diff --git a/Gemfile b/Gemfile index c845710096..78e6dc78cb 100644 --- a/Gemfile +++ b/Gemfile @@ -73,7 +73,8 @@ gem 'kubeclient' gem 'websocket' # authn-oidc, gcp, azure, jwt -gem 'jwt', '2.2.2' # version frozen due to authn-jwt requirements +# gem 'jwt', '2.2.2' # version frozen due to authn-jwt requirements +gem 'jwt', '2.7.1' # authn-oidc gem 'openid_connect', '~> 2.0' diff --git a/Gemfile.lock b/Gemfile.lock index a659602a11..24761c1cd0 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -269,7 +269,7 @@ GEM rspec (>= 2.0, < 4.0) jsonpath (1.1.0) multi_json - jwt (2.2.2) + jwt (2.7.1) kubeclient (4.9.3) http (>= 3.0, < 5.0) jsonpath (~> 1.0) @@ -557,7 +557,7 @@ DEPENDENCIES jbuilder (~> 2.7.0) json_schemer json_spec (~> 1.1) - jwt (= 2.2.2) + jwt (= 2.7.1) kubeclient listen loofah (>= 2.2.3) diff --git a/NOTICES.txt b/NOTICES.txt index 9f776f0a92..e30c658d96 100644 --- a/NOTICES.txt +++ b/NOTICES.txt @@ -20,7 +20,7 @@ Section 3: BSD-3-Clause >>> https://rubygems.org/gems/base32-crockford/versions/0.1.0 >>> https://rubygems.org/gems/ffi/versions/1.15.4 ->>> https://rubygems.org/gems/puma/versions/5.6.4 +>>> https://rubygems.org/gems/puma/versions/6.3.1 Section 4: MIT @@ -37,13 +37,13 @@ Section 4: MIT >>> https://rubygems.org/gems/http/versions/4.2.0 >>> https://rubygems.org/gems/iso8601/versions/0.13.0 >>> https://rubygems.org/gems/jbuilder/versions/2.7.0 ->>> https://rubygems.org/gems/jwt/versions/2.2.2 +>>> https://rubygems.org/gems/jwt/versions/2.7.1 >>> https://rubygems.org/gems/kubeclient/versions/4.9.3 >>> https://rubygems.org/gems/listen/versions/3.7.0 >>> https://rubygems.org/gems/loofah/versions/2.20.0 >>> https://rubygems.org/gems/net-ldap/versions/0.17.0 >>> https://rubygems.org/gems/nokogiri/versions/1.14.3 ->>> https://rubygems.org/gems/openid_connect/versions/1.3.0 +>>> https://rubygems.org/gems/openid_connect/versions/2.2.0 >>> https://rubygems.org/gems/rack-rewrite/versions/1.5.1 >>> https://rubygems.org/gems/rails/versions/6.1.7.3 >>> https://rubygems.org/gems/rake/versions/13.0.6 @@ -214,7 +214,7 @@ CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. ->>> https://rubygems.org/gems/puma/versions/5.6.4 +>>> https://rubygems.org/gems/puma/versions/6.3.1 Some code copyright (c) 2005, Zed Shaw Copyright (c) 2011, Evan Phoenix @@ -546,7 +546,7 @@ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. ->>> https://rubygems.org/gems/jwt/versions/2.2.2 +>>> https://rubygems.org/gems/jwt/versions/2.7.1 Copyright (c) 2011 Jeff Lindsay @@ -680,7 +680,7 @@ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. ->>> https://rubygems.org/gems/openid_connect/versions/1.3.0 +>>> https://rubygems.org/gems/openid_connect/versions/2.2.0 Copyright (c) 2011 nov matake diff --git a/cucumber/authenticators_jwt/features/authn_jwt_check_standard_claims.feature b/cucumber/authenticators_jwt/features/authn_jwt_check_standard_claims.feature index 28fb3af4dc..4d002926ee 100644 --- a/cucumber/authenticators_jwt/features/authn_jwt_check_standard_claims.feature +++ b/cucumber/authenticators_jwt/features/authn_jwt_check_standard_claims.feature @@ -365,7 +365,7 @@ Feature: JWT Authenticator - Check registered claim Then the HTTP response status code is 401 And The following appears in the log after my savepoint: """ - CONJ00035E Failed to decode token (3rdPartyError ='#')> + CONJ00035E Failed to decode token (3rdPartyError ='#')> """ @negative @acceptance @@ -454,7 +454,7 @@ Feature: JWT Authenticator - Check registered claim Then the HTTP response status code is 401 And The following appears in the log after my savepoint: """ - CONJ00035E Failed to decode token (3rdPartyError ='#')> + CONJ00035E Failed to decode token (3rdPartyError ='#')> """ @sanity diff --git a/cucumber/authenticators_jwt/features/authn_jwt_fetch_signing_key.feature b/cucumber/authenticators_jwt/features/authn_jwt_fetch_signing_key.feature index b4b3e864ae..6bfcc7aead 100644 --- a/cucumber/authenticators_jwt/features/authn_jwt_fetch_signing_key.feature +++ b/cucumber/authenticators_jwt/features/authn_jwt_fetch_signing_key.feature @@ -550,7 +550,7 @@ Feature: JWT Authenticator - Fetch signing key Then the HTTP response status code is 401 And The following appears in the log after my savepoint: """ - CONJ00035E Failed to decode token (3rdPartyError ='#') + CONJ00035E Failed to decode token (3rdPartyError ='#') """ @negative @acceptance @@ -605,7 +605,7 @@ Feature: JWT Authenticator - Fetch signing key Then the HTTP response status code is 401 And The following appears in the log after my savepoint: """ - CONJ00035E Failed to decode token (3rdPartyError ='#') + CONJ00035E Failed to decode token (3rdPartyError ='#') """ @negative @acceptance diff --git a/cucumber/authenticators_jwt/features/authn_jwt_validate_and_decode.feature b/cucumber/authenticators_jwt/features/authn_jwt_validate_and_decode.feature index 6cd17e769c..9e90b39147 100644 --- a/cucumber/authenticators_jwt/features/authn_jwt_validate_and_decode.feature +++ b/cucumber/authenticators_jwt/features/authn_jwt_validate_and_decode.feature @@ -77,7 +77,7 @@ Feature: JWT Authenticator - Validate And Decode Then the HTTP response status code is 401 And The following appears in the log after my savepoint: """ - CONJ00035E Failed to decode token (3rdPartyError ='#')> + CONJ00035E Failed to decode token (3rdPartyError ='#')> """ @negative @acceptance @@ -102,5 +102,5 @@ Feature: JWT Authenticator - Validate And Decode Then the HTTP response status code is 401 And The following appears in the log after my savepoint: """ - CONJ00035E Failed to decode token (3rdPartyError ='#')> + CONJ00035E Failed to decode token (3rdPartyError ='#')> """