devise-two-factor 2.2.0 → 2.2.1

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of devise-two-factor might be problematic. Click here for more details.

Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. checksums.yaml.gz.sig +0 -0
  3. data/UPGRADING.md +2 -0
  4. data/devise-two-factor.gemspec +1 -1
  5. data/lib/devise_two_factor/version.rb +1 -1
  6. data.tar.gz.sig +0 -0
  7. metadata +7 -1
  8. metadata.gz.sig +0 -0
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 49da530a07a8536cd97a273716ac420983b6d5c5
4
- data.tar.gz: 096e65bcf25b0a075c86f759ff8d96c1ac74e1e0
3
+ metadata.gz: 7733242048c6e6912c7768974ae43ad710aee326
4
+ data.tar.gz: 4148cd6ab0a90308fd07f98ba395982b7ffc098d
5
5
  SHA512:
6
- metadata.gz: bb74672142accc67af59a6f4af54b7984e2e7ef72649c5cc089bf55702c9c7fb6443b4c07adcffce8ed8a78b9bb928c557c674fd1ca6b08587c146a4ecbc05fc
7
- data.tar.gz: 2e5de1659867d6308c2987eb05dddda217ac9165d81e70b1fb036d8b4d2dbc8832dd24fa4c21c1b189935b9b941face1144cce62191af2a8be9cc42a0cc51de2
6
+ metadata.gz: a6b74254dd5c556c532070905ee2075c66fe43dc9b41c4121b57f15ed971f7239aa85e663526f72e1aa36dd3e7d76e06b3d8897985f62e103f11cb41dc3280f0
7
+ data.tar.gz: e35807622d16188854d134cd7365e53ed2a616757e2baa38a808e4444bcbd891a90c665ab07b6c7b186a635124db4f7f1c83161caaa2e1d8044c13c6d99273ec
checksums.yaml.gz.sig CHANGED
Binary file
data/UPGRADING.md CHANGED
@@ -1,5 +1,7 @@
1
1
  # Guide to upgrading from 2.x to 3.x
2
2
 
3
+ Pull request #76 allows for compatibility with `attr_encrypted` 3.0, which should be used due to a security vulnerability discovered in 2.0.
4
+
3
5
  Pull request #73 allows for compatibility with `attr_encrypted` 2.0. This version changes many of the defaults which must be taken into account to avoid corrupted OTP secrets on your model.
4
6
 
5
7
  Due to new security practices in `attr_encrypted` an encryption key with insufficient length will cause an error. If you run into this, you may set `insecure_mode: true` in the `attr_encrypted` options.
data/devise-two-factor.gemspec CHANGED
@@ -26,7 +26,7 @@ Gem::Specification.new do |s|
26
26
 
27
27
  s.add_runtime_dependency 'railties'
28
28
  s.add_runtime_dependency 'activesupport'
29
- s.add_runtime_dependency 'attr_encrypted', '>= 1.3', '< 4'
29
+ s.add_runtime_dependency 'attr_encrypted', '>= 1.3', '< 4', '!= 2'
30
30
  s.add_runtime_dependency 'devise', '~> 3.5'
31
31
  s.add_runtime_dependency 'rotp', '~> 2.0'
32
32
 
data/lib/devise_two_factor/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module DeviseTwoFactor
2
- VERSION = '2.2.0'.freeze
2
+ VERSION = '2.2.1'.freeze
3
3
  end
data.tar.gz.sig CHANGED
Binary file
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: devise-two-factor
3
3
  version: !ruby/object:Gem::Version
4
- version: 2.2.0
4
+ version: 2.2.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Shane Wilton
@@ -124,6 +124,9 @@ dependencies:
124
124
  - - "<"
125
125
  - !ruby/object:Gem::Version
126
126
  version: '4'
127
+ - - "!="
128
+ - !ruby/object:Gem::Version
129
+ version: '2'
127
130
  type: :runtime
128
131
  prerelease: false
129
132
  version_requirements: !ruby/object:Gem::Requirement
@@ -134,6 +137,9 @@ dependencies:
134
137
  - - "<"
135
138
  - !ruby/object:Gem::Version
136
139
  version: '4'
140
+ - - "!="
141
+ - !ruby/object:Gem::Version
142
+ version: '2'
137
143
  - !ruby/object:Gem::Dependency
138
144
  name: devise
139
145
  requirement: !ruby/object:Gem::Requirement
metadata.gz.sig CHANGED
Binary file