From 89ef7d39f2dde1a1ff8535e1d066e2d8f7a93d2a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jan 2024 00:34:53 +0000
Subject: [PATCH] Bump omniauth from 1.8.1 to 2.1.2 in /backend

Bumps [omniauth](https://github.com/omniauth/omniauth) from 1.8.1 to 2.1.2.
- [Release notes](https://github.com/omniauth/omniauth/releases)
- [Commits](https://github.com/omniauth/omniauth/compare/v1.8.1...v2.1.2)

---
updated-dependencies:
- dependency-name: omniauth
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 backend/Gemfile      |  2 +-
 backend/Gemfile.lock | 21 +++++++++++++--------
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/backend/Gemfile b/backend/Gemfile
index d8774d1b..c1c2481f 100644
--- a/backend/Gemfile
+++ b/backend/Gemfile
@@ -24,7 +24,7 @@ gem "cancancan", "~> 3.3.0"
 gem "cancancan-mongoid", "2.0.0"
 gem "devise", "4.8.0"
 gem "devise_invitable", "2.0.5"
-gem "omniauth", "1.8.1"
+gem "omniauth", "2.1.2"
 gem "omniauth-facebook", "3.0.0"
 
 # Colored output to console
diff --git a/backend/Gemfile.lock b/backend/Gemfile.lock
index 4d5bf42e..3007d27a 100644
--- a/backend/Gemfile.lock
+++ b/backend/Gemfile.lock
@@ -71,6 +71,7 @@ GEM
       rake (>= 10.4, < 14.0)
     ast (2.4.2)
     awesome_print (1.9.2)
+    base64 (0.2.0)
     bcrypt (3.1.16)
     bcrypt (3.1.16-java)
     better_errors (2.10.1)
@@ -179,7 +180,7 @@ GEM
       activerecord (>= 4.2, < 7.0)
       request_store (~> 1.0)
     hashdiff (1.0.1)
-    hashie (3.5.7)
+    hashie (5.0.0)
     httpclient (2.8.3)
     i18n (1.14.1)
       concurrent-ruby (~> 1.0)
@@ -263,14 +264,15 @@ GEM
       multi_json (~> 1.3)
       multi_xml (~> 0.5)
       rack (>= 1.2, < 3)
-    omniauth (1.8.1)
-      hashie (>= 3.4.6, < 3.6.0)
-      rack (>= 1.6.2, < 3)
+    omniauth (2.1.2)
+      hashie (>= 3.4.6)
+      rack (>= 2.2.3)
+      rack-protection
     omniauth-facebook (3.0.0)
       omniauth-oauth2 (~> 1.2)
-    omniauth-oauth2 (1.5.0)
-      oauth2 (~> 1.1)
-      omniauth (~> 1.2)
+    omniauth-oauth2 (1.8.0)
+      oauth2 (>= 1.4, < 3)
+      omniauth (~> 2.0)
     orm_adapter (0.5.0)
     parallel (1.23.0)
     parser (3.2.2.3)
@@ -309,6 +311,9 @@ GEM
     rack (2.2.8)
     rack-cors (2.0.1)
       rack (>= 2.0.0)
+    rack-protection (3.2.0)
+      base64 (>= 0.1.0)
+      rack (~> 2.2, >= 2.2.4)
     rack-test (2.1.0)
       rack (>= 1.3)
     rack-timeout (0.6.0)
@@ -494,7 +499,7 @@ DEPENDENCIES
   mongoid (= 7.3.3)
   mongoid-rspec
   nearest_time_zone
-  omniauth (= 1.8.1)
+  omniauth (= 2.1.2)
   omniauth-facebook (= 3.0.0)
   pg (= 1.2.3)
   pry-byebug