RubyGems - cognito_token_verifier - Versions diffs - 0.2.0 → 0.3.0 - Mend

cognito_token_verifier 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

checksums.yaml +4 -4
data/.travis.yml +12 -6
data/CHANGELOG.md +5 -0
data/Gemfile.lock +52 -48
data/README.md +1 -1
data/cognito_token_verifier.gemspec +4 -4
data/gemfiles/rails51.gemfile +1 -1
data/gemfiles/rails52.gemfile +1 -1
data/gemfiles/{rails42.gemfile → rails6.gemfile} +4 -4
data/lib/cognito_token_verifier/version.rb +1 -1
metadata +12 -13

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 02ef1ab0355a54f560d05129aa92616d8545ce11e2535787e9444ca8241e4119
-  data.tar.gz: 34ce55f919bf09784375ad764031eb4f724258e50dc18fcc777a9428ca601d27
+  metadata.gz: a8bfb50412707e785356b1b6ddec9c4d0969b14f125a237a56d705761a0895bd
+  data.tar.gz: 906c80b10149acef0cdb138b58170a37279c5131b15e8cabd936d8485df879e3
 SHA512:
-  metadata.gz: ea02cd0a5f932fe6e41e4ff23baa33df6219887022a44dd2e0ad4bc4a291b962a0867035e9358f7c9f9556764859ab318a61abf0b5d4147968c2171a0ee1f5e2
-  data.tar.gz: be564bb2c4ef81f015b458e44b033f11d807c7b3cb3b9c960f16c4982dd2090b28e865d0d9c2a9a8a7bd9eaafebeb07f26f84c06f415545846f35ba6f465f4e9
+  metadata.gz: 02c54e6967cd262356c6a55988840b64a72f44ccd2b883aecb45dfd3f131351936b29c38eaf40a52fe24ed5891a09d9094800d14fea7f1108a440eaacdc2798b
+  data.tar.gz: df1b123262f638cffd3d421f873f103d0d83ee166275f9af0e3162663202e08e0d84643af385adf58b4d9c9cb3c6e512484cec05dcd7685d3634e1a96d278934

data/.travis.yml CHANGED

@@ -3,13 +3,19 @@ sudo: false
 language: ruby
 cache: bundler
 rvm:
-  - 2.3.8
-  - 2.4.5
-  - 2.5.3
-  - 2.6.1
-before_install: gem install bundler -v 2.0.1
+  - 2.4.9
+  - 2.5.7
+  - 2.6.5
+before_install: gem install bundler
 gemfile:
   - Gemfile
-  - gemfiles/rails42.gemfile
   - gemfiles/rails51.gemfile
   - gemfiles/rails52.gemfile
+  - gemfiles/rails6.gemfile
+jobs:
+  exclude:
+    - rvm: 2.4.9
+      gemfile: Gemfile
+    - rvm: 2.4.9
+      gemfile: gemfiles/rails6.gemfile

data/CHANGELOG.md CHANGED

@@ -1,5 +1,10 @@
 # CHANGELOG.md
+## 0.3.0 (2019-11-14)
+  - Add Rails 6 support
+  - Update minimum json-jwt and loofah libraries for CVEs
 ## 0.2.0 (2019-02-21)
   - Improvements to handling errors fetching JWKs and decoding Cognito JWTs

data/Gemfile.lock CHANGED

@@ -1,116 +1,120 @@
 PATH
   remote: .
   specs:
-    cognito_token_verifier (0.2.0)
-      activesupport (>= 4.2, < 6.0)
-      json-jwt (~> 1.1)
+    cognito_token_verifier (0.3.0)
+      activesupport (>= 4.2, < 6.1)
+      json-jwt (~> 1.11)
       rest-client (~> 2.0)
 GEM
   remote: https://rubygems.org/
   specs:
-    actionpack (5.2.2)
-      actionview (= 5.2.2)
-      activesupport (= 5.2.2)
+    actionpack (6.0.1)
+      actionview (= 6.0.1)
+      activesupport (= 6.0.1)
       rack (~> 2.0)
       rack-test (>= 0.6.3)
       rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (5.2.2)
-      activesupport (= 5.2.2)
+      rails-html-sanitizer (~> 1.0, >= 1.2.0)
+    actionview (6.0.1)
+      activesupport (= 6.0.1)
       builder (~> 3.1)
       erubi (~> 1.4)
       rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.0.3)
-    activesupport (5.2.2)
+      rails-html-sanitizer (~> 1.1, >= 1.2.0)
+    activesupport (6.0.1)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (>= 0.7, < 2)
       minitest (~> 5.1)
       tzinfo (~> 1.1)
+      zeitwerk (~> 2.2)
     aes_key_wrap (1.0.1)
     bindata (2.4.4)
     builder (3.2.3)
-    byebug (11.0.0)
-    concurrent-ruby (1.1.4)
-    crass (1.0.4)
+    byebug (11.0.1)
+    concurrent-ruby (1.1.5)
+    crass (1.0.5)
     diff-lcs (1.3)
-    domain_name (0.5.20180417)
+    domain_name (0.5.20190701)
       unf (>= 0.0.5, < 1.0.0)
-    erubi (1.8.0)
+    erubi (1.9.0)
+    http-accept (1.7.0)
     http-cookie (1.0.3)
       domain_name (~> 0.5)
-    i18n (1.5.3)
+    i18n (1.7.0)
       concurrent-ruby (~> 1.0)
-    json-jwt (1.10.0)
+    json-jwt (1.11.0)
       activesupport (>= 4.2)
       aes_key_wrap
       bindata
-    loofah (2.2.3)
+    loofah (2.3.1)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
     method_source (0.9.2)
-    mime-types (3.2.2)
+    mime-types (3.3)
       mime-types-data (~> 3.2015)
-    mime-types-data (3.2018.0812)
+    mime-types-data (3.2019.1009)
     mini_portile2 (2.4.0)
-    minitest (5.11.3)
+    minitest (5.13.0)
     netrc (0.11.0)
-    nokogiri (1.10.1)
+    nokogiri (1.10.5)
       mini_portile2 (~> 2.4.0)
-    rack (2.0.6)
+    rack (2.0.7)
     rack-test (1.1.0)
       rack (>= 1.0, < 3)
     rails-dom-testing (2.0.3)
       activesupport (>= 4.2.0)
       nokogiri (>= 1.6)
-    rails-html-sanitizer (1.0.4)
-      loofah (~> 2.2, >= 2.2.2)
-    railties (5.2.2)
-      actionpack (= 5.2.2)
-      activesupport (= 5.2.2)
+    rails-html-sanitizer (1.3.0)
+      loofah (~> 2.3)
+    railties (6.0.1)
+      actionpack (= 6.0.1)
+      activesupport (= 6.0.1)
       method_source
       rake (>= 0.8.7)
-      thor (>= 0.19.0, < 2.0)
-    rake (12.3.2)
-    rest-client (2.0.2)
+      thor (>= 0.20.3, < 2.0)
+    rake (13.0.1)
+    rest-client (2.1.0)
+      http-accept (>= 1.7.0, < 2.0)
       http-cookie (>= 1.0.2, < 2.0)
       mime-types (>= 1.16, < 4.0)
       netrc (~> 0.8)
-    rspec-core (3.8.0)
-      rspec-support (~> 3.8.0)
-    rspec-expectations (3.8.2)
+    rspec-core (3.9.0)
+      rspec-support (~> 3.9.0)
+    rspec-expectations (3.9.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.8.0)
-    rspec-mocks (3.8.0)
+      rspec-support (~> 3.9.0)
+    rspec-mocks (3.9.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.8.0)
-    rspec-rails (3.8.2)
+      rspec-support (~> 3.9.0)
+    rspec-rails (3.9.0)
       actionpack (>= 3.0)
       activesupport (>= 3.0)
       railties (>= 3.0)
-      rspec-core (~> 3.8.0)
-      rspec-expectations (~> 3.8.0)
-      rspec-mocks (~> 3.8.0)
-      rspec-support (~> 3.8.0)
-    rspec-support (3.8.0)
+      rspec-core (~> 3.9.0)
+      rspec-expectations (~> 3.9.0)
+      rspec-mocks (~> 3.9.0)
+      rspec-support (~> 3.9.0)
+    rspec-support (3.9.0)
     thor (0.20.3)
     thread_safe (0.3.6)
     tzinfo (1.2.5)
       thread_safe (~> 0.1)
     unf (0.1.4)
       unf_ext
-    unf_ext (0.0.7.5)
+    unf_ext (0.0.7.6)
+    zeitwerk (2.2.1)
 PLATFORMS
   ruby
 DEPENDENCIES
-  actionpack (>= 4.2, < 6.0)
+  actionpack (>= 4.2, < 6.1)
   bundler (~> 2.0)
   byebug (~> 11.0)
   cognito_token_verifier!
-  rake (>= 10.0, < 13.0)
+  rake (>= 10.0, < 14.0)
   rspec-rails (~> 3.0)
 BUNDLED WITH
-   2.0.1
+   2.0.2

data/README.md CHANGED

@@ -1,6 +1,6 @@
 # CognitoTokenVerifier [![Build Status](https://travis-ci.org/CodingAnarchy/cognito_token_verifier.svg?branch=master)](https://travis-ci.org/CodingAnarchy/cognito_token_verifier)
-Verify and decode AWS Cognito tokens for use in your Ruby application.
+Verify and decode AWS Cognito tokens for use in your Rails 5.2+ application. Rails 4.2 may work on 0.3+, but as it is no longer supported for security fixes by the Rails team, I make no guarantees of this and changes may result that break compatibility.
 ## Installation

data/cognito_token_verifier.gemspec CHANGED

@@ -31,13 +31,13 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
-  spec.add_runtime_dependency "activesupport", [">= 4.2", "< 6.0"]
-  spec.add_runtime_dependency "json-jwt", "~> 1.1"
+  spec.add_runtime_dependency "activesupport", [">= 4.2", "< 6.1"]
+  spec.add_runtime_dependency "json-jwt", "~> 1.11"
   spec.add_runtime_dependency "rest-client", "~> 2.0"
   spec.add_development_dependency "byebug", "~> 11.0"
   spec.add_development_dependency "bundler", "~> 2.0"
-  spec.add_development_dependency "rake", [">= 10.0", "< 13.0"]
+  spec.add_development_dependency "rake", [">= 10.0", "< 14.0"]
   spec.add_development_dependency "rspec-rails", "~> 3.0"
-  spec.add_development_dependency "actionpack", [">= 4.2", "< 6.0"]
+  spec.add_development_dependency "actionpack", [">= 4.2", "< 6.1"]
 end

data/gemfiles/rails51.gemfile CHANGED

@@ -1,7 +1,7 @@
 source "https://rubygems.org"
 gem "activesupport", "~> 5.1.0"
-gem "json-jwt", "~> 1.1"
+gem "json-jwt", "~> 1.11"
 gem "rest-client", "~> 2.0"
 gem "byebug"

data/gemfiles/rails52.gemfile CHANGED

@@ -1,7 +1,7 @@
 source "https://rubygems.org"
 gem "activesupport", "~> 5.2.0"
-gem "json-jwt", "~> 1.1"
+gem "json-jwt", "~> 1.11"
 gem "rest-client", "~> 2.0"
 gem "byebug"

data/gemfiles/{rails42.gemfile → rails6.gemfile} RENAMED

@@ -1,11 +1,11 @@
 source "https://rubygems.org"
-gem "activesupport", "~> 4.2.0"
-gem "json-jwt", "~> 1.1"
+gem "activesupport", "~> 6.0.0"
+gem "json-jwt", "~> 1.11"
 gem "rest-client", "~> 2.0"
 gem "byebug"
 gem "bundler", "~> 2.0"
-gem "rake", "~> 10.0"
+gem "rake", "~> 12.0"
 gem "rspec-rails", "~> 3.0"
-gem "actionpack", "~> 4.2.0"
+gem "actionpack", "~> 6.0.0"

data/lib/cognito_token_verifier/version.rb CHANGED

@@ -1,3 +1,3 @@
 module CognitoTokenVerifier
-  VERSION = "0.2.0"
+  VERSION = "0.3.0"
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: cognito_token_verifier
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
 platform: ruby
 authors:
 - Matt Tanous
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2019-02-21 00:00:00.000000000 Z
+date: 2019-11-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -19,7 +19,7 @@ dependencies:
         version: '4.2'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.0'
+        version: '6.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -29,21 +29,21 @@ dependencies:
         version: '4.2'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.0'
+        version: '6.1'
 - !ruby/object:Gem::Dependency
   name: json-jwt
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '1.11'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '1.11'
 - !ruby/object:Gem::Dependency
   name: rest-client
   requirement: !ruby/object:Gem::Requirement
@@ -95,7 +95,7 @@ dependencies:
         version: '10.0'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '13.0'
+        version: '14.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -105,7 +105,7 @@ dependencies:
         version: '10.0'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '13.0'
+        version: '14.0'
 - !ruby/object:Gem::Dependency
   name: rspec-rails
   requirement: !ruby/object:Gem::Requirement
@@ -129,7 +129,7 @@ dependencies:
         version: '4.2'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.0'
+        version: '6.1'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -139,7 +139,7 @@ dependencies:
         version: '4.2'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.0'
+        version: '6.1'
 description:
 email:
 - mtanous22@gmail.com
@@ -159,9 +159,9 @@ files:
 - bin/console
 - bin/setup
 - cognito_token_verifier.gemspec
-- gemfiles/rails42.gemfile
 - gemfiles/rails51.gemfile
 - gemfiles/rails52.gemfile
+- gemfiles/rails6.gemfile
 - lib/cognito_token_verifier.rb
 - lib/cognito_token_verifier/config.rb
 - lib/cognito_token_verifier/controller_macros.rb
@@ -190,8 +190,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.7.8
+rubygems_version: 3.0.6
 signing_key:
 specification_version: 4
 summary: Verify and parse AWS Cognito JWTs to authenticate endpoints