wikk_web_auth 0.1.3 → 0.1.5

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: a3a11d0ad1eb25e5922bf01b2a1a82ac24c7cd11
-  data.tar.gz: 3bac1582e8ee3f9ba72d7368e43174a16342aa3c
+SHA256:
+  metadata.gz: f11e7bb6190975e4175a2e0b67a4a01b157c3c4787538138099dda2a020ae07a
+  data.tar.gz: 622a9d3c4d29584a860b39f3a1e30b5462b765f02373dae5d8ab1139a9b5b441
 SHA512:
-  metadata.gz: 8fe5be8ee402f1e9c5b0070feac195be961d2b4081a0c2acc314bac7a576d603cbd8565b16a88b9b584d54f2b238f8baa9f2e2f9459e24261d18f521fcf99781
-  data.tar.gz: d53acd59750c5479de0ef32b04e46c2b93d35cf63170d2c15204b31ada6381248b8036dce9ae1ce15b1f96e17010e42d29a3918ff127d84a9a565a6e4d2e2d29
+  metadata.gz: 83560ee013e45a01a0b8d7c62a4daef09d4c8e33501673d96b643a8ffb5675e136b3f4392b59041138d63abcc3e1584312bf027433ca941ef1da71c6f0fc22f7
+  data.tar.gz: 7fdd8602fa9427be49777ffa2b221f9718109c05c9c00b5a914b01a1af24fb242ef946c86f404efad63d818455c2626b7c8624cc31506f27c43f622ec663b249

data/History.txt

@@ -1,3 +1,49 @@
+robertburrowes	Wed Mar 29 22:03:06 2023 +1300
+	Test against the new lib version, not the gem
+robertburrowes	Wed Mar 29 22:02:44 2023 +1300
+	Put back lines deleted from previous version. Added nil? check on session_expires, which we are now getting.
+robertburrowes	Wed Mar 29 18:07:39 2023 +1300
+	consistent use of args.
+robertburrowes	Wed Mar 29 17:58:25 2023 +1300
+	make init more compatible with previous version
+robertburrowes	Wed Mar 29 16:27:00 2023 +1300
+	better naming for config
+robertburrowes	Wed Mar 29 16:13:58 2023 +1300
+	mixed my config files up. Need to do this more cleanly.
+robertburrowes	Wed Mar 29 13:17:17 2023 +1300
+	Change self.session_config to have a config_override: param, and to use named arguments
+robertburrowes	Tue Mar 28 09:28:06 2023 +1300
+	Give option to pass in config to class methods (and use the config passed into initialize)
+robertburrowes	Mon Mar 27 17:22:31 2023 +1300
+	Moved pstore default location, so we can test against new thin Rack version of rpc
+robertburrowes	Mon Jun 13 17:53:13 2022 +1200
+	rubcop'd
+robertburrowes	Mon Jun 13 17:51:24 2022 +1200
+	Merge branch 'master' of github.com:wikarekare/wikk_web_auth
+robertburrowes	Mon Jun 13 13:55:32 2022 +1200
+	rubocop Scripts to bash
+robertburrowes	Mon Jun 13 12:20:35 2022 +1200
+	rubocop'd
+robertburrowes	Sun Oct 25 21:36:01 2020 +1300
+	Tidy up the yard comments to fix formatting
+robertburrowes	Sun Oct 25 21:22:21 2020 +1300
+	mode change
+robertburrowes	Sun Oct 25 21:22:11 2020 +1300
+	new Hoe format
+robertburrowes	Sun Oct 25 21:21:50 2020 +1300
+	Improve dependencies to remove warning
+robertburrowes	Sun Oct 25 21:21:29 2020 +1300
+	include in repo
+robertburrowes	Sun Oct 25 21:21:18 2020 +1300
+	mv dev scripts to sbin
+robertburrowes	Mon Apr 13 23:14:27 2020 +1200
+	bump version
+robertburrowes	Mon Apr 13 23:14:14 2020 +1200
+	change logging name to match gem name
+robertburrowes	Mon Apr 13 23:13:37 2020 +1200
+	rename js to json
+robertburrowes	Mon Apr 13 23:13:19 2020 +1200
+	qualify dir for passwd.json
 robertburrowes	Fri May 26 09:38:55 2017 +1200
 	Bug fix: @log.err -> @log.error
 robertburrowes	Mon Jun 27 12:23:02 2016 +1200

data/README.md

@@ -1,8 +1,8 @@
 # wikk_web_auth
 
-* http://wikarekare.github.com/wikk_web_auth/
-* Source https://github.com/wikarekare/wikk_web_auth
-* Gem https://rubygems.org/gems/wikk_web_auth
+* Docs :: https://wikarekare.github.io/wikk_web_auth/
+* Source :: https://github.com/wikarekare/wikk_web_auth
+* Gem :: https://rubygems.org/gems/wikk_web_auth
 
 ## DESCRIPTION:
 

data/Rakefile

@@ -1,5 +1,4 @@
 # -*- ruby -*-
-
 require 'rubygems'
 require 'hoe'
 Hoe.plugin :yard
@@ -12,7 +11,7 @@ Hoe.spec 'wikk_web_auth' do
   self.yard_title = 'wikk_web_auth'
   self.yard_options = ['--markup', 'markdown', '--protected']
 
-  self.dependency "wikk_password", [">= 0.1.0"]
+  self.dependency "wikk_password", ['~> 0.1', '>= 0.1.0']
 end
 
 

data/lib/wikk_web_auth.rb

@@ -1,263 +1,279 @@
-module WIKK 
-  require 'cgi' 
-  require 'cgi/session' 
+module WIKK
+  require 'cgi'
+  require 'cgi/session'
   require 'cgi/session/pstore'     # provides CGI::Session::PStore
   require 'digest/sha2'
   require 'syslog/logger'
-  require "wikk_aes_256"
+  require 'wikk_aes_256'
   require 'wikk_password'
 
-  #Provides common authentication mechanism for all our cgis.
-  #  @attr_reader [String] user , the remote user's user name 
+  # Provides common authentication mechanism for all our cgis.
+  #  @attr_reader [String] user , the remote user's user name
   #  @attr_reader [String] session , the persistent Session record for this user
   class Web_Auth
-    VERSION = "0.1.3" #Gem version
-    
+    VERSION = '0.1.5' # Gem version
+
     attr_reader :user, :session
-    
-    #Create new Web_Auth instance, and proceed through authentication process by creating a login web form, if the user isn't authenticated.
+
+    # Create new Web_Auth instance, and proceed through authentication process by creating a login web form, if the user isn't authenticated.
     #  @param cgi [CGI] Which carries the client data, cookies, and PUT/POST form data.
-    #  @param config [WIKK::Configuration|Hash] the location of the password file is embedded here.
+    #  @param pwd_config [WIKK::Configuration|Hash] the location of the password file is embedded here.
+    #  @param pstore_config [Hash] overrides default pstore settings
     #  @param return_url [String] If we successfully authenticate, return here.
     #  @return [WIKK::Web_Auth]
-  	def initialize(cgi, config, return_url = nil)
-      if config.class == Hash
-        sym = config.each_with_object({}) { |(k,v),h| h[k.to_sym] = v }
+    def initialize(cgi, pwd_config = nil, return_url = nil, pstore_config: nil)
+      if pwd_config.instance_of?(Hash)
+        sym = pwd_config.each_with_object({}) { |(k, v), h| h[k.to_sym] = v }
         @config = Struct.new(*(k = sym.keys)).new(*sym.values_at(*k))
       else
-    	  @config = config
-    	end
-  	  @cgi = cgi
+        @pwd_config = pwd_config
+      end
+
+      @cgi = cgi
+      @pstore_config = pstore_config
       @user = ''
       @session = nil
-  	  begin
+      begin
         @log = Syslog::Logger.syslog
-      rescue
-        @log = Syslog::Logger.new("authlib.rbx")
+      rescue StandardError
+        @log = Syslog::Logger.new('wikk_web_auth')
       end
-      authenticate(return_url) 
+      authenticate(return_url)
     end
 
-    #way of checking without doing a full login sequence.
+    # way of checking without doing a full login sequence.
     #  @param cgi [CGI] Which carries the client data, cookies, and PUT/POST form data.
+    #  @param pstore_config [Hash] overrides default pstore settings
     #  @return [Boolean] authenticated == true.
-  	def self.authenticated?(cgi)
+    def self.authenticated?(cgi, pstore_config: nil )
       begin
-          session = CGI::Session.new(cgi, Web_Auth.session_config({'new_session' => false}) )
-          authenticated = (session != nil && session['session_expires'] > Time.now && session['auth'] == true && session['ip'] == cgi.remote_addr)
-          session.close #Writes back the session data
-          return authenticated
-      rescue ArgumentError => error # if no old session to find.
-    	  begin
+        session = CGI::Session.new(cgi, Web_Auth.session_config( { 'new_session' => false }, pstore_config: pstore_config ) )
+        authenticated = (session != nil && session['session_expires'] > Time.now && session['auth'] == true && session['ip'] == cgi.remote_addr)
+        session.close # Writes back the session data
+        return authenticated
+      rescue ArgumentError => e # if no old session to find.
+        begin
           @log = Syslog::Logger.syslog
-        rescue
-          @log = Syslog::Logger.new("authlib.rbx")
+        rescue StandardError
+          @log = Syslog::Logger.new('wikk_web_auth')
         end
-        @log.error(error.message)
+        @log.error(e.message)
         return false
       end
     end
 
-    #get the session reference and delete the session.
+    # get the session reference and delete the session.
+    #  @param pstore_config [Hash] overrides default pstore settings
     #  @param cgi [CGI] Which carries the client data, cookies, and PUT/POST form data.
-    def self.logout(cgi)
+    def self.logout(cgi, pstore_config: nil)
       begin
-          session = CGI::Session.new(cgi, Web_Auth.session_config({'new_session' => false}))
-          session.delete if session != nil
-      rescue ArgumentError => error # if no old session
-    	  begin
+        session = CGI::Session.new(cgi, Web_Auth.session_config( { 'new_session' => false }, pstore_config: pstore_config ))
+        session.delete if session != nil
+      rescue ArgumentError => e # if no old session
+        begin
           @log = Syslog::Logger.syslog
-        rescue
-          @log = Syslog::Logger.new("authlib.rbx")
+        rescue StandardError
+          @log = Syslog::Logger.new('wikk_web_auth')
         end
-        @log.error(error.message)
+        @log.error(e.message)
       end
     end
-    
-    #Checks password file to see if the response from the user matches generating a hash from the password locally.
+
+    # Checks password file to see if the response from the user matches generating a hash from the password locally.
     #  @param user [String] Who the remote user claims to be
     #  @param challenge [String] Random string we sent to this user, and they used in hashing their password.
     #  @param received_hash [String] The hex_SHA256(password + challenge) string that the user sent back.
     #  @return [Boolean] True for authorization test suceeded.
     def authorized?(user, challenge, received_hash)
-     begin
-       return WIKK::Password.valid_sha256_response?(user, @config, challenge, received_hash)
-     rescue IndexError => error #User didn't exist
-       @log.error("authorized?(#{user}): " + error.message)
-       return false
-     rescue Exception => error #Something else
-       @log.error("authorized?(#{user}): " + error.message)
-       return false
-     end
+      begin
+        return WIKK::Password.valid_sha256_response?(user, @pwd_config, challenge, received_hash)
+      rescue IndexError => e # User didn't exist
+        @log.error("authorized?(#{user}) User not found: " + e.message)
+        return false
+      rescue Exception => e # rubocop:disable Lint/RescueException  # In a cgi, we want to log all errors.
+        @log.error("authorized?(#{user}): " + e.message)
+        return false
+      end
     end
 
-    #Generate the new Session's config parameters, mixing in and/or overriding the preset values.
-    #  @param extra_arguments [Hash] Extra arguments that get added to the hash, or override values with the same key.
+    # Generate the new Session's config parameters, mixing in and/or overriding the preset values.
+    #  @param pstore_config [Hash] Override the default pstore configurations. Only changed keys need to be included
+    #  @param extra_arguments [Hash] Extra arguments that get added to the hash. Will also override values with the same key.
     #  @return [Hash] The configuration hash.
-    def self.session_config(extra_arguments = {})
-      return {
+    def self.session_config( extra_arguments = nil, pstore_config: nil )
+      instance_of?(Hash)
+      session_conf = {
         'database_manager' => CGI::Session::PStore,  # use PStore
-        'session_key' => '_wikk_rb_sess_id',              # custom session key
-        #'session_id' => ?,
-        'session_expires' => (Time.now + 86400),     # 1 day timeout
-        'prefix' => 'pstore_sid_',  # PStore option
-        'tmpdir' => '/tmp',  # PStore option
-        #new_session => ?,#boolean
-        #no_hidden => ?,
-        #session_domain => ?,
-        #session_secure => ?,
-        #session_path => ?,
-        #no_cookies => ?, #boolean
-        #suffix => ?
-      }.merge(extra_arguments)
+        'session_key' => '_wikk_rb_sess_id',                # custom session key
+        'session_expires' => (Time.now + 86400),   # 1 day timeout
+        'prefix' => 'pstore_sid_',                          # Prefix for pstore file
+        'tmpdir' => '/tmp',                          # PStore option. Under Apache2, this is a private namespace /tmp
+        'session_path' => '/'               # The cookie gets returned for URLs starting with this path
+        # 'session_id' => ?,                         # Created for new sessions. Merged in for existing sessions
+        # 'new_session' => true,                     # Default, is to create a new session if it doesn't already exist
+        # 'no_hidden' => ?,
+        # 'session_domain' => ?,
+        # 'session_secure' => ?,
+        # 'no_cookies' => ?, #boolean
+        # 'suffix' => ?
+      }
+      session_conf.merge!(pstore_config) if pstore_config.instance_of?(Hash)
+      session_conf.merge!(extra_arguments) if extra_arguments.instance_of?(Hash)
+      return session_conf
     end
-    
+
     def session_state_init(session_options = {})
-      session_options.each { |k,v| @session[k] = v }
+      session_options.each { |k, v| @session[k] = v }
     end
 
-    #Test to see if we are already authenticated, and if not, generate an HTML login page.
+    # Test to see if we are already authenticated, and if not, generate an HTML login page.
     #  @param return_url [String] We return here if we sucessfully login
     def authenticate(return_url = nil)
       begin
-        @session = CGI::Session.new(@cgi, Web_Auth.session_config({'new_session' => false})) #Look for existing session.
-        return gen_html_login_page(return_url) if @session == nil
-      rescue ArgumentError => error # if no old session
+        @session = CGI::Session.new(@cgi, Web_Auth.session_config( { 'new_session' => false }, pstore_config: @pstore_config )) # Look for existing session.
+        return gen_html_login_page(return_url) if @session.nil?
+      rescue ArgumentError => _e # if no old session
         return gen_html_login_page(return_url)
-      rescue Exception => error
-        raise Exception, "Authenticate, CGI::Session.new " + error.message
+      rescue Exception => e # rubocop:disable Lint/RescueException In CGI, we want to handle every exception
+        @log.error("authenticate(#{@session}):  #{e.message}")
+        raise e.class, 'Authenticate, CGI::Session.new ' + e.message
       end
-      
-      @session['auth'] = false if @session['session_expires'] < Time.now || #Session has expired
-                                  @session['ip'] != @cgi.remote_addr || #Not coming from same IP address
-                                  CGI::escapeHTML(@cgi['logout']) != '' #Are trying to logout
-                                  
-      return if(@session['auth'] == true) #if this is true, then we have already authenticated this session.       
 
-      if (challenge = @session['seed']) != '' #see if we are looking at a login response.
-        @user = CGI::escapeHTML(@cgi['Username'])
-        response = CGI::escapeHTML(@cgi['Response'])
-        if  @user != '' && response != '' && authorized?(@user, challenge, response)
-          @session['auth'] = true #Response valid.
-          @session['user'] = @user
-          @session['ip'] = @cgi.remote_addr
-          @session['seed'] = '' #Don't use the same one twice.
-          @session.close 
-          return
+      begin
+        @session['auth'] = false if @session['session_expires'].nil? ||
+                                    @session['session_expires'] < Time.now || # Session has expired
+                                    @session['ip'] != @cgi.remote_addr || # Not coming from same IP address
+                                    CGI.escapeHTML(@cgi['logout']) != '' # Are trying to logout
+
+        return if @session['auth'] == true # if this is true, then we have already authenticated this session.
+
+        if (challenge = @session['seed']) != '' # see if we are looking at a login response.
+          @user = CGI.escapeHTML(@cgi['Username'])
+          response = CGI.escapeHTML(@cgi['Response'])
+          if @user != '' && response != '' && authorized?(@user, challenge, response)
+            @session['auth'] = true # Response valid.
+            @session['user'] = @user
+            @session['ip'] = @cgi.remote_addr
+            @session['seed'] = '' # Don't use the same one twice.
+            @session.close
+            return
+          end
         end
-      end
 
-      @session.delete #Start a new session.
-      gen_html_login_page(return_url)
-      @session.close if @session != nil #Saves the session state.
+        @session.delete # Start a new session.
+        gen_html_login_page(return_url)
+        @session.close if @session != nil # Saves the session state.
+      rescue Exception => e # rubocop:disable Lint/RescueException
+        @log.error("authenticate(#{@session}):  #{e.message}")
+        raise e.class, 'Authenticate, CGI::Session.new ' + e.message
+      end
     end
 
-    #clean up the session, setting @authenticated to false and deleting the session state.
-    def logout 
+    # clean up the session, setting @authenticated to false and deleting the session state.
+    def logout
       @session.delete if @session != nil
     end
 
-    #Test to see if user authenticated, 
+    # Test to see if user authenticated,
     #  @return [Boolean] i.e @authenticated's value.
     def authenticated?
       @session != nil && @session['session_expires'] > Time.now && @session['auth'] == true && session['ip'] == @cgi.remote_addr
     end
-      
 
-    #Used by calling cgi to generate a standard login page
+    # Used by calling cgi to generate a standard login page
     #  @param return_url [String] We return here if we sucessfully login
     def gen_html_login_page(return_url = nil)
-      session_options = Web_Auth.session_config()
-      @session = CGI::Session.new(@cgi, session_options) #Start a new session for future authentications.
-      raise "gen_html_login_page: @session == nil" if @session == nil
+      session_options = Web_Auth.session_config( pstore_config: @pstore_config )
+      @session = CGI::Session.new(@cgi, session_options ) # Start a new session for future authentications.
+
+      raise 'gen_html_login_page: @session == nil' if @session.nil?
+
       challenge = WIKK::AES_256.gen_key_to_s
       session_state_init('auth' => false, 'seed' => challenge, 'ip' => @cgi.remote_addr, 'session_expires' => session_options['session_expires'])
-      @cgi.header("type"=>"text/html")
+      @cgi.header('type' => 'text/html')
       @cgi.out do
         @cgi.html do
-          @cgi.head{ @cgi.title{"login"} + html_nocache + html_script() } +
-          @cgi.body {  html_login_form(user, challenge, return_url) + "\n" }
+          @cgi.head { @cgi.title { 'login' } + html_nocache + html_script } +
+            @cgi.body { html_login_form(user, challenge, return_url) + "\n" }
         end
       end
       @session.update
     end
 
-    #Used by calling cgi to inject a return URL into the html response. 
-    #Called by calling cgi, when constructing their html headers.
+    # Used by calling cgi to inject a return URL into the html response.
+    # Called by calling cgi, when constructing their html headers.
     #  @param url [String] URL to redirect to.
     #  @return [String] The HTML meta header, or "", if url is empty.
     def html_reload(url = nil)
       if url != nil && url != ''
         "<meta http-equiv=\"Refresh\" content=\"0; URL=#{url}\">\n"
       else
-        ""
+        ''
       end
     end
 
-    #Used by calling cgi to generate logout with this form.
+    # Used by calling cgi to generate logout with this form.
     #  @param cgi_dir [String] directory holding the login.rbx cgi.
     #  @return [String] Html logout form.
     def html_logout_form(cgi_dir)
-      <<-EOHTMLF2
-      <form NAME="login" ACTION="#{cgi_dir}/login.rbx" METHOD="post">
-      <input TYPE="submit" NAME="logout" VALUE="logout" >
-      </form>
-      EOHTMLF2
+      <<~HTML
+        <form NAME="login" ACTION="#{cgi_dir}/login.rbx" METHOD="post">
+        <input TYPE="submit" NAME="logout" VALUE="logout" >
+        </form>
+      HTML
     end
-    
-    private 
-    #Login form javascript helper to SHA256 Hash a password and the challenge string sent by the server.
+
+    # Login form javascript helper to SHA256 Hash a password and the challenge string sent by the server.
     #  @return [String] Javascript to embed in html response.
-    def html_script
-      <<-EOHTML
-      <script type="text/javascript" src="/js/sha256.js"></script>
+    private def html_script
+      <<~HTML
+        <script type="text/javascript" src="/js/sha256.js"></script>
 
-      <script language="JavaScript">
-      function sendhash() {
-          str = document.login.Password.value +
-              document.login.Challenge.value;
+        <script language="JavaScript">
+        function sendhash() {
+            str = document.login.Password.value +
+                document.login.Challenge.value;
 
-          document.login.Response.value = hex_sha256(str);
-          document.login.Password.value = "";
-          document.login.Challenge.value = "";
-          document.login.submit();
-      }
-      </script>
-      EOHTML
+            document.login.Response.value = hex_sha256(str);
+            document.login.Password.value = "";
+            document.login.Challenge.value = "";
+            document.login.submit();
+        }
+        </script>
+      HTML
     end
 
-    #Generate html login form.
+    # Generate html login form.
     #  @param user [String] user's login name.
     #  @param challenge [String] Random bytes to add to password, before sending back to server.
     #  @param return_url [String] Pass the url we want to return to if the login succeeds.
     #  @return [String] Login form to embed in html response to user.
-    def html_login_form(user, challenge, return_url='')
-    <<-EOHTMLF
-    <form NAME="login" ACTION="/ruby/login.rbx" METHOD="post">
-    <input TYPE="hidden" NAME="Challenge" VALUE="#{challenge}"> 
-    <input TYPE="hidden" NAME="Response" VALUE="">
-    <input TYPE="hidden" NAME="ReturnURL" VALUE="#{return_url}">
-    <table>
-    <tr><th>User name</th><td><input TYPE="text" NAME="Username" VALUE="#{user}" SIZE="32" MAXLENGTH="32"></td></tr>
-    <tr><th>Password</th><td><input TYPE="password" NAME="Password" VALUE="" SIZE="32" MAXLENGTH="32"></td></tr>
-    <tr><td>&nbsp;</td><td>
-      <input ONCLICK="sendhash(); return false;" TYPE="submit" NAME="login" VALUE="Login">
-      <input TYPE="button" NAME="Cancel" VALUE="   Cancel   " 
-      ONCLICK="document.login.Username.value='';document.login.Password.value=';return false;'">
-    </td></tr>
-    </table>
-    </form>
-    <script LANGUAGE="javascript" TYPE="text/javascript">
-          document.login.Username.focus();
-    </script>
-    EOHTMLF
+    private def html_login_form(user, challenge, return_url = '')
+      <<~HTML
+        <form NAME="login" ACTION="/ruby/login.rbx" METHOD="post">
+        <input TYPE="hidden" NAME="Challenge" VALUE="#{challenge}">
+        <input TYPE="hidden" NAME="Response" VALUE="">
+        <input TYPE="hidden" NAME="ReturnURL" VALUE="#{return_url}">
+        <table>
+        <tr><th>User name</th><td><input TYPE="text" NAME="Username" VALUE="#{user}" SIZE="32" MAXLENGTH="32"></td></tr>
+        <tr><th>Password</th><td><input TYPE="password" NAME="Password" VALUE="" SIZE="32" MAXLENGTH="32"></td></tr>
+        <tr><td>&nbsp;</td><td>
+          <input ONCLICK="sendhash(); return false;" TYPE="submit" NAME="login" VALUE="Login">
+          <input TYPE="button" NAME="Cancel" VALUE="   Cancel   "
+          ONCLICK="document.login.Username.value='';document.login.Password.value=';return false;'">
+        </td></tr>
+        </table>
+        </form>
+        <script LANGUAGE="javascript" TYPE="text/javascript">
+              document.login.Username.focus();
+        </script>
+      HTML
     end
 
-    #Generate no cache metadata header record.
+    # Generate no cache metadata header record.
     #  @return [String] Html no-cache meta tag
-    def html_nocache
-      "<META HTTP-EQUIV=\"Pragma\" CONTENT=\"no-cache\">"
+    private def html_nocache
+      '<META HTTP-EQUIV="Pragma" CONTENT="no-cache">'
     end
   end
 end
-

metadata

@@ -1,19 +1,22 @@
 --- !ruby/object:Gem::Specification
 name: wikk_web_auth
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.1.5
 platform: ruby
 authors:
 - Rob Burrowes
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-05-25 00:00:00.000000000 Z
+date: 2023-03-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: wikk_password
   requirement: !ruby/object:Gem::Requirement
     requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
     - - ">="
       - !ruby/object:Gem::Version
         version: 0.1.0
@@ -21,6 +24,9 @@ dependencies:
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
     - - ">="
       - !ruby/object:Gem::Version
         version: 0.1.0
@@ -44,14 +50,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.16'
+        version: '3.25'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.16'
+        version: '3.25'
 description: Gem provides common authentication framework for Wikarekare's Ruby CGIs.
 email:
 - r.burrowes@auckland.ac.nz
@@ -67,11 +73,11 @@ files:
 - README.md
 - Rakefile
 - lib/wikk_web_auth.rb
-homepage: http://wikarekare.github.com/wikk_web_auth/
+homepage: https://wikarekare.github.io/wikk_web_auth/
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options:
 - "--markup"
 - markdown
@@ -92,9 +98,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.6.8
-signing_key: 
+rubygems_version: 3.3.7
+signing_key:
 specification_version: 4
 summary: Gem provides common authentication framework for Wikarekare's Ruby CGIs.
 test_files: []