content-security-policy 0.1.1 → 0.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
data/Rakefile
CHANGED
|
@@ -1,12 +1,9 @@
|
|
|
1
|
-
require
|
|
1
|
+
require "bundler/gem_tasks"
|
|
2
2
|
require 'rspec/core/rake_task'
|
|
3
3
|
|
|
4
|
-
Bundler::GemHelper.install_tasks
|
|
5
|
-
|
|
6
4
|
RSpec::Core::RakeTask.new :spec do |spec|
|
|
7
5
|
spec.ruby_opts = "-I lib:spec"
|
|
8
6
|
spec.pattern = 'spec/**/*_spec.rb'
|
|
9
7
|
end
|
|
10
8
|
|
|
11
9
|
task :default => :spec
|
|
12
|
-
|
|
@@ -18,9 +18,9 @@ Gem::Specification.new do |s|
|
|
|
18
18
|
|
|
19
19
|
s.require_path = 'lib'
|
|
20
20
|
|
|
21
|
-
s.add_dependency 'rack'
|
|
21
|
+
s.add_dependency 'rack', '~> 1.4'
|
|
22
22
|
|
|
23
|
-
s.add_development_dependency 'rack-test'
|
|
24
|
-
s.add_development_dependency 'rspec'
|
|
25
|
-
s.add_development_dependency 'rake'
|
|
23
|
+
s.add_development_dependency 'rack-test' , '~> 0.6'
|
|
24
|
+
s.add_development_dependency 'rspec' , '~> 2.8'
|
|
25
|
+
s.add_development_dependency 'rake' , '~> 0.9'
|
|
26
26
|
end
|
|
@@ -1,21 +1,21 @@
|
|
|
1
1
|
class ContentSecurityPolicy
|
|
2
2
|
|
|
3
|
-
# @attr_reader [Boolean]
|
|
3
|
+
# @attr_reader [Boolean] report_only Use in report only mode
|
|
4
4
|
attr_reader :report_only
|
|
5
5
|
|
|
6
|
-
# @attr_reader [Hash] directives hash
|
|
6
|
+
# @attr_reader [Hash] directives Directives hash
|
|
7
7
|
attr_reader :directives
|
|
8
8
|
|
|
9
9
|
#
|
|
10
10
|
# Initializes Content Security Policy middleware.
|
|
11
11
|
#
|
|
12
|
-
# @param [Hash]
|
|
13
|
-
# @option [Boolean] :report_only Set to true if use in report-only mode
|
|
14
|
-
# @option [Hash] :directives Directives
|
|
12
|
+
# @param [Hash] options Options hash
|
|
13
|
+
# @option options [Boolean] :report_only Set to true if use in report-only mode
|
|
14
|
+
# @option options [Hash] :directives Directives hash
|
|
15
15
|
#
|
|
16
16
|
# @example
|
|
17
17
|
# use ContentSecurityPolicy, :directives => { 'default-src' => "'self'" }
|
|
18
|
-
# use ContentSecurityPolicy, :directives => { 'default-src' => "'self'", :report_only => true
|
|
18
|
+
# use ContentSecurityPolicy, :directives => { 'default-src' => "'self'" }, :report_only => true
|
|
19
19
|
#
|
|
20
20
|
def initialize(app, options = {})
|
|
21
21
|
@app = app
|
|
@@ -5,9 +5,10 @@ require 'content-security-policy/version'
|
|
|
5
5
|
class ContentSecurityPolicy
|
|
6
6
|
class << self
|
|
7
7
|
|
|
8
|
-
# @
|
|
8
|
+
# @attr [Boolean] report_only Use in report only mode
|
|
9
9
|
attr_accessor :report_only
|
|
10
|
-
|
|
10
|
+
|
|
11
|
+
# @attr_reader [Hash] directives Directives hash
|
|
11
12
|
attr_reader :directives
|
|
12
13
|
|
|
13
14
|
#
|
|
@@ -23,7 +24,7 @@ class ContentSecurityPolicy
|
|
|
23
24
|
# end
|
|
24
25
|
# use ContentSecurityPolicy
|
|
25
26
|
#
|
|
26
|
-
# @yield [
|
|
27
|
+
# @yield [ContentSecurityPolicy]
|
|
27
28
|
#
|
|
28
29
|
def configure(&blk)
|
|
29
30
|
@directives ||= {}
|
|
@@ -42,4 +43,3 @@ class ContentSecurityPolicy
|
|
|
42
43
|
|
|
43
44
|
end # << self
|
|
44
45
|
end # ContentSecurityPolicy
|
|
45
|
-
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: content-security-policy
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.1.
|
|
4
|
+
version: 0.1.2
|
|
5
5
|
prerelease:
|
|
6
6
|
platform: ruby
|
|
7
7
|
authors:
|
|
@@ -9,52 +9,52 @@ authors:
|
|
|
9
9
|
autorequire:
|
|
10
10
|
bindir: bin
|
|
11
11
|
cert_chain: []
|
|
12
|
-
date: 2012-02-
|
|
12
|
+
date: 2012-02-22 00:00:00.000000000Z
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: rack
|
|
16
|
-
requirement: &
|
|
16
|
+
requirement: &16425620 !ruby/object:Gem::Requirement
|
|
17
17
|
none: false
|
|
18
18
|
requirements:
|
|
19
|
-
- -
|
|
19
|
+
- - ~>
|
|
20
20
|
- !ruby/object:Gem::Version
|
|
21
|
-
version: '
|
|
21
|
+
version: '1.4'
|
|
22
22
|
type: :runtime
|
|
23
23
|
prerelease: false
|
|
24
|
-
version_requirements: *
|
|
24
|
+
version_requirements: *16425620
|
|
25
25
|
- !ruby/object:Gem::Dependency
|
|
26
26
|
name: rack-test
|
|
27
|
-
requirement: &
|
|
27
|
+
requirement: &16425120 !ruby/object:Gem::Requirement
|
|
28
28
|
none: false
|
|
29
29
|
requirements:
|
|
30
|
-
- -
|
|
30
|
+
- - ~>
|
|
31
31
|
- !ruby/object:Gem::Version
|
|
32
|
-
version: '0'
|
|
32
|
+
version: '0.6'
|
|
33
33
|
type: :development
|
|
34
34
|
prerelease: false
|
|
35
|
-
version_requirements: *
|
|
35
|
+
version_requirements: *16425120
|
|
36
36
|
- !ruby/object:Gem::Dependency
|
|
37
37
|
name: rspec
|
|
38
|
-
requirement: &
|
|
38
|
+
requirement: &16424660 !ruby/object:Gem::Requirement
|
|
39
39
|
none: false
|
|
40
40
|
requirements:
|
|
41
|
-
- -
|
|
41
|
+
- - ~>
|
|
42
42
|
- !ruby/object:Gem::Version
|
|
43
|
-
version: '
|
|
43
|
+
version: '2.8'
|
|
44
44
|
type: :development
|
|
45
45
|
prerelease: false
|
|
46
|
-
version_requirements: *
|
|
46
|
+
version_requirements: *16424660
|
|
47
47
|
- !ruby/object:Gem::Dependency
|
|
48
48
|
name: rake
|
|
49
|
-
requirement: &
|
|
49
|
+
requirement: &16424200 !ruby/object:Gem::Requirement
|
|
50
50
|
none: false
|
|
51
51
|
requirements:
|
|
52
|
-
- -
|
|
52
|
+
- - ~>
|
|
53
53
|
- !ruby/object:Gem::Version
|
|
54
|
-
version: '0'
|
|
54
|
+
version: '0.9'
|
|
55
55
|
type: :development
|
|
56
56
|
prerelease: false
|
|
57
|
-
version_requirements: *
|
|
57
|
+
version_requirements: *16424200
|
|
58
58
|
description: Full-featured Content Security Policy as Rack middleware
|
|
59
59
|
email: p0deje@gmail.com
|
|
60
60
|
executables: []
|