RubyGems - jwt_signed_request - Versions diffs - 1.2.1 → 1.2.2 - Mend

jwt_signed_request 1.2.1 → 1.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/jwt_signed_request/version.rb +1 -1
data/lib/jwt_signed_request.rb +6 -2
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 12f82e6c9a8cf8a78430870a13956801c8d41c52
-  data.tar.gz: '09eaae125e6f453acff68839cb7c17e817871bb5'
+  metadata.gz: 6fa8c63dbbcbd416f397ff940a5456134d94e764
+  data.tar.gz: 794b7c510557b12ed9947eba5e1c82b79c944ff1
 SHA512:
-  metadata.gz: d1e00ca21e83575c1f8690d7000c35ec0da86b7f481708928d1045d53d50fb5594afb4240a04f44bd8c17132cf94dbabf4f38e98635c97b05216548d6d0b2a71
-  data.tar.gz: b73cf2457388eac51c97d492ac0533a10b754190a842b524155b28326fa0a96def9403665fbefc330e4422065ce2c36c3e34445a547507de7b875106eab30fbe
+  metadata.gz: fe0c6c4b1149b267fae6a00818fd818e8731e1d9bcac00b495abe6751d70f5f7e7ae88ed857fea012c05a3a29132ff2e148b488d6ecab566d4d3f523d63d702c
+  data.tar.gz: 9951441f024bf82334b30099a6ee4d586c6f49a550c1bc32a3c9cc261eebd9d49b4f68c635663e8c3f0679f580fd4a11e680518591b6377f16590c9607b55309

data/lib/jwt_signed_request/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module JWTSignedRequest
-  VERSION = "1.2.1".freeze
+  VERSION = "1.2.2".freeze
 end

data/lib/jwt_signed_request.rb CHANGED Viewed

@@ -60,7 +60,7 @@ module JWTSignedRequest
   end
   def self.verified_request?(request:, claims:)
-    claims['method'].downcase == request.request_method.downcase &&
+    claims['method'].to_s.downcase == request.request_method.downcase &&
       claims['path'] == request.fullpath &&
       claims['body_sha'] == Digest::SHA256.hexdigest(request_body(request: request)) &&
       verified_headers?(request: request, claims: claims)
@@ -77,7 +77,11 @@ module JWTSignedRequest
   private_class_method :request_body
   def self.verified_headers?(request:, claims:)
-    parsed_headers = JSON.parse(claims['headers'])
+    parsed_headers = begin
+      JSON.parse(claims['headers'].to_s)
+    rescue JSON::ParserError
+      {}
+    end
     parsed_headers.all? do |header_key, header_value|
       Headers.fetch(header_key, request) == header_value

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: jwt_signed_request
 version: !ruby/object:Gem::Version
-  version: 1.2.1
+  version: 1.2.2
 platform: ruby
 authors:
 - Toan Nguyen
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-05-08 00:00:00.000000000 Z
+date: 2017-05-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jwt
@@ -141,7 +141,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.6.11
+rubygems_version: 2.5.2
 signing_key:
 specification_version: 4
 summary: JWT request signing and verification for Internal APIs