Update jwt

Gemfile

@@ -73,7 +73,8 @@ gem 'kubeclient'
 gem 'websocket'
 
 # authn-oidc, gcp, azure, jwt
-gem 'jwt', '2.2.2' # version frozen due to authn-jwt requirements
+# gem 'jwt', '2.2.2' # version frozen due to authn-jwt requirements
+gem 'jwt', '2.7.1'
 # authn-oidc
 gem 'openid_connect', '~> 2.0'
 

Gemfile.lock

@@ -269,7 +269,7 @@ GEM
       rspec (>= 2.0, < 4.0)
     jsonpath (1.1.0)
       multi_json
-    jwt (2.2.2)
+    jwt (2.7.1)
     kubeclient (4.9.3)
       http (>= 3.0, < 5.0)
       jsonpath (~> 1.0)
@@ -557,7 +557,7 @@ DEPENDENCIES
   jbuilder (~> 2.7.0)
   json_schemer
   json_spec (~> 1.1)
-  jwt (= 2.2.2)
+  jwt (= 2.7.1)
   kubeclient
   listen
   loofah (>= 2.2.3)

NOTICES.txt

@@ -20,7 +20,7 @@ Section 3: BSD-3-Clause
 
 >>> https://rubygems.org/gems/base32-crockford/versions/0.1.0
 >>> https://rubygems.org/gems/ffi/versions/1.15.4
->>> https://rubygems.org/gems/puma/versions/5.6.4
+>>> https://rubygems.org/gems/puma/versions/6.3.1
 
 Section 4: MIT
 
@@ -37,13 +37,13 @@ Section 4: MIT
 >>> https://rubygems.org/gems/http/versions/4.2.0
 >>> https://rubygems.org/gems/iso8601/versions/0.13.0
 >>> https://rubygems.org/gems/jbuilder/versions/2.7.0
->>> https://rubygems.org/gems/jwt/versions/2.2.2
+>>> https://rubygems.org/gems/jwt/versions/2.7.1
 >>> https://rubygems.org/gems/kubeclient/versions/4.9.3
 >>> https://rubygems.org/gems/listen/versions/3.7.0
 >>> https://rubygems.org/gems/loofah/versions/2.20.0
 >>> https://rubygems.org/gems/net-ldap/versions/0.17.0
 >>> https://rubygems.org/gems/nokogiri/versions/1.14.3
->>> https://rubygems.org/gems/openid_connect/versions/1.3.0
+>>> https://rubygems.org/gems/openid_connect/versions/2.2.0
 >>> https://rubygems.org/gems/rack-rewrite/versions/1.5.1
 >>> https://rubygems.org/gems/rails/versions/6.1.7.3
 >>> https://rubygems.org/gems/rake/versions/13.0.6
@@ -214,7 +214,7 @@ CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
->>> https://rubygems.org/gems/puma/versions/5.6.4
+>>> https://rubygems.org/gems/puma/versions/6.3.1
 
 Some code copyright (c) 2005, Zed Shaw
 Copyright (c) 2011, Evan Phoenix
@@ -546,7 +546,7 @@ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
 
->>> https://rubygems.org/gems/jwt/versions/2.2.2
+>>> https://rubygems.org/gems/jwt/versions/2.7.1
 
 Copyright (c) 2011 Jeff Lindsay
 
@@ -680,7 +680,7 @@ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
 
->>> https://rubygems.org/gems/openid_connect/versions/1.3.0
+>>> https://rubygems.org/gems/openid_connect/versions/2.2.0
 
 Copyright (c) 2011 nov matake
 

cucumber/authenticators_jwt/features/authn_jwt_check_standard_claims.feature

@@ -365,7 +365,7 @@ Feature: JWT Authenticator - Check registered claim
     Then the HTTP response status code is 401
     And The following appears in the log after my savepoint:
     """
-    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::InvalidIssuerError: Invalid issuer. Expected incorrect.com, received http://jwks>')>
+    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::InvalidIssuerError: Invalid issuer. Expected ["incorrect.com"], received http://jwks>')>
     """
 
   @negative @acceptance
@@ -454,7 +454,7 @@ Feature: JWT Authenticator - Check registered claim
     Then the HTTP response status code is 401
     And The following appears in the log after my savepoint:
     """
-    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::InvalidIssuerError: Invalid issuer. Expected invalid-issuer, received valid-issuer>')>
+    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::InvalidIssuerError: Invalid issuer. Expected ["invalid-issuer"], received valid-issuer>')>
     """
 
   @sanity

cucumber/authenticators_jwt/features/authn_jwt_fetch_signing_key.feature

@@ -550,7 +550,7 @@ Feature: JWT Authenticator - Fetch signing key
     Then the HTTP response status code is 401
     And The following appears in the log after my savepoint:
     """
-    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification raised>')
+    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification failed>')
     """
 
   @negative @acceptance
@@ -605,7 +605,7 @@ Feature: JWT Authenticator - Fetch signing key
     Then the HTTP response status code is 401
     And The following appears in the log after my savepoint:
     """
-    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification raised>')
+    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification failed>')
     """
 
   @negative @acceptance

cucumber/authenticators_jwt/features/authn_jwt_validate_and_decode.feature

@@ -77,7 +77,7 @@ Feature: JWT Authenticator - Validate And Decode
     Then the HTTP response status code is 401
     And The following appears in the log after my savepoint:
     """
-    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification raised>')>
+    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification failed>')>
     """
 
   @negative @acceptance
@@ -102,5 +102,5 @@ Feature: JWT Authenticator - Validate And Decode
     Then the HTTP response status code is 401
     And The following appears in the log after my savepoint:
     """
-    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification raised>')>
+    CONJ00035E Failed to decode token (3rdPartyError ='#<JWT::VerificationError: Signature verification failed>')>
     """