RubyGems - googleauth - Versions diffs - 1.16.0 → 1.16.2 - Mend

googleauth 1.16.0 → 1.16.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +13 -0
data/lib/googleauth/external_account.rb +7 -0
data/lib/googleauth/service_account.rb +17 -10
data/lib/googleauth/signet.rb +6 -4
data/lib/googleauth/user_refresh.rb +10 -1
data/lib/googleauth/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4cadf68940056f975d386c6cb0cc55b4e1dcebb72a0313a5a5b58347994fa9dd
-  data.tar.gz: cad38a2d2014e88abda0e63092786302294c2e963a4e4fca56a681ec7f84f08b
+  metadata.gz: 68a9a896f10ad5681d196a55d510216535bbe80709f7d28e4ff2acbd3a6ed33d
+  data.tar.gz: 7000d55fa0183165332069eaadf3a7e01019e5886c0bb7f49e542d34063552a3
 SHA512:
-  metadata.gz: 195efa15c10d767d5ab032291d1c341e760e9bbf326f025f705595e09e6f122f18d582a185ca6c1604a710b8facc11b37cb02e04664b4ba2488b8a85e2318f47
-  data.tar.gz: ce881af766994bd312208a9531da24a92efa6f3311abae02cda4f7c1b1d303f54d765b571574745d0cc61cd35e8cc9ceccfdc39a8d9d5368dad6e18f6dbcbd3d
+  metadata.gz: 1168e7be27c6a261b1794c4fcc88bf8b7eb019eefab0cbc2007ffee416a954c74d44005d08621d7fac6f545235645d20f1604655797c7639dfaf94800a86cf32
+  data.tar.gz: 29eb9a732eae0b6146790c41c62e77548ce60048e0f53ad1cf9760333d99a69c5e8297ee178151da6825d4fa8d8365d5c84bdb8d422b6489d1ea179cd0fe254d

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,18 @@
 # Release History
+### 1.16.2 (2026-02-26)
+#### Bug Fixes
+* initialize the JWT credentials without JSON roundtrip ([#564](https://github.com/googleapis/google-auth-library-ruby/issues/564))
+* return response body from revoke! for logging pipeline ([#562](https://github.com/googleapis/google-auth-library-ruby/issues/562))
+### 1.16.1 (2026-01-15)
+#### Bug Fixes
+* restore support for JSON keys missing 'type' field ([#558](https://github.com/googleapis/google-auth-library-ruby/issues/558))
 ### 1.16.0 (2025-11-21)
 #### Features

data/lib/googleauth/external_account.rb CHANGED Viewed

@@ -62,6 +62,13 @@ module Google
           json_key_io, scope = options.values_at :json_key_io, :scope
           raise InitializationError, "A json file is required for external account credentials." unless json_key_io
+          json_key = MultiJson.load json_key_io.read, symbolize_keys: true
+          if json_key.key? :type
+            json_key_io.rewind
+          else # Defaults to class credential 'type' if missing.
+            json_key[:type] = CREDENTIAL_TYPE_NAME
+            json_key_io = StringIO.new MultiJson.dump(json_key)
+          end
           CredentialsLoader.load_and_verify_json_key_type json_key_io, CREDENTIAL_TYPE_NAME
           user_creds = read_json_key json_key_io

data/lib/googleauth/service_account.rb CHANGED Viewed

@@ -58,7 +58,7 @@ module Google
       # @param json_key_io [IO] An IO object containing the JSON key
       # @param scope [string|array|nil] the scope(s) to access
       # @raise [ArgumentError] If both scope and target_audience are specified
-      def self.make_creds options = {}
+      def self.make_creds options = {} # rubocop:disable Metrics/MethodLength
         json_key_io, scope, enable_self_signed_jwt, target_audience, audience, token_credential_uri =
           options.values_at :json_key_io, :scope, :enable_self_signed_jwt, :target_audience,
                             :audience, :token_credential_uri
@@ -66,6 +66,13 @@ module Google
         private_key, client_email, project_id, quota_project_id, universe_domain =
           if json_key_io
+            json_key = MultiJson.load json_key_io.read
+            if json_key.key? "type"
+              json_key_io.rewind
+            else # Defaults to class credential 'type' if missing.
+              json_key["type"] = CREDENTIAL_TYPE_NAME
+              json_key_io = StringIO.new MultiJson.dump(json_key)
+            end
             CredentialsLoader.load_and_verify_json_key_type json_key_io, CREDENTIAL_TYPE_NAME
             read_json_key json_key_io
           else
@@ -181,15 +188,15 @@ module Google
       def apply_self_signed_jwt! a_hash
         # Use the ServiceAccountJwtHeaderCredentials using the same cred values
-        cred_json = {
-          private_key: @signing_key.to_s,
-          client_email: @issuer,
-          project_id: @project_id,
-          quota_project_id: @quota_project_id
-        }
-        key_io = StringIO.new MultiJson.dump(cred_json)
-        alt = ServiceAccountJwtHeaderCredentials.make_creds json_key_io: key_io, scope: scope
-        alt.logger = logger
+        alt = ServiceAccountJwtHeaderCredentials.new(
+          private_key:      @signing_key.to_s,
+          issuer:           @issuer,
+          project_id:       @project_id,
+          quota_project_id: @quota_project_id,
+          universe_domain:  universe_domain,
+          scope:            scope,
+          logger:           logger
+        )
         alt.apply! a_hash
       end

data/lib/googleauth/signet.rb CHANGED Viewed

@@ -210,10 +210,12 @@ module Signet
           digest = Digest::SHA256.hexdigest response_hash["id_token"]
           response_hash["id_token"] = "(sha256:#{digest})"
         end
-        Google::Logging::Message.from(
-          message: "Received auth token response: #{response_hash}",
-          "credentialsId" => object_id
-        )
+        logger&.debug do
+          Google::Logging::Message.from(
+            message: "Received auth token response: #{response_hash}",
+            "credentialsId" => object_id
+          )
+        end
       end
       def log_auth_error err

data/lib/googleauth/user_refresh.rb CHANGED Viewed

@@ -47,9 +47,16 @@ module Google
       #
       # @param json_key_io [IO] An IO object containing the JSON key
       # @param scope [string|array|nil] the scope(s) to access
-      def self.make_creds options = {}
+      def self.make_creds options = {} # rubocop:disable Metrics/MethodLength
         json_key_io, scope = options.values_at :json_key_io, :scope
         user_creds = if json_key_io
+                       json_key = MultiJson.load json_key_io.read
+                       if json_key.key? "type"
+                         json_key_io.rewind
+                       else # Defaults to class credential 'type' if missing.
+                         json_key["type"] = CREDENTIAL_TYPE_NAME
+                         json_key_io = StringIO.new MultiJson.dump(json_key)
+                       end
                        CredentialsLoader.load_and_verify_json_key_type json_key_io, CREDENTIAL_TYPE_NAME
                        read_json_key json_key_io
                      else
@@ -139,6 +146,8 @@ module Google
               principal: principal
             )
           end
+          resp.body
         end
       end

data/lib/googleauth/version.rb CHANGED Viewed

@@ -16,6 +16,6 @@ module Google
   # Module Auth provides classes that provide Google-specific authorization
   # used to access Google APIs.
   module Auth
-    VERSION = "1.16.0".freeze
+    VERSION = "1.16.2".freeze
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: googleauth
 version: !ruby/object:Gem::Version
-  version: 1.16.0
+  version: 1.16.2
 platform: ruby
 authors:
 - Google LLC