mauth-client 4.1.0 → 4.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b803caf6b710829d7be863715fa1d9fccf91e3df68a6d7091f909cc07ff5c404
-  data.tar.gz: ff4be7020f498ed1127f9f39e1f697c6b2eedd34fdfbe4582f70a313e7362309
+  metadata.gz: f525040d66da5d6e6d3b5bf59e3d84267efad0d5f91598cc42291c972532c0b7
+  data.tar.gz: bb573ed893f4f385f1f5c7847c79002d09257dd04d7e848968020245ae5fb82a
 SHA512:
-  metadata.gz: dcc55ef907a8783b96906737a5ac5d5b90880c44bcdd16c5550b1ea0a88920ccc0da4ebc1ecc9465f4a172617dc67695f3ece2ae7e0d9257d60ef6830237bdac
-  data.tar.gz: e42055e2615868a74ec4127275015ffc3a45d144c4db72909abdb223f4f1ca35e239a5cfcf5900ef297019ce0833f81b9344bd6b3081d532ad8597fb4384cb28
+  metadata.gz: 8ee4aea0f49aa76ff0f70fce3afb8190edf5fce30b9d2750ab80a7297f7ae0f5ca639e0d3e8b89e2cdd932222b7ab164ac32ccf655ab0c791b356efd99016694
+  data.tar.gz: 45aa7a70ddf934913348f063b287af103f32cafdc440aeaa00ec95430b883b1a726863aabf2055eb4e3216e7703f7e1a76fc2e511d24a0d11e4e047e89db8825

data/.fossa.yml

@@ -0,0 +1,14 @@
+# Generated by FOSSA CLI (https://github.com/fossas/fossa-cli)
+# Visit https://fossa.io to learn more
+
+version: 1
+cli:
+  server: https://app.fossa.io
+  fetcher: custom
+  project: mauth-client-ruby
+analyze:
+  modules:
+  - name: Gemfile
+    type: gem
+    target: .
+    path: .

data/.travis.yml

@@ -1,13 +1,25 @@
 language: ruby
 cache: bundler
-sudo: false
 
 rvm:
-  - 2.3.7
-  - 2.4.4
-  - 2.5.1
+  - 2.3.8
+  - 2.4.6
+  - 2.5.5
+  - 2.6.3
 
-script: bundle exec rspec
+before_install:
+  - gem update --system -N > /dev/null && echo "Rubygems version $(gem --version)"
+  - gem install bundler --force -N -v=2.0.1 && bundle --version
+
+install:
+  - bundle install --jobs=3 --retry=3
+  - |-
+    curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/master/travis_ci/fossa_install.sh | bash -s -- -b $TRAVIS_BUILD_DIR
+
+script:
+  - bundle exec rspec
+  - |-
+    curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/master/travis_ci/fossa_run.sh | bash -s -- -b $TRAVIS_BUILD_DIR
 
 deploy:
   provider: rubygems
@@ -17,4 +29,4 @@ deploy:
   on:
     tags: true
     repo: mdsol/mauth-client-ruby
-    condition: "$TRAVIS_RUBY_VERSION == 2.5.1"
+    condition: "$TRAVIS_RUBY_VERSION == 2.6.3"

data/CHANGELOG.md

@@ -1,3 +1,6 @@
+## v4.1.1
+- Use warning level instead of error level for logs about missing mauth header.
+
 ## v4.1.0
 - Drop support for Ruby < 2.3.0
 - Update development dependencies

data/doc/implementations.md

@@ -1,8 +1,11 @@
-# MAuth-Client implementations
+# MAuth client implementations
 
 - .Net: [mauth-client-dotnet](https://github.com/mdsol/mauth-client-dotnet)
+- Clojure: [clojure-mauth-client](https://github.com/mdsol/clojure-mauth-client)
 - Go: [go-mauth-client](https://github.com/mdsol/go-mauth-client)
-- Java: [mauth-java-client](https://github.com/mdsol/mauth-java-client)
-- Python: [flask-mauth](https://github.com/mdsol/flask-mauth)
+- Java: [mauth-jvm-clients](https://github.com/mdsol/mauth-jvm-clients)
+- Python:
+  - [requests-mauth](https://github.com/mdsol/requests-mauth)
+  - [flask-mauth](https://github.com/mdsol/flask-mauth)
 - R: [RMauthClient](https://github.com/mdsol/RMauthClient)
 - Ruby: [mauth-client-ruby](https://github.com/mdsol/mauth-client-ruby)

data/examples/Gemfile

@@ -1,4 +1,4 @@
 source 'https://rubygems.org'
 
-gem 'faraday', '~> 0.9.0'
+gem 'faraday', '~> 0.15'
 gem 'mauth-client', path: '..'

data/examples/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: ..
   specs:
-    mauth-client (3.1.4)
+    mauth-client (4.1.0)
       coderay (~> 1.0)
       dice_bag (>= 0.9, < 2.0)
       faraday (~> 0.7)
@@ -12,30 +12,30 @@ PATH
 GEM
   remote: https://rubygems.org/
   specs:
-    coderay (1.1.1)
-    dice_bag (1.1.1)
+    coderay (1.1.2)
+    dice_bag (1.3.1)
       diff-lcs (~> 1.0)
       rake
       thor (~> 0.0)
-    diff-lcs (1.2.5)
-    faraday (0.9.2)
+    diff-lcs (1.3)
+    faraday (0.15.3)
       multipart-post (>= 1.2, < 3)
-    faraday_middleware (0.10.0)
-      faraday (>= 0.7.4, < 0.10)
+    faraday_middleware (0.12.2)
+      faraday (>= 0.7.4, < 1.0)
     multipart-post (2.0.0)
-    rack (2.0.1)
-    rake (11.2.2)
-    term-ansicolor (1.3.2)
+    rack (2.0.6)
+    rake (12.3.1)
+    term-ansicolor (1.7.0)
       tins (~> 1.0)
-    thor (0.19.1)
-    tins (1.11.0)
+    thor (0.20.3)
+    tins (1.20.2)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  faraday (~> 0.9.0)
+  faraday (~> 0.15)
   mauth-client!
 
 BUNDLED WITH
-   1.12.5
+   1.17.1

data/lib/mauth/client.rb

@@ -116,6 +116,11 @@ module MAuth
   class InauthenticError < StandardError
   end
 
+  # Used when the incoming request does not contain any mAuth related information
+  class MauthNotPresent < StandardError
+  end
+
+
   # required information for signing was missing
   class UnableToSignError < StandardError
   end
@@ -288,7 +293,7 @@ module MAuth
         begin
           authenticate!(object)
           true
-        rescue InauthenticError
+        rescue InauthenticError, MauthNotPresent
           false
         end
       end
@@ -299,13 +304,14 @@ module MAuth
         time_valid!(object)
         token_valid!(object)
         signature_valid!(object)
-      rescue InauthenticError
-        logger.error "mAuth signature authentication failed for #{object.class}. encountered error:"
-        $!.message.split("\n").each { |l| logger.error "\t#{l}" }
+      rescue MauthNotPresent => e
+        logger.warn "mAuth signature not present on #{object.class}. Exception: #{e.message}"
+        raise
+      rescue InauthenticError => e
+        logger.error "mAuth signature authentication failed for #{object.class}. Exception: #{e.message}"
         raise
-      rescue UnableToAuthenticateError
-        logger.error "Unable to authenticate with MAuth. encountered error:"
-        $!.message.split("\n").each { |l| logger.error "\t#{l}" }
+      rescue UnableToAuthenticateError => e
+        logger.error "Unable to authenticate with MAuth for #{object.class}. Exception: #{e.message}"
         raise
       end
 
@@ -315,27 +321,25 @@ module MAuth
       def log_authentication_request(object)
         object_app_uuid = object.signature_app_uuid || '[none provided]'
         logger.info "Mauth-client attempting to authenticate request from app with mauth app uuid #{object_app_uuid} to app with mauth app uuid #{client_app_uuid}."
-      rescue # don't let a failed attempt to log disrupt the rest of the action
-        logger.error "Mauth-client failed to log information about its attempts to authenticate the current request because #{$!}"
       end
 
       def authentication_present!(object)
         if object.x_mws_authentication.nil? || object.x_mws_authentication !~ /\S/
-          raise InauthenticError, "Authentication Failed. No mAuth signature present; X-MWS-Authentication header is blank."
+          raise MauthNotPresent, "Authentication Failed. No mAuth signature present; X-MWS-Authentication header is blank."
         end
       end
 
       def time_valid!(object, now = Time.now)
         if object.x_mws_time.nil?
-          raise InauthenticError, "Time verification failed for #{object.class}. No x-mws-time present."
+          raise InauthenticError, "Time verification failed. No x-mws-time present."
         elsif !(-ALLOWED_DRIFT_SECONDS..ALLOWED_DRIFT_SECONDS).cover?(now.to_i - object.x_mws_time.to_i)
-          raise InauthenticError, "Time verification failed for #{object.class}. #{object.x_mws_time} not within #{ALLOWED_DRIFT_SECONDS} of #{now}"
+          raise InauthenticError, "Time verification failed. #{object.x_mws_time} not within #{ALLOWED_DRIFT_SECONDS} of #{now}"
         end
       end
 
       def token_valid!(object)
         unless object.signature_token == MWS_TOKEN
-          raise InauthenticError, "Token verification failed for #{object.class}. Expected #{MWS_TOKEN.inspect}; token was #{object.signature_token}"
+          raise InauthenticError, "Token verification failed. Expected #{MWS_TOKEN.inspect}; token was #{object.signature_token}"
         end
       end
     end

data/lib/mauth/version.rb

@@ -1,3 +1,3 @@
 module MAuth
-  VERSION = '4.1.0'.freeze
+  VERSION = '4.1.1'.freeze
 end

data/mauth-client.gemspec

@@ -25,7 +25,7 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'rack'
   spec.add_dependency 'dice_bag', '>= 0.9', '< 2.0'
 
-  spec.add_development_dependency 'bundler', '~> 1.10'
+  spec.add_development_dependency 'bundler', '>= 1.17'
   spec.add_development_dependency 'byebug'
   spec.add_development_dependency 'rack-test', '~> 1.1.0'
   spec.add_development_dependency 'rake', '~> 12.0'

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: mauth-client
 version: !ruby/object:Gem::Version
-  version: 4.1.0
+  version: 4.1.1
 platform: ruby
 authors:
 - Matthew Szenher
@@ -11,7 +11,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2018-09-14 00:00:00.000000000 Z
+date: 2019-06-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
@@ -107,16 +107,16 @@ dependencies:
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.10'
+        version: '1.17'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.10'
+        version: '1.17'
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement
@@ -212,6 +212,7 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
+- ".fossa.yml"
 - ".gitignore"
 - ".travis.yml"
 - ".yardopts"
@@ -269,8 +270,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.7
+rubygems_version: 3.0.4
 signing_key: 
 specification_version: 4
 summary: Sign and authenticate requests and responses with mAuth authentication.