From 2b2681bd481d2558393f119cf3839ba724478cae Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 May 2024 18:37:03 +0000
Subject: [PATCH] Bump omniauth from 1.9.2 to 2.0.0

Bumps [omniauth](https://github.com/omniauth/omniauth) from 1.9.2 to 2.0.0.
- [Release notes](https://github.com/omniauth/omniauth/releases)
- [Commits](https://github.com/omniauth/omniauth/compare/v1.9.2...v2.0.0)

---
updated-dependencies:
- dependency-name: omniauth
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 Gemfile      | 2 +-
 Gemfile.lock | 8 ++++++--
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/Gemfile b/Gemfile
index 595641ff..821c524e 100644
--- a/Gemfile
+++ b/Gemfile
@@ -5,7 +5,7 @@ gem 'passenger', "~> 6.0"
 gem 'ajax-datatables-rails', "~> 1.4"
 
 # Use OmniAuth to support any type of auth
-gem 'omniauth', "~> 1.9"
+gem 'omniauth', "~> 2.0"
 gem 'omniauth-shibboleth', "~> 1.1"
 gem 'omniauth-shibboleth-passive', "~> 0.1"
 
diff --git a/Gemfile.lock b/Gemfile.lock
index 586f4a5a..2a53759e 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -308,9 +308,10 @@ GEM
     notiffany (0.1.3)
       nenv (~> 0.1)
       shellany (~> 0.0)
-    omniauth (1.9.2)
+    omniauth (2.0.0)
       hashie (>= 3.4.6)
       rack (>= 1.6.2, < 3)
+      rack-protection
     omniauth-shibboleth (1.1.2)
       omniauth (>= 1.0.0)
     omniauth-shibboleth-passive (0.1.0)
@@ -342,6 +343,9 @@ GEM
       activesupport (>= 3.0.0)
     racc (1.7.3)
     rack (2.2.9)
+    rack-protection (3.2.0)
+      base64 (>= 0.1.0)
+      rack (~> 2.2, >= 2.2.4)
     rack-proxy (0.7.7)
       rack
     rack-session (1.0.2)
@@ -576,7 +580,7 @@ DEPENDENCIES
   lograge (~> 0.11)
   mysql2 (~> 0.5)
   net-ldap (~> 0.16)
-  omniauth (~> 1.9)
+  omniauth (~> 2.0)
   omniauth-shibboleth (~> 1.1)
   omniauth-shibboleth-passive (~> 0.1)
   paper_trail (~> 15.1)