- make new_jwt_token public in order to fetch raw token directly (#405)
- Use OpenSSL 3.0 compatible interfaces for IDTokens (#397)
- Updated minimum Ruby version to 2.6
- Add README instructions for 3-Legged OAuth with a service account
- Support Faraday 2
- add quota_project to user refresh credentials
- Support short-lived tokens in Credentials
Bumped version to 1.0.0. Releases from this point will follow semver.
- Allow dependency on future 1.x versions of signet
- Prevented gcloud from authenticating on the console when getting the gcloud project
- Updates to gem metadata
- Allow scopes to be self-signed into jwts
- Stop attempting to get the project from gcloud when applying self-signed JWTs
- Accept application/text content-type for plain idtoken response
- Drop support for Ruby 2.4 and add support for Ruby 3.0
- Fix crash when using a client credential without any paths or env_vars set
- Credential parameters inherit from superclasses
- Service accounts apply a self-signed JWT if scopes are marked as default
- Retry fetch_access_token when GCE metadata server returns unexpected errors
- Support correct service account and user refresh behavior for custom credential env variables
- Honor GCE_METADATA_HOST environment variable
- Fix errors in some environments when requesting an access token for multiple scopes
- Support scopes when using GCE Metadata Server authentication (@ball-hayden)
- Support for validating ID tokens.
- Fixed header application of ID tokens from service accounts.
- Support for ID token credentials.
- Support reading quota_id_project from service account credentials.
- Support Faraday 1.x.
- Allow special "postmessage" value for redirect_uri.
Note: This release now requires Ruby 2.4 or later
- Increase metadata timeout to improve reliability in some hosting environments
- Support an environment variable to suppress Cloud SDK credentials warnings
- Make the header check case insensitive
- Set instance variables at initialization to avoid spamming warnings
- Pass "Metadata-Flavor" header to metadata server when checking for GCE
- Restore compatibility with Ruby 2.0. This is the last release that will work on end-of-lifed versions of Ruby. The 0.10 release will require Ruby 2.4 or later.
- Update Credentials to use methods for values that are intended to be changed by users, replacing constants.
- Add retry on error for fetch_access_token
- Allow specifying custom state key-values
- Add verbosity none to gcloud command
- Make arity of WebUserAuthorizer#get_credentials compatible with the base class
- Silence unnecessary gcloud warning
- Treat empty credentials environment variables as unset
- Support connection options :default_connection and :connection_builder when creating credentials that need to refresh OAuth tokens. This lets clients provide connection objects with custom settings, such as proxies, needed for the client environment.
- Removed an unnecessary warning about project IDs.
- Make load_gcloud_project_id module function.
- Add project_id instance variable to UserRefreshCredentials, ServiceAccountCredentials, and Credentials.
- Update memoist dependency to ~> 0.16.
- Remove ruby version warnings.
- Fix incorrect http verb when revoking credentials.
- Warn on EOL ruby versions.
- Resolve issue where DefaultCredentials constant was undefined.
- Resolve issue where token_store was being written to twice
- Add warning when using cloud sdk credentials
- Fix file permissions
- Support ruby-jwt 2.0
- Add simple credentials class
- Fix file permissions on the gem's
.rb
files.
- Add retry mechanism when fetching access tokens in
GCECredentials
andUserRefreshCredentials
classes. - Update Google API OAuth2 token credential URI to v4.
- Change header name emitted by
Client#apply
from "Authorization" to "authorization" (@murgatroid99) - Fix ADC not working on some windows machines (@vsubramani)
- Initial support for user credentials ([@sqrrrl][])
- Update Signet to 0.7
- Updated UserRefreshCredentials hash to use string keys (@haabaato)
- Add support for a system default credentials file. (@mr-salty)
- Fix bug when loading credentials from ENV (@dwilkie)
- Relax the constraint of dependent version of multi_json (@igrep)
- Enables passing credentials via environment variables. (@haabaato)
- Improves handling of --no-scopes GCE authorization (@tbetbetbe)
- Refactoring and cleanup (@joneslee85)
- Adds an implementation of JWT header auth (@tbetbetbe)
- makes the scope parameter's optional in all APIs. (@tbetbetbe)
- changes the scope parameter's position in various constructors. (@tbetbetbe)