omniauth-miro 1.0.2 → 1.0.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.rubocop.yml +1 -1
- data/CHANGELOG.md +9 -0
- data/Gemfile.lock +58 -53
- data/lib/omni_auth/miro/version.rb +1 -1
- data/lib/omni_auth/strategies/miro.rb +0 -20
- metadata +5 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 88d084a19e80ecba6ad6e0eb30868e633ddd2cc138028fcf4a6f59bcede64095
|
|
4
|
+
data.tar.gz: 753423d8e1a7f2ccb260745cdd62b3e36c5c5d07480dd0e8e72632acafcc5921
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 1a9c7d0dc4d980fe484abb69c196138f1bca90a1e297ec2ba3abe29417d4f704f985acec336bd3687351a3e9218430277a807f186481477bbf3063be561c5d70
|
|
7
|
+
data.tar.gz: f827c1229718abe9644709780c9ae221c51303fd9af42a6a4604cde4f5ebd6890b580b35dab3725992a3871b6db277c52d72f11f523c7a5418a9a5918f7fe242
|
data/.rubocop.yml
CHANGED
data/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,14 @@
|
|
|
1
1
|
# Changelog
|
|
2
2
|
|
|
3
|
+
## [1.0.4]
|
|
4
|
+
|
|
5
|
+
- Address CVE-2025-27221 by updating uri to 1.0.3
|
|
6
|
+
- Update other dependencies to their respective latest minor versions
|
|
7
|
+
|
|
8
|
+
## [1.0.3]
|
|
9
|
+
|
|
10
|
+
- Remove overwritten callback_phase method that skipped refresh_token existence check
|
|
11
|
+
|
|
3
12
|
## [1.0.2]
|
|
4
13
|
|
|
5
14
|
- Update uid to use organization id id
|
data/Gemfile.lock
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
PATH
|
|
2
2
|
remote: .
|
|
3
3
|
specs:
|
|
4
|
-
omniauth-miro (1.0.
|
|
4
|
+
omniauth-miro (1.0.4)
|
|
5
5
|
omniauth (>= 1, < 3)
|
|
6
6
|
omniauth-oauth2 (~> 1.1)
|
|
7
7
|
|
|
@@ -9,23 +9,29 @@ GEM
|
|
|
9
9
|
remote: https://rubygems.org/
|
|
10
10
|
specs:
|
|
11
11
|
ansi (1.5.0)
|
|
12
|
-
ast (2.4.
|
|
13
|
-
base64 (0.
|
|
12
|
+
ast (2.4.3)
|
|
13
|
+
base64 (0.2.0)
|
|
14
|
+
bigdecimal (3.1.9)
|
|
14
15
|
coderay (1.1.3)
|
|
15
|
-
diff-lcs (1.
|
|
16
|
-
docile (1.4.
|
|
17
|
-
faraday (2.
|
|
18
|
-
faraday-net_http (>= 2.0, < 3.
|
|
19
|
-
|
|
20
|
-
|
|
16
|
+
diff-lcs (1.6.1)
|
|
17
|
+
docile (1.4.1)
|
|
18
|
+
faraday (2.12.2)
|
|
19
|
+
faraday-net_http (>= 2.0, < 3.5)
|
|
20
|
+
json
|
|
21
|
+
logger
|
|
22
|
+
faraday-net_http (3.4.0)
|
|
23
|
+
net-http (>= 0.5.0)
|
|
21
24
|
hashie (5.0.0)
|
|
22
|
-
json (2.
|
|
23
|
-
jwt (2.
|
|
25
|
+
json (2.10.2)
|
|
26
|
+
jwt (2.10.1)
|
|
24
27
|
base64
|
|
25
|
-
language_server-protocol (3.17.0.
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
28
|
+
language_server-protocol (3.17.0.4)
|
|
29
|
+
lint_roller (1.1.0)
|
|
30
|
+
logger (1.7.0)
|
|
31
|
+
method_source (1.1.0)
|
|
32
|
+
multi_xml (0.7.1)
|
|
33
|
+
bigdecimal (~> 3.1)
|
|
34
|
+
net-http (0.6.0)
|
|
29
35
|
uri
|
|
30
36
|
oauth2 (2.0.9)
|
|
31
37
|
faraday (>= 0.17.3, < 3.0)
|
|
@@ -34,29 +40,30 @@ GEM
|
|
|
34
40
|
rack (>= 1.2, < 4)
|
|
35
41
|
snaky_hash (~> 2.0)
|
|
36
42
|
version_gem (~> 1.1)
|
|
37
|
-
omniauth (2.1.
|
|
43
|
+
omniauth (2.1.3)
|
|
38
44
|
hashie (>= 3.4.6)
|
|
39
45
|
rack (>= 2.2.3)
|
|
40
46
|
rack-protection
|
|
41
47
|
omniauth-oauth2 (1.8.0)
|
|
42
48
|
oauth2 (>= 1.4, < 3)
|
|
43
49
|
omniauth (~> 2.0)
|
|
44
|
-
parallel (1.
|
|
45
|
-
parser (3.
|
|
50
|
+
parallel (1.26.3)
|
|
51
|
+
parser (3.3.7.3)
|
|
46
52
|
ast (~> 2.4.1)
|
|
47
53
|
racc
|
|
48
|
-
|
|
54
|
+
prism (1.4.0)
|
|
55
|
+
pry (0.15.2)
|
|
49
56
|
coderay (~> 1.1)
|
|
50
57
|
method_source (~> 1.0)
|
|
51
|
-
racc (1.
|
|
52
|
-
rack (3.
|
|
53
|
-
rack-protection (4.
|
|
58
|
+
racc (1.8.1)
|
|
59
|
+
rack (3.1.12)
|
|
60
|
+
rack-protection (4.1.1)
|
|
54
61
|
base64 (>= 0.1.0)
|
|
62
|
+
logger (>= 1.6.0)
|
|
55
63
|
rack (>= 3.0.0, < 4)
|
|
56
64
|
rainbow (3.1.1)
|
|
57
|
-
rake (13.
|
|
58
|
-
regexp_parser (2.
|
|
59
|
-
rexml (3.2.6)
|
|
65
|
+
rake (13.2.1)
|
|
66
|
+
regexp_parser (2.10.0)
|
|
60
67
|
rspec (3.9.0)
|
|
61
68
|
rspec-core (~> 3.9.0)
|
|
62
69
|
rspec-expectations (~> 3.9.0)
|
|
@@ -70,50 +77,48 @@ GEM
|
|
|
70
77
|
diff-lcs (>= 1.2.0, < 2.0)
|
|
71
78
|
rspec-support (~> 3.9.0)
|
|
72
79
|
rspec-support (3.9.4)
|
|
73
|
-
rubocop (1.
|
|
74
|
-
base64 (~> 0.1.1)
|
|
80
|
+
rubocop (1.75.1)
|
|
75
81
|
json (~> 2.3)
|
|
76
|
-
language_server-protocol (
|
|
82
|
+
language_server-protocol (~> 3.17.0.2)
|
|
83
|
+
lint_roller (~> 1.1.0)
|
|
77
84
|
parallel (~> 1.10)
|
|
78
|
-
parser (>= 3.
|
|
85
|
+
parser (>= 3.3.0.2)
|
|
79
86
|
rainbow (>= 2.2.2, < 4.0)
|
|
80
|
-
regexp_parser (>=
|
|
81
|
-
|
|
82
|
-
rubocop-ast (>= 1.28.1, < 2.0)
|
|
87
|
+
regexp_parser (>= 2.9.3, < 3.0)
|
|
88
|
+
rubocop-ast (>= 1.43.0, < 2.0)
|
|
83
89
|
ruby-progressbar (~> 1.7)
|
|
84
|
-
unicode-display_width (>= 2.4.0, <
|
|
85
|
-
rubocop-ast (1.
|
|
86
|
-
parser (>= 3.
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
rubocop (
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
rubocop (~> 1.33)
|
|
96
|
-
rubocop-capybara (~> 2.17)
|
|
97
|
-
rubocop-factory_bot (~> 2.22)
|
|
90
|
+
unicode-display_width (>= 2.4.0, < 4.0)
|
|
91
|
+
rubocop-ast (1.43.0)
|
|
92
|
+
parser (>= 3.3.7.2)
|
|
93
|
+
prism (~> 1.4)
|
|
94
|
+
rubocop-performance (1.24.0)
|
|
95
|
+
lint_roller (~> 1.1)
|
|
96
|
+
rubocop (>= 1.72.1, < 2.0)
|
|
97
|
+
rubocop-ast (>= 1.38.0, < 2.0)
|
|
98
|
+
rubocop-rspec (3.5.0)
|
|
99
|
+
lint_roller (~> 1.1)
|
|
100
|
+
rubocop (~> 1.72, >= 1.72.1)
|
|
98
101
|
ruby-progressbar (1.13.0)
|
|
99
102
|
simplecov (0.22.0)
|
|
100
103
|
docile (~> 1.1)
|
|
101
104
|
simplecov-html (~> 0.11)
|
|
102
105
|
simplecov_json_formatter (~> 0.1)
|
|
103
|
-
simplecov-console (0.9.
|
|
106
|
+
simplecov-console (0.9.3)
|
|
104
107
|
ansi
|
|
105
108
|
simplecov
|
|
106
109
|
terminal-table
|
|
107
|
-
simplecov-html (0.
|
|
110
|
+
simplecov-html (0.13.1)
|
|
108
111
|
simplecov_json_formatter (0.1.4)
|
|
109
112
|
snaky_hash (2.0.1)
|
|
110
113
|
hashie
|
|
111
114
|
version_gem (~> 1.1, >= 1.1.1)
|
|
112
|
-
terminal-table (
|
|
113
|
-
unicode-display_width (>= 1.1.1, <
|
|
114
|
-
unicode-display_width (
|
|
115
|
-
|
|
116
|
-
|
|
115
|
+
terminal-table (4.0.0)
|
|
116
|
+
unicode-display_width (>= 1.1.1, < 4)
|
|
117
|
+
unicode-display_width (3.1.4)
|
|
118
|
+
unicode-emoji (~> 4.0, >= 4.0.4)
|
|
119
|
+
unicode-emoji (4.0.4)
|
|
120
|
+
uri (1.0.3)
|
|
121
|
+
version_gem (1.1.6)
|
|
117
122
|
|
|
118
123
|
PLATFORMS
|
|
119
124
|
ruby
|
|
@@ -46,26 +46,6 @@ module OmniAuth
|
|
|
46
46
|
params[:redirect_uri] = callback_url
|
|
47
47
|
end
|
|
48
48
|
end
|
|
49
|
-
|
|
50
|
-
def callback_phase
|
|
51
|
-
error = request.params['error_reason'] || request.params['error']
|
|
52
|
-
if !options.provider_ignores_state && (request.params['state'].to_s.empty? || request.params['state'] != session.delete('omniauth.state'))
|
|
53
|
-
fail!(:csrf_detected, CallbackError.new(:csrf_detected, 'CSRF detected'))
|
|
54
|
-
elsif error
|
|
55
|
-
fail!(error,
|
|
56
|
-
CallbackError.new(request.params['error'], request.params['error_description'] || request.params['error_reason'], request.params['error_uri']))
|
|
57
|
-
else
|
|
58
|
-
self.access_token = build_access_token
|
|
59
|
-
env['omniauth.auth'] = auth_hash
|
|
60
|
-
call_app!
|
|
61
|
-
end
|
|
62
|
-
rescue ::OAuth2::Error, CallbackError => e
|
|
63
|
-
fail!(:invalid_credentials, e)
|
|
64
|
-
rescue ::Timeout::Error, ::Errno::ETIMEDOUT => e
|
|
65
|
-
fail!(:timeout, e)
|
|
66
|
-
rescue ::SocketError => e
|
|
67
|
-
fail!(:failed_to_connect, e)
|
|
68
|
-
end
|
|
69
49
|
end
|
|
70
50
|
end
|
|
71
51
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: omniauth-miro
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.4
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Rewind Software Inc. | Calvin Chen
|
|
8
|
-
autorequire:
|
|
8
|
+
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2025-03-27 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: omniauth
|
|
@@ -77,7 +77,7 @@ metadata:
|
|
|
77
77
|
documentation_uri: https://github.com/rewindio/omniauth-miro
|
|
78
78
|
homepage_uri: https://github.com/rewindio/omniauth-miro
|
|
79
79
|
source_code_uri: https://github.com/rewindio/omniauth-miro
|
|
80
|
-
post_install_message:
|
|
80
|
+
post_install_message:
|
|
81
81
|
rdoc_options: []
|
|
82
82
|
require_paths:
|
|
83
83
|
- lib
|
|
@@ -93,7 +93,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
93
93
|
version: '0'
|
|
94
94
|
requirements: []
|
|
95
95
|
rubygems_version: 3.4.10
|
|
96
|
-
signing_key:
|
|
96
|
+
signing_key:
|
|
97
97
|
specification_version: 4
|
|
98
98
|
summary: A Miro OAuth strategy for OmniAuth 2.0
|
|
99
99
|
test_files: []
|