actionpack-cloudfront 1.0.0

data/lib/action_pack/cloudfront/ip_ranges.rb

@@ -0,0 +1,59 @@
+module ActionPack
+  module Cloudfront
+    module IpRanges
+
+      class Range
+        attr_reader :ip_prefix, :region, :service
+
+        def initialize(attrs)
+          @service = attrs['service']
+          @ip_prefix = attrs['ip_prefix'] || attrs['ipv6_prefix']
+          @region = attrs['region']
+        end
+
+        def cloudfront?
+          service =~ /cloudfront/i
+        end
+
+        def ipaddr
+          IPAddr.new(ip_prefix)
+        end
+      end
+
+      def trusted_proxies
+        cloudfront_proxies + ActionDispatch::RemoteIp::TRUSTED_PROXIES
+      end
+
+      def cloudfront_proxies
+        ip_ranges.select(&:cloudfront?).map(&:ipaddr)
+      end
+
+      def ip_ranges
+        @ip_ranges ||= begin
+          data = ip_data
+          prefixes = data['prefixes']
+          prefixesv6 = data['ipv6_prefixes']
+          (prefixes + prefixesv6).map do |attrs|
+            Range.new(attrs)
+          end
+        end
+      end
+
+      def ip_data
+        Timeout.timeout(5) do
+          uri = URI('https://ip-ranges.amazonaws.com/ip-ranges.json')
+          res = Net::HTTP.get(uri)
+          JSON.parse(res)
+        end
+      rescue
+        backup_json = File.join File.dirname(__FILE__), 'ip-ranges.json'
+        JSON.parse File.read(backup_json)
+      end
+
+      extend self
+
+    end
+  end
+end
+
+

data/lib/action_pack/cloudfront/railtie.rb

@@ -0,0 +1,19 @@
+require 'rails/railtie'
+
+module ActionPack
+  module Cloudfront
+    class Railtie < ::Rails::Railtie
+
+      config.action_pack_cloudfront = ActiveSupport::OrderedOptions.new
+      config.action_pack_cloudfront.load_proxies = !::Rails.env.test? && !::Rails.env.development?
+
+      config.before_initialize do |app|
+        if app.config.load_proxies
+          trusted_proxies = ActionPack::Cloudfront::IpRanges.trusted_proxies
+          app.config.action_dispatch.trusted_proxies = trusted_proxies
+        end
+      end
+
+    end
+  end
+end

data/lib/action_pack/cloudfront/version.rb

@@ -0,0 +1,5 @@
+module ActionPack
+  module Cloudfront
+    VERSION = '1.0.0'.freeze
+  end
+end

data/lib/actionpack-cloudfront.rb

@@ -0,0 +1 @@
+require 'action_pack/cloudfront'

metadata

@@ -0,0 +1,137 @@
+--- !ruby/object:Gem::Specification
+name: actionpack-cloudfront
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- Ken Collins
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2017-11-29 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '4.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '4.2'
+- !ruby/object:Gem::Dependency
+  name: appraisal
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Simple gem that adds Amazon CloudFront IP prefixes to the trusted proxies
+  to Rails RemoteIp middleware.
+email:
+- kcollins@customink.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".travis.yml"
+- Appraisals
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- actionpack-cloudfront.gemspec
+- bin/console
+- bin/setup
+- gemfiles/rails42.gemfile
+- gemfiles/rails42.gemfile.lock
+- gemfiles/rails50.gemfile
+- gemfiles/rails50.gemfile.lock
+- gemfiles/rails51.gemfile
+- gemfiles/rails51.gemfile.lock
+- lib/action_pack/cloudfront.rb
+- lib/action_pack/cloudfront/ip-ranges.json
+- lib/action_pack/cloudfront/ip_ranges.rb
+- lib/action_pack/cloudfront/railtie.rb
+- lib/action_pack/cloudfront/version.rb
+- lib/actionpack-cloudfront.rb
+homepage: https://github.com/customink/actionpack-cloudfront
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.8
+signing_key: 
+specification_version: 4
+summary: Configure ActionDispatch::RemoteIp trusted proxies for Amazon CloudFront.
+test_files: []