firebase_id_token 1.2.2 → 1.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: fc79c09ea6648ca49fc769f921f9c8a15997b9de
-  data.tar.gz: d7881b68a3d41570c38cbb234f5386b3c9b73668
+  metadata.gz: 826a39ce30d8e7cf4bebcc40496cf648b2ad05c6
+  data.tar.gz: 1ad801570c7c529577f782c49c283c41ae208c47
 SHA512:
-  metadata.gz: ea3eed1f06ae7de070734edc01b2461ed7dae039301e1498d58b922b1100761c200f385f9b083a5762ec0c97d48c800a2e38f7936ed04069ed91979c91d9b74c
-  data.tar.gz: 86d0164fb11c3803c2b1c9913c9bb971d355a93fd515d106ea8fbef11cf5d5bd7c305104ada72fb0505c4ced8cb7966dcc58cac85ce7b7c51228ddc63860abbe
+  metadata.gz: a8c94b112639ead20b330ce76ca9743a42eea687cf0425ef785cdf2d487dfe04cfd234335426ae2b4d96bda623419f81b8fed99ea6c208c253a1316d57a8054b
+  data.tar.gz: 8a1dac0f03bacfd55078ad51124498e3fc5c5aced06490de25cbfa89ccdd10d322073484bbf67204b60d75507a100da2a92e0a42def260974433c6cd7f955ce7

data/README.md

@@ -14,9 +14,9 @@ It also checks the JWT payload parameters as recommended [here](https://firebase
 
 **This gem was developed recently and needs real world feedback.**
 
-If you are going to use it in production environment, please note that I am still testing it. It has realistc RSpec examples that uses real X509 certificates and signed JWT to perform tests and I can say it's working great. But using it implies in security risks, you should be aware.
+If you are going to use it in a production environment, please note that I am still testing it. It has realistic RSpec examples that use real X509 certificates and signed JWT to perform tests and I can say it's working great. But using it implies in security risks, you should be aware.
 
-Feel free to open any issue or to [contact me](https://fschuindt.github.io/blog/about/) regarding it's performance.
+Feel free to open any issue or to [contact me](https://fschuindt.github.io/blog/about/) regarding its performance.
 
 ## Docs
 
@@ -34,7 +34,7 @@ gem install firebase_id_token
 
 or in your Gemfile
 ```
-gem 'firebase_id_token', '~> 1.2.2'
+gem 'firebase_id_token', '~> 1.3.0'
 ```
 then
 ```
@@ -57,18 +57,21 @@ end
 *If you want to verify signatures from more than one Firebase project, just add more Project IDs to the list.*
 
 You can also pass a Redis instance to `config` if you are not using Redis defaults.  
-In this case you must have the gem `redis` in your `Gemfile`.
+In this case, you must have the gem `redis` in your `Gemfile`.
 ```ruby
 FirebaseIdToken.configure do |config|
   config.project_ids = ['your-firebase-project-id']
-  congig.redis = Redis.new(host: '10.0.1.1', port: 6380, db: 15)
+  config.redis = Redis.new(host: '10.0.1.1', port: 6380, db: 15)
 end
 ```
 
-Otherwise it will use just `Redis.new` as the instance.
+Otherwise, it will use just `Redis.new` as the instance.
 
 ## Usage
 
+You can get a glimpse of it by reading our RSpec output on your machine. It's
+really helpful. But here is a complete guide:
+
 ### Downloading Certificates
 
 Before verifying tokens, you need to download Google's x509 certificates.
@@ -80,10 +83,10 @@ FirebaseIdToken::Certificates.request
 
 It will download the certificates and save it in Redis, but only if Redis certificates database is empty. To force download and override Redis database, use:
 ```ruby
-FirebaseIdToken::Certificates.request_anyway
+FirebaseIdToken::Certificates.request!
 ```
 
-Google give us information about the certificates expiration time, it's used to set a Redis TTL (Time-To-Live) when saving it. By doing so, the certificates will be automatically deleted after it's expiration.
+Google give us information about the certificates expiration time, it's used to set a Redis TTL (Time-To-Live) when saving it. By doing so, the certificates will be automatically deleted after its expiration.
 
 #### Certificates Info
 
@@ -93,13 +96,13 @@ FirebaseIdToken::Certificates.present?
 => true
 ```
 
-How many seconds until the certificates expiration.
+How many seconds until the certificate's expiration.
 ```ruby
 FirebaseIdToken::Certificates.ttl
 => 22352
 ```
 
-Lists all certificates in database.
+Lists all certificates in a database.
 ```ruby
 FirebaseIdToken::Certificates.all
 => [{"ec8f292sd30224afac5c55540df66d1f999d" => <OpenSSL::X509::Certificate: [...]]
@@ -129,8 +132,8 @@ namespace :firebase do
     end
 
     desc "Request Google's x509 certificates and override Redis"
-    task request_anyway: :environment do
-      FirebaseIdToken::Certificates.request_anyway
+    task request!: :environment do
+      FirebaseIdToken::Certificates.request!
     end
   end
 end
@@ -139,7 +142,7 @@ end
 And in your `config/schedule.rb` you might have:
 ```ruby
 every 1.hour do
-  rake 'firebase:certificates:request_anyway'
+  rake 'firebase:certificates:request!'
 end
 ```
 

data/firebase_id_token.gemspec

@@ -27,12 +27,12 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'bundler', '~> 1.14'
   spec.add_development_dependency 'rake', '~> 10.0'
   spec.add_development_dependency 'rspec', '~> 3.0'
-  spec.add_development_dependency 'redcarpet', '~> 3.4.0'
+  spec.add_development_dependency 'redcarpet', '~> 3.4', '>= 3.4.0'
   spec.add_development_dependency 'simplecov', '~> 0.14.1'
-  spec.add_development_dependency 'codeclimate-test-reporter', '~> 1.0.0'
+  spec.add_development_dependency 'codeclimate-test-reporter', '~> 1.0', '>= 1.0.0'
 
-  spec.add_dependency 'redis', '~> 3.3.3'
-  spec.add_dependency 'redis-namespace', '~> 1.5.3'
+  spec.add_runtime_dependency 'redis', '~> 3.3', '>= 3.3.3'
+  spec.add_runtime_dependency 'redis-namespace', '~> 1.5', '>= 1.5.3'
   spec.add_dependency 'httparty', '~> 0.14.0'
-  spec.add_dependency 'jwt', '~> 1.5.6'
+  spec.add_runtime_dependency 'jwt', '~> 1.5', '>= 1.5.6'
 end

data/lib/firebase_id_token.rb

@@ -13,7 +13,7 @@ require 'firebase_id_token/signature'
 
 # ## List of available methods
 # + {Certificates.request}
-# + {Certificates.request_anyway}
+# + {Certificates.request!}
 # + {Certificates.present?}
 # + {Certificates.all}
 # + {Certificates.ttl}

data/lib/firebase_id_token/certificates.rb

@@ -4,7 +4,7 @@ module FirebaseIdToken
   #
   # ## Download & Access Certificates
   #
-  # It describes two ways to download it: {.request} and {.request_anyway}.
+  # It describes two ways to download it: {.request} and {.request!}.
   # The first will only do something when Redis certificates database is empty,
   # the second one will always request a new download to Google's API and
   # override the database with the response.
@@ -16,7 +16,7 @@ module FirebaseIdToken
   # *To know how many seconds left until the expiration you can use {.ttl}.*
   #
   # When comes to accessing it, you can either use {.present?} to check if
-  # there's any data inside Redis certificates database or {.all} to obtain a
+  # there's any data inside Redis certificates database or {.all} to obtain an
   # `Array` of current certificates.
   #
   # @example `.request` will only download once
@@ -24,10 +24,10 @@ module FirebaseIdToken
   #   FirebaseIdToken::Certificates.request # Won't do anything.
   #   FirebaseIdToken::Certificates.request # Won't do anything either.
   #
-  # @example `.request_anyway` will download always
+  # @example `.request!` will download always
   #   FirebaseIdToken::Certificates.request # Downloads certificates.
-  #   FirebaseIdToken::Certificates.request_anyway # Downloads certificates.
-  #   FirebaseIdToken::Certificates.request_anyway # Downloads certificates.
+  #   FirebaseIdToken::Certificates.request! # Downloads certificates.
+  #   FirebaseIdToken::Certificates.request! # Downloads certificates.
   #
   class Certificates
     # A Redis instance.
@@ -39,15 +39,15 @@ module FirebaseIdToken
     URL = 'https://www.googleapis.com/robot/v1/metadata/x509/'\
       'securetoken@system.gserviceaccount.com'
 
-    # Calls {.request_anyway} only if there's no certificates on Redis. It will
+    # Calls {.request!} only if there are no certificates on Redis. It will
     # return `nil` otherwise.
     #
     # It will raise {Exceptions::CertificatesRequestError} if the request
     # fails or {Exceptions::CertificatesTtlError} when Google responds with a
-    # low TTL, check out {.request_anyway} for more info.
+    # low TTL, check out {.request!} for more info.
     #
     # @return [nil, Hash]
-    # @see Certificates.request_anyway
+    # @see Certificates.request!
     def self.request
       new.request
     end
@@ -62,8 +62,18 @@ module FirebaseIdToken
     # certificate. This is a `SecurityError` and will raise a
     # {Exceptions::CertificatesTtlError}. You are mostly like to never face it.
     # @return [Hash]
+    def self.request!
+      new.request!
+    end
+
+    # @deprecated Use only `request!` in favor of Ruby conventions.
+    # It will raise a warning. Kept for compatibility.
+    # @see Certificates.request!
     def self.request_anyway
-      new.request_anyway
+      warn 'WARNING: FirebaseIdToken::Certificates.request_anyway is '\
+        'deprecated. Use FirebaseIdToken::Certificates.request! instead.'
+
+      new.request!
     end
 
     # Returns `true` if there's certificates data on Redis, `false` otherwise.
@@ -75,7 +85,7 @@ module FirebaseIdToken
       ! new.local_certs.empty?
     end
 
-    # Returns a array of hashes, each hash is a single `{key => value}` pair
+    # Returns an array of hashes, each hash is a single `{key => value}` pair
     # containing the certificate KID `String` as key and a
     # `OpenSSL::X509::Certificate` object of the respective certificate as
     # value. Returns a empty `Array` when there's no certificates data on
@@ -130,11 +140,11 @@ module FirebaseIdToken
 
     # @see Certificates.request
     def request
-      request_anyway if @local_certs.empty?
+      request! if @local_certs.empty?
     end
 
-    # @see Certificates.request_anyway
-    def request_anyway
+    # @see Certificates.request!
+    def request!
       @request = HTTParty.get URL
       code = @request.code
       if code == 200

data/lib/firebase_id_token/exceptions/certificates_request_error.rb

@@ -1,7 +1,7 @@
 module FirebaseIdToken
   module Exceptions
     # @see FirebaseIdToken::Certificates.request
-    # @see FirebaseIdToken::Certificates.request_anyway
+    # @see FirebaseIdToken::Certificates.request!
     class CertificatesRequestError < StandardError
       def initialize(code)
         super "#{code} HTTP status when requesting Google's certificates."

data/lib/firebase_id_token/exceptions/certificates_ttl_error.rb

@@ -1,7 +1,7 @@
 module FirebaseIdToken
   module Exceptions
     # @see FirebaseIdToken::Certificates.request
-    # @see FirebaseIdToken::Certificates.request_anyway
+    # @see FirebaseIdToken::Certificates.request!
     class CertificatesTtlError < StandardError
       def initialize(message = "Google's x509 certificates has a low TTL.")
         super message

data/lib/firebase_id_token/signature.rb

@@ -37,7 +37,7 @@ module FirebaseIdToken
     #
     # It will also return `nil` when it fails in checking if all the required
     # JWT fields are valid, as recommended [here](https://goo.gl/yOrZZX) by
-    # Firebase oficial documentation.
+    # Firebase official documentation.
     #
     # Note that it will raise a {Exceptions::NoCertificatesError} if the Redis
     # certificates database is empty. Ensure to call {Certificates.request}

data/lib/firebase_id_token/version.rb

@@ -1,3 +1,3 @@
 module FirebaseIdToken
-  VERSION = "1.2.2"
+  VERSION = "1.3.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: firebase_id_token
 version: !ruby/object:Gem::Version
-  version: 1.2.2
+  version: 1.3.0
 platform: ruby
 authors:
 - Fernando Schuindt
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2017-04-29 00:00:00.000000000 Z
+date: 2017-09-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -57,6 +57,9 @@ dependencies:
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.4'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 3.4.0
   type: :development
@@ -64,6 +67,9 @@ dependencies:
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.4'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 3.4.0
 - !ruby/object:Gem::Dependency
@@ -85,6 +91,9 @@ dependencies:
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 1.0.0
   type: :development
@@ -92,6 +101,9 @@ dependencies:
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 1.0.0
 - !ruby/object:Gem::Dependency
@@ -99,6 +111,9 @@ dependencies:
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 3.3.3
   type: :runtime
@@ -106,6 +121,9 @@ dependencies:
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 3.3.3
 - !ruby/object:Gem::Dependency
@@ -113,6 +131,9 @@ dependencies:
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 1.5.3
   type: :runtime
@@ -120,6 +141,9 @@ dependencies:
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 1.5.3
 - !ruby/object:Gem::Dependency
@@ -141,6 +165,9 @@ dependencies:
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 1.5.6
   type: :runtime
@@ -148,6 +175,9 @@ dependencies:
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 1.5.6
 description: A Ruby gem to verify the signature of Firebase ID Tokens. It uses Redis