omniauth-rails_csrf_protection 1.0.0 → 1.0.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.circleci/config.yml +45 -7
- data/README.md +2 -2
- data/lib/omniauth/rails_csrf_protection/railtie.rb +1 -0
- data/lib/omniauth/rails_csrf_protection/version.rb +1 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b7c9f0953f60f411b88e66c914509308274d46c44a5fa42e1531740fc94c0be5
|
|
4
|
+
data.tar.gz: 1420e37a8f982fded587e1960309871054fc7e4a6ae4e237d5783025983a4c31
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 95efbe6ce15fd93acf8e4953ffbc058e681dda33f0a129a3b0a33c1c9000faf25a4bb789de45cd89603cfa2e5702b15c51db6468bbf616754199cf54e55cf750
|
|
7
|
+
data.tar.gz: dabea2ed5fddeda77f46fd7cee2a4f1b5f79d8dc042eba02dc64fda6ef304f828cce81d63c42a2592cd059511d080a6dd77db4ceb5de8dc17740e6d58fea04fb
|
data/.circleci/config.yml
CHANGED
|
@@ -21,19 +21,23 @@ ruby-2-4: &ruby-2-4
|
|
|
21
21
|
|
|
22
22
|
ruby-2-5: &ruby-2-5
|
|
23
23
|
docker:
|
|
24
|
-
- image:
|
|
24
|
+
- image: cimg/ruby:2.5
|
|
25
25
|
|
|
26
26
|
ruby-2-6: &ruby-2-6
|
|
27
27
|
docker:
|
|
28
|
-
- image:
|
|
28
|
+
- image: cimg/ruby:2.6
|
|
29
29
|
|
|
30
30
|
ruby-2-7: &ruby-2-7
|
|
31
31
|
docker:
|
|
32
|
-
- image:
|
|
32
|
+
- image: cimg/ruby:2.7
|
|
33
33
|
|
|
34
34
|
ruby-3-0: &ruby-3-0
|
|
35
35
|
docker:
|
|
36
|
-
- image:
|
|
36
|
+
- image: cimg/ruby:3.0
|
|
37
|
+
|
|
38
|
+
ruby-3-1: &ruby-3-1
|
|
39
|
+
docker:
|
|
40
|
+
- image: cimg/ruby:3.1
|
|
37
41
|
|
|
38
42
|
rails-4-2: &rails-4-2
|
|
39
43
|
environment:
|
|
@@ -59,9 +63,13 @@ rails-6-1: &rails-6-1
|
|
|
59
63
|
environment:
|
|
60
64
|
RAILS_VERSION: "~> 6.1.0"
|
|
61
65
|
|
|
66
|
+
rails-7-0: &rails-7-0
|
|
67
|
+
environment:
|
|
68
|
+
RAILS_VERSION: "~> 7.0.0"
|
|
69
|
+
|
|
62
70
|
rails-edge: &rails-edge
|
|
63
71
|
environment:
|
|
64
|
-
RAILS_BRANCH: "
|
|
72
|
+
RAILS_BRANCH: "main"
|
|
65
73
|
|
|
66
74
|
jobs:
|
|
67
75
|
"ruby-2-4-rails-4-2":
|
|
@@ -151,6 +159,10 @@ jobs:
|
|
|
151
159
|
<<: *ruby-2-7
|
|
152
160
|
<<: *rails-6-1
|
|
153
161
|
<<: *build_steps
|
|
162
|
+
"ruby-2-7-rails-7-0":
|
|
163
|
+
<<: *ruby-2-7
|
|
164
|
+
<<: *rails-7-0
|
|
165
|
+
<<: *build_steps
|
|
154
166
|
"ruby-2-7-rails-edge":
|
|
155
167
|
<<: *ruby-2-7
|
|
156
168
|
<<: *rails-edge
|
|
@@ -164,11 +176,32 @@ jobs:
|
|
|
164
176
|
<<: *ruby-3-0
|
|
165
177
|
<<: *rails-6-1
|
|
166
178
|
<<: *build_steps
|
|
179
|
+
"ruby-3-0-rails-7-0":
|
|
180
|
+
<<: *ruby-3-0
|
|
181
|
+
<<: *rails-7-0
|
|
182
|
+
<<: *build_steps
|
|
167
183
|
"ruby-3-0-rails-edge":
|
|
168
184
|
<<: *ruby-3-0
|
|
169
185
|
<<: *rails-edge
|
|
170
186
|
<<: *build_steps
|
|
171
187
|
|
|
188
|
+
"ruby-3-1-rails-6-0":
|
|
189
|
+
<<: *ruby-3-1
|
|
190
|
+
<<: *rails-6-0
|
|
191
|
+
<<: *build_steps
|
|
192
|
+
"ruby-3-1-rails-6-1":
|
|
193
|
+
<<: *ruby-3-1
|
|
194
|
+
<<: *rails-6-1
|
|
195
|
+
<<: *build_steps
|
|
196
|
+
"ruby-3-1-rails-7-0":
|
|
197
|
+
<<: *ruby-3-1
|
|
198
|
+
<<: *rails-7-0
|
|
199
|
+
<<: *build_steps
|
|
200
|
+
"ruby-3-1-rails-edge":
|
|
201
|
+
<<: *ruby-3-1
|
|
202
|
+
<<: *rails-edge
|
|
203
|
+
<<: *build_steps
|
|
204
|
+
|
|
172
205
|
workflows:
|
|
173
206
|
version: 2
|
|
174
207
|
build:
|
|
@@ -182,22 +215,27 @@ workflows:
|
|
|
182
215
|
- "ruby-2-5-rails-5-2"
|
|
183
216
|
- "ruby-2-5-rails-6-0"
|
|
184
217
|
- "ruby-2-5-rails-6-1"
|
|
185
|
-
- "ruby-2-5-rails-edge"
|
|
186
218
|
|
|
187
219
|
- "ruby-2-6-rails-5-0"
|
|
188
220
|
- "ruby-2-6-rails-5-1"
|
|
189
221
|
- "ruby-2-6-rails-5-2"
|
|
190
222
|
- "ruby-2-6-rails-6-0"
|
|
191
223
|
- "ruby-2-6-rails-6-1"
|
|
192
|
-
- "ruby-2-6-rails-edge"
|
|
193
224
|
|
|
194
225
|
- "ruby-2-7-rails-5-0"
|
|
195
226
|
- "ruby-2-7-rails-5-1"
|
|
196
227
|
- "ruby-2-7-rails-5-2"
|
|
197
228
|
- "ruby-2-7-rails-6-0"
|
|
198
229
|
- "ruby-2-7-rails-6-1"
|
|
230
|
+
- "ruby-2-7-rails-7-0"
|
|
199
231
|
- "ruby-2-7-rails-edge"
|
|
200
232
|
|
|
201
233
|
- "ruby-3-0-rails-6-0"
|
|
202
234
|
- "ruby-3-0-rails-6-1"
|
|
235
|
+
- "ruby-3-0-rails-7-0"
|
|
203
236
|
- "ruby-3-0-rails-edge"
|
|
237
|
+
|
|
238
|
+
- "ruby-3-1-rails-6-0"
|
|
239
|
+
- "ruby-3-1-rails-6-1"
|
|
240
|
+
- "ruby-3-1-rails-7-0"
|
|
241
|
+
- "ruby-3-1-rails-edge"
|
data/README.md
CHANGED
|
@@ -5,7 +5,7 @@ Forgery on the request phase when using OmniAuth gem with a Ruby on Rails
|
|
|
5
5
|
application) by implementing a CSRF token verifier that directly uses
|
|
6
6
|
`ActionController::RequestForgeryProtection` code from Rails.
|
|
7
7
|
|
|
8
|
-
[](https://circleci.com/gh/cookpad/omniauth-rails_csrf_protection/tree/main)
|
|
9
9
|
|
|
10
10
|
[CVE-2015-9284]: https://nvd.nist.gov/vuln/detail/CVE-2015-9284
|
|
11
11
|
|
|
@@ -49,4 +49,4 @@ The gem is available as open source under the terms of the
|
|
|
49
49
|
|
|
50
50
|
Everyone interacting in the this project’s codebases, issue trackers, chat
|
|
51
51
|
rooms and mailing lists is expected to follow the
|
|
52
|
-
[code of conduct](https://github.com/cookpad/omniauth-rails_csrf_protection/blob/
|
|
52
|
+
[code of conduct](https://github.com/cookpad/omniauth-rails_csrf_protection/blob/main/CODE_OF_CONDUCT.md).
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: omniauth-rails_csrf_protection
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Cookpad Inc.
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2022-02-07 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: actionpack
|
|
@@ -139,7 +139,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
139
139
|
- !ruby/object:Gem::Version
|
|
140
140
|
version: '0'
|
|
141
141
|
requirements: []
|
|
142
|
-
rubygems_version: 3.
|
|
142
|
+
rubygems_version: 3.2.32
|
|
143
143
|
signing_key:
|
|
144
144
|
specification_version: 4
|
|
145
145
|
summary: Provides CSRF protection on OmniAuth request endpoint on Rails application.
|