RubyGems - omniauth-krystal - Versions diffs - 1.3.0 → 1.5.0 - Mend

omniauth-krystal 1.3.0 → 1.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/omniauth/krystal/initiated_login_middleware.rb +6 -1
data/lib/omniauth/krystal/version.rb +1 -1
data/lib/omniauth/strategies/krystal.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ff1b48f554292417ddac46a620f11567455881410467ab639f74fa5eb87e2628
-  data.tar.gz: 0dfc2595766ef70626614953fcd08539dbe594e457ed5fcdc8efb336f5f1fce9
+  metadata.gz: c90fb431fe32e4ab575e637d96209631d6c76f52760a3e358ab81d0f59fb6c93
+  data.tar.gz: f6dcc39bd7e7d9b0be570693fbcff5d188eca826c975faa79e04d1ee3184afb3
 SHA512:
-  metadata.gz: 95ed948cb99326e1b8917b06ce87d25133570d1162206eac4310975e7271b033f7b4e7a734a86a6a9949d2e06737e84c77b14fc841ea58f76a5bc703e509d1b8
-  data.tar.gz: 2970ce91eaa7e31c94a877f734fe5413ad21b1f5166c7c3628b7a1b0489315088c776b50e6b3fd0bf367db7928fa1ea63d58521661567954fdfa195bedfe5106
+  metadata.gz: aa4c4e05ce103e63c144798b63ecbdefc6162200e5249d57aea2f07c45d74a3124a7ce084c166833033a3a927410ea727948eaff2e2f87f004b2944706cbff50
+  data.tar.gz: 260dc2fda6587ad42f9e8b7155cae2834cd1ae3b86878334b7719d3a92af1565bce8e56a3df353144b414e5292efb70e62aa5fbcff1010d357d42eda04b65509

data/lib/omniauth/krystal/initiated_login_middleware.rb CHANGED Viewed

@@ -18,12 +18,14 @@ module OmniAuth
       class AntiReplayTokenAlreadyUsedError < Error
       end
+      JWT_RESERVED_CLAIMS = %w[ar exp nbf iss aud jti iat sub].freeze
       def initialize(app, options = {})
         @app = app
         @options = options
         @options[:provider_name] ||= 'krystal'
-        @options[:identity_url] ||= ENV.fetch('KRYSTAL_IDENTITY_URL', 'https://identity.k.io')
+        @options[:identity_url] ||= ENV.fetch('KRYSTAL_IDENTITY_URL', 'https://identity.krystal.io')
         @options[:anti_replay_expiry_seconds] ||= 60
         @keys = SigningKeys.new("#{@options[:identity_url]}/.well-known/signing.json")
@@ -66,6 +68,9 @@ module OmniAuth
         # thinks the session is trusted as normal.
         env['rack.session']['omniauth.state'] = state
+        # Set any additional params that were passed in the state.
+        env['rack.session']['omniauth.params'] = data.reject { |key| JWT_RESERVED_CLAIMS.include?(key) }
         @app.call(env)
       end
       # rubocop:enable Metrics/AbcSize

data/lib/omniauth/krystal/version.rb CHANGED Viewed

@@ -2,6 +2,6 @@
 module OmniAuth
   module Krystal
-    VERSION = '1.3.0'
+    VERSION = '1.5.0'
   end
 end

data/lib/omniauth/strategies/krystal.rb CHANGED Viewed

@@ -8,7 +8,7 @@ module OmniAuth
       option :name, 'krystal'
       option :client_options,
-             url: ENV.fetch('KRYSTAL_IDENTITY_URL', 'https://identity.k.io'),
+             url: ENV.fetch('KRYSTAL_IDENTITY_URL', 'https://identity.krystal.io'),
              site: ENV.fetch('KRYSTAL_IDENTITY_API_URL', nil),
              authorize_url: ENV.fetch('KRYSTAL_IDENTITY_OAUTH_AUTHORIZE_URL', nil),
              token_url: ENV.fetch('KRYSTAL_IDENTITY_OAUTH_TOKEN_URL', nil)

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-krystal
 version: !ruby/object:Gem::Version
-  version: 1.3.0
+  version: 1.5.0
 platform: ruby
 authors:
 - Adam Cooke
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-05-29 00:00:00.000000000 Z
+date: 2023-07-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: json