omniauth-google2 1.0.2 → 1.0.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c39f931b6248a5454aece5b09dee82f8e95ea91042528831cc794ccef32794a6
-  data.tar.gz: 426603665d998f99089e04027bd4fe70e1a7314862d000d8c94f597f8c98cbdf
+  metadata.gz: ff2d6d6fe710bb806e341d2b2f432389f407f1f100724c522189862321f1e318
+  data.tar.gz: e533968db114b023d3ea76cb4e6229aa3eb7f192379fa84b7ca36c3bbc4fd686
 SHA512:
-  metadata.gz: a69d38e981748b560b8c1883c43f824009c7d63689a7bd52ff929fc766b7be089be2a2e6d758627633f4ddbc43d34a11a7a37528f23e2894aeb662d089d7eb25
-  data.tar.gz: 70e5edf194066b62a11108cac408581fb9c1f06d187fe8f80f5e4ab80a0b68e50e82a72411b82a89b1cc3405f4fd1abc6b1286dba112f8fc2a93e317e65f67d1
+  metadata.gz: 7a8849d96087b7f2be41c5995eb3492c63a34dab3541b1b655432df6df0335da0132594c8b3de96c9ef12252a4001822d053c0428aa377811f016510ab3a509a
+  data.tar.gz: 4f0c893cd4aa9942ebfde4cc44b1ff9c9b6213e03664bb8dbb7bd4faec7d6028137666b234bff79abcbf5aff3802e329635cc4ffaa6b570c20f64de7a61e8557

data/README.md

@@ -1,4 +1,4 @@
-# OmniAuth Google2 Strategy
+# OmniAuth Google Strategy
 
 [![Test](https://github.com/icoretech/omniauth-google2/actions/workflows/test.yml/badge.svg?branch=main)](https://github.com/icoretech/omniauth-google2/actions/workflows/test.yml?query=branch%3Amain)
 [![Gem Version](https://badge.fury.io/rb/omniauth-google2.svg)](https://badge.fury.io/rb/omniauth-google2)
@@ -44,11 +44,12 @@ end
 ## Provider App Setup
 
 - Google Cloud Console: <https://console.cloud.google.com/apis/credentials>
-- Register callback URL (example): `https://your-app.example.com/auth/google_oauth2/callback`
+- Register callback URL (example): `https://your-app.example.com/auth/google2/callback` (or `google_oauth2` if using compat provider)
 
 ## Options
 
 Supported request options include:
+
 - `scope` (default: `openid email profile`)
 - `access_type` (default: `offline`)
 - `include_granted_scopes`
@@ -131,6 +132,7 @@ RAILS_VERSION='~> 8.1.0' bundle exec rake test_rails_integration
 ## Endpoints
 
 This gem uses Google OpenID Connect discovery endpoints:
+
 - `https://accounts.google.com/o/oauth2/v2/auth`
 - `https://oauth2.googleapis.com/token`
 - `https://openidconnect.googleapis.com/v1/userinfo`
@@ -138,6 +140,7 @@ This gem uses Google OpenID Connect discovery endpoints:
 ## Smoke Variants
 
 After a baseline smoke succeeds, run these extra request-phase variants:
+
 - `?prompt=consent select_account`
 - `?login_hint=user@example.com`
 - `?hd=example.com`

data/lib/omniauth/google2/version.rb

@@ -2,6 +2,6 @@
 
 module OmniAuth
   module Google2
-    VERSION = '1.0.2'
+    VERSION = "1.0.3"
   end
 end

data/lib/omniauth/google2.rb

@@ -1,4 +1,4 @@
 # frozen_string_literal: true
 
-require 'omniauth/google2/version'
-require 'omniauth/strategies/google2'
+require "omniauth/google2/version"
+require "omniauth/strategies/google2"

data/lib/omniauth/strategies/google2.rb

@@ -1,68 +1,68 @@
 # frozen_string_literal: true
 
-require 'jwt'
-require 'omniauth-oauth2'
+require "jwt"
+require "omniauth-oauth2"
 
 module OmniAuth
   module Strategies
     # OmniAuth strategy for Google OAuth2/OpenID Connect.
     class Google2 < OmniAuth::Strategies::OAuth2
-      BASE_SCOPE_URL = 'https://www.googleapis.com/auth/'
+      BASE_SCOPE_URL = "https://www.googleapis.com/auth/"
       BASE_SCOPES = %w[openid email profile].freeze
-      DEFAULT_SCOPE = 'openid email profile'
-      USER_INFO_URL = 'https://openidconnect.googleapis.com/v1/userinfo'
+      DEFAULT_SCOPE = "openid email profile"
+      USER_INFO_URL = "https://openidconnect.googleapis.com/v1/userinfo"
 
-      option :name, 'google2'
+      option :name, "google2"
       option :authorize_options,
-             %i[scope state access_type include_granted_scopes prompt login_hint hd redirect_uri nonce]
+        %i[scope state access_type include_granted_scopes prompt login_hint hd redirect_uri nonce]
       option :scope, DEFAULT_SCOPE
       option :skip_jwt, false
 
       option :client_options,
-             site: 'https://openidconnect.googleapis.com',
-             authorize_url: 'https://accounts.google.com/o/oauth2/v2/auth',
-             token_url: 'https://oauth2.googleapis.com/token',
-             connection_opts: {
-               headers: {
-                 user_agent: 'icoretech-omniauth-google2 gem',
-                 accept: 'application/json',
-                 content_type: 'application/json'
-               }
-             }
-
-      uid { raw_info['sub'] || raw_info['id'].to_s }
+        site: "https://openidconnect.googleapis.com",
+        authorize_url: "https://accounts.google.com/o/oauth2/v2/auth",
+        token_url: "https://oauth2.googleapis.com/token",
+        connection_opts: {
+          headers: {
+            user_agent: "icoretech-omniauth-google2 gem",
+            accept: "application/json",
+            content_type: "application/json"
+          }
+        }
+
+      uid { raw_info["sub"] || raw_info["id"].to_s }
 
       info do
         {
-          name: raw_info['name'],
-          email: raw_info['email_verified'] ? raw_info['email'] : nil,
-          unverified_email: raw_info['email'],
-          email_verified: raw_info['email_verified'],
-          first_name: raw_info['given_name'],
-          last_name: raw_info['family_name'],
-          image: raw_info['picture'],
-          urls: raw_info['profile'] ? { google: raw_info['profile'] } : nil
+          name: raw_info["name"],
+          email: raw_info["email_verified"] ? raw_info["email"] : nil,
+          unverified_email: raw_info["email"],
+          email_verified: raw_info["email_verified"],
+          first_name: raw_info["given_name"],
+          last_name: raw_info["family_name"],
+          image: raw_info["picture"],
+          urls: raw_info["profile"] ? {google: raw_info["profile"]} : nil
         }.compact
       end
 
       credentials do
         {
-          'token' => access_token.token,
-          'refresh_token' => access_token.refresh_token,
-          'expires_at' => access_token.expires_at,
-          'expires' => access_token.expires?,
-          'scope' => token_scope
+          "token" => access_token.token,
+          "refresh_token" => access_token.refresh_token,
+          "expires_at" => access_token.expires_at,
+          "expires" => access_token.expires?,
+          "scope" => token_scope
         }.compact
       end
 
       extra do
-        data = { 'raw_info' => raw_info }
-        id_token = access_token['id_token']
+        data = {"raw_info" => raw_info}
+        id_token = access_token["id_token"]
         return data if blank?(id_token)
 
-        data['id_token'] = id_token
+        data["id_token"] = id_token
         decoded = decode_id_token(id_token)
-        data['id_info'] = decoded if decoded
+        data["id_info"] = decoded if decoded
         data
       end
 
@@ -70,7 +70,7 @@ module OmniAuth
         super.tap do |params|
           apply_request_authorize_overrides(params)
           params[:scope] = normalize_scope(params[:scope] || options[:scope])
-          params[:access_type] ||= 'offline'
+          params[:access_type] ||= "offline"
           params[:include_granted_scopes] = normalize_include_granted_scopes(params[:include_granted_scopes])
           persist_authorize_state(params)
         end
@@ -87,7 +87,7 @@ module OmniAuth
 
       # Prevent authorization response params from being appended to redirect_uri.
       def query_string
-        return '' if request.params['code']
+        return "" if request.params["code"]
 
         super
       end
@@ -96,8 +96,8 @@ module OmniAuth
 
       def normalize_scope(raw_scope)
         raw_scope.to_s.split(/[\s,]+/).reject(&:empty?).map do |scope|
-          scope.start_with?('https://') || BASE_SCOPES.include?(scope) ? scope : "#{BASE_SCOPE_URL}#{scope}"
-        end.join(' ')
+          (scope.start_with?("https://") || BASE_SCOPES.include?(scope)) ? scope : "#{BASE_SCOPE_URL}#{scope}"
+        end.join(" ")
       end
 
       def apply_request_authorize_overrides(params)
@@ -108,15 +108,15 @@ module OmniAuth
       end
 
       def normalize_include_granted_scopes(value)
-        value == true ? 'true' : value
+        (value == true) ? "true" : value
       end
 
       def persist_authorize_state(params)
-        session['omniauth.state'] = params[:state] if params[:state]
+        session["omniauth.state"] = params[:state] if params[:state]
       end
 
       def token_scope
-        access_token.params['scope'] || access_token['scope']
+        access_token.params["scope"] || access_token["scope"]
       end
 
       def decode_id_token(token)
@@ -135,10 +135,10 @@ module OmniAuth
 
     # Backward-compatible strategy name for existing `google_oauth2` callback paths.
     class GoogleOauth2 < Google2
-      option :name, 'google_oauth2'
+      option :name, "google_oauth2"
     end
   end
 end
 
-OmniAuth.config.add_camelization 'google2', 'Google2'
-OmniAuth.config.add_camelization 'google_oauth2', 'GoogleOauth2'
+OmniAuth.config.add_camelization "google2", "Google2"
+OmniAuth.config.add_camelization "google_oauth2", "GoogleOauth2"

data/lib/omniauth-google2.rb

@@ -1,3 +1,3 @@
 # frozen_string_literal: true
 
-require 'omniauth/google2'
+require "omniauth/google2"

data/omniauth-google2.gemspec

@@ -1,36 +1,36 @@
 # frozen_string_literal: true
 
-lib = File.expand_path('lib', __dir__)
+lib = File.expand_path("lib", __dir__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require 'omniauth/google2/version'
+require "omniauth/google2/version"
 
 Gem::Specification.new do |spec|
-  spec.name = 'omniauth-google2'
+  spec.name = "omniauth-google2"
   spec.version = OmniAuth::Google2::VERSION
-  spec.authors = ['Claudio Poli']
-  spec.email = ['masterkain@gmail.com']
+  spec.authors = ["Claudio Poli"]
+  spec.email = ["masterkain@gmail.com"]
 
-  spec.summary = 'OmniAuth strategy for Google OAuth2/OpenID Connect authentication.'
+  spec.summary = "OmniAuth strategy for Google OAuth2/OpenID Connect authentication."
   spec.description =
-    'OAuth2/OpenID Connect strategy for OmniAuth that authenticates users with Google and exposes profile metadata.'
-  spec.homepage = 'https://github.com/icoretech/omniauth-google2'
-  spec.license = 'MIT'
-  spec.required_ruby_version = '>= 3.2'
+    "OAuth2/OpenID Connect strategy for OmniAuth that authenticates users with Google and exposes profile metadata."
+  spec.homepage = "https://github.com/icoretech/omniauth-google2"
+  spec.license = "MIT"
+  spec.required_ruby_version = ">= 3.2"
 
-  spec.metadata['source_code_uri'] = 'https://github.com/icoretech/omniauth-google2'
-  spec.metadata['bug_tracker_uri'] = 'https://github.com/icoretech/omniauth-google2/issues'
-  spec.metadata['changelog_uri'] = 'https://github.com/icoretech/omniauth-google2/releases'
-  spec.metadata['rubygems_mfa_required'] = 'true'
+  spec.metadata["source_code_uri"] = "https://github.com/icoretech/omniauth-google2"
+  spec.metadata["bug_tracker_uri"] = "https://github.com/icoretech/omniauth-google2/issues"
+  spec.metadata["changelog_uri"] = "https://github.com/icoretech/omniauth-google2/releases"
+  spec.metadata["rubygems_mfa_required"] = "true"
 
   spec.files = Dir[
-    'lib/**/*.rb',
-    'README*',
-    'LICENSE*',
-    '*.gemspec'
+    "lib/**/*.rb",
+    "README*",
+    "LICENSE*",
+    "*.gemspec"
   ]
-  spec.require_paths = ['lib']
+  spec.require_paths = ["lib"]
 
-  spec.add_dependency 'cgi', '>= 0.3.6'
-  spec.add_dependency 'jwt', '>= 2.9.2'
-  spec.add_dependency 'omniauth-oauth2', '>= 1.8', '< 2.0'
+  spec.add_dependency "cgi", ">= 0.3.6"
+  spec.add_dependency "jwt", ">= 2.9.2"
+  spec.add_dependency "omniauth-oauth2", ">= 1.8", "< 2.0"
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-google2
 version: !ruby/object:Gem::Version
-  version: 1.0.2
+  version: 1.0.3
 platform: ruby
 authors:
 - Claudio Poli