RubyGems - stytch - Versions diffs - 10.16.0 → 10.17.0 - Mend

stytch 10.16.0 → 10.17.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e590a7107606ed357b176a1bad55094f96da9ecf8de14050acd5d2b35642984e
-  data.tar.gz: b542fde0c5ec2017b290242b84ef113372dfbb2ccb48ba5cba03bb5fd93b6859
+  metadata.gz: 111462e345fe52ad3693fc599d4534832028d8e52c1626d159353060119c1b23
+  data.tar.gz: 1a1032562e9ed90a8f17f062a6c3ad3be7b9ea74133467c1a9a3f8e67e58427b
 SHA512:
-  metadata.gz: 0ae4779d69df0c0bbdfe69195288fa5713d9a03b3f321e702d3ab518fb2ea0fe9eda47cd4bf67521c7a262aa8b1c44d3f239b2c88b4fc78517f9f347c55383f7
-  data.tar.gz: 35f75144aae1a2ef8934b5cf74c22833df6ce8bd7d1cc2ad9199bfcfbdf545251e922eaf70248cb4dc6afd88689b463fdbe55af974d0dc96c8ddd465ed8b9c7b
+  metadata.gz: 5b1792dcf36aad3226ec09c1b850888939f67e3e6a00b2a353f6a2e3ecb56707ab8187a79baf1887922113dbd3dced62cd23805f6cdde22675f7a0d1e943c440
+  data.tar.gz: 0fb41b4b5477dcfed44254599be3b0fc33b8fc49f54c4a16c6aeb3a462e131f91a9670c8b4066168351c73732adc7ee35bc4ac32e0c5b4fee2ec85b4e36a047c

data/lib/stytch/b2b_sessions.rb CHANGED Viewed

@@ -582,10 +582,13 @@ module StytchB2B
       max_token_age_seconds = 300 if max_token_age_seconds.nil?
       clock_tolerance_seconds = 0 if clock_tolerance_seconds.nil?
-      issuer = 'stytch.com/' + @project_id
+      default_issuer = 'stytch.com/' + @project_id
+      base_url_issuer = @connection.api_host
+      valid_issuers = [default_issuer, base_url_issuer]
       begin
         decoded_token = JWT.decode session_jwt, nil, true,
-                                   { jwks: @jwks_loader, iss: issuer, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ['RS256'], nbf_leeway: clock_tolerance_seconds }
+                                   { jwks: @jwks_loader, iss: valid_issuers, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ['RS256'], nbf_leeway: clock_tolerance_seconds }
         session = decoded_token[0]
         iat_time = Time.at(session['iat']).to_datetime

data/lib/stytch/m2m.rb CHANGED Viewed

@@ -184,10 +184,13 @@ module Stytch
     # If clock_tolerance_seconds is not supplied 0 seconds will be used as the default.
     def authenticate_token_local(jwt, clock_tolerance_seconds: nil)
       clock_tolerance_seconds = 0 if clock_tolerance_seconds.nil?
-      issuer = 'stytch.com/' + @project_id
+      default_issuer = 'stytch.com/' + @project_id
+      base_url_issuer = @connection.api_host
+      valid_issuers = [default_issuer, base_url_issuer]
       begin
         decoded_token = JWT.decode jwt, nil, true,
-                                   { jwks: @jwks_loader, iss: issuer, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ['RS256'], nbf_leeway: clock_tolerance_seconds }
+                                   { jwks: @jwks_loader, iss: valid_issuers, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ['RS256'], nbf_leeway: clock_tolerance_seconds }
         decoded_token[0]
       rescue JWT::InvalidIssuerError
         raise JWTInvalidIssuerError

data/lib/stytch/sessions.rb CHANGED Viewed

@@ -384,10 +384,13 @@ module Stytch
       max_token_age_seconds = 300 if max_token_age_seconds.nil?
       clock_tolerance_seconds = 0 if clock_tolerance_seconds.nil?
-      issuer = 'stytch.com/' + @project_id
+      default_issuer = 'stytch.com/' + @project_id
+      base_url_issuer = @connection.api_host
+      valid_issuers = [default_issuer, base_url_issuer]
       begin
         decoded_token = JWT.decode session_jwt, nil, true,
-                                   { jwks: @jwks_loader, iss: issuer, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ['RS256'], nbf_leeway: clock_tolerance_seconds }
+                                   { jwks: @jwks_loader, iss: valid_issuers, verify_iss: true, aud: @project_id, verify_aud: true, algorithms: ['RS256'], nbf_leeway: clock_tolerance_seconds }
         session = decoded_token[0]
         iat_time = Time.at(session['iat']).to_datetime

data/lib/stytch/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Stytch
-  VERSION = '10.16.0'
+  VERSION = '10.17.0'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: stytch
 version: !ruby/object:Gem::Version
-  version: 10.16.0
+  version: 10.17.0
 platform: ruby
 authors:
 - stytch
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-04-23 00:00:00.000000000 Z
+date: 2025-04-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday