RubyGems - jwt_signed_request - Versions diffs - 2.6.0 → 4.0.0 - Mend

jwt_signed_request 2.6.0 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/README.md +49 -1
data/lib/jwt_signed_request/middlewares/faraday.rb +6 -1
data/lib/jwt_signed_request/verify.rb +3 -0
data/lib/jwt_signed_request/version.rb +1 -1
metadata +20 -6

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: fb9e7a555755580bb4b37387799d44d3bc4d67d7a157060fce83183827250d15
-  data.tar.gz: b4ed152d2dfa73fc961280a6d7c09fd480565195c280f76b71e6326268ba894d
+  metadata.gz: 2ff089359ca0be223ce8129057dd85f41347deefc047a38a430ccbb2807900c3
+  data.tar.gz: 7b48dda198a6b50b11c23cd9ee729dafdc4eac46cd916a9d8537452b30f2498c
 SHA512:
-  metadata.gz: 6d7f1c2fe8ffac7c069d11231ae797fb92967cece0ed2c441167d02ebec178edb6d9474d02a0e4ec3d9a4840d8df0888cb6b00029f99190e0b24f1fceaf2f0f2
-  data.tar.gz: 0b38896799b5021d54266010534f5360819d95363b7f09a276e7b729df8d708bacd9c861e1ae194e3b6f2bd7894e7f32f2e1e60d486d00b07b84705d2cbc4713
+  metadata.gz: 3c386999814a23ef7453316d2d9082d6e1ae706989eeff1c2bab49414f4f9dc1e9eca36c0f936e6139a05adb5e99540dc5cb3eff4192348e10d80e2200e84333
+  data.tar.gz: c0b80b1fda09d9dcb1260f229acfeff185cdb8ada149d9729ea2950f356e6fe09126639182811438d19f35658d5c6ad9fbe49b3ae02d612d96234ed7f11d0218

data/README.md CHANGED Viewed

@@ -1,5 +1,9 @@
 # JWT Signed Request
-[![travis ci build](https://api.travis-ci.org/envato/jwt_signed_request.svg)](https://travis-ci.org/envato/jwt_signed_request)
+[![License MIT](https://img.shields.io/badge/license-MIT-brightgreen.svg)](https://github.com/envato/jwt_signed_request/blob/master/LICENSE.txt)
+[![Gem Version](https://img.shields.io/gem/v/jwt_signed_request.svg?maxAge=2592000)](https://rubygems.org/gems/jwt_signed_request)
+[![Gem Downloads](https://img.shields.io/gem/dt/jwt_signed_request.svg?maxAge=2592000)](https://rubygems.org/gems/jwt_signed_request)
+[![Test Suite](https://github.com/envato/jwt_signed_request/workflows/tests/badge.svg?branch=master)](https://github.com/envato/jwt_signed_request/actions?query=branch%3Amaster+workflow%3Atests)
 Request signing and verification for Internal APIs using JWT.
@@ -17,6 +21,14 @@ then run:
 $ bundle
 ```
+## Stale PRs
+We use the "stale" workflow to manage our PRs.
+If you have a PR open for 60 days without any activity, it will automatically be labelled `stale-pr`.
+If there is no activity for 7 days after this label is applied, the PR will be automatically closed.
+If you have a PR that has a sensible reason for being open for a long period of time with no activity, you can apply the `do-not-auto-close` label to avoid it being automatically closed.
 ## Generating EC Keys
 We should be using a public key encryption algorithm such as **ES256**. To generate your public/private key pair using **ES256** run:
@@ -269,3 +281,39 @@ For bug fixes, documentation changes, and small features:
 5. Create a new Pull Request
 For larger new features: Do everything as above, but first also make contact with the project maintainers to be sure your change fits with the project direction and you won't be wasting effort going in the wrong direction
+### Compatibility
+Compatibility with multiple versions of the [JWT gem] is tested via the [appraisal gem].
+Configured versions are defined in [Appraisals](./Appraisals), which at time of writing looked like this:
+```ruby
+# Latest JWT minor versions
+# Source: https://rubygems.org/gems/jwt/versions
+%w[
+  1.5.6
+  2.0.0
+  2.1.0
+  2.2.1
+].each do |jwt_version|
+```
+Ensure you set up your local environment by running:
+```sh
+bundle exec appraisal install
+```
+Run the test suite like this:
+```sh
+# Test all configured versions
+bundle exec appraisal rspec
+# Target a specific configured version
+bundle exec appraisal jwt-1.5.6 rspec
+```
+[JWT gem]: https://github.com/jwt/ruby-jwt
+[appraisal gem]: https://github.com/thoughtbot/appraisal

data/lib/jwt_signed_request/middlewares/faraday.rb CHANGED Viewed

@@ -9,7 +9,8 @@ module JWTSignedRequest
       def initialize(app, bearer_schema: nil, **options)
         @bearer_schema = bearer_schema
         @options = options
-        super(app)
+        initializer_args_requires_options? ? super(app, options) : super(app)
       end
       def call(env)
@@ -39,6 +40,10 @@ module JWTSignedRequest
       def bearer_schema?
         bearer_schema == true
       end
+      def initializer_args_requires_options?
+        Gem::Version.new(::Faraday::VERSION) >= Gem::Version.new('1.2.0')
+      end
     end
   end
 end

data/lib/jwt_signed_request/verify.rb CHANGED Viewed

@@ -109,6 +109,9 @@ module JWTSignedRequest
     end
     def request_body
+      return '' if request.body.nil?
+      request.body.rewind
       string = request.body.read
       request.body.rewind
       string

data/lib/jwt_signed_request/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module JWTSignedRequest
-  VERSION = '2.6.0'
+  VERSION = '4.0.0'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: jwt_signed_request
 version: !ruby/object:Gem::Version
-  version: 2.6.0
+  version: 4.0.0
 platform: ruby
 authors:
 - Envato
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-08-05 00:00:00.000000000 Z
+date: 2024-07-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jwt
@@ -39,7 +39,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: bundler
+  name: appraisal
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -53,7 +53,21 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '2'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '2'
+- !ruby/object:Gem::Dependency
+  name: rack-test
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -67,7 +81,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: rack-test
+  name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -147,7 +161,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.2
+rubygems_version: 3.5.6
 signing_key:
 specification_version: 4
 summary: JWT request signing and verification for Internal APIs