RubyGems - jwt - Versions diffs - 1.5.2 → 1.5.4 - Mend

jwt 1.5.2 → 1.5.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (41) hide show

checksums.yaml +13 -5
data/.codeclimate.yml +20 -0
data/.gitignore +6 -0
data/.rspec +2 -0
data/.rubocop.yml +2 -0
data/.travis.yml +13 -0
data/Gemfile +4 -0
data/README.md +29 -11
data/Rakefile +1 -18
data/lib/jwt.rb +19 -75
data/lib/jwt/decode.rb +56 -0
data/lib/jwt/error.rb +12 -0
data/lib/jwt/json.rb +9 -25
data/lib/jwt/verify.rb +98 -0
data/lib/jwt/version.rb +23 -0
data/ruby-jwt.gemspec +29 -0
data/spec/fixtures/certs/ec256-private.pem +8 -0
data/spec/fixtures/certs/ec256-public.pem +4 -0
data/spec/fixtures/certs/ec256-wrong-private.pem +8 -0
data/spec/fixtures/certs/ec256-wrong-public.pem +4 -0
data/spec/fixtures/certs/ec384-private.pem +9 -0
data/spec/fixtures/certs/ec384-public.pem +5 -0
data/spec/fixtures/certs/ec384-wrong-private.pem +9 -0
data/spec/fixtures/certs/ec384-wrong-public.pem +5 -0
data/spec/fixtures/certs/ec512-private.pem +10 -0
data/spec/fixtures/certs/ec512-public.pem +6 -0
data/spec/fixtures/certs/ec512-wrong-private.pem +10 -0
data/spec/fixtures/certs/ec512-wrong-public.pem +6 -0
data/spec/fixtures/certs/rsa-1024-private.pem +15 -0
data/spec/fixtures/certs/rsa-1024-public.pem +6 -0
data/spec/fixtures/certs/rsa-2048-private.pem +27 -0
data/spec/fixtures/certs/rsa-2048-public.pem +9 -0
data/spec/fixtures/certs/rsa-2048-wrong-private.pem +27 -0
data/spec/fixtures/certs/rsa-2048-wrong-public.pem +9 -0
data/spec/fixtures/certs/rsa-4096-private.pem +51 -0
data/spec/fixtures/certs/rsa-4096-public.pem +14 -0
data/spec/jwt/verify_spec.rb +175 -0
data/spec/jwt_spec.rb +1 -181
data/spec/spec_helper.rb +2 -3
metadata +145 -28
data/jwt.gemspec +0 -34

data/spec/jwt_spec.rb CHANGED

@@ -1,5 +1,6 @@
 require 'spec_helper'
 require 'jwt'
+require 'jwt/decode'
 describe JWT do
   let(:payload) { { 'user_id' => 'some@user.tld' } }
@@ -188,52 +189,6 @@ describe JWT do
       end
     end
-    context 'expiration claim' do
-      let(:exp) { Time.now.to_i - 5 }
-      let(:leeway) { 10 }
-      let :token do
-        payload.merge!(exp: exp)
-        JWT.encode payload, data[:secret]
-      end
-      it 'old token should raise JWT::ExpiredSignature' do
-        expect do
-          JWT.decode token, data[:secret]
-        end.to raise_error JWT::ExpiredSignature
-      end
-      it 'should handle leeway' do
-        expect do
-          JWT.decode token, data[:secret], true, leeway: leeway
-        end.not_to raise_error
-      end
-    end
-    context 'not before claim' do
-      let(:nbf) { Time.now.to_i + 5 }
-      let(:leeway) { 10 }
-      let :token do
-        payload.merge!(nbf: nbf)
-        JWT.encode payload, data[:secret]
-      end
-      it 'future token should raise JWT::ImmatureSignature' do
-        expect do
-          JWT.decode token, data[:secret]
-        end.to raise_error JWT::ImmatureSignature
-      end
-      it 'should handle leeway' do
-        expect do
-          JWT.decode token, data[:secret], true, leeway: leeway
-        end.not_to raise_error
-      end
-    end
     context 'issuer claim' do
       let(:iss) { 'ruby-jwt-gem' }
       let(:invalid_token) { JWT.encode payload, data[:secret] }
@@ -248,140 +203,6 @@ describe JWT do
           JWT.decode token, data[:secret], true, iss: iss
         end.not_to raise_error
       end
-      it 'invalid iss should raise JWT::InvalidIssuerError' do
-        expect do
-          JWT.decode token, data[:secret], true, iss: 'wrong-issuer', verify_iss: true
-        end.to raise_error JWT::InvalidIssuerError
-      end
-      it 'with missing iss claim should raise JWT::InvalidIssuerError' do
-        missing_iss_claim_token = JWT.encode payload, data[:secret]
-        expect do
-          JWT.decode missing_iss_claim_token, data[:secret], true, verify_iss: true, iss: iss
-        end.to raise_error(JWT::InvalidIssuerError, /received <none>/)
-      end
-      it 'valid iss should not raise JWT::InvalidIssuerError' do
-        expect do
-          JWT.decode token, data[:secret], true, iss: iss, verify_iss: true
-        end.not_to raise_error
-      end
-    end
-    context 'issued at claim' do
-      let(:iat) { Time.now.to_i }
-      let(:new_payload) { payload.merge(iat: iat) }
-      let(:token) { JWT.encode new_payload, data[:secret] }
-      let(:invalid_token) { JWT.encode new_payload.merge('iat' => iat + 60), data[:secret] }
-      let(:leeway) { 30 }
-      it 'invalid iat should raise JWT::InvalidIatError' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, verify_iat: true
-        end.to raise_error JWT::InvalidIatError
-      end
-      it 'should accept leeway' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, verify_iat: true, leeway: 70
-        end.to_not raise_error
-      end
-      it 'valid iat should not raise JWT::InvalidIatError' do
-        expect do
-          JWT.decode token, data[:secret], true, verify_iat: true
-        end.to_not raise_error
-      end
-    end
-    context 'audience claim' do
-      let(:simple_aud) { 'ruby-jwt-audience' }
-      let(:array_aud) { %w(ruby-jwt-aud test-aud ruby-ruby-ruby) }
-      let :simple_token do
-        new_payload = payload.merge('aud' => simple_aud)
-        JWT.encode new_payload, data[:secret]
-      end
-      let :array_token do
-        new_payload = payload.merge('aud' => array_aud)
-        JWT.encode new_payload, data[:secret]
-      end
-      it 'invalid aud should raise JWT::InvalidAudError' do
-        expect do
-          JWT.decode simple_token, data[:secret], true, aud: 'wrong audience', verify_aud: true
-        end.to raise_error JWT::InvalidAudError
-        expect do
-          JWT.decode array_token, data[:secret], true, aud: %w(wrong audience), verify_aud: true
-        end.to raise_error JWT::InvalidAudError
-      end
-      it 'valid aud should not raise JWT::InvalidAudError' do
-        expect do
-          JWT.decode simple_token, data[:secret], true, 'aud' => simple_aud, :verify_aud => true
-        end.to_not raise_error
-        expect do
-          JWT.decode array_token, data[:secret], true, 'aud' => array_aud.first, :verify_aud => true
-        end.to_not raise_error
-      end
-    end
-    context 'subject claim' do
-      let(:sub) { 'ruby jwt subject' }
-      let :token do
-        new_payload = payload.merge('sub' => sub)
-        JWT.encode new_payload, data[:secret]
-      end
-      let :invalid_token do
-        new_payload = payload.merge('sub' => 'we are not the druids you are looking for')
-        JWT.encode new_payload, data[:secret]
-      end
-      it 'invalid sub should raise JWT::InvalidSubError' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, sub: sub, verify_sub: true
-        end.to raise_error JWT::InvalidSubError
-      end
-      it 'valid sub should not raise JWT::InvalidSubError' do
-        expect do
-          JWT.decode token, data[:secret], true, 'sub' => sub, :verify_sub => true
-        end.to_not raise_error
-      end
-    end
-    context 'jwt id claim' do
-      let :jti do
-        new_payload = payload.merge('iat' => Time.now.to_i)
-        key = data[:secret]
-        new_payload.merge('jti' => Digest::MD5.hexdigest("#{key}:#{new_payload['iat']}"))
-      end
-      let(:token) { JWT.encode jti, data[:secret] }
-      let :invalid_token do
-        jti.delete('iat')
-        JWT.encode jti, data[:secret]
-      end
-      it 'invalid jti should raise JWT::InvalidJtiError' do
-        expect do
-          JWT.decode invalid_token, data[:secret], true, :verify_jti => true, 'jti' => jti['jti']
-        end.to raise_error JWT::InvalidJtiError
-      end
-      it 'valid jti should not raise JWT::InvalidJtiError' do
-        expect do
-          JWT.decode token, data[:secret], true, verify_jti: true, jti: jti['jti']
-        end.to_not raise_error
-      end
     end
   end
@@ -408,5 +229,4 @@ describe JWT do
       expect(JWT.secure_compare('Foo', 'Bar')).to eq false
     end
   end
 end

data/spec/spec_helper.rb CHANGED

@@ -1,4 +1,3 @@
-# encoding: utf-8
 require 'rspec'
 require 'simplecov'
 require 'simplecov-json'
@@ -7,10 +6,10 @@ require 'codeclimate-test-reporter'
 SimpleCov.configure do
   root File.join(File.dirname(__FILE__), '..')
   project_name 'Ruby JWT - Ruby JSON Web Token implementation'
-  SimpleCov.formatter = SimpleCov::Formatter::MultiFormatter[
+  SimpleCov.formatter = SimpleCov::Formatter::MultiFormatter.new([
     SimpleCov::Formatter::HTMLFormatter,
     SimpleCov::Formatter::JSONFormatter
-  ]
+  ])
   add_filter 'spec'
 end

metadata CHANGED

@@ -1,75 +1,192 @@
 --- !ruby/object:Gem::Specification
 name: jwt
 version: !ruby/object:Gem::Version
-  version: 1.5.2
+  version: 1.5.4
 platform: ruby
 authors:
 - Jeff Lindsay
+- Tim Rudat
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-10-27 00:00:00.000000000 Z
+date: 2016-03-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: echoe
+  name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
-        version: 4.6.3
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
-        version: 4.6.3
-description: JSON Web Token implementation in Ruby
-email: progrium@gmail.com
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov-json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: codeclimate-test-reporter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: A pure ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT)
+  standard.
+email: timrudat@gmail.com
 executables: []
 extensions: []
-extra_rdoc_files:
-- README.md
-- LICENSE
-- lib/jwt.rb
-- lib/jwt/json.rb
+extra_rdoc_files: []
 files:
+- .codeclimate.yml
+- .gitignore
+- .rspec
+- .rubocop.yml
+- .travis.yml
+- Gemfile
 - LICENSE
 - Manifest
 - README.md
 - Rakefile
-- jwt.gemspec
 - lib/jwt.rb
+- lib/jwt/decode.rb
+- lib/jwt/error.rb
 - lib/jwt/json.rb
+- lib/jwt/verify.rb
+- lib/jwt/version.rb
+- ruby-jwt.gemspec
+- spec/fixtures/certs/ec256-private.pem
+- spec/fixtures/certs/ec256-public.pem
+- spec/fixtures/certs/ec256-wrong-private.pem
+- spec/fixtures/certs/ec256-wrong-public.pem
+- spec/fixtures/certs/ec384-private.pem
+- spec/fixtures/certs/ec384-public.pem
+- spec/fixtures/certs/ec384-wrong-private.pem
+- spec/fixtures/certs/ec384-wrong-public.pem
+- spec/fixtures/certs/ec512-private.pem
+- spec/fixtures/certs/ec512-public.pem
+- spec/fixtures/certs/ec512-wrong-private.pem
+- spec/fixtures/certs/ec512-wrong-public.pem
+- spec/fixtures/certs/rsa-1024-private.pem
+- spec/fixtures/certs/rsa-1024-public.pem
+- spec/fixtures/certs/rsa-2048-private.pem
+- spec/fixtures/certs/rsa-2048-public.pem
+- spec/fixtures/certs/rsa-2048-wrong-private.pem
+- spec/fixtures/certs/rsa-2048-wrong-public.pem
+- spec/fixtures/certs/rsa-4096-private.pem
+- spec/fixtures/certs/rsa-4096-public.pem
+- spec/jwt/verify_spec.rb
 - spec/jwt_spec.rb
 - spec/spec_helper.rb
-homepage: http://github.com/progrium/ruby-jwt
+homepage: http://github.com/jwt/ruby-jwt
 licenses:
 - MIT
 metadata: {}
 post_install_message:
-rdoc_options:
-- "--line-numbers"
-- "--title"
-- Jwt
-- "--main"
-- README.md
+rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
-      version: '1.2'
+      version: '0'
 requirements: []
-rubyforge_project: jwt
-rubygems_version: 2.4.8
+rubyforge_project:
+rubygems_version: 2.5.2
 signing_key:
 specification_version: 4
 summary: JSON Web Token implementation in Ruby
-test_files: []
+test_files:
+- spec/fixtures/certs/ec256-private.pem
+- spec/fixtures/certs/ec256-public.pem
+- spec/fixtures/certs/ec256-wrong-private.pem
+- spec/fixtures/certs/ec256-wrong-public.pem
+- spec/fixtures/certs/ec384-private.pem
+- spec/fixtures/certs/ec384-public.pem
+- spec/fixtures/certs/ec384-wrong-private.pem
+- spec/fixtures/certs/ec384-wrong-public.pem
+- spec/fixtures/certs/ec512-private.pem
+- spec/fixtures/certs/ec512-public.pem
+- spec/fixtures/certs/ec512-wrong-private.pem
+- spec/fixtures/certs/ec512-wrong-public.pem
+- spec/fixtures/certs/rsa-1024-private.pem
+- spec/fixtures/certs/rsa-1024-public.pem
+- spec/fixtures/certs/rsa-2048-private.pem
+- spec/fixtures/certs/rsa-2048-public.pem
+- spec/fixtures/certs/rsa-2048-wrong-private.pem
+- spec/fixtures/certs/rsa-2048-wrong-public.pem
+- spec/fixtures/certs/rsa-4096-private.pem
+- spec/fixtures/certs/rsa-4096-public.pem
+- spec/jwt/verify_spec.rb
+- spec/jwt_spec.rb
+- spec/spec_helper.rb

data/jwt.gemspec DELETED

@@ -1,34 +0,0 @@
-# -*- encoding: utf-8 -*-
-# stub: jwt 1.5.2 ruby lib
-Gem::Specification.new do |s|
-  s.name = "jwt"
-  s.version = "1.5.2"
-  s.required_rubygems_version = Gem::Requirement.new(">= 1.2") if s.respond_to? :required_rubygems_version=
-  s.require_paths = ["lib"]
-  s.authors = ["Jeff Lindsay"]
-  s.date = "2015-10-27"
-  s.description = "JSON Web Token implementation in Ruby"
-  s.email = "progrium@gmail.com"
-  s.extra_rdoc_files = ["README.md", "LICENSE", "lib/jwt.rb", "lib/jwt/json.rb"]
-  s.files = ["LICENSE", "Manifest", "README.md", "Rakefile", "jwt.gemspec", "lib/jwt.rb", "lib/jwt/json.rb", "spec/jwt_spec.rb", "spec/spec_helper.rb"]
-  s.homepage = "http://github.com/progrium/ruby-jwt"
-  s.licenses = ["MIT"]
-  s.rdoc_options = ["--line-numbers", "--title", "Jwt", "--main", "README.md"]
-  s.rubyforge_project = "jwt"
-  s.rubygems_version = "2.4.8"
-  s.summary = "JSON Web Token implementation in Ruby"
-  if s.respond_to? :specification_version then
-    s.specification_version = 4
-    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
-      s.add_development_dependency(%q<echoe>, [">= 4.6.3"])
-    else
-      s.add_dependency(%q<echoe>, [">= 4.6.3"])
-    end
-  else
-    s.add_dependency(%q<echoe>, [">= 4.6.3"])
-  end
-end