RubyGems - warden - Versions diffs - 1.2.7 → 1.2.8 - Mend

warden 1.2.7 → 1.2.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (48) hide show

checksums.yaml +5 -5
data/.gitignore +5 -0
data/.rspec +3 -0
data/.travis.yml +7 -0
data/{History.rdoc → CHANGELOG.md} +7 -3
data/Gemfile +1 -1
data/Gemfile.lock +40 -0
data/LICENSE +1 -1
data/README.md +18 -0
data/Rakefile +3 -8
data/lib/warden.rb +1 -1
data/lib/warden/config.rb +1 -1
data/lib/warden/errors.rb +2 -2
data/lib/warden/hooks.rb +1 -1
data/lib/warden/manager.rb +2 -2
data/lib/warden/mixins/common.rb +1 -1
data/lib/warden/proxy.rb +15 -4
data/lib/warden/session_serializer.rb +1 -1
data/lib/warden/strategies/base.rb +1 -1
data/lib/warden/test/helpers.rb +2 -2
data/lib/warden/test/mock.rb +5 -5
data/lib/warden/test/warden_helpers.rb +1 -1
data/lib/warden/version.rb +2 -2
data/warden.gemspec +20 -18
metadata +18 -33
data/README.textile +0 -9
data/spec/helpers/request_helper.rb +0 -52
data/spec/helpers/strategies/fail_with_user.rb +0 -11
data/spec/helpers/strategies/failz.rb +0 -9
data/spec/helpers/strategies/invalid.rb +0 -9
data/spec/helpers/strategies/pass.rb +0 -9
data/spec/helpers/strategies/pass_with_message.rb +0 -9
data/spec/helpers/strategies/password.rb +0 -14
data/spec/helpers/strategies/single.rb +0 -13
data/spec/spec_helper.rb +0 -26
data/spec/warden/authenticated_data_store_spec.rb +0 -115
data/spec/warden/config_spec.rb +0 -49
data/spec/warden/errors_spec.rb +0 -48
data/spec/warden/hooks_spec.rb +0 -374
data/spec/warden/manager_spec.rb +0 -341
data/spec/warden/proxy_spec.rb +0 -1051
data/spec/warden/scoped_session_serializer.rb +0 -124
data/spec/warden/session_serializer_spec.rb +0 -54
data/spec/warden/strategies/base_spec.rb +0 -314
data/spec/warden/strategies_spec.rb +0 -95
data/spec/warden/test/helpers_spec.rb +0 -94
data/spec/warden/test/mock_spec.rb +0 -16
data/spec/warden/test/test_mode_spec.rb +0 -76

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 62095c3b46348d469f28bc0b73c4e4d1dea3c772
-  data.tar.gz: c95c0c03bd6f5cc31ebc20674d8f679331cfa6b4
+SHA256:
+  metadata.gz: 98bbb4bde4e4b1168fd883823a9e63f81cb6be40c117d92fd461299f4de0f86a
+  data.tar.gz: 03ac0df2de9c151a6f5387700141248be127a82177d21da1f1fc2d00db10bc64
 SHA512:
-  metadata.gz: 2c6897e0cc915b2d3fe2dabf98f5c694a3cbc531974c61c578a579d388c21cca9755a39a6b322a25c41eb1526988c63a531afbe954f4a6075aa3d410cd9e5ef9
-  data.tar.gz: f0a701673890402bf2717fb4ff356046a24ad85dbcf570e52b109fa9a741e18534a49690b0ff4e0ace9fba7c65ac24e17dd5324849af925ac0e27cf497b64246
+  metadata.gz: 5d8d0d43d9f1a28d12ca7044608e175b08444a46c81c42a6c1ad351d517e45919a653005522c576bd4fe4d8de1d3b2472c52c5b524b32606bb2e69d82a533a33
+  data.tar.gz: 044152b6566f94d9bcdcd4fda5297decb19ed5146adaaee3bdd07b154d9b1e3b9d840c8da21b110add36f8f856f1879cf2547e12298f710b75c734269c86daff

data/.gitignore ADDED

@@ -0,0 +1,5 @@
+.DS_Store
+pkg
+.*~
+*.gem

data/.rspec ADDED

@@ -0,0 +1,3 @@
+--require spec_helper
+--format documentation
+--color

data/.travis.yml ADDED

@@ -0,0 +1,7 @@
+language: ruby
+install:
+  - bundle install
+rvm:
+  - 2.2
+  - 2.3
+  - 2.4.2

data/{History.rdoc → CHANGELOG.md} RENAMED

@@ -1,3 +1,9 @@
+== Version 1.2.8 / 2018-11-15
+* Bugfix: Flips two lines to allow scopes authenticating from another without stepping on each other's toes. (PR #144)
+* Update `rack` dependency to >= 2.0.6 due to security vulnerability
+* Internal: Add Rubocop Lint checking
+* Internal: Update RSpec to use `.rspec` file
 == Version 1.2.7 / 2016-10-12
 * Added 'frozen_string_literal' comment, bump ruby to 2.3
@@ -137,7 +143,7 @@
 === Version 0.5.1 / 2009-10-25
 * enhancements
-  * Adds yeilding to authenticated? and unauthenticated? methods (hassox)
+  * Adds yielding to authenticated? and unauthenticated? methods (hassox)
   * Adds an option to silence missing strategies (josevalim)
   * Add an option to authenticate(!) to prevent storage of a user into the session (hassox)
   * allow custom :action to be thrown (josevalim)
@@ -155,5 +161,3 @@
 * enhancements
   * add a hook for plugins to specify how they can clear the whole section

data/Gemfile CHANGED

@@ -4,7 +4,7 @@ source 'https://rubygems.org'
 gemspec
 gem 'rake'
-gem 'rack', '1.3'
+gem 'rack', '>= 2.0.6'
 group :test do
   gem 'rspec', '~>3'

data/Gemfile.lock ADDED

@@ -0,0 +1,40 @@
+PATH
+  remote: .
+  specs:
+    warden (1.2.8)
+      rack (>= 2.0.6)
+GEM
+  remote: https://rubygems.org/
+  specs:
+    diff-lcs (1.3)
+    rack (2.0.6)
+    rack-test (0.7.0)
+      rack (>= 1.0, < 3)
+    rake (12.1.0)
+    rspec (3.6.0)
+      rspec-core (~> 3.6.0)
+      rspec-expectations (~> 3.6.0)
+      rspec-mocks (~> 3.6.0)
+    rspec-core (3.6.0)
+      rspec-support (~> 3.6.0)
+    rspec-expectations (3.6.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.6.0)
+    rspec-mocks (3.6.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.6.0)
+    rspec-support (3.6.0)
+PLATFORMS
+  ruby
+DEPENDENCIES
+  rack (>= 2.0.6)
+  rack-test
+  rake
+  rspec (~> 3)
+  warden!
+BUNDLED WITH
+   1.17.1

data/LICENSE CHANGED

@@ -1,4 +1,4 @@
-Copyright (c) 2009 Daniel Neighman
+Copyright (c) 2009-2017 Daniel Neighman
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the

data/README.md ADDED

@@ -0,0 +1,18 @@
+# Warden
+## Getting Started
+Please see the [Warden Wiki](https://wiki.github.com/hassox/warden) for overview documentation.
+## Maintainers
+* Daniel Neighman (hassox)
+* José Valim (josevalim)
+* Justin Smestad (jsmestad)
+* Whitney Smestad (whithub)
+[A list of all contributors is available on Github.](https://github.com/hassox/warden/contributors)
+## LICENSE
+See `LICENSE` file.

data/Rakefile CHANGED

@@ -1,13 +1,8 @@
 # -*- encoding: utf-8 -*-
 # frozen_string_literal: true
-require 'rubygems'
-require 'rake'
-$:.unshift  File.join(File.dirname(__FILE__), "lib")
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
-require 'rspec/core'
-require 'rspec/core/rake_task'
+RSpec::Core::RakeTask.new(:spec)
 task :default => :spec
-desc "Run all specs in spec directory"
-RSpec::Core::RakeTask.new(:spec)

data/lib/warden.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 require 'forwardable'
 require 'warden/mixins/common'

data/lib/warden/config.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   # This class is yielded inside Warden::Manager. If you have a plugin and want to

data/lib/warden/errors.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   class Proxy
     # Lifted from DataMapper's dm-validations plugin :)
@@ -39,7 +39,7 @@ module Warden
       end
       def each
-        errors.map.each do |k,v|
+        errors.map.each do |_k,v|
           next if blank?(v)
           yield(v)
         end

data/lib/warden/hooks.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   module Hooks

data/lib/warden/manager.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 require 'warden/hooks'
 require 'warden/config'
@@ -22,7 +22,6 @@ module Warden
       @app, @config = app, Warden::Config.new(options)
       @config.default_strategies(*default_strategies) if default_strategies
       yield @config if block_given?
-      self
     end
     # Invoke the application guarding for throw :warden.
@@ -33,6 +32,7 @@ module Warden
       env['warden'] = Proxy.new(env, self)
       result = catch(:warden) do
+        env['warden'].on_request
         @app.call(env)
       end

data/lib/warden/mixins/common.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   module Mixins
     module Common

data/lib/warden/proxy.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   class UserNotSet < RuntimeError; end
@@ -29,6 +29,11 @@ module Warden
       @env, @users, @winning_strategies, @locked = env, {}, {}, false
       @manager, @config = manager, manager.config.dup
       @strategies = Hash.new { |h,k| h[k] = {} }
+    end
+    # Run the on_request callbacks
+    # :api: private
+    def on_request
       manager._run_callbacks(:on_request, self)
     end
@@ -172,7 +177,13 @@ module Warden
       if opts[:store] != false && opts[:event] != :fetch
         options = env[ENV_SESSION_OPTIONS]
-        options[:renew] = true if options
+        if options
+          if options.frozen?
+            env[ENV_SESSION_OPTIONS] = options.merge(:renew => true).freeze
+          else
+            options[:renew] = true
+          end
+        end
         session_serializer.store(user, scope)
       end
@@ -319,7 +330,7 @@ module Warden
       user = nil
       # Look for an existing user in the session for this scope.
-      # If there was no user in the session. See if we can get one from the request.
+      # If there was no user in the session, see if we can get one from the request.
       return user, opts if user = user(opts.merge(:scope => scope))
       _run_strategies_for(scope, args)
@@ -355,8 +366,8 @@ module Warden
         strategy = _fetch_strategy(name, scope)
         next unless strategy && !strategy.performed? && strategy.valid?
-        self.winning_strategy = @winning_strategies[scope] = strategy
         strategy._run!
+        self.winning_strategy = @winning_strategies[scope] = strategy
         break if strategy.halted?
       end
     end

data/lib/warden/session_serializer.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   class SessionSerializer
     attr_reader :env

data/lib/warden/strategies/base.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   module Strategies
     # A strategy is a place where you can put logic related to authentication. Any strategy inherits

data/lib/warden/test/helpers.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
   module Test
@@ -7,7 +7,7 @@ module Warden
     # These provide the ability to login and logout on any given request
     # Note: During the teardown phase of your specs you should include: Warden.test_reset!
     module Helpers
-      def self.included(base)
+      def self.included(_base)
         ::Warden.test_mode!
       end

data/lib/warden/test/mock.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 require 'rack'
@@ -8,7 +8,7 @@ module Warden
     # A mock of an application to get a Warden object to test on
     # Note: During the teardown phase of your specs you should include: Warden.test_reset!
     module Mock
-      def self.included(base)
+      def self.included(_base)
         ::Warden.test_mode!
       end
@@ -37,7 +37,7 @@ module Warden
       def app
         @app ||= begin
           opts = {
-            failure_app: lambda {
+            failure_app: lambda { |_e|
               [401, { 'Content-Type' => 'text/plain' }, ['You Fail!']]
             },
             default_strategies: :password,
@@ -46,7 +46,7 @@ module Warden
           Rack::Builder.new do
             use Warden::Test::Mock::Session
             use Warden::Manager, opts, &proc {}
-            run lambda { |e|
+            run lambda { |_e|
               [200, { 'Content-Type' => 'text/plain' }, ['You Win']]
             }
           end
@@ -55,7 +55,7 @@ module Warden
       class Session
         attr_accessor :app
-        def initialize(app,configs = {})
+        def initialize(app, _configs={})
           @app = app
         end

data/lib/warden/test/warden_helpers.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden

data/lib/warden/version.rb CHANGED

@@ -1,5 +1,5 @@
-# frozen_string_literal: true
 # encoding: utf-8
+# frozen_string_literal: true
 module Warden
-  VERSION = "1.2.7"
+  VERSION = "1.2.8"
 end

data/warden.gemspec CHANGED

@@ -1,25 +1,27 @@
 # -*- encoding: utf-8 -*-
 # frozen_string_literal: true
-require './lib/warden/version'
+lib = File.expand_path("../lib", __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'warden/version'
-Gem::Specification.new do |s|
-  s.name = %q{warden}
-  s.version = Warden::VERSION.dup
-  s.authors = ["Daniel Neighman"]
-  s.email = %q{has.sox@gmail.com}
-  s.license = "MIT"
-  s.extra_rdoc_files = [
+Gem::Specification.new do |spec|
+  spec.name = "warden"
+  spec.version = Warden::VERSION.dup
+  spec.authors = ["Daniel Neighman", "Justin Smestad", "Whitney Smestad", "José Valim"]
+  spec.email = %q{hasox.sox@gmail.com justin.smestad@gmail.com whitcolorado@gmail.com}
+  spec.homepage = "https://github.com/hassox/warden"
+  spec.summary = "An authentication library compatible with all Rack-based frameworks"
+  spec.license = "MIT"
+  spec.extra_rdoc_files = [
     "LICENSE",
-     "README.textile"
+    "README.md"
   ]
-  s.files = Dir["**/*"] - Dir["*.gem"] - ["Gemfile.lock"]
-  s.homepage = %q{http://github.com/hassox/warden}
-  s.rdoc_options = ["--charset=UTF-8"]
-  s.require_paths = ["lib"]
-  s.rubyforge_project = %q{warden}
-  s.rubygems_version = %q{1.3.7}
-  s.summary = %q{Rack middleware that provides authentication for rack applications}
-  s.add_dependency "rack", ">= 1.0"
+  spec.files = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+  spec.rdoc_options = ["--charset=UTF-8"]
+  spec.require_paths = ["lib"]
+  spec.rubyforge_project = %q{warden}
+  spec.add_dependency "rack", ">= 2.0.6"
 end

metadata CHANGED

@@ -1,14 +1,17 @@
 --- !ruby/object:Gem::Specification
 name: warden
 version: !ruby/object:Gem::Version
-  version: 1.2.7
+  version: 1.2.8
 platform: ruby
 authors:
 - Daniel Neighman
+- Justin Smestad
+- Whitney Smestad
+- José Valim
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-01-24 00:00:00.000000000 Z
+date: 2018-11-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack
@@ -16,26 +19,30 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: 2.0.6
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: 2.0.6
 description:
-email: has.sox@gmail.com
+email: hasox.sox@gmail.com justin.smestad@gmail.com whitcolorado@gmail.com
 executables: []
 extensions: []
 extra_rdoc_files:
 - LICENSE
-- README.textile
+- README.md
 files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- CHANGELOG.md
 - Gemfile
-- History.rdoc
+- Gemfile.lock
 - LICENSE
-- README.textile
+- README.md
 - Rakefile
 - lib/warden.rb
 - lib/warden/config.rb
@@ -51,30 +58,8 @@ files:
 - lib/warden/test/mock.rb
 - lib/warden/test/warden_helpers.rb
 - lib/warden/version.rb
-- spec/helpers/request_helper.rb
-- spec/helpers/strategies/fail_with_user.rb
-- spec/helpers/strategies/failz.rb
-- spec/helpers/strategies/invalid.rb
-- spec/helpers/strategies/pass.rb
-- spec/helpers/strategies/pass_with_message.rb
-- spec/helpers/strategies/password.rb
-- spec/helpers/strategies/single.rb
-- spec/spec_helper.rb
-- spec/warden/authenticated_data_store_spec.rb
-- spec/warden/config_spec.rb
-- spec/warden/errors_spec.rb
-- spec/warden/hooks_spec.rb
-- spec/warden/manager_spec.rb
-- spec/warden/proxy_spec.rb
-- spec/warden/scoped_session_serializer.rb
-- spec/warden/session_serializer_spec.rb
-- spec/warden/strategies/base_spec.rb
-- spec/warden/strategies_spec.rb
-- spec/warden/test/helpers_spec.rb
-- spec/warden/test/mock_spec.rb
-- spec/warden/test/test_mode_spec.rb
 - warden.gemspec
-homepage: http://github.com/hassox/warden
+homepage: https://github.com/hassox/warden
 licenses:
 - MIT
 metadata: {}
@@ -95,8 +80,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: warden
-rubygems_version: 2.6.8
+rubygems_version: 2.7.6
 signing_key:
 specification_version: 4
-summary: Rack middleware that provides authentication for rack applications
+summary: An authentication library compatible with all Rack-based frameworks
 test_files: []