mauth-client 7.2.0 → 7.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 26dbb5eeff53416bf247a264a415eb7223359a142a2150e75734c0f62e824256
-  data.tar.gz: 6e73c8fdc1637927ba7625dc33b0e1ab0d8239f5e086c68a74d4a46385479940
+  metadata.gz: 382afef415a9f26e2ccd2d9c931c3d8494cdf3617630ef418fd54099675ca817
+  data.tar.gz: 7217f086976bacc388a3c702fd72adce9ea407a0caadd05909095cc7b58c50bb
 SHA512:
-  metadata.gz: c4eb6c25146c155208258e513ed64c9215c39dc0f250078db7fc57288d66df7f1d64f68aa41382be6c22ed25ed8dcf98249421433b93f2feb8ef7377d5922825
-  data.tar.gz: a06299bb7874d516e4391e33edab52c8c4d1ea8bef8ee39ca4e325115700b241ae25a0fe50ee49dee11029607056a6043922f2a0246c2393ad31aafa479341ab
+  metadata.gz: 27cd354b5884f9d9655d930257f6cd5f4dc6e17f4dac94c12a388689160ab0885411a0e53c9288e0beb66da09ae72c9ea625e220211573bd3e981bdbcbb9b3a2
+  data.tar.gz: 94cdf4d3cfbca6e69610c4d8b7ac8b568f1ee42e1c640a2fd654145661548831f41b4535f2a8e34f63e24257acb09196670f5f1af86595ac638522a143d9ef46

data/.github/workflows/ci.yml

@@ -28,7 +28,7 @@ jobs:
 
     strategy:
       matrix:
-        ruby-version: ['2.7', '3.0', '3.1', '3.2', '3.3']
+        ruby-version: ['2.7', '3.0', '3.1', '3.2', '3.3', '3.4']
         appraisal: ['faraday_1.x', 'faraday_2.x']
 
     env:

data/.github/workflows/publish.yml

@@ -20,7 +20,7 @@ jobs:
     - name: Set up Ruby
       uses: ruby/setup-ruby@v1
       with:
-        ruby-version: 3.3
+        ruby-version: 3.4
 
     - name: Publish to RubyGems
       run: |

data/.release-please-manifest.json

@@ -1,3 +1,3 @@
 {
-  ".": "7.2.0"
+  ".": "7.3.0"
 }

data/CHANGELOG.md

@@ -1,9 +1,11 @@
-## v7.1.0
-- Add MAuth::PrivateKeyHelper.load method to process RSA private keys.
-- Update Faraday configuration in SecurityTokenCacher:
-  - Add the `MAUTH_USE_RAILS_CACHE` environment variable to make `Rails.cache` usable to cache public keys.
-  - Shorten timeout for connection, add retries, and use persistent HTTP connections.
-- Drop support for Faraday < 1.9.
+# Changelog
+
+## [7.3.0](https://github.com/mdsol/mauth-client-ruby/compare/v7.2.0...v7.3.0) (2025-01-16)
+
+
+### Features
+
+* Support ruby 3.4 ([97f0f32](https://github.com/mdsol/mauth-client-ruby/commit/97f0f3211d5da8c92fc0ab6bbf44c6ad6929c807))
 
 ## [7.2.0](https://github.com/mdsol/mauth-client-ruby/compare/v7.1.0...v7.2.0) (2024-04-25)
 
@@ -12,7 +14,14 @@
 
 * Support Ruby 3.3 ([245bb06](https://github.com/mdsol/mauth-client-ruby/commit/245bb06d8abb86bd6a4b557b84bc9d0898254a95))
 
-## v7.0.0
+## 7.1.0
+- Add MAuth::PrivateKeyHelper.load method to process RSA private keys.
+- Update Faraday configuration in SecurityTokenCacher:
+  - Add the `MAUTH_USE_RAILS_CACHE` environment variable to make `Rails.cache` usable to cache public keys.
+  - Shorten timeout for connection, add retries, and use persistent HTTP connections.
+- Drop support for Faraday < 1.9.
+
+## 7.0.0
 - Remove dice_bag and set configuration through environment variables directly.
 - Rename the `V2_ONLY_SIGN_REQUESTS`, `V2_ONLY_AUTHENTICATE`, `DISABLE_FALLBACK_TO_V1_ON_V2_FAILURE` and `V1_ONLY_SIGN_REQUESTS` environment variables.
 - Remove the remote authenticator.
@@ -20,37 +29,37 @@
 
 See [UPGRADE_GUIDE.md](UPGRADE_GUIDE.md#upgrading-to-700) for migration.
 
-## v6.4.3
+## 6.4.3
 - Force Rack > 2.2.3 to resolve [CVE-2022-30123](https://github.com/advisories/GHSA-wq4h-7r42-5hrr).
 
-## v6.4.2
+## 6.4.2
 - Add MAuth::ServerHelper module with convenience methods for servers to access requester app uuid.
 
-## v6.4.1
+## 6.4.1
 - Fix MAuth::Rack::Response to not raise FrozenError.
 
-## v6.4.0
+## 6.4.0
 - Support Ruby 3.1.
 - Drop support for Ruby < 2.6.0.
 - Allow Faraday 2.x.
 
-## v6.3.0
+## 6.3.0
 - Support Ruby 3.0.
 - Drop support for Ruby < 2.5.0.
 
-## v6.2.1
+## 6.2.1
 - Fix SecurityTokenCacher to not cache tokens forever.
 
-## v6.2.0
+## 6.2.0
 - Drop legacy security token expiry in favor of honoring server cache headers via Faraday HTTP Cache Middleware.
 
-## v6.1.1
+## 6.1.1
 - Replace `URI.escape` with `CGI.escape` in SecurityTokenCacher to suppress "URI.escape is obsolete" warning.
 
-## v6.1.0
+## 6.1.0
 - Allow Faraday 1.x.
 
-## v6.0.0
+## 6.0.0
 - Added parsing code to test with mauth-protocol-test-suite.
 - Added unescape step in query_string encoding in order to remove 'double encoding'.
 - Added normalization of paths.
@@ -58,106 +67,106 @@ See [UPGRADE_GUIDE.md](UPGRADE_GUIDE.md#upgrading-to-700) for migration.
 - Changed V2 to V1 fallback to be configurable.
 - Fixed bug in sorting query parameters.
 
-## v5.1.0
+## 5.1.0
 - Fall back to V1 when V2 authentication fails.
 
-## v5.0.2
+## 5.0.2
 - Fix to not raise FrozenError when string to sign contains frozen value.
 
-## v5.0.1
+## 5.0.1
 - Update euresource escaping of query string.
 
-## v5.0.0
+## 5.0.0
 - Add support for MWSV2 protocol.
 - Change request signing to sign with both V1 and V2 protocols by default.
 - Update log message for authentication request to include protocol version used.
 - Added `benchmark` rake task to benchmark request signing and authentication.
 
-## v4.1.1
+## 4.1.1
 - Use warning level instead of error level for logs about missing mauth header.
 
-## v4.1.0
+## 4.1.0
 - Drop support for Ruby < 2.3.0
 - Update development dependencies
 
-## v4.0.4
+## 4.0.4
 - Restore original behavior in the proxy of forwarding of headers that begin with HTTP_ (except for HTTP_HOST) but removing the HTTP_.
 
-## v4.0.3
+## 4.0.3
 - Updated signature to decode number sign (#) in requests
 
-## v4.0.2
+## 4.0.2
 - Store the config data to not load the config file multiple times
 
-## v4.0.1
+## 4.0.1
 - Open source and publish this gem on rubygems.org, no functionality changes
 
-## v4.0.0
+## 4.0.0
 - *yanked*
 
-## v3.1.4
+## 3.1.4
 - Use String#bytesize method instead of Rack::Utils' one, which was removed in Rack 2.0
 
-## v3.1.3
+## 3.1.3
 - Increased the default timeout when fetching keys from MAuth from 1 second to 10 seconds
 - Properly honor faraday_options: timeout in mauth.yml for faraday < 0.9
 
-## v3.1.2
+## 3.1.2
 - Fixed bug in Faraday call, not to raise exception when adding authenticate information to response.
 
-## v3.1.1
+## 3.1.1
 - Properly require version file. Solves exception with the Faraday middleware.
 
-## v3.1.0
+## 3.1.0
 - Updated `mauth.rb.dice` template to use `MAuth::Client.default_config` method and store the config in `MAUTH_CONF` constant
 
-## v3.0.2
+## 3.0.2
 - Always pass a private key to the `ensure_is_private_key` method
 
-## v3.0.1
+## 3.0.1
 - Use `ensure_is_private_key` in the `mauth_key` template
 
-## v3.0.0
+## 3.0.0
 - Drop support for ruby 1.x
 
-## v2.9.0
+## 2.9.0
 - Add a dice template for mauth initializer
 
 ## 2-8-stable
 - Added an ssl_certs_path option to support JRuby applications
 - Updated dice templates to ensure `rake config` raises an error in production env if required variables are missing.
 
-## v2.7.2
+## 2.7.2
 - Added logging of mauth app_uuid of requester and requestee on each request
 
-## v2.7.0
+## 2.7.0
 - Ability to pass custom headers into mauth-client and mauth-proxy
 - Upgraded to use newest version of Faraday Middleware
 - Faraday_options now only get merged to the request (previously got merged into everything)
 - Syntax highlighting in hale+json output
 
-## v2.6.4
+## 2.6.4
 - Less restrictive rack versioning to allow for more consumers.
 - Allow verification even if intermediate web servers unescape URLs.
 
-## v2.6.3
+## 2.6.3
 - Fixed bug where nil Rails.logger prevented a logger from being built.
 
-## v2.6.2
+## 2.6.2
 - Added templates for dice_bag, now rake config:generate_all will create mauth config files when you include this gem.
 
-## v2.6.1
+## 2.6.1
 - Imported documentation from Medinet into the project's doc directory
 - Add Shamus
 
-## v2.6.0
+## 2.6.0
 - CLI option --no-ssl-verify disables SSL verification
 - Syntax highlighting with CodeRay colorizes request and response bodies of recognized media types
 - MAuth::Proxy class now lives in lib, in mauth/proxy, and may be used as a rack application
 - mauth-proxy executable recognizes --no-authenticate option for responses
 - MAuth::Proxy bugfix usage of REQUEST_URI; use Rack::Request#fullpath instead
 
-## v2.5.0
+## 2.5.0
 - MAuth::Rack::RequestAuthenticator middleware responds with json (instead of text/plain) for inauthentic requests and requests which it is unable to authenticate
 - Added MAuth::Client.default_config method
 - Added mauth-proxy executable
@@ -165,7 +174,7 @@ See [UPGRADE_GUIDE.md](UPGRADE_GUIDE.md#upgrading-to-700) for migration.
 - Rack middleware correctly handles Content-Length with HEAD requests
 - MAuth::Client raises MAuth::Client::ConfigurationError instead of ArgumentError or RuntimeError as appropriate
 
-## v2.4.0
+## 2.4.0
 - Colorized output from the mauth-client CLI
 - Add --content-type option to CLI
 - CLI rescues and prints MAuth errors instead of them bubbling up to the interpreter
@@ -173,7 +182,7 @@ See [UPGRADE_GUIDE.md](UPGRADE_GUIDE.md#upgrading-to-700) for migration.
 - Fix default null logger on windows where /dev/null is not available
 - Improve error logging
 
-## v2.3.0
+## 2.3.0
 - When authentication headers are missing, the previous message ("No x-mws-time present") is replaced by the somewhat more informative "Authentication Failed. No mAuth signature present; X-MWS-Authentication header is blank."
 - More informative help messages from mauth-client CLI
 - CLI sets a user-agent
@@ -181,7 +190,7 @@ See [UPGRADE_GUIDE.md](UPGRADE_GUIDE.md#upgrading-to-700) for migration.
 - Middleware MAuth::Rack::RequestAuthenticationFaker for testing
 - More and better specs
 
-## v2.2.0
+## 2.2.0
 - Fixes an issue where requests which have a body and are not PUT or POST were not being correctly signed in rack middleware
 - Improves the CLI, adding command-line options --[no-]authenticate to decide whether to authenticate responses, and --[no-]verbose to decide whether to dump the entire request and response, or just the response body. and --help to
   Remind you.
@@ -191,10 +200,10 @@ See [UPGRADE_GUIDE.md](UPGRADE_GUIDE.md#upgrading-to-700) for migration.
 - Drops backports dependency (Ben has found some issues with this gem, and it was easier to drop the depedency entirely than figure out whether these issues affected mauth-client and if it could be fixed)
 - Fix issue with remote authentication against the currently-deployed mauth service with a request signed by a nonexistent app_uuid
 
-## v2.1.1
+## 2.1.1
 - Fix an issue in a case where the rack.input is not rewound before mauth-client attempts to read it
 
-## v2.1.0
+## 2.1.0
 - MAuth::Client handles the :private_key_file, so you can remove from your application the bit that does that - this bit can be deleted:
 ```
 if mauth_conf['private_key_file']
@@ -204,5 +213,5 @@ end
 
 - Autoloads are in place so that once you require 'mauth/client', you should not need to require mauth/rack, mauth/faraday, or mauth/request_and_response.
 
-## v2.0.0
+## 2.0.0
 - Rewrite combining the mauth_signer and rack-mauth gems

data/lib/mauth/client.rb

@@ -97,9 +97,7 @@ module MAuth
           Rails.logger
         else
           require 'logger'
-          is_win = RUBY_PLATFORM =~ /mswin|windows|mingw32|cygwin/i
-          null_device = is_win ? 'NUL' : '/dev/null'
-          ::Logger.new(File.open(null_device, File::WRONLY))
+          ::Logger.new(File.open(File::NULL, File::WRONLY))
         end
       end
 
@@ -183,7 +181,7 @@ module MAuth
 
     # Changes all keys in the top level of the hash to symbols.  Does not affect nested hashes inside this one.
     def symbolize_keys(hash)
-      hash.keys.each do |key| # rubocop:disable Style/HashEachMethods
+      hash.keys.each do |key|
         hash[(key.to_sym rescue key) || key] = hash.delete(key)
       end
       hash

data/lib/mauth/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module MAuth
-  VERSION = '7.2.0'
+  VERSION = '7.3.0'
 end

data/mauth-client.gemspec

@@ -22,6 +22,7 @@ Gem::Specification.new do |spec|
   spec.require_paths = ['lib']
 
   spec.add_dependency 'addressable', '~> 2.0'
+  spec.add_dependency 'base64', '~> 0.2'
   spec.add_dependency 'coderay', '~> 1.0'
   spec.add_dependency 'faraday', '>= 1.9', '< 3.0'
   spec.add_dependency 'faraday-http-cache', '>= 2.0', '< 3.0'

metadata

@@ -1,17 +1,16 @@
 --- !ruby/object:Gem::Specification
 name: mauth-client
 version: !ruby/object:Gem::Version
-  version: 7.2.0
+  version: 7.3.0
 platform: ruby
 authors:
 - Matthew Szenher
 - Aaron Suggs
 - Geoffrey Ducharme
 - Ethan
-autorequire: 
 bindir: exe
 cert_chain: []
-date: 2024-04-25 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: addressable
@@ -27,6 +26,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: base64
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: coderay
   requirement: !ruby/object:Gem::Requirement
@@ -219,7 +232,6 @@ homepage: https://github.com/mdsol/mauth-client-ruby
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
@@ -234,8 +246,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.9
-signing_key: 
+rubygems_version: 3.6.9
 specification_version: 4
 summary: Sign and authenticate requests and responses with mAuth authentication.
 test_files: []