cors 1.0.0 → 1.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 6e34544029bab24989baf0b992473455fe72c74dc16f8abd9fae3bd48dad3738
+  data.tar.gz: 2b86a4a89e1577d08051d5599d44bcb43f2fd90fc04da1688c196cc4b4ad161d
+SHA512:
+  metadata.gz: 347db7c99d84fff7342fc6f5c57574caf02135b6a4a87bdd2886afcaa9f1d4d6191a5c187a7b6454161786ea42198ed058329ea7a6ede863b6cae951f45a5b7f
+  data.tar.gz: e38b7fbb900d6507acc746348b85b8979264be0619f58f2e1611e77539994300f4ccc5e0bc8e91385e856a3df7168ec8ea781d8dfea1caf5ee295a77f38ee647

data/.gitignore

@@ -1,2 +1,3 @@
 .yardoc/
 doc/
+pkg/

data/Gemfile.lock

@@ -1,24 +1,38 @@
+PATH
+  remote: .
+  specs:
+    cors (1.0.1)
+      multi_json
+
 GEM
-  remote: http://rubygems.org/
+  remote: https://rubygems.org/
   specs:
-    diff-lcs (1.1.3)
-    rake (0.9.2.2)
-    redcarpet (2.1.1)
-    rspec (2.11.0)
-      rspec-core (~> 2.11.0)
-      rspec-expectations (~> 2.11.0)
-      rspec-mocks (~> 2.11.0)
-    rspec-core (2.11.1)
-    rspec-expectations (2.11.3)
-      diff-lcs (~> 1.1.3)
-    rspec-mocks (2.11.3)
-    yard (0.8.2.1)
+    diff-lcs (1.3)
+    multi_json (1.13.1)
+    rake (12.3.3)
+    rspec (3.8.0)
+      rspec-core (~> 3.8.0)
+      rspec-expectations (~> 3.8.0)
+      rspec-mocks (~> 3.8.0)
+    rspec-core (3.8.2)
+      rspec-support (~> 3.8.0)
+    rspec-expectations (3.8.4)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.8.0)
+    rspec-mocks (3.8.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.8.0)
+    rspec-support (3.8.2)
+    yard (0.9.20)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
+  cors!
   rake
-  redcarpet
   rspec
   yard
+
+BUNDLED WITH
+   1.16.6

data/README.md

@@ -1,15 +1,22 @@
-# CORS policy validation- and signing library 
+# CORS policy validation- and signing library
 
-[![Build Status](https://secure.travis-ci.org/elabs/cors.png)](http://travis-ci.org/elabs/cors)
+[![Build Status](https://secure.travis-ci.org/varvet/cors.png)](http://travis-ci.org/varvet/cors)
 
 Cross-origin resource sharing (CORS) is great; it allows your visitors to asynchronously upload files to
-e.g. Filepicker or Amazon S3, without the files having to round-trip through your web server. Unfortunately,
+e.g. Amazon S3, without the files having to round-trip through your web server. Unfortunately,
 giving your users complete write access to your online storage also exposes you to malicious intent.
 
 To combat harmful usage, good upload services that allow client-side upload, support a mechanism that allows
 you to validate and sign all upload requests to your online storage. By validating every request, you can
 give your visitors a nice upload experience, while keeping the bad visitors at bay.
 
+## Deprecation
+
+The functionality of CORS is now provided by the ruby AWS SDK. We recommend
+using that instead, as CORS will no longer receive updates:
+
+[Amazon S3 SDK PresignedPost](https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3/PresignedPost.html)
+
 ## Usage
 
 ```ruby
@@ -36,10 +43,10 @@ end
 
 ## Supported services
 
-Out-of-the box, the CORS library comes with support for the Amazon S3 REST API. Support
-for Filepicker is planned.
+Out-of-the box, the CORS library comes with support for the Amazon S3 REST API.
 
-- [Amazon S3 REST API](http://docs.amazonwebservices.com/AmazonS4/latest/dev/RESTAuthentication.html)
+- [Amazon S3 REST API Authentication Header](http://docs.amazonwebservices.com/AmazonS3/latest/dev/RESTAuthentication.html#ConstructingTheAuthenticationHeader)
+- [Amazon S3 REST API POST Upload Policy](http://docs.amazonwebservices.com/AmazonS3/latest/dev/HTTPPOSTForms.html#HTTPPOSTConstructPolicy)
 
 ## License
 

data/cors.gemspec

@@ -10,7 +10,7 @@ Gem::Specification.new do |gem|
   gem.email         = ["kim@burgestrand.se"]
   gem.homepage      = "http://github.com/elabs/cors"
   gem.summary       = "CORS policy validation- and signing library for Amazon S3 REST API."
-  gem.description   = <<-DESCRIPTION.gsub(/ +/, "")
+  gem.description   = <<~DESCRIPTION
     Cross-origin resource sharing (CORS) is great; it allows your visitors to
     asynchronously upload files to e.g. Filepicker or Amazon S3, without the
     files having to round-trip through your web server. Unfortunately, giving
@@ -25,11 +25,18 @@ Gem::Specification.new do |gem|
 
     The CORS gem comes with support for the Amazon S3 REST API.
   DESCRIPTION
+  gem.post_install_message = <<~POST_INSTALL_MESSAGE
+    [DEPRECATED] The CORS gem is deprecated and will not receive further updates.
+    The functionality of CORS is now provided by the ruby AWS SDK:
+
+      https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3/PresignedPost.html
+  POST_INSTALL_MESSAGE
 
   gem.files         = `git ls-files`.split($/)
   gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
   gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
   gem.require_paths = ["lib"]
 
-  gem.add_development_dependency "rspec", "~> 2.0"
+  gem.add_dependency "multi_json"
+  gem.add_development_dependency "rspec"
 end

data/lib/cors.rb

@@ -3,6 +3,7 @@ require "cors/version"
 require "cors/rules"
 require "cors/policy"
 require "cors/policy/s3"
+require "cors/policy/s3_post"
 
 # CORS policy validation and signature generation.
 #

data/lib/cors/policy.rb

@@ -71,7 +71,7 @@ module CORS
     # @see errors
     # @see valid?
     def initialize(attributes)
-      self.attributes = Hash[attributes.map { |k, v| [k.to_s.downcase, v] }]
+      self.attributes = Hash[normalize_attributes(attributes)]
       self.errors = rules.validate(self.attributes)
     end
 
@@ -94,16 +94,25 @@ module CORS
       errors.empty?
     end
 
-    # @note must be overridden by includers!
-    # @return [String] the compiled manifest
-    def manifest
-      raise NotImplementedError, "#manifest has not been defined on #{inspect}"
+    # Signs the manifest, but only if it is {#valid?}.
+    #
+    # @note should not be overridden by the includers!
+    # @return (see #sign!)
+    def sign(*args, &block)
+      sign!(*args, &block) if valid?
     end
 
-    # @note must be overridden by includers!
+    # @note should be overridden by includers!
     # @return [String] signature derived from the manifest
-    def sign(*)
+    def sign!(*)
       raise NotImplementedError, "#sign has not been defined on #{inspect}"
     end
+
+    protected
+
+    def normalize_attributes(attributes)
+      attributes = attributes.map { |k, v| [k.to_s.downcase, v] }
+      attributes.select { |(k, _)| rules[k] }
+    end
   end
 end

data/lib/cors/policy/s3.rb

@@ -28,8 +28,7 @@ module CORS::Policy
     #
     # @param [String] access_key
     # @param [String] secret_access_key
-    def sign(access_key, secret_access_key)
-      return if not valid?
+    def sign!(access_key, secret_access_key)
       digest = OpenSSL::HMAC.digest("sha1", secret_access_key, manifest)
       signature = Base64.strict_encode64(digest)
       "AWS #{access_key}:#{signature}"

data/lib/cors/policy/s3_post.rb

@@ -0,0 +1,66 @@
+# encoding: utf-8
+require "multi_json"
+require "base64"
+require "time"
+require "set"
+
+module CORS::Policy
+  # POST form upload policy for Amazon S3.
+  class S3Post
+    include CORS::Policy
+
+    # Generate the policy used to sign the request.
+    #
+    # @param [Time] expiration
+    # @return [Hash] policy as a hash
+    def policy(expiration)
+      conditions = []
+      properties = attributes.dup
+
+      if properties.has_key?("content-length")
+        length = escape(properties.delete("content-length"))
+        conditions << [ "content-length-range", length, length ]
+      end
+
+      {
+        "expiration" => expiration.gmtime.iso8601,
+        "conditions" => conditions + properties.map do |(name, value)|
+          [ "eq", "$#{escape(name)}", escape(value) ]
+        end
+      }
+    end
+
+    # Generate a policy and encode it in URL-safe Base64 encoding.
+    #
+    # @param [Time] expiration
+    # @return [String] the policy, in JSON, in URL-safe base64 encoding.
+    def policy_base64(expiration)
+      json = MultiJson.dump(policy(expiration))
+      Base64.urlsafe_encode64(json)
+    end
+
+    # Sign the {#policy} for the given expiration.
+    #
+    # @param [String] secret_access_key
+    # @param [Time] expiration
+    # @return [String] signed policy in Base64-encoding.
+    def sign!(secret_access_key, expiration)
+      digest = OpenSSL::HMAC.digest("sha1", secret_access_key, policy_base64(expiration))
+      Base64.strict_encode64(digest)
+    end
+
+    protected
+
+    def escape(string)
+      return string unless string.is_a?(String)
+
+      unicode_safe = string.codepoints.each_with_object("") do |i, result|
+        result << if i <= 127 then i.chr else
+          "\\u#{i.to_s(16).rjust(4, "0")}"
+        end
+      end
+
+      unicode_safe.sub(/\A$/, "\$")
+    end
+  end
+end

data/lib/cors/rules.rb

@@ -15,6 +15,7 @@ module CORS
     # @yieldparam [Rules] self
     def initialize
       @rules = []
+      @rules_map = Hash.new { |h, k| h[k] = [] }
       yield self if block_given?
     end
 
@@ -40,6 +41,14 @@ module CORS
       end
     end
 
+    # Retrieve a list of rules for a given attribute.
+    #
+    # @param name same name as given to {#required} or {#optional}
+    # @return [Array<Hash<:name, :matcher, :required>>, nil] list of rules for attribute, or nil.
+    def [](name)
+      @rules_map.fetch(name, nil)
+    end
+
     # Declare a required rule; the value must be present, and it must
     # match the given constraints or block matcher.
     #
@@ -76,6 +85,7 @@ module CORS
 
       { name: name, matcher: matcher, required: true }.tap do |rule|
         @rules << rule
+        @rules_map[name] << rule
       end
     end
 

data/lib/cors/version.rb

@@ -1,4 +1,4 @@
 module CORS
   # @see http://semver.org/
-  VERSION = "1.0.0"
+  VERSION = "1.0.1"
 end

data/spec/policies/s3_post_spec.rb

@@ -0,0 +1,60 @@
+describe CORS::Policy::S3Post do
+  let(:now) do
+    Time.at(1351696066)
+  end
+
+  let(:valid_attributes) do
+    {
+      "bucket" => "shokunin",
+      "key" => "upload/BEEFBEEFBEEF.jpg",
+      "x-amz-meta-filename" => "$dollar$.jpg",
+      "acl" => "public-read",
+      "content-type" => "image/jpeg",
+      "content-length" => 678,
+    }
+  end
+
+  let(:rules) do
+    lambda do |manifest|
+      manifest.required "bucket", "shokunin"
+      manifest.required "key", %r!\Aupload/[a-f0-9A-F]{12}\.(jpg|png)!
+      manifest.required "acl", "public-read"
+      manifest.optional "x-amz-meta-filename", //
+      manifest.required "content-type", %r|\Aimage/|
+      manifest.required "content-length" do |bytesize|
+        (0..1024).cover?(bytesize)
+      end
+    end
+  end
+
+  let(:manifest) { CORS::Policy::S3Post.create(&rules) }
+
+  describe "#manifest" do
+    it "generates the policy document as a hash" do
+      policy = manifest.new(valid_attributes).policy(now)
+      expect(policy["conditions"]).to eq([
+        [ "content-length-range", 678, 678 ],
+        [ "eq", "$bucket", "shokunin" ],
+        [ "eq", "$key", "upload/BEEFBEEFBEEF.jpg" ],
+        [ "eq", "$x-amz-meta-filename", "\$dollar$.jpg" ],
+        [ "eq", "$acl", "public-read" ],
+        [ "eq", "$content-type", "image/jpeg" ],
+      ])
+    end
+  end
+
+  describe "#policy" do
+    it "returns the Base64-encoded manifest" do
+      request = manifest.new(valid_attributes)
+      decoded = Base64.urlsafe_decode64(request.policy_base64(now))
+      expect(MultiJson.load(decoded)).to eq(request.policy(now))
+    end
+  end
+
+  describe "#sign!" do
+    it "unconditionally signs the manifest" do
+      request = manifest.new(valid_attributes)
+      expect(request.sign!("properties", now)).to eq("U1YETIAOqT9mEuCebm5B6BM6feQ=")
+    end
+  end
+end

data/spec/policies/s3_spec.rb

@@ -7,7 +7,7 @@ describe CORS::Policy::S3 do
       "x-amz-meta-filename" => "roflcopter.gif",
       "x-amz-date" => "2012-10-22T16:10:47+02:00",
       "x-amz-meta-ROFLCOPTER" => ["yes", "no", "maybe"],
-      "x-not-amz-header" => "I am ignored",
+      "x-amz-meta-ignored" => "I am ignored",
       "filename" => "uploads/roflcopter.gif"
     }
   end
@@ -22,6 +22,10 @@ describe CORS::Policy::S3 do
       manifest.required "x-amz-date" do |date|
         "2012-10-22T16:10:47+02:00" == date
       end
+      manifest.optional "x-amz-meta-filename", //
+      manifest.optional "x-amz-meta-roflcopter" do
+        true
+      end
       manifest.required "filename", %r|uploads/|
     end
   end
@@ -31,7 +35,7 @@ describe CORS::Policy::S3 do
   describe "#manifest" do
     it "is built according to specifications" do
       manifest = CORS::Policy::S3.create(&rules).new(valid_attributes)
-      manifest.manifest.should eq <<-MANIFEST.gsub(/^ +/, "").rstrip
+      expect(manifest.manifest).to eq <<-MANIFEST.gsub(/^ +/, "").rstrip
         PUT
         CCummMp6o4ZgypU7ePh7QA==
         image/jpeg
@@ -44,16 +48,10 @@ describe CORS::Policy::S3 do
     end
   end
 
-  describe "#sign" do
-    it "signs the manifest if it is valid" do
-      manifest = CORS::Policy::S3.create(&rules).new(valid_attributes)
-      manifest.sign("LAWL", "HELLO").should eq "AWS LAWL:WZGsk2VzLz85B6oU19a5+fvzxXM="
-    end
-
-    it "does not sign if the manifest is invalid" do
-      manifest = CORS::Policy::S3.create(&rules).new(valid_attributes)
-      manifest.should_receive(:valid?).and_return(false)
-      manifest.sign("LAWL", "HELLO").should be_nil
+  describe "#sign!" do
+    it "unconditionally signs the manifest" do
+      policy = manifest.new(valid_attributes)
+      expect(policy.sign!("LAWL", "HELLO")).to eq "AWS LAWL:WZGsk2VzLz85B6oU19a5+fvzxXM="
     end
   end
 end

data/spec/{cors_spec.rb → policy_spec.rb}

@@ -27,11 +27,15 @@ describe CORS::Policy do
     end
 
     it "normalizes the attribute keys" do
-      manifest.new(cOOl: :Yo).attributes.should eq({ "cool" => :Yo })
+      expect(manifest.new(anYTHIng: :Yo).attributes).to eq({ "anything" => :Yo })
+    end
+
+    it "removes attributes not covered by any rules" do
+      expect(manifest.new(cOOl: :Yo).attributes).to eq({})
     end
 
     it "populates the hash of errors" do
-      manifest.new({}).errors.should_not be_empty
+      expect(manifest.new({}).errors).to_not be_empty
     end
   end
 
@@ -41,20 +45,36 @@ describe CORS::Policy do
     end
 
     it "returns the raw rules" do
-      manifest.rules.should be_a CORS::Rules
+      expect(manifest.rules).to be_a CORS::Rules
     end
   end
 
   describe "#valid?" do
     it "returns true if validation succeeds" do
       manifest.new(valid_attributes).tap do |manifest|
-        manifest.should be_valid
-        manifest.errors.should eq({})
+        expect(manifest).to be_valid
+        expect(manifest.errors).to eq({})
       end
     end
 
     it "returns false if validation fails" do
-      manifest.new({}).should_not be_valid
+      expect(manifest.new({})).to_not be_valid
+    end
+  end
+
+  describe "#sign" do
+    it "delegates to sign! if the manifest is valid" do
+      request = manifest.new(valid_attributes)
+      allow(request).to receive(:sign!).and_return("OK")
+      expect(request.sign(:a, :b)).to eq "OK"
+      expect(request).to have_received(:sign!)
+    end
+
+    it "does nothing if the manifest is not valid" do
+      request = manifest.new({})
+      allow(request).to receive(:sign!)
+      expect(request).not_to have_received(:sign!)
+      expect(request.sign(:a, :b)).to be_nil
     end
   end
 end

data/spec/rules_spec.rb

@@ -9,11 +9,33 @@ describe CORS::Rules do
     end
 
     it "is enumerable" do
-      rules.each_with_object([]) { |rule, result| result << rule }.should eq(list)
+      expect(rules.each_with_object([]) { |rule, result| result << rule }).to eq(list)
     end
 
     it "returns an enumerator without a block" do
-      rules.each.with_object([]) { |rule, result| result << rule }.should eq(list)
+      expect(rules.each.with_object([]) { |rule, result| result << rule }).to eq(list)
+    end
+  end
+
+  describe "#[]" do
+    let(:yay) { [] }
+    let(:boo) { [] }
+
+    let(:rules) do
+      CORS::Rules.new do |r|
+        yay << r.required("yay", //)
+        yay << r.required("yay", /./)
+        boo << r.optional("boo", //)
+      end
+    end
+
+    it "returns the list of rules for a property" do
+      expect(rules["yay"]).to eq yay
+      expect(rules["boo"]).to eq boo
+    end
+
+    it "returns nil if there are no rules for the property" do
+      expect(rules["does_not_exist"]).to be_nil
     end
   end
 
@@ -26,37 +48,37 @@ describe CORS::Rules do
       rules  = CORS::Rules.new { |r| r.required "method", // }
       errors = rules.validate({})
 
-      errors.should eq({ "method" => [:required, rules.first] })
+      expect(errors).to eq({ "method" => [:required, rules.first] })
     end
 
     it "results in an error when the value does not match" do
       rules = CORS::Rules.new { |r| r.required "content-type", %r|image/jpe?g| }
       errors = rules.validate({ "content-type" => "image/png" })
 
-      errors.should eq({ "content-type" => [:match, rules.first] })
+      expect(errors).to eq({ "content-type" => [:match, rules.first] })
     end
 
     it "can match a regexp" do
       rules = CORS::Rules.new { |r| r.required "content-type", %r|image/jpe?g| }
 
-      rules.validate({ "content-type" => "image/jpeg" }).should be_empty
-      rules.validate({ "content-type" => "image/jpg" }).should be_empty
-      rules.validate({ "content-type" => "image/png" }).should_not be_empty
+      expect(rules.validate({ "content-type" => "image/jpeg" })).to be_empty
+      expect(rules.validate({ "content-type" => "image/jpg" })).to be_empty
+      expect(rules.validate({ "content-type" => "image/png" })).to_not be_empty
     end
 
     it "can match a literal string" do
       rules = CORS::Rules.new { |r| r.required "content-type", "image/jpeg" }
 
-      rules.validate({ "content-type" => "image/jpeg" }).should be_empty
-      rules.validate({ "content-type" => "image/jpg" }).should_not be_empty
+      expect(rules.validate({ "content-type" => "image/jpeg" })).to be_empty
+      expect(rules.validate({ "content-type" => "image/jpg" })).to_not be_empty
     end
 
     it "can match an array" do
       rules = CORS::Rules.new { |r| r.required "content-type", ["image/jpeg", "image/png"] }
 
-      rules.validate({ "content-type" => "image/jpeg" }).should be_empty
-      rules.validate({ "content-type" => "image/png" }).should be_empty
-      rules.validate({ "content-type" => "image/jpg" }).should_not be_empty
+      expect(rules.validate({ "content-type" => "image/jpeg" })).to be_empty
+      expect(rules.validate({ "content-type" => "image/png" })).to be_empty
+      expect(rules.validate({ "content-type" => "image/jpg" })).to_not be_empty
     end
 
     it "can match a block" do
@@ -66,8 +88,8 @@ describe CORS::Rules do
         end
       end
 
-      rules.validate({ "content-type" => "image/jpeg" }).should be_empty
-      rules.validate({ "content-type" => "image/png" }).should_not be_empty
+      expect(rules.validate({ "content-type" => "image/jpeg" })).to be_empty
+      expect(rules.validate({ "content-type" => "image/png" })).to_not be_empty
     end
   end
 
@@ -76,14 +98,14 @@ describe CORS::Rules do
       rules = CORS::Rules.new { |r| r.optional "method", // }
       errors = rules.validate({})
 
-      errors.should be_empty
+      expect(errors).to be_empty
     end
 
     it "results in an error when the value is present but does not match" do
       rules = CORS::Rules.new { |r| r.optional "content-type", %r|image/jpe?g| }
       errors = rules.validate({ "content-type" => "image/png" })
 
-      errors.should eq({ "content-type" => [:match, rules.first] })
+      expect(errors).to eq({ "content-type" => [:match, rules.first] })
     end
   end
 end

metadata

@@ -1,65 +1,65 @@
 --- !ruby/object:Gem::Specification
 name: cors
 version: !ruby/object:Gem::Version
-  version: 1.0.0
-  prerelease: 
+  version: 1.0.1
 platform: ruby
 authors:
 - Kim Burgestrand
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-10-30 00:00:00.000000000 Z
+date: 2019-08-08 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: multi_json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '2.0'
-description: ! 'Cross-originresourcesharing(CORS)isgreat;itallowsyourvisitorsto
-
-  asynchronouslyuploadfilestoe.g.FilepickerorAmazonS3,withoutthe
-
-  fileshavingtoround-tripthroughyourwebserver.Unfortunately,giving
-
-  youruserscompletewriteaccesstoyouronlinestoragealsoexposesyouto
-
-  maliciousintent.
-
-
-  Tocombatharmfulusage,gooduploadservicesthatallowclient-side
-
-  upload,supportamechanismthatallowsyoutovalidateandsignallupload
-
-  requeststoyouronlinestorage.Byvalidatingeveryrequest,youcangive
-
-  yourvisitorsaniceuploadexperience,whilekeepingthebadvisitorsat
+        version: '0'
+description: |
+  Cross-origin resource sharing (CORS) is great; it allows your visitors to
+  asynchronously upload files to e.g. Filepicker or Amazon S3, without the
+  files having to round-trip through your web server. Unfortunately, giving
+  your users complete write access to your online storage also exposes you to
+  malicious intent.
 
+  To combat harmful usage, good upload services that allow client-side
+  upload, support a mechanism that allows you to validate and sign all upload
+  requests to your online storage. By validating every request, you can give
+  your visitors a nice upload experience, while keeping the bad visitors at
   bay.
 
-
-  TheCORSgemcomeswithsupportfortheAmazonS3RESTAPI.
-
-'
+  The CORS gem comes with support for the Amazon S3 REST API.
 email:
 - kim@burgestrand.se
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- .gitignore
-- .rspec
+- ".gitignore"
+- ".rspec"
 - Gemfile
 - Gemfile.lock
 - README.md
@@ -68,38 +68,44 @@ files:
 - lib/cors.rb
 - lib/cors/policy.rb
 - lib/cors/policy/s3.rb
+- lib/cors/policy/s3_post.rb
 - lib/cors/rules.rb
 - lib/cors/version.rb
-- spec/cors_spec.rb
+- spec/policies/s3_post_spec.rb
 - spec/policies/s3_spec.rb
+- spec/policy_spec.rb
 - spec/rules_spec.rb
 - spec/spec_helper.rb
 homepage: http://github.com/elabs/cors
 licenses: []
-post_install_message: 
+metadata: {}
+post_install_message: |
+  [DEPRECATED] The CORS gem is deprecated and will not receive further updates.
+  The functionality of CORS is now provided by the ruby AWS SDK:
+
+    https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3/PresignedPost.html
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 1.8.24
+rubygems_version: 2.7.6
 signing_key: 
-specification_version: 3
+specification_version: 4
 summary: CORS policy validation- and signing library for Amazon S3 REST API.
 test_files:
-- spec/cors_spec.rb
+- spec/policies/s3_post_spec.rb
 - spec/policies/s3_spec.rb
+- spec/policy_spec.rb
 - spec/rules_spec.rb
 - spec/spec_helper.rb