oauth 1.1.4 → 1.1.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data/CHANGELOG.md +18 -1
- data/README.md +1 -1
- data/lib/oauth/auth_sanitizer.rb +36 -0
- data/lib/oauth/consumer.rb +2 -2
- data/lib/oauth/signature/base.rb +2 -2
- data/lib/oauth/tokens/token.rb +2 -2
- data/lib/oauth/version.rb +1 -1
- data/lib/oauth.rb +1 -1
- data/sig/oauth/consumer.rbs +1 -1
- data/sig/oauth/signature/base.rbs +1 -1
- data/sig/oauth/tokens/token.rbs +1 -1
- data.tar.gz.sig +0 -0
- metadata +19 -12
- metadata.gz.sig +0 -0
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 7b6d26e7154c4142ab4895d3a3b5df7ec1f1db47c4b921262c815e3f2f59c67e
|
|
4
|
+
data.tar.gz: 44b919663b563b37a1ba49d7c07a0a452a13fb040948135de6f39065155f46c0
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: d0cee0dcba52b6bdfd864aef0ea81160e47e093ec8457d8d6a36799aab6951008979480725983edd4135c2aa1725b8b18ac3fe29879df93cf1f53cc8a942095c
|
|
7
|
+
data.tar.gz: 45fa31d073726e816937718f97038e803bbea92722936b88195038b2a42a5c6ebf540017e29e644efcba89e44f8e3ad3452ff6987823e8a9d5ad49ec5f4262c2
|
checksums.yaml.gz.sig
CHANGED
|
Binary file
|
data/CHANGELOG.md
CHANGED
|
@@ -30,6 +30,21 @@ Please file a bug if you notice a violation of semantic versioning.
|
|
|
30
30
|
|
|
31
31
|
### Security
|
|
32
32
|
|
|
33
|
+
## [1.1.5] - 2026-05-20
|
|
34
|
+
|
|
35
|
+
- TAG: [v1.1.5][1.1.5t]
|
|
36
|
+
- COVERAGE: 84.79% -- 864/1019 lines in 37 files
|
|
37
|
+
- BRANCH COVERAGE: 54.91% -- 151/275 branches in 37 files
|
|
38
|
+
- 40.86% documented
|
|
39
|
+
|
|
40
|
+
### Changed
|
|
41
|
+
|
|
42
|
+
- auth-sanitizer v0.1.3
|
|
43
|
+
|
|
44
|
+
### Fixed
|
|
45
|
+
|
|
46
|
+
- Load `auth-sanitizer` through an internal isolated loader so requiring `oauth` does not add top-level `Auth` or `AuthSanitizer` constants that may collide with downstream applications.
|
|
47
|
+
|
|
33
48
|
## [1.1.4] - 2026-05-16
|
|
34
49
|
|
|
35
50
|
- TAG: [v1.1.4][1.1.4t]
|
|
@@ -749,7 +764,9 @@ All together now release
|
|
|
749
764
|
- Moved all non-Rails functionality from the Rails plugin:
|
|
750
765
|
http://code.google.com/p/oauth-plugin/
|
|
751
766
|
|
|
752
|
-
[Unreleased]: https://github.com/ruby-oauth/oauth/compare/v1.1.
|
|
767
|
+
[Unreleased]: https://github.com/ruby-oauth/oauth/compare/v1.1.5...HEAD
|
|
768
|
+
[1.1.5]: https://github.com/ruby-oauth/oauth/compare/v1.1.4...v1.1.5
|
|
769
|
+
[1.1.5t]: https://github.com/ruby-oauth/oauth/releases/tag/v1.1.5
|
|
753
770
|
[1.1.4]: https://github.com/ruby-oauth/oauth/compare/v1.1.3...v1.1.4
|
|
754
771
|
[1.1.4t]: https://github.com/ruby-oauth/oauth/releases/tag/v1.1.4
|
|
755
772
|
[1.1.3]: https://github.com/ruby-oauth/oauth/compare/v1.1.2...v1.1.3
|
data/README.md
CHANGED
|
@@ -640,7 +640,7 @@ Thanks for RTFM. ☺️
|
|
|
640
640
|
[📌gitmoji]: https://gitmoji.dev
|
|
641
641
|
[📌gitmoji-img]: https://img.shields.io/badge/gitmoji_commits-%20%F0%9F%98%9C%20%F0%9F%98%8D-34495e.svg?style=flat-square
|
|
642
642
|
[🧮kloc]: https://www.youtube.com/watch?v=dQw4w9WgXcQ
|
|
643
|
-
[🧮kloc-img]: https://img.shields.io/badge/KLOC-1.
|
|
643
|
+
[🧮kloc-img]: https://img.shields.io/badge/KLOC-1.019-FFDD67.svg?style=for-the-badge&logo=YouTube&logoColor=blue
|
|
644
644
|
[🔐security]: SECURITY.md
|
|
645
645
|
[🔐security-img]: https://img.shields.io/badge/security-policy-259D6C.svg?style=flat
|
|
646
646
|
[📄copyright-notice-explainer]: https://opensource.stackexchange.com/questions/5778/why-do-licenses-such-as-the-mit-license-specify-a-single-year
|
|
@@ -0,0 +1,36 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module OAuth
|
|
4
|
+
AUTH_SANITIZER = begin
|
|
5
|
+
auth_sanitizer_requirement = Gem::Requirement.new("~> 0.1", ">= 0.1.3")
|
|
6
|
+
auth_sanitizer_spec = Gem.loaded_specs["auth-sanitizer"]
|
|
7
|
+
unless auth_sanitizer_spec && auth_sanitizer_requirement.satisfied_by?(auth_sanitizer_spec.version)
|
|
8
|
+
# :nocov:
|
|
9
|
+
auth_sanitizer_spec = Gem::Specification.find_by_name("auth-sanitizer", auth_sanitizer_requirement)
|
|
10
|
+
# :nocov:
|
|
11
|
+
end
|
|
12
|
+
|
|
13
|
+
auth_sanitizer_loader_path = File.join(
|
|
14
|
+
auth_sanitizer_spec.full_gem_path,
|
|
15
|
+
"lib/auth_sanitizer/loader.rb",
|
|
16
|
+
)
|
|
17
|
+
unless File.file?(auth_sanitizer_loader_path)
|
|
18
|
+
# :nocov:
|
|
19
|
+
raise LoadError, "oauth requires auth-sanitizer #{auth_sanitizer_requirement}; " \
|
|
20
|
+
"loader not found at #{auth_sanitizer_loader_path}"
|
|
21
|
+
# :nocov:
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
auth_sanitizer_loader_namespace = Module.new
|
|
25
|
+
auth_sanitizer_loader_namespace.module_eval(
|
|
26
|
+
File.read(auth_sanitizer_loader_path),
|
|
27
|
+
auth_sanitizer_loader_path,
|
|
28
|
+
1,
|
|
29
|
+
)
|
|
30
|
+
|
|
31
|
+
auth_sanitizer_loader_namespace
|
|
32
|
+
.const_get(:AuthSanitizer)
|
|
33
|
+
.const_get(:Loader)
|
|
34
|
+
.load_isolated
|
|
35
|
+
end
|
|
36
|
+
end
|
data/lib/oauth/consumer.rb
CHANGED
|
@@ -10,10 +10,10 @@ require "cgi"
|
|
|
10
10
|
module OAuth
|
|
11
11
|
# Consumer credentials and request configuration for OAuth 1.0 / 1.0a flows.
|
|
12
12
|
#
|
|
13
|
-
# Includes {
|
|
13
|
+
# Includes {OAuth::AUTH_SANITIZER::FilteredAttributes} so inspect output redacts the
|
|
14
14
|
# consumer secret while leaving non-sensitive configuration visible.
|
|
15
15
|
class Consumer
|
|
16
|
-
include
|
|
16
|
+
include OAuth::AUTH_SANITIZER::FilteredAttributes
|
|
17
17
|
|
|
18
18
|
# Instance attributes exposed by the consumer.
|
|
19
19
|
#
|
data/lib/oauth/signature/base.rb
CHANGED
|
@@ -9,11 +9,11 @@ module OAuth
|
|
|
9
9
|
module Signature
|
|
10
10
|
# Base class for OAuth signature implementations.
|
|
11
11
|
#
|
|
12
|
-
# Includes {
|
|
12
|
+
# Includes {OAuth::AUTH_SANITIZER::FilteredAttributes} so inspect output redacts
|
|
13
13
|
# secret-bearing fields captured during signature construction.
|
|
14
14
|
class Base
|
|
15
15
|
include OAuth::Helper
|
|
16
|
-
include
|
|
16
|
+
include OAuth::AUTH_SANITIZER::FilteredAttributes
|
|
17
17
|
|
|
18
18
|
# Signature construction options.
|
|
19
19
|
#
|
data/lib/oauth/tokens/token.rb
CHANGED
|
@@ -3,12 +3,12 @@
|
|
|
3
3
|
module OAuth
|
|
4
4
|
# Superclass for the various tokens used by OAuth.
|
|
5
5
|
#
|
|
6
|
-
# Includes {
|
|
6
|
+
# Includes {OAuth::AUTH_SANITIZER::FilteredAttributes} so inspect output redacts the
|
|
7
7
|
# token value and token secret while leaving object identity and non-sensitive
|
|
8
8
|
# fields visible.
|
|
9
9
|
class Token
|
|
10
10
|
include OAuth::Helper
|
|
11
|
-
include
|
|
11
|
+
include OAuth::AUTH_SANITIZER::FilteredAttributes
|
|
12
12
|
|
|
13
13
|
# Token attributes.
|
|
14
14
|
#
|
data/lib/oauth/version.rb
CHANGED
data/lib/oauth.rb
CHANGED
data/sig/oauth/consumer.rbs
CHANGED
data/sig/oauth/tokens/token.rbs
CHANGED
data.tar.gz.sig
CHANGED
|
Binary file
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: oauth
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.1.
|
|
4
|
+
version: 1.1.5
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Pelle Braendgaard
|
|
@@ -54,7 +54,7 @@ dependencies:
|
|
|
54
54
|
version: '0.1'
|
|
55
55
|
- - ">="
|
|
56
56
|
- !ruby/object:Gem::Version
|
|
57
|
-
version: 0.1.
|
|
57
|
+
version: 0.1.3
|
|
58
58
|
type: :runtime
|
|
59
59
|
prerelease: false
|
|
60
60
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -64,7 +64,7 @@ dependencies:
|
|
|
64
64
|
version: '0.1'
|
|
65
65
|
- - ">="
|
|
66
66
|
- !ruby/object:Gem::Version
|
|
67
|
-
version: 0.1.
|
|
67
|
+
version: 0.1.3
|
|
68
68
|
- !ruby/object:Gem::Dependency
|
|
69
69
|
name: oauth-tty
|
|
70
70
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -74,7 +74,7 @@ dependencies:
|
|
|
74
74
|
version: '1.0'
|
|
75
75
|
- - ">="
|
|
76
76
|
- !ruby/object:Gem::Version
|
|
77
|
-
version: 1.0.
|
|
77
|
+
version: 1.0.8
|
|
78
78
|
type: :runtime
|
|
79
79
|
prerelease: false
|
|
80
80
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -84,7 +84,7 @@ dependencies:
|
|
|
84
84
|
version: '1.0'
|
|
85
85
|
- - ">="
|
|
86
86
|
- !ruby/object:Gem::Version
|
|
87
|
-
version: 1.0.
|
|
87
|
+
version: 1.0.8
|
|
88
88
|
- !ruby/object:Gem::Dependency
|
|
89
89
|
name: snaky_hash
|
|
90
90
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -292,6 +292,9 @@ dependencies:
|
|
|
292
292
|
- - "~>"
|
|
293
293
|
- !ruby/object:Gem::Version
|
|
294
294
|
version: '3.0'
|
|
295
|
+
- - ">="
|
|
296
|
+
- !ruby/object:Gem::Version
|
|
297
|
+
version: 3.0.6
|
|
295
298
|
type: :development
|
|
296
299
|
prerelease: false
|
|
297
300
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -299,6 +302,9 @@ dependencies:
|
|
|
299
302
|
- - "~>"
|
|
300
303
|
- !ruby/object:Gem::Version
|
|
301
304
|
version: '3.0'
|
|
305
|
+
- - ">="
|
|
306
|
+
- !ruby/object:Gem::Version
|
|
307
|
+
version: 3.0.6
|
|
302
308
|
- !ruby/object:Gem::Dependency
|
|
303
309
|
name: kettle-test
|
|
304
310
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -308,7 +314,7 @@ dependencies:
|
|
|
308
314
|
version: '1.0'
|
|
309
315
|
- - ">="
|
|
310
316
|
- !ruby/object:Gem::Version
|
|
311
|
-
version: 1.0.
|
|
317
|
+
version: 1.0.10
|
|
312
318
|
type: :development
|
|
313
319
|
prerelease: false
|
|
314
320
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -318,7 +324,7 @@ dependencies:
|
|
|
318
324
|
version: '1.0'
|
|
319
325
|
- - ">="
|
|
320
326
|
- !ruby/object:Gem::Version
|
|
321
|
-
version: 1.0.
|
|
327
|
+
version: 1.0.10
|
|
322
328
|
- !ruby/object:Gem::Dependency
|
|
323
329
|
name: ruby-progressbar
|
|
324
330
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -342,7 +348,7 @@ dependencies:
|
|
|
342
348
|
version: '1.0'
|
|
343
349
|
- - ">="
|
|
344
350
|
- !ruby/object:Gem::Version
|
|
345
|
-
version: 1.0.
|
|
351
|
+
version: 1.0.3
|
|
346
352
|
type: :development
|
|
347
353
|
prerelease: false
|
|
348
354
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -352,7 +358,7 @@ dependencies:
|
|
|
352
358
|
version: '1.0'
|
|
353
359
|
- - ">="
|
|
354
360
|
- !ruby/object:Gem::Version
|
|
355
|
-
version: 1.0.
|
|
361
|
+
version: 1.0.3
|
|
356
362
|
- !ruby/object:Gem::Dependency
|
|
357
363
|
name: gitmoji-regex
|
|
358
364
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -450,6 +456,7 @@ files:
|
|
|
450
456
|
- RUBOCOP.md
|
|
451
457
|
- SECURITY.md
|
|
452
458
|
- lib/oauth.rb
|
|
459
|
+
- lib/oauth/auth_sanitizer.rb
|
|
453
460
|
- lib/oauth/client.rb
|
|
454
461
|
- lib/oauth/client/action_controller_request.rb
|
|
455
462
|
- lib/oauth/client/em_http.rb
|
|
@@ -498,10 +505,10 @@ licenses:
|
|
|
498
505
|
- MIT
|
|
499
506
|
metadata:
|
|
500
507
|
homepage_uri: https://oauth.galtzo.com/
|
|
501
|
-
source_code_uri: https://github.com/ruby-oauth/oauth/tree/v1.1.
|
|
502
|
-
changelog_uri: https://github.com/ruby-oauth/oauth/blob/v1.1.
|
|
508
|
+
source_code_uri: https://github.com/ruby-oauth/oauth/tree/v1.1.5
|
|
509
|
+
changelog_uri: https://github.com/ruby-oauth/oauth/blob/v1.1.5/CHANGELOG.md
|
|
503
510
|
bug_tracker_uri: https://github.com/ruby-oauth/oauth/issues
|
|
504
|
-
documentation_uri: https://www.rubydoc.info/gems/oauth/1.1.
|
|
511
|
+
documentation_uri: https://www.rubydoc.info/gems/oauth/1.1.5
|
|
505
512
|
mailing_list_uri: https://groups.google.com/g/oauth-ruby
|
|
506
513
|
funding_uri: https://github.com/sponsors/pboling
|
|
507
514
|
wiki_uri: https://gitlab.com/ruby-oauth/oauth/-/wiki
|
metadata.gz.sig
CHANGED
|
Binary file
|