oauth-plugin 0.4.0 → 0.4.1
Sign up to get free protection for your applications and to get access to all the features.
- data/CHANGELOG +5 -0
- data/generators/oauth_consumer/templates/migration.rb +1 -1
- data/lib/generators/active_record/oauth_consumer_templates/migration.rb +1 -1
- data/lib/oauth-plugin/version.rb +1 -1
- data/lib/oauth/controllers/provider_controller.rb +1 -1
- data/lib/oauth/rack/oauth_filter.rb +3 -3
- metadata +24 -79
data/CHANGELOG
CHANGED
|
@@ -1,3 +1,8 @@
|
|
|
1
|
+
0.4.1
|
|
2
|
+
- Security fix for OAuth1 provider. Please upgrade if you're using any 0.4 version. Thanks to [tomhughes]
|
|
3
|
+
- Limit index size in ConsumerToken migration to deal with very large tokens [devainandor]
|
|
4
|
+
- Accept ancient OAuth2 Token token=asfavasd like tokens. Just for complete compatibility. [pelle]
|
|
5
|
+
- oauth2 errors should return http 400 [pelle]
|
|
1
6
|
0.4.0
|
|
2
7
|
- fix migrations to use expires_at instead of valid_to [pelle]
|
|
3
8
|
- add force parameter for forcing token refresh [afeld]
|
data/lib/oauth-plugin/version.rb
CHANGED
|
@@ -40,7 +40,7 @@ module OAuth
|
|
|
40
40
|
oauth_token = nil
|
|
41
41
|
|
|
42
42
|
if request_proxy.token
|
|
43
|
-
oauth_token = client_application.tokens.first(:conditions =>
|
|
43
|
+
oauth_token = client_application.tokens.first(:conditions => ['invalidated_at IS NULL AND authorized_at IS NOT NULL and token = ?', request_proxy.token])
|
|
44
44
|
if oauth_token.respond_to?(:provided_oauth_verifier=)
|
|
45
45
|
oauth_token.provided_oauth_verifier = request_proxy.oauth_verifier
|
|
46
46
|
end
|
|
@@ -86,8 +86,8 @@ module OAuth
|
|
|
86
86
|
request.params['bearer_token'] || request.params['access_token'] || (request.params["oauth_token"] && !request.params["oauth_signature"] ? request.params["oauth_token"] : nil ) ||
|
|
87
87
|
request.env["HTTP_AUTHORIZATION"] &&
|
|
88
88
|
!request.env["HTTP_AUTHORIZATION"][/(oauth_version="1.0")/] &&
|
|
89
|
-
request.env["HTTP_AUTHORIZATION"][/^(Bearer|OAuth|Token) ([^\s]*)$/,
|
|
89
|
+
request.env["HTTP_AUTHORIZATION"][/^(Bearer|OAuth|Token) (token=)?([^\s]*)$/, 3]
|
|
90
90
|
end
|
|
91
91
|
end
|
|
92
92
|
end
|
|
93
|
-
end
|
|
93
|
+
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: oauth-plugin
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.4.
|
|
4
|
+
version: 0.4.1
|
|
5
5
|
prerelease:
|
|
6
6
|
platform: ruby
|
|
7
7
|
authors:
|
|
@@ -13,7 +13,7 @@ date: 2011-10-20 00:00:00.000000000 Z
|
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: opentransact
|
|
16
|
-
requirement: !ruby/object:Gem::Requirement
|
|
16
|
+
requirement: &70232006903220 !ruby/object:Gem::Requirement
|
|
17
17
|
none: false
|
|
18
18
|
requirements:
|
|
19
19
|
- - ! '>='
|
|
@@ -21,15 +21,10 @@ dependencies:
|
|
|
21
21
|
version: '0'
|
|
22
22
|
type: :development
|
|
23
23
|
prerelease: false
|
|
24
|
-
version_requirements:
|
|
25
|
-
none: false
|
|
26
|
-
requirements:
|
|
27
|
-
- - ! '>='
|
|
28
|
-
- !ruby/object:Gem::Version
|
|
29
|
-
version: '0'
|
|
24
|
+
version_requirements: *70232006903220
|
|
30
25
|
- !ruby/object:Gem::Dependency
|
|
31
26
|
name: rspec
|
|
32
|
-
requirement: !ruby/object:Gem::Requirement
|
|
27
|
+
requirement: &70232006901300 !ruby/object:Gem::Requirement
|
|
33
28
|
none: false
|
|
34
29
|
requirements:
|
|
35
30
|
- - ~>
|
|
@@ -37,15 +32,10 @@ dependencies:
|
|
|
37
32
|
version: 2.4.0
|
|
38
33
|
type: :development
|
|
39
34
|
prerelease: false
|
|
40
|
-
version_requirements:
|
|
41
|
-
none: false
|
|
42
|
-
requirements:
|
|
43
|
-
- - ~>
|
|
44
|
-
- !ruby/object:Gem::Version
|
|
45
|
-
version: 2.4.0
|
|
35
|
+
version_requirements: *70232006901300
|
|
46
36
|
- !ruby/object:Gem::Dependency
|
|
47
37
|
name: fakeweb
|
|
48
|
-
requirement: !ruby/object:Gem::Requirement
|
|
38
|
+
requirement: &70232006899200 !ruby/object:Gem::Requirement
|
|
49
39
|
none: false
|
|
50
40
|
requirements:
|
|
51
41
|
- - ! '>='
|
|
@@ -53,15 +43,10 @@ dependencies:
|
|
|
53
43
|
version: '0'
|
|
54
44
|
type: :development
|
|
55
45
|
prerelease: false
|
|
56
|
-
version_requirements:
|
|
57
|
-
none: false
|
|
58
|
-
requirements:
|
|
59
|
-
- - ! '>='
|
|
60
|
-
- !ruby/object:Gem::Version
|
|
61
|
-
version: '0'
|
|
46
|
+
version_requirements: *70232006899200
|
|
62
47
|
- !ruby/object:Gem::Dependency
|
|
63
48
|
name: fuubar
|
|
64
|
-
requirement: !ruby/object:Gem::Requirement
|
|
49
|
+
requirement: &70232006896860 !ruby/object:Gem::Requirement
|
|
65
50
|
none: false
|
|
66
51
|
requirements:
|
|
67
52
|
- - ! '>='
|
|
@@ -69,15 +54,10 @@ dependencies:
|
|
|
69
54
|
version: '0'
|
|
70
55
|
type: :development
|
|
71
56
|
prerelease: false
|
|
72
|
-
version_requirements:
|
|
73
|
-
none: false
|
|
74
|
-
requirements:
|
|
75
|
-
- - ! '>='
|
|
76
|
-
- !ruby/object:Gem::Version
|
|
77
|
-
version: '0'
|
|
57
|
+
version_requirements: *70232006896860
|
|
78
58
|
- !ruby/object:Gem::Dependency
|
|
79
59
|
name: guard-rspec
|
|
80
|
-
requirement: !ruby/object:Gem::Requirement
|
|
60
|
+
requirement: &70232006896440 !ruby/object:Gem::Requirement
|
|
81
61
|
none: false
|
|
82
62
|
requirements:
|
|
83
63
|
- - ! '>='
|
|
@@ -85,15 +65,10 @@ dependencies:
|
|
|
85
65
|
version: '0'
|
|
86
66
|
type: :development
|
|
87
67
|
prerelease: false
|
|
88
|
-
version_requirements:
|
|
89
|
-
none: false
|
|
90
|
-
requirements:
|
|
91
|
-
- - ! '>='
|
|
92
|
-
- !ruby/object:Gem::Version
|
|
93
|
-
version: '0'
|
|
68
|
+
version_requirements: *70232006896440
|
|
94
69
|
- !ruby/object:Gem::Dependency
|
|
95
70
|
name: growl
|
|
96
|
-
requirement: !ruby/object:Gem::Requirement
|
|
71
|
+
requirement: &70232006895980 !ruby/object:Gem::Requirement
|
|
97
72
|
none: false
|
|
98
73
|
requirements:
|
|
99
74
|
- - ! '>='
|
|
@@ -101,15 +76,10 @@ dependencies:
|
|
|
101
76
|
version: '0'
|
|
102
77
|
type: :development
|
|
103
78
|
prerelease: false
|
|
104
|
-
version_requirements:
|
|
105
|
-
none: false
|
|
106
|
-
requirements:
|
|
107
|
-
- - ! '>='
|
|
108
|
-
- !ruby/object:Gem::Version
|
|
109
|
-
version: '0'
|
|
79
|
+
version_requirements: *70232006895980
|
|
110
80
|
- !ruby/object:Gem::Dependency
|
|
111
81
|
name: rack-test
|
|
112
|
-
requirement: !ruby/object:Gem::Requirement
|
|
82
|
+
requirement: &70232006895540 !ruby/object:Gem::Requirement
|
|
113
83
|
none: false
|
|
114
84
|
requirements:
|
|
115
85
|
- - ! '>='
|
|
@@ -117,15 +87,10 @@ dependencies:
|
|
|
117
87
|
version: '0'
|
|
118
88
|
type: :development
|
|
119
89
|
prerelease: false
|
|
120
|
-
version_requirements:
|
|
121
|
-
none: false
|
|
122
|
-
requirements:
|
|
123
|
-
- - ! '>='
|
|
124
|
-
- !ruby/object:Gem::Version
|
|
125
|
-
version: '0'
|
|
90
|
+
version_requirements: *70232006895540
|
|
126
91
|
- !ruby/object:Gem::Dependency
|
|
127
92
|
name: multi_json
|
|
128
|
-
requirement: !ruby/object:Gem::Requirement
|
|
93
|
+
requirement: &70232006895080 !ruby/object:Gem::Requirement
|
|
129
94
|
none: false
|
|
130
95
|
requirements:
|
|
131
96
|
- - ! '>='
|
|
@@ -133,15 +98,10 @@ dependencies:
|
|
|
133
98
|
version: '0'
|
|
134
99
|
type: :runtime
|
|
135
100
|
prerelease: false
|
|
136
|
-
version_requirements:
|
|
137
|
-
none: false
|
|
138
|
-
requirements:
|
|
139
|
-
- - ! '>='
|
|
140
|
-
- !ruby/object:Gem::Version
|
|
141
|
-
version: '0'
|
|
101
|
+
version_requirements: *70232006895080
|
|
142
102
|
- !ruby/object:Gem::Dependency
|
|
143
103
|
name: oauth
|
|
144
|
-
requirement: !ruby/object:Gem::Requirement
|
|
104
|
+
requirement: &70232006894540 !ruby/object:Gem::Requirement
|
|
145
105
|
none: false
|
|
146
106
|
requirements:
|
|
147
107
|
- - ~>
|
|
@@ -149,15 +109,10 @@ dependencies:
|
|
|
149
109
|
version: 0.4.4
|
|
150
110
|
type: :runtime
|
|
151
111
|
prerelease: false
|
|
152
|
-
version_requirements:
|
|
153
|
-
none: false
|
|
154
|
-
requirements:
|
|
155
|
-
- - ~>
|
|
156
|
-
- !ruby/object:Gem::Version
|
|
157
|
-
version: 0.4.4
|
|
112
|
+
version_requirements: *70232006894540
|
|
158
113
|
- !ruby/object:Gem::Dependency
|
|
159
114
|
name: rack
|
|
160
|
-
requirement: !ruby/object:Gem::Requirement
|
|
115
|
+
requirement: &70232006894120 !ruby/object:Gem::Requirement
|
|
161
116
|
none: false
|
|
162
117
|
requirements:
|
|
163
118
|
- - ! '>='
|
|
@@ -165,15 +120,10 @@ dependencies:
|
|
|
165
120
|
version: '0'
|
|
166
121
|
type: :runtime
|
|
167
122
|
prerelease: false
|
|
168
|
-
version_requirements:
|
|
169
|
-
none: false
|
|
170
|
-
requirements:
|
|
171
|
-
- - ! '>='
|
|
172
|
-
- !ruby/object:Gem::Version
|
|
173
|
-
version: '0'
|
|
123
|
+
version_requirements: *70232006894120
|
|
174
124
|
- !ruby/object:Gem::Dependency
|
|
175
125
|
name: oauth2
|
|
176
|
-
requirement: !ruby/object:Gem::Requirement
|
|
126
|
+
requirement: &70232006893580 !ruby/object:Gem::Requirement
|
|
177
127
|
none: false
|
|
178
128
|
requirements:
|
|
179
129
|
- - ! '>='
|
|
@@ -181,12 +131,7 @@ dependencies:
|
|
|
181
131
|
version: 0.5.0
|
|
182
132
|
type: :runtime
|
|
183
133
|
prerelease: false
|
|
184
|
-
version_requirements:
|
|
185
|
-
none: false
|
|
186
|
-
requirements:
|
|
187
|
-
- - ! '>='
|
|
188
|
-
- !ruby/object:Gem::Version
|
|
189
|
-
version: 0.5.0
|
|
134
|
+
version_requirements: *70232006893580
|
|
190
135
|
description: Rails plugin for implementing an OAuth Provider or Consumer
|
|
191
136
|
email: oauth-ruby@googlegroups.com
|
|
192
137
|
executables: []
|
|
@@ -379,7 +324,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
379
324
|
version: 1.3.1
|
|
380
325
|
requirements: []
|
|
381
326
|
rubyforge_project: oauth
|
|
382
|
-
rubygems_version: 1.8.
|
|
327
|
+
rubygems_version: 1.8.11
|
|
383
328
|
signing_key:
|
|
384
329
|
specification_version: 3
|
|
385
330
|
summary: Ruby on Rails Plugin for OAuth Provider and Consumer
|