omniauth-auth0 3.1.0 → 3.2.0

data/spec/spec_helper.rb

@@ -43,6 +43,7 @@ RSpec.configure do |config|
         enable :sessions
         set :show_exceptions, false
         set :session_secret, '9771aff2c634257053c62ba072c54754bd2cc92739b37e81c3eda505da48c2ec'
+        set :session_store, Rack::Session::Cookie
       end
 
       use OmniAuth::Builder do

metadata

@@ -1,15 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-auth0
 version: !ruby/object:Gem::Version
-  version: 3.1.0
+  version: 3.2.0
 platform: ruby
 authors:
 - Auth0
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-12-08 00:00:00.000000000 Z
+date: 2026-05-28 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2'
 - !ruby/object:Gem::Dependency
   name: omniauth
   requirement: !ruby/object:Gem::Requirement
@@ -64,22 +78,36 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- ".circleci/config.yml"
 - ".devcontainer/devcontainer.json"
-- ".gemrelease"
 - ".github/CODEOWNERS"
+- ".github/ISSUE_TEMPLATE/Bug Report.yml"
+- ".github/ISSUE_TEMPLATE/Feature Request.yml"
 - ".github/ISSUE_TEMPLATE/config.yml"
-- ".github/ISSUE_TEMPLATE/feature_request.md"
-- ".github/ISSUE_TEMPLATE/report_a_bug.md"
 - ".github/PULL_REQUEST_TEMPLATE.md"
+- ".github/actions/get-prerelease/action.yml"
+- ".github/actions/get-release-notes/action.yml"
+- ".github/actions/get-version/action.yml"
+- ".github/actions/release-create/action.yml"
+- ".github/actions/rl-scanner/action.yml"
+- ".github/actions/rubygems-publish/action.yml"
+- ".github/actions/setup/action.yml"
+- ".github/actions/tag-exists/action.yml"
+- ".github/dependabot.yml"
 - ".github/stale.yml"
-- ".github/workflows/semgrep.yml"
+- ".github/workflows/codeql.yml"
+- ".github/workflows/matrix.json"
+- ".github/workflows/publish.yml"
+- ".github/workflows/rl-scanner.yml"
+- ".github/workflows/ruby-release.yml"
+- ".github/workflows/snyk.yml"
+- ".github/workflows/test.yml"
 - ".gitignore"
 - ".rspec"
 - ".rubocop.yml"
 - ".semgrepignore"
 - ".shiprc"
 - ".snyk"
+- ".version"
 - CHANGELOG.md
 - CONTRIBUTING.md
 - EXAMPLES.md
@@ -95,11 +123,13 @@ files:
 - lib/omniauth-auth0.rb
 - lib/omniauth-auth0/version.rb
 - lib/omniauth/auth0/errors.rb
+- lib/omniauth/auth0/jwt_token.rb
 - lib/omniauth/auth0/jwt_validator.rb
 - lib/omniauth/auth0/telemetry.rb
 - lib/omniauth/strategies/auth0.rb
 - omniauth-auth0.gemspec
 - opslevel.yml
+- spec/omniauth/auth0/jwt_token_spec.rb
 - spec/omniauth/auth0/jwt_validator_spec.rb
 - spec/omniauth/auth0/telemetry_spec.rb
 - spec/omniauth/strategies/auth0_spec.rb
@@ -124,13 +154,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.22
+rubygems_version: 3.4.19
 signing_key:
 specification_version: 4
 summary: OmniAuth OAuth2 strategy for the Auth0 platform.
-test_files:
-- spec/omniauth/auth0/jwt_validator_spec.rb
-- spec/omniauth/auth0/telemetry_spec.rb
-- spec/omniauth/strategies/auth0_spec.rb
-- spec/resources/jwks.json
-- spec/spec_helper.rb
+test_files: []

data/.circleci/config.yml

@@ -1,63 +0,0 @@
-version: 2.1
-orbs:
-  ship: auth0/ship@0
-  codecov: codecov/codecov@3
-
-matrix_rubyversions: &matrix_rubyversions
-  matrix:
-    parameters:
-      rubyversion: ["2.7", "3.0", "3.1"]
-# Default version of ruby to use for lint and publishing
-default_rubyversion: &default_rubyversion "2.7"
-
-executors:
-  ruby:
-    parameters:
-      rubyversion:
-        type: string
-        default: *default_rubyversion
-    docker:
-      - image: cimg/ruby:<< parameters.rubyversion >>
-
-jobs:
-  run-tests:
-    parameters:
-      rubyversion:
-        type: string
-        default: *default_rubyversion
-    executor:
-      name: ruby
-      rubyversion: "<< parameters.rubyversion >>"
-    steps:
-      - checkout
-      - restore_cache:
-          keys:
-            - gems-v2-{{ checksum "Gemfile" }}
-            - gems-v2-
-      - run: |
-          echo 'export BUNDLER_VERSION=$(cat Gemfile.lock | tail -1 | tr -d " ")' >> $BASH_ENV
-          source $BASH_ENV
-          gem install bundler
-          bundle check || bundle install
-      - save_cache:
-          key: gems-v2--{{ checksum "Gemfile" }}
-          paths:
-            - vendor/bundle
-      - run: bundle exec rake spec
-      - codecov/upload
-
-workflows:
-  tests:
-    jobs:
-      - run-tests:
-          <<: *matrix_rubyversions
-      - ship/ruby-publish:
-          context:
-            - publish-rubygems
-            - publish-gh
-          filters:
-            branches:
-              only:
-                - master
-          requires:
-            - run-tests

data/.gemrelease

@@ -1,2 +0,0 @@
-bump:
-  tag: true

data/.github/ISSUE_TEMPLATE/feature_request.md

@@ -1,39 +0,0 @@
----
-name: Feature request
-about: Suggest an idea or a feature for this project
-title: ''
-labels: feature request
-assignees: ''
----
-
-<!--
-**Please do not report security vulnerabilities here**. The Responsible Disclosure Program (https://auth0.com/whitehat) details the procedure for disclosing security issues.
-
-Thank you in advance for helping us to improve this library! Your attention to detail here is greatly appreciated and will help us respond as quickly as possible. For general support or usage questions, use the Auth0 Community (https://community.auth0.com/) or Auth0 Support (https://support.auth0.com/). Finally, to avoid duplicates, please search existing Issues before submitting one here.
-
-By submitting an Issue to this repository, you agree to the terms within the Auth0 Code of Conduct (https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md).
--->
-
-### Describe the problem you'd like to have solved
-
-<!--
-> A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
--->
-
-### Describe the ideal solution
-
-<!--
-> A clear and concise description of what you want to happen.
--->
-
-## Alternatives and current work-arounds
-
-<!--
-> A clear and concise description of any alternatives you've considered or any work-arounds that are currently in place.
--->
-
-### Additional information, if any
-
-<!--
-> Add any other context or screenshots about the feature request here.
--->

data/.github/ISSUE_TEMPLATE/report_a_bug.md

@@ -1,55 +0,0 @@
----
-name: Report a bug
-about: Have you found a bug or issue? Create a bug report for this SDK
-title: ''
-labels: bug report
-assignees: ''
----
-
-<!--
-**Please do not report security vulnerabilities here**. The Responsible Disclosure Program (https://auth0.com/whitehat) details the procedure for disclosing security issues.
-
-Thank you in advance for helping us to improve this library! Please read through the template below and answer all relevant questions. Your additional work here is greatly appreciated and will help us respond as quickly as possible. For general support or usage questions, use the Auth0 Community (https://community.auth0.com/) or Auth0 Support (https://support.auth0.com/). Finally, to avoid duplicates, please search existing Issues before submitting one here.
-
-By submitting an Issue to this repository, you agree to the terms within the Auth0 Code of Conduct (https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md).
--->
-
-### Describe the problem
-
-<!--
-> Provide a clear and concise description of the issue
--->
-
-### What was the expected behavior?
-
-<!--
-> Tell us about the behavior you expected to see
--->
-
-### Reproduction
-<!--
-> Detail the steps taken to reproduce this error, and whether this issue can be reproduced consistently or if it is intermittent.
-> **Note**: If clear, reproducable steps or the smallest sample app demonstrating misbehavior cannot be provided, we may not be able to follow up on this bug report.
-
-> Where possible, please include:
->
-> - The smallest possible sample app that reproduces the undesirable behavior
-> - Log files (redact/remove sensitive information)
-> - Application settings (redact/remove sensitive information)
-> - Screenshots
--->
-
-- Step 1..
-- Step 2..
-- ...
-
-### Environment
-
-<!--
-> Please provide the following:
--->
-
-- **Version of this library used:**
-- **Which framework are you using, if applicable:**
-- **Other modules/plugins/libraries that might be involved:**
-- **Any other relevant information you think would be useful:**

data/.github/workflows/semgrep.yml

@@ -1,24 +0,0 @@
-name: Semgrep
-
-on:
-  pull_request: {}
-
-  push:
-    branches: ["master", "main"]
-
-  schedule:
-    - cron: '30 0 1,15 * *'
-
-jobs:
-  semgrep:
-    name: Scan
-    runs-on: ubuntu-latest
-    container:
-      image: returntocorp/semgrep
-    if: (github.actor != 'dependabot[bot]')
-    steps:
-      - uses: actions/checkout@v3
-
-      - run: semgrep ci
-        env:
-          SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}