-
-
Notifications
You must be signed in to change notification settings - Fork 268
Expand file tree
/
Copy pathoauth.gemspec
More file actions
179 lines (157 loc) · 8.06 KB
/
oauth.gemspec
File metadata and controls
179 lines (157 loc) · 8.06 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
# coding: utf-8
# frozen_string_literal: true
gem_version =
if RUBY_VERSION >= "3.1" # rubocop:disable Gemspec/RubyVersionGlobalsUsage
# Loading Version into an anonymous module allows version.rb to get code coverage from SimpleCov!
# See: https://github.com/simplecov-ruby/simplecov/issues/557#issuecomment-2630782358
# See: https://github.com/panorama-ed/memo_wise/pull/397
Module.new.tap { |mod| Kernel.load("#{__dir__}/lib/oauth/version.rb", mod) }::OAuth::Version::VERSION
else
require_relative "lib/oauth/version"
OAuth::Version::VERSION
end
Gem::Specification.new do |spec|
spec.name = "oauth"
spec.version = gem_version
spec.authors = ["Pelle Braendgaard", "Blaine Cook", "Larry Halff", "Jesse Clark", "Jon Crosby", "Seth Fitzsimmons", "Matt Sanford", "Aaron Quint", "Peter Boling"]
spec.email = ["floss@galtzo.com", "oauth-ruby@googlegroups.com"]
spec.summary = "🔑 OAuth 1.0 / 1.0a Core Ruby implementation"
spec.description = "🔑 A Ruby wrapper for the original OAuth 1.0 / 1.0a spec."
spec.homepage = "https://github.com/ruby-oauth/oauth"
spec.licenses = ["MIT"]
spec.required_ruby_version = ">= 2.3"
# Linux distros often package gems and securely certify them independent
# of the official RubyGem certification process. Allowed via ENV["SKIP_GEM_SIGNING"]
# Ref: https://gitlab.com/ruby-oauth/version_gem/-/issues/3
# Hence, only enable signing if `SKIP_GEM_SIGNING` is not set in ENV.
# See CONTRIBUTING.md
unless ENV.include?("SKIP_GEM_SIGNING")
user_cert = "certs/#{ENV.fetch("GEM_CERT_USER", ENV["USER"])}.pem"
cert_file_path = File.join(__dir__, user_cert)
cert_chain = cert_file_path.split(",")
cert_chain.select! { |fp| File.exist?(fp) }
if cert_file_path && cert_chain.any?
spec.cert_chain = cert_chain
if $PROGRAM_NAME.end_with?("gem") && ARGV[0] == "build"
spec.signing_key = File.join(Gem.user_home, ".ssh", "gem-private_key.pem")
end
end
end
gl_homepage = "https://gitlab.com/ruby-oauth/#{spec.name}"
spec.metadata["homepage_uri"] = "https://#{spec.name.tr("_", "-")}.galtzo.com/"
spec.metadata["source_code_uri"] = "#{spec.homepage}/tree/v#{spec.version}"
spec.metadata["changelog_uri"] = "#{spec.homepage}/blob/v#{spec.version}/CHANGELOG.md"
spec.metadata["bug_tracker_uri"] = "#{spec.homepage}/issues"
spec.metadata["documentation_uri"] = "https://www.rubydoc.info/gems/#{spec.name}/#{spec.version}"
spec.metadata["mailing_list_uri"] = "https://groups.google.com/g/oauth-ruby"
spec.metadata["funding_uri"] = "https://github.com/sponsors/pboling"
spec.metadata["wiki_uri"] = "#{gl_homepage}/-/wiki"
spec.metadata["news_uri"] = "https://www.railsbling.com/tags/#{spec.name}"
spec.metadata["discord_uri"] = "https://discord.gg/3qme4XHNKN"
spec.metadata["rubygems_mfa_required"] = "true"
# Specify which files are part of the released package.
spec.files = Dir[
# Code / tasks / data (NOTE: exe/ is specified via spec.bindir and spec.executables below)
"lib/**/*.rb",
"lib/**/*.rake",
# Signatures
"sig/**/*.rbs",
]
# Automatically included with gem package, no need to list again in files.
spec.extra_rdoc_files = Dir[
# Files (alphabetical)
"CHANGELOG.md",
"CITATION.cff",
"CODE_OF_CONDUCT.md",
"CONTRIBUTING.md",
"FUNDING.md",
"LICENSE.txt",
"README.md",
"REEK",
"RUBOCOP.md",
"SECURITY.md",
]
spec.rdoc_options += [
"--title",
"#{spec.name} - #{spec.summary}",
"--main",
"README.md",
"--exclude",
"^sig/",
"--line-numbers",
"--inline-source",
"--quiet",
]
spec.require_paths = ["lib"]
spec.bindir = "bin"
# Listed files are the relative paths from bindir above.
spec.executables = []
# "oauth-tty" was extracted from this gem with release 1.1 of this gem
# It is now a dependency for backward compatibility.
# The dependency will cease to be a direct dependency with release 2.0.
spec.add_dependency("oauth-tty", "~> 1.0", ">= 1.0.6")
spec.add_dependency("snaky_hash", "~> 2.0")
# Standard Library Extracted Gems
spec.add_dependency("base64", "~> 0.1") # became a bundled gem in ruby 3.4 (was default from 3.0 to 3.3)
# Utilities
spec.add_dependency("version_gem", "~> 1.1", ">= 1.1.9") # ruby >= 2.2.0
# NOTE: It is preferable to list development dependencies in the gemspec due to increased
# visibility and discoverability.
# However, development dependencies in gemspec will install on
# all versions of Ruby that will run in CI.
# This gem, and its gemspec runtime dependencies, will install on Ruby down to 2.3.
# This gem, and its gemspec development dependencies, will install on Ruby down to 2.3.
# Thus, dev dependencies in gemspec must have
#
# required_ruby_version ">= 2.3" (or lower)
#
# Development dependencies that require strictly newer Ruby versions should be in a "gemfile",
# and preferably a modular one (see gemfiles/modular/*.gemfile).
spec.add_development_dependency("mocha")
spec.add_development_dependency("rack", ">= 2.0.0")
spec.add_development_dependency("rack-test")
spec.add_development_dependency("rest-client")
spec.add_development_dependency("typhoeus", ">= 0.1.13")
# Dev, Test, & Release Tasks
spec.add_development_dependency("kettle-dev", "~> 1.1") # ruby >= 2.3.0
# Security
spec.add_development_dependency("bundler-audit", "~> 0.9.2") # ruby >= 2.0.0
# Tasks
spec.add_development_dependency("rake", "~> 13.0") # ruby >= 2.2.0
# Debugging
spec.add_development_dependency("require_bench", "~> 1.0", ">= 1.0.4") # ruby >= 2.2.0
# Testing
spec.add_development_dependency("appraisal2", "~> 3.0") # ruby >= 1.8.7, for testing against multiple versions of dependencies
spec.add_development_dependency("kettle-test", "~> 1.0", ">= 1.0.6") # ruby >= 2.3
# Releasing
spec.add_development_dependency("ruby-progressbar", "~> 1.13") # ruby >= 0
spec.add_development_dependency("stone_checksums", "~> 1.0", ">= 1.0.2") # ruby >= 2.2.0
# Git integration (optional)
# The 'git' gem is optional; oauth falls back to shelling out to `git` if it is not present.
# The current release of the git gem depends on activesupport, which makes it too heavy to depend on directly
# spec.add_dependency("git", ">= 1.19.1") # ruby >= 2.3
# Development tasks
# The cake is a lie. erb v2.2, the oldest release, was never compatible with Ruby 2.3.
# This means we have no choice but to use the erb that shipped with Ruby 2.3
# /opt/hostedtoolcache/Ruby/2.3.8/x64/lib/ruby/gems/2.3.0/gems/erb-2.2.2/lib/erb.rb:670:in `prepare_trim_mode': undefined method `match?' for "-":String (NoMethodError)
# spec.add_development_dependency("erb", ">= 2.2") # ruby >= 2.3.0, not SemVer, old rubies get dropped in a patch.
spec.add_development_dependency("gitmoji-regex", "~> 1.0", ">= 1.0.3") # ruby >= 2.3.0
# HTTP recording for deterministic specs
# Ruby 2.3 / 2.4 can fail with:
# | An error occurred while loading spec_helper.
# | Failure/Error: require "vcr"
# |
# | NoMethodError:
# | undefined method `delete_prefix' for "CONTENT_LENGTH":String
# | # ./spec/config/vcr.rb:3:in `require'
# | # ./spec/config/vcr.rb:3:in `<top (required)>'
# | # ./spec/spec_helper.rb:8:in `require_relative'
# | # ./spec/spec_helper.rb:8:in `<top (required)>'
# So that's why we need backports.
spec.add_development_dependency("backports", "~> 3.25", ">= 3.25.1") # ruby >= 0
# In Ruby 3.5 (HEAD) the CGI library has been pared down, so we also need to depend on gem "cgi" for ruby@head
# This is done in the "head" appraisal.
# See: https://github.com/vcr/vcr/issues/1057
spec.add_development_dependency("vcr", ">= 4") # 6.0 claims to support ruby >= 2.3, but fails on ruby 2.4
spec.add_development_dependency("webmock", ">= 3") # Last version to support ruby >= 2.3
end