otp-jwt 0.2.4 → 0.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 5a6047b41e5b59f65c9a0ab0b138798ba611a113
-  data.tar.gz: 5b157ecb5af5abebcd324f3b18698279af02d050
+SHA256:
+  metadata.gz: 4e4d38ef8b50541c6606645a9f75229e2599e47ec92323637886532853da6baa
+  data.tar.gz: 582df0752fead7e8b96615107a3d2db80a68d87b4fa2d533d6eaf9e2b7aaf035
 SHA512:
-  metadata.gz: 3c9ee97ec926b861d0599462def570ae799ac65a3f59040725b376359de451817680b1a538759126fe698895157813b15a911738c4976dd801cce5d17aa0a562
-  data.tar.gz: d3fede4d63a6121e34fdcad1b8d3c48cd85088e99bfa94b001cf94895ea6574e66e061db7e442a9b4904eb079c7457cd0398d897eaf0085b0d29b50cb3428655
+  metadata.gz: 89b0dc892cc73c5a863084a2017f1a23d621cd026a63c75256bb9be6642a909c03ed91be033e74fa28643af2453e662b12eb9ca3a0cbc35530de167348895fe6
+  data.tar.gz: 9e5b016cd192f8d5274257b1173a44868a5378b1cbb05f8e4de93136be887df6a623956054d756be6bd60c1fc30406d818713fee1285775bce5b2e39f990435b

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2021 Stas Suscov
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -10,6 +10,8 @@ One time password (email, SMS) authentication support for HTTP APIs.
 This project provides a couple of mixins to help you build
 applications/HTTP APIs without asking your users to provide passwords.
 
+[Your browser probably can work seamlessly with OTPs](https://web.dev/web-otp/)!!! :heart_eyes:
+
 ## About
 
 The goal of this project is to provide support for one time passwords
@@ -38,6 +40,16 @@ and [JWT](https://github.com/jwt/ruby-jwt/).
 
 Thanks to everyone who worked on these amazing projects!
 
+
+## Sponsors
+
+I'm grateful for the following companies for supporting this project!
+
+<p align="center">
+<a href="https://www.luneteyewear.com"><img src="https://user-images.githubusercontent.com/112147/136836142-2bfba96e-447f-4eb6-b137-2445aee81b37.png"/></a>
+<a href="https://www.startuplandia.io"><img src="https://user-images.githubusercontent.com/112147/136836147-93f8ab17-2465-4477-a7ab-e38255483c66.png"/></a>
+</p>
+
 ## Installation
 
 Add this line to your application's Gemfile:
@@ -75,6 +87,12 @@ require 'otp'
 # To load the JWT related support.
 require 'otp/jwt'
 
+# Set to 'none' to disable verification at all.
+# OTP::JWT::Token.jwt_algorithm = 'HS256'
+
+# How long the token will be valid.
+# OTP::JWT::Token.jwt_lifetime = 60 * 60 * 24
+
 OTP::JWT::Token.jwt_signature_key = ENV['YOUR-SIGN-KEY']
 ```
 ### OTP for Active Record models
@@ -97,12 +115,26 @@ one time passwords:
 This concern expects two attributes to be provided by the model, the:
  * `otp_secret`: of type string, used to store the OTP signature key
  * `otp_counter`: of type integer, used to store the OTP counter
+ * `expire_jwt_at`: of type datetime, **optional** and used to force a token to expire
 
 A migration to add these two looks like this:
 ```
 $ rails g migration add_otp_to_users otp_secret:string otp_counter:integer
 ```
 
+Generate `opt_secret` by running the following in rails console if you have preexisting user data:
+```
+User.all.each do |u|
+  u.save()
+end
+```
+
+##### Force a token to expire
+
+If there's an `expire_jwt_at` value that is in the past, the user token will
+be reset and it will require a new authentication to receive a working token.
+
+This is handy if the user access needs to be scheduled and/or removed.
 #### Mailer support
 
 You can use the built-in mailer to deliver the OTP, just require it and
@@ -296,4 +328,5 @@ contributors are expected to adhere to the
 
 ## License
 
-TBD
+The gem is available as open source under the terms of the
+[MIT License](https://opensource.org/licenses/MIT).

data/lib/otp/active_record.rb

@@ -36,7 +36,8 @@ module OTP
     def verify_otp(otp)
       return nil if !valid? || !persisted? || otp_secret.blank?
 
-      hotp = ROTP::HOTP.new(otp_secret, digits: OTP_DIGITS)
+      otp_digits = self.class.const_get(:OTP_DIGITS)
+      hotp = ROTP::HOTP.new(otp_secret, digits: otp_digits)
       transaction do
         otp_status = hotp.verify(otp.to_s, otp_counter)
         increment!(:otp_counter)
@@ -72,7 +73,6 @@ module OTP
     end
 
     private
-
     # Provides a default value for the OTP secret attribute
     #
     # @return [String]

data/lib/otp/jwt/action_controller.rb

@@ -3,7 +3,6 @@ module OTP
     # [ActionController] concern.
     module ActionController
       private
-
       # Authenticates a model and responds with a [JWT] token
       #
       # @return [String] with authentication token and country shop ID.

data/lib/otp/jwt/active_record.rb

@@ -17,13 +17,19 @@ module OTP
             val = payload[claim_name]
             pk_col = self.column_for_attribute(self.primary_key)
 
-            # Arel casts the values to the primary key type, which means
-            # that an UUID will become an integer...
-            casted_val = self.connection.type_cast(val, pk_col)
+
+            # Arel casts the values to the primary key type,
+            # which means that an UUID becomes an integer by default...
+            if self.connection.respond_to?(:lookup_cast_type_from_column)
+              pk_type = self.connection.lookup_cast_type_from_column(pk_col)
+              casted_val = pk_type.serialize(val)
+            else
+              casted_val = self.connection.type_cast(val, pk_col)
+            end
 
             return if casted_val.to_s != val.to_s.strip
 
-            self.find_by(self.primary_key => val)
+            self.find_by(self.primary_key => val).expire_jwt?
           end
         end
       end
@@ -38,6 +44,17 @@ module OTP
           **(claims || {})
         )
       end
+
+      # Reset the [JWT] token if it is set to expire
+      #
+      # This method allows you to expire any token, independently from
+      # the JWT flags/payload.
+      #
+      # @return nil if the expiration worked, otherwise returns the model
+      def expire_jwt?
+        return self unless self.respond_to?(:expire_jwt_at)
+        return self unless expire_jwt_at? && expire_jwt_at.past?
+      end
     end
   end
 end

data/lib/otp/jwt/test_helpers.rb

@@ -15,7 +15,7 @@ module OTP
       #
       # @return [Hash] the authorization headers
       def jwt_auth_header(entity_or_subject)
-        return json_headers unless entity_or_subject.present?
+        return json_headers if entity_or_subject.blank?
 
         token = entity_or_subject.try(:to_jwt)
         token ||= OTP::JWT::Token.sign(sub: entity_or_subject)

data/lib/otp/jwt/token.rb

@@ -37,7 +37,10 @@ module OTP
       #
       # @return [Hash], JWT token payload
       def self.verify(token, opts = nil)
-        ::JWT.decode(token.to_s, self.jwt_signature_key, true, opts || {})
+        verify = self.jwt_algorithm != 'none'
+        opts ||= { algorithm: self.jwt_algorithm }
+
+        ::JWT.decode(token.to_s, self.jwt_signature_key, verify, opts)
       end
 
       # Decodes a valid token into [Hash]

data/lib/otp/jwt/version.rb

@@ -1,5 +1,5 @@
 module OTP
   module JWT
-    VERSION = '0.2.4'
+    VERSION = '0.3.0'
   end
 end

data/spec/dummy.rb

@@ -0,0 +1,83 @@
+require 'active_record/railtie'
+require 'action_controller/railtie'
+require 'global_id/railtie'
+require 'otp/mailer'
+
+class Dummy < Rails::Application
+  secrets.secret_key_base = '_'
+
+  config.hosts << 'www.example.com' if config.respond_to?(:hosts)
+
+  config.logger = Logger.new($stdout)
+  config.logger.level = ENV['LOG_LEVEL'] || Logger::WARN
+
+  routes.draw do
+    resources :users, only: [:index]
+    resources :tokens, only: [:create]
+  end
+end
+
+GlobalID.app = Dummy
+Rails.logger = Dummy.config.logger
+ActiveRecord::Base.logger = Dummy.config.logger
+ActiveRecord::Base.establish_connection(
+  ENV['DATABASE_URL'] || 'sqlite3::memory:'
+)
+
+ActiveRecord::Schema.define do
+  create_table :users, force: true do |t|
+    t.string :email
+    t.string :full_name
+    t.string :phone_number
+    t.string :otp_secret
+    t.integer :otp_counter
+    t.timestamp :last_login_at
+    t.timestamp :expire_jwt_at
+    t.timestamps
+  end
+end
+
+class User < ActiveRecord::Base
+  include GlobalID::Identification
+  include OTP::ActiveRecord
+  include OTP::JWT::ActiveRecord
+
+  def email_otp
+    OTP::Mailer.otp(email, otp, self).deliver_later
+  end
+end
+
+class ApplicationController < ActionController::Base
+  include OTP::JWT::ActionController
+
+  private
+  def current_user
+    @jwt_user ||= User.from_jwt(request_authorization_header)
+  end
+
+  def current_user!
+    current_user || raise('User authentication failed')
+  rescue
+    head(:unauthorized)
+  end
+end
+
+class UsersController < ApplicationController
+  before_action :current_user!
+
+  def index
+    render json: current_user
+  end
+end
+
+class TokensController < ApplicationController
+  def create
+    user = User.find_by(email: params[:email])
+
+    jwt_from_otp(user, params[:otp]) do |auth_user|
+      auth_user.update_column(:last_login_at, DateTime.current)
+
+      render json: { token: auth_user.to_jwt }, status: :created
+    end
+  end
+end

data/spec/otp/jwt/token_spec.rb

@@ -0,0 +1,98 @@
+require 'spec_helper'
+
+RSpec.describe OTP::JWT::Token, type: :model do
+  let(:payload) { { 'sub' => FFaker::Internet.password } }
+  let(:token) do
+    JWT.encode(
+      payload.dup.merge(exp: Time.now.to_i + described_class.jwt_lifetime),
+      described_class.jwt_signature_key,
+      described_class.jwt_algorithm
+    )
+  end
+
+  describe '#sign' do
+    it { expect(described_class.sign(payload)).to eq(token) }
+
+    context 'with the none algorithm' do
+      before do
+        OTP::JWT::Token.jwt_algorithm = 'none'
+      end
+
+      after do
+        OTP::JWT::Token.jwt_algorithm = 'HS256'
+      end
+
+      it { expect(described_class.sign(payload)).to eq(token) }
+    end
+  end
+
+  describe '#verify' do
+    it do
+      expect(described_class.verify(token).first).to include(payload)
+    end
+
+    it 'with a bad token' do
+      expect { described_class.verify(FFaker::Internet.password) }
+        .to raise_error(JWT::DecodeError)
+    end
+
+    it 'with an expired token' do
+      token = OTP::JWT::Token.sign(
+        sub: FFaker::Internet.password, exp: DateTime.now.to_i
+      )
+      expect { described_class.verify(token) }
+        .to raise_error(JWT::ExpiredSignature)
+    end
+
+    context 'with an RSA key' do
+      before do
+        OTP::JWT::Token.jwt_signature_key = OpenSSL::PKey::RSA.new(2048)
+        OTP::JWT::Token.jwt_algorithm = 'RS256'
+      end
+
+      after do
+        OTP::JWT::Token.jwt_signature_key = '_'
+        OTP::JWT::Token.jwt_algorithm = 'HS256'
+      end
+
+      it do
+        expect(described_class.verify(token).first).to include(payload)
+      end
+    end
+  end
+
+  describe '#decode' do
+    let(:user) { create_user }
+    let(:payload) { { 'sub' => user.id } }
+
+    it do
+      expect(
+        described_class.decode(token) { |p| User.find(p['sub']) }
+      ).to eq(user)
+    end
+
+    context 'with a bad token' do
+      let(:token) { FFaker::Internet.password }
+
+      it do
+        expect(described_class.decode(token)).to eq(nil)
+      end
+    end
+
+    context 'with the none algorithm' do
+      before do
+        OTP::JWT::Token.jwt_algorithm = 'none'
+      end
+
+      after do
+        OTP::JWT::Token.jwt_algorithm = 'HS256'
+      end
+
+      it do
+        expect(
+          described_class.decode(token) { |p| User.find(p['sub']) }
+        ).to eq(user)
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,71 @@
+require 'bundler/setup'
+require 'simplecov'
+
+SimpleCov.start do
+  add_group 'Lib', 'lib'
+  add_group 'Tests', 'spec'
+end
+SimpleCov.minimum_coverage 90
+
+require 'otp'
+require 'otp/jwt'
+require 'otp/jwt/test_helpers'
+require_relative 'dummy'
+require 'ffaker'
+require 'rspec/rails'
+
+OTP::JWT::Token.jwt_signature_key = '_'
+OTP::Mailer.default from: '_'
+ActiveJob::Base.queue_adapter = :test
+ActionMailer::Base.delivery_method = :test
+
+module OTP::JWT::FactoryHelpers
+  # Creates an user
+  #
+  # @return [User]
+  def create_user(attrs = {})
+    User.create!(
+      full_name: FFaker::Name.name,
+      email: FFaker::Internet.email,
+      phone_number: FFaker::PhoneNumber.phone_number,
+      **attrs
+    )
+  end
+end
+
+module Rails4RequestMethods
+  [:get, :post, :put, :delete].each do |method_name|
+    define_method(method_name) do |path, named_args|
+      super(
+        path,
+        named_args.delete(:params),
+        named_args.delete(:headers)
+      )
+    end
+  end
+end
+
+RSpec.configure do |config|
+  config.use_transactional_fixtures = true
+  config.mock_with :rspec
+  config.filter_run_when_matching :focus
+  config.disable_monkey_patching!
+
+  config.expect_with :rspec do |c|
+    c.syntax = :expect
+  end
+
+  config.include OTP::JWT::TestHelpers, type: :model
+  config.include OTP::JWT::FactoryHelpers, type: :model
+  config.include ActiveJob::TestHelper, type: :model
+
+  config.include OTP::JWT::TestHelpers, type: :request
+  config.include OTP::JWT::FactoryHelpers, type: :request
+  config.include ActiveJob::TestHelper, type: :request
+  config.include Dummy.routes.url_helpers, type: :request
+
+  if ::Rails::VERSION::MAJOR == 4
+    config.include Rails4RequestMethods, type: :request
+    config.include Rails4RequestMethods, type: :controller
+  end
+end

data/spec/tokens_controller_spec.rb

@@ -0,0 +1,50 @@
+require 'spec_helper'
+
+RSpec.describe TokensController, type: :request do
+  let(:user) { create_user }
+  let(:params) { }
+
+  around do |examp|
+    perform_enqueued_jobs(&examp)
+  end
+
+  before do
+    ActionMailer::Base.deliveries.clear
+    ActiveJob::Base.queue_adapter.performed_jobs.clear
+    post(tokens_path, params: params.to_json, headers: json_headers)
+  end
+
+  it { expect(response).to have_http_status(:forbidden) }
+
+  context 'with good email and no otp' do
+    let(:params) { { email: user.email } }
+
+    it do
+      expect(response).to have_http_status(:bad_request)
+
+      mail = ActionMailer::Base.deliveries.last
+      expect(mail.subject).to eq(OTP::Mailer.default[:subject])
+    end
+  end
+
+  context 'with good email and bad otp' do
+    let(:params) { { email: user.email, otp: FFaker::Internet.password } }
+
+    it do
+      expect(response).to have_http_status(:forbidden)
+      expect(ActionMailer::Base.deliveries.size).to eq(0)
+    end
+  end
+
+  context 'with good email and good otp' do
+    let(:params) { { email: user.email, otp: user.otp } }
+
+    it do
+      expect(response).to have_http_status(:created)
+      expect(User.from_jwt(response_json['token'])).to eq(user)
+      expect(ActionMailer::Base.deliveries.size).to eq(0)
+
+      expect(user.reload.last_login_at).not_to be_blank
+    end
+  end
+end

data/spec/user_spec.rb

@@ -0,0 +1,63 @@
+require 'spec_helper'
+
+RSpec.describe User, type: :model do
+  let(:user) { create_user }
+
+  it { expect(User.new.otp_secret).not_to be_blank }
+  it { expect(User.new.deliver_otp).to be_blank }
+  it { expect(User.new.otp).to be_blank }
+
+  describe '#from_jwt' do
+    let(:token) { user.to_jwt }
+
+    it do
+      expect(User.from_jwt(token)).to eq(user)
+    end
+
+    context 'with a cast-able subject value' do
+      let(:token) { OTP::JWT::Token.sign(sub: user.id.to_s + '_text') }
+
+      it do
+        expect(User.from_jwt(token)).to be_nil
+      end
+    end
+
+    context 'with a custom claim name' do
+      let(:claim_value) { FFaker::Internet.password }
+      let(:token) { user.to_jwt(my_claim_name: claim_value) }
+
+      it do
+        expect(OTP::JWT::Token.decode(token)['my_claim_name'])
+          .to eq(claim_value)
+        expect(User.from_jwt(token, 'my_claim_name')).to be_nil
+      end
+    end
+  end
+
+  describe '#otp' do
+    it do
+      expect { user.otp }.to change(user, :otp_counter).by(1)
+    end
+
+    context 'without a secret' do
+      it do
+        user.update_column(:otp_secret, nil)
+        expect(user.otp).to be_nil
+      end
+    end
+  end
+
+  describe '#verify_otp' do
+    it 'increments the otp counter after verification' do
+      expect(user.verify_otp(user.otp)).to be_truthy
+      expect { user.verify_otp(user.otp) }.to change(user, :otp_counter).by(2)
+    end
+
+    context 'without a secret' do
+      it do
+        user.update_column(:otp_secret, nil)
+        expect(user.verify_otp(rand(1000..2000).to_s)).to be_nil
+      end
+    end
+  end
+end

data/spec/users_controller_spec.rb

@@ -0,0 +1,41 @@
+require 'spec_helper'
+
+RSpec.describe UsersController, type: :request do
+  let(:user) { nil }
+
+  before do
+    get(users_path, headers: jwt_auth_header(user))
+  end
+
+  it { expect(response).to have_http_status(:unauthorized) }
+
+  context 'with known subject token' do
+    let(:user) { create_user }
+
+    it { expect(response).to have_http_status(:ok) }
+
+    context 'with the expiration for JWT in future' do
+      let(:user) { create_user(expire_jwt_at: DateTime.tomorrow) }
+
+      it do
+        expect(response).to have_http_status(:ok)
+        expect(user.reload.expire_jwt_at).not_to be_nil
+      end
+    end
+
+    context 'with the expiration past for JWT' do
+      let(:user) { create_user(expire_jwt_at: DateTime.yesterday) }
+
+      it do
+        expect(response).to have_http_status(:unauthorized)
+        expect(user.reload.expire_jwt_at).not_to be_nil
+      end
+    end
+  end
+
+  context 'with bad subject' do
+    let(:user) { FFaker::Internet.password }
+
+    it { expect(response).to have_http_status(:unauthorized) }
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: otp-jwt
 version: !ruby/object:Gem::Version
-  version: 0.2.4
+  version: 0.3.0
 platform: ruby
 authors:
 - Stas Suscov
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-05-16 00:00:00.000000000 Z
+date: 2021-10-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -30,28 +30,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.2.0.pre.beta.0
+        version: '2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.2.0.pre.beta.0
+        version: '2'
 - !ruby/object:Gem::Dependency
   name: rotp
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.1'
+        version: '6'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.1'
+        version: '6'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -108,6 +108,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
@@ -178,6 +192,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: tzinfo-data
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: yardstick
   requirement: !ruby/object:Gem::Requirement
@@ -199,14 +227,8 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- ".github/main.workflow"
-- ".gitignore"
-- ".rspec"
-- ".rubocop.yml"
-- ".yardstick.yml"
-- Gemfile
+- LICENSE.txt
 - README.md
-- Rakefile
 - lib/otp.rb
 - lib/otp/active_record.rb
 - lib/otp/jwt.rb
@@ -218,12 +240,17 @@ files:
 - lib/otp/mailer.rb
 - lib/otp/mailer/otp.text.erb
 - lib/otp/sms_job.rb
-- otp-jwt.gemspec
+- spec/dummy.rb
+- spec/otp/jwt/token_spec.rb
+- spec/spec_helper.rb
+- spec/tokens_controller_spec.rb
+- spec/user_spec.rb
+- spec/users_controller_spec.rb
 homepage: https://github.com/stas/otp-jwt
 licenses:
-- TBD
+- MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -238,9 +265,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.5.2.2
-signing_key: 
+rubygems_version: 3.2.22
+signing_key:
 specification_version: 4
 summary: Passwordless HTTP APIs
 test_files: []

data/.github/main.workflow

@@ -1,44 +0,0 @@
-workflow "Tests" {
-  on = "push"
-  resolves = [
-    "rspec-ruby2.6_rails4",
-    "rspec-ruby2.6_rails5",
-    "rspec-ruby2.6_rails6"
-  ]
-}
-
-action "rspec-ruby2.6_rails4" {
-  uses = "docker://ruby:2.6-alpine"
-  env = {
-    RAILS_VERSION = "~> 4"
-    SQLITE3_VERSION = "~> 1.3.6"
-  }
-  args = [
-    "sh", "-c",
-    "apk add -U git build-base sqlite-dev && bundle install && rake"
-  ]
-}
-
-action "rspec-ruby2.6_rails5" {
-  uses = "docker://ruby:2.6-alpine"
-  needs = ["rspec-ruby2.6_rails4"]
-  env = {
-    RAILS_VERSION = "~> 5"
-  }
-  args = [
-    "sh", "-c",
-    "apk add -U git build-base sqlite-dev && bundle install && rake"
-  ]
-}
-
-action "rspec-ruby2.6_rails6" {
-  uses = "docker://ruby:2.6-alpine"
-  needs = ["rspec-ruby2.6_rails5"]
-  env = {
-    RAILS_VERSION = "~> 6.0.0.rc1"
-  }
-  args = [
-    "sh", "-c",
-    "apk add -U git build-base sqlite-dev && bundle install && rake"
-  ]
-}

data/.gitignore

@@ -1,4 +0,0 @@
-coverage
-pkg
-*.lock
-tmp

data/.rspec

@@ -1,3 +0,0 @@
---format documentation
---color
---require spec_helper

data/.rubocop.yml

@@ -1,46 +0,0 @@
-inherit_gem:
-  rubocop-rails_config:
-    - config/rails.yml
-
-require:
-  - rubocop-performance
-  - rubocop-rspec
-
-Rails:
-  Enabled: true
-
-RSpec:
-  Enabled: true
-
-RSpec/MultipleExpectations:
-  Enabled: false
-
-Performance:
-  Enabled: true
-
-Bundler:
-  Enabled: true
-
-Gemspec:
-  Enabled: true
-
-Style/StringLiterals:
-  Enabled: true
-  EnforcedStyle: single_quotes
-
-Style/FrozenStringLiteralComment:
-  Enabled: false
-
-Metrics/LineLength:
-  Max: 80
-
-Metrics/BlockLength:
-  Exclude:
-    - 'spec/**/*_spec.rb'
-    - '**/*.gemspec'
-
-Layout/IndentationConsistency:
-  EnforcedStyle: normal
-
-Style/BlockDelimiters:
-  Enabled: true

data/.yardstick.yml

@@ -1,29 +0,0 @@
----
-path: ['lib/**/*.rb']
-threshold: 100
-rules:
-  ApiTag::Presence:
-    enabled: false
-  ApiTag::Inclusion:
-    enabled: false
-  ApiTag::ProtectedMethod:
-    enabled: false
-  ApiTag::PrivateMethod:
-    enabled: false
-  ExampleTag:
-    enabled: false
-  ReturnTag:
-    enabled: true
-    exclude: []
-  Summary::Presence:
-    enabled: true
-    exclude: []
-  Summary::Length:
-    enabled: true
-    exclude: []
-  Summary::Delimiter:
-    enabled: true
-    exclude: []
-  Summary::SingleLine:
-    enabled: true
-    exclude: []

data/Gemfile

@@ -1,7 +0,0 @@
-source 'https://rubygems.org'
-
-# Specify your gem's dependencies in otp-jwt.gemspec
-gemspec
-
-gem 'rails', ENV['RAILS_VERSION']
-gem 'tzinfo-data'

data/Rakefile

@@ -1,30 +0,0 @@
-require 'bundler/gem_tasks'
-require 'rspec/core/rake_task'
-require 'rubocop/rake_task'
-require 'yaml'
-require 'yardstick'
-
-desc('Documentation stats and measurements')
-task('qa:docs') do
-  yaml = YAML.load_file(File.expand_path('../.yardstick.yml', __FILE__))
-  config = Yardstick::Config.coerce(yaml)
-  measure = Yardstick.measure(config)
-  measure.puts
-  coverage = Yardstick.round_percentage(measure.coverage * 100)
-  exit(1) if coverage < config.threshold
-end
-
-desc('Codestyle check and linter')
-RuboCop::RakeTask.new('qa:code') do |task|
-  task.fail_on_error = true
-  task.patterns = [
-    'lib/**/*.rb',
-    'spec/**/*.rb'
-  ]
-end
-
-desc('Run CI QA tasks')
-task(qa: ['qa:docs', 'qa:code'])
-
-RSpec::Core::RakeTask.new(spec: :qa)
-task(default: :spec)

data/otp-jwt.gemspec

@@ -1,36 +0,0 @@
-lib = File.expand_path('../lib', __FILE__)
-$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-
-require 'otp/jwt/version'
-
-Gem::Specification.new do |spec|
-  spec.name          = 'otp-jwt'
-  spec.version       = OTP::JWT::VERSION
-  spec.authors       = ['Stas Suscov']
-  spec.email         = ['stas@nerd.ro']
-
-  spec.summary       = 'Passwordless HTTP APIs'
-  spec.description   = 'OTP (email, SMS) JWT authentication for HTTP APIs.'
-  spec.homepage      = 'https://github.com/stas/otp-jwt'
-  spec.license       = 'TBD'
-
-  spec.files         = Dir.chdir(File.expand_path('..', __FILE__)) do
-    `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(spec)/}) }
-  end
-  spec.require_paths = ['lib']
-
-  spec.add_dependency 'activesupport'
-  spec.add_dependency 'jwt', '~> 2.2.0.pre.beta.0'
-  spec.add_dependency 'rotp', '~> 4.1'
-
-  spec.add_development_dependency 'bundler'
-  spec.add_development_dependency 'ffaker'
-  spec.add_development_dependency 'rails'
-  spec.add_development_dependency 'rspec-rails'
-  spec.add_development_dependency 'rubocop-performance'
-  spec.add_development_dependency 'rubocop-rails_config'
-  spec.add_development_dependency 'rubocop-rspec'
-  spec.add_development_dependency 'simplecov'
-  spec.add_development_dependency 'sqlite3', ENV['SQLITE3_VERSION']
-  spec.add_development_dependency 'yardstick'
-end