| Port details |
- rubygem-omniauth-rails_csrf_protection Mitigation against CVE-2015-9284 for OmniAuth
- 1.0.1 security
 =0      1.0.1Version of this port present on the latest quarterly branch. - Maintainer: mfechner@FreeBSD.org
- Port Added: 2022-11-07 15:43:05
- Last Update: 2023-01-14 23:08:33
- Commit Hash: 18c6e18
- Also Listed In: rubygems
- License: MIT
- Description:
- This gem provides a mitigation against CVE-2015-9284
(Cross-Site Request Forgery on the request phrase when
using OmniAuth gem with a Ruby on Rails application) by
implementing a CSRF token verifier that directly utilize
`ActionController::RequestForgeryProtection` code from Rails.
  ¦  ¦  ¦  ¦  - pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- rubygem-omniauth-rails_csrf_protection>0:security/rubygem-omniauth-rails_csrf_protection
- To install the port:
- cd /usr/ports/security/rubygem-omniauth-rails_csrf_protection/ && make install clean
- To add the package, run one of these commands:
- pkg install security/rubygem-omniauth-rails_csrf_protection
- pkg install rubygem-omniauth-rails_csrf_protection
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: rubygem-omniauth-rails_csrf_protection
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1665830346
SHA256 (rubygem/omniauth-rails_csrf_protection-1.0.1.gem) = fc546aeb7d43b7b9d7737051c380156e61c8f080b898cd4934d523eaa7e59acf
SIZE (rubygem/omniauth-rails_csrf_protection-1.0.1.gem) = 10752
Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- ruby30 : lang/ruby30
- gem : devel/ruby-gems
- Runtime dependencies:
-
- rubygem-actionpack61>=4.2 : www/rubygem-actionpack61
- rubygem-omniauth>=2.0<3 : security/rubygem-omniauth
- ruby30 : lang/ruby30
- gem : devel/ruby-gems
- Patch dependencies:
-
- ruby30 : lang/ruby30
- gem : devel/ruby-gems
-
- There are no ports dependent upon this port
Configuration Options:- No options to configure
- Options name:
- security_rubygem-omniauth-rails_csrf_protection
- USES:
- gem
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|
Number of commits found: 2
| Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
| Commit | Credits | Log message |
|---|
1.0.1
14 Jan 2023 23:08:33
 |
Muhammad Moinur Rahman (bofh) |
Mk/**ruby.mk: Switch from USE_RUBY=yes to USES=ruby
Switch from Mk/bsd.ruby.mk to Mk/Uses/ruby.mk
Notable changes are.
- Mk/bsd.ruby.mk is moved to Mk/Uses/ruby.mk.
- USE_RUBY=yes is replaced with USES=ruby.
- USE_RUBY_EXTCONF is replaced with USES=ruby:extconf.
- USE_RUBY_RDOC is replaced with USES=ruby:rdoc.
- USE_RUBY_SETUP is replaces with USES=ruby:setup.
- RUBY_NO_BUILD_DEPENDS and RUBY_NO_RUN_DEPENDS are replaced with
USES=ruby:{build,none,run}.
- RUBY_REQUIRE isn't used anywhere, so removed.
- USES=gem now implies USES=ruby.
This is mainly the work of yasu@ at https://reviews.freebsd.org/D27863
I have just made some cosmetic changes and ran exp-run to test that the
tree is not in a BROKEN state.
Approved by: portmgr
Differential Revision: https://reviews.freebsd.org/D37925 |
1.0.1
07 Nov 2022 15:41:47
|
Matthias Fechner (mfechner) |
security/rubygem-omniauth-rails_csrf_protection: new port, required for
gitlab-ce |
Number of commits found: 2
|
As an Amazon Associate I earn from qualifying purchases.