omniauth-ebay-oauth 1.0.0 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +7 -0
  3. data/README.md +4 -0
  4. data/lib/omniauth/ebay-oauth/version.rb +1 -1
  5. data/lib/omniauth/strategies/ebay_oauth.rb +1 -1
  6. data/spec/omniauth/strategies/ebay_oauth_spec.rb +5 -8
  7. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: ab0104101de3fbd57ee567e17d4d8439528ce4ca6acb2c80ad7d35733d1e8e5d
4
- data.tar.gz: 1cba5d5cbf2821445869057fe086aaf50983043090171a225c7d1cef66bf502b
3
+ metadata.gz: 0f00d0daffc4a2c20bcfc95aae0f3d4ed4850f8d512f0539321785d92477d02e
4
+ data.tar.gz: 91b24a5437389617ba8dc70b8d9429080945464dafa0df32a163b14cc64eeb36
5
5
  SHA512:
6
- metadata.gz: fcc4e6adda2ce0b2a6a3aea277c7452e13b6bc8244c5162ced049d8e981918e0858a84dbbf43ad5ba0591327e1dba30e3b3c66bb540e869e340945ff3fba130f
7
- data.tar.gz: edbe8b21811965d437b6a76e863d052a5f08da7fb64440e297d86245085bb034cf8237d99b54308614b834201884011ed96b384e52e63cfeaaeaa1db793f659c
6
+ metadata.gz: c7ea7e859bdaa6acd10eab5739880fef484e89414cdeed9aed8001af3a713e01055f4294f0970d3f0c3f95b373679974e25758c840dfea3e5cfb46f927c85aeb
7
+ data.tar.gz: 9b419002a3618d8ebea03be43f1734d2b3b94256807f1a5057d337061edfe2d3139e2ef2b6c976dd9772760e8faf9a97ea8e1d50d78b8874b573bf1a0dd086bf
data/CHANGELOG.md CHANGED
@@ -4,6 +4,12 @@ All notable changes to this project will be documented in this file.
4
4
  The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/)
5
5
  and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
6
6
 
7
+ ## [1.0.1] - 2021-09-01
8
+
9
+ ### Fixed
10
+
11
+ - Ruby 3.0 compatibility (keyword arguments usage)
12
+
7
13
  ## [1.0.0] - 2021-04-01
8
14
 
9
15
  Mark gem as stable
@@ -64,6 +70,7 @@ Mark gem as stable
64
70
  - Initial release: fully working strategy. @ignat-z
65
71
 
66
72
 
73
+ [1.0.1]: https://github.com/evilmartians/omniauth-ebay-oauth/compare/v1.0.0...v1.0.1
67
74
  [1.0.0]: https://github.com/evilmartians/omniauth-ebay-oauth/compare/v0.5.0...v1.0.0
68
75
  [0.5.0]: https://github.com/evilmartians/omniauth-ebay-oauth/compare/v0.4.0...v0.5.0
69
76
  [0.4.0]: https://github.com/evilmartians/omniauth-ebay-oauth/compare/v0.3.0...v0.4.0
data/README.md CHANGED
@@ -90,6 +90,10 @@ end
90
90
  get '/auth/ebay/callback' do
91
91
  "Hello, #{request.env['omniauth.auth'].dig('info', 'name')}"
92
92
  end
93
+
94
+ # OmniAuth disables starting authentication with GET request to mitigate CVE-2015-9284.
95
+ # For testing purposes we can enable it, but for production it is better to use POST with CSRF protection/
96
+ OmniAuth.config.allowed_request_methods += %i[get]
93
97
  ```
94
98
 
95
99
 
data/lib/omniauth/ebay-oauth/version.rb CHANGED
@@ -2,6 +2,6 @@
2
2
 
3
3
  module OmniAuth
4
4
  module EbayOauth
5
- VERSION = '1.0.0'
5
+ VERSION = '1.0.1'
6
6
  end
7
7
  end
data/lib/omniauth/strategies/ebay_oauth.rb CHANGED
@@ -67,7 +67,7 @@ module OmniAuth
67
67
  def user_info
68
68
  @user_info ||=
69
69
  OmniAuth::EbayOauth::UserInfo.new(OmniAuth::EbayOauth::UserInfoRequest
70
- .new(access_token.token, client.options).call)
70
+ .new(access_token.token, **client.options).call)
71
71
  end
72
72
  end
73
73
  end
data/spec/omniauth/strategies/ebay_oauth_spec.rb CHANGED
@@ -5,6 +5,8 @@ require 'spec_helper'
5
5
  RSpec.describe OmniAuth::Strategies::EbayOauth do
6
6
  let(:options) { {} }
7
7
 
8
+ before { subject.setup_phase }
9
+
8
10
  subject { described_class.new(nil, options) }
9
11
 
10
12
  describe '#callback_url' do
@@ -16,8 +18,6 @@ RSpec.describe OmniAuth::Strategies::EbayOauth do
16
18
  end
17
19
 
18
20
  describe '#options' do
19
- before { subject.setup_phase }
20
-
21
21
  it 'default mode is sandbox' do
22
22
  expect(subject.options.client_options.user_info_endpoint)
23
23
  .to eq('https://api.sandbox.ebay.com/ws/api.dll')
@@ -112,15 +112,12 @@ RSpec.describe OmniAuth::Strategies::EbayOauth do
112
112
  describe '#user_info' do
113
113
  let(:access_token) { instance_double(OAuth2::AccessToken, token: :token) }
114
114
  let(:user_info) { instance_double(OmniAuth::EbayOauth::UserInfo) }
115
- let(:request) do
116
- instance_double(OmniAuth::EbayOauth::UserInfoRequest, call: {})
117
- end
118
115
 
119
116
  before do
120
117
  expect(subject).to receive(:access_token).and_return(access_token)
121
- expect(OmniAuth::EbayOauth::UserInfoRequest)
122
- .to receive(:new).and_return(request)
123
- expect(OmniAuth::EbayOauth::UserInfo)
118
+ allow_any_instance_of(OmniAuth::EbayOauth::UserInfoRequest)
119
+ .to receive(:call).and_return({})
120
+ allow(OmniAuth::EbayOauth::UserInfo)
124
121
  .to receive(:new).with({}).and_return(user_info)
125
122
  end
126
123
 
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: omniauth-ebay-oauth
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.0
4
+ version: 1.0.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Ignat Zakrevsky
@@ -9,7 +9,7 @@ authors:
9
9
  autorequire:
10
10
  bindir: bin
11
11
  cert_chain: []
12
- date: 2021-04-01 00:00:00.000000000 Z
12
+ date: 2021-09-01 00:00:00.000000000 Z
13
13
  dependencies:
14
14
  - !ruby/object:Gem::Dependency
15
15
  name: omniauth
@@ -182,7 +182,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
182
182
  - !ruby/object:Gem::Version
183
183
  version: '0'
184
184
  requirements: []
185
- rubygems_version: 3.1.4
185
+ rubygems_version: 3.1.6
186
186
  signing_key:
187
187
  specification_version: 4
188
188
  summary: OmniAuth strategy for new eBay OAuth API