RubyGems - jwt - Versions diffs - 1.5.2 → 1.5.4 - Mend

jwt 1.5.2 → 1.5.4

Files changed (41) hide show

checksums.yaml +13 -5
data/.codeclimate.yml +20 -0
data/.gitignore +6 -0
data/.rspec +2 -0
data/.rubocop.yml +2 -0
data/.travis.yml +13 -0
data/Gemfile +4 -0
data/README.md +29 -11
data/Rakefile +1 -18
data/lib/jwt.rb +19 -75
data/lib/jwt/decode.rb +56 -0
data/lib/jwt/error.rb +12 -0
data/lib/jwt/json.rb +9 -25
data/lib/jwt/verify.rb +98 -0
data/lib/jwt/version.rb +23 -0
data/ruby-jwt.gemspec +29 -0
data/spec/fixtures/certs/ec256-private.pem +8 -0
data/spec/fixtures/certs/ec256-public.pem +4 -0
data/spec/fixtures/certs/ec256-wrong-private.pem +8 -0
data/spec/fixtures/certs/ec256-wrong-public.pem +4 -0
data/spec/fixtures/certs/ec384-private.pem +9 -0
data/spec/fixtures/certs/ec384-public.pem +5 -0
data/spec/fixtures/certs/ec384-wrong-private.pem +9 -0
data/spec/fixtures/certs/ec384-wrong-public.pem +5 -0
data/spec/fixtures/certs/ec512-private.pem +10 -0
data/spec/fixtures/certs/ec512-public.pem +6 -0
data/spec/fixtures/certs/ec512-wrong-private.pem +10 -0
data/spec/fixtures/certs/ec512-wrong-public.pem +6 -0
data/spec/fixtures/certs/rsa-1024-private.pem +15 -0
data/spec/fixtures/certs/rsa-1024-public.pem +6 -0
data/spec/fixtures/certs/rsa-2048-private.pem +27 -0
data/spec/fixtures/certs/rsa-2048-public.pem +9 -0
data/spec/fixtures/certs/rsa-2048-wrong-private.pem +27 -0
data/spec/fixtures/certs/rsa-2048-wrong-public.pem +9 -0
data/spec/fixtures/certs/rsa-4096-private.pem +51 -0
data/spec/fixtures/certs/rsa-4096-public.pem +14 -0
data/spec/jwt/verify_spec.rb +175 -0
data/spec/jwt_spec.rb +1 -181
data/spec/spec_helper.rb +2 -3
metadata +145 -28
data/jwt.gemspec +0 -34

@@ -1,5 +1,6 @@
 require 'spec_helper'
 require 'jwt'
+require 'jwt/decode'
 describe JWT do
   let(:payload) { { 'user_id' => 'some@user.tld' } }
@@ -188,52 +189,6 @@ describe JWT do
       end
     end
-    context 'expiration claim' do
-      let(:exp) { Time.now.to_i - 5 }
-      let(:leeway) { 10 }
-      let :token do
-        payload.merge!(exp: exp)
-        JWT.encode payload, data[:secret]
-      end
-      it 'old token should raise JWT::ExpiredSignature' do
-        expect do
-          JWT.decode token, data[:secret]
-        end.to raise_error JWT::ExpiredSignature
-      end
-      it 'should handle leeway' do
-        expect do
-          JWT.decode token, data[:secret], true, leeway: leeway
-        end.not_to raise_error
-      end
-    end
-    context 'not before claim' do
-      let(:nbf) { Time.now.to_i + 5 }
-      let(:leeway) { 10 }
-      let :token do
-        payload.merge!(nbf: nbf)
-        JWT.encode payload, data[:secret]
-      end
-      it 'future token should raise JWT::ImmatureSignature' do
-        expect do
-          JWT.decode token, data[:secret]
-        end.to raise_error JWT::ImmatureSignature
-      end
-      it 'should handle leeway' do
-        expect do
-          JWT.decode token, data[:secret], true, leeway: leeway
-        end.not_to raise_error
-      end
-    end
     context 'issuer claim' do
       let(:iss) { 'ruby-jwt-gem' }
       let(:invalid_token) { JWT.encode payload, data[:secret] }
@@ -248,140 +203,6 @@ describe JWT do
           JWT.decode token, data[:secret], true, iss: iss
         end.not_to raise_error
       end
-      it 'invalid iss should raise JWT::InvalidIssuerError' do
-        expect do
-          JWT.decode token, data[:secret], true, iss: 'wrong-issuer', verify_iss: true
-        end.to raise_error JWT::InvalidIssuerError
-      end
-      it 'with missing iss claim should raise JWT::InvalidIssuerError' do
-        missing_iss_claim_token = JWT.encode payload, data[:secret]
-        expect do
-          JWT.decode missing_iss_claim_token, data[:secret], true, verify_iss: true, iss: iss
-        end.to raise_error(JWT::InvalidIssuerError, /received <none>/)
-      end
-      it 'valid iss should not raise JWT::InvalidIssuerError' do
-        expect do
-          JWT.decode token, data[:secret], true, iss: iss, verify_iss: true
-        end.not_to raise_error
-      end
-    end
-    context 'issued at claim' do
-      let(:iat) { Time.now.to_i }
-      let(:new_payload) { payload.merge(iat: iat) }
-      let(:token) { JWT.encode new_payload, data[:secret] }
-      let(:invalid_token) { JWT.encode new_payload.merge('iat' => iat + 60), data[:secret] }
-      let(:leeway) { 30 }
-      it 'invalid iat should raise JWT::InvalidIatError' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, verify_iat: true
-        end.to raise_error JWT::InvalidIatError
-      end
-      it 'should accept leeway' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, verify_iat: true, leeway: 70
-        end.to_not raise_error
-      end
-      it 'valid iat should not raise JWT::InvalidIatError' do
-        expect do
-          JWT.decode token, data[:secret], true, verify_iat: true
-        end.to_not raise_error
-      end
-    end
-    context 'audience claim' do
-      let(:simple_aud) { 'ruby-jwt-audience' }
-      let(:array_aud) { %w(ruby-jwt-aud test-aud ruby-ruby-ruby) }
-      let :simple_token do
-        new_payload = payload.merge('aud' => simple_aud)
-        JWT.encode new_payload, data[:secret]
-      end
-      let :array_token do
-        new_payload = payload.merge('aud' => array_aud)
-        JWT.encode new_payload, data[:secret]
-      end
-      it 'invalid aud should raise JWT::InvalidAudError' do
-        expect do
-          JWT.decode simple_token, data[:secret], true, aud: 'wrong audience', verify_aud: true
-        end.to raise_error JWT::InvalidAudError
-        expect do
-          JWT.decode array_token, data[:secret], true, aud: %w(wrong audience), verify_aud: true
-        end.to raise_error JWT::InvalidAudError
-      end
-      it 'valid aud should not raise JWT::InvalidAudError' do
-        expect do
-          JWT.decode simple_token, data[:secret], true, 'aud' => simple_aud, :verify_aud => true
-        end.to_not raise_error
-        expect do
-          JWT.decode array_token, data[:secret], true, 'aud' => array_aud.first, :verify_aud => true
-        end.to_not raise_error
-      end
-    end
-    context 'subject claim' do
-      let(:sub) { 'ruby jwt subject' }
-      let :token do
-        new_payload = payload.merge('sub' => sub)
-        JWT.encode new_payload, data[:secret]
-      end
-      let :invalid_token do
-        new_payload = payload.merge('sub' => 'we are not the druids you are looking for')
-        JWT.encode new_payload, data[:secret]
-      end
-      it 'invalid sub should raise JWT::InvalidSubError' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, sub: sub, verify_sub: true
-        end.to raise_error JWT::InvalidSubError
-      end
-      it 'valid sub should not raise JWT::InvalidSubError' do
-        expect do
-          JWT.decode token, data[:secret], true, 'sub' => sub, :verify_sub => true
-        end.to_not raise_error
-      end
-    end
-    context 'jwt id claim' do
-      let :jti do
-        new_payload = payload.merge('iat' => Time.now.to_i)
-        key = data[:secret]
-        new_payload.merge('jti' => Digest::MD5.hexdigest("#{key}:#{new_payload['iat']}"))
-      end
-      let(:token) { JWT.encode jti, data[:secret] }
-      let :invalid_token do
-        jti.delete('iat')
-        JWT.encode jti, data[:secret]
-      end
-      it 'invalid jti should raise JWT::InvalidJtiError' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, :verify_jti => true, 'jti' => jti['jti']
-        end.to raise_error JWT::InvalidJtiError
-      end
-      it 'valid jti should not raise JWT::InvalidJtiError' do
-        expect do
-          JWT.decode token, data[:secret], true, verify_jti: true, jti: jti['jti']
-        end.to_not raise_error
-      end
     end
   end
@@ -408,5 +229,4 @@ describe JWT do
       expect(JWT.secure_compare('Foo', 'Bar')).to eq false
     end
   end
 end

data/spec/spec_helper.rb CHANGED

@@ -1,4 +1,3 @@
-# encoding: utf-8
 require 'rspec'
 require 'simplecov'
 require 'simplecov-json'
@@ -7,10 +6,10 @@ require 'codeclimate-test-reporter'
 SimpleCov.configure do
   root File.join(File.dirname(__FILE__), '..')
   project_name 'Ruby JWT - Ruby JSON Web Token implementation'
-  SimpleCov.formatter = SimpleCov::Formatter::MultiFormatter[
+  SimpleCov.formatter = SimpleCov::Formatter::MultiFormatter.new([
     SimpleCov::Formatter::HTMLFormatter,
     SimpleCov::Formatter::JSONFormatter
-  ]
+  ])
   add_filter 'spec'
 end

metadata CHANGED

@@ -1,75 +1,192 @@
 --- !ruby/object:Gem::Specification
 name: jwt
 version: !ruby/object:Gem::Version
-  version: 1.5.2
+  version: 1.5.4
 platform: ruby
 authors:
 - Jeff Lindsay
+- Tim Rudat
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-10-27 00:00:00.000000000 Z
+date: 2016-03-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: echoe
+  name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
-        version: 4.6.3
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
-        version: 4.6.3
-description: JSON Web Token implementation in Ruby
-email: progrium@gmail.com
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov-json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: codeclimate-test-reporter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: A pure ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT)
+  standard.
+email: timrudat@gmail.com
 executables: []
 extensions: []
-extra_rdoc_files:
-- README.md
-- LICENSE
-- lib/jwt.rb
-- lib/jwt/json.rb
+extra_rdoc_files: []
 files:
+- .codeclimate.yml
+- .gitignore
+- .rspec
+- .rubocop.yml
+- .travis.yml
+- Gemfile
 - LICENSE
 - Manifest
 - README.md
 - Rakefile
-- jwt.gemspec
 - lib/jwt.rb
+- lib/jwt/decode.rb
+- lib/jwt/error.rb
 - lib/jwt/json.rb
+- lib/jwt/verify.rb
+- lib/jwt/version.rb
+- ruby-jwt.gemspec
+- spec/fixtures/certs/ec256-private.pem
+- spec/fixtures/certs/ec256-public.pem
+- spec/fixtures/certs/ec256-wrong-private.pem
+- spec/fixtures/certs/ec256-wrong-public.pem
+- spec/fixtures/certs/ec384-private.pem
+- spec/fixtures/certs/ec384-public.pem
+- spec/fixtures/certs/ec384-wrong-private.pem
+- spec/fixtures/certs/ec384-wrong-public.pem
+- spec/fixtures/certs/ec512-private.pem
+- spec/fixtures/certs/ec512-public.pem
+- spec/fixtures/certs/ec512-wrong-private.pem
+- spec/fixtures/certs/ec512-wrong-public.pem
+- spec/fixtures/certs/rsa-1024-private.pem
+- spec/fixtures/certs/rsa-1024-public.pem
+- spec/fixtures/certs/rsa-2048-private.pem
+- spec/fixtures/certs/rsa-2048-public.pem
+- spec/fixtures/certs/rsa-2048-wrong-private.pem
+- spec/fixtures/certs/rsa-2048-wrong-public.pem
+- spec/fixtures/certs/rsa-4096-private.pem
+- spec/fixtures/certs/rsa-4096-public.pem
+- spec/jwt/verify_spec.rb
 - spec/jwt_spec.rb
 - spec/spec_helper.rb
-homepage: http://github.com/progrium/ruby-jwt
+homepage: http://github.com/jwt/ruby-jwt
 licenses:
 - MIT
 metadata: {}
 post_install_message:
-rdoc_options:
-- "--line-numbers"
-- "--title"
-- Jwt
-- "--main"
-- README.md
+rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
-      version: '1.2'
+      version: '0'
 requirements: []
-rubyforge_project: jwt
-rubygems_version: 2.4.8
+rubyforge_project:
+rubygems_version: 2.5.2
 signing_key:
 specification_version: 4
 summary: JSON Web Token implementation in Ruby
-test_files: []
+test_files:
+- spec/fixtures/certs/ec256-private.pem
+- spec/fixtures/certs/ec256-public.pem
+- spec/fixtures/certs/ec256-wrong-private.pem
+- spec/fixtures/certs/ec256-wrong-public.pem
+- spec/fixtures/certs/ec384-private.pem
+- spec/fixtures/certs/ec384-public.pem
+- spec/fixtures/certs/ec384-wrong-private.pem
+- spec/fixtures/certs/ec384-wrong-public.pem
+- spec/fixtures/certs/ec512-private.pem
+- spec/fixtures/certs/ec512-public.pem
+- spec/fixtures/certs/ec512-wrong-private.pem
+- spec/fixtures/certs/ec512-wrong-public.pem
+- spec/fixtures/certs/rsa-1024-private.pem
+- spec/fixtures/certs/rsa-1024-public.pem
+- spec/fixtures/certs/rsa-2048-private.pem
+- spec/fixtures/certs/rsa-2048-public.pem
+- spec/fixtures/certs/rsa-2048-wrong-private.pem
+- spec/fixtures/certs/rsa-2048-wrong-public.pem
+- spec/fixtures/certs/rsa-4096-private.pem
+- spec/fixtures/certs/rsa-4096-public.pem
+- spec/jwt/verify_spec.rb
+- spec/jwt_spec.rb
+- spec/spec_helper.rb

data/jwt.gemspec DELETED

@@ -1,34 +0,0 @@
-# -*- encoding: utf-8 -*-
-# stub: jwt 1.5.2 ruby lib
-Gem::Specification.new do |s|
-  s.name = "jwt"
-  s.version = "1.5.2"
-  s.required_rubygems_version = Gem::Requirement.new(">= 1.2") if s.respond_to? :required_rubygems_version=
-  s.require_paths = ["lib"]
-  s.authors = ["Jeff Lindsay"]
-  s.date = "2015-10-27"
-  s.description = "JSON Web Token implementation in Ruby"
-  s.email = "progrium@gmail.com"
-  s.extra_rdoc_files = ["README.md", "LICENSE", "lib/jwt.rb", "lib/jwt/json.rb"]
-  s.files = ["LICENSE", "Manifest", "README.md", "Rakefile", "jwt.gemspec", "lib/jwt.rb", "lib/jwt/json.rb", "spec/jwt_spec.rb", "spec/spec_helper.rb"]
-  s.homepage = "http://github.com/progrium/ruby-jwt"
-  s.licenses = ["MIT"]
-  s.rdoc_options = ["--line-numbers", "--title", "Jwt", "--main", "README.md"]
-  s.rubyforge_project = "jwt"
-  s.rubygems_version = "2.4.8"
-  s.summary = "JSON Web Token implementation in Ruby"
-  if s.respond_to? :specification_version then
-    s.specification_version = 4
-    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
-      s.add_development_dependency(%q<echoe>, [">= 4.6.3"])
-    else
-      s.add_dependency(%q<echoe>, [">= 4.6.3"])
-    end
-  else
-    s.add_dependency(%q<echoe>, [">= 4.6.3"])
-  end
-end