RubyGems - token_authority - Versions diffs - 0.3.0 → 0.3.1 - Mend

token_authority 0.3.0 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +9 -2
data/app/models/concerns/token_authority/claim_validatable.rb +3 -0
data/app/models/token_authority/access_token.rb +2 -0
data/lib/token_authority/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8989a407b702176b74b3e121e4463dfc28e858097716c4cf6752f2ab54c78871
-  data.tar.gz: 1ecdecd8785d3f214e64359b4ab7e43ecb8630eb2af9237bb5a4d8a604d5227d
+  metadata.gz: 30eb5cd2101ab6cc044d31d5dc15396ffef4c9efd955960c6dec70e57e613583
+  data.tar.gz: 6a24f7df903407dff09561e1ece8495c803dc6fa7175f0d3ff3641d8120ddc8f
 SHA512:
-  metadata.gz: b3b4bbc0e464d6781255efe9b523d753abbe78843c5bec77c5057861eef157b112e099c4afbd8a073ef0f1d1f69fff1946f27dddb6d0ce95a9a91bb3e0bc6c34
-  data.tar.gz: 0615a3d781b577ebb433bc5e01cae57827a8fe5bad6a6866092ea44438526e81090c28a39b708120150610c34a544fb4a405f8d9331f16e18f7943a27e55df3a
+  metadata.gz: 62f5c24dd950f5956817ca5531cd695b0ab3b1a2785e67c828c3ca116a2254ff25b376abf5db01cf9931da8bfce13c9869dbff332c8a8955f30009ef5e296a41
+  data.tar.gz: be5cd3a31b883f6bf7bc0b80a1d2d1d87bcfaa1dc4c8469d3c36b874aeac2a471cf0286a0c8c35e11b5a4fec0bb8b749a98acf9fc3709a4c26253bd0728637ec

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,11 @@
 ## [Unreleased]
+## [0.3.1] - 2025-01-25
+### Fixed
+- Do not expire OAuth sessions when access tokens expire; this was preventing session refresh flow from completing successfully in some cases.
 ## [0.3.0] - 2025-01-24
 ### Added
@@ -69,8 +75,9 @@
 - Initial release
-[Unreleased]: https://github.com/dickdavis/token_authority/compare/v0.3.0...HEAD
-[0.2.1]: https://github.com/dickdavis/token_authority/compare/v0.2.1...v0.3.0
+[Unreleased]: https://github.com/dickdavis/token_authority/compare/v0.3.1...HEAD
+[0.3.1]: https://github.com/dickdavis/token_authority/compare/v0.3.0...v0.3.1
+[0.3.0]: https://github.com/dickdavis/token_authority/compare/v0.2.1...v0.3.0
 [0.2.1]: https://github.com/dickdavis/token_authority/compare/v0.2.0...v0.2.1
 [0.2.0]: https://github.com/dickdavis/token_authority/compare/v0.1.0...v0.2.0
 [0.1.0]: https://github.com/dickdavis/token_authority/releases/tag/v0.1.0

data/app/models/concerns/token_authority/claim_validatable.rb CHANGED Viewed

@@ -33,6 +33,8 @@ module TokenAuthority
       include ActiveModel::Validations
       include ActiveModel::Validations::Callbacks
+      class_attribute :expire_session_on_expiration, default: true
       attr_accessor :aud, :exp, :iat, :iss, :jti
       validates :jti, presence: true
@@ -80,6 +82,7 @@ module TokenAuthority
     def errors_for_expirable_claims?
       return false if skip_token_authority_session_update?
+      return false unless self.class.expire_session_on_expiration
       errors.attribute_names.intersect?(EXPIRABLE_CLAIMS)
     end

data/app/models/token_authority/access_token.rb CHANGED Viewed

@@ -31,6 +31,8 @@ module TokenAuthority
   class AccessToken
     include TokenAuthority::ClaimValidatable
+    self.expire_session_on_expiration = false
     # @!attribute [rw] sub
     #   The subject identifier (resource owner) per RFC 9068.
     #   @return [String]

data/lib/token_authority/version.rb CHANGED Viewed

@@ -2,5 +2,5 @@ module TokenAuthority
   # The current version of the TokenAuthority gem.
   #
   # @return [String] the version string in semantic versioning format
-  VERSION = "0.3.0"
+  VERSION = "0.3.1"
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: token_authority
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.3.1
 platform: ruby
 authors:
 - Dick Davis