RubyGems - canvas_lti_third_party_cookies - Versions diffs - 0.3.1 → 0.3.2 - Mend

canvas_lti_third_party_cookies 0.3.1 → 0.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/app/controllers/concerns/canvas_lti_third_party_cookies/safari_launch.rb +8 -4
data/lib/canvas_lti_third_party_cookies/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 890865e3f76d11ffcb3c1e203b7b507c068127b0b2cba1455fdf0fa558ef96f8
-  data.tar.gz: 197439ea71f9dd99b21235358022f7c324f86fdec4e03ce93c7f28201dfc2d83
+  metadata.gz: 88651b27e16e286cfe593e4f91b928d66163a4a323190d147bda3cc111e58cb4
+  data.tar.gz: 2bbceb40ea00ab911683641f0d75d098cb6d42dc9b86cfbec7ea9bb500d14896
 SHA512:
-  metadata.gz: 8c7001cbfb01825b8a475ed48f15cfdd3e962ce5fcda789f1a211a1445c5d75e8f171982a7e7c4ed954e43a22f393f781be9a9e15fbfee97122e7f8438cac9d6
-  data.tar.gz: 8a4a17fc88a70d26b57ea6862bdbd9f71bd2ec21cfa548e42868d4dec3167be6d24471c29ed346e03dfa8900ff6b4e08849084519160ce8f78f5a8a927bd59b5
+  metadata.gz: 6a55ede6d719896ae4f19cd040a8e214ce40467bc2dcd11eaed07051adbfea8ccff5bf8cd6a445a25067d875e6d7cccd75872357d7474b508209481a0c24b781
+  data.tar.gz: 7f9dd1dee1fc2f99e1b85c17c0ed3b0b14fe6861399f11351110ddbf48242e7a027a7c83534a028e144bf652f3a8fec29a80406d7c7dd795f23c64e5c149146e

data/app/controllers/concerns/canvas_lti_third_party_cookies/safari_launch.rb CHANGED Viewed

@@ -18,9 +18,7 @@ module CanvasLtiThirdPartyCookies::SafariLaunch
   #   handle_safari_launch(launch_url: action_url, launch_params: { foo: bar }, launch_data: { foo: baz })
   # }
   def handle_safari_launch(launch_url:, launch_params: {}, launch_data: {})
-    browser = Browser.new(request.headers["User-Agent"])
-    # detect both MacOS and iOS Safari
-    return unless browser.safari? || (browser.webkit? && browser.platform.ios?)
+    return unless is_safari?
     # Safari launch #4: Storage Access has been granted,
     #   so launch the app normally. Note that this is not an actual LTI launch, but
@@ -59,11 +57,17 @@ module CanvasLtiThirdPartyCookies::SafariLaunch
   # replay attacks, but for this specific situation (the request is an internal redirect)
   # it's a sufficient hack.
   def should_ignore_nonce?
-    params[:storage_access_status] == "granted" && URI.parse(request.referer).host == request.host
+    is_safari? && params[:storage_access_status] == "granted" && URI.parse(request.referer).host == request.host
   end
   private
+  def is_safari?
+    browser = Browser.new(request.headers["User-Agent"])
+    # detect both MacOS and iOS Safari
+    browser.safari? || (browser.webkit? && browser.platform.ios?)
+  end
   def relaunch_url(launch_url, launch_params)
     return launch_url if launch_params.empty?
     "#{launch_url}?#{launch_params.to_query}"

data/lib/canvas_lti_third_party_cookies/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module CanvasLtiThirdPartyCookies
-  VERSION = '0.3.1'
+  VERSION = '0.3.2'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: canvas_lti_third_party_cookies
 version: !ruby/object:Gem::Version
-  version: 0.3.1
+  version: 0.3.2
 platform: ruby
 authors:
 - Xander Moffatt
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-03-03 00:00:00.000000000 Z
+date: 2021-03-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails