RubyGems - doorkeeper-openid_connect - Versions diffs - 1.8.5 → 1.8.7 - Mend

doorkeeper-openid_connect 1.8.5 → 1.8.7

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5bff9200998de53d57960fb1b0bd63e2a692e214285fdf720b26b574fd2ab20b
-  data.tar.gz: 83143a584098d2c164ad076d00b71af22f74c54a9c99c2cde823bc89e13e6bc3
+  metadata.gz: 83342bd73b56bfb9b995c4c63229d44b1eadb297b17bd7375360c6cf8c52003b
+  data.tar.gz: 023f4e40d227ce921670930d824fe6788673d0cd8079f3654957db3ac6729ca3
 SHA512:
-  metadata.gz: 19a46eaf1bb1224a0a1e3e76fd59a7a9fd90d7bafa3c0da6c68f1684a199fec659627dc0d13600bda8aca1267bcf386317a80773612110a396f750bffa0cd6e8
-  data.tar.gz: 4ad9bd1ddfaf2b0e5b01e92559b134ed36f39e01df9612a2763368787f13a16ca0bccbc3d18ae538b2208daf7b53e39453a66ee114b2c112b596f5a670a4d151
+  metadata.gz: 02ec6f995359e79577f7e2267bc6bd20bedfc447634af748bcbd54107c4483bbfaa1edc4cfe805fcd20b38f3d3add7ae6aa78eee2d1d1f303d32a5b6930c88c3
+  data.tar.gz: 6e06a331dff7629fa4399dfffa35557d7aa1a599e92881c8e8465bffc309853ea828abd2c1b95c20d926f989525bf44bead030e1afaee09eacc6a37d543d35b3

data/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,14 @@
 - [#PR ID] Add your changelog entry here.
+## v1.8.7 (2023-05-18)
+- [#198] Fully qualify `JWT::JWK::Thumbprint` constant with :: (thanks to @stanhu)
+## v1.8.6 (2023-05-12)
+- [#194] Default to RFC 7638 kid fingerprint generation (thanks to @stanhu).
 ## v1.8.5 (2023-02-02)
 - [#186] Simplify gem configuration reusing Doorkeeper configuration option DSL (thanks to @nbulaj).
@@ -10,6 +18,10 @@
 ## v1.8.4 (2023-02-01)
+Note that v1.8.4 changed the default kid fingerprint generation from RFC 7638 to a format
+based on the SHA256 digest of the key element. To restore the previous behavior, upgrade to v1.8.6.
+- [#177] Replace `json-jwt` with `ruby-jwt` to align with doorkeeper-jwt (thanks to @kristof-mattei).
 - [#185] Don't call active_record_options for Doorkeeper >= 5.6.3 (thanks to @zavan).
 - [#183] Stop render consent screen when user is not logged-in (thanks to @nov).
@@ -17,10 +29,6 @@
 - [#180] Add PKCE support to OpenID discovery endpoint (thanks to @stanhu).
-## Unreleased next
-- [#177] Replace `json-jwt` with `ruby-jwt` to align with doorkeeper-jwt (thanks to @kristof-mattei).
 ## v1.8.2 (2022-07-13)
 - [#168] Allow to use custom doorkeeper access grant model (thanks @nov).

data/lib/doorkeeper/openid_connect/version.rb CHANGED Viewed

@@ -2,6 +2,6 @@
 module Doorkeeper
   module OpenidConnect
-    VERSION = '1.8.5'
+    VERSION = '1.8.7'
   end
 end

data/lib/doorkeeper/openid_connect.rb CHANGED Viewed

@@ -48,7 +48,7 @@ module Doorkeeper
         else
           OpenSSL::PKey.read(configuration.signing_key)
         end
-      ::JWT::JWK.new(key)
+      ::JWT::JWK.new(key, { kid_generator: ::JWT::JWK::Thumbprint })
     end
     def self.signing_key_normalized

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: doorkeeper-openid_connect
 version: !ruby/object:Gem::Version
-  version: 1.8.5
+  version: 1.8.7
 platform: ruby
 authors:
 - Sam Dengler
@@ -10,7 +10,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-02-02 00:00:00.000000000 Z
+date: 2023-05-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: doorkeeper