omniauth-protect 2.0.1 → 3.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 62f6d449313247e99820dc47d5efd787c6a531ffed3c8404402dcc63d8a65efd
-  data.tar.gz: 9978f183f733c4b3468d7aa5928df926a75ba3f61943998e690545f3222064bd
+  metadata.gz: 6847c77ced21cc7918596996ffa4fbed5a66e798c18bb5da4619a29bd2157c97
+  data.tar.gz: b61c6b485c50a5c0023ce602be9d1235759e97af45181a3caceb1118ea7491ae
 SHA512:
-  metadata.gz: 9c04e802538ac8d826de26ce652040f40ab8667f21b75cee78c6056d7f6150d984bc63dd845a9159acc3463b4947de7493c34ddeff8dff0a42dac20cb2da38d8
-  data.tar.gz: fae90a7d08bf2ed764676c13db249db1222fcc52923dbbae24f71568878a692e5ff43324c171ab8b22b92664a43c863150c78000d4d830ffe0f89c77ac3ce6af
+  metadata.gz: fe072b5bc285d00ec02829bb82a3d4abbde8d35145057f750d47489f7d4184ef761542e0c6d89df053578e812e9f7f4a9b3f1be09b11efa647e318cd7b91f908
+  data.tar.gz: 897468e321f3ddd40e50915c93c81bc2cf9caf2c252876160dcf7518bfbcaa057fd809259dd61a2b2c84227ae1b5dfdcc40c3ff4cdc7440c167b1989fc717ef0

data/CHANGELOG.md

@@ -5,9 +5,10 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
 ## [Unreleased]
-## [2.0.1] - 2020-06-29
-### Fixed
-- Always cast tokens read from session to a string (cherry picked from 3.0.1)
+
+## [3.0.0] - 2020-06-25
+### Change
+- Only supports Rails 6+, use 2.0.0 for Rails 5.2.4.3
 
 ## [2.0.0] - 2020-06-16
 ### Changed

data/README.md

@@ -20,12 +20,26 @@ Or install it yourself as:
 
 ## Usage
 
-Add this line to your `config/application.rb`
+Add this line to your `config/application.rb` to use the middleware
 
 ```ruby
 config.middleware.use Omniauth::Protect::Middleware
 ```
 
+Or use the validator on it's own
+
+```ruby
+Omniauth::Protect::Validator.new(request.env, encoded_masked_token).valid_csrf_token?
+```
+
+### Rails versions support
+
+`omniauth-protect` `1.0.0` supports `rails < 5.2.4.3` and between `6.0.0` and `6.0.3`
+
+`omniauth-protect` `2.0.0` supports `rails = 5.2.4.3`
+
+`omniauth-protect` `3.0.0` supports `rails > 6.0.3.1`
+
 ## Configuration
 
 You need to create an initiliazer like `config/initializers/omniauth_protect.rb` for configuration
@@ -53,4 +67,4 @@ The gem is available as open source under the terms of the [MIT License](https:/
 
 ## Thanks
 
-Speacial thanks to [RainforestQA](https://www.rainforestqa.com/)
+Speacial thanks to [RainforestQA](https://www.rainforestqa.com/)

data/lib/omniauth/protect/middleware.rb

@@ -17,7 +17,7 @@ module Omniauth
           return access_denied if env['REQUEST_METHOD'] != 'POST'
 
           req = Rack::Request.new(env)
-          encoded_masked_token = req.params['authenticity_token'].to_s
+          encoded_masked_token = req.params['authenticity_token']
 
           return access_denied if !encoded_masked_token
 

data/lib/omniauth/protect/version.rb

@@ -2,6 +2,6 @@
 
 module Omniauth
   module Protect
-    VERSION = '2.0.1'
+    VERSION = '3.0.0'
   end
 end

data/omniauth-protect.gemspec

@@ -23,7 +23,7 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
 
-  spec.add_runtime_dependency 'actionpack', '>= 5.2.4.3', '< 6'
+  spec.add_runtime_dependency 'actionpack', '>= 6.0.3.1'
   spec.add_runtime_dependency 'rack'
 
   spec.add_development_dependency "bundler", '~> 2'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-protect
 version: !ruby/object:Gem::Version
-  version: 2.0.1
+  version: 3.0.0
 platform: ruby
 authors:
 - Serdar Dogruyol
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2020-06-29 00:00:00.000000000 Z
+date: 2020-06-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: actionpack
@@ -16,20 +16,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 5.2.4.3
-    - - "<"
-      - !ruby/object:Gem::Version
-        version: '6'
+        version: 6.0.3.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 5.2.4.3
-    - - "<"
-      - !ruby/object:Gem::Version
-        version: '6'
+        version: 6.0.3.1
 - !ruby/object:Gem::Dependency
   name: rack
   requirement: !ruby/object:Gem::Requirement