jwt_signed_request 3.0.0 → 4.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a232713f444aa93fe62190f100a0ee0b74550c5f8426095c131b79ec035c1260
-  data.tar.gz: df9755b248452d267d2a0631ea16af0d81476a501dde8367b980fe53e6b9c210
+  metadata.gz: 2ff089359ca0be223ce8129057dd85f41347deefc047a38a430ccbb2807900c3
+  data.tar.gz: 7b48dda198a6b50b11c23cd9ee729dafdc4eac46cd916a9d8537452b30f2498c
 SHA512:
-  metadata.gz: 6e8ca9735e699cb864d1a73869d8b09cfda8e8decebae2b7343bd2168f1f4fe2baed43c02ee52e7d76c761de3af66aacdf69667805a097d14ae04f4896db238a
-  data.tar.gz: ffb84c36f824f1e8d4ad22718136fa4350ea56a28e842c098f7038abd9c31e3c3b1e168f0546ed281018cd54c91abfbd24add657cf2f705ba230db87f89ab17c
+  metadata.gz: 3c386999814a23ef7453316d2d9082d6e1ae706989eeff1c2bab49414f4f9dc1e9eca36c0f936e6139a05adb5e99540dc5cb3eff4192348e10d80e2200e84333
+  data.tar.gz: c0b80b1fda09d9dcb1260f229acfeff185cdb8ada149d9729ea2950f356e6fe09126639182811438d19f35658d5c6ad9fbe49b3ae02d612d96234ed7f11d0218

data/README.md

@@ -1,5 +1,9 @@
 # JWT Signed Request
-[![travis ci build](https://api.travis-ci.org/envato/jwt_signed_request.svg)](https://travis-ci.org/envato/jwt_signed_request)
+
+[![License MIT](https://img.shields.io/badge/license-MIT-brightgreen.svg)](https://github.com/envato/jwt_signed_request/blob/master/LICENSE.txt)
+[![Gem Version](https://img.shields.io/gem/v/jwt_signed_request.svg?maxAge=2592000)](https://rubygems.org/gems/jwt_signed_request)
+[![Gem Downloads](https://img.shields.io/gem/dt/jwt_signed_request.svg?maxAge=2592000)](https://rubygems.org/gems/jwt_signed_request)
+[![Test Suite](https://github.com/envato/jwt_signed_request/workflows/tests/badge.svg?branch=master)](https://github.com/envato/jwt_signed_request/actions?query=branch%3Amaster+workflow%3Atests)
 
 Request signing and verification for Internal APIs using JWT.
 
@@ -17,6 +21,14 @@ then run:
 $ bundle
 ```
 
+## Stale PRs
+
+We use the "stale" workflow to manage our PRs.
+If you have a PR open for 60 days without any activity, it will automatically be labelled `stale-pr`.
+If there is no activity for 7 days after this label is applied, the PR will be automatically closed.
+
+If you have a PR that has a sensible reason for being open for a long period of time with no activity, you can apply the `do-not-auto-close` label to avoid it being automatically closed.
+
 ## Generating EC Keys
 
 We should be using a public key encryption algorithm such as **ES256**. To generate your public/private key pair using **ES256** run:
@@ -287,6 +299,12 @@ Configured versions are defined in [Appraisals](./Appraisals), which at time of
 ].each do |jwt_version|
 ```
 
+Ensure you set up your local environment by running:
+
+```sh
+bundle exec appraisal install
+```
+
 Run the test suite like this:
 
 ```sh

data/lib/jwt_signed_request/verify.rb

@@ -109,6 +109,9 @@ module JWTSignedRequest
     end
 
     def request_body
+      return '' if request.body.nil?
+
+      request.body.rewind
       string = request.body.read
       request.body.rewind
       string

data/lib/jwt_signed_request/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module JWTSignedRequest
-  VERSION = '3.0.0'
+  VERSION = '4.0.0'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: jwt_signed_request
 version: !ruby/object:Gem::Version
-  version: 3.0.0
+  version: 4.0.0
 platform: ruby
 authors:
 - Envato
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-01-12 00:00:00.000000000 Z
+date: 2024-07-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jwt
@@ -161,7 +161,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.2
+rubygems_version: 3.5.6
 signing_key:
 specification_version: 4
 summary: JWT request signing and verification for Internal APIs