mauth-client 5.0.1 → 6.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a0e68cfc0209b5a75353832da0b86ad09d62414a7d7b41064140f74015202b62
-  data.tar.gz: 9d7030753959fcb55da17f407d952d271bcb55ce17055b57c7639cab591968fe
+  metadata.gz: 902839b0bccce8c448cea26ff7e83788858f71b3906974a4c3bba27817271f21
+  data.tar.gz: 64f2fc3fb6f213099c4b8d657754e1c440ea610fe02b90c20c22794fe14b46dd
 SHA512:
-  metadata.gz: 7d9c6a695ada3e6ba84d8cf315618e502841b59f261a19caadb7ee3f83ff2744a4cd6621571fb8d9f1e6917c5894c002e77d6b90556696cc6124ebc58b47870b
-  data.tar.gz: d623c9f86481d9c159c49bf0222bdc06ea405bd3063763cdabfbd26d97014c3847854a2dcfd26a7100afd9cc3fcc8b79dd334dee0d89d96c45c4aa8ce1960826
+  metadata.gz: 6e4422f2ea53a1b36506a0544cd62dc3ab37fee032acda93e81d2ef364eb924059f905db7ea08196c4229009f742d405c22c0c069807534570dd09e5d3e85ae7
+  data.tar.gz: 56a0f91951fbaba3923291e51240caf53ec91037b200878f29af6a4412c88f9b087cfab9b325a13a22fd8b1fd71389748dab204c80142461a82aa0c78cb9cad6

data/.gitignore

@@ -6,5 +6,9 @@
 /yardoc
 /log
 
+# Appraisal related files
+/gemfiles/.bundle/
+/gemfiles/*.gemfile.lock
+
 /Gemfile.lock
 .byebug_history

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--tag ~protocol_suite

data/.travis.yml

@@ -2,24 +2,33 @@ language: ruby
 cache: bundler
 
 rvm:
-  - 2.3.8
-  - 2.4.6
-  - 2.5.5
-  - 2.6.3
+  - 2.3
+  - 2.4
+  - 2.5
+  - 2.6
+  - 2.7
+
+gemfile:
+  - gemfiles/faraday_0.x.gemfile
+  - gemfiles/faraday_1.x.gemfile
 
 before_install:
-  - gem update --system -N > /dev/null && echo "Rubygems version $(gem --version)"
-  - gem install bundler --force -N -v=2.0.1 && bundle --version
+  - gem update --system --force -N > /dev/null && echo "Rubygems version $(gem --version)"
+  - gem install bundler --force -N -v=2.1.4 && bundle --version
 
 install:
   - bundle install --jobs=3 --retry=3
-  - |-
-    curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/master/travis_ci/fossa_install.sh | bash -s -- -b $TRAVIS_BUILD_DIR
+  - >-
+    curl -H 'Cache-Control: no-cache'
+    https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/master/travis_ci/fossa_install.sh |
+    bash -s -- -b $TRAVIS_BUILD_DIR
 
 script:
   - bundle exec rspec
-  - |-
-    curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/master/travis_ci/fossa_run.sh | bash -s -- -b $TRAVIS_BUILD_DIR
+  - >-
+    curl -H 'Cache-Control: no-cache'
+    https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/master/travis_ci/fossa_run.sh |
+    bash -s -- -b $TRAVIS_BUILD_DIR
 
 deploy:
   provider: rubygems
@@ -29,4 +38,4 @@ deploy:
   on:
     tags: true
     repo: mdsol/mauth-client-ruby
-    condition: "$TRAVIS_RUBY_VERSION == 2.6.3"
+    condition: $TRAVIS_RUBY_VERSION == 2.7 && $BUNDLE_GEMFILE == $TRAVIS_BUILD_DIR/gemfiles/faraday_1.x.gemfile

data/Appraisals

@@ -0,0 +1,7 @@
+appraise 'faraday_0.x' do
+  gem 'faraday', '0.9.0'
+end
+
+appraise 'faraday_1.x' do
+  gem 'faraday', '~> 1.0'
+end

data/CHANGELOG.md

@@ -1,3 +1,23 @@
+## v6.1.1
+* Replace `URI.escape` with `CGI.escape` in SecurityTokenCacher to suppress "URI.escape is obsolete" warning.
+
+## v6.1.0
+* Allow Faraday 1.x.
+
+## v6.0.0
+- Added parsing code to test with mauth-protocol-test-suite.
+- Added unescape step in query_string encoding in order to remove 'double encoding'.
+- Added normalization of paths.
+- Added flag to sign only with V1.
+- Changed V2 to V1 fallback to be configurable.
+- Fixed bug in sorting query parameters.
+
+## v5.1.0
+- Fall back to V1 when V2 authentication fails.
+
+## v5.0.2
+- Fix to not raise FrozenError when string to sign contains frozen value.
+
 ## v5.0.1
 - Update euresource escaping of query string.
 

data/CONTRIBUTING.md

@@ -19,6 +19,14 @@ Next, run the tests:
 bundle exec rspec
 ```
 
+# Running mauth-protocol-test-suite
+
+To run the mauth-protocol-test-suite clone the latest test suite onto your machine and place it in the same parent directory as this repo (or supply the ENV var `TEST_SUITE_RELATIVE_PATH` with the path to the test suite relative to this repo). Then run:
+
+```
+bundle exec rspec --tag protocol_suite
+```
+
 ## Running Benchmark
 
 If you make changes which could affect performance, please run the benchmark before and after the change as a sanity check.

data/doc/mauth.yml.md

@@ -29,6 +29,9 @@ common: &common
     SIY2exfsy7Y8NoOnBPlGiXKhgaF21T8kqV9C7R6OAuP0U6CgMJnINx/UjozvBENH
     Ux45QdvRd6vai8nHp7AgV7rr55SxXAZVgATll84uBUpfpmC6YK/j
     -----END RSA PRIVATE KEY-----
+  v2_only_authenticate: false
+  v2_only_sign_requests: false
+  disable_fallback_to_v1_on_v2_failure: true
 
 production:
   <<: *common
@@ -46,6 +49,10 @@ common: &common
   mauth_api_version: v1
   app_uuid: 123we997-0333-44d8-8fCf-5dd555c5bd51
   private_key_file: config/my_mauth_private.key
+  v2_only_authenticate: false
+  v2_only_sign_requests: false
+  disable_fallback_to_v1_on_v2_failure: true
+  v1_only_sign_requests: false
 
 production:
   <<: *common
@@ -62,6 +69,10 @@ test:
 - `app_uuid` - Required in the same circumstances where a `private_key` is required.
 - `mauth_baseurl` - Required for authentication but not for signing. Needed for local authentication to retrieve public keys and for remote authentication. Usually this is `https://mauth.imedidata.com` for production.
 - `mauth_api_version` - Required for authentication but not for signing. only `v1` exists as of this writing.
+- `v2_only_sign_requests` - If true, all outgoing requests will be signed with only the V2 protocol. Defaults to false.
+- `v2_only_authenticate` - If true, any incoming request or incoming response that does not use the V2 protocol will be rejected. Defaults to false.
+- `disable_fallback_to_v1_on_v2_failure` - If true, any incoming V2 requests that fail authentication will not fall back to V1 authentication. Defaults to false.
+- `v1_only_sign_requests` - If true, all outgoing requests will be signed with only the V1 protocol. Defaults to true. Note, cannot be `true` if `v2_only_sign_requests` is also `true`.
 
 ## Usage in your application
 

data/examples/Gemfile

@@ -1,4 +1,4 @@
 source 'https://rubygems.org'
 
-gem 'faraday', '~> 0.15'
+gem 'faraday', '~> 1.0'
 gem 'mauth-client', path: '..'

data/examples/Gemfile.lock

@@ -1,41 +1,47 @@
 PATH
   remote: ..
   specs:
-    mauth-client (4.1.0)
+    mauth-client (6.1.0)
+      addressable (~> 2.0)
       coderay (~> 1.0)
       dice_bag (>= 0.9, < 2.0)
-      faraday (~> 0.7)
-      faraday_middleware (~> 0.9)
+      faraday (>= 0.9, < 2.0)
+      faraday_middleware (>= 0.9, < 2.0)
       rack
       term-ansicolor (~> 1.0)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    coderay (1.1.2)
-    dice_bag (1.3.1)
+    addressable (2.7.0)
+      public_suffix (>= 2.0.2, < 5.0)
+    coderay (1.1.3)
+    dice_bag (1.4.1)
       diff-lcs (~> 1.0)
       rake
-      thor (~> 0.0)
-    diff-lcs (1.3)
-    faraday (0.15.3)
+      thor (< 2.0)
+    diff-lcs (1.4.4)
+    faraday (1.0.1)
       multipart-post (>= 1.2, < 3)
-    faraday_middleware (0.12.2)
-      faraday (>= 0.7.4, < 1.0)
-    multipart-post (2.0.0)
-    rack (2.0.6)
-    rake (12.3.1)
-    term-ansicolor (1.7.0)
+    faraday_middleware (1.0.0)
+      faraday (~> 1.0)
+    multipart-post (2.1.1)
+    public_suffix (4.0.6)
+    rack (2.2.3)
+    rake (13.0.1)
+    sync (0.5.0)
+    term-ansicolor (1.7.1)
       tins (~> 1.0)
-    thor (0.20.3)
-    tins (1.20.2)
+    thor (1.0.1)
+    tins (1.25.0)
+      sync
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  faraday (~> 0.15)
+  faraday (~> 1.0)
   mauth-client!
 
 BUNDLED WITH
-   1.17.1
+   2.1.4

data/examples/config.yml

@@ -6,3 +6,7 @@ mauth:
   mauth_api_version: v1
   app_uuid: <APP UUID>
   private_key_file: ./mauth_key
+  v2_only_authenticate: false
+  v2_only_sign_requests: false
+  disable_fallback_to_v1_on_v2_failure: true
+  v1_only_sign_requests: false

data/gemfiles/faraday_0.x.gemfile

@@ -0,0 +1,7 @@
+# This file was generated by Appraisal
+
+source "https://rubygems.org"
+
+gem "faraday", "0.9.0"
+
+gemspec path: "../"

data/gemfiles/faraday_1.x.gemfile

@@ -0,0 +1,7 @@
+# This file was generated by Appraisal
+
+source "https://rubygems.org"
+
+gem "faraday", "~> 1.0"
+
+gemspec path: "../"

data/lib/mauth/client.rb

@@ -153,6 +153,12 @@ module MAuth
       @config['ssl_certs_path'] = given_config['ssl_certs_path'] if given_config['ssl_certs_path']
       @config['v2_only_authenticate'] = given_config['v2_only_authenticate'].to_s.downcase == 'true'
       @config['v2_only_sign_requests'] = given_config['v2_only_sign_requests'].to_s.downcase == 'true'
+      @config['disable_fallback_to_v1_on_v2_failure'] = given_config['disable_fallback_to_v1_on_v2_failure'].to_s.downcase == 'true'
+      @config['v1_only_sign_requests'] = given_config['v1_only_sign_requests'].to_s.downcase == 'true'
+
+      if @config['v2_only_sign_requests'] && @config['v1_only_sign_requests']
+        raise MAuth::Client::ConfigurationError, "v2_only_sign_requests and v1_only_sign_requests may not both be true"
+      end
 
       # if 'authenticator' was given, don't override that - including if it was given as nil / false
       if given_config.key?('authenticator')
@@ -205,6 +211,14 @@ module MAuth
       @config['v2_only_authenticate']
     end
 
+    def disable_fallback_to_v1_on_v2_failure?
+      @config['disable_fallback_to_v1_on_v2_failure']
+    end
+
+    def v1_only_sign_requests?
+      @config['v1_only_sign_requests']
+    end
+
     def assert_private_key(err)
       raise err unless private_key
     end

data/lib/mauth/client/authenticator_base.rb

@@ -19,10 +19,22 @@ module MAuth
 
       # raises InauthenticError unless the given object is authentic. Will only
       # authenticate with v2 if the environment variable V2_ONLY_AUTHENTICATE
-      # is set. Otherwise will authenticate with only the highest protocol version present
+      # is set. Otherwise will fall back to v1 when v2 authentication fails
       def authenticate!(object)
         if object.protocol_version == 2
-          authenticate_v2!(object)
+          begin
+            authenticate_v2!(object)
+          rescue InauthenticError => e
+            raise e if v2_only_authenticate?
+            raise e if disable_fallback_to_v1_on_v2_failure?
+
+            object.fall_back_to_mws_signature_info
+            raise e unless object.signature
+
+            log_authentication_request(object)
+            authenticate_v1!(object)
+            logger.warn("Completed successful authentication attempt after fallback to v1")
+          end
         elsif object.protocol_version == 1
           if v2_only_authenticate?
             # If v2 is required but not present and v1 is present we raise MissingV2Error

data/lib/mauth/client/remote_authenticator.rb

@@ -42,7 +42,7 @@ module MAuth
       def make_mauth_request(authentication_ticket)
         begin
           response = mauth_connection.post("/mauth/#{mauth_api_version}/authentication_tickets.json", 'authentication_ticket' => authentication_ticket)
-        rescue ::Faraday::Error::ConnectionFailed, ::Faraday::Error::TimeoutError => e
+        rescue ::Faraday::ConnectionFailed, ::Faraday::TimeoutError => e
           msg = "mAuth service did not respond; received #{e.class}: #{e.message}"
           logger.error("Unable to authenticate with MAuth. Exception #{msg}")
           raise UnableToAuthenticateError, msg

data/lib/mauth/client/security_token_cacher.rb

@@ -23,11 +23,10 @@ module MAuth
           if !@cache[app_uuid] || @cache[app_uuid].expired?
             # url-encode the app_uuid to prevent trickery like escaping upward with ../../ in a malicious
             # app_uuid - probably not exploitable, but this is the right way to do it anyway.
-            # use UNRESERVED instead of UNSAFE (the default) as UNSAFE doesn't include /
-            url_encoded_app_uuid = URI.escape(app_uuid, Regexp.new("[^#{URI::PATTERN::UNRESERVED}]"))
+            url_encoded_app_uuid = CGI.escape(app_uuid)
             begin
               response = signed_mauth_connection.get("/mauth/#{@mauth_client.mauth_api_version}/security_tokens/#{url_encoded_app_uuid}.json")
-            rescue ::Faraday::Error::ConnectionFailed, ::Faraday::Error::TimeoutError => e
+            rescue ::Faraday::ConnectionFailed, ::Faraday::TimeoutError => e
               msg = "mAuth service did not respond; received #{e.class}: #{e.message}"
               @mauth_client.logger.error("Unable to authenticate with MAuth. Exception #{msg}")
               raise UnableToAuthenticateError, msg

data/lib/mauth/client/signer.rb

@@ -30,6 +30,8 @@ module MAuth
       def signed_headers(object, attributes = {})
         if v2_only_sign_requests?
           signed_headers_v2(object, attributes)
+        elsif v1_only_sign_requests?
+          signed_headers_v1(object, attributes)
         else # by default sign with both the v1 and v2 protocol
           signed_headers_v1(object, attributes).merge(signed_headers_v2(object, attributes))
         end

data/lib/mauth/dice_bag/mauth.yml.dice

@@ -7,6 +7,8 @@ common: &common
   private_key_file: config/mauth_key
   v2_only_authenticate: <%= configured.v2_only_authenticate || 'false' %>
   v2_only_sign_requests: <%= configured.v2_only_sign_requests || 'false' %>
+  disable_fallback_to_v1_on_v2_failure: <%= configured.disable_fallback_to_v1_on_v2_failure || 'false' %>
+  v1_only_sign_requests: <%= configured.v1_only_sign_requests || 'true' %>
 
 production:
   <<: *common

data/lib/mauth/request_and_response.rb

@@ -1,4 +1,5 @@
 require 'digest'
+require 'addressable'
 
 module MAuth
   # module which composes a string to sign.
@@ -25,7 +26,7 @@ module MAuth
     # for responses:
     #   string_to_sign =
     #     status_code_string + <LF> +
-    #     response_body_digest + <LF> +
+    #     response_body + <LF> +
     #     app_uuid + <LF> +
     #     current_seconds_since_epoch
     def string_to_sign_v1(more_attributes)
@@ -59,9 +60,10 @@ module MAuth
 
       # memoization of body_digest to avoid hashing three times when we call
       # string_to_sign_v2 three times in client#signature_valid_v2!
-      # note that if :body is nil we hash an empty string ("")
-      attrs_with_overrides[:body_digest] ||= Digest::SHA512.hexdigest(attrs_with_overrides[:body].to_s)
-      attrs_with_overrides[:encoded_query_params] = encode_query_string(attrs_with_overrides[:query_string].to_s)
+      # note that if :body is nil we hash an empty string ('')
+      attrs_with_overrides[:body_digest] ||= Digest::SHA512.hexdigest(attrs_with_overrides[:body] || '')
+      attrs_with_overrides[:encoded_query_params] = unescape_encode_query_string(attrs_with_overrides[:query_string] || '')
+      attrs_with_overrides[:request_url] = normalize_path(attrs_with_overrides[:request_url])
 
       missing_attributes = self.class::SIGNATURE_COMPONENTS_V2.reject do |key|
         attrs_with_overrides.dig(key)
@@ -74,16 +76,30 @@ module MAuth
       end
 
       self.class::SIGNATURE_COMPONENTS_V2.map do |k|
-        attrs_with_overrides[k].to_s.force_encoding('UTF-8')
+        attrs_with_overrides[k].to_s.dup.force_encoding('UTF-8')
       end.join("\n")
     end
 
+    # Addressable::URI.parse(path).normalize.to_s.squeeze('/')
+    def normalize_path(path)
+      return if path.nil?
+
+      # Addressable::URI.normalize_path normalizes `.` and `..` in path
+      #   i.e. /./example => /example ; /example/.. => /
+      # String#squeeze removes duplicated slahes i.e. /// => /
+      # String#gsub normalizes percent encoding to uppercase i.e. %cf%80 => %CF%80
+      Addressable::URI.normalize_path(path).squeeze('/').
+        gsub(/%[a-f0-9]{2}/, &:upcase)
+    end
+
     # sorts query string parameters by codepoint, uri encodes keys and values,
     # and rejoins parameters into a query string
-    def encode_query_string(q_string)
-      q_string.split('&').sort.map do |part|
-        k, e, v = part.partition('=')
-        uri_escape(k) + e + uri_escape(v)
+    def unescape_encode_query_string(q_string)
+      fir = q_string.split('&').map do |part|
+        k, _eq, v = part.partition('=')
+        [CGI.unescape(k), CGI.unescape(v)]
+      end.sort.map do |k, v|
+        "#{uri_escape(k)}=#{uri_escape(v)}"
       end.join('&')
     end
 
@@ -115,23 +131,17 @@ module MAuth
   # - #x_mws_authentication which returns that header's value
   # - #x_mws_time
   module Signed
-    # mauth_client will authenticate with the highest protocol version present and ignore other
-    # protocol versions.
+    # mauth_client will authenticate with the highest protocol version present and if authentication fails,
+    # will fall back to lower protocol versions (if provided).
     # returns a hash with keys :token, :app_uuid, and :signature parsed from the MCC-Authentication header
     # if it is present and if not then the X-MWS-Authentication header if it is present.
     # Note MWSV2 protocol no longer allows more than one space between the token and app uuid.
     def signature_info
-      @signature_info ||= begin
-        match = if mcc_authentication
-          mcc_authentication.match(
-            /\A(#{MAuth::Client::MWSV2_TOKEN}) ([^:]+):([^:]+)#{MAuth::Client::AUTH_HEADER_DELIMITER}\z/
-          )
-        elsif x_mws_authentication
-          x_mws_authentication.match(/\A([^ ]+) *([^:]+):([^:]+)\z/)
-        end
-
-        match ? { token: match[1], app_uuid: match[2], signature: match[3] } : {}
-      end
+      @signature_info ||= build_signature_info(mcc_data || x_mws_data)
+    end
+
+    def fall_back_to_mws_signature_info
+      @signature_info = build_signature_info(x_mws_data)
     end
 
     def signature_app_uuid
@@ -153,6 +163,22 @@ module MAuth
         1
       end
     end
+
+    private
+
+    def build_signature_info(match_data)
+      match_data ? { token: match_data[1], app_uuid: match_data[2], signature: match_data[3] } : {}
+    end
+
+    def mcc_data
+      mcc_authentication&.match(
+        /\A(#{MAuth::Client::MWSV2_TOKEN}) ([^:]+):([^:]+)#{MAuth::Client::AUTH_HEADER_DELIMITER}\z/
+      )
+    end
+
+    def x_mws_data
+      x_mws_authentication&.match(/\A([^ ]+) *([^:]+):([^:]+)\z/)
+    end
   end
 
   # virtual base class for signable requests

data/lib/mauth/version.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 module MAuth
-  VERSION = '5.0.1'.freeze
+  VERSION = '6.1.1'
 end

data/mauth-client.gemspec

@@ -18,13 +18,15 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.add_dependency 'faraday', '~> 0.7'
-  spec.add_dependency 'faraday_middleware', '~> 0.9'
+  spec.add_dependency 'faraday', '>= 0.9', '< 2.0'
+  spec.add_dependency 'faraday_middleware', '>= 0.9', '< 2.0'
   spec.add_dependency 'term-ansicolor', '~> 1.0'
   spec.add_dependency 'coderay', '~> 1.0'
   spec.add_dependency 'rack'
   spec.add_dependency 'dice_bag', '>= 0.9', '< 2.0'
+  spec.add_dependency 'addressable', '~> 2.0'
 
+  spec.add_development_dependency 'appraisal'
   spec.add_development_dependency 'bundler', '>= 1.17'
   spec.add_development_dependency 'byebug'
   spec.add_development_dependency 'rack-test', '~> 1.1.0'

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: mauth-client
 version: !ruby/object:Gem::Version
-  version: 5.0.1
+  version: 6.1.1
 platform: ruby
 authors:
 - Matthew Szenher
@@ -11,36 +11,48 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2019-08-07 00:00:00.000000000 Z
+date: 2020-09-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.9'
+    - - "<"
       - !ruby/object:Gem::Version
-        version: '0.7'
+        version: '2.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.9'
+    - - "<"
       - !ruby/object:Gem::Version
-        version: '0.7'
+        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: faraday_middleware
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0.9'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '2.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0.9'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: term-ansicolor
   requirement: !ruby/object:Gem::Requirement
@@ -103,6 +115,34 @@ dependencies:
     - - "<"
       - !ruby/object:Gem::Version
         version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: addressable
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: appraisal
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -228,8 +268,10 @@ extra_rdoc_files: []
 files:
 - ".fossa.yml"
 - ".gitignore"
+- ".rspec"
 - ".travis.yml"
 - ".yardopts"
+- Appraisals
 - CHANGELOG.md
 - CONTRIBUTING.md
 - Gemfile
@@ -248,6 +290,8 @@ files:
 - examples/mauth_key
 - exe/mauth-client
 - exe/mauth-proxy
+- gemfiles/faraday_0.x.gemfile
+- gemfiles/faraday_1.x.gemfile
 - lib/mauth-client.rb
 - lib/mauth/autoload.rb
 - lib/mauth/client.rb
@@ -290,8 +334,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.7
+rubygems_version: 3.0.8
 signing_key: 
 specification_version: 4
 summary: Sign and authenticate requests and responses with mAuth authentication.