oauth 0.5.8 → 1.1.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +136 -115
- data/CODE_OF_CONDUCT.md +0 -0
- data/CONTRIBUTING.md +19 -2
- data/LICENSE +2 -1
- data/README.md +267 -67
- data/SECURITY.md +18 -8
- data/TODO +0 -0
- data/lib/oauth/client/action_controller_request.rb +17 -15
- data/lib/oauth/client/em_http.rb +30 -30
- data/lib/oauth/client/helper.rb +76 -75
- data/lib/oauth/client/net_http.rb +109 -102
- data/lib/oauth/client.rb +2 -0
- data/lib/oauth/consumer.rb +113 -110
- data/lib/oauth/errors/error.rb +2 -0
- data/lib/oauth/errors/problem.rb +3 -0
- data/lib/oauth/errors/unauthorized.rb +4 -0
- data/lib/oauth/errors.rb +2 -0
- data/lib/oauth/helper.rb +16 -12
- data/lib/oauth/oauth.rb +6 -4
- data/lib/oauth/oauth_test_helper.rb +2 -0
- data/lib/oauth/request_proxy/action_controller_request.rb +3 -24
- data/lib/oauth/request_proxy/action_dispatch_request.rb +0 -0
- data/lib/oauth/request_proxy/base.rb +2 -2
- data/lib/oauth/request_proxy/curb_request.rb +0 -0
- data/lib/oauth/request_proxy/em_http_request.rb +0 -0
- data/lib/oauth/request_proxy/jabber_request.rb +0 -0
- data/lib/oauth/request_proxy/mock_request.rb +1 -1
- data/lib/oauth/request_proxy/net_http.rb +5 -7
- data/lib/oauth/request_proxy/rack_request.rb +0 -0
- data/lib/oauth/request_proxy/rest_client_request.rb +2 -1
- data/lib/oauth/request_proxy/typhoeus_request.rb +0 -0
- data/lib/oauth/request_proxy.rb +7 -4
- data/lib/oauth/server.rb +12 -10
- data/lib/oauth/signature/base.rb +71 -66
- data/lib/oauth/signature/hmac/sha1.rb +15 -9
- data/lib/oauth/signature/hmac/sha256.rb +15 -9
- data/lib/oauth/signature/plaintext.rb +18 -20
- data/lib/oauth/signature/rsa/sha1.rb +46 -38
- data/lib/oauth/signature.rb +8 -5
- data/lib/oauth/token.rb +2 -0
- data/lib/oauth/tokens/access_token.rb +2 -0
- data/lib/oauth/tokens/consumer_token.rb +4 -2
- data/lib/oauth/tokens/request_token.rb +12 -10
- data/lib/oauth/tokens/server_token.rb +2 -1
- data/lib/oauth/tokens/token.rb +2 -0
- data/lib/oauth/version.rb +5 -1
- data/lib/oauth.rb +9 -2
- metadata +87 -35
- data/bin/oauth +0 -11
- data/lib/oauth/cli/authorize_command.rb +0 -71
- data/lib/oauth/cli/base_command.rb +0 -208
- data/lib/oauth/cli/help_command.rb +0 -22
- data/lib/oauth/cli/query_command.rb +0 -25
- data/lib/oauth/cli/sign_command.rb +0 -81
- data/lib/oauth/cli/version_command.rb +0 -7
- data/lib/oauth/cli.rb +0 -56
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 5ed78104bc98c911e6a9cf2a9e5472eb70a883396346379bcf0ca5ad9a5a5a6a
|
4
|
+
data.tar.gz: 918ffe268ffdd0a3e8cb29dda997f07ecef3156c53ff4dde82a68dec5325c8ae
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 5ecad352056ded301c816243d846d7628929db7cf10c320ab63627dadc5eb8aa427120f3e74824eb280f8d25e159c639fe16e6405f70d7b02b1ebbf081f0488c
|
7
|
+
data.tar.gz: 8cef46c071d1c2bc8e8a3c766477fa90ac76d61661d3131496e20dade1a199a1d9e2248dd41b022383f956f76a987d6579c3960cd4d437f7a143a3043cd086e0
|
data/CHANGELOG.md
CHANGED
@@ -7,28 +7,122 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
7
7
|
## [Unreleased]
|
8
8
|
### Added
|
9
9
|
|
10
|
+
### Changed
|
11
|
+
|
12
|
+
### Fixed
|
10
13
|
|
14
|
+
### Removed
|
15
|
+
|
16
|
+
## [1.1.0] 2022-08-29
|
17
|
+
### Changed
|
18
|
+
* `OAuth::CLI` has been extracted to a new gem, `oauth-tty`, hosted on [Gitlab](https://gitlab.com/oauth-xx/oauth-tty)
|
19
|
+
* The public API of `oauth-tty` is backwards compatible (meaning `OAuth::CLI`)
|
20
|
+
* The change within the `oauth` gem is backwards compatible as `oauth-tty` has been added as a dependency
|
21
|
+
* Minor version bump is cautionary, as many lines of code have changed.
|
22
|
+
* `OAuth::Comsumer#options` hash is now handled by `snaky_hash`, which was extracted from `oauth2`
|
23
|
+
* symbolized keys, dot-access and snake-case are now normalized
|
24
|
+
|
25
|
+
## [1.0.1] 2022-08-29
|
11
26
|
### Changed
|
27
|
+
* `OAuth::Comsumer#options` hash is now handled by `snaky_hash`, which was extracted from `oauth2`
|
28
|
+
* symbolized keys, dot-access and snake-case are now normalized
|
12
29
|
|
30
|
+
## [1.0.0] 2022-08-23
|
31
|
+
### Changed
|
32
|
+
* Dropped support for Ruby < 2.7
|
33
|
+
* Dropped support for Rails < 6
|
13
34
|
|
14
|
-
###
|
35
|
+
### Added
|
36
|
+
* New EOL Policy
|
37
|
+
* Non-commercial support for the oldest version of Ruby (which itself is going EOL) will be dropped each year in April
|
38
|
+
|
39
|
+
## [0.6.2] 2022-08-29
|
40
|
+
### Changed
|
41
|
+
* `OAuth::Comsumer#options` hash is now handled by `snaky_hash`, which was extracted from `oauth2`
|
42
|
+
* symbolized keys, dot-access and snake-case are now normalized
|
15
43
|
|
44
|
+
## [0.6.1] 2022-08-23
|
45
|
+
### Changed
|
46
|
+
* Fixed documentation in SECURITY.md
|
47
|
+
* Change references to master => main
|
48
|
+
|
49
|
+
### Added
|
50
|
+
* Post install note about v0.6.x EOL approaching in April, 2024
|
51
|
+
|
52
|
+
## [0.6.0] 2022-08-23
|
53
|
+
### Added
|
54
|
+
* New option `body_hash_enabled` which defaults to true to maintain backward compatibility with prior releases. Setting to `false` disables generation of a `oauth_body_hash` component as part of the signature computation.
|
55
|
+
* Improved documentation of support policy via Tidelift
|
56
|
+
* Stop testing against active_support v2
|
57
|
+
|
58
|
+
### Changed
|
59
|
+
* Utilize version_gem extracted from oauth2 gem for VERSION
|
60
|
+
* Added new `OAuth::Version` namespace
|
61
|
+
* VERSION constant now at `OAuth::Version::VERSION`
|
16
62
|
|
17
63
|
### Removed
|
64
|
+
* Ruby 2.0, 2.1, 2.2, and 2.3 are no longer valid install targets
|
18
65
|
|
66
|
+
## [0.5.14] 2022-08-29
|
67
|
+
The "hopeful last 0.5.x" Release
|
68
|
+
|
69
|
+
### Fixed
|
70
|
+
* More typos fixed
|
71
|
+
|
72
|
+
## [0.5.13] 2022-08-23
|
73
|
+
The "I think I caught 'em all!" Release
|
74
|
+
|
75
|
+
### Fixed
|
76
|
+
* Typo oauth2 => oauth as gem name in one more place.
|
77
|
+
|
78
|
+
## [0.5.12] 2022-08-23
|
79
|
+
The "Typoes are just the worst!" Release
|
80
|
+
|
81
|
+
### Fixed
|
82
|
+
* Typo oauth2 => oauth as gem name in a couple places.
|
83
|
+
|
84
|
+
## [0.5.11] 2022-08-23
|
85
|
+
The "Is this the last release with a silly name?" Release
|
86
|
+
|
87
|
+
### Added
|
88
|
+
* Post install note about v0.5.x EOL approaching in April, 2023
|
89
|
+
|
90
|
+
### Changed
|
91
|
+
* Improved documentation
|
92
|
+
* Switched branch references from master to main
|
93
|
+
* CI builds are now all green!
|
94
|
+
|
95
|
+
## [0.5.10] 2022-05-04
|
96
|
+
The "Can it be the end of the line for 0.5.x?" Release
|
19
97
|
|
20
|
-
## [0.5.8] 2021-11-10
|
21
98
|
### Added
|
99
|
+
* Major updates to Documentation
|
100
|
+
* More CI Hardening
|
101
|
+
* Align CI builds with official Ruby Compatibility Matrix
|
102
|
+
* Project tooling in preparation for final release of 0.5.x series
|
103
|
+
- diffend
|
22
104
|
|
105
|
+
## [0.5.9] 2022-05-03
|
106
|
+
### Added
|
107
|
+
* Documentation related to Ruby compatibility
|
108
|
+
* Updated CHANGELOG.md formatting
|
109
|
+
* Corrected CHANGELOG.md typos
|
110
|
+
* Hardened the CI build for the next few years(?!)
|
111
|
+
* Require MFA to push new version to Rubygems
|
112
|
+
* Replace Hash Rocket syntax with JSON-style symbols where possible
|
113
|
+
* Project tooling in preparation for final release of 0.5.x series
|
114
|
+
- rubocop-ruby2_0
|
115
|
+
- overcommit
|
116
|
+
|
117
|
+
## [0.5.8] 2021-11-10
|
118
|
+
### Added
|
23
119
|
* Added more documentation files to packaged gem, e.g. SECURITY.md, CODE_OF_CONDUCT.md
|
24
120
|
|
25
121
|
### Fixed
|
26
|
-
|
27
122
|
* Removed reference to RUBY_VERSION from gemspec, as it depends on rake release, which is problematic on some ruby engines. (by @pboling)
|
28
123
|
|
29
124
|
## [0.5.7] 2021-11-02
|
30
125
|
### Added
|
31
|
-
|
32
126
|
* Setup Rubocop (#205, #208 by @pboling)
|
33
127
|
* Added CODE_OF_CONDUCT.md (#217, #218 by @pboling)
|
34
128
|
* Added FUNDING.yml (#217, #218 by @pboling)
|
@@ -36,7 +130,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
36
130
|
* Handle a nested array of hashes in OAuth::Helper.normalize (#80, #221 by @pboling)
|
37
131
|
|
38
132
|
### Changed
|
39
|
-
|
40
133
|
* Switch from TravisCI to Github Actions (#202, #207, #176 by @pboling)
|
41
134
|
* Upgrade webmock to v3.14.0 (#196 by @pboling)
|
42
135
|
* Upgrade em-http-request to v1.1.7 (#173 by @pboling)
|
@@ -47,7 +140,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
47
140
|
* Require plaintext signature method by default (#135 by @confiks & @pboling)
|
48
141
|
|
49
142
|
### Fixed
|
50
|
-
|
51
143
|
* Fixed Infinite Redirect in v0.5.5, v0.5.6 (#186, #210 by @pboling)
|
52
144
|
* Fixed NoMethodError on missing leading slash in path (#194, #211 by @pboling)
|
53
145
|
* Fixed NoMethodError on nil request object (#165, #212 by @pboling)
|
@@ -57,61 +149,49 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
57
149
|
* Fixed request proxy Class constant reference scopes - was missing `::` in many places (#225, #226 by @pboling)
|
58
150
|
|
59
151
|
### Removed
|
60
|
-
|
61
152
|
* Remove direct development dependency on nokogiri (#299 by @pboling)
|
62
153
|
|
63
154
|
## [0.5.6] 2021-04-02
|
64
155
|
### Added
|
65
|
-
|
66
156
|
* Add metadata to Gemspec file
|
67
157
|
* Add support for PUT requests with Action Controller (#181)
|
68
158
|
|
69
159
|
### Changed
|
70
|
-
|
71
160
|
* Change default timeout to be the same as Net::HTTP default, 60 seconds instead of 30 seconds.
|
72
161
|
|
73
162
|
## [0.5.5] 2020-01-19
|
74
163
|
### Added
|
75
|
-
|
76
164
|
* Add :allow_empty_params option (#155)
|
77
165
|
|
78
166
|
### Changed
|
79
|
-
|
80
167
|
* Allow redirect to different host but same path
|
81
168
|
* Various cleanups
|
82
169
|
|
83
170
|
### Fixed
|
84
|
-
|
85
171
|
* Fixes ssl-noverify
|
86
172
|
* Fixed README example (#158, #159, by @pboling)
|
87
173
|
|
88
174
|
## [0.5.4] 2017-12-08
|
89
175
|
### Changed
|
90
|
-
|
91
176
|
* Various cleanups (charliesome)
|
92
177
|
|
93
178
|
### Fixed
|
94
|
-
|
95
179
|
* Fixes UnknownRequestType on Rails 5.1 for ActionDispatch::Request (xprazak2)
|
96
180
|
|
97
181
|
## [0.5.3] 2017-05-24
|
98
182
|
### Fixed
|
99
|
-
|
100
183
|
* Fix #145 - broken CLI required loading active_support (James Pinto)
|
101
184
|
|
102
185
|
### Changed
|
103
|
-
|
104
186
|
* Removing legacy scripts (James Pinto)
|
105
187
|
|
106
188
|
## [0.5.2] 2017-05-17
|
107
189
|
### Added
|
108
|
-
|
109
190
|
* Adding a development dependency that had not been mentioned (James Pinto)
|
110
191
|
* Adding CodeClimate (James Pinto)
|
111
192
|
* Adding support to Ruby 2.4 and head (James Pinto)
|
112
193
|
|
113
194
|
### Changed
|
114
|
-
|
115
195
|
* Use assert_nil so as to silence a Minitest 6 deprecation warning (James Pinto)
|
116
196
|
* Stop bundling tests files in the gem (Michal Papis)
|
117
197
|
* Minor cleanup on tests (James Pinto)
|
@@ -129,7 +209,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
129
209
|
* Reimplementing #82 - Debug Output Option (James Pinto)
|
130
210
|
|
131
211
|
### Fixed
|
132
|
-
|
133
212
|
* Fix #113 adding paths when a full URL has been specified (James Pinto)
|
134
213
|
* Bug Fix, webmock 2.0 has introduced a new bug (James Pinto)
|
135
214
|
* Making a test/support dir (James Pinto)
|
@@ -137,28 +216,23 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
137
216
|
|
138
217
|
## [0.5.1] 2016-02-29
|
139
218
|
### Added
|
140
|
-
|
141
219
|
* Add license info to the gemspec (Robert Reiz)
|
142
220
|
|
143
221
|
### Fixed
|
144
|
-
|
145
222
|
* Proper handling for empty query string in RequestToken#build_authorize_url (midchildan,
|
146
223
|
Harald Sitter)
|
147
224
|
* Replace calls to String#blank? with its implementation (Sergio Gil Pérez de la Manga)
|
148
225
|
|
149
226
|
### Changed
|
150
|
-
|
151
227
|
* Loosen some development dependencies. Add libcurl-dev to travis
|
152
228
|
* Fixes to travis config. Switch to rubygems for installation and loading
|
153
229
|
|
154
230
|
### Removed
|
155
|
-
|
156
231
|
* Remove obsolete comment (Arthur Nogueira Neves)
|
157
232
|
* Remove jeweler from gemspec
|
158
233
|
|
159
234
|
## [0.5.0] 2016-02-20
|
160
235
|
### Added
|
161
|
-
|
162
236
|
* Add support for HTTP PATCH method (Richard Huang)
|
163
237
|
* Allow reading private key from a string (Khaja Minhajuddin)
|
164
238
|
* Add rest-client proxy (Khem Veasna)
|
@@ -166,14 +240,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
166
240
|
* Allow reading certificate file path from environment variable. Add CentOS cert file path (Danil Vlasov)
|
167
241
|
|
168
242
|
### Changed
|
169
|
-
|
170
243
|
* Replace jeweler with real spec and bundler tasks
|
171
244
|
* Extract version to separate file
|
172
245
|
* Use OpenSSL for all digest and hashing. Remove signature methods not defined by OAuth spec. (Kevin Hughes)
|
173
246
|
* Change token requests to exclude `oauth_body_hash`. Update doc links in comments. (John Remmen)
|
174
247
|
|
175
248
|
### Fixed
|
176
|
-
|
177
249
|
* Fix ability to pass in an authorize url with a query string (Roger Smith)
|
178
250
|
* Fix bug in signature verification (r-stu31)
|
179
251
|
* Use standard key name (`oauth_token_secret`) in Token#to_query (Craig Walker)
|
@@ -189,28 +261,23 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
189
261
|
|
190
262
|
## [0.4.7] 2012-09-03
|
191
263
|
### Added
|
192
|
-
|
193
264
|
* Set a configurable timeout for all requests (Rick Olson)
|
194
265
|
|
195
266
|
### Fixed
|
196
|
-
|
197
267
|
* Fix merging paths if the path is not empty
|
198
268
|
* Fix nested hash params in Consumer#request (Ernie Miller)
|
199
269
|
|
200
270
|
## [0.4.6] 2012-04-21
|
201
271
|
### Changed
|
202
|
-
|
203
272
|
* Make use the path component of the :site parameter (Jonathon M. Abbott)
|
204
273
|
|
205
274
|
### Fixed
|
206
|
-
|
207
275
|
* Fixed nested attributes in #normalize (Shaliko Usubov)
|
208
276
|
* Fixed post body's being dropped in 1.9 (Steven Hammond)
|
209
277
|
* Fixed PUT request handling (Anton Panasenko)
|
210
278
|
|
211
279
|
## [0.4.5] 2011-06-25
|
212
280
|
### Added
|
213
|
-
|
214
281
|
* Add explicit require for rsa/sha1 (Juris Galang)
|
215
282
|
* Add gemtest support (Adrian Feldman)
|
216
283
|
|
@@ -220,17 +287,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
220
287
|
* Use Net::HTTPGenericRequest (Jakub Kuźma)
|
221
288
|
|
222
289
|
### Fixed
|
223
|
-
|
224
290
|
* Fix POST Requests with Typhoeus proxy (niedhui)
|
225
291
|
* Fix incorrect hardcoded port (Ian Taylor)
|
226
292
|
|
227
293
|
## [0.4.4] 2010-10-31
|
228
294
|
### Added
|
229
|
-
|
230
295
|
* Added support for Rails 3 in client/action_controller_request (Pelle)
|
231
296
|
|
232
297
|
### Fixed
|
233
|
-
|
234
298
|
* Fix LoadError rescue in tests: return can't be used in this context (Hans de Graaff)
|
235
299
|
* HTTP headers should be strings. (seancribbs)
|
236
300
|
* ensure consumer uri gets set back to original config even if an error occurs (Brian Finney)
|
@@ -238,33 +302,27 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
238
302
|
|
239
303
|
## [0.4.3] 2010-09-01
|
240
304
|
### Fixed
|
241
|
-
|
242
305
|
* Fix for em-http proxy (ichverstehe)
|
243
306
|
|
244
307
|
## [0.4.2] 2010-08-13
|
245
308
|
### Added
|
246
|
-
|
247
309
|
* Added Bundler (rc) Gemfile for easier dev/testing
|
248
310
|
|
249
311
|
### Fixed
|
250
|
-
|
251
312
|
* Fixed compatibility with Ruby 1.9.2 (ecavazos)
|
252
313
|
* Fixed the em-http request proxy (Joshua Hull)
|
253
314
|
* Fix for oauth proxy string manipulation (Jakub Suder)
|
254
315
|
|
255
316
|
## [0.4.1] 2010-06-16
|
256
317
|
### Added
|
257
|
-
|
258
318
|
* Added support for using OAuth with proxies (Marsh Gardiner)
|
259
319
|
|
260
320
|
### Fixed
|
261
|
-
|
262
321
|
* Rails 3 Compatibility fixes (Pelle Braendgaard)
|
263
322
|
* Fixed load errors on tests for missing (non-required) libraries
|
264
323
|
|
265
324
|
## [0.4.0] 2010-04-22
|
266
325
|
### Added
|
267
|
-
|
268
326
|
* Added computation of oauth_body_hash as per OAuth Request Body Hash 1.0 Draft 4 (Michael Reinsch)
|
269
327
|
* Added the optional `oauth_session_handle` parameter for the Yahoo implementation (Will Bailey)
|
270
328
|
* Added optional block to OAuth::Consumer.get_*_token (Neill Pearman)
|
@@ -276,12 +334,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
276
334
|
* New website (Aaron Quint)
|
277
335
|
|
278
336
|
### Changed
|
279
|
-
|
280
337
|
* Better marshalling implementation (Yoan Blanc)
|
281
338
|
* Replaced hoe with Jeweler (Aaron Quint)
|
282
339
|
|
283
340
|
### Fixed
|
284
|
-
|
285
341
|
* Strip extraneous spaces and line breaks from access_token responses (observed in the wild with Yahoo!'s OAuth+OpenID hybrid) (Eric Hartmann)
|
286
342
|
* Stop double-escaping PLAINTEXT signatures (Jimmy Zimmerman)
|
287
343
|
* OAuth::Client::Helper won't override the specified `oauth_version` (Philip Kromer)
|
@@ -289,22 +345,18 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
289
345
|
|
290
346
|
## [0.3.6] 2009-09-14
|
291
347
|
### Added
|
292
|
-
|
293
348
|
* Added -B CLI option to use the :body authentication scheme (Seth)
|
294
349
|
* Support POST and PUT with raw bodies (Yu-Shan Fung et al)
|
295
350
|
* Added :ca_file consumer option to allow consumer specific certificate override. (Pelle)
|
296
351
|
|
297
352
|
### Changed
|
298
|
-
|
299
353
|
* Test clean-up (Xavier Shay, Hannes Tydén)
|
300
354
|
|
301
355
|
### Fixed
|
302
|
-
|
303
356
|
* Respect `--method` in `authorize` CLI command (Seth)
|
304
357
|
|
305
358
|
## [0.3.5] 2009-06-03
|
306
359
|
### Added
|
307
|
-
|
308
360
|
* `query` CLI command to access protected resources (Seth)
|
309
361
|
* Added -H, -Q CLI options for specifying the authentication scheme (Seth)
|
310
362
|
* Added -O CLI option for specifying a file containing options (Seth)
|
@@ -315,33 +367,27 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
315
367
|
|
316
368
|
## [0.3.4] 2009-05-06
|
317
369
|
### Changed
|
318
|
-
|
319
|
-
* OAuth::Client::Helper uses OAuth::VERSION (chadisfaction)
|
370
|
+
* OAuth::Client::Helper uses OAuth::Version::VERSION (chadisfaction)
|
320
371
|
|
321
372
|
### Fixed
|
322
|
-
|
323
373
|
* Fix OAuth::RequestProxy::ActionControllerRequest's handling of params (Tristan Groléat)
|
324
374
|
|
325
375
|
## [0.3.3] 2009-05-04
|
326
376
|
### Added
|
327
|
-
|
328
377
|
* Support for arguments in OAuth::Consumer#get_access_token (Matt Sanford)
|
329
378
|
* Add gem version to user-agent header (Matt Sanford)
|
330
379
|
|
331
380
|
### Changed
|
332
|
-
|
333
381
|
* Improved error handling for invalid Authorization headers (Matt Sanford)
|
334
382
|
* Handle input from aggressive form encoding libraries (Matt Wood)
|
335
383
|
|
336
384
|
### Fixed
|
337
|
-
|
338
385
|
* Corrected OAuth XMPP namespace (Seth)
|
339
386
|
* Fixed signatures for non-ASCII under $KCODE other than 'u' (Matt Sanford)
|
340
387
|
* Fixed edge cases in ActionControllerRequestProxy where params were being incorrectly signed (Marcos Wright Kuhns)
|
341
388
|
|
342
389
|
## [0.3.2] 2009-03-23
|
343
390
|
### Added
|
344
|
-
|
345
391
|
* Support applications using the MethodOverride Rack middleware (László Bácsi)
|
346
392
|
* `authorize` command for `oauth` CLI (Seth)
|
347
393
|
* Initial support for Problem Reporting extension (Seth)
|
@@ -349,7 +395,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
349
395
|
* Added help to the 'oauth' CLI (Seth)
|
350
396
|
|
351
397
|
### Fixed
|
352
|
-
|
353
398
|
* 2xx statuses should be treated as success (Anders Conbere)
|
354
399
|
* Fixed ActionController parameter escaping behavior (Thiago Arrais, László Bácsi, Brett Gibson, et al)
|
355
400
|
* Fixed signature calculation when both options and a block were provided to OAuth::Signature::Base#initialize (Seth)
|
@@ -357,24 +402,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
357
402
|
|
358
403
|
## [0.3.1] 2009-01-26
|
359
404
|
### Fixed
|
360
|
-
|
361
|
-
* Fixed a problem with relative and absolute token request paths. (Michael
|
362
|
-
Wood)
|
405
|
+
* Fixed a problem with relative and absolute token request paths. (Michael Wood)
|
363
406
|
|
364
407
|
## [0.3.0] 2009-01-25
|
365
408
|
### Added
|
366
|
-
|
367
409
|
* Support ActionController::Request from Edge Rails (László Bácsi)
|
368
410
|
* Added #normalized_parameters to OAuth::RequestProxy::Base (Pelle)
|
369
411
|
* Command-line app for generating signatures. (Seth)
|
370
412
|
|
371
413
|
### Changed
|
372
|
-
|
373
414
|
* OAuth::Signature.sign and friends now yield the RequestProxy instead of the token when the passed block's arity is 1. (Seth)
|
374
415
|
* Improved test-cases and compatibility for encoding issues. (Pelle)
|
375
416
|
|
376
417
|
### Fixed
|
377
|
-
|
378
418
|
* Correctly handle multi-valued parameters (Seth)
|
379
419
|
* Token requests are made to the configured URL rather than generating a potentially incorrect one. (Kellan Elliott-McCrea)
|
380
420
|
|
@@ -382,7 +422,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
382
422
|
The lets fix the last release release
|
383
423
|
|
384
424
|
### Fixed
|
385
|
-
|
386
425
|
* Fixed plain text signatures (Andrew Arrow)
|
387
426
|
* Fixed RSA requests using OAuthTokens. (Philip Lipu Tsai)
|
388
427
|
|
@@ -390,17 +429,14 @@ The lets fix the last release release
|
|
390
429
|
The lets RSA release
|
391
430
|
|
392
431
|
### Added
|
393
|
-
|
394
432
|
* Improved support for Ruby 1.8.7 (Bill Kocik)
|
395
433
|
* Added support for 'private_key_file' option for RSA signatures (Chris Mear)
|
396
434
|
|
397
435
|
### Changed
|
398
|
-
|
399
436
|
* Improved RSA testing
|
400
437
|
* Omit token when signing with RSA
|
401
438
|
|
402
439
|
### Fixed
|
403
|
-
|
404
440
|
* Fixed RSA verification to support RSA providers now using Ruby and RSA
|
405
441
|
* Fixed several edge cases where params were being incorrectly signed (Scott Hill)
|
406
442
|
* Fixed RSA signing (choonkeat)
|
@@ -409,7 +445,6 @@ The lets RSA release
|
|
409
445
|
Lets actually support SSL release
|
410
446
|
|
411
447
|
### Fixed
|
412
|
-
|
413
448
|
* Use HTTPS when required.
|
414
449
|
|
415
450
|
## 0.2 2008-1-19
|
@@ -421,63 +456,49 @@ but please have a look at the unit tests.
|
|
421
456
|
|
422
457
|
## 0.1.2 2007-12-1
|
423
458
|
### Fixed
|
424
|
-
|
425
459
|
* Fixed checks for missing OAuth params to improve performance
|
426
460
|
* Includes Pat's fix for getting the realm out.
|
427
461
|
|
428
462
|
## 0.1.1 2007-11-26
|
429
463
|
### Added
|
430
|
-
|
431
464
|
* First release as a GEM
|
432
465
|
* Moved all non-Rails functionality from the Rails plugin:
|
433
466
|
http://code.google.com/p/oauth-plugin/
|
434
467
|
|
435
|
-
[Unreleased]: https://github.com/oauth-xx/oauth-ruby/compare/
|
436
|
-
|
437
|
-
[0.
|
438
|
-
|
439
|
-
[0.
|
440
|
-
|
441
|
-
[0.
|
442
|
-
|
443
|
-
[0.
|
444
|
-
|
445
|
-
[0.
|
446
|
-
|
447
|
-
[0.
|
448
|
-
|
449
|
-
[0.3.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.6
|
450
|
-
|
451
|
-
[0.4.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.0
|
452
|
-
|
453
|
-
[0.4.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.1
|
454
|
-
|
455
|
-
[0.4.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.2
|
456
|
-
|
457
|
-
[0.4.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.3
|
458
|
-
|
459
|
-
[0.4.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.4
|
460
|
-
|
461
|
-
[0.4.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.5
|
462
|
-
|
463
|
-
[0.4.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.6
|
464
|
-
|
465
|
-
[0.4.7]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.7
|
466
|
-
|
467
|
-
[0.5.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.0
|
468
|
-
|
469
|
-
[0.5.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.1
|
470
|
-
|
471
|
-
[0.5.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.2
|
472
|
-
|
473
|
-
[0.5.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.3
|
474
|
-
|
475
|
-
[0.5.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.4
|
476
|
-
|
477
|
-
[0.5.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.5
|
478
|
-
|
479
|
-
[0.5.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.6
|
480
|
-
|
481
|
-
[0.5.7]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.7
|
482
|
-
|
468
|
+
[Unreleased]: https://github.com/oauth-xx/oauth-ruby/compare/v1.1.0...main
|
469
|
+
[1.1.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v1.1.0
|
470
|
+
[1.0.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v1.0.1
|
471
|
+
[1.0.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v1.0.0
|
472
|
+
[0.6.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.6.2
|
473
|
+
[0.6.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.6.1
|
474
|
+
[0.6.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.6.0
|
475
|
+
[0.5.14]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.14
|
476
|
+
[0.5.13]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.13
|
477
|
+
[0.5.12]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.12
|
478
|
+
[0.5.11]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.11
|
479
|
+
[0.5.10]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.10
|
480
|
+
[0.5.9]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.9
|
483
481
|
[0.5.8]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.8
|
482
|
+
[0.5.7]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.7
|
483
|
+
[0.5.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.6
|
484
|
+
[0.5.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.5
|
485
|
+
[0.5.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.4
|
486
|
+
[0.5.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.3
|
487
|
+
[0.5.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.2
|
488
|
+
[0.5.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.1
|
489
|
+
[0.5.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.0
|
490
|
+
[0.4.7]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.7
|
491
|
+
[0.4.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.6
|
492
|
+
[0.4.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.5
|
493
|
+
[0.4.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.4
|
494
|
+
[0.4.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.3
|
495
|
+
[0.4.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.2
|
496
|
+
[0.4.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.1
|
497
|
+
[0.4.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.0
|
498
|
+
[0.3.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.6
|
499
|
+
[0.3.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.5
|
500
|
+
[0.3.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.4
|
501
|
+
[0.3.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.3
|
502
|
+
[0.3.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.2
|
503
|
+
[0.3.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.1
|
504
|
+
[0.3.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.0
|
data/CODE_OF_CONDUCT.md
CHANGED
File without changes
|
data/CONTRIBUTING.md
CHANGED
@@ -8,6 +8,23 @@ To submit a patch, please fork the project and create a patch with
|
|
8
8
|
tests. Once you're happy with it send a pull request and post a message to the
|
9
9
|
[google group][mailinglist].
|
10
10
|
|
11
|
+
## Run tests
|
12
|
+
|
13
|
+
### Against Rails 6
|
14
|
+
|
15
|
+
```bash
|
16
|
+
BUNDLE_GEMFILE=gemfiles/a6.gemfile bundle install
|
17
|
+
BUNDLE_GEMFILE=gemfiles/a6.gemfile bundle exec rake
|
18
|
+
```
|
19
|
+
|
20
|
+
|
21
|
+
### Against Rails 7
|
22
|
+
|
23
|
+
```bash
|
24
|
+
BUNDLE_GEMFILE=gemfiles/a7.gemfile bundle install
|
25
|
+
BUNDLE_GEMFILE=gemfiles/a7.gemfile bundle exec rake
|
26
|
+
```
|
27
|
+
|
11
28
|
## Contributors
|
12
29
|
|
13
30
|
[![Contributors](https://contrib.rocks/image?repo=oauth-xx/oauth-ruby)][contributors]
|
@@ -16,8 +33,8 @@ Made with [contributors-img][contrib-rocks].
|
|
16
33
|
|
17
34
|
[comment]: <> (Following links are used by README, CONTRIBUTING, Homepage)
|
18
35
|
|
19
|
-
[conduct]: https://github.com/oauth-xx/oauth-ruby/blob/
|
20
|
-
[contributing]: https://github.com/oauth-xx/oauth-ruby/blob/master/CONTRIBUTING.md
|
36
|
+
[conduct]: https://github.com/oauth-xx/oauth-ruby/blob/main/CODE_OF_CONDUCT.md
|
21
37
|
[contributors]: https://github.com/oauth-xx/oauth-ruby/graphs/contributors
|
22
38
|
[mailinglist]: http://groups.google.com/group/oauth-ruby
|
23
39
|
[source]: https://github.com/oauth-xx/oauth-ruby/
|
40
|
+
[contrib-rocks]: https://contrib.rocks
|
data/LICENSE
CHANGED
@@ -1,6 +1,7 @@
|
|
1
1
|
The MIT License (MIT)
|
2
2
|
|
3
|
-
Copyright (c) 2007-2012, 2016-2017
|
3
|
+
Copyright (c) 2007-2012, 2016-2017 Blaine Cook, Larry Halff, Pelle Braendgaard
|
4
|
+
Copyright (c) 2020-2022 Peter Boling
|
4
5
|
|
5
6
|
Permission is hereby granted, free of charge, to any person obtaining a copy
|
6
7
|
of this software and associated documentation files (the "Software"), to deal
|