conjur-api 6.0.0 → 6.0.1.pre.250

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f9abe53aac5d77960b35ee9f111cf86250adc0286b4411672184e1ebee57ddff
-  data.tar.gz: e10e88374f348076d1e7064ab53c066462d25e2f4f981a5f610881bbb53eda05
+  metadata.gz: 87a442076a86568ddabff5afd5b9cd8b437c9e8c494290e47256f4a18742a620
+  data.tar.gz: 9e93f94e7e55dcf0df83741f79184d037ebdacac5d77ac548635fcac82299f1a
 SHA512:
-  metadata.gz: 3307984dfc0e5f7cafccd2ea76462e6c3f50acad8a4a77ec44bfe9d228d8e3c4bad822db33fa2744cf13402147d528b8109787af844c9c880899fd77b0c21b14
-  data.tar.gz: e6da130a448c56bda7316b064e673c50e5d15227d843d473602c4de9f07c0c340e52946bdc08da2d908a84d433b74e00d3ef72a8e73fd38943287787d229d447
+  metadata.gz: 9a57f7864acdb019e5310b31df1201975b67cd08ed7fc7ae5c2cdf603762d69abacaa537ef74bde6abd6759cf03947ebfc5e880003c5aeeee855c0936bddc4aa
+  data.tar.gz: 58d614f50cf4102b32e8e5f86899e48a36f67bf326b7f0525c1b9442b44eb65479f59d31225e361a47e78f990c7f27d111667b7679c7d30022ec3f13ba403fcb

data/CHANGELOG.md

@@ -9,6 +9,12 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 - Nothing should go in this section, please add to the latest unreleased version
   (and update the corresponding date), or add a new version.
 
+## [6.0.1] - 2024-04-05
+
+### Fixed
+- Pass valid field in #memberships to fix listing roles (CNJR-2109)
+- Pull keycloak image from internal repository
+
 ## [6.0.0] - 2023-12-28
 
 ### Removed

data/Dockerfile

@@ -1,7 +1,7 @@
 ARG RUBY_VERSION
 FROM ruby:$RUBY_VERSION
 
-RUN apt-get update && apt-get install -y vim curl
+RUN apt-get update && apt-get install -y --no-install-recommends vim curl
 
 WORKDIR /src/conjur-api
 

data/Jenkinsfile

@@ -48,6 +48,14 @@ pipeline {
       }
     }
 
+    stage('Scan for internal URLs') {
+      steps {
+        script {
+          detectInternalUrls()
+        }
+      }
+    }
+
     stage('Get InfraPool Agent') {
       steps {
         script {

data/VERSION

@@ -1 +1 @@
-6.0.0
+6.0.1-250

data/dev/Dockerfile.dev

@@ -1,6 +1,6 @@
 FROM ruby:3-slim
 
-RUN apt-get update && apt-get install -y vim curl git build-essential
+RUN apt-get update && apt-get install -y --no-install-recommends vim curl git build-essential
 
 WORKDIR /src/conjur-api
 

data/docker-compose.yml

@@ -20,7 +20,7 @@ services:
       - keycloak
 
   keycloak:
-    image: jboss/keycloak:4.3.0.Final
+    image: registry.tld/jboss/keycloak:4.3.0.Final
     environment:
       - KEYCLOAK_USER=admin
       - KEYCLOAK_PASSWORD=admin

data/example/demo.rb

@@ -3,6 +3,7 @@
 require 'conjur-api'
 require 'securerandom'
 
+# deepcode ignore HardcodedCredential: This is demo code
 username = "admin"
 
 arguments = ARGV.dup

data/features/members.feature

@@ -49,3 +49,10 @@ Feature: Display role members and memberships.
       }
     ]
     """
+
+  Scenario: Show a role's memberships non-recursive.
+    When I run the code:
+    """
+    $conjur.role('cucumber:group:developers').memberships(recursive: false).any?
+    """
+    Then the result should be "true"

data/kics.config

@@ -0,0 +1,19 @@
+# All of the following issues are not a concern for the infrastructure files in this
+# repository since they're only used in the build process or testing.
+exclude-queries:
+  - 965a08d7-ef86-4f14-8792-4a3b2098937e # Apt Get Install Pin Version Not Defined
+  - fd54f200-402c-4333-a5a4-36ef6709af2f # Missing User Instruction
+  - ce76b7d0-9e77-464d-b86f-c5c48e03e22d # Container Capabilities Unrestricted
+  - 8c978947-0ff6-485c-b0c2-0bfca6026466 # Shared Volumes Between Containers
+  - 610e266e-6c12-4bca-9925-1ed0cd29742b # Security Opt Not Set
+  - b03a748a-542d-44f4-bb86-9199ab4fd2d5 # Healthcheck Instruction Missing
+  - 698ed579-b239-4f8f-a388-baa4bcb13ef8 # Healthcheck Not Set
+  - 451d79dc-0588-476a-ad03-3c7f0320abb3 # Container Traffic Not Bound To Host Interface
+  - df746b39-6564-4fed-bf85-e9c44382303c # Apt Get Install Lists Were Not Deleted
+  - 4f31dd9f-2cc3-4751-9b53-67e4af83dac0 # Host Namespace is Shared
+  - ce14a68b-1668-41a0-ab7d-facd9f784742 # Networks Not Set
+
+# The following files are used for development and testing only.
+exclude-paths:
+  - "conjur-api-ruby/docker-compose.yml"
+  - "conjur-api-ruby/dev/docker-compose.yml"

data/lib/conjur/acts_as_role.rb

@@ -108,7 +108,7 @@ module Conjur
           if item.is_a?(String)
             build_object(item, default_class: Role)
           else
-            RoleGrant.parse_from_json(item, self.options)
+            RoleGrant.parse_from_json(item, self.credentials)
           end
         end
       end

data/spec/api_spec.rb

@@ -146,6 +146,7 @@ describe Conjur::API do
       let(:token_encoded) { Base64.strict_encode64(token.to_json) }
       let(:base_headers) { { authorization: authz_header } }
       let(:headers) { base_headers }
+      # deepcode ignore InsecureTransmission: This is test code
       let(:resource) { RestClient::Resource.new("http://example.com", { headers: headers })}
       context 'basic functioning' do
         it_behaves_like 'it can clone itself'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: conjur-api
 version: !ruby/object:Gem::Version
-  version: 6.0.0
+  version: 6.0.1.pre.250
 platform: ruby
 authors:
 - CyberArk Maintainers
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-02-16 00:00:00.000000000 Z
+date: 2024-09-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client
@@ -339,6 +339,7 @@ files:
 - features/user.feature
 - features/variable_fields.feature
 - features/variable_value.feature
+- kics.config
 - lib/conjur-api.rb
 - lib/conjur-api/version.rb
 - lib/conjur/acts_as_resource.rb
@@ -419,9 +420,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '1.9'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubygems_version: 3.4.10
 signing_key: