RubyGems - legion-crypt - Versions diffs - 1.5.3 → 1.5.4 - Mend

legion-crypt 1.5.3 → 1.5.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d834ae88ede665d60615cb9ae6eb4bda06060f85e2ed1bb965d8552a85b4f7cc
-  data.tar.gz: a2a06dd4523cea1ca8e3b93edebf96c1ab7214ce18f5cba0c7be0c8bfb047e46
+  metadata.gz: 63ba23115939920477655378eaff3adacb4f37dac754cffc7e888a9eebc8ab08
+  data.tar.gz: 88960246bf06ae1e228529958d9e431693a9fa8e8279234ae1498c130bf1490d
 SHA512:
-  metadata.gz: f136dd1740169138a66a2d6167d799c721632ced3a637cebb16e80517408cb70f6d4ba71b875bddcae109e5f9f63a7da15926feda9bf0045d852f32b33f34feb
-  data.tar.gz: 1029cf89058f5edfab6276087c39510ffcb734065aa0e75abd34344457ac25075780677d9c7c46c11ab7ae9035fab862183ee394eb2f86961fa4154571bec618
+  metadata.gz: abf411468507856a834cc3e06df344eaecc5deebcb552a77d4cfd30ac1c091506f8b284eea79660d3dc109f2e622816c32871d4c4eda047a51ec3a9dbb689467
+  data.tar.gz: 557b616f75af3857df71a6530ea4a7e26680163fc2274e3a09ecfb2a12de628cc9bf64b90fb8e527c8ae43b1ac741a070b3f68d281591369ab460e2e348bd4e8

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,12 @@
 # Legion::Crypt
+## [Unreleased]
+## [1.5.4] - 2026-04-06
+### Added
+- `JWT.issue_identity_token` — convenience method wrapping `JWT.issue` with identity claims from `Identity::Process` (Wire Format Phase 3); accepts `issuer:` kwarg (defaults to `'legion'`) passed through to `JWT.issue`; normalizes and rejects conflicting string-keyed extra claims before merging
 ## [1.5.3] - 2026-04-06
 ### Added

data/lib/legion/crypt/jwt.rb CHANGED Viewed

@@ -36,6 +36,29 @@ module Legion
         raise
       end
+      def self.issue_identity_token(signing_key:, extra_claims: {}, algorithm: 'HS256', ttl: 3600, issuer: 'legion')
+        unless defined?(Legion::Identity::Process) && Legion::Identity::Process.resolved?
+          raise ArgumentError,
+                'Identity::Process not resolved'
+        end
+        identity = Legion::Identity::Process.identity_hash
+        identity_fields = {
+          sub:            identity[:canonical_name],
+          principal_id:   identity[:id],
+          canonical_name: identity[:canonical_name],
+          kind:           identity[:kind].to_s,
+          mode:           identity[:mode].to_s,
+          groups:         (identity[:groups] || [])[0, 50]
+        }
+        normalized_extra_claims = symbolize_keys(extra_claims || {}).reject do |key, _value|
+          identity_fields.key?(key)
+        end
+        payload = normalized_extra_claims.merge(identity_fields)
+        issue(payload, signing_key: signing_key, algorithm: algorithm, ttl: ttl, issuer: issuer)
+      end
       def self.verify(token, verification_key:, **opts)
         algorithm = opts.fetch(:algorithm, 'HS256')
         verify_expiration = opts.fetch(:verify_expiration, true)

data/lib/legion/crypt/version.rb CHANGED Viewed

@@ -2,6 +2,6 @@
 module Legion
   module Crypt
-    VERSION = '1.5.3'
+    VERSION = '1.5.4'
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: legion-crypt
 version: !ruby/object:Gem::Version
-  version: 1.5.3
+  version: 1.5.4
 platform: ruby
 authors:
 - Esity