oauth 0.5.6 → 0.5.7.pre.pre1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +454 -0
- data/CODE_OF_CONDUCT.md +84 -0
- data/LICENSE +18 -17
- data/README.md +211 -0
- data/TODO +0 -0
- data/bin/oauth +2 -2
- data/lib/oauth/cli/authorize_command.rb +0 -0
- data/lib/oauth/cli/base_command.rb +1 -1
- data/lib/oauth/cli/help_command.rb +0 -0
- data/lib/oauth/cli/query_command.rb +0 -0
- data/lib/oauth/cli/sign_command.rb +0 -0
- data/lib/oauth/cli/version_command.rb +0 -0
- data/lib/oauth/cli.rb +18 -18
- data/lib/oauth/client/action_controller_request.rb +7 -7
- data/lib/oauth/client/em_http.rb +99 -99
- data/lib/oauth/client/helper.rb +22 -22
- data/lib/oauth/client/net_http.rb +5 -5
- data/lib/oauth/client.rb +0 -0
- data/lib/oauth/consumer.rb +49 -38
- data/lib/oauth/errors/error.rb +0 -0
- data/lib/oauth/errors/problem.rb +0 -0
- data/lib/oauth/errors/unauthorized.rb +3 -1
- data/lib/oauth/errors.rb +3 -3
- data/lib/oauth/helper.rb +11 -7
- data/lib/oauth/oauth.rb +0 -0
- data/lib/oauth/oauth_test_helper.rb +4 -4
- data/lib/oauth/request_proxy/action_controller_request.rb +9 -9
- data/lib/oauth/request_proxy/action_dispatch_request.rb +1 -1
- data/lib/oauth/request_proxy/base.rb +16 -16
- data/lib/oauth/request_proxy/curb_request.rb +5 -5
- data/lib/oauth/request_proxy/em_http_request.rb +18 -12
- data/lib/oauth/request_proxy/jabber_request.rb +3 -3
- data/lib/oauth/request_proxy/mock_request.rb +1 -1
- data/lib/oauth/request_proxy/net_http.rb +9 -9
- data/lib/oauth/request_proxy/rack_request.rb +4 -4
- data/lib/oauth/request_proxy/rest_client_request.rb +7 -7
- data/lib/oauth/request_proxy/typhoeus_request.rb +7 -7
- data/lib/oauth/request_proxy.rb +0 -0
- data/lib/oauth/server.rb +2 -2
- data/lib/oauth/signature/base.rb +8 -6
- data/lib/oauth/signature/hmac/sha1.rb +4 -4
- data/lib/oauth/signature/hmac/sha256.rb +4 -4
- data/lib/oauth/signature/plaintext.rb +2 -2
- data/lib/oauth/signature/rsa/sha1.rb +3 -3
- data/lib/oauth/signature.rb +0 -0
- data/lib/oauth/token.rb +5 -5
- data/lib/oauth/tokens/access_token.rb +3 -3
- data/lib/oauth/tokens/consumer_token.rb +0 -0
- data/lib/oauth/tokens/request_token.rb +0 -0
- data/lib/oauth/tokens/server_token.rb +0 -0
- data/lib/oauth/tokens/token.rb +0 -0
- data/lib/oauth/version.rb +1 -1
- data/lib/oauth.rb +8 -7
- metadata +171 -64
- data/README.rdoc +0 -88
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: a88cb9c5d6705a3a9af88054d4b67bd2fdf2686057bedb2022d1998f4e94d12f
|
4
|
+
data.tar.gz: d37b3d22e48c4258f1ce25f154a9c1a0ab4252fb7cb804e79808dd36c0ddcc5f
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9c074fe3a9f43349f37deddbd1405f2d6eb53585d5188c81db30699b4d05b5ab546263d8e8471cad6742a861dcf23b14a94d54f3cede5f8891eeedd3a0e4b21c
|
7
|
+
data.tar.gz: 2ad01843b191714dcc05e9aaed252d5d1edc59e224c3d46e9e0b361c92403a97bf52288c4d84fd530e22b44a7d112aa36adb3f4d62fa3a4a1561681a5e353f93
|
data/CHANGELOG.md
ADDED
@@ -0,0 +1,454 @@
|
|
1
|
+
# Changelog
|
2
|
+
All notable changes to this project will be documented in this file.
|
3
|
+
|
4
|
+
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
|
5
|
+
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
6
|
+
|
7
|
+
## [Unreleased]
|
8
|
+
### Added
|
9
|
+
|
10
|
+
* Setup Rubocop (#205, #208 by @pboling)
|
11
|
+
* Added CODE_OF_CONDUCT.md (#217, #218 by @pboling)
|
12
|
+
* Added FUNDING.yml (#217, #218 by @pboling)
|
13
|
+
* Added Client Certificate Options: :ssl_client_cert and :ssl_client_key (#136, #220 by @pboling)
|
14
|
+
* Handle a nested array of hashes in OAuth::Helper.normalize (#80, #221 by @pboling)
|
15
|
+
|
16
|
+
### Changed
|
17
|
+
|
18
|
+
* Switch from TravisCI to Github Actions (#202, #207, #176 by @pboling)
|
19
|
+
* Upgrade webmock to v3.14.0 (#196 by @pboling)
|
20
|
+
* Upgrade em-http-request to v1.1.7 (#173 by @pboling)
|
21
|
+
* Upgrade mocha to v1.13.0 (#193 by @pboling)
|
22
|
+
* HISTORY renamed to CHANGELOG.md, and follows Keep a Changelog (#214, #215 by @pboling)
|
23
|
+
* CHANGELOG, LICENSE, and README now ship with packaged gem (#214, #215 by @pboling)
|
24
|
+
* README.rdoc renamed to README.md (#217, #218 by @pboling)
|
25
|
+
* Require plaintext signature method by default (#135 by @confiks & @pboling)
|
26
|
+
|
27
|
+
### Fixed
|
28
|
+
|
29
|
+
* Fixed Infinite Redirect in v0.5.5, v0.5.6 (#186, #210 by @pboling)
|
30
|
+
* Fixed NoMethodError on missing leading slash in path (#194, #211 by @pboling)
|
31
|
+
* Fixed NoMethodError on nil request object (#165, #212 by @pboling)
|
32
|
+
* Fixed Unsafe String Comparison (#156, #209 by @pboling and @drosseau)
|
33
|
+
* Fixed typos in Gemspec (#204, #203, #208 by @pboling)
|
34
|
+
* Copyright Notice in LICENSE - added correct years (#217, #218 by @pboling)
|
35
|
+
|
36
|
+
### Removed
|
37
|
+
|
38
|
+
* Remove direct development dependency on nokogiri (#299 by @pboling)
|
39
|
+
|
40
|
+
## [0.5.6] 2021-04-02
|
41
|
+
### Added
|
42
|
+
|
43
|
+
* Add metadata to Gemspec file
|
44
|
+
* Add support for PUT requests with Action Controller (#181)
|
45
|
+
|
46
|
+
### Changed
|
47
|
+
|
48
|
+
* Change default timeout to be the same as Net::HTTP default, 60 seconds instead of 30 seconds.
|
49
|
+
|
50
|
+
## [0.5.5] 2020-01-19
|
51
|
+
### Added
|
52
|
+
|
53
|
+
* Add :allow_empty_params option (#155)
|
54
|
+
|
55
|
+
### Changed
|
56
|
+
|
57
|
+
* Allow redirect to different host but same path
|
58
|
+
* Various cleanups
|
59
|
+
|
60
|
+
### Fixed
|
61
|
+
|
62
|
+
* Fixes ssl-noverify
|
63
|
+
* Fixed README example (#158, #159, by @pboling)
|
64
|
+
|
65
|
+
## [0.5.4] 2017-12-08
|
66
|
+
### Changed
|
67
|
+
|
68
|
+
* Various cleanups (charliesome)
|
69
|
+
|
70
|
+
### Fixed
|
71
|
+
|
72
|
+
* Fixes UnknownRequestType on Rails 5.1 for ActionDispatch::Request (xprazak2)
|
73
|
+
|
74
|
+
## [0.5.3] 2017-05-24
|
75
|
+
### Fixed
|
76
|
+
|
77
|
+
* Fix #145 - broken CLI required loading active_support (James Pinto)
|
78
|
+
|
79
|
+
### Changed
|
80
|
+
|
81
|
+
* Removing legacy scripts (James Pinto)
|
82
|
+
|
83
|
+
## [0.5.2] 2017-05-17
|
84
|
+
### Added
|
85
|
+
|
86
|
+
* Adding a development dependency that had not been mentioned (James Pinto)
|
87
|
+
* Adding CodeClimate (James Pinto)
|
88
|
+
* Adding support to Ruby 2.4 and head (James Pinto)
|
89
|
+
|
90
|
+
### Changed
|
91
|
+
|
92
|
+
* Use assert_nil so as to silence a Minitest 6 deprecation warning (James Pinto)
|
93
|
+
* Stop bundling tests files in the gem (Michal Papis)
|
94
|
+
* Minor cleanup on tests (James Pinto)
|
95
|
+
* TravisCI no longer needs libcurl-dev (James Pinto)
|
96
|
+
* Nokogiri 1.7 does not accept Ruby 2.0 (James Pinto)
|
97
|
+
* Upgrading to CodeClimate 1.0 (James Pinto)
|
98
|
+
* Locking gemspec to Rails 4 so as to allow our next version for Rails 5 (James Pinto)
|
99
|
+
* moving development dependency to gemspec (James Pinto)
|
100
|
+
* Silencing 'Net::HTTPResponse#header is obsolete' (James Pinto)
|
101
|
+
* Silencing some test warnings (James Pinto)
|
102
|
+
* Silencing 'loading in progress, circular require considered harmful' (James Pinto)
|
103
|
+
* Silence 'URI.escape obsolete' (James Pinto)
|
104
|
+
* Refactored CLI (James Pinto)
|
105
|
+
* Moving test files into test/units/ (James Pinto)
|
106
|
+
* Reimplementing #82 - Debug Output Option (James Pinto)
|
107
|
+
|
108
|
+
### Fixed
|
109
|
+
|
110
|
+
* Fix #113 adding paths when a full URL has been specified (James Pinto)
|
111
|
+
* Bug Fix, webmock 2.0 has introduced a new bug (James Pinto)
|
112
|
+
* Making a test/support dir (James Pinto)
|
113
|
+
* Fix #177 - Adjusting to webmock latest recommended implementation for minitest (James Pinto)
|
114
|
+
|
115
|
+
## [0.5.1] 2016-02-29
|
116
|
+
### Added
|
117
|
+
|
118
|
+
* Add license info to the gemspec (Robert Reiz)
|
119
|
+
|
120
|
+
### Fixed
|
121
|
+
|
122
|
+
* Proper handling for empty query string in RequestToken#build_authorize_url (midchildan,
|
123
|
+
Harald Sitter)
|
124
|
+
* Replace calls to String#blank? with its implementation (Sergio Gil Pérez de la Manga)
|
125
|
+
|
126
|
+
### Changed
|
127
|
+
|
128
|
+
* Loosen some development dependencies. Add libcurl-dev to travis
|
129
|
+
* Fixes to travis config. Switch to rubygems for installation and loading
|
130
|
+
|
131
|
+
### Removed
|
132
|
+
|
133
|
+
* Remove obsolete comment (Arthur Nogueira Neves)
|
134
|
+
* Remove jeweler from gemspec
|
135
|
+
|
136
|
+
## [0.5.0] 2016-02-20
|
137
|
+
### Added
|
138
|
+
|
139
|
+
* Add support for HTTP PATCH method (Richard Huang)
|
140
|
+
* Allow reading private key from a string (Khaja Minhajuddin)
|
141
|
+
* Add rest-client proxy (Khem Veasna)
|
142
|
+
* Add byebug. (Kevin Hughes)
|
143
|
+
* Allow reading certificate file path from environment variable. Add CentOS cert file path (Danil Vlasov)
|
144
|
+
|
145
|
+
### Changed
|
146
|
+
|
147
|
+
* Replace jeweler with real spec and bundler tasks
|
148
|
+
* Extract version to separate file
|
149
|
+
* Use OpenSSL for all digest and hashing. Remove signature methods not defined by OAuth spec. (Kevin Hughes)
|
150
|
+
* Change token requests to exclude `oauth_body_hash`. Update doc links in comments. (John Remmen)
|
151
|
+
|
152
|
+
### Fixed
|
153
|
+
|
154
|
+
* Fix ability to pass in an authorize url with a query string (Roger Smith)
|
155
|
+
* Fix bug in signature verification (r-stu31)
|
156
|
+
* Use standard key name (`oauth_token_secret`) in Token#to_query (Craig Walker)
|
157
|
+
* Fix error in CLI when using `query` without supplying a method (grafikchaos)
|
158
|
+
* Compatibility fix for Typhoeus >= 0.5.0 (Chad Feller)
|
159
|
+
* Rails 3+ / ActiveSupport::SafeBuffer patch (Clif Reeder)
|
160
|
+
* Handle `nil` token gracefully for RequestToken#authorize_url (Brian John)
|
161
|
+
* Fix typhoeus compatibility (Vladimir Mikhailov)
|
162
|
+
* Fix oauth cli option parser on Ruby 2.2 (Felix Bünemann)
|
163
|
+
* Update gemspec for security fixes. Convert to Minitest. Add .travis.yml. (Kevin Hughes)
|
164
|
+
* Fix some warnings (amatsuda)
|
165
|
+
* Various fixes/updates to README (Evan Arnold, Jonathan Camenisch, Brian John, Ankur Sethi)
|
166
|
+
|
167
|
+
## [0.4.7] 2012-09-03
|
168
|
+
### Added
|
169
|
+
|
170
|
+
* Set a configurable timeout for all requests (Rick Olson)
|
171
|
+
|
172
|
+
### Fixed
|
173
|
+
|
174
|
+
* Fix merging paths if the path is not empty
|
175
|
+
* Fix nested hash params in Consumer#request (Ernie Miller)
|
176
|
+
|
177
|
+
## [0.4.6] 2012-04-21
|
178
|
+
### Changed
|
179
|
+
|
180
|
+
* Make use the path component of the :site parameter (Jonathon M. Abbott)
|
181
|
+
|
182
|
+
### Fixed
|
183
|
+
|
184
|
+
* Fixed nested attributes in #normalize (Shaliko Usubov)
|
185
|
+
* Fixed post body's being dropped in 1.9 (Steven Hammond)
|
186
|
+
* Fixed PUT request handling (Anton Panasenko)
|
187
|
+
|
188
|
+
## [0.4.5] 2011-06-25
|
189
|
+
### Added
|
190
|
+
|
191
|
+
* Add explicit require for rsa/sha1 (Juris Galang)
|
192
|
+
* Add gemtest support (Adrian Feldman)
|
193
|
+
|
194
|
+
### Changed
|
195
|
+
* Use webmock to mock all http-requests in tests (Adrian Feldman)
|
196
|
+
* Mention Typhoeus require in the README (Kim Ahlström)
|
197
|
+
* Use Net::HTTPGenericRequest (Jakub Kuźma)
|
198
|
+
|
199
|
+
### Fixed
|
200
|
+
|
201
|
+
* Fix POST Requests with Typhoeus proxy (niedhui)
|
202
|
+
* Fix incorrect hardcoded port (Ian Taylor)
|
203
|
+
|
204
|
+
## [0.4.4] 2010-10-31
|
205
|
+
### Added
|
206
|
+
|
207
|
+
* Added support for Rails 3 in client/action_controller_request (Pelle)
|
208
|
+
|
209
|
+
### Fixed
|
210
|
+
|
211
|
+
* Fix LoadError rescue in tests: return can't be used in this context (Hans de Graaff)
|
212
|
+
* HTTP headers should be strings. (seancribbs)
|
213
|
+
* ensure consumer uri gets set back to original config even if an error occurs (Brian Finney)
|
214
|
+
* Yahoo uses & to split records in OAuth headers (Brian Finney)
|
215
|
+
|
216
|
+
## [0.4.3] 2010-09-01
|
217
|
+
### Fixed
|
218
|
+
|
219
|
+
* Fix for em-http proxy (ichverstehe)
|
220
|
+
|
221
|
+
## [0.4.2] 2010-08-13
|
222
|
+
### Added
|
223
|
+
|
224
|
+
* Added Bundler (rc) Gemfile for easier dev/testing
|
225
|
+
|
226
|
+
### Fixed
|
227
|
+
|
228
|
+
* Fixed compatibility with Ruby 1.9.2 (ecavazos)
|
229
|
+
* Fixed the em-http request proxy (Joshua Hull)
|
230
|
+
* Fix for oauth proxy string manipulation (Jakub Suder)
|
231
|
+
|
232
|
+
## [0.4.1] 2010-06-16
|
233
|
+
### Added
|
234
|
+
|
235
|
+
* Added support for using OAuth with proxies (Marsh Gardiner)
|
236
|
+
|
237
|
+
### Fixed
|
238
|
+
|
239
|
+
* Rails 3 Compatibility fixes (Pelle Braendgaard)
|
240
|
+
* Fixed load errors on tests for missing (non-required) libraries
|
241
|
+
|
242
|
+
## [0.4.0] 2010-04-22
|
243
|
+
### Added
|
244
|
+
|
245
|
+
* Added computation of oauth_body_hash as per OAuth Request Body Hash 1.0 Draft 4 (Michael Reinsch)
|
246
|
+
* Added the optional `oauth_session_handle` parameter for the Yahoo implementation (Will Bailey)
|
247
|
+
* Added optional block to OAuth::Consumer.get_*_token (Neill Pearman)
|
248
|
+
* Exclude `oauth_callback` with :exclude_callback (Neill Pearman)
|
249
|
+
* Support for Ruby 1.9 (Aaron Quint, Corey Donahoe, et al)
|
250
|
+
* Support for Typhoeus (Bill Kocik)
|
251
|
+
* Support for em-http (EventMachine) (Darcy Laycock)
|
252
|
+
* Support for curb (André Luis Leal Cardoso Junior)
|
253
|
+
* New website (Aaron Quint)
|
254
|
+
|
255
|
+
### Changed
|
256
|
+
|
257
|
+
* Better marshalling implementation (Yoan Blanc)
|
258
|
+
* Replaced hoe with Jeweler (Aaron Quint)
|
259
|
+
|
260
|
+
### Fixed
|
261
|
+
|
262
|
+
* Strip extraneous spaces and line breaks from access_token responses (observed in the wild with Yahoo!'s OAuth+OpenID hybrid) (Eric Hartmann)
|
263
|
+
* Stop double-escaping PLAINTEXT signatures (Jimmy Zimmerman)
|
264
|
+
* OAuth::Client::Helper won't override the specified `oauth_version` (Philip Kromer)
|
265
|
+
* Fixed an encoding / multibyte issue (成田 一生)
|
266
|
+
|
267
|
+
## [0.3.6] 2009-09-14
|
268
|
+
### Added
|
269
|
+
|
270
|
+
* Added -B CLI option to use the :body authentication scheme (Seth)
|
271
|
+
* Support POST and PUT with raw bodies (Yu-Shan Fung et al)
|
272
|
+
* Added :ca_file consumer option to allow consumer specific certificate override. (Pelle)
|
273
|
+
|
274
|
+
### Changed
|
275
|
+
|
276
|
+
* Test clean-up (Xavier Shay, Hannes Tydén)
|
277
|
+
|
278
|
+
### Fixed
|
279
|
+
|
280
|
+
* Respect `--method` in `authorize` CLI command (Seth)
|
281
|
+
|
282
|
+
## [0.3.5] 2009-06-03
|
283
|
+
### Added
|
284
|
+
|
285
|
+
* `query` CLI command to access protected resources (Seth)
|
286
|
+
* Added -H, -Q CLI options for specifying the authentication scheme (Seth)
|
287
|
+
* Added -O CLI option for specifying a file containing options (Seth)
|
288
|
+
* Support streamable body contents for large request bodies (Seth Cousins)
|
289
|
+
* Support for OAuth 1.0a (Seth)
|
290
|
+
* Added proxy support to OAuth::Consumer (Marshall Huss)
|
291
|
+
* Added --scope CLI option for Google's 'scope' parameter (Seth)
|
292
|
+
|
293
|
+
## [0.3.4] 2009-05-06
|
294
|
+
### Changed
|
295
|
+
|
296
|
+
* OAuth::Client::Helper uses OAuth::VERSION (chadisfaction)
|
297
|
+
|
298
|
+
### Fixed
|
299
|
+
|
300
|
+
* Fix OAuth::RequestProxy::ActionControllerRequest's handling of params (Tristan Groléat)
|
301
|
+
|
302
|
+
## [0.3.3] 2009-05-04
|
303
|
+
### Added
|
304
|
+
|
305
|
+
* Support for arguments in OAuth::Consumer#get_access_token (Matt Sanford)
|
306
|
+
* Add gem version to user-agent header (Matt Sanford)
|
307
|
+
|
308
|
+
### Changed
|
309
|
+
|
310
|
+
* Improved error handling for invalid Authorization headers (Matt Sanford)
|
311
|
+
* Handle input from aggressive form encoding libraries (Matt Wood)
|
312
|
+
|
313
|
+
### Fixed
|
314
|
+
|
315
|
+
* Corrected OAuth XMPP namespace (Seth)
|
316
|
+
* Fixed signatures for non-ASCII under $KCODE other than 'u' (Matt Sanford)
|
317
|
+
* Fixed edge cases in ActionControllerRequestProxy where params were being incorrectly signed (Marcos Wright Kuhns)
|
318
|
+
|
319
|
+
## [0.3.2] 2009-03-23
|
320
|
+
### Added
|
321
|
+
|
322
|
+
* Support applications using the MethodOverride Rack middleware (László Bácsi)
|
323
|
+
* `authorize` command for `oauth` CLI (Seth)
|
324
|
+
* Initial support for Problem Reporting extension (Seth)
|
325
|
+
* Verify SSL certificates if CA certificates are available (Seth)
|
326
|
+
* Added help to the 'oauth' CLI (Seth)
|
327
|
+
|
328
|
+
### Fixed
|
329
|
+
|
330
|
+
* 2xx statuses should be treated as success (Anders Conbere)
|
331
|
+
* Fixed ActionController parameter escaping behavior (Thiago Arrais, László Bácsi, Brett Gibson, et al)
|
332
|
+
* Fixed signature calculation when both options and a block were provided to OAuth::Signature::Base#initialize (Seth)
|
333
|
+
* Fixed a problem when attempting to normalize MockRequest URIs (Seth)
|
334
|
+
|
335
|
+
## [0.3.1] 2009-01-26
|
336
|
+
### Fixed
|
337
|
+
|
338
|
+
* Fixed a problem with relative and absolute token request paths. (Michael
|
339
|
+
Wood)
|
340
|
+
|
341
|
+
## [0.3.0] 2009-01-25
|
342
|
+
### Added
|
343
|
+
|
344
|
+
* Support ActionController::Request from Edge Rails (László Bácsi)
|
345
|
+
* Added #normalized_parameters to OAuth::RequestProxy::Base (Pelle)
|
346
|
+
* Command-line app for generating signatures. (Seth)
|
347
|
+
|
348
|
+
### Changed
|
349
|
+
|
350
|
+
* OAuth::Signature.sign and friends now yield the RequestProxy instead of the token when the passed block's arity is 1. (Seth)
|
351
|
+
* Improved test-cases and compatibility for encoding issues. (Pelle)
|
352
|
+
|
353
|
+
### Fixed
|
354
|
+
|
355
|
+
* Correctly handle multi-valued parameters (Seth)
|
356
|
+
* Token requests are made to the configured URL rather than generating a potentially incorrect one. (Kellan Elliott-McCrea)
|
357
|
+
|
358
|
+
## 0.2.7 2008-09-10
|
359
|
+
The lets fix the last release release
|
360
|
+
|
361
|
+
### Fixed
|
362
|
+
|
363
|
+
* Fixed plain text signatures (Andrew Arrow)
|
364
|
+
* Fixed RSA requests using OAuthTokens. (Philip Lipu Tsai)
|
365
|
+
|
366
|
+
## 0.2.6 2008-09-09
|
367
|
+
The lets RSA release
|
368
|
+
|
369
|
+
### Added
|
370
|
+
|
371
|
+
* Improved support for Ruby 1.8.7 (Bill Kocik)
|
372
|
+
* Added support for 'private_key_file' option for RSA signatures (Chris Mear)
|
373
|
+
|
374
|
+
### Changed
|
375
|
+
|
376
|
+
* Improved RSA testing
|
377
|
+
* Omit token when signing with RSA
|
378
|
+
|
379
|
+
### Fixed
|
380
|
+
|
381
|
+
* Fixed RSA verification to support RSA providers now using Ruby and RSA
|
382
|
+
* Fixed several edge cases where params were being incorrectly signed (Scott Hill)
|
383
|
+
* Fixed RSA signing (choonkeat)
|
384
|
+
|
385
|
+
## 0.2.2 2008-02-22
|
386
|
+
Lets actually support SSL release
|
387
|
+
|
388
|
+
### Fixed
|
389
|
+
|
390
|
+
* Use HTTPS when required.
|
391
|
+
|
392
|
+
## 0.2 2008-1-19
|
393
|
+
All together now release
|
394
|
+
|
395
|
+
This is a big release, where we have merged the efforts of various parties into one common library.
|
396
|
+
This means there are definitely some API changes you should be aware of. They should be minimal
|
397
|
+
but please have a look at the unit tests.
|
398
|
+
|
399
|
+
## 0.1.2 2007-12-1
|
400
|
+
### Fixed
|
401
|
+
|
402
|
+
* Fixed checks for missing OAuth params to improve performance
|
403
|
+
* Includes Pat's fix for getting the realm out.
|
404
|
+
|
405
|
+
## 0.1.1 2007-11-26
|
406
|
+
### Added
|
407
|
+
|
408
|
+
* First release as a GEM
|
409
|
+
* Moved all non-Rails functionality from the Rails plugin:
|
410
|
+
http://code.google.com/p/oauth-plugin/
|
411
|
+
|
412
|
+
[Unreleased]: https://github.com/oauth-xx/oauth-ruby/compare/v0.5.6...HEAD
|
413
|
+
|
414
|
+
[0.3.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.0
|
415
|
+
|
416
|
+
[0.3.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.1
|
417
|
+
|
418
|
+
[0.3.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.2
|
419
|
+
|
420
|
+
[0.3.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.3
|
421
|
+
|
422
|
+
[0.3.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.4
|
423
|
+
|
424
|
+
[0.3.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.5
|
425
|
+
|
426
|
+
[0.3.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.3.6
|
427
|
+
|
428
|
+
[0.4.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.0
|
429
|
+
|
430
|
+
[0.4.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.1
|
431
|
+
|
432
|
+
[0.4.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.2
|
433
|
+
|
434
|
+
[0.4.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.3
|
435
|
+
|
436
|
+
[0.4.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.4
|
437
|
+
|
438
|
+
[0.4.5]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.5
|
439
|
+
|
440
|
+
[0.4.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.6
|
441
|
+
|
442
|
+
[0.4.7]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.4.7
|
443
|
+
|
444
|
+
[0.5.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.0
|
445
|
+
|
446
|
+
[0.5.1]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.1
|
447
|
+
|
448
|
+
[0.5.2]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.2
|
449
|
+
|
450
|
+
[0.5.3]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.3
|
451
|
+
|
452
|
+
[0.5.4]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.4
|
453
|
+
|
454
|
+
[0.5.6]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.6
|
data/CODE_OF_CONDUCT.md
ADDED
@@ -0,0 +1,84 @@
|
|
1
|
+
# Contributor Covenant Code of Conduct
|
2
|
+
|
3
|
+
## Our Pledge
|
4
|
+
|
5
|
+
We as members, contributors, and leaders pledge to make participation in our community a harassment-free experience for everyone, regardless of age, body size, visible or invisible disability, ethnicity, sex characteristics, gender identity and expression, level of experience, education, socio-economic status, nationality, personal appearance, race, religion, or sexual identity and orientation.
|
6
|
+
|
7
|
+
We pledge to act and interact in ways that contribute to an open, welcoming, diverse, inclusive, and healthy community.
|
8
|
+
|
9
|
+
## Our Standards
|
10
|
+
|
11
|
+
Examples of behavior that contributes to a positive environment for our community include:
|
12
|
+
|
13
|
+
* Demonstrating empathy and kindness toward other people
|
14
|
+
* Being respectful of differing opinions, viewpoints, and experiences
|
15
|
+
* Giving and gracefully accepting constructive feedback
|
16
|
+
* Accepting responsibility and apologizing to those affected by our mistakes, and learning from the experience
|
17
|
+
* Focusing on what is best not just for us as individuals, but for the overall community
|
18
|
+
|
19
|
+
Examples of unacceptable behavior include:
|
20
|
+
|
21
|
+
* The use of sexualized language or imagery, and sexual attention or
|
22
|
+
advances of any kind
|
23
|
+
* Trolling, insulting or derogatory comments, and personal or political attacks
|
24
|
+
* Public or private harassment
|
25
|
+
* Publishing others' private information, such as a physical or email
|
26
|
+
address, without their explicit permission
|
27
|
+
* Other conduct which could reasonably be considered inappropriate in a
|
28
|
+
professional setting
|
29
|
+
|
30
|
+
## Enforcement Responsibilities
|
31
|
+
|
32
|
+
Community leaders are responsible for clarifying and enforcing our standards of acceptable behavior and will take appropriate and fair corrective action in response to any behavior that they deem inappropriate, threatening, offensive, or harmful.
|
33
|
+
|
34
|
+
Community leaders have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, and will communicate reasons for moderation decisions when appropriate.
|
35
|
+
|
36
|
+
## Scope
|
37
|
+
|
38
|
+
This Code of Conduct applies within all community spaces, and also applies when an individual is officially representing the community in public spaces. Examples of representing our community include using an official e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event.
|
39
|
+
|
40
|
+
## Enforcement
|
41
|
+
|
42
|
+
Instances of abusive, harassing, or otherwise unacceptable behavior may be reported to the community leaders responsible for enforcement at peter.boling@gmail.com. All complaints will be reviewed and investigated promptly and fairly.
|
43
|
+
|
44
|
+
All community leaders are obligated to respect the privacy and security of the reporter of any incident.
|
45
|
+
|
46
|
+
## Enforcement Guidelines
|
47
|
+
|
48
|
+
Community leaders will follow these Community Impact Guidelines in determining the consequences for any action they deem in violation of this Code of Conduct:
|
49
|
+
|
50
|
+
### 1. Correction
|
51
|
+
|
52
|
+
**Community Impact**: Use of inappropriate language or other behavior deemed unprofessional or unwelcome in the community.
|
53
|
+
|
54
|
+
**Consequence**: A private, written warning from community leaders, providing clarity around the nature of the violation and an explanation of why the behavior was inappropriate. A public apology may be requested.
|
55
|
+
|
56
|
+
### 2. Warning
|
57
|
+
|
58
|
+
**Community Impact**: A violation through a single incident or series of actions.
|
59
|
+
|
60
|
+
**Consequence**: A warning with consequences for continued behavior. No interaction with the people involved, including unsolicited interaction with those enforcing the Code of Conduct, for a specified period of time. This includes avoiding interactions in community spaces as well as external channels like social media. Violating these terms may lead to a temporary or permanent ban.
|
61
|
+
|
62
|
+
### 3. Temporary Ban
|
63
|
+
|
64
|
+
**Community Impact**: A serious violation of community standards, including sustained inappropriate behavior.
|
65
|
+
|
66
|
+
**Consequence**: A temporary ban from any sort of interaction or public communication with the community for a specified period of time. No public or private interaction with the people involved, including unsolicited interaction with those enforcing the Code of Conduct, is allowed during this period. Violating these terms may lead to a permanent ban.
|
67
|
+
|
68
|
+
### 4. Permanent Ban
|
69
|
+
|
70
|
+
**Community Impact**: Demonstrating a pattern of violation of community standards, including sustained inappropriate behavior, harassment of an individual, or aggression toward or disparagement of classes of individuals.
|
71
|
+
|
72
|
+
**Consequence**: A permanent ban from any sort of public interaction within the community.
|
73
|
+
|
74
|
+
## Attribution
|
75
|
+
|
76
|
+
This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 2.0,
|
77
|
+
available at https://www.contributor-covenant.org/version/2/0/code_of_conduct.html.
|
78
|
+
|
79
|
+
Community Impact Guidelines were inspired by [Mozilla's code of conduct enforcement ladder](https://github.com/mozilla/diversity).
|
80
|
+
|
81
|
+
[homepage]: https://www.contributor-covenant.org
|
82
|
+
|
83
|
+
For answers to common questions about this code of conduct, see the FAQ at
|
84
|
+
https://www.contributor-covenant.org/faq. Translations are available at https://www.contributor-covenant.org/translations.
|
data/LICENSE
CHANGED
@@ -1,20 +1,21 @@
|
|
1
|
-
|
1
|
+
The MIT License (MIT)
|
2
2
|
|
3
|
-
|
4
|
-
a copy of this software and associated documentation files (the
|
5
|
-
"Software"), to deal in the Software without restriction, including
|
6
|
-
without limitation the rights to use, copy, modify, merge, publish,
|
7
|
-
distribute, sublicense, and/or sell copies of the Software, and to
|
8
|
-
permit persons to whom the Software is furnished to do so, subject to
|
9
|
-
the following conditions:
|
3
|
+
Copyright (c) 2007-2012, 2016-2017, 2020-2021 Blaine Cook, Larry Halff, Pelle Braendgaard, Peter Boling
|
10
4
|
|
11
|
-
|
12
|
-
|
5
|
+
Permission is hereby granted, free of charge, to any person obtaining a copy
|
6
|
+
of this software and associated documentation files (the "Software"), to deal
|
7
|
+
in the Software without restriction, including without limitation the rights
|
8
|
+
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
9
|
+
copies of the Software, and to permit persons to whom the Software is
|
10
|
+
furnished to do so, subject to the following conditions:
|
13
11
|
|
14
|
-
|
15
|
-
|
16
|
-
|
17
|
-
|
18
|
-
|
19
|
-
|
20
|
-
|
12
|
+
The above copyright notice and this permission notice shall be included in
|
13
|
+
all copies or substantial portions of the Software.
|
14
|
+
|
15
|
+
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
16
|
+
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
17
|
+
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
18
|
+
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
19
|
+
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
20
|
+
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
|
21
|
+
THE SOFTWARE.
|