oauth-plugin 0.4.0 → 0.4.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- data/CHANGELOG +5 -0
- data/generators/oauth_consumer/templates/migration.rb +1 -1
- data/lib/generators/active_record/oauth_consumer_templates/migration.rb +1 -1
- data/lib/oauth-plugin/version.rb +1 -1
- data/lib/oauth/controllers/provider_controller.rb +1 -1
- data/lib/oauth/rack/oauth_filter.rb +3 -3
- metadata +24 -79
data/CHANGELOG
CHANGED
|
@@ -1,3 +1,8 @@
|
|
|
1
|
+
0.4.1
|
|
2
|
+
- Security fix for OAuth1 provider. Please upgrade if you're using any 0.4 version. Thanks to [tomhughes]
|
|
3
|
+
- Limit index size in ConsumerToken migration to deal with very large tokens [devainandor]
|
|
4
|
+
- Accept ancient OAuth2 Token token=asfavasd like tokens. Just for complete compatibility. [pelle]
|
|
5
|
+
- oauth2 errors should return http 400 [pelle]
|
|
1
6
|
0.4.0
|
|
2
7
|
- fix migrations to use expires_at instead of valid_to [pelle]
|
|
3
8
|
- add force parameter for forcing token refresh [afeld]
|
data/lib/oauth-plugin/version.rb
CHANGED
|
@@ -40,7 +40,7 @@ module OAuth
|
|
|
40
40
|
oauth_token = nil
|
|
41
41
|
|
|
42
42
|
if request_proxy.token
|
|
43
|
-
oauth_token = client_application.tokens.first(:conditions =>
|
|
43
|
+
oauth_token = client_application.tokens.first(:conditions => ['invalidated_at IS NULL AND authorized_at IS NOT NULL and token = ?', request_proxy.token])
|
|
44
44
|
if oauth_token.respond_to?(:provided_oauth_verifier=)
|
|
45
45
|
oauth_token.provided_oauth_verifier = request_proxy.oauth_verifier
|
|
46
46
|
end
|
|
@@ -86,8 +86,8 @@ module OAuth
|
|
|
86
86
|
request.params['bearer_token'] || request.params['access_token'] || (request.params["oauth_token"] && !request.params["oauth_signature"] ? request.params["oauth_token"] : nil ) ||
|
|
87
87
|
request.env["HTTP_AUTHORIZATION"] &&
|
|
88
88
|
!request.env["HTTP_AUTHORIZATION"][/(oauth_version="1.0")/] &&
|
|
89
|
-
request.env["HTTP_AUTHORIZATION"][/^(Bearer|OAuth|Token) ([^\s]*)$/,
|
|
89
|
+
request.env["HTTP_AUTHORIZATION"][/^(Bearer|OAuth|Token) (token=)?([^\s]*)$/, 3]
|
|
90
90
|
end
|
|
91
91
|
end
|
|
92
92
|
end
|
|
93
|
-
end
|
|
93
|
+
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: oauth-plugin
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.4.
|
|
4
|
+
version: 0.4.1
|
|
5
5
|
prerelease:
|
|
6
6
|
platform: ruby
|
|
7
7
|
authors:
|
|
@@ -13,7 +13,7 @@ date: 2011-10-20 00:00:00.000000000 Z
|
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: opentransact
|
|
16
|
-
requirement: !ruby/object:Gem::Requirement
|
|
16
|
+
requirement: &70232006903220 !ruby/object:Gem::Requirement
|
|
17
17
|
none: false
|
|
18
18
|
requirements:
|
|
19
19
|
- - ! '>='
|
|
@@ -21,15 +21,10 @@ dependencies:
|
|
|
21
21
|
version: '0'
|
|
22
22
|
type: :development
|
|
23
23
|
prerelease: false
|
|
24
|
-
version_requirements:
|
|
25
|
-
none: false
|
|
26
|
-
requirements:
|
|
27
|
-
- - ! '>='
|
|
28
|
-
- !ruby/object:Gem::Version
|
|
29
|
-
version: '0'
|
|
24
|
+
version_requirements: *70232006903220
|
|
30
25
|
- !ruby/object:Gem::Dependency
|
|
31
26
|
name: rspec
|
|
32
|
-
requirement: !ruby/object:Gem::Requirement
|
|
27
|
+
requirement: &70232006901300 !ruby/object:Gem::Requirement
|
|
33
28
|
none: false
|
|
34
29
|
requirements:
|
|
35
30
|
- - ~>
|
|
@@ -37,15 +32,10 @@ dependencies:
|
|
|
37
32
|
version: 2.4.0
|
|
38
33
|
type: :development
|
|
39
34
|
prerelease: false
|
|
40
|
-
version_requirements:
|
|
41
|
-
none: false
|
|
42
|
-
requirements:
|
|
43
|
-
- - ~>
|
|
44
|
-
- !ruby/object:Gem::Version
|
|
45
|
-
version: 2.4.0
|
|
35
|
+
version_requirements: *70232006901300
|
|
46
36
|
- !ruby/object:Gem::Dependency
|
|
47
37
|
name: fakeweb
|
|
48
|
-
requirement: !ruby/object:Gem::Requirement
|
|
38
|
+
requirement: &70232006899200 !ruby/object:Gem::Requirement
|
|
49
39
|
none: false
|
|
50
40
|
requirements:
|
|
51
41
|
- - ! '>='
|
|
@@ -53,15 +43,10 @@ dependencies:
|
|
|
53
43
|
version: '0'
|
|
54
44
|
type: :development
|
|
55
45
|
prerelease: false
|
|
56
|
-
version_requirements:
|
|
57
|
-
none: false
|
|
58
|
-
requirements:
|
|
59
|
-
- - ! '>='
|
|
60
|
-
- !ruby/object:Gem::Version
|
|
61
|
-
version: '0'
|
|
46
|
+
version_requirements: *70232006899200
|
|
62
47
|
- !ruby/object:Gem::Dependency
|
|
63
48
|
name: fuubar
|
|
64
|
-
requirement: !ruby/object:Gem::Requirement
|
|
49
|
+
requirement: &70232006896860 !ruby/object:Gem::Requirement
|
|
65
50
|
none: false
|
|
66
51
|
requirements:
|
|
67
52
|
- - ! '>='
|
|
@@ -69,15 +54,10 @@ dependencies:
|
|
|
69
54
|
version: '0'
|
|
70
55
|
type: :development
|
|
71
56
|
prerelease: false
|
|
72
|
-
version_requirements:
|
|
73
|
-
none: false
|
|
74
|
-
requirements:
|
|
75
|
-
- - ! '>='
|
|
76
|
-
- !ruby/object:Gem::Version
|
|
77
|
-
version: '0'
|
|
57
|
+
version_requirements: *70232006896860
|
|
78
58
|
- !ruby/object:Gem::Dependency
|
|
79
59
|
name: guard-rspec
|
|
80
|
-
requirement: !ruby/object:Gem::Requirement
|
|
60
|
+
requirement: &70232006896440 !ruby/object:Gem::Requirement
|
|
81
61
|
none: false
|
|
82
62
|
requirements:
|
|
83
63
|
- - ! '>='
|
|
@@ -85,15 +65,10 @@ dependencies:
|
|
|
85
65
|
version: '0'
|
|
86
66
|
type: :development
|
|
87
67
|
prerelease: false
|
|
88
|
-
version_requirements:
|
|
89
|
-
none: false
|
|
90
|
-
requirements:
|
|
91
|
-
- - ! '>='
|
|
92
|
-
- !ruby/object:Gem::Version
|
|
93
|
-
version: '0'
|
|
68
|
+
version_requirements: *70232006896440
|
|
94
69
|
- !ruby/object:Gem::Dependency
|
|
95
70
|
name: growl
|
|
96
|
-
requirement: !ruby/object:Gem::Requirement
|
|
71
|
+
requirement: &70232006895980 !ruby/object:Gem::Requirement
|
|
97
72
|
none: false
|
|
98
73
|
requirements:
|
|
99
74
|
- - ! '>='
|
|
@@ -101,15 +76,10 @@ dependencies:
|
|
|
101
76
|
version: '0'
|
|
102
77
|
type: :development
|
|
103
78
|
prerelease: false
|
|
104
|
-
version_requirements:
|
|
105
|
-
none: false
|
|
106
|
-
requirements:
|
|
107
|
-
- - ! '>='
|
|
108
|
-
- !ruby/object:Gem::Version
|
|
109
|
-
version: '0'
|
|
79
|
+
version_requirements: *70232006895980
|
|
110
80
|
- !ruby/object:Gem::Dependency
|
|
111
81
|
name: rack-test
|
|
112
|
-
requirement: !ruby/object:Gem::Requirement
|
|
82
|
+
requirement: &70232006895540 !ruby/object:Gem::Requirement
|
|
113
83
|
none: false
|
|
114
84
|
requirements:
|
|
115
85
|
- - ! '>='
|
|
@@ -117,15 +87,10 @@ dependencies:
|
|
|
117
87
|
version: '0'
|
|
118
88
|
type: :development
|
|
119
89
|
prerelease: false
|
|
120
|
-
version_requirements:
|
|
121
|
-
none: false
|
|
122
|
-
requirements:
|
|
123
|
-
- - ! '>='
|
|
124
|
-
- !ruby/object:Gem::Version
|
|
125
|
-
version: '0'
|
|
90
|
+
version_requirements: *70232006895540
|
|
126
91
|
- !ruby/object:Gem::Dependency
|
|
127
92
|
name: multi_json
|
|
128
|
-
requirement: !ruby/object:Gem::Requirement
|
|
93
|
+
requirement: &70232006895080 !ruby/object:Gem::Requirement
|
|
129
94
|
none: false
|
|
130
95
|
requirements:
|
|
131
96
|
- - ! '>='
|
|
@@ -133,15 +98,10 @@ dependencies:
|
|
|
133
98
|
version: '0'
|
|
134
99
|
type: :runtime
|
|
135
100
|
prerelease: false
|
|
136
|
-
version_requirements:
|
|
137
|
-
none: false
|
|
138
|
-
requirements:
|
|
139
|
-
- - ! '>='
|
|
140
|
-
- !ruby/object:Gem::Version
|
|
141
|
-
version: '0'
|
|
101
|
+
version_requirements: *70232006895080
|
|
142
102
|
- !ruby/object:Gem::Dependency
|
|
143
103
|
name: oauth
|
|
144
|
-
requirement: !ruby/object:Gem::Requirement
|
|
104
|
+
requirement: &70232006894540 !ruby/object:Gem::Requirement
|
|
145
105
|
none: false
|
|
146
106
|
requirements:
|
|
147
107
|
- - ~>
|
|
@@ -149,15 +109,10 @@ dependencies:
|
|
|
149
109
|
version: 0.4.4
|
|
150
110
|
type: :runtime
|
|
151
111
|
prerelease: false
|
|
152
|
-
version_requirements:
|
|
153
|
-
none: false
|
|
154
|
-
requirements:
|
|
155
|
-
- - ~>
|
|
156
|
-
- !ruby/object:Gem::Version
|
|
157
|
-
version: 0.4.4
|
|
112
|
+
version_requirements: *70232006894540
|
|
158
113
|
- !ruby/object:Gem::Dependency
|
|
159
114
|
name: rack
|
|
160
|
-
requirement: !ruby/object:Gem::Requirement
|
|
115
|
+
requirement: &70232006894120 !ruby/object:Gem::Requirement
|
|
161
116
|
none: false
|
|
162
117
|
requirements:
|
|
163
118
|
- - ! '>='
|
|
@@ -165,15 +120,10 @@ dependencies:
|
|
|
165
120
|
version: '0'
|
|
166
121
|
type: :runtime
|
|
167
122
|
prerelease: false
|
|
168
|
-
version_requirements:
|
|
169
|
-
none: false
|
|
170
|
-
requirements:
|
|
171
|
-
- - ! '>='
|
|
172
|
-
- !ruby/object:Gem::Version
|
|
173
|
-
version: '0'
|
|
123
|
+
version_requirements: *70232006894120
|
|
174
124
|
- !ruby/object:Gem::Dependency
|
|
175
125
|
name: oauth2
|
|
176
|
-
requirement: !ruby/object:Gem::Requirement
|
|
126
|
+
requirement: &70232006893580 !ruby/object:Gem::Requirement
|
|
177
127
|
none: false
|
|
178
128
|
requirements:
|
|
179
129
|
- - ! '>='
|
|
@@ -181,12 +131,7 @@ dependencies:
|
|
|
181
131
|
version: 0.5.0
|
|
182
132
|
type: :runtime
|
|
183
133
|
prerelease: false
|
|
184
|
-
version_requirements:
|
|
185
|
-
none: false
|
|
186
|
-
requirements:
|
|
187
|
-
- - ! '>='
|
|
188
|
-
- !ruby/object:Gem::Version
|
|
189
|
-
version: 0.5.0
|
|
134
|
+
version_requirements: *70232006893580
|
|
190
135
|
description: Rails plugin for implementing an OAuth Provider or Consumer
|
|
191
136
|
email: oauth-ruby@googlegroups.com
|
|
192
137
|
executables: []
|
|
@@ -379,7 +324,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
379
324
|
version: 1.3.1
|
|
380
325
|
requirements: []
|
|
381
326
|
rubyforge_project: oauth
|
|
382
|
-
rubygems_version: 1.8.
|
|
327
|
+
rubygems_version: 1.8.11
|
|
383
328
|
signing_key:
|
|
384
329
|
specification_version: 3
|
|
385
330
|
summary: Ruby on Rails Plugin for OAuth Provider and Consumer
|