jwt_auth_cognito 1.0.0.pre.beta.15 → 1.0.0.pre.beta.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 5478b2beaffce3e103aa915b73735e2b78ae39d4f802fb663fd0aad79a721207
4
- data.tar.gz: 2023c50ebe2234f58243820118edce9e8d413dc348b0798642e4378adc356898
3
+ metadata.gz: b267346dfc24c4ca838329a29fdeed3191825dd019b4993375fd3627b343c0c1
4
+ data.tar.gz: 81d5368d0c5a605e93a1d54c92bd47cfa2ea71abacd6c43e81bb95736dd15e9b
5
5
  SHA512:
6
- metadata.gz: e8a0c2b0bb5897f15bc83b065ccfa060f18d509788cd1406325792caa74ac1d23bc9910c4c81d3f1c4923e21efd6aa0e35655bffb8f44dc1f74767a3ed3e51d9
7
- data.tar.gz: 5bbb8e162f0150c06730a8c63723e6458b50f32404bc12661622d8b670fa3901f1dac9c93a909d59f77d7f63ff0e1d2b9592c2df69247feb9b9b3aac5786db1b
6
+ metadata.gz: f4add1eff2ee4a65fb744bc7767aaff5fe54147dcd1976df35dcc5d7610e9370f6ec44f3570c0c8e21ecd92809b38ac8dfff12d03cd8c6491e35576a133eb2d7
7
+ data.tar.gz: fcf204c00c1596f813b795d0241bcc4117643da1c62256cad409cc7e78f337ddf691df5fecbf94ebb4acbe2f5958d05680b510a720584721bac2e8535f9740ab
data/CHANGELOG.md CHANGED
@@ -7,7 +7,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
7
7
 
8
8
  ## [Unreleased]
9
9
 
10
- ## [1.0.0-beta.16] - 2026-06-25
10
+ ## [1.0.0-beta.16] - 2026-07-06
11
+
12
+ ### Added
13
+
14
+ - **`organizationUuid` in `user_organizations`.** `#get_user_organizations` (and therefore
15
+ the enriched validation result) now passes through the `organizationUuid` snapshot that
16
+ auth-service denormalizes into `user:permissions:{sub}` when the owning app registers a
17
+ stable UUID for an organization (anti-IDOR initiative). The field is optional and only
18
+ present when the org has one registered; `organizationId` remains the authorization key
19
+ and the value used in RabbitMQ routing keys. No extra Redis reads are performed.
11
20
 
12
21
  ### Fixed
13
22
 
@@ -287,6 +287,8 @@ module JwtAuthCognito
287
287
  'status' => org_data['status']
288
288
  }
289
289
 
290
+ # UUID estable de la org (snapshot denormalizado por auth-service, si la app lo registro)
291
+ user_org['organizationUuid'] = org_data['organizationUuid'] if org_data['organizationUuid']
290
292
  user_org['effectivePermissions'] = effective_permissions if effective_permissions
291
293
 
292
294
  user_organizations << user_org
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module JwtAuthCognito
4
- VERSION = '1.0.0-beta.15'
4
+ VERSION = '1.0.0-beta.16'
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: jwt_auth_cognito
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.0.pre.beta.15
4
+ version: 1.0.0.pre.beta.16
5
5
  platform: ruby
6
6
  authors:
7
7
  - The Optimal
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2026-06-26 00:00:00.000000000 Z
11
+ date: 2026-07-06 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-cognitoidentityprovider