Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

pin dependencies #504

Merged
merged 4 commits into from
Nov 28, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
28 changes: 2 additions & 26 deletions .github/workflows/pypi-publish.yml
Original file line number Diff line number Diff line change
Expand Up @@ -7,29 +7,5 @@ on:

jobs:
Publish:
runs-on: ubuntu-20.04
steps:
- name: Checkout
uses: actions/checkout@v2

- name: Set up Python
uses: actions/setup-python@v2
with:
python-version: 3.7

- name: Install dependencies
run: |
python -m pip install --upgrade pip
pip install setuptools wheel babel

- name: Build package
# Remove `compile_catalog` if the package has no translations.
run: |
python setup.py compile_catalog sdist bdist_wheel

- name: Publish on PyPI
uses: pypa/[email protected]
with:
user: __token__
# The token is provided by the inveniosoftware organization
password: ${{ secrets.pypi_token }}
uses: inveniosoftware/workflows/.github/workflows/pypi-publish.yml@master
secrets: inherit
1 change: 1 addition & 0 deletions .github/workflows/tests.yml
Original file line number Diff line number Diff line change
Expand Up @@ -26,3 +26,4 @@ jobs:
uses: inveniosoftware/workflows/.github/workflows/tests-python.yml@master
with:
extras: "tests,admin,postgresql"
search-service: '[""]'
5 changes: 5 additions & 0 deletions CHANGES.rst
Original file line number Diff line number Diff line change
@@ -1,13 +1,18 @@
..
This file is part of Invenio.
Copyright (C) 2015-2024 CERN.
Copyright (C) 2024 Graz University of Technology.

Invenio is free software; you can redistribute it and/or modify it
under the terms of the MIT License; see LICENSE file for more details.

Changes
=======

Version v5.1.6 (released 2024-11-28)

- setup: pin dependencies

Version v5.1.5 (released 2024-11-05)

- model: make forward compatible to sqlalchemy >= 2
Expand Down
2 changes: 1 addition & 1 deletion invenio_accounts/__init__.py
Original file line number Diff line number Diff line change
Expand Up @@ -55,7 +55,7 @@
from .ext import InvenioAccounts, InvenioAccountsREST, InvenioAccountsUI
from .proxies import current_accounts

__version__ = "5.1.5"
__version__ = "5.1.6"

__all__ = (
"__version__",
Expand Down
8 changes: 8 additions & 0 deletions invenio_accounts/utils.py
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
#
# This file is part of Invenio.
# Copyright (C) 2017-2024 CERN.
# Copyright (C) 2024 Graz University of Technology.
#
# Invenio is free software; you can redistribute it and/or modify it
# under the terms of the MIT License; see LICENSE file for more details.
Expand Down Expand Up @@ -105,6 +106,13 @@ def jwt_decode_token(token):
return decode(
token,
current_app.config["ACCOUNTS_JWT_SECRET_KEY"],
options={
# Based on the JWT spec (https://datatracker.ietf.org/doc/html/rfc7519#section-4.1.2)
# the "sub" claim has to be a string. However, we are not enforcing this
# and are assuming that the "sub" claim is an object/dictionary.
# PyJWT v2.10.0 started enforcing this and we are disabling this check.
"verify_sub": False,
},
algorithms=[current_app.config["ACCOUNTS_JWT_ALOGORITHM"]],
)
except DecodeError as exc:
Expand Down
26 changes: 13 additions & 13 deletions setup.cfg
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
# This file is part of Invenio.
# Copyright (C) 2015-2024 CERN.
# Copyright (C) 2021 TU Wien.
# Copyright (C) 2022 Graz University of Technology.
# Copyright (C) 2022-2024 Graz University of Technology.
#
# Invenio is free software; you can redistribute it and/or modify it
# under the terms of the MIT License; see LICENSE file for more details.
Expand Down Expand Up @@ -31,30 +31,30 @@ install_requires =
cryptography>=3.0.0
Flask-KVSession-Invenio>=0.6.3
Flask-Security-Invenio>=3.3.0
invenio-celery>=1.2.3
invenio-i18n>=2.0.0
invenio-mail>=1.0.2
invenio-rest>=1.2.4
invenio-theme>=2.0.0
invenio-celery>=1.2.3,<2.0.0
invenio-i18n>=2.0.0,<3.0.0
invenio-mail>=1.0.2,<3.0.0
invenio-rest>=1.2.4,<2.0.0
invenio-theme>=2.0.0,<4.0.0
maxminddb-geolite2>=2017.404
pyjwt>=1.5.0
simplekv>=0.11.2
ua-parser>=0.7.3

[options.extras_require]
admin =
invenio-admin>=1.2.1
invenio-admin>=1.2.1,<2.0.0
postgresql =
invenio-db[postgresql]>=1.0.14
invenio-db[postgresql]>=1.0.14,<2.0.0
mysql =
invenio-db[mysql]>=1.0.14
invenio-db[mysql]>=1.0.14,<2.0.0
sqlite =
invenio-db>=1.0.14
invenio-db>=1.0.14,<2.0.0
tests =
mock>=1.3.0
invenio-app>=1.4.0
pytest-black>=0.3.0
pytest-invenio>=2.1.4
invenio-app>=1.4.0,<2.0.0
pytest-black-ng>=0.4.0
pytest-invenio>=2.1.4,<3.0.0
sphinx>=5,<6.0.0

[options.entry_points]
Expand Down