devise-two-factor 2.2.0 → 2.2.1
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of devise-two-factor might be problematic. Click here for more details.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data/UPGRADING.md +2 -0
- data/devise-two-factor.gemspec +1 -1
- data/lib/devise_two_factor/version.rb +1 -1
- data.tar.gz.sig +0 -0
- metadata +7 -1
- metadata.gz.sig +0 -0
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7733242048c6e6912c7768974ae43ad710aee326
|
4
|
+
data.tar.gz: 4148cd6ab0a90308fd07f98ba395982b7ffc098d
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: a6b74254dd5c556c532070905ee2075c66fe43dc9b41c4121b57f15ed971f7239aa85e663526f72e1aa36dd3e7d76e06b3d8897985f62e103f11cb41dc3280f0
|
7
|
+
data.tar.gz: e35807622d16188854d134cd7365e53ed2a616757e2baa38a808e4444bcbd891a90c665ab07b6c7b186a635124db4f7f1c83161caaa2e1d8044c13c6d99273ec
|
checksums.yaml.gz.sig
CHANGED
Binary file
|
data/UPGRADING.md
CHANGED
@@ -1,5 +1,7 @@
|
|
1
1
|
# Guide to upgrading from 2.x to 3.x
|
2
2
|
|
3
|
+
Pull request #76 allows for compatibility with `attr_encrypted` 3.0, which should be used due to a security vulnerability discovered in 2.0.
|
4
|
+
|
3
5
|
Pull request #73 allows for compatibility with `attr_encrypted` 2.0. This version changes many of the defaults which must be taken into account to avoid corrupted OTP secrets on your model.
|
4
6
|
|
5
7
|
Due to new security practices in `attr_encrypted` an encryption key with insufficient length will cause an error. If you run into this, you may set `insecure_mode: true` in the `attr_encrypted` options.
|
data/devise-two-factor.gemspec
CHANGED
@@ -26,7 +26,7 @@ Gem::Specification.new do |s|
|
|
26
26
|
|
27
27
|
s.add_runtime_dependency 'railties'
|
28
28
|
s.add_runtime_dependency 'activesupport'
|
29
|
-
s.add_runtime_dependency 'attr_encrypted', '>= 1.3', '< 4'
|
29
|
+
s.add_runtime_dependency 'attr_encrypted', '>= 1.3', '< 4', '!= 2'
|
30
30
|
s.add_runtime_dependency 'devise', '~> 3.5'
|
31
31
|
s.add_runtime_dependency 'rotp', '~> 2.0'
|
32
32
|
|
data.tar.gz.sig
CHANGED
Binary file
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: devise-two-factor
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 2.2.
|
4
|
+
version: 2.2.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Shane Wilton
|
@@ -124,6 +124,9 @@ dependencies:
|
|
124
124
|
- - "<"
|
125
125
|
- !ruby/object:Gem::Version
|
126
126
|
version: '4'
|
127
|
+
- - "!="
|
128
|
+
- !ruby/object:Gem::Version
|
129
|
+
version: '2'
|
127
130
|
type: :runtime
|
128
131
|
prerelease: false
|
129
132
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -134,6 +137,9 @@ dependencies:
|
|
134
137
|
- - "<"
|
135
138
|
- !ruby/object:Gem::Version
|
136
139
|
version: '4'
|
140
|
+
- - "!="
|
141
|
+
- !ruby/object:Gem::Version
|
142
|
+
version: '2'
|
137
143
|
- !ruby/object:Gem::Dependency
|
138
144
|
name: devise
|
139
145
|
requirement: !ruby/object:Gem::Requirement
|
metadata.gz.sig
CHANGED
Binary file
|