sinatra-portier 2.0 → 2.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7cd3476f061fb1de32d057c4f8a6161fb62e0321f47f0c6d264a31d3c16755f7
-  data.tar.gz: 1773f716e2a04c6e2b6de9c3fe221b4352004a3b1de09afb763846ff4ea34d17
+  metadata.gz: 5775c72ef60b996019c367445bd97aa6a4dd708586e1b16017a211bd5d8f26fa
+  data.tar.gz: 0432d790f5786785e7cc27747183530e6fd3d175953124ecc55c0624d3c92441
 SHA512:
-  metadata.gz: 974c8c6c0464f36a73d93bde35a29545874da0ae0c1832d5cac4f0588e4e774fcaf365201e403936a1138c51c39efd07ebd14fb4fd857a72348d3fbf19779ba3
-  data.tar.gz: 4b305bc259bad7d833a74d3d27dfbc8922b83a5bb2b6dce48b3077f433b89de7d2635f5506e8c084647fef60b29b8b1973e1329e3390959af80565053b819600
+  metadata.gz: 1de7ef55a194edae5ed32618be1527e5b9873b6f5a80406e167f4883c07757c2284b3eb86b187254241f305ef7642ebfd63e3fc8691baf139b15f8ffaad589c1
+  data.tar.gz: ebbb833c8dc072e230edbee513c29736165d93301dde85d4714bd0e6f9b7405208ead1220a45782a22e7dc8f7a7fd304b745ccda983428c26d2d5bdc837b4cf1

data/README.md

@@ -1,4 +1,4 @@
-Sinatra plugin that allows authentication against portier, the successor for [Persona](https://login.persona.org/about). Like Persona, this lets you verify the email identity of a user.
+Sinatra plugin that allows authentication against portier, the successor for [Persona](https://github.com/mozilla/persona). Like Persona, this lets you verify the email identity of a user.
 
 To be a drop-in replacement, the code keeps using the browserid namespace.
 

data/lib/sinatra/browserid.rb

@@ -22,8 +22,16 @@ module Sinatra
         # Init an in-memory cache via the cachy gem. We use this
         # instead of the session because of dropped sessions
         # after redirects, see https://github.com/sinatra/sinatra/issues/1742.
-        Cachy.cache_store = Moneta.new(:Memory, expires: 600) # 10 minutes
+        #Cachy.cache_store = Moneta.new(settings.browserid_cache_store == :memcached ? :Memcached : :Memory, expires: 600) # 10 minutes
+        begin
+            require 'dalli'
+            Cachy.cache_store = Moneta.new(:Memcached, expires: 600)
+            p 'dalli'
+        rescue
+            Cachy.cache_store = Moneta.new(:Memory, expires: 600) # 10 minutes
                                                               # We need to set a global :expires here because of https://github.com/grosser/cachy/issues/7
+            p 'memory'
+        end
     
         def self.registered(app)
             app.helpers BrowserID::Helpers
@@ -46,11 +54,16 @@ module Sinatra
                   public_key_jwks = ::JSON.parse(URI.parse(public_key_jwks_uri).read)
                   public_key = OpenSSL::PKey::RSA.new
                   if public_key.respond_to? :set_key
-                    # Set n and d via the new set_key function, as direct access to n and e is blocked for some ruby and openssl versions.
-                    # Note that we have no d, as this is a public key, which would be the third param
-                    public_key.set_key( (OpenSSL::BN.new UrlSafeBase64.decode64(public_key_jwks["keys"][0]["n"]), 2),
-                                        (OpenSSL::BN.new UrlSafeBase64.decode64(public_key_jwks["keys"][0]["e"]), 2),
-                                        nil)
+                    # We initially set n and d via the then new set_key function, as direct access to n and e is blocked for some ruby and openssl versions.
+                    # But with OpenSSL 3 this function throws an error, as keys are immutable now. Instead we have to generate the key directly with
+                    # the right params, as in https://github.com/railslove/epics/issues/138
+                    sequence = []
+                    # modulus:
+                    sequence << OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(UrlSafeBase64.decode64(public_key_jwks["keys"][0]["n"]), 2))
+                    # exponent:
+                    sequence << OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(UrlSafeBase64.decode64(public_key_jwks["keys"][0]["e"]), 2))
+
+                    public_key = OpenSSL::PKey::RSA.new(OpenSSL::ASN1::Sequence(sequence).to_der)
                   else
                     public_key.e = OpenSSL::BN.new UrlSafeBase64.decode64(public_key_jwks["keys"][0]["e"]), 2 
                     public_key.n = OpenSSL::BN.new UrlSafeBase64.decode64(public_key_jwks["keys"][0]["n"]), 2

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: sinatra-portier
 version: !ruby/object:Gem::Version
-  version: '2.0'
+  version: 2.1.0
 platform: ruby
 authors:
 - Pete Fritchman
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-02-02 00:00:00.000000000 Z
+date: 2024-06-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: sinatra
@@ -142,7 +142,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.32
+rubygems_version: 3.5.9
 signing_key:
 specification_version: 4
 summary: Sinatra extension for user authentication with portier