angular-csrf-cookie-rails 0.1.0

Sign up to get free protection for your applications and to get access to all the features.
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA1:
3
+ metadata.gz: e42152c74dc2d2c49b6ef3ad5dae7a43732156c1
4
+ data.tar.gz: f21ece5112689cb716a9d1fb4077ac24ecac8fb8
5
+ SHA512:
6
+ metadata.gz: a7ad3652615f1b373ded8ad63da157e9dea32fdd38bfc6db533be1feb6442741558ef96f6a415363b62dfb60bcdbc42a7b304273d65b1bfa72971e51f40e696e
7
+ data.tar.gz: 58a9254b7303c41d6c575d55b71158ffadcaf23499dc2bf54b1f852d3741f202adde5d4126da724aeb730624acf95119ca6dc360f2b369cc878971a1bf8a1688
@@ -0,0 +1,22 @@
1
+ *.gem
2
+ *.rbc
3
+ .bundle
4
+ .config
5
+ .yardoc
6
+ Gemfile.lock
7
+ InstalledFiles
8
+ _yardoc
9
+ coverage
10
+ doc/
11
+ lib/bundler/man
12
+ pkg
13
+ rdoc
14
+ spec/reports
15
+ test/tmp
16
+ test/version_tmp
17
+ tmp
18
+ *.bundle
19
+ *.so
20
+ *.o
21
+ *.a
22
+ mkmf.log
data/Gemfile ADDED
@@ -0,0 +1,4 @@
1
+ source 'https://rubygems.org'
2
+
3
+ # Specify your gem's dependencies in angular_csrf_cookie_rails.gemspec
4
+ gemspec
@@ -0,0 +1,22 @@
1
+ Copyright (c) 2014 Jeremy Ebler
2
+
3
+ MIT License
4
+
5
+ Permission is hereby granted, free of charge, to any person obtaining
6
+ a copy of this software and associated documentation files (the
7
+ "Software"), to deal in the Software without restriction, including
8
+ without limitation the rights to use, copy, modify, merge, publish,
9
+ distribute, sublicense, and/or sell copies of the Software, and to
10
+ permit persons to whom the Software is furnished to do so, subject to
11
+ the following conditions:
12
+
13
+ The above copyright notice and this permission notice shall be
14
+ included in all copies or substantial portions of the Software.
15
+
16
+ THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
17
+ EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
18
+ MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
19
+ NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
20
+ LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
21
+ OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
22
+ WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
@@ -0,0 +1,25 @@
1
+ # AngularCSRFCookieRails
2
+
3
+ Based on [this StackOverflow answer](http://stackoverflow.com/questions/14734243/rails-csrf-protection-angular-js-protect-from-forgery-makes-me-to-log-out-on/15761835#15761835), automatically configure Rails to set and verify the XSRF-TOKEN. The implementation is identical to the StackOverflow answer's implementation.
4
+
5
+ ## Installation
6
+
7
+ Add this line to your application's Gemfile:
8
+
9
+ gem 'angular-csrf-cookie-rails'
10
+
11
+ And then execute:
12
+
13
+ $ bundle
14
+
15
+ ## Usage
16
+
17
+ Just load the gem in your application's Gemfile, and you are good to go!
18
+
19
+ ## Contributing
20
+
21
+ 1. Fork it ( https://github.com/whitehat101/angular-csrf-cookie-rails/fork )
22
+ 2. Create your feature branch (`git checkout -b my-new-feature`)
23
+ 3. Commit your changes (`git commit -am 'Add some feature'`)
24
+ 4. Push to the branch (`git push origin my-new-feature`)
25
+ 5. Create a new Pull Request
@@ -0,0 +1,2 @@
1
+ require "bundler/gem_tasks"
2
+
@@ -0,0 +1,25 @@
1
+ # coding: utf-8
2
+ lib = File.expand_path('../lib', __FILE__)
3
+ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
4
+ require 'angular-csrf-cookie-rails/version'
5
+
6
+ Gem::Specification.new do |spec|
7
+ spec.name = "angular-csrf-cookie-rails"
8
+ spec.version = AngularCSRFCookieRails::VERSION
9
+ spec.authors = ["Jeremy Ebler"]
10
+ spec.email = ["jebler@gmail.com"]
11
+ spec.summary = %q{Configure Rails to set AngularJS's XSRF-TOKEN cookie.}
12
+ spec.description = %q{Zero-Configuration XSRF protection with Rails and AngularJS}
13
+ spec.homepage = "https://github.com/whitehat101/angular-csrf-cookie-rails"
14
+ spec.license = "MIT"
15
+
16
+ spec.files = `git ls-files -z`.split("\x0")
17
+ spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
18
+ spec.test_files = spec.files.grep(%r{^(test|spec|features)/})
19
+ spec.require_paths = ["lib"]
20
+
21
+ spec.add_dependency "railties", ">= 3.1"
22
+
23
+ spec.add_development_dependency "bundler", "~> 1.6"
24
+ spec.add_development_dependency "rake"
25
+ end
@@ -0,0 +1,10 @@
1
+ require "angular-csrf-cookie-rails/version"
2
+ require "angular-csrf-cookie-rails/action_controller"
3
+
4
+ module AngularCSRFCookieRails
5
+ class Engine < ::Rails::Engine
6
+ initializer "angular-csrf-cookie-rails" do |app|
7
+ ::ActionController::Base.send :include, AngularCSRFCookieRails::ActionController
8
+ end
9
+ end
10
+ end
@@ -0,0 +1,17 @@
1
+ module AngularCSRFCookieRails
2
+ module ActionController
3
+ def self.included klass
4
+ klass.after_filter :set_csrf_cookie_for_ng
5
+ end
6
+
7
+ def set_csrf_cookie_for_ng
8
+ cookies['XSRF-TOKEN'] = form_authenticity_token if protect_against_forgery?
9
+ end
10
+
11
+ protected
12
+
13
+ def verified_request?
14
+ super || form_authenticity_token == request.headers['X-XSRF-TOKEN']
15
+ end
16
+ end
17
+ end
@@ -0,0 +1,3 @@
1
+ module AngularCSRFCookieRails
2
+ VERSION = "0.1.0"
3
+ end
metadata ADDED
@@ -0,0 +1,95 @@
1
+ --- !ruby/object:Gem::Specification
2
+ name: angular-csrf-cookie-rails
3
+ version: !ruby/object:Gem::Version
4
+ version: 0.1.0
5
+ platform: ruby
6
+ authors:
7
+ - Jeremy Ebler
8
+ autorequire:
9
+ bindir: bin
10
+ cert_chain: []
11
+ date: 2014-06-02 00:00:00.000000000 Z
12
+ dependencies:
13
+ - !ruby/object:Gem::Dependency
14
+ name: railties
15
+ requirement: !ruby/object:Gem::Requirement
16
+ requirements:
17
+ - - ">="
18
+ - !ruby/object:Gem::Version
19
+ version: '3.1'
20
+ type: :runtime
21
+ prerelease: false
22
+ version_requirements: !ruby/object:Gem::Requirement
23
+ requirements:
24
+ - - ">="
25
+ - !ruby/object:Gem::Version
26
+ version: '3.1'
27
+ - !ruby/object:Gem::Dependency
28
+ name: bundler
29
+ requirement: !ruby/object:Gem::Requirement
30
+ requirements:
31
+ - - "~>"
32
+ - !ruby/object:Gem::Version
33
+ version: '1.6'
34
+ type: :development
35
+ prerelease: false
36
+ version_requirements: !ruby/object:Gem::Requirement
37
+ requirements:
38
+ - - "~>"
39
+ - !ruby/object:Gem::Version
40
+ version: '1.6'
41
+ - !ruby/object:Gem::Dependency
42
+ name: rake
43
+ requirement: !ruby/object:Gem::Requirement
44
+ requirements:
45
+ - - ">="
46
+ - !ruby/object:Gem::Version
47
+ version: '0'
48
+ type: :development
49
+ prerelease: false
50
+ version_requirements: !ruby/object:Gem::Requirement
51
+ requirements:
52
+ - - ">="
53
+ - !ruby/object:Gem::Version
54
+ version: '0'
55
+ description: Zero-Configuration XSRF protection with Rails and AngularJS
56
+ email:
57
+ - jebler@gmail.com
58
+ executables: []
59
+ extensions: []
60
+ extra_rdoc_files: []
61
+ files:
62
+ - ".gitignore"
63
+ - Gemfile
64
+ - LICENSE.txt
65
+ - README.md
66
+ - Rakefile
67
+ - angular-csrf-cookie-rails.gemspec
68
+ - lib/angular-csrf-cookie-rails.rb
69
+ - lib/angular-csrf-cookie-rails/action_controller.rb
70
+ - lib/angular-csrf-cookie-rails/version.rb
71
+ homepage: https://github.com/whitehat101/angular-csrf-cookie-rails
72
+ licenses:
73
+ - MIT
74
+ metadata: {}
75
+ post_install_message:
76
+ rdoc_options: []
77
+ require_paths:
78
+ - lib
79
+ required_ruby_version: !ruby/object:Gem::Requirement
80
+ requirements:
81
+ - - ">="
82
+ - !ruby/object:Gem::Version
83
+ version: '0'
84
+ required_rubygems_version: !ruby/object:Gem::Requirement
85
+ requirements:
86
+ - - ">="
87
+ - !ruby/object:Gem::Version
88
+ version: '0'
89
+ requirements: []
90
+ rubyforge_project:
91
+ rubygems_version: 2.2.2
92
+ signing_key:
93
+ specification_version: 4
94
+ summary: Configure Rails to set AngularJS's XSRF-TOKEN cookie.
95
+ test_files: []