omniauth-identity 3.1.4 → 3.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1299ed56a1450bd936c5b4f7345901c81d3e485cd2191b778074c058344c4d51
-  data.tar.gz: 8b82be0d7c38e24fa01f5741d184c9e27fa6b842d863dc2912b6b6e3a1ac2b6a
+  metadata.gz: 8f528159624b770ade56aa4237743e051de3a4f3563644987aaa94f93e20afcf
+  data.tar.gz: f598bd8e275ebdf6ff6dc8b715aa5902fda8fa96f10c5b9105215a148451a34a
 SHA512:
-  metadata.gz: a0b274d8ab8950e144fef290d150b294ffe5984764ae25d04b90458e3d44a605e0328141cf00fd09e5b4e295aadeb186f2f3386515997e6f1c8f5eae9de40aeb
-  data.tar.gz: cd20cf2c660f0592b9926fc3deac8f7d87e50f37c57393301f57a093988567b4063df04f6b677b7ba06fd3a562fa46328917097ee7962247f950ccd182560cb8
+  metadata.gz: 84348f43f60496db4c3f670c078ed29408a91d8117bd80ca67a5a7b14470ab5795bdabaa029c183dc04bfe1eedd541d5348d0363fbc0f2942db02db9514eeacc
+  data.tar.gz: 199805e82eb1ae2d50e819c47a54834ada88374fea175a7c99e319a099e862c67efec9946748ce860e5b205cf403133e8fcb0cc14be135082a0a96bf36ea6514

data/CHANGELOG.md

@@ -1,56 +1,135 @@
 # Changelog
 
-All notable changes to this project since v2.0 will be documented in this file.
+[![SemVer 2.0.0][📌semver-img]][📌semver] [![Keep-A-Changelog 1.0.0][📗keep-changelog-img]][📗keep-changelog]
 
-The format is based on [Keep a Changelog v1](https://keepachangelog.com/en/1.0.0/),
-and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.0.0.html).
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog][📗keep-changelog],
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html),
+and [yes][📌major-versions-not-sacred], platform and engine support are part of the [public API][📌semver-breaking].
+Please file a bug if you notice a violation of semantic versioning.
+
+[📌semver]: https://semver.org/spec/v2.0.0.html
+[📌semver-img]: https://img.shields.io/badge/semver-2.0.0-FFDD67.svg?style=flat
+[📌semver-breaking]: https://github.com/semver/semver/issues/716#issuecomment-869336139
+[📌major-versions-not-sacred]: https://tom.preston-werner.com/2022/05/23/major-version-numbers-are-not-sacred.html
+[📗keep-changelog]: https://keepachangelog.com/en/1.0.0/
+[📗keep-changelog-img]: https://img.shields.io/badge/keep--a--changelog-1.0.0-FFDD67.svg?style=flat
 
 ## [Unreleased]
+
 ### Added
+
 ### Changed
+
 ### Deprecated
+
 ### Removed
+
 ### Fixed
+
+- Restored ORM-specific spec rake tasks and made optional ORM spec files avoid
+  loading unavailable adapter gems when the matching appraisal does not include them.
+
 ### Security
 
+## [3.2.0] - 2026-06-05
+
+- TAG: [v3.2.0][3.2.0t]
+- COVERAGE: 94.21% -- 374/397 lines in 12 files
+- BRANCH COVERAGE: 81.82% -- 90/110 branches in 12 files
+- 81.82% documented
+
+### Added
+
+- Added `OmniAuth::Identity::VERSION` as the traditional public version
+  constant, in addition to `OmniAuth::Identity::Version::VERSION`.
+
+### Changed
+
+- Refreshed generated package metadata, support documentation, CI workflows,
+  and development dependency floors from the current kettle-jem template.
+- Made identity model and secure password configuration accessors synchronized
+  so concurrent callers do not race while reading or updating authentication
+  keys, ROM adapter settings, or BCrypt minimum-cost mode.
+
+### Fixed
+
+- Made local `kettle-test` runs skip CouchDB, MongoDB, and RethinkDB adapter
+  specs by default unless the matching service adapter environment variable is enabled.
+- Updated ORM adapter specs to exercise concrete ActiveRecord and Mongoid model classes.
+
+### Security
+
+- Added `auth-sanitizer` integration so identity model `#inspect` output
+  filters password-related attributes by default.
+
+## [3.1.5] - 2025-10-13
+
+- TAG: [v3.1.5][3.1.5t]
+- COVERAGE: 93.58% -- 437/467 lines in 14 files
+- BRANCH COVERAGE: 81.00% -- 81/100 branches in 14 files
+- 92.39% documented
+
+### Added
+
+- Adapter support for Hanami and ROM
+- Complete YARD documentation
+- kettle-dev for easier maintenance & dev tooling
+
 ## [3.1.4] - 2025-07-28
+
 - TAG: [v3.1.4][3.1.4t]
 - COVERAGE:  92.06% -- 348/378 lines in 15 files
 - BRANCH COVERAGE:  79.49% -- 62/78 branches in 15 files
 - 44.44% documented
+
 # Added
+
 - More documentation
 - Tracking maintainability and coverage with QLTY.sh
 - Documentation site
   - https://omniauth-identity.galtzo.com
 - Test against bson v5.1.1
 - Test against locked and unlocked, runtime and development, dependencies
+
 ### Changed
+
 - gemspec metadata
 - Test against latest bundler
 - Develop on ruby@3.4.5
 - Switch to [Appraisal2](https://github.com/appraisal-rb/appraisal2)
 
 ## [3.1.3] - 2025-06-08
+
 - TAG: [v3.1.3][3.1.3t]
 - COVERAGE: 92.06% -- 348/378 lines in 15 files
 - BRANCH COVERAGE: 79.49% -- 62/78 branches in 15 files
 - 44.44% documented
+
 ### Added
+
 - More documentation by @pboling
 - Expanded test suite, covering many more points of the dependency matrix by @pboling
 - Test workflows with latest dependencies and more platform and dep HEADs
+
 ### Changed
+
 - Updated Code of Conduct to Contributor Covenant v2.1
+
 ### Fixed
+
 - Set `SKIP_GEM_SIGNING` in env to allow `gem build` without cryptographic signing requirement by @pboling
   - Useful for linux distros whose package managers sign packages independently
 
 ## [3.1.2] - 2025-05-07
+
 - TAG: [v3.1.2][3.1.2t]
 - COVERAGE: 92.02% -- 346/376 lines in 15 files
 - BRANCH COVERAGE: 79.49% -- 62/78 branches in 15 files
+
 ### Added
+
 - 20 year signing cert expires 2045-04-29 by @pboling
 - Added CITATION.cff by @pboling
 - devcontainer for easier maintenance by @pboling
@@ -58,38 +137,52 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
 - Greatly improved spec suite and CI config by @pboling
   - Testing against JRuby 9.2, 9.3, 9.4, 10.0, and head
   - Testing against many more combinations of Databases, ORMs, Rails, and Ruby versions
+
 ### Changed
+
 - Upgraded Code of Conduct based on Contributor Covenant v2.1 by @pboling
 
 ## [3.1.1] - 2024-11-18
+
 - TAG: [v3.1.1][3.1.1t]
 - COVERAGE: 92.00% -- 345/375 lines in 15 files
 - BRANCH COVERAGE: 80.26% -- 61/76 branches in 15 files
 - 44.44% documented
+
 ### Added
+
 - [PR 130][130] Add SECURITY.md policy by @pboling
 - [PR 130][130] Add Maintainer contact email by @pboling
+
 ### Changed
+
 - [PR 130][130] Require MFA to publish to RubyGems.org by @pboling
 
 [130]: https://github.com/omniauth/omniauth-identity/pull/130
 
 ## [3.1.0] - 2024-11-18
+
 - TAG: [v3.1.0][3.1.0t]
 - COVERAGE: 91.98% -- 344/374 lines in 15 files
 - BRANCH COVERAGE: 80.26% -- 61/76 branches in 15 files
 - 44.44% documented
+
 ### Added
+
 - [PR #123][123] Improve readability in #identity method of OmniAuth::Strategies::Identity by @Xeragus
 - [PR #124][124] Modernized gem structure, and updated dependencies for development by @pboling
   - Gem releases are now cryptographically signed
   - All ORM adapters (except NoBrainer) are tested in CI
 - [PR #127][127] Improved documentation by @pboling
 - [PR #128][128] Instructions for contributing by @pboling
+
 ### Changed
+
 - Deprecate `require 'omniauth/identity'` by @pboling
   - in favor of `require 'omniauth-identity'` (matching the gem name)
+
 ### Fixed
+
 - [PR #120][120] Fix: handling of SCRIPT_NAME for registration_path by @btalbot
 - [PR #122][122] Compatibility with rack v3.1+: use `req.params[]` instead of `req[]` by @emon
   - See: https://github.com/rack/rack/pull/2183
@@ -102,34 +195,49 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
 [120]: https://github.com/omniauth/omniauth-identity/pull/120
 
 ## [3.0.9] - 2021-06-16
+
 - TAG: [v3.0.9][3.0.9t]
+
 ### Fixed
+
 - \[Sequel\] Fixes loading the Sequel adapter, issue reported as [#112](https://github.com/omniauth/omniauth-identity/issues/112)
+
 ### Added
+
 - 📝 Document the Database adapters and drivers the gem currently works with
 
 ## [3.0.8] - 2021-03-24
+
 - TAG: [v3.0.8][3.0.8t]
+
 ### Fixed
+
 - \[Model\] Fixes 2 issues raised in a comment on PR [#108](https://github.com/omniauth/omniauth-identity/pull/108#issuecomment-804456604)
   - When `options[:on_validation]` is set `new`/`save`/`persisted?` logic is used.
   - When `options[:on_validation]` is not set `create`/`persisted?` logic is used.
 
 ## [3.0.7] - 2021-03-23
+
 - TAG: [v3.0.7][3.0.7t]
+
 ### Fixed
+
 - \[ActiveRecord\] Fixed [#110](https://github.com/omniauth/omniauth-identity/issues/110) which prevented `OmniAuth::Identity::Models::ActiveRecord`-based records from saving.
 - \[CouchPotato\] Fixed `OmniAuth::Identity::Models::CouchPotato`'s `#save`.
 - \[Sequel\] Fixed `OmniAuth::Identity::Models::Sequel`'s `#save`.
 - \[Model\] Only define `::create`, `#save`, and `#persisted?` when not already defined.
 - \[Model\] Restore original `info` functionality which set `name` based on `first_name`, `last_name`, or `nickname`
+
 ### Changed
+
 - Upgraded to a newer `OmniAuth::Identity::SecurePassword` ripped from [Rails 6-1-stable](https://github.com/rails/rails/blob/6-1-stable/activemodel/lib/active_model/secure_password.rb)
   - Aeons ago the original was ripped from Rails 3.1, and frozen in time.
     While writing specs, it was discovered to be incompatible with this gem's Sequel adapter.
   - Specs validate that the new version does work.
     In any case, the ripped version is only used when the `has_secure_password` macro is not yet defined in the class.
+
 ### Added
+
 - New specs to cover real use cases and implementations of each ORM model adapter that ships with the gem:
   - ActiveRecord (Polyglot - Many Relational Databases)
   - Sequel (Polyglot - Many Relational Databases)
@@ -138,10 +246,15 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
   - NoBrainer (RethinkDB)
 
 ## [3.0.6] - 2021-03-20
+
 - TAG: [v3.0.6][3.0.6t]
+
 ### Fixed
+
 - Fix breaking changes introduced by [#108](https://github.com/omniauth/omniauth-identity/pull/108) which prevented `:on_validation` from firing
+
 ### Added
+
 - New (or finally documented) options:
   - `:create_identity_link_text` defaults to `'Create an Identity'`
   - `:registration_failure_message` defaults to `'One or more fields were invalid'`
@@ -150,33 +263,49 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
   - `:registration_form_title` defaults to `'Register Identity'`
 
 ## [3.0.5] - 2021-03-19
+
 - TAG: [v3.0.5][3.0.5t]
+
 ### Fixed
+
 - Fix breaking changes introduced by [#86's](https://github.com/omniauth/omniauth-identity/pull/86) introduction of `:on_validation`
+
 ### Added
+
 - Define `#save`, `#persisted?` and `::create` on `Omniauth::Identity::Model`
 - Add `@since` YARD tags to interface methods
 - Refactor `Omniauth::Strategies::Identity.registration_phase` to support `Omniauth::Identity::Model`-inheriting classes that do not define `#save`.
   - This support will be dropped in v4.0.
 
 ## [3.0.4] - 2021-02-14
+
 - TAG: [v3.0.4][3.0.4t]
+
 ### Added
+
 - Add support for [sequel ORM](http://sequel.jeremyevans.net/)
 
 ## [3.0.3] - 2021-02-14
+
 - TAG: [v3.0.3][3.0.3t]
+
 ### Added
+
 - Add option `:on_validation`, which can be used to add a Captcha
   - See [example here](https://github.com/omniauth/omniauth-identity/pull/86#issue-63225122)
 - Add support for nobrainer, an ORM for RethinkDB
 - Validation error message on invalid registration form submission
+
 ### Removed
+
 - ruby-head build... simply too slow
 
 ## [3.0.2] - 2021-02-14
+
 - TAG: [v3.0.2][3.0.2t]
+
 ### Fixed
+
 - Github Actions CI Build for Ruby 2.4, 3.0 and ruby-head
 - Updated copyright
 - Code style cleanup
@@ -184,13 +313,19 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
 - Updated Readme
 
 ## [3.0.1] - 2021-02-14
+
 - TAG: [v3.0.1][3.0.1t]
+
 ### Fixed
+
 - Github Actions CI Build for various Rubies
 
 ## [3.0.0] - 2021-02-13
+
 - TAG: [v3.0.0][3.0.0t]
+
 ### Added
+
 - Compatibility with Ruby 3
 - Add option `:enable_login` to bypass OmniAuth disabling of GET method (default `true`)
   - NOTE: This restores compatibility between this gem and the current, core, omniauth gem!
@@ -201,17 +336,24 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
 - Minimum Ruby version = 2.4
 - Automatically adds "provider" => "identity" when "provider" column is detected
 - Documentation in README.md
+
 ### Removed
+
 - Support for Rubies < 2.4
 - Support for DataMapper, which died long ago.
 - Unwanted git artifacts
 
 ## [2.0.0] - 2020-09-01
+
 - TAG: [v2.0.0][2.0.0t]
+
 ### Added
+
 - CHANGELOG to maintain a history of changes.
 - Include mongoid-rspec gem.
+
 ### Changed
+
 - Fix failing Specs
 - Update Spec syntax to RSpec 3
 - Fix deprecation Warnings
@@ -220,11 +362,17 @@ and this project adheres to [Semantic Versioning v2](https://semver.org/spec/v2.
 - Dependency version limits so that the most up-to-date gem dependencies are used. (rspec 3+, mongo 2+, mongoid 7+, rake 13+, rack 2+, json 2+)
 - Updated copyright information.
 - Updated MongoMapper section of README to reflect its discontinued support.
+
 ### Removed
+
 - Gemfile.lock file
 - MongoMapper support; unable to satisfy dependencies of both MongoMapper and Mongoid now that MongoMapper is no longer actively maintained.
 
-[Unreleased]: https://github.com/omniauth/omniauth-identity/compare/v3.1.4...HEAD
+[Unreleased]: https://github.com/omniauth/omniauth-identity/compare/v3.2.0...HEAD
+[3.2.0]: https://github.com/omniauth/omniauth-identity/compare/v3.1.5...v3.2.0
+[3.2.0t]: https://github.com/omniauth/omniauth-identity/releases/tag/v3.2.0
+[3.1.5]: https://github.com/omniauth/omniauth-identity/compare/v3.1.4...v3.1.5
+[3.1.5t]: https://github.com/omniauth/omniauth-identity/releases/tag/v3.1.5
 [3.1.4]: https://github.com/omniauth/omniauth-identity/compare/v3.1.3...v3.1.4
 [3.1.4t]: https://github.com/omniauth/omniauth-identity/tags/v3.1.4
 [3.1.3]: https://github.com/omniauth/omniauth-identity/compare/v3.1.2...v3.1.3

data/CITATION.cff

@@ -0,0 +1,20 @@
+cff-version: 1.2.0
+title: "omniauth-identity"
+message: >-
+  If you use this work and you want to cite it,
+  then you can use the metadata from this file.
+type: software
+authors:
+  - given-names: "Peter H."
+    family-names: "Boling"
+    email: "floss@galtzo.com"
+    affiliation: "galtzo.com"
+    orcid: 'https://orcid.org/0009-0008-8519-441X'
+identifiers:
+  - type: url
+    value: 'https://github.com/omniauth/omniauth-identity'
+    description: "omniauth-identity"
+repository-code: 'https://github.com/omniauth/omniauth-identity'
+abstract: >-
+  omniauth-identity
+license: See license file

data/CODE_OF_CONDUCT.md

@@ -1,4 +1,3 @@
-
 # Contributor Covenant Code of Conduct
 
 ## Our Pledge
@@ -61,7 +60,7 @@ representative at an online or offline event.
 
 Instances of abusive, harassing, or otherwise unacceptable behavior may be
 reported to the community leaders responsible for enforcement at
-[![Contact BDFL][🚂bdfl-contact-img]][🚂bdfl-contact].
+[![Contact Maintainer][🚂maint-contact-img]][🚂maint-contact].
 All complaints will be reviewed and investigated promptly and fairly.
 
 All community leaders are obligated to respect the privacy and security of the
@@ -131,5 +130,5 @@ For answers to common questions about this code of conduct, see the FAQ at
 [Mozilla CoC]: https://github.com/mozilla/diversity
 [FAQ]: https://www.contributor-covenant.org/faq
 [translations]: https://www.contributor-covenant.org/translations
-[🚂bdfl-contact]: http://www.railsbling.com/contact
-[🚂bdfl-contact-img]: https://img.shields.io/badge/Contact-BDFL-0093D0.svg?style=flat&logo=rubyonrails&logoColor=red
+[🚂maint-contact]: http://www.railsbling.com/contact
+[🚂maint-contact-img]: https://img.shields.io/badge/Contact-Maintainer-0093D0.svg?style=flat&logo=rubyonrails&logoColor=red