firebase_id_token

A Ruby gem to verify the signature of Firebase ID Tokens.

MIT License

Downloads
417.7K
Stars
148
Committers
12
View Code on GitHub
Ecosystems: Ruby on Rails, Ruby, Firebase

Bot releases are visible (Hide)

firebase_id_token - 3.0.0 Latest Release

Published by fschuindt over 1 year ago

Added

  • CI testing using GitHub Actions.
  • Explains on README.md about the behavior of verify on expired tokens. Details here.
  • Warns about the poorly synchronized clocks issue with the token's iat. Details here.
  • Gives better examples when testing. Details here.
  • Created a .ruby-version file.
  • Added ActiveSupport as dependency for Time.current.
  • SimpleCov JSON formatter and json as dependency.

Changed

  • It won't default to Redis.new anymore. You must now provide Redis details during configuration. Details here.
  • Upgraded Redis to 5.0.6.
  • Upgraded Redis Namespace to 1.10.
  • Upgraded HTTParty to 0.21.0.
  • Upgraded JWT to 2.7.
  • Upgraded [Dev] Ruby to 3.2.2.
  • Upgraded [Dev] Bundler to 2.4.13.
  • Upgraded [Dev] Rake to 13.0.6.
  • Upgraded [Dev] RSpec to 3.12.
  • Upgraded [Dev] Redcarpet to 3.6.
  • Upgraded [Dev] Simplecov to 0.22.0.
  • Upgraded [Dev] Pry to 0.14.2.

Fixed

  • Code Climate test coverage report.

Removed

  • Travis CI badge.
firebase_id_token - 2.5.2

Published by fschuindt over 1 year ago

Fixed

firebase_id_token - 2.5.1

Published by fschuindt about 2 years ago

Fixed

firebase_id_token - 2.5.0

Published by fschuindt over 2 years ago

Fixed

  • Local Code Execution through Argument Injection via dash leading git url parameter in Gemfile CVE-2021-43809.
  • Dependency Confusion in Bundler CVE-2020-36327.
  • Insecure path handling in Bundler CVE-2019-3881.

Changed

  • Using Bundler 2.3.11.
  • Using Time.current instead of Time.now to work with timezones PR 34.
  • Caching certificates on memory using Thread to avoid unnecessary calls into Redis PR 33.
firebase_id_token - 2.4.0

Published by fschuindt over 4 years ago

Fixed

Changed

  • Using Bundler 1.17.2.

Added

  • Ability to raise errors when verifying tokens.
  • FirebaseIdToken::Certificates.find! method.
  • FirebaseIdToken::Signatures.verify! method.
  • FirebaseIdToken::Exceptions::CertificateNotFound exception.
  • :raise_error option to FirebaseIdToken::Signature.verify.
  • CHANGELOG.md file.
firebase_id_token - 2.3.2

Published by fschuindt over 4 years ago

Fix broken tests using FirebaseIdToken.test!

firebase_id_token - 2.3.1

Published by fschuindt about 5 years ago

Release last changes on master, mostly testing features.

firebase_id_token - Updated dependencies

Published by fschuindt over 6 years ago

firebase_id_token - 2.1.0

Published by fschuindt over 6 years ago

Fix verification issue.

Related Issue

firebase_id_token - 2.0.0

Published by fschuindt almost 7 years ago

This marks this Gem as stable for being used in production environments.

firebase_id_token - Version 1.3.0

Published by fschuindt about 7 years ago

Check out README for pre-release notes.

The method Certificates.request_anyway now is deprecated and will raise a warning.
Use Certificates.request! instead.

firebase_id_token - Certificates TTL based on control-cache's max-age

Published by fschuindt over 7 years ago

Check out README for pre-release notes.

firebase_id_token - Version 1.2.1

Published by fschuindt over 7 years ago

It's ready to use. Check out README for pre-release notes.

firebase_id_token - First official pre-release

Published by fschuindt over 7 years ago

It's ready to use. Check out README for pre-release notes.

Package Rankings
Top 4.22% on Rubygems.org
Badges
Extracted from project README
Actions Status Test Coverage Code Climate Issue Count Inline docs
Related Projects
graphql_devise

GraphQL interface on top devise_token_auth

04 Aug 2019 200
simple_token_authentication

Simple (and safe*) token authentication for Rails apps or API with Devise.

15 Dec 2013 1,511
devise-jwt

JWT token authentication with devise and rails

12 Jan 2017 1,250
otp-jwt

One time password (email, SMS) authentication support for HTTP APIs.

22 Mar 2019 103
koala

A lightweight Facebook library supporting the Graph, Marketing, and Atlas APIs, realtime updates,...

22 Apr 2010 3,556
api_guard

JWT authentication solution for Rails APIs

10 Mar 2018 277
auth0_rails_api_example

Sample Rails 6 project demonstrating API authorization with auth0

19 Dec 2016 10
devise-api

The devise-api gem is a convenient way to add authentication to your Ruby on Rails application us...

08 Jan 2023 156
tokie

Token based authentication from scratch. https://rubyplus.com/articles/4311-Securing-an-API-in-Ra...

05 Dec 2016 12
blog

The first app from the Ruby on Rails Tutorial

13 Feb 2014 1
authentication-zero

An authentication system generator for Rails applications.

14 Feb 2022 1,538
rails_5_api_tutorial

Building the Perfect Rails 5 API Only App & Documenting Rails-based REST API using Swagger UI

12 Oct 2016 66