RubyGems - devise-secure_password - Versions diffs - 2.0.0 → 2.1.0 - Mend

devise-secure_password 2.0.0 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (22) hide show

checksums.yaml +4 -4
data/Changelog.md +8 -0
data/Gemfile +1 -1
data/Gemfile.lock +250 -192
data/README.md +40 -13
data/config/locales/en.yml +1 -0
data/devise-secure_password.gemspec +8 -4
data/gemfiles/rails_6_1.gemfile +1 -1
data/gemfiles/rails_7_0.gemfile +66 -0
data/lib/devise/secure_password/models/password_disallows_frequent_changes.rb +7 -7
data/lib/devise/secure_password/models/password_disallows_frequent_reuse.rb +1 -1
data/lib/devise/secure_password/models/password_requires_regular_updates.rb +7 -7
data/lib/devise/secure_password/version.rb +1 -1
data/lib/generators/devise/templates/secure_password.rb +1 -1
data/lib/support/string/character_counter.rb +1 -1
data/pkg/devise-secure_password-2.0.1.gem +0 -0
data/pkg/devise-secure_password-2.1.0.gem +0 -0
metadata +14 -14
data/gemfiles/rails_6_0.gemfile +0 -57
data/gemfiles/rails_6_0.gemfile.lock +0 -347
data/gemfiles/rails_6_1.gemfile.lock +0 -352
data/pkg/devise-secure_password-2.0.0.gem +0 -0

data/config/locales/en.yml CHANGED Viewed

@@ -7,6 +7,7 @@ en:
     types:
       uppercase: "uppercase"
       downcase: "downcase"
+      lowercase: "lowercase"
       number: "number"
       special: "special"

data/devise-secure_password.gemspec CHANGED Viewed

@@ -24,12 +24,16 @@ Gem::Specification.new do |spec|
   spec.files         = Dir['./**/*'].reject do |f|
     f.match(%r{^./(test|spec|features|lib/tasks)/|Gemfile.lock.ci})
   end
+  spec.metadata = {
+    'rubygems_mfa_required' => 'true'
+  }
   spec.executables   = spec.files.grep(%r{^bin/}).map { |f| File.basename(f) }
-  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
   spec.require_paths = ['lib']
   spec.add_runtime_dependency 'devise', '>= 4.0.0', '< 5.0.0'
-  spec.add_runtime_dependency 'railties', '>= 5.0.0', '< 7.0.0'
+  spec.add_runtime_dependency 'railties', '>= 5.0.0', '< 8.0.0'
   spec.add_development_dependency 'bundler',                 '>= 2.2.14'
   spec.add_development_dependency 'capybara',                '>= 3.35.3'
@@ -38,7 +42,7 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'devise',                  '~> 4.0'
   spec.add_development_dependency 'flay',                    '>= 2.10.0'
   spec.add_development_dependency 'launchy',                 '>= 2.4.3'
-  spec.add_development_dependency 'rails',                   '>= 5.2.0'
+  spec.add_development_dependency 'rails',                   '>= 6.1.0'
   spec.add_development_dependency 'rake',                    '>= 12.3'
   spec.add_development_dependency 'rspec',                   '>= 3.7'
   spec.add_development_dependency 'rspec_junit_formatter',   '>= 0.3'
@@ -50,7 +54,7 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'selenium-webdriver',      '>= 3.7.0'
   spec.add_development_dependency 'simplecov',               '>= 0.18.2'
   spec.add_development_dependency 'simplecov-console',       '>= 0.4.2'
-  spec.add_development_dependency 'sqlite3',                 '>= 1.3.13'
+  spec.add_development_dependency 'sqlite3',                 '>= 1.7.0'
   spec.required_ruby_version = '>= 2.7'
 end

data/gemfiles/rails_6_1.gemfile CHANGED Viewed

@@ -8,7 +8,7 @@ gemspec path: '../'
 # Bundle edge Rails instead: gem 'rails', github: 'rails/rails', branch: 'main'
 gem 'rails', '~> 6.1.3', '>= 6.1.3.1'
 # Use sqlite3 as the database for Active Record
-gem 'sqlite3', '~> 1.4'
+gem 'sqlite3', '~> 1.7.0'
 # Use Puma as the app server
 gem 'puma', '~> 5.0'
 # Use SCSS for stylesheets

data/gemfiles/rails_7_0.gemfile ADDED Viewed

@@ -0,0 +1,66 @@
+source 'https://rubygems.org'
+git_source(:github) { |repo| "https://github.com/#{repo}.git" }
+ENV['RAILS_TARGET'] ||= '7.0'
+gemspec path: '../'
+# Bundle edge Rails instead: gem "rails", github: "rails/rails", branch: "main"
+gem 'rails', '~> 7.1.3', '>= 7.1.3.4'
+# The original asset pipeline for Rails [https://github.com/rails/sprockets-rails]
+gem 'sprockets-rails'
+# Use sqlite3 as the database for Active Record
+gem 'sqlite3', '~> 1.4'
+# Use the Puma web server [https://github.com/puma/puma]
+gem 'puma', '>= 5.0'
+# Use JavaScript with ESM import maps [https://github.com/rails/importmap-rails]
+gem 'importmap-rails'
+# Hotwire's SPA-like page accelerator [https://turbo.hotwired.dev]
+gem 'turbo-rails'
+# Hotwire's modest JavaScript framework [https://stimulus.hotwired.dev]
+gem 'stimulus-rails'
+# Build JSON APIs with ease [https://github.com/rails/jbuilder]
+gem 'jbuilder'
+# Use Redis adapter to run Action Cable in production
+# gem "redis", ">= 4.0.1"
+# Use Kredis to get higher-level data types in Redis [https://github.com/rails/kredis]
+# gem "kredis"
+# Use Active Model has_secure_password [https://guides.rubyonrails.org/active_model_basics.html#securepassword]
+# gem "bcrypt", "~> 3.1.7"
+# Windows does not include zoneinfo files, so bundle the tzinfo-data gem
+gem 'tzinfo-data', platforms: %i(windows jruby)
+# Reduces boot times through caching; required in config/boot.rb
+gem 'bootsnap', require: false
+# Use Active Storage variants [https://guides.rubyonrails.org/active_storage_overview.html#transforming-images]
+# gem "image_processing", "~> 1.2"
+group :development do
+  # Use console on exceptions pages [https://github.com/rails/web-console]
+  gem 'web-console'
+  # Speed up commands on slow machines / big apps [https://github.com/rails/spring]
+  # gem "spring"
+end
+group :test do
+  # Adds support for Capybara system testing and selenium driver
+  gem 'capybara', '>= 3.26'
+  gem 'codecov', require: false
+  gem 'selenium-webdriver'
+  gem 'shoulda-matchers'
+  # Easy installation and use of web drivers to run system tests with browsers
+  gem 'webdrivers'
+end

data/lib/devise/secure_password/models/password_disallows_frequent_changes.rb CHANGED Viewed

@@ -37,15 +37,15 @@ module Devise
       def before_resource_initialized
         return if self.class.respond_to?(:password_previously_used_count)
-        raise ConfigurationError, <<-ERROR.strip_heredoc
+        raise ConfigurationError, <<~ERROR
-        The password_disallows_frequent_changes module depends on the
-        password_disallows_frequent_reuse module. Verify that you have
-        added both modules to your model, for example:
+          The password_disallows_frequent_changes module depends on the
+          password_disallows_frequent_reuse module. Verify that you have
+          added both modules to your model, for example:
-          devise :database_authenticatable, :registerable,
-            :password_disallows_frequent_reuse,
-            :password_disallows_frequent_changes
+            devise :database_authenticatable, :registerable,
+              :password_disallows_frequent_reuse,
+              :password_disallows_frequent_changes
         ERROR
       end

data/lib/devise/secure_password/models/password_disallows_frequent_reuse.rb CHANGED Viewed

@@ -41,7 +41,7 @@ module Devise
       end
       def previous_password?(password)
-        salts = previous_passwords.select(:salt).map(&:salt)
+        salts = previous_passwords.pluck(:salt)
         pepper = self.class.pepper.presence || ''
         salts.each do |salt|

data/lib/devise/secure_password/models/password_requires_regular_updates.rb CHANGED Viewed

@@ -20,15 +20,15 @@ module Devise
       def before_regular_update_initialized
         return if self.class.respond_to?(:password_previously_used_count)
-        raise ConfigurationError, <<-ERROR.strip_heredoc
+        raise ConfigurationError, <<~ERROR
-        The password_requires_regular_updates module depends on the
-        password_disallows_frequent_reuse module. Verify that you have
-        added both modules to your model, for example:
+          The password_requires_regular_updates module depends on the
+          password_disallows_frequent_reuse module. Verify that you have
+          added both modules to your model, for example:
-          devise :database_authenticatable, :registerable,
-            :password_disallows_frequent_reuse,
-            :password_requires_regular_updates
+            devise :database_authenticatable, :registerable,
+              :password_disallows_frequent_reuse,
+              :password_requires_regular_updates
         ERROR
       end

data/lib/devise/secure_password/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Devise
   module SecurePassword
-    VERSION = '2.0.0'.freeze
+    VERSION = '2.1.0'.freeze
   end
 end

data/lib/generators/devise/templates/secure_password.rb CHANGED Viewed

@@ -18,7 +18,7 @@ Devise.setup do |config|
   # The number of numbers (0-9) required in a password:
   # config.password_required_number_count = 1
-  # The number of special characters (!@#$%^&*()_+-=[]{}|') required in a password:
+  # The number of special characters ( !@#$%^&*()_+-=[]{}|'"/\.,`<>:;?~) required in a password:
   # config.password_required_special_character_count = 1
   # ==> Configuration for the Devise Secure Password extension

data/lib/support/string/character_counter.rb CHANGED Viewed

@@ -11,7 +11,7 @@ module Support
           uppercase: characters_to_dictionary(('A'..'Z').to_a),
           lowercase: characters_to_dictionary(('a'..'z').to_a),
           number: characters_to_dictionary(('0'..'9').to_a),
-          special: characters_to_dictionary(%w(! @ # $ % ^ & * ( ) _ + - = [ ] { } | ')),
+          special: characters_to_dictionary([' ', '!', '@', '#', '$', '%', '^', '&', '*', '(', ')', '_', '+', '-', '=', '[', ']', '{', '}', '|', '"', '/', '\\', '.', ',', '`', '<', '>', ':', ';', '?', '~', "'"]),
           unknown: {}
         }
       end

data/pkg/devise-secure_password-2.0.1.gem ADDED Viewed

Binary file

data/pkg/devise-secure_password-2.1.0.gem ADDED Viewed

Binary file

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: devise-secure_password
 version: !ruby/object:Gem::Version
-  version: 2.0.0
+  version: 2.1.0
 platform: ruby
 authors:
 - Mark Eissler
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-05-04 00:00:00.000000000 Z
+date: 2024-06-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: devise
@@ -39,7 +39,7 @@ dependencies:
         version: 5.0.0
     - - "<"
       - !ruby/object:Gem::Version
-        version: 7.0.0
+        version: 8.0.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -49,7 +49,7 @@ dependencies:
         version: 5.0.0
     - - "<"
       - !ruby/object:Gem::Version
-        version: 7.0.0
+        version: 8.0.0
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -154,14 +154,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 5.2.0
+        version: 6.1.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 5.2.0
+        version: 6.1.0
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -322,14 +322,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.3.13
+        version: 1.7.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.3.13
+        version: 1.7.0
 description: Adds configurable password policy enforcement to devise.
 email:
 - mark.eissler@valimail.com
@@ -353,10 +353,8 @@ files:
 - "./config/locales/en.yml"
 - "./devise-secure_password.gemspec"
 - "./docker-entrypoint.sh"
-- "./gemfiles/rails_6_0.gemfile"
-- "./gemfiles/rails_6_0.gemfile.lock"
 - "./gemfiles/rails_6_1.gemfile"
-- "./gemfiles/rails_6_1.gemfile.lock"
+- "./gemfiles/rails_7_0.gemfile"
 - "./lib/devise/secure_password.rb"
 - "./lib/devise/secure_password/controllers/devise_helpers.rb"
 - "./lib/devise/secure_password/controllers/helpers.rb"
@@ -372,11 +370,13 @@ files:
 - "./lib/generators/devise/templates/README.txt"
 - "./lib/generators/devise/templates/secure_password.rb"
 - "./lib/support/string/character_counter.rb"
-- "./pkg/devise-secure_password-2.0.0.gem"
+- "./pkg/devise-secure_password-2.0.1.gem"
+- "./pkg/devise-secure_password-2.1.0.gem"
 homepage: https://github.com/valimail/devise-secure_password
 licenses:
 - MIT
-metadata: {}
+metadata:
+  rubygems_mfa_required: 'true'
 post_install_message:
 rdoc_options: []
 require_paths:
@@ -392,7 +392,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.16
+rubygems_version: 3.5.9
 signing_key:
 specification_version: 4
 summary: A devise password policy enforcement extension.

data/gemfiles/rails_6_0.gemfile DELETED Viewed

@@ -1,57 +0,0 @@
-source 'https://rubygems.org'
-git_source(:github) { |repo| "https://github.com/#{repo}.git" }
-ENV['RAILS_TARGET'] ||= '6.0'
-gemspec path: '../'
-# Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
-gem 'rails', '~> 6.0.3', '>= 6.0.3.6'
-# Use sqlite3 as the database for Active Record
-gem 'sqlite3', '~> 1.4'
-# Use Puma as the app server
-gem 'puma', '~> 4.1'
-# Use SCSS for stylesheets
-gem 'sass-rails', '>= 6'
-# Transpile app-like JavaScript. Read more: https://github.com/rails/webpacker
-gem 'webpacker', '~> 4.0'
-# Turbolinks makes navigating your web application faster. Read more: https://github.com/turbolinks/turbolinks
-gem 'turbolinks', '~> 5'
-# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder
-gem 'jbuilder', '~> 2.7'
-# Use Redis adapter to run Action Cable in production
-# gem 'redis', '~> 4.0'
-# Use Active Model has_secure_password
-# gem 'bcrypt', '~> 3.1.7'
-# Use Active Storage variant
-# gem 'image_processing', '~> 1.2'
-# Reduces boot times through caching; required in config/boot.rb
-gem 'bootsnap', '>= 1.4.2', require: false
-group :development, :test do
-  # Call 'byebug' anywhere in the code to stop execution and get a debugger console
-  gem 'byebug', platforms: %i(mri mingw x64_mingw)
-end
-group :development do
-  # Access an interactive console on exception pages or by calling 'console' anywhere in the code.
-  gem 'listen', '~> 3.2'
-  gem 'web-console', '>= 3.3.0'
-end
-group :test do
-  # Adds support for Capybara system testing and selenium driver
-  gem 'capybara', '>= 2.15'
-  gem 'codecov', require: false
-  gem 'selenium-webdriver'
-  gem 'shoulda-matchers'
-  # Easy installation and use of web drivers to run system tests with browsers
-  gem 'webdrivers'
-end
-# Windows does not include zoneinfo files, so bundle the tzinfo-data gem
-gem 'tzinfo-data', platforms: %i(mingw mswin x64_mingw jruby)
-gem 'webrick', '~> 1.7'