bizside 3.0.2 → 3.0.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/bizside/audit_log.rb +24 -3
- data/lib/bizside/version.rb +1 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 73521110af0354af6ab7be8aeecf81c4b7a51003eba151398a4769981436a528
|
|
4
|
+
data.tar.gz: fa0cc7ea9e2b39716154c69ccdc0e736e6b827eba54b060fc1e105a593fd682d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 89243ceb64e24a815373006c4ce1d16cc5e5ffdadac4669cad7858b3501bc3e41e0a903c401d82baa734ad15c4f6c518128e51bf55fad0be751d8f9226b387ca
|
|
7
|
+
data.tar.gz: e82df91dffd5f633b9ba3b5987aad540fe256079295b3dafeb441fe04a3ad9ee01cff71d9b5bf455a4997a339a99bf1c4a43e9fe2bc8e1e05e12a6c569f772b0
|
data/lib/bizside/audit_log.rb
CHANGED
|
@@ -1,15 +1,23 @@
|
|
|
1
|
+
require 'ipaddr'
|
|
1
2
|
require_relative 'audit/logger'
|
|
2
3
|
|
|
3
4
|
module Bizside
|
|
4
5
|
class AuditLog
|
|
5
6
|
|
|
6
7
|
@@ignore_paths = []
|
|
8
|
+
@@trusted_proxy_cidrs = []
|
|
9
|
+
@@trusted_proxy_cidr_objects = {}
|
|
7
10
|
@@truncate_length = 8192
|
|
8
11
|
|
|
9
12
|
def self.ignore_paths
|
|
10
13
|
@@ignore_paths
|
|
11
14
|
end
|
|
12
15
|
|
|
16
|
+
# 192.168.0.0/24 といったCIDR表記の文字列を複数指定可能
|
|
17
|
+
def self.trusted_proxy_cidrs
|
|
18
|
+
@@trusted_proxy_cidrs
|
|
19
|
+
end
|
|
20
|
+
|
|
13
21
|
def self.truncate_length
|
|
14
22
|
@@truncate_length
|
|
15
23
|
end
|
|
@@ -25,7 +33,7 @@ module Bizside
|
|
|
25
33
|
def call(env)
|
|
26
34
|
start = Time.now.strftime('%Y-%m-%dT%H:%M:%S.%3N%z')
|
|
27
35
|
status, headers, response = @app.call(env)
|
|
28
|
-
stop = Time.now.strftime('%Y-%m-%dT%H:%M:%S.%3N%z')
|
|
36
|
+
stop = Time.now.strftime('%Y-%m-%dT%H:%M:%S.%3N%z')
|
|
29
37
|
exception = env[Bizside::ShowExceptions::BIZSIDE_EXCEPTION_ENV_KEY]
|
|
30
38
|
|
|
31
39
|
if env['BIZSIDE_SUPPRESS_AUDIT']
|
|
@@ -180,10 +188,23 @@ module Bizside
|
|
|
180
188
|
exception.backtrace.join("\n")[0...truncate_length]
|
|
181
189
|
end
|
|
182
190
|
|
|
183
|
-
# 信頼のおけるロードバランサーがプロキシーになっている前提で、各HTTP
|
|
191
|
+
# 信頼のおけるロードバランサーがプロキシーになっている前提で、各HTTPヘッダの最後のIPをクライアントIPとして取得する
|
|
184
192
|
def to_client_ip(header_value)
|
|
185
193
|
ips = header_value ? header_value.strip.split(/[,\s]+/) : []
|
|
186
|
-
ips.
|
|
194
|
+
ips.reverse.each do |ip|
|
|
195
|
+
return ip unless proxy?(ip)
|
|
196
|
+
end
|
|
197
|
+
|
|
198
|
+
nil
|
|
199
|
+
end
|
|
200
|
+
|
|
201
|
+
def proxy?(ip)
|
|
202
|
+
@@trusted_proxy_cidrs.each do |cidr|
|
|
203
|
+
cidr_obj = @@trusted_proxy_cidr_objects[cidr] ||= IPAddr.new(cidr)
|
|
204
|
+
return true if cidr_obj.include?(ip)
|
|
205
|
+
end
|
|
206
|
+
|
|
207
|
+
false
|
|
187
208
|
end
|
|
188
209
|
|
|
189
210
|
end
|
data/lib/bizside/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: bizside
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 3.0.
|
|
4
|
+
version: 3.0.3
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- bizside-developers
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-10-
|
|
11
|
+
date: 2024-10-24 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: activesupport
|
|
@@ -475,7 +475,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
475
475
|
- !ruby/object:Gem::Version
|
|
476
476
|
version: '0'
|
|
477
477
|
requirements: []
|
|
478
|
-
rubygems_version: 3.
|
|
478
|
+
rubygems_version: 3.3.26
|
|
479
479
|
signing_key:
|
|
480
480
|
specification_version: 4
|
|
481
481
|
summary: Bizside is an utilities for web application.
|