jwt_auth_cognito 1.0.0.pre.beta.15 → 1.0.0.pre.beta.16
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +10 -1
- data/lib/jwt_auth_cognito/user_data_service.rb +2 -0
- data/lib/jwt_auth_cognito/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b267346dfc24c4ca838329a29fdeed3191825dd019b4993375fd3627b343c0c1
|
|
4
|
+
data.tar.gz: 81d5368d0c5a605e93a1d54c92bd47cfa2ea71abacd6c43e81bb95736dd15e9b
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: f4add1eff2ee4a65fb744bc7767aaff5fe54147dcd1976df35dcc5d7610e9370f6ec44f3570c0c8e21ecd92809b38ac8dfff12d03cd8c6491e35576a133eb2d7
|
|
7
|
+
data.tar.gz: fcf204c00c1596f813b795d0241bcc4117643da1c62256cad409cc7e78f337ddf691df5fecbf94ebb4acbe2f5958d05680b510a720584721bac2e8535f9740ab
|
data/CHANGELOG.md
CHANGED
|
@@ -7,7 +7,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
|
7
7
|
|
|
8
8
|
## [Unreleased]
|
|
9
9
|
|
|
10
|
-
## [1.0.0-beta.16] - 2026-06
|
|
10
|
+
## [1.0.0-beta.16] - 2026-07-06
|
|
11
|
+
|
|
12
|
+
### Added
|
|
13
|
+
|
|
14
|
+
- **`organizationUuid` in `user_organizations`.** `#get_user_organizations` (and therefore
|
|
15
|
+
the enriched validation result) now passes through the `organizationUuid` snapshot that
|
|
16
|
+
auth-service denormalizes into `user:permissions:{sub}` when the owning app registers a
|
|
17
|
+
stable UUID for an organization (anti-IDOR initiative). The field is optional and only
|
|
18
|
+
present when the org has one registered; `organizationId` remains the authorization key
|
|
19
|
+
and the value used in RabbitMQ routing keys. No extra Redis reads are performed.
|
|
11
20
|
|
|
12
21
|
### Fixed
|
|
13
22
|
|
|
@@ -287,6 +287,8 @@ module JwtAuthCognito
|
|
|
287
287
|
'status' => org_data['status']
|
|
288
288
|
}
|
|
289
289
|
|
|
290
|
+
# UUID estable de la org (snapshot denormalizado por auth-service, si la app lo registro)
|
|
291
|
+
user_org['organizationUuid'] = org_data['organizationUuid'] if org_data['organizationUuid']
|
|
290
292
|
user_org['effectivePermissions'] = effective_permissions if effective_permissions
|
|
291
293
|
|
|
292
294
|
user_organizations << user_org
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: jwt_auth_cognito
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.0.pre.beta.
|
|
4
|
+
version: 1.0.0.pre.beta.16
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- The Optimal
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2026-06
|
|
11
|
+
date: 2026-07-06 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-cognitoidentityprovider
|