RPM Search

Changelog for ruby3.4-rubygem-jwt-2.9.3-1.2.x86_64.rpm :

* Mon Nov 04 2024 Dan Čermák - ## Upcoming breaking changes Notable changes in the upcoming
*
*version 3.0
*
*:- The indirect dependency to [rbnacl](https://github.com/RubyCrypto/rbnacl) will be removed: - Support for the nonstandard SHA512256 algorithm will be removed. - Support for Ed25519 will be moved to a [separate gem](https://github.com/anakinj/jwt-eddsa) for better dependency handling.- Base64 decoding will no longer fallback on the looser RFC 2045.- Claim verification has been [split into separate classes](https://github.com/jwt/ruby-jwt/pull/605) and has [a new api](https://github.com/jwt/ruby-jwt/pull/626) and lead to the following deprecations: - The `::JWT::ClaimsValidator` class will be removed in favor of the functionality provided by `::JWT::Claims`. - The `::JWT::Claims::verify!` method will be removed in favor of `::JWT::Claims::verify_payload!`. - The `::JWT::JWA.create` method will be removed. No recommended alternatives. - The `::JWT::Verify` class will be removed in favor of the functionality provided by `::JWT::Claims`. - Calling `::JWT::Claims::Numeric.new` with a payload will be removed in favor of `::JWT::Claims::verify_payload!(payload, :numeric)`. - Calling `::JWT::Claims::Numeric.verify!` with a payload will be removed in favor of `::JWT::Claims::verify_payload!(payload, :numeric)`.- The internal algorithms were [restructured](https://github.com/jwt/ruby-jwt/pull/607) to support extensions from separate libraries. The changes lead to a few deprecations and new requirements: - The `sign` and `verify` static methods on all the algorithms (`::JWT::JWA`) will be removed. - Custom algorithms are expected to include the `JWT::JWA::SigningAlgorithm` module. [#]# [v2.9.3](https://github.com/jwt/ruby-jwt/tree/v2.9.3) (2024-10-03) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.9.2...v2.9.3)
*
*Fixes and enhancements:
*
*- Return truthy value for `::JWT::ClaimsValidator#validate!` and `::JWT::Verify.verify_claims` [#628](https://github.com/jwt/ruby-jwt/pull/628) ([AATTanakinj](https://github.com/anakinj)) [#]# [v2.9.2](https://github.com/jwt/ruby-jwt/tree/v2.9.2) (2024-10-03) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.9.1...v2.9.2)
*
*Features:
*
*- Standalone claim verification interface [#626](https://github.com/jwt/ruby-jwt/pull/626) ([AATTanakinj](https://github.com/anakinj))
*
*Fixes and enhancements:
*
*- Updated README to correctly document `OpenSSL::HMAC` documentation [#617](https://github.com/jwt/ruby-jwt/pull/617) ([AATTaedryan](https://github.com/aedryan))- Verify JWT header format [#622](https://github.com/jwt/ruby-jwt/pull/622) ([AATT304](https://github.com/304))- Bring back `::JWT::ClaimsValidator`, `::JWT::Verify` and a few other removed interfaces for preserved backwards compatibility [#624](https://github.com/jwt/ruby-jwt/pull/624) ([AATTanakinj](https://github.com/anakinj)) [#]# [v2.9.1](https://github.com/jwt/ruby-jwt/tree/v2.9.1) (2024-09-23) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.9.0...v2.9.1)
*
*Fixes and enhancements:
*
*- Fix regression in `iss` and `aud` claim validation [#619](https://github.com/jwt/ruby-jwt/pull/619) ([AATTanakinj](https://github.com/anakinj)) [#]# [v2.9.0](https://github.com/jwt/ruby-jwt/tree/v2.9.0) (2024-09-15) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.8.2...v2.9.0)
*
*Features:
*
*- Build and push gem using a GH action [#612](https://github.com/jwt/ruby-jwt/pull/612) ([AATTanakinj](https://github.com/anakinj))
*
*Fixes and enhancements:
*
*- Refactor claim validators into their own classes [#605](https://github.com/jwt/ruby-jwt/pull/605) ([AATTanakinj](https://github.com/anakinj), [AATTMatteoPierro](https://github.com/MatteoPierro))- Allow extending available algorithms [#607](https://github.com/jwt/ruby-jwt/pull/607) ([AATTanakinj](https://github.com/anakinj))- Do not include the EdDSA algorithm if rbnacl not available [#613](https://github.com/jwt/ruby-jwt/pull/613) ([AATTanakinj](https://github.com/anakinj))
* Fri Jun 21 2024 Dan Čermák - New upstream release 2.8.2, see bundled CHANGELOG.md
* Tue Nov 14 2023 Dan Čermák - New upstream release 2.7.1, see bundled CHANGELOG.md
* Mon Aug 29 2022 Stephan Kulow updated to version 2.5.0 see installed CHANGELOG.md
* Thu Aug 04 2022 Stephan Kulow updated to version 2.4.1 see installed CHANGELOG.md [#]# [v2.4.1](https://github.com/jwt/ruby-jwt/tree/v2.4.1) (2022-06-07)
* Tue Jan 25 2022 Stephan Kulow updated to version 2.3.0 see installed CHANGELOG.md
* Thu Jun 24 2021 Stephan Kulow updated to version 2.2.3 see installed CHANGELOG.md [#]# [2.2.3](https://github.com/jwt/ruby-jwt/tree/2.2.3) (2021-04-19) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.2.2...2.2.3)
*
*Implemented enhancements:
*
* - Verify algorithm before evaluating keyfinder [\\#343](https://github.com/jwt/ruby-jwt/issues/343) - Why jwt depends on json \\< 2.0 ? [\\#179](https://github.com/jwt/ruby-jwt/issues/179) - Support for JWK in-lieu of rsa\\_public [\\#158](https://github.com/jwt/ruby-jwt/issues/158) - Fix rspec `raise_error` warning [\\#413](https://github.com/jwt/ruby-jwt/pull/413) ([excpt](https://github.com/excpt)) - Add support for JWKs with HMAC key type. [\\#372](https://github.com/jwt/ruby-jwt/pull/372) ([phlegx](https://github.com/phlegx)) - Improve \'none\' algorithm handling [\\#365](https://github.com/jwt/ruby-jwt/pull/365) ([danleyden](https://github.com/danleyden)) - Handle parsed JSON JWKS input with string keys [\\#348](https://github.com/jwt/ruby-jwt/pull/348) ([martinemde](https://github.com/martinemde)) - Allow Numeric values during encoding [\\#327](https://github.com/jwt/ruby-jwt/pull/327) ([fanfilmu](https://github.com/fanfilmu))
*
*Closed issues:
*
* - \"Signature verification raised\", yet jwt.io says \"Signature Verified\" [\\#401](https://github.com/jwt/ruby-jwt/issues/401) - truffleruby-head build is failing [\\#396](https://github.com/jwt/ruby-jwt/issues/396) - JWT::JWK::EC needs `require \'forwardable\'` [\\#392](https://github.com/jwt/ruby-jwt/issues/392) - How to use a \'signing key\' as used by next-auth [\\#389](https://github.com/jwt/ruby-jwt/issues/389) - undefined method `verify\' for nil:NilClass when validate a JWT with JWK [\\#383](https://github.com/jwt/ruby-jwt/issues/383) - Make specifying \"algorithm\" optional on decode [\\#380](https://github.com/jwt/ruby-jwt/issues/380) - ADFS created access tokens can\'t be validated due to missing \'kid\' header [\\#370](https://github.com/jwt/ruby-jwt/issues/370) - new version? [\\#355](https://github.com/jwt/ruby-jwt/issues/355) - JWT gitlab OmniAuth provider setup support [\\#354](https://github.com/jwt/ruby-jwt/issues/354) - Release with support for RSA.import for ruby \\< 2.4 hasn\'t been released [\\#347](https://github.com/jwt/ruby-jwt/issues/347) - cannot load such file -- jwt [\\#339](https://github.com/jwt/ruby-jwt/issues/339)
*
*Merged pull requests:
*
* - Remove codeclimate code coverage dev dependency [\\#414](https://github.com/jwt/ruby-jwt/pull/414) ([excpt](https://github.com/excpt)) - Add forwardable dependency [\\#408](https://github.com/jwt/ruby-jwt/pull/408) ([anakinj](https://github.com/anakinj)) - Ignore casing of algorithm [\\#405](https://github.com/jwt/ruby-jwt/pull/405) ([johnnyshields](https://github.com/johnnyshields)) - Document function and add tests for verify claims method [\\#404](https://github.com/jwt/ruby-jwt/pull/404) ([yasonk](https://github.com/yasonk)) - documenting calling verify\\_jti callback with 2 arguments in the readme [\\#402](https://github.com/jwt/ruby-jwt/pull/402) ([HoneyryderChuck](https://github.com/HoneyryderChuck)) - Target the master branch on the build status badge [\\#399](https://github.com/jwt/ruby-jwt/pull/399) ([anakinj](https://github.com/anakinj)) - Improving the local development experience [\\#397](https://github.com/jwt/ruby-jwt/pull/397) ([anakinj](https://github.com/anakinj)) - Fix sourcelevel broken links [\\#395](https://github.com/jwt/ruby-jwt/pull/395) ([anakinj](https://github.com/anakinj)) - Don\'t recommend installing gem with sudo [\\#391](https://github.com/jwt/ruby-jwt/pull/391) ([tjschuck](https://github.com/tjschuck)) - Enable rubocop locally and on ci [\\#390](https://github.com/jwt/ruby-jwt/pull/390) ([anakinj](https://github.com/anakinj)) - Ci and test cleanup [\\#387](https://github.com/jwt/ruby-jwt/pull/387) ([anakinj](https://github.com/anakinj)) - Make JWT::JWK::EC compatible with Ruby 2.3 [\\#386](https://github.com/jwt/ruby-jwt/pull/386) ([anakinj](https://github.com/anakinj)) - Support JWKs for pre 2.3 rubies [\\#382](https://github.com/jwt/ruby-jwt/pull/382) ([anakinj](https://github.com/anakinj)) - Replace Travis CI with GitHub Actions \\(also favor openssl/rbnacl combinations over rails compatibility tests\\) [\\#381](https://github.com/jwt/ruby-jwt/pull/381) ([anakinj](https://github.com/anakinj)) - Add auth0 sponsor message [\\#379](https://github.com/jwt/ruby-jwt/pull/379) ([excpt](https://github.com/excpt)) - Adapt HMAC to JWK RSA code style. [\\#378](https://github.com/jwt/ruby-jwt/pull/378) ([phlegx](https://github.com/phlegx)) - Disable Rails cops [\\#376](https://github.com/jwt/ruby-jwt/pull/376) ([anakinj](https://github.com/anakinj)) - Support exporting RSA JWK private keys [\\#375](https://github.com/jwt/ruby-jwt/pull/375) ([anakinj](https://github.com/anakinj)) - Ebert is SourceLevel nowadays [\\#374](https://github.com/jwt/ruby-jwt/pull/374) ([anakinj](https://github.com/anakinj)) - Add support for JWKs with EC key type [\\#371](https://github.com/jwt/ruby-jwt/pull/371) ([richardlarocque](https://github.com/richardlarocque)) - Add Truffleruby head to CI [\\#368](https://github.com/jwt/ruby-jwt/pull/368) ([gogainda](https://github.com/gogainda)) - Add more docs about JWK support [\\#341](https://github.com/jwt/ruby-jwt/pull/341) ([take](https://github.com/take))
* Fri Sep 25 2020 Stephan Kulow updated to version 2.2.2 see installed CHANGELOG.md
* Fri Jul 19 2019 Stephan Kulow - updated to version 2.2.1 see installed CHANGELOG.md
* Wed Oct 11 2017 cooloAATTsuse.com- updated to version 2.1.0 see installed CHANGELOG.md [#]# [2.1.0](https://github.com/jwt/ruby-jwt/tree/2.1.0) (2017-10-06) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.0.0...2.1.0)
*
*Implemented enhancements:
*
* - Ed25519 support planned? [\\#217](https://github.com/jwt/ruby-jwt/issues/217) - Verify JTI Proc [\\#207](https://github.com/jwt/ruby-jwt/issues/207) - Allow a list of algorithms for decode [\\#241](https://github.com/jwt/ruby-jwt/pull/241) ([lautis](https://github.com/lautis)) - verify takes 2 params, second being payload closes: \\#207 [\\#238](https://github.com/jwt/ruby-jwt/pull/238) ([ab320012](https://github.com/ab320012)) - simplified logic for keyfinder [\\#237](https://github.com/jwt/ruby-jwt/pull/237) ([ab320012](https://github.com/ab320012)) - Show backtrace if rbnacl-libsodium not loaded [\\#231](https://github.com/jwt/ruby-jwt/pull/231) ([buzztaiki](https://github.com/buzztaiki)) - Support for ED25519 [\\#229](https://github.com/jwt/ruby-jwt/pull/229) ([ab320012](https://github.com/ab320012))
*
*Fixed bugs:
*
* - JWT.encode failing on encode for string [\\#235](https://github.com/jwt/ruby-jwt/issues/235) - The README says it uses an algorithm by default [\\#226](https://github.com/jwt/ruby-jwt/issues/226) - Fix string payload issue [\\#236](https://github.com/jwt/ruby-jwt/pull/236) ([excpt](https://github.com/excpt))
*
*Closed issues:
*
* - Change from 1.5.6 to 2.0.0 and appears a \"Completed 401 Unauthorized\" [\\#240](https://github.com/jwt/ruby-jwt/issues/240) - Why doesn\'t the decode function use a default algorithm? [\\#227](https://github.com/jwt/ruby-jwt/issues/227)
*
*Merged pull requests:
*
* - Update README.md [\\#242](https://github.com/jwt/ruby-jwt/pull/242) ([excpt](https://github.com/excpt)) - Update ebert configuration [\\#232](https://github.com/jwt/ruby-jwt/pull/232) ([excpt](https://github.com/excpt)) - added algos/strategy classes + structs for inputs [\\#230](https://github.com/jwt/ruby-jwt/pull/230) ([ab320012](https://github.com/ab320012)) - Add HS256 algorithm to decode default options [\\#228](https://github.com/jwt/ruby-jwt/pull/228) ([madkin10](https://github.com/madkin10))