diff --git a/AUTHORS b/AUTHORS index bec44e4f..90e08a7d 100644 --- a/AUTHORS +++ b/AUTHORS @@ -8,94 +8,105 @@ Emilio Cristalli Egon Zemmer Zane Shannon Nikita Shatov -Oliver Paul Battley +Oliver blackanger Adam Michael +James Stonehill Ville Lautanala Tyler Pickett -James Stonehill Peter M. Goldstein Martin Emde -Richard Larocque Korstiaan de Ridder -Klaas Jan Wierenga -Antonis Berkakis -Steve Sloan -Yason Khaburzaniya +Richard Larocque +Andrew Davis Bill Mill +Yason Khaburzaniya +Steve Sloan +Nick Hammond +Antonis Berkakis +Klaas Jan Wierenga +yann ARMAND +Brian Flethcer +Erik Michaels-Ober +Jurriaan Pruis +Kevin Olbrich +Larry Lv +Rodrigo López Dato +Simon Fish +Steven Davidovitz +Tom Wey jb08 lukas -Rodrigo López Dato ojab sawyerzhang -Kevin Olbrich smudge wohlgejm -Tom Wey -yann ARMAND -Brian Flethcer -Erik Michaels-Ober -Steven Davidovitz -Jurriaan Pruis -Larry Lv +Julio Lopez +Katelyn Kasperowicz +fusagiko/takayamaki +Dorian Marié +rono23 +Leonardo Saraiva +Lowell Kirsh +Lucas Mazza +Makoto Chiba +Manuel Bustillo +Marco Adkins +Dave Grijalva +Micah Gates +Michał Begejowicz +Mike Eirih +Mike Pastore Mingan Mitch Birti +Dan Leyden Nicolas Leger +Brandon Keepers +Bouke van der Bijl +B +Pierre Michard +RahulBajaj +Austin Kabiru +Ritikesh Rob Wygand +Adam Greene Ryan Brushett Ryan McIlmoyl Ryan Metzler +Severin Schoepke +Shaun Guth +mai fujii +Artsiom Kuts Steve Teti +nycvotes-dev T.J. Schuck Taiki Sugawara Takehiro Adachi +Arnaud Mesureur Tobias Haar Toby Pinder +revodoge Tomé Duarte Travis Hunter +Ariel Salomon +Aman Gupta +Alexandr Kostrikov Yuji Yaginuma +Alexander Boyd Zuzanna Stolińska aarongray -danielgrippi -nycvotes-dev -revodoge -rono23 -RahulBajaj -Adam Greene -Alexander Boyd -Alexandr Kostrikov -Aman Gupta -Ariel Salomon -Arnaud Mesureur -Artsiom Kuts -Austin Kabiru -B -Brandon Keepers -Dan Leyden -Dave Grijalva -Dorian Marié -Ernie Miller -Evgeni Golov -Ewoud Kohl van Wijngaarden HoneyryderChuck Igor Victor Ilyaaaaaaaaaaaaa Zhitomirskiy +Ewoud Kohl van Wijngaarden +Evgeni Golov Jens Hausherr Jeremiah Wuenschel +Ernie Miller John Downey Jordan Brough Josh Bodah JotaSe Juanito Fatas -Julio Lopez -Katelyn Kasperowicz -Lowell Kirsh -Lucas Mazza -Makoto Chiba -Manuel Bustillo -Marco Adkins -Micah Gates -Michał Begejowicz -Mike Eirih -Mike Pastore +danielgrippi diff --git a/CHANGELOG.md b/CHANGELOG.md index 45e66a5b..bc7d4c49 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,39 @@ # Changelog +## [v2.3.0](https://github.com/jwt/ruby-jwt/tree/v2.3.0) (2021-10-03) + +[Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.2.3...v2.3.0) + +**Closed issues:** + +- \[SECURITY\] Algorithm Confusion Through kid Header [\#440](https://github.com/jwt/ruby-jwt/issues/440) +- JWT to memory [\#436](https://github.com/jwt/ruby-jwt/issues/436) +- ArgumentError: wrong number of arguments \(given 2, expected 1\) [\#429](https://github.com/jwt/ruby-jwt/issues/429) +- HMAC section of README outdated [\#421](https://github.com/jwt/ruby-jwt/issues/421) +- NoMethodError: undefined method `zero?' for nil:NilClass if JWT has no 'alg' field [\#410](https://github.com/jwt/ruby-jwt/issues/410) +- Release new version [\#409](https://github.com/jwt/ruby-jwt/issues/409) +- NameError: uninitialized constant JWT::JWK [\#403](https://github.com/jwt/ruby-jwt/issues/403) + +**Merged pull requests:** + +- Fix Style/MultilineIfModifier issues [\#447](https://github.com/jwt/ruby-jwt/pull/447) ([anakinj](https://github.com/anakinj)) +- feat\(EdDSA\): Accept EdDSA as algorithm header [\#446](https://github.com/jwt/ruby-jwt/pull/446) ([Pierre-Michard](https://github.com/Pierre-Michard)) +- Pass kid param through JWT::JWK.create\_from [\#445](https://github.com/jwt/ruby-jwt/pull/445) ([shaun-guth-allscripts](https://github.com/shaun-guth-allscripts)) +- fix document about passing JWKs as a simple Hash [\#443](https://github.com/jwt/ruby-jwt/pull/443) ([takayamaki](https://github.com/takayamaki)) +- Tests for mixing JWK keys with mismatching algorithms [\#441](https://github.com/jwt/ruby-jwt/pull/441) ([anakinj](https://github.com/anakinj)) +- verify\_claims test shouldnt be within the verify\_sub test [\#431](https://github.com/jwt/ruby-jwt/pull/431) ([andyjdavis](https://github.com/andyjdavis)) +- Allow decode options to specify required claims [\#430](https://github.com/jwt/ruby-jwt/pull/430) ([andyjdavis](https://github.com/andyjdavis)) +- Fix OpenSSL::PKey::EC public\_key handing in tests [\#427](https://github.com/jwt/ruby-jwt/pull/427) ([anakinj](https://github.com/anakinj)) +- Add documentation for find\_key [\#426](https://github.com/jwt/ruby-jwt/pull/426) ([ritikesh](https://github.com/ritikesh)) +- Give ruby 3.0 as a string to avoid number formatting issues [\#424](https://github.com/jwt/ruby-jwt/pull/424) ([anakinj](https://github.com/anakinj)) +- Tests for iat verification behaviour [\#423](https://github.com/jwt/ruby-jwt/pull/423) ([anakinj](https://github.com/anakinj)) +- Remove HMAC with nil secret from documentation [\#422](https://github.com/jwt/ruby-jwt/pull/422) ([boardfish](https://github.com/boardfish)) +- Update broken link in README [\#420](https://github.com/jwt/ruby-jwt/pull/420) ([severin](https://github.com/severin)) +- Add metadata for RubyGems [\#418](https://github.com/jwt/ruby-jwt/pull/418) ([nickhammond](https://github.com/nickhammond)) +- Fixed a typo about class name [\#417](https://github.com/jwt/ruby-jwt/pull/417) ([mai-f](https://github.com/mai-f)) +- Fix references for v2.2.3 on CHANGELOG [\#416](https://github.com/jwt/ruby-jwt/pull/416) ([vyper](https://github.com/vyper)) +- Raise IncorrectAlgorithm if token has no alg header [\#411](https://github.com/jwt/ruby-jwt/pull/411) ([bouk](https://github.com/bouk)) + ## [v2.2.3](https://github.com/jwt/ruby-jwt/tree/v2.2.3) (2021-04-19) [Full Changelog](https://github.com/jwt/ruby-jwt/compare/v2.2.2...v2.2.3) @@ -31,6 +65,7 @@ **Merged pull requests:** +- Prepare 2.2.3 release [\#415](https://github.com/jwt/ruby-jwt/pull/415) ([excpt](https://github.com/excpt)) - Remove codeclimate code coverage dev dependency [\#414](https://github.com/jwt/ruby-jwt/pull/414) ([excpt](https://github.com/excpt)) - Add forwardable dependency [\#408](https://github.com/jwt/ruby-jwt/pull/408) ([anakinj](https://github.com/anakinj)) - Ignore casing of algorithm [\#405](https://github.com/jwt/ruby-jwt/pull/405) ([johnnyshields](https://github.com/johnnyshields)) diff --git a/lib/jwt/version.rb b/lib/jwt/version.rb index d6856190..b6847e97 100644 --- a/lib/jwt/version.rb +++ b/lib/jwt/version.rb @@ -16,7 +16,7 @@ module VERSION # tiny version TINY = 0 # alpha, beta, etc. tag - PRE = 'dev' + PRE = nil # Build version string STRING = [MAJOR, MINOR, TINY, PRE].compact.join('.')