From nobody Thu May 16 06:29:28 2024 X-Original-To: dev-commits-ports-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Vg0Yj0WKqz5Kg52; Thu, 16 May 2024 06:29:29 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Vg0Yh62Kwz42V9; Thu, 16 May 2024 06:29:28 +0000 (UTC) (envelope-from git@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1715840968; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=uhZKe7QQPSrAtf0kI2wHM194TlJFLBD/jx1mpfCFsP0=; b=ycFp6pn0nOZLfxgf1c0a7ZxOAIXgYUsa9vKHW46CYYJBg7CDn2B6uQxjjXP+idPlBpvf3r lOo9zDzU/P1oC1ochxnwK8yU9PDAof5G5BBywKmeq0LcGaKheTHdy1nfcP5R3Z5Y9q8oEH deImZwGUUhZFPi5Zqw0YYn+EPZ50v0LGhVIXfM1RfkKZfjwSCxz1JmeLNeIYk82oLYUG5d qwq/CAlNW5Yl8VrXu7+5KxBs48eyYJRldQa62MUrwGI/Jjx3dXW0qKjUPDZZgsQW6GQBut DQ+GxJSfOGj43GVcsdGrRhueXUobcFEI+PbTXFWIwb71H1dRp0hhjgGjxmv4vw== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1715840968; a=rsa-sha256; cv=none; b=LydH5s9q30/dsZfL90HYboKmCBftoLqHpOEBQRrDuDCao9lrPMyFpo4PdvGHa71jUf8ZTX v+1XwyQU4o6FAzZDcWozAC8xNiZlGRQM6iqGhoMAIa205pkLREr2tZiaLHzjIrkQHKenME AAZEeN+dKSJJJBZQZjR0Cu7RrdqzSPNV79H5s+Ctt3sFqTy5VvZMVC7g1AxiwicKyoDcnt TBIoT5NeZtqDcce8mRqJVXH67JmGxKPX1isxfz1LcTDawxQbtjBIz9jkXh86Z+vRRX76mj boZa97sMcKR8vTJyjxhnCi6k9sjgQrrQJgx6e9KFn0W6MC0UMdg+hsQiVJcPug== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1715840968; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=uhZKe7QQPSrAtf0kI2wHM194TlJFLBD/jx1mpfCFsP0=; b=p2s+4qsLrHjZFVXZgu0CtmMlNvTi/n6FHI7k3TWsXHt+FyjRtmJK2TpEGEgASiE6eKGOuZ QomybGyZwmu6DUqEduge/hbGW8LOd7gOCF970IW3zRo6FaCdlY1rEN0HYMWcF+S9jrgQxA Nc+Tq4zSKsumLHjaXCXSuRD41PsdtRcCl4t69hDfozdZdgXI7BDV3UEz+N0BC0MY5kyPYs /ZiAzG3l8aGonqbPVQbPH8t3xW5gwmqrnAMA5T0bFjtxWj1oAt1p4eLuiNf/9fALXOkVoP Ms/09mDr0HLaIF9T+e/x8/ipiq5XgFY8nH1m7vkVCvbERXi7zF2yFZ3HCt6qEw== Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4Vg0Yh5KwfznsG; Thu, 16 May 2024 06:29:28 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.17.1/8.17.1) with ESMTP id 44G6TS27032188; Thu, 16 May 2024 06:29:28 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.17.1/8.17.1/Submit) id 44G6TSJW032185; Thu, 16 May 2024 06:29:28 GMT (envelope-from git) Date: Thu, 16 May 2024 06:29:28 GMT Message-Id: <202405160629.44G6TSJW032185@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Po-Chuan Hsieh Subject: git: 24bd1fcf60c1 - main - devel/rubygem-devise-pwned_password: Add rubygem-devise-pwned_password 0.1.12 List-Id: Commits to the main branch of the FreeBSD ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: dev-commits-ports-main@freebsd.org Sender: owner-dev-commits-ports-main@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: sunpoet X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: 24bd1fcf60c1c5a34d846371c876094565b57409 Auto-Submitted: auto-generated The branch main has been updated by sunpoet: URL: https://cgit.FreeBSD.org/ports/commit/?id=24bd1fcf60c1c5a34d846371c876094565b57409 commit 24bd1fcf60c1c5a34d846371c876094565b57409 Author: Po-Chuan Hsieh AuthorDate: 2024-05-16 06:13:39 +0000 Commit: Po-Chuan Hsieh CommitDate: 2024-05-16 06:21:49 +0000 devel/rubygem-devise-pwned_password: Add rubygem-devise-pwned_password 0.1.12 Devise::PwnedPassword is a Devise extension that checks user passwords against the PwnedPasswords dataset. It checks for compromised ("pwned") passwords in 2 different places/ways: - As a standard model validation using pwned. This: - prevents new users from being created (signing up) with a compromised password - prevents existing users from changing their password to a password that is known to be compromised - (Optionally) Whenever a user signs in, checks if their current password is compromised and shows a warning if it is. --- devel/Makefile | 1 + devel/rubygem-devise-pwned_password/Makefile | 20 ++++++++++++++++++++ devel/rubygem-devise-pwned_password/distinfo | 3 +++ devel/rubygem-devise-pwned_password/pkg-descr | 11 +++++++++++ 4 files changed, 35 insertions(+) diff --git a/devel/Makefile b/devel/Makefile index 340d9dd40643..7435321cf3f5 100644 --- a/devel/Makefile +++ b/devel/Makefile @@ -6899,6 +6899,7 @@ SUBDIR += rubygem-descendants_tracker SUBDIR += rubygem-device_detector SUBDIR += rubygem-devise + SUBDIR += rubygem-devise-pwned_password SUBDIR += rubygem-devise-rails5 SUBDIR += rubygem-devise-rails52 SUBDIR += rubygem-devise-rails60 diff --git a/devel/rubygem-devise-pwned_password/Makefile b/devel/rubygem-devise-pwned_password/Makefile new file mode 100644 index 000000000000..4f616fdf3932 --- /dev/null +++ b/devel/rubygem-devise-pwned_password/Makefile @@ -0,0 +1,20 @@ +PORTNAME= devise-pwned_password +PORTVERSION= 0.1.12 +CATEGORIES= devel rubygems +MASTER_SITES= RG + +MAINTAINER= sunpoet@FreeBSD.org +COMMENT= Devise extension that checks user passwords against the PwnedPasswords dataset +WWW= https://github.com/michaelbanfield/devise-pwned_password + +LICENSE= MIT +LICENSE_FILE= ${WRKSRC}/MIT-LICENSE + +RUN_DEPENDS= rubygem-devise-rails71>=0:devel/rubygem-devise-rails71 \ + rubygem-pwned>=2.4<3:security/rubygem-pwned + +USES= gem + +NO_ARCH= yes + +.include diff --git a/devel/rubygem-devise-pwned_password/distinfo b/devel/rubygem-devise-pwned_password/distinfo new file mode 100644 index 000000000000..dfaa5647401b --- /dev/null +++ b/devel/rubygem-devise-pwned_password/distinfo @@ -0,0 +1,3 @@ +TIMESTAMP = 1714227806 +SHA256 (rubygem/devise-pwned_password-0.1.12.gem) = 876452466634560a79910a1f22ef467f656e95e746c77d8266d70345b2279672 +SIZE (rubygem/devise-pwned_password-0.1.12.gem) = 9216 diff --git a/devel/rubygem-devise-pwned_password/pkg-descr b/devel/rubygem-devise-pwned_password/pkg-descr new file mode 100644 index 000000000000..5483f61caeea --- /dev/null +++ b/devel/rubygem-devise-pwned_password/pkg-descr @@ -0,0 +1,11 @@ +Devise::PwnedPassword is a Devise extension that checks user passwords against +the PwnedPasswords dataset. + +It checks for compromised ("pwned") passwords in 2 different places/ways: +- As a standard model validation using pwned. This: + - prevents new users from being created (signing up) with a compromised + password + - prevents existing users from changing their password to a password that is + known to be compromised +- (Optionally) Whenever a user signs in, checks if their current password is + compromised and shows a warning if it is.