RubyGems - jwt_sessions - Versions diffs - 2.7.3 → 2.7.4 - Mend

jwt_sessions 2.7.3 → 2.7.4

Files changed (9) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ed69732617f15f4c07c0fb37d3ad938807224b729f136d24755a90f58b7b28ab
-  data.tar.gz: 27bee3f1c2bd4b099b0dadea703143d70e6abf1aaa6e5556f67515dfbc6f2e5b
+  metadata.gz: 8d8719e8f8b113faf2af6b40f1912d2cf4819527634411ec946a909c67833d31
+  data.tar.gz: f4e46db88c68b110dc78034925fce8193deab286d5703ea81ccfd2740bca9225
 SHA512:
-  metadata.gz: a0a81d8d8013a1393b441ddd15ec34fb57ceb0bd3198f9ee4a2554dff653efbe4379ad6992d1a8678895e0391f45626068a2f16b422ad8c658b7a086a08241d3
-  data.tar.gz: 46e744a4512da3d90b54f6552c42f35c7b3b3d25a9d73292058ac5782102ed9d9c77ac6a734a865b40e2fcccd675257cc5c41d27be45bd5fde758e8d6c97537f
+  metadata.gz: 6edb6fb526941fda66abcf0cea4a69904e08f4ca0be03ff7514d8c73e9b9f94cb86cb74a948612d62f3a20a2f91c123bce8c5e342b2600c959f0da90f4e0a918
+  data.tar.gz: b49c7a27800f9b7621565c9e9206a30f547e837668fb0fd683073ff75b062479bb0d51630f28cd165a70ecd767fc44f736795d4d12b480183fe7395b239696ac

data/CHANGELOG.md CHANGED Viewed

@@ -1,11 +1,14 @@
-## 2.7.3 (August 26, 2022)
+## 2.7.4 (August 31, 2022)
-Bugfixes:
+Support:
-- compatibility with jwt 2.5
+- compatibility with redis 5.0
+## 2.7.3 (August 26, 2022)
 Support:
+- compatibility with jwt 2.5
 - add rspec to development deps
 ## 2.7.2 (January 24, 2022)

data/README.md CHANGED Viewed

@@ -409,11 +409,11 @@ jwt_sessions only uses `exp` claim by default when it decodes tokens and you can
 setting `jwt_options`. You can also specify leeway to account for clock skew.
 ```ruby
-JWTSessions.jwt_options.verify_iss = true
-JWTSessions.jwt_options.verify_sub = true
-JWTSessions.jwt_options.verify_iat = true
-JWTSessions.jwt_options.verify_aud = true
-JWTSessions.jwt_options.leeway     = 30 # seconds
+JWTSessions.jwt_options[:verify_iss] = true
+JWTSessions.jwt_options[:verify_sub] = true
+JWTSessions.jwt_options[:verify_iat] = true
+JWTSessions.jwt_options[:verify_aud] = true
+JWTSessions.jwt_options[:leeway]     = 30 # seconds
 ```
 To pass options like `sub`, `aud`, `iss`, or leeways you should specify a method called `token_claims` in your controller.

data/lib/jwt_sessions/session.rb CHANGED Viewed

@@ -89,7 +89,7 @@ module JWTSessions
       tokens.each do |token|
         AccessToken.destroy(token.access_uid, store)
         # unlink refresh token from the current access token
-        token.update(nil, nil, token.csrf)
+        token.update(0, 0, token.csrf)
       end.count
     end
@@ -208,7 +208,7 @@ module JWTSessions
     def check_access_uid_within_refresh_token
       uid = retrieve_val_from(payload, :access, "uid", "access uid")
       access_uid = @_refresh.access_uid
-      return if access_uid.size.zero?
+      return if access_uid == "0"
       yield @_refresh.uid, @_refresh.access_expiration if access_uid != uid
     end

@@ -37,9 +37,11 @@ module JWTSessions
       def fetch_refresh(uid, namespace, first_match = false)
         key    = first_match ? first_refresh_key(uid) : full_refresh_key(uid, namespace)
-        values = storage.hmget(key, *REFRESH_KEYS).compact
+        return {} if key.nil?
+        values = storage.hmget(key, *REFRESH_KEYS).compact
         return {} if values.length != REFRESH_KEYS.length
         REFRESH_KEYS
           .each_with_index
           .each_with_object({}) { |(key, index), acc| acc[key] = values[index] }

data/lib/jwt_sessions/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module JWTSessions
-  VERSION = "2.7.3"
+  VERSION = "2.7.4"
 end

@@ -24,13 +24,11 @@ class TestRedisStoreAdapter < Minitest::Test
     adapter = JWTSessions::StoreAdapters::RedisStoreAdapter.new(
       redis_url: "redis://127.0.0.1:6379",
       ssl_params: { verify_mode: OpenSSL::SSL::VERIFY_NONE },
-      reconnect_delay: 2,
       timeout: 8
     )
     options = adapter.storage.instance_variable_get(:@options)
     assert_equal 8, options[:timeout]
-    assert_equal 2, options[:reconnect_delay]
     assert_equal 0, options[:ssl_params][:verify_mode]
   end

data/test/units/jwt_sessions/test_session.rb CHANGED Viewed

@@ -309,8 +309,8 @@ class TestSession < Minitest::Test
     session.flush_namespaced_access_tokens
     ruid = session.instance_variable_get(:"@_refresh").uid
     refresh_token = JWTSessions::RefreshToken.find(ruid, JWTSessions.token_store, namespace)
-    assert_equal "", refresh_token.access_uid
-    assert_equal "", refresh_token.access_expiration
+    assert_equal "0", refresh_token.access_uid
+    assert_equal "0", refresh_token.access_expiration
     # allows to refresh with un-expired but flushed access token payload
     session.refresh_by_access_payload do
@@ -320,8 +320,8 @@ class TestSession < Minitest::Test
     access_token = JWTSessions::AccessToken.find(auid, JWTSessions.token_store)
     refresh_token = JWTSessions::RefreshToken.find(ruid, JWTSessions.token_store, namespace)
-    assert_equal false, access_token.uid.size.zero?
-    assert_equal false, access_token.expiration.size.zero?
+    assert "0" != access_token.uid
+    assert "0" != access_token.expiration
     assert_equal access_token.uid.to_s, refresh_token.access_uid
     assert_equal access_token.expiration.to_s, refresh_token.access_expiration
   end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: jwt_sessions
 version: !ruby/object:Gem::Version
-  version: 2.7.3
+  version: 2.7.4
 platform: ruby
 authors:
 - Yulia Oletskaya
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-08-26 00:00:00.000000000 Z
+date: 2022-08-31 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jwt