jwt 2.2.1 → 2.2.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/workflows/test.yml +74 -0
- data/.rspec +1 -0
- data/.rubocop.yml +15 -16
- data/.rubocop_todo.yml +191 -0
- data/{.ebert.yml → .sourcelevel.yml} +1 -1
- data/AUTHORS +60 -43
- data/Appraisals +4 -8
- data/CHANGELOG.md +154 -20
- data/Gemfile +2 -0
- data/README.md +60 -6
- data/Rakefile +4 -1
- data/lib/jwt/algos/hmac.rb +1 -0
- data/lib/jwt/algos/none.rb +15 -0
- data/lib/jwt/algos/unsupported.rb +5 -4
- data/lib/jwt/algos.rb +44 -0
- data/lib/jwt/claims_validator.rb +9 -7
- data/lib/jwt/decode.rb +17 -8
- data/lib/jwt/encode.rb +5 -4
- data/lib/jwt/error.rb +14 -14
- data/lib/jwt/jwk/ec.rb +150 -0
- data/lib/jwt/jwk/hmac.rb +58 -0
- data/lib/jwt/jwk/key_base.rb +18 -0
- data/lib/jwt/jwk/key_finder.rb +6 -1
- data/lib/jwt/jwk/rsa.rb +93 -25
- data/lib/jwt/jwk.rb +29 -9
- data/lib/jwt/signature.rb +9 -22
- data/lib/jwt/version.rb +2 -2
- data/ruby-jwt.gemspec +0 -6
- metadata +14 -79
- data/.codeclimate.yml +0 -20
- data/.travis.yml +0 -20
data/lib/jwt/signature.rb
CHANGED
@@ -2,12 +2,7 @@
|
|
2
2
|
|
3
3
|
require 'jwt/security_utils'
|
4
4
|
require 'openssl'
|
5
|
-
require 'jwt/algos
|
6
|
-
require 'jwt/algos/eddsa'
|
7
|
-
require 'jwt/algos/ecdsa'
|
8
|
-
require 'jwt/algos/rsa'
|
9
|
-
require 'jwt/algos/ps'
|
10
|
-
require 'jwt/algos/unsupported'
|
5
|
+
require 'jwt/algos'
|
11
6
|
begin
|
12
7
|
require 'rbnacl'
|
13
8
|
rescue LoadError
|
@@ -19,29 +14,21 @@ module JWT
|
|
19
14
|
# Signature logic for JWT
|
20
15
|
module Signature
|
21
16
|
extend self
|
22
|
-
ALGOS = [
|
23
|
-
Algos::Hmac,
|
24
|
-
Algos::Ecdsa,
|
25
|
-
Algos::Rsa,
|
26
|
-
Algos::Eddsa,
|
27
|
-
Algos::Ps,
|
28
|
-
Algos::Unsupported
|
29
|
-
].freeze
|
30
17
|
ToSign = Struct.new(:algorithm, :msg, :key)
|
31
18
|
ToVerify = Struct.new(:algorithm, :public_key, :signing_input, :signature)
|
32
19
|
|
33
20
|
def sign(algorithm, msg, key)
|
34
|
-
algo =
|
35
|
-
|
36
|
-
end
|
37
|
-
algo.sign ToSign.new(algorithm, msg, key)
|
21
|
+
algo, code = Algos.find(algorithm)
|
22
|
+
algo.sign ToSign.new(code, msg, key)
|
38
23
|
end
|
39
24
|
|
40
25
|
def verify(algorithm, key, signing_input, signature)
|
41
|
-
|
42
|
-
|
43
|
-
|
44
|
-
|
26
|
+
return true if algorithm.casecmp('none').zero?
|
27
|
+
|
28
|
+
raise JWT::DecodeError, 'No verification key available' unless key
|
29
|
+
|
30
|
+
algo, code = Algos.find(algorithm)
|
31
|
+
verified = algo.verify(ToVerify.new(code, key, signing_input, signature))
|
45
32
|
raise(JWT::VerificationError, 'Signature verification raised') unless verified
|
46
33
|
rescue OpenSSL::PKey::PKeyError
|
47
34
|
raise JWT::VerificationError, 'Signature verification raised'
|
data/lib/jwt/version.rb
CHANGED
@@ -14,11 +14,11 @@ module JWT
|
|
14
14
|
# minor version
|
15
15
|
MINOR = 2
|
16
16
|
# tiny version
|
17
|
-
TINY =
|
17
|
+
TINY = 3
|
18
18
|
# alpha, beta, etc. tag
|
19
19
|
PRE = nil
|
20
20
|
|
21
21
|
# Build version string
|
22
|
-
STRING = [
|
22
|
+
STRING = [MAJOR, MINOR, TINY, PRE].compact.join('.')
|
23
23
|
end
|
24
24
|
end
|
data/ruby-jwt.gemspec
CHANGED
@@ -25,10 +25,4 @@ Gem::Specification.new do |spec|
|
|
25
25
|
spec.add_development_dependency 'rake'
|
26
26
|
spec.add_development_dependency 'rspec'
|
27
27
|
spec.add_development_dependency 'simplecov'
|
28
|
-
spec.add_development_dependency 'simplecov-json'
|
29
|
-
spec.add_development_dependency 'codeclimate-test-reporter'
|
30
|
-
spec.add_development_dependency 'codacy-coverage'
|
31
|
-
spec.add_development_dependency 'rbnacl'
|
32
|
-
# RSASSA-PSS support provided by OpenSSL +2.1
|
33
|
-
spec.add_development_dependency 'openssl', '~> 2.1'
|
34
28
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: jwt
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 2.2.
|
4
|
+
version: 2.2.3
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Tim Rudat
|
8
|
-
autorequire:
|
8
|
+
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2021-04-19 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: appraisal
|
@@ -80,76 +80,6 @@ dependencies:
|
|
80
80
|
- - ">="
|
81
81
|
- !ruby/object:Gem::Version
|
82
82
|
version: '0'
|
83
|
-
- !ruby/object:Gem::Dependency
|
84
|
-
name: simplecov-json
|
85
|
-
requirement: !ruby/object:Gem::Requirement
|
86
|
-
requirements:
|
87
|
-
- - ">="
|
88
|
-
- !ruby/object:Gem::Version
|
89
|
-
version: '0'
|
90
|
-
type: :development
|
91
|
-
prerelease: false
|
92
|
-
version_requirements: !ruby/object:Gem::Requirement
|
93
|
-
requirements:
|
94
|
-
- - ">="
|
95
|
-
- !ruby/object:Gem::Version
|
96
|
-
version: '0'
|
97
|
-
- !ruby/object:Gem::Dependency
|
98
|
-
name: codeclimate-test-reporter
|
99
|
-
requirement: !ruby/object:Gem::Requirement
|
100
|
-
requirements:
|
101
|
-
- - ">="
|
102
|
-
- !ruby/object:Gem::Version
|
103
|
-
version: '0'
|
104
|
-
type: :development
|
105
|
-
prerelease: false
|
106
|
-
version_requirements: !ruby/object:Gem::Requirement
|
107
|
-
requirements:
|
108
|
-
- - ">="
|
109
|
-
- !ruby/object:Gem::Version
|
110
|
-
version: '0'
|
111
|
-
- !ruby/object:Gem::Dependency
|
112
|
-
name: codacy-coverage
|
113
|
-
requirement: !ruby/object:Gem::Requirement
|
114
|
-
requirements:
|
115
|
-
- - ">="
|
116
|
-
- !ruby/object:Gem::Version
|
117
|
-
version: '0'
|
118
|
-
type: :development
|
119
|
-
prerelease: false
|
120
|
-
version_requirements: !ruby/object:Gem::Requirement
|
121
|
-
requirements:
|
122
|
-
- - ">="
|
123
|
-
- !ruby/object:Gem::Version
|
124
|
-
version: '0'
|
125
|
-
- !ruby/object:Gem::Dependency
|
126
|
-
name: rbnacl
|
127
|
-
requirement: !ruby/object:Gem::Requirement
|
128
|
-
requirements:
|
129
|
-
- - ">="
|
130
|
-
- !ruby/object:Gem::Version
|
131
|
-
version: '0'
|
132
|
-
type: :development
|
133
|
-
prerelease: false
|
134
|
-
version_requirements: !ruby/object:Gem::Requirement
|
135
|
-
requirements:
|
136
|
-
- - ">="
|
137
|
-
- !ruby/object:Gem::Version
|
138
|
-
version: '0'
|
139
|
-
- !ruby/object:Gem::Dependency
|
140
|
-
name: openssl
|
141
|
-
requirement: !ruby/object:Gem::Requirement
|
142
|
-
requirements:
|
143
|
-
- - "~>"
|
144
|
-
- !ruby/object:Gem::Version
|
145
|
-
version: '2.1'
|
146
|
-
type: :development
|
147
|
-
prerelease: false
|
148
|
-
version_requirements: !ruby/object:Gem::Requirement
|
149
|
-
requirements:
|
150
|
-
- - "~>"
|
151
|
-
- !ruby/object:Gem::Version
|
152
|
-
version: '2.1'
|
153
83
|
description: A pure ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT)
|
154
84
|
standard.
|
155
85
|
email: timrudat@gmail.com
|
@@ -157,12 +87,12 @@ executables: []
|
|
157
87
|
extensions: []
|
158
88
|
extra_rdoc_files: []
|
159
89
|
files:
|
160
|
-
- ".
|
161
|
-
- ".ebert.yml"
|
90
|
+
- ".github/workflows/test.yml"
|
162
91
|
- ".gitignore"
|
163
92
|
- ".rspec"
|
164
93
|
- ".rubocop.yml"
|
165
|
-
- ".
|
94
|
+
- ".rubocop_todo.yml"
|
95
|
+
- ".sourcelevel.yml"
|
166
96
|
- AUTHORS
|
167
97
|
- Appraisals
|
168
98
|
- CHANGELOG.md
|
@@ -171,9 +101,11 @@ files:
|
|
171
101
|
- README.md
|
172
102
|
- Rakefile
|
173
103
|
- lib/jwt.rb
|
104
|
+
- lib/jwt/algos.rb
|
174
105
|
- lib/jwt/algos/ecdsa.rb
|
175
106
|
- lib/jwt/algos/eddsa.rb
|
176
107
|
- lib/jwt/algos/hmac.rb
|
108
|
+
- lib/jwt/algos/none.rb
|
177
109
|
- lib/jwt/algos/ps.rb
|
178
110
|
- lib/jwt/algos/rsa.rb
|
179
111
|
- lib/jwt/algos/unsupported.rb
|
@@ -185,6 +117,9 @@ files:
|
|
185
117
|
- lib/jwt/error.rb
|
186
118
|
- lib/jwt/json.rb
|
187
119
|
- lib/jwt/jwk.rb
|
120
|
+
- lib/jwt/jwk/ec.rb
|
121
|
+
- lib/jwt/jwk/hmac.rb
|
122
|
+
- lib/jwt/jwk/key_base.rb
|
188
123
|
- lib/jwt/jwk/key_finder.rb
|
189
124
|
- lib/jwt/jwk/rsa.rb
|
190
125
|
- lib/jwt/security_utils.rb
|
@@ -196,7 +131,7 @@ homepage: https://github.com/jwt/ruby-jwt
|
|
196
131
|
licenses:
|
197
132
|
- MIT
|
198
133
|
metadata: {}
|
199
|
-
post_install_message:
|
134
|
+
post_install_message:
|
200
135
|
rdoc_options: []
|
201
136
|
require_paths:
|
202
137
|
- lib
|
@@ -211,8 +146,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
211
146
|
- !ruby/object:Gem::Version
|
212
147
|
version: '0'
|
213
148
|
requirements: []
|
214
|
-
rubygems_version: 3.
|
215
|
-
signing_key:
|
149
|
+
rubygems_version: 3.2.16
|
150
|
+
signing_key:
|
216
151
|
specification_version: 4
|
217
152
|
summary: JSON Web Token implementation in Ruby
|
218
153
|
test_files: []
|
data/.codeclimate.yml
DELETED
@@ -1,20 +0,0 @@
|
|
1
|
-
engines:
|
2
|
-
rubocop:
|
3
|
-
enabled: true
|
4
|
-
golint:
|
5
|
-
enabled: false
|
6
|
-
gofmt:
|
7
|
-
enabled: false
|
8
|
-
eslint:
|
9
|
-
enabled: false
|
10
|
-
csslint:
|
11
|
-
enabled: false
|
12
|
-
|
13
|
-
ratings:
|
14
|
-
paths:
|
15
|
-
- lib/**
|
16
|
-
- "**.rb"
|
17
|
-
|
18
|
-
exclude_paths:
|
19
|
-
- spec/**/*
|
20
|
-
- vendor/**/*
|
data/.travis.yml
DELETED
@@ -1,20 +0,0 @@
|
|
1
|
-
sudo: required
|
2
|
-
cache: bundler
|
3
|
-
dist: trusty
|
4
|
-
language: ruby
|
5
|
-
rvm:
|
6
|
-
- 2.3
|
7
|
-
- 2.4
|
8
|
-
- 2.5
|
9
|
-
- 2.6
|
10
|
-
gemfiles:
|
11
|
-
- gemfiles/standalone.gemfile
|
12
|
-
- gemfiles/rails_5.0.gemfile
|
13
|
-
- gemfiles/rails_5.1.gemfile
|
14
|
-
- gemfiles/rails_5.2.gemfile
|
15
|
-
script: "bundle exec rspec && bundle exec codeclimate-test-reporter"
|
16
|
-
before_install:
|
17
|
-
- sudo add-apt-repository ppa:chris-lea/libsodium -y
|
18
|
-
- sudo apt-get update -q
|
19
|
-
- sudo apt-get install libsodium-dev -y
|
20
|
-
- gem install bundler
|