubygems.org/
|
11
11
|
specs:
|
12
|
-
actionpack (
|
13
|
-
actionview (=
|
14
|
-
activesupport (=
|
15
|
-
rack (~> 2.0)
|
12
|
+
actionpack (6.1.1)
|
13
|
+
actionview (= 6.1.1)
|
14
|
+
activesupport (= 6.1.1)
|
15
|
+
rack (~> 2.0, >= 2.0.9)
|
16
16
|
rack-test (>= 0.6.3)
|
17
17
|
rails-dom-testing (~> 2.0)
|
18
|
-
rails-html-sanitizer (~> 1.0, >= 1.0
|
19
|
-
actionview (
|
20
|
-
activesupport (=
|
18
|
+
rails-html-sanitizer (~> 1.0, >= 1.2.0)
|
19
|
+
actionview (6.1.1)
|
20
|
+
activesupport (= 6.1.1)
|
21
21
|
builder (~> 3.1)
|
22
22
|
erubi (~> 1.4)
|
23
23
|
rails-dom-testing (~> 2.0)
|
24
|
-
rails-html-sanitizer (~> 1.
|
25
|
-
activesupport (
|
24
|
+
rails-html-sanitizer (~> 1.1, >= 1.2.0)
|
25
|
+
activesupport (6.1.1)
|
26
26
|
concurrent-ruby (~> 1.0, >= 1.0.2)
|
27
|
-
i18n (>=
|
28
|
-
minitest (
|
29
|
-
tzinfo (~>
|
30
|
-
|
31
|
-
|
32
|
-
|
33
|
-
|
34
|
-
|
35
|
-
|
36
|
-
|
37
|
-
|
27
|
+
i18n (>= 1.6, < 2)
|
28
|
+
minitest (>= 5.1)
|
29
|
+
tzinfo (~> 2.0)
|
30
|
+
zeitwerk (~> 2.3)
|
31
|
+
aes_key_wrap (1.1.0)
|
32
|
+
bindata (2.4.8)
|
33
|
+
builder (3.2.4)
|
34
|
+
byebug (11.1.3)
|
35
|
+
concurrent-ruby (1.1.8)
|
36
|
+
crass (1.0.6)
|
37
|
+
diff-lcs (1.4.4)
|
38
|
+
domain_name (0.5.20190701)
|
38
39
|
unf (>= 0.0.5, < 1.0.0)
|
39
|
-
erubi (1.
|
40
|
+
erubi (1.10.0)
|
41
|
+
http-accept (1.7.0)
|
40
42
|
http-cookie (1.0.3)
|
41
43
|
domain_name (~> 0.5)
|
42
|
-
i18n (1.
|
44
|
+
i18n (1.8.7)
|
43
45
|
concurrent-ruby (~> 1.0)
|
44
|
-
json-jwt (1.
|
46
|
+
json-jwt (1.13.0)
|
45
47
|
activesupport (>= 4.2)
|
46
48
|
aes_key_wrap
|
47
49
|
bindata
|
48
|
-
loofah (2.
|
50
|
+
loofah (2.9.0)
|
49
51
|
crass (~> 1.0.2)
|
50
52
|
nokogiri (>= 1.5.9)
|
51
|
-
method_source (0.
|
52
|
-
mime-types (3.
|
53
|
+
method_source (1.0.0)
|
54
|
+
mime-types (3.3.1)
|
53
55
|
mime-types-data (~> 3.2015)
|
54
|
-
mime-types-data (3.
|
55
|
-
mini_portile2 (2.
|
56
|
-
minitest (5.
|
56
|
+
mime-types-data (3.2020.0512)
|
57
|
+
mini_portile2 (2.5.0)
|
58
|
+
minitest (5.14.3)
|
57
59
|
netrc (0.11.0)
|
58
|
-
nokogiri (1.
|
59
|
-
mini_portile2 (~> 2.
|
60
|
-
|
60
|
+
nokogiri (1.11.1)
|
61
|
+
mini_portile2 (~> 2.5.0)
|
62
|
+
racc (~> 1.4)
|
63
|
+
racc (1.5.2)
|
64
|
+
rack (2.2.3)
|
61
65
|
rack-test (1.1.0)
|
62
66
|
rack (>= 1.0, < 3)
|
63
67
|
rails-dom-testing (2.0.3)
|
64
68
|
activesupport (>= 4.2.0)
|
65
69
|
nokogiri (>= 1.6)
|
66
|
-
rails-html-sanitizer (1.0
|
67
|
-
loofah (~> 2.
|
68
|
-
railties (
|
69
|
-
actionpack (=
|
70
|
-
activesupport (=
|
70
|
+
rails-html-sanitizer (1.3.0)
|
71
|
+
loofah (~> 2.3)
|
72
|
+
railties (6.1.1)
|
73
|
+
actionpack (= 6.1.1)
|
74
|
+
activesupport (= 6.1.1)
|
71
75
|
method_source
|
72
76
|
rake (>= 0.8.7)
|
73
|
-
thor (
|
74
|
-
rake (
|
75
|
-
rest-client (2.0
|
77
|
+
thor (~> 1.0)
|
78
|
+
rake (13.0.3)
|
79
|
+
rest-client (2.1.0)
|
80
|
+
http-accept (>= 1.7.0, < 2.0)
|
76
81
|
http-cookie (>= 1.0.2, < 2.0)
|
77
82
|
mime-types (>= 1.16, < 4.0)
|
78
83
|
netrc (~> 0.8)
|
79
|
-
rspec-core (3.
|
80
|
-
rspec-support (~> 3.
|
81
|
-
rspec-expectations (3.
|
84
|
+
rspec-core (3.9.2)
|
85
|
+
rspec-support (~> 3.9.3)
|
86
|
+
rspec-expectations (3.9.2)
|
82
87
|
diff-lcs (>= 1.2.0, < 2.0)
|
83
|
-
rspec-support (~> 3.
|
84
|
-
rspec-mocks (3.
|
88
|
+
rspec-support (~> 3.9.0)
|
89
|
+
rspec-mocks (3.9.1)
|
85
90
|
diff-lcs (>= 1.2.0, < 2.0)
|
86
|
-
rspec-support (~> 3.
|
87
|
-
rspec-rails (3.
|
91
|
+
rspec-support (~> 3.9.0)
|
92
|
+
rspec-rails (3.9.1)
|
88
93
|
actionpack (>= 3.0)
|
89
94
|
activesupport (>= 3.0)
|
90
95
|
railties (>= 3.0)
|
91
|
-
rspec-core (~> 3.
|
92
|
-
rspec-expectations (~> 3.
|
93
|
-
rspec-mocks (~> 3.
|
94
|
-
rspec-support (~> 3.
|
95
|
-
rspec-support (3.
|
96
|
-
thor (
|
97
|
-
|
98
|
-
|
99
|
-
thread_safe (~> 0.1)
|
96
|
+
rspec-core (~> 3.9.0)
|
97
|
+
rspec-expectations (~> 3.9.0)
|
98
|
+
rspec-mocks (~> 3.9.0)
|
99
|
+
rspec-support (~> 3.9.0)
|
100
|
+
rspec-support (3.9.3)
|
101
|
+
thor (1.1.0)
|
102
|
+
tzinfo (2.0.4)
|
103
|
+
concurrent-ruby (~> 1.0)
|
100
104
|
unf (0.1.4)
|
101
105
|
unf_ext
|
102
|
-
unf_ext (0.0.7.
|
106
|
+
unf_ext (0.0.7.7)
|
107
|
+
zeitwerk (2.4.2)
|
103
108
|
|
104
109
|
PLATFORMS
|
105
110
|
ruby
|
106
111
|
|
107
112
|
DEPENDENCIES
|
108
|
-
actionpack (>=
|
113
|
+
actionpack (>= 5.2, < 6.2)
|
109
114
|
bundler (~> 2.0)
|
110
115
|
byebug (~> 11.0)
|
111
116
|
cognito_token_verifier!
|
112
|
-
rake (>= 10.0, <
|
117
|
+
rake (>= 10.0, < 14.0)
|
113
118
|
rspec-rails (~> 3.0)
|
114
119
|
|
115
120
|
BUNDLED WITH
|
116
|
-
2.
|
121
|
+
2.1.4
|
data/README.md
CHANGED
@@ -1,6 +1,6 @@
|
|
1
|
-
# CognitoTokenVerifier [![Build Status](https://travis-ci.
|
1
|
+
# CognitoTokenVerifier [![Build Status](https://travis-ci.com/CodingAnarchy/cognito_token_verifier.svg?branch=master)](https://travis-ci.com/CodingAnarchy/cognito_token_verifier)
|
2
2
|
|
3
|
-
Verify and decode AWS Cognito tokens for use in your
|
3
|
+
Verify and decode AWS Cognito tokens for use in your Rails 5.2+ application. Rails versions <= 5.2 are incompatible with the required gemspec as of 0.4+, as they are no longer supported for security fixes by the Rails team.
|
4
4
|
|
5
5
|
## Installation
|
6
6
|
|
@@ -12,7 +12,7 @@ Gem::Specification.new do |spec|
|
|
12
12
|
spec.summary = %q{Verify and parse AWS Cognito JWTs to authenticate endpoints}
|
13
13
|
spec.homepage = "https://github.com/CodingAnarchy/cognito_token_verifier"
|
14
14
|
spec.license = "MIT"
|
15
|
-
spec.required_ruby_version = ">= 2.
|
15
|
+
spec.required_ruby_version = ">= 2.6.0"
|
16
16
|
|
17
17
|
# Prevent pushing this gem to RubyGems.org. To allow pushes either set the 'allowed_push_host'
|
18
18
|
# to allow pushing to a single host or delete this section to allow pushing to any host.
|
@@ -31,13 +31,13 @@ Gem::Specification.new do |spec|
|
|
31
31
|
spec.executables = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
|
32
32
|
spec.require_paths = ["lib"]
|
33
33
|
|
34
|
-
spec.add_runtime_dependency "activesupport", [">=
|
35
|
-
spec.add_runtime_dependency "json-jwt", "~> 1.
|
34
|
+
spec.add_runtime_dependency "activesupport", [">= 5.2", "< 6.2"]
|
35
|
+
spec.add_runtime_dependency "json-jwt", "~> 1.11"
|
36
36
|
spec.add_runtime_dependency "rest-client", "~> 2.0"
|
37
37
|
|
38
38
|
spec.add_development_dependency "byebug", "~> 11.0"
|
39
39
|
spec.add_development_dependency "bundler", "~> 2.0"
|
40
|
-
spec.add_development_dependency "rake", [">= 10.0", "<
|
40
|
+
spec.add_development_dependency "rake", [">= 10.0", "< 14.0"]
|
41
41
|
spec.add_development_dependency "rspec-rails", "~> 3.0"
|
42
|
-
spec.add_development_dependency "actionpack", [">=
|
42
|
+
spec.add_development_dependency "actionpack", [">= 5.2", "< 6.2"]
|
43
43
|
end
|
data/gemfiles/rails52.gemfile
CHANGED
@@ -1,11 +1,11 @@
|
|
1
1
|
source "https://rubygems.org"
|
2
2
|
|
3
|
-
gem "activesupport", "~>
|
4
|
-
gem "json-jwt", "~> 1.
|
3
|
+
gem "activesupport", "~> 6.0.0"
|
4
|
+
gem "json-jwt", "~> 1.11"
|
5
5
|
gem "rest-client", "~> 2.0"
|
6
6
|
|
7
7
|
gem "byebug"
|
8
8
|
gem "bundler", "~> 2.0"
|
9
|
-
gem "rake", "~>
|
9
|
+
gem "rake", "~> 12.0"
|
10
10
|
gem "rspec-rails", "~> 3.0"
|
11
|
-
gem "actionpack", "~>
|
11
|
+
gem "actionpack", "~> 6.0.0"
|
@@ -1,11 +1,11 @@
|
|
1
1
|
source "https://rubygems.org"
|
2
2
|
|
3
|
-
gem "activesupport", "~>
|
4
|
-
gem "json-jwt", "~> 1.
|
3
|
+
gem "activesupport", "~> 6.1.0"
|
4
|
+
gem "json-jwt", "~> 1.11"
|
5
5
|
gem "rest-client", "~> 2.0"
|
6
6
|
|
7
7
|
gem "byebug"
|
8
8
|
gem "bundler", "~> 2.0"
|
9
|
-
gem "rake", "~>
|
9
|
+
gem "rake", "~> 12.0"
|
10
10
|
gem "rspec-rails", "~> 3.0"
|
11
|
-
gem "actionpack", "~>
|
11
|
+
gem "actionpack", "~> 6.1.0"
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: cognito_token_verifier
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.5.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Matt Tanous
|
8
|
-
autorequire:
|
8
|
+
autorequire:
|
9
9
|
bindir: exe
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2021-01-28 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: activesupport
|
@@ -16,34 +16,34 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - ">="
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: '
|
19
|
+
version: '5.2'
|
20
20
|
- - "<"
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: '6.
|
22
|
+
version: '6.2'
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
26
26
|
requirements:
|
27
27
|
- - ">="
|
28
28
|
- !ruby/object:Gem::Version
|
29
|
-
version: '
|
29
|
+
version: '5.2'
|
30
30
|
- - "<"
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: '6.
|
32
|
+
version: '6.2'
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: json-jwt
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|
36
36
|
requirements:
|
37
37
|
- - "~>"
|
38
38
|
- !ruby/object:Gem::Version
|
39
|
-
version: '1.
|
39
|
+
version: '1.11'
|
40
40
|
type: :runtime
|
41
41
|
prerelease: false
|
42
42
|
version_requirements: !ruby/object:Gem::Requirement
|
43
43
|
requirements:
|
44
44
|
- - "~>"
|
45
45
|
- !ruby/object:Gem::Version
|
46
|
-
version: '1.
|
46
|
+
version: '1.11'
|
47
47
|
- !ruby/object:Gem::Dependency
|
48
48
|
name: rest-client
|
49
49
|
requirement: !ruby/object:Gem::Requirement
|
@@ -95,7 +95,7 @@ dependencies:
|
|
95
95
|
version: '10.0'
|
96
96
|
- - "<"
|
97
97
|
- !ruby/object:Gem::Version
|
98
|
-
version: '
|
98
|
+
version: '14.0'
|
99
99
|
type: :development
|
100
100
|
prerelease: false
|
101
101
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -105,7 +105,7 @@ dependencies:
|
|
105
105
|
version: '10.0'
|
106
106
|
- - "<"
|
107
107
|
- !ruby/object:Gem::Version
|
108
|
-
version: '
|
108
|
+
version: '14.0'
|
109
109
|
- !ruby/object:Gem::Dependency
|
110
110
|
name: rspec-rails
|
111
111
|
requirement: !ruby/object:Gem::Requirement
|
@@ -126,21 +126,21 @@ dependencies:
|
|
126
126
|
requirements:
|
127
127
|
- - ">="
|
128
128
|
- !ruby/object:Gem::Version
|
129
|
-
version: '
|
129
|
+
version: '5.2'
|
130
130
|
- - "<"
|
131
131
|
- !ruby/object:Gem::Version
|
132
|
-
version: '6.
|
132
|
+
version: '6.2'
|
133
133
|
type: :development
|
134
134
|
prerelease: false
|
135
135
|
version_requirements: !ruby/object:Gem::Requirement
|
136
136
|
requirements:
|
137
137
|
- - ">="
|
138
138
|
- !ruby/object:Gem::Version
|
139
|
-
version: '
|
139
|
+
version: '5.2'
|
140
140
|
- - "<"
|
141
141
|
- !ruby/object:Gem::Version
|
142
|
-
version: '6.
|
143
|
-
description:
|
142
|
+
version: '6.2'
|
143
|
+
description:
|
144
144
|
email:
|
145
145
|
- mtanous22@gmail.com
|
146
146
|
executables: []
|
@@ -159,9 +159,9 @@ files:
|
|
159
159
|
- bin/console
|
160
160
|
- bin/setup
|
161
161
|
- cognito_token_verifier.gemspec
|
162
|
-
- gemfiles/rails42.gemfile
|
163
|
-
- gemfiles/rails51.gemfile
|
164
162
|
- gemfiles/rails52.gemfile
|
163
|
+
- gemfiles/rails6.gemfile
|
164
|
+
- gemfiles/rails61.gemfile
|
165
165
|
- lib/cognito_token_verifier.rb
|
166
166
|
- lib/cognito_token_verifier/config.rb
|
167
167
|
- lib/cognito_token_verifier/controller_macros.rb
|
@@ -175,7 +175,7 @@ metadata:
|
|
175
175
|
homepage_uri: https://github.com/CodingAnarchy/cognito_token_verifier
|
176
176
|
source_code_uri: https://github.com/CodingAnarchy/cognito_token_verifier
|
177
177
|
changelog_uri: https://github.com/CodingAnarchy/cognito_token_verifier/blob/master/CHANGELOG.md
|
178
|
-
post_install_message:
|
178
|
+
post_install_message:
|
179
179
|
rdoc_options: []
|
180
180
|
require_paths:
|
181
181
|
- lib
|
@@ -183,16 +183,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
183
183
|
requirements:
|
184
184
|
- - ">="
|
185
185
|
- !ruby/object:Gem::Version
|
186
|
-
version: 2.
|
186
|
+
version: 2.6.0
|
187
187
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
188
188
|
requirements:
|
189
189
|
- - ">="
|
190
190
|
- !ruby/object:Gem::Version
|
191
191
|
version: '0'
|
192
192
|
requirements: []
|
193
|
-
|
194
|
-
|
195
|
-
signing_key:
|
193
|
+
rubygems_version: 3.0.3
|
194
|
+
signing_key:
|
196
195
|
specification_version: 4
|
197
196
|
summary: Verify and parse AWS Cognito JWTs to authenticate endpoints
|
198
197
|
test_files: []
|