From 59b28bacd51725fd76177811882beb2a4996687e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 24 Feb 2023 20:06:03 +0000 Subject: [PATCH] Bump omniauth from 1.9.2 to 2.0.0 Bumps [omniauth](https://github.com/omniauth/omniauth) from 1.9.2 to 2.0.0. - [Release notes](https://github.com/omniauth/omniauth/releases) - [Commits](https://github.com/omniauth/omniauth/compare/v1.9.2...v2.0.0) --- updated-dependencies: - dependency-name: omniauth dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Gemfile | 2 +- Gemfile.lock | 16 +++++++++------- 2 files changed, 10 insertions(+), 8 deletions(-) diff --git a/Gemfile b/Gemfile index 83325dfe2..176a6bf1f 100644 --- a/Gemfile +++ b/Gemfile @@ -63,7 +63,7 @@ gem 'pg_search' # authentication gem 'devise', '>= 4.6.0' -gem 'omniauth', '~> 1.9.2' +gem 'omniauth', '~> 2.0.0' gem 'omniauth-oauth2' gem 'omniauth_openid_connect' gem 'omniauth-rails_csrf_protection', '~> 0.1' diff --git a/Gemfile.lock b/Gemfile.lock index 3f822dc80..808291455 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -243,17 +243,17 @@ GEM multi_xml (~> 0.5) rack (>= 1.2, < 3) oj (3.10.5) - omniauth (1.9.2) + omniauth (2.0.0) hashie (>= 3.4.6) rack (>= 1.6.2, < 3) - omniauth-oauth2 (1.6.0) - oauth2 (~> 1.1) - omniauth (~> 1.9) + rack-protection + omniauth-oauth2 (1.8.0) + oauth2 (>= 1.4, < 3) + omniauth (~> 2.0) omniauth-rails_csrf_protection (0.1.2) actionpack (>= 4.2) omniauth (>= 1.3.1) - omniauth_openid_connect (0.4.0) - addressable (~> 2.5) + omniauth_openid_connect (0.6.1) omniauth (>= 1.9, < 3) openid_connect (~> 1.1) openid_connect (1.3.0) @@ -306,6 +306,8 @@ GEM httpclient json-jwt (>= 1.11.0) rack (>= 2.1.0) + rack-protection (3.0.5) + rack rack-proxy (0.7.6) rack rack-test (2.0.2) @@ -528,7 +530,7 @@ DEPENDENCIES mini_magick minitest-reporters oj - omniauth (~> 1.9.2) + omniauth (~> 2.0.0) omniauth-oauth2 omniauth-rails_csrf_protection (~> 0.1) omniauth_openid_connect