RubyGems - json-jwt - Versions diffs - 1.9.1 → 1.9.2 - Mend

json-jwt 1.9.1 → 1.9.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of json-jwt might be problematic. Click here for more details.

Files changed (6) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 366867063d5d6443dc46c34adadd1a3fd4a7b574
-  data.tar.gz: 8295a9c7c3620e1cb32d47e4b27f2e6fbf947790
+  metadata.gz: 02a8f8276126a037916b981d30fc38e200f9e378
+  data.tar.gz: de0acf0db5b5f400b2c8ba49d0e549d718b74568
 SHA512:
-  metadata.gz: 5ce3939943d51965ca03d2dd34c6c40623b2d337ca6b8206dcc90ae29cf0e450c205bd66191ad6bc29f70edcf3567d92ad30cc96ee20dec3b737bbae134960b4
-  data.tar.gz: 7fdd1b34b2535b3fd905e46badd0d2cee536a071eb434bc145179c07772019823bff4fc2fc22eefebb40479570439e430cab9ad1e26849775cbfc45de2952bbb
+  metadata.gz: 18b298765ff484588a80e5fefbe9c349e4df237f5d3548f0359884a2b252a67b60116e476df67427655c74d8c0ae160049007df360b6597337c91995af366b65
+  data.tar.gz: 0e25eebdad2529441d1fb90a93482f354b79533715b191fb812f5d019d6e8d3b41abb59c103c8563df93441d5336f591a0ff724d69fb31a5ed6bfc16aecae5a2

data/VERSION CHANGED

	@@ -1 +1 @@
1	- 1.9.1
1	+ 1.9.2

data/json-jwt.gemspec CHANGED

@@ -15,6 +15,7 @@ Gem::Specification.new do |gem|
   gem.add_runtime_dependency 'activesupport'
   gem.add_runtime_dependency 'bindata'
   gem.add_runtime_dependency 'securecompare'
+  gem.add_runtime_dependency 'aes_key_wrap'
   gem.add_development_dependency 'rake'
   gem.add_development_dependency 'simplecov'
   gem.add_development_dependency 'rspec'

data/lib/json/jwe.rb CHANGED

@@ -1,5 +1,6 @@
 require 'securerandom'
 require 'bindata'
+require 'aes_key_wrap'
 module JSON
   class JWE
@@ -160,10 +161,8 @@ module JSON
         public_key_or_secret.public_encrypt content_encryption_key
       when :'RSA-OAEP'
         public_key_or_secret.public_encrypt content_encryption_key, OpenSSL::PKey::RSA::PKCS1_OAEP_PADDING
-      when :A128KW
-        raise NotImplementedError.new('A128KW not supported yet')
-      when :A256KW
-        raise NotImplementedError.new('A256KW not supported yet')
+      when :A128KW, :A256KW
+        AESKeyWrap.wrap content_encryption_key, public_key_or_secret
       when :dir
         ''
       when :'ECDH-ES'
@@ -214,10 +213,8 @@ module JSON
         private_key_or_secret.private_decrypt jwe_encrypted_key
       when :'RSA-OAEP'
         private_key_or_secret.private_decrypt jwe_encrypted_key, OpenSSL::PKey::RSA::PKCS1_OAEP_PADDING
-      when :A128KW
-        raise NotImplementedError.new('A128KW not supported yet')
-      when :A256KW
-        raise NotImplementedError.new('A256KW not supported yet')
+      when :A128KW, :A256KW
+        AESKeyWrap.unwrap jwe_encrypted_key, private_key_or_secret
       when :dir
         private_key_or_secret
       when :'ECDH-ES'

data/spec/json/jwe_spec.rb CHANGED

@@ -73,6 +73,14 @@ describe JSON::JWE do
         it :TODO
       end
+      context 'when alg=A128KW' do
+        it :TODO
+      end
+      context 'when alg=A256KW' do
+        it :TODO
+      end
       context 'when unknonw/unsupported algorithm given' do
         let(:key) { public_key }
         let(:alg) { :RSA1_5 }
@@ -89,7 +97,7 @@ describe JSON::JWE do
           it_behaves_like :unexpected_algorithm_for_encryption
         end
-        [:A128KW, :A256KW, :'ECDH-ES', :'ECDH-ES+A128KW', :'ECDH-ES+A256KW'].each do |alg|
+        [:'ECDH-ES', :'ECDH-ES+A128KW', :'ECDH-ES+A256KW'].each do |alg|
           context "when alg=#{alg}" do
             let(:alg) { alg }
             it_behaves_like :unsupported_algorithm_for_encryption
@@ -284,6 +292,14 @@ describe JSON::JWE do
       end
     end
+    context 'when alg=A128KW' do
+      it :TODO
+    end
+    context 'when alg=A256KW' do
+      it :TODO
+    end
     context 'when unknonw/unsupported algorithm given' do
       let(:input) { 'header.key.iv.cipher_text.auth_tag' }
       let(:key) { public_key }
@@ -300,7 +316,7 @@ describe JSON::JWE do
         it_behaves_like :unexpected_algorithm_for_decryption
       end
-      [:A128KW, :A256KW, :'ECDH-ES', :'ECDH-ES+A128KW', :'ECDH-ES+A256KW'].each do |alg|
+      [:'ECDH-ES', :'ECDH-ES+A128KW', :'ECDH-ES+A256KW'].each do |alg|
         context "when alg=#{alg}" do
           let(:alg) { alg }
           it_behaves_like :unsupported_algorithm_for_decryption

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: json-jwt
 version: !ruby/object:Gem::Version
-  version: 1.9.1
+  version: 1.9.2
 platform: ruby
 authors:
 - nov matake
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-02-23 00:00:00.000000000 Z
+date: 2018-02-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: url_safe_base64
@@ -66,6 +66,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: aes_key_wrap
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -188,7 +202,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.6.11
+rubygems_version: 2.6.13
 signing_key:
 specification_version: 4
 summary: JSON Web Token and its family (JSON Web Signature, JSON Web Encryption and