firebase_id_token 2.5.0 → 2.5.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +11 -0
- data/README.md +1 -1
- data/firebase_id_token.gemspec +1 -1
- data/lib/firebase_id_token/signature.rb +1 -14
- data/lib/firebase_id_token/testing/certificates.rb +0 -4
- data/lib/firebase_id_token/version.rb +1 -1
- metadata +5 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4cb7c188a4b5026064a64c3a11963be1caae523a448ecc5d998597b7c6989d74
|
|
4
|
+
data.tar.gz: b0d57512d245bc43ff295bc0987d8529b6881fdcb7c3508d227204c029821725
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c17980aaa3e572ac10bf4208ae27ca2dc75781665c219422b23209eb9f7183532d50c2e2491d9036cfd2702cadaddeadb3cac926cf2e7f0d1f0baacc85e22c57
|
|
7
|
+
data.tar.gz: d9db140915704be2cf596a136e60bc9a4afee5e99eb1eebd35adfb65eeb2beec535ed72188e7a7454413629591f4310f8ae6db050dcd23f4f474dff0737f501f
|
data/CHANGELOG.md
CHANGED
|
@@ -6,6 +6,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
|
6
6
|
|
|
7
7
|
## [Unreleased]
|
|
8
8
|
|
|
9
|
+
## [2.5.2] - 2023-03-16
|
|
10
|
+
|
|
11
|
+
### Fixed
|
|
12
|
+
- [CWE-472](https://github.com/fschuindt/firebase_id_token/pull/41).
|
|
13
|
+
|
|
14
|
+
## [2.5.1] - 2022-08-15
|
|
15
|
+
|
|
16
|
+
### Fixed
|
|
17
|
+
- "[New caching doesn't honor request! calls](https://github.com/fschuindt/firebase_id_token/issues/35)", by reverting "[Caching certificates on memory.](https://github.com/fschuindt/firebase_id_token/pull/33)", PR #33.
|
|
18
|
+
|
|
9
19
|
## [2.5.0] - 2022-04-13
|
|
10
20
|
|
|
11
21
|
### Fixed
|
|
@@ -109,6 +119,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
|
109
119
|
## [0.1.0] - 2017-04-23
|
|
110
120
|
*Version removed.*
|
|
111
121
|
|
|
122
|
+
[2.5.1]: https://github.com/fschuindt/firebase_id_token/compare/2.5.0...2.5.1
|
|
112
123
|
[2.5.0]: https://github.com/fschuindt/firebase_id_token/compare/2.4.0...2.5.0
|
|
113
124
|
[2.4.0]: https://github.com/fschuindt/firebase_id_token/compare/2.3.2...2.4.0
|
|
114
125
|
[2.3.2]: https://github.com/fschuindt/firebase_id_token/compare/2.3.1...2.3.2
|
data/README.md
CHANGED
data/firebase_id_token.gemspec
CHANGED
|
@@ -32,6 +32,6 @@ Gem::Specification.new do |spec|
|
|
|
32
32
|
|
|
33
33
|
spec.add_runtime_dependency 'redis', '~> 4.0', '>= 4.0.1'
|
|
34
34
|
spec.add_runtime_dependency 'redis-namespace', '~> 1.6', '>= 1.6.0'
|
|
35
|
-
spec.add_dependency 'httparty', '~> 0.
|
|
35
|
+
spec.add_dependency 'httparty', '~> 0.21', '>= 0.16.2'
|
|
36
36
|
spec.add_runtime_dependency 'jwt', '~> 2.1', '>= 2.1.0'
|
|
37
37
|
end
|
|
@@ -78,20 +78,7 @@ module FirebaseIdToken
|
|
|
78
78
|
|
|
79
79
|
# @see Signature.verify
|
|
80
80
|
def verify
|
|
81
|
-
|
|
82
|
-
Thread.current[var_name] ||= {
|
|
83
|
-
cert: nil,
|
|
84
|
-
expires_at: Time.now.utc - 1
|
|
85
|
-
}
|
|
86
|
-
|
|
87
|
-
if Thread.current[var_name][:expires_at] <= Time.now.utc
|
|
88
|
-
Thread.current[var_name] = {
|
|
89
|
-
cert: firebase_id_token_certificates.find(@kid, raise_error: @raise_error),
|
|
90
|
-
expires_at: Time.now.utc + firebase_id_token_certificates.ttl
|
|
91
|
-
}
|
|
92
|
-
end
|
|
93
|
-
|
|
94
|
-
certificate = Thread.current[var_name][:cert]
|
|
81
|
+
certificate = firebase_id_token_certificates.find(@kid, raise_error: @raise_error)
|
|
95
82
|
return unless certificate
|
|
96
83
|
|
|
97
84
|
payload = decode_jwt_payload(@jwt_token, certificate.public_key)
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: firebase_id_token
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.5.
|
|
4
|
+
version: 2.5.2
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Fernando Schuindt
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2023-05-10 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: bundler
|
|
@@ -178,7 +178,7 @@ dependencies:
|
|
|
178
178
|
requirements:
|
|
179
179
|
- - "~>"
|
|
180
180
|
- !ruby/object:Gem::Version
|
|
181
|
-
version: '0.
|
|
181
|
+
version: '0.21'
|
|
182
182
|
- - ">="
|
|
183
183
|
- !ruby/object:Gem::Version
|
|
184
184
|
version: 0.16.2
|
|
@@ -188,7 +188,7 @@ dependencies:
|
|
|
188
188
|
requirements:
|
|
189
189
|
- - "~>"
|
|
190
190
|
- !ruby/object:Gem::Version
|
|
191
|
-
version: '0.
|
|
191
|
+
version: '0.21'
|
|
192
192
|
- - ">="
|
|
193
193
|
- !ruby/object:Gem::Version
|
|
194
194
|
version: 0.16.2
|
|
@@ -275,7 +275,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
275
275
|
- !ruby/object:Gem::Version
|
|
276
276
|
version: '0'
|
|
277
277
|
requirements: []
|
|
278
|
-
rubygems_version: 3.
|
|
278
|
+
rubygems_version: 3.2.3
|
|
279
279
|
signing_key:
|
|
280
280
|
specification_version: 4
|
|
281
281
|
summary: A Firebase ID Token verifier.
|