jwt_sessions 2.5.0 → 2.5.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cb5fdf14070b5d76ee868b427684fba6797cada31600e28b3346c601d7a3079e
-  data.tar.gz: fb709c41d45a11ea6e5b2d93f991326c0ddd4a562995dc837099af138b86ee08
+  metadata.gz: 8fe59582c2a9d3d581ce7ab57a0356ef6ec9e016649a629b03d28154e4e0b375
+  data.tar.gz: 0f12ca584291b8570ce2191973542a4e7f114202940c0ed0562968a20362edca
 SHA512:
-  metadata.gz: 742c465fe4f58ca7327cc1257b98e21f658e891c12e5637bde92c8ca48010a284db43ec8af0ff53454f6642927a1de1cb2b5473619d7c5ecdaba706fba6e4527
-  data.tar.gz: 6247a76e67522e23211a6a6791312d6c50b06598b34743a92f7c32ec841a75928a6eae08d17fc3968fb9cff3ec886efcf7e0a19fe7bea9291dc7b0560fd0a658
+  metadata.gz: 26d4ad5a14429700ddab2f37324485543010e7658d18bdfa63dddbc8dff6e1911acf69823584c19b47ec0af4ac6dc043d37b638477fe33f003e957a14fa48f1c
+  data.tar.gz: 6d4faa18e5abe1ca845d9e4c36fdc2638143c0fc7da65d0c3d04d2570ca31da0477f545aa234d1b54c59378e511076ef40dfad23bfc5f994dc512049ea715c42

data/CHANGELOG.md

@@ -0,0 +1,30 @@
+## 2.5.1 (April 20, 2020)
+
+Features:
+
+- added changelog
+
+Bugfixes:
+
+- fixed double exp key in payload
+
+Support:
+
+- moved decode error text to a constant within token class
+
+## 2.5.0 (April 12, 2020)
+
+Features:
+
+- added new error class `JWTSessions::Errors::Expired`
+
+## 2.4.3 (September 19, 2019)
+
+Bugfixes:
+
+- fixed lookup for refresh token for namespaced sessions
+
+Support:
+
+- updated sqlite to ~> 1.4 in `dummy_api`
+- added 2.6.3 Ruby to CI

data/README.md

@@ -449,7 +449,7 @@ It is defined globally, but can be overridden on a session level. See `JWTSessio
 `JWTSessions::Errors::InvalidPayload` - token's payload doesn't contain required keys or they are invalid. \
 `JWTSessions::Errors::Unauthorized` - token can't be decoded or JWT claims are invalid. \
 `JWTSessions::Errors::ClaimsVerification` - JWT claims are invalid (inherited from `JWTSessions::Errors::Unauthorized`). \
-`JWTSessions::Errors::Expired` - token is expired (inherited from `JWTSessions::Errors::Unauthorized`).
+`JWTSessions::Errors::Expired` - token is expired (inherited from `JWTSessions::Errors::ClaimsVerification`).
 
 #### CSRF and cookies
 

data/lib/jwt_sessions/token.rb

@@ -4,6 +4,8 @@ require "jwt"
 
 module JWTSessions
   class Token
+    DECODE_ERROR = "cannot decode the token"
+
     class << self
       def encode(payload)
         exp_payload = meta.merge(payload)
@@ -20,18 +22,18 @@ module JWTSessions
       rescue JWT::DecodeError => e
         raise Errors::Unauthorized, e.message
       rescue StandardError
-        raise Errors::Unauthorized, "could not decode a token"
+        raise Errors::Unauthorized, DECODE_ERROR
       end
 
       def decode!(token)
         decode_options = { algorithm: JWTSessions.algorithm }
         JWT.decode(token, JWTSessions.public_key, false, decode_options)
       rescue StandardError
-        raise Errors::Unauthorized, "could not decode a token"
+        raise Errors::Unauthorized, DECODE_ERROR
       end
 
       def meta
-        { exp: JWTSessions.access_expiration }
+        { "exp" => JWTSessions.access_expiration }
       end
     end
   end

data/lib/jwt_sessions/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module JWTSessions
-  VERSION = "2.5.0"
+  VERSION = "2.5.1"
 end

data/test/units/jwt_sessions/test_token.rb

@@ -110,11 +110,11 @@ class TestToken < Minitest::Test
   def test_token_leeway_decode
     JWTSessions.encryption_key = "abcdefghijklmnopqrstuvwxyzABCDEF"
     JWTSessions.jwt_options.leeway = 50
-    token   = JWTSessions::Token.encode(payload.merge(exp: Time.now.to_i - 20))
+    token   = JWTSessions::Token.encode(payload.merge("exp" => Time.now.to_i - 20))
     decoded = JWTSessions::Token.decode(token).first
     assert_equal payload["user_id"], decoded["user_id"]
     assert_equal payload["secret"], decoded["secret"]
-    token   = JWTSessions::Token.encode(payload.merge(exp: Time.now.to_i - 100))
+    token   = JWTSessions::Token.encode(payload.merge("exp" => Time.now.to_i - 100))
     assert_raises JWTSessions::Errors::Unauthorized do
       JWTSessions::Token.decode(token)
     end
@@ -141,7 +141,7 @@ class TestToken < Minitest::Test
   end
 
   def test_payload_exp_time
-    token = JWTSessions::Token.encode(payload.merge(exp: Time.now.to_i - (3600 * 24)))
+    token = JWTSessions::Token.encode(payload.merge("exp" => Time.now.to_i - (3600 * 24)))
     assert_raises JWTSessions::Errors::Expired do
       JWTSessions::Token.decode(token)
     end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: jwt_sessions
 version: !ruby/object:Gem::Version
-  version: 2.5.0
+  version: 2.5.1
 platform: ruby
 authors:
 - Yulia Oletskaya
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-04-12 00:00:00.000000000 Z
+date: 2020-04-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jwt
@@ -92,6 +92,7 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- CHANGELOG.md
 - LICENSE
 - README.md
 - lib/jwt_sessions.rb
@@ -120,7 +121,11 @@ files:
 homepage: http://rubygems.org/gems/jwt_sessions
 licenses:
 - MIT
-metadata: {}
+metadata:
+  homepage_uri: https://github.com/tuwukee/jwt_sessions
+  changelog_uri: https://github.com/tuwukee/jwt_sessions/blob/master/CHANGELOG.md
+  source_code_uri: https://github.com/tuwukee/jwt_sessions
+  bug_tracker_uri: https://github.com/tuwukee/jwt_sessions/issues
 post_install_message: 
 rdoc_options: []
 require_paths: