corsair 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 1760dcbab186f4c95221bf3010fcf4e2124ed415
+  data.tar.gz: 3cfd03d0d96a811868ba79e057ba255dc59179e9
+SHA512:
+  metadata.gz: 2a73b86d31a17ca6a0d2532c5c94d5e2d2a3ecfa5d40c62cbf6dd75c380f81e505388d178555f71ba7cebabe13b5626b5d8b2051cf584ad7da5fd96641cedfca
+  data.tar.gz: 328a999a606e34cf4fd85d22576ba33abf03d7ea644fe205c31215234fd11795a3029ee97718ea787f4a4ca6db6515d9a0219be2ed1609ee1f7a288028da654d

data/.rubocop.yml

@@ -0,0 +1,17 @@
+AllCops:
+  RunRailsCops: true
+
+Documentation:
+  Enabled: false
+
+Metrics/LineLength:
+  Max: 120
+
+Metrics/ClassLength:
+  Max: 300
+
+Metrics/MethodLength:
+  Max: 25
+
+Style/StringLiterals:
+  EnforcedStyle: double_quotes

data/Gemfile

@@ -0,0 +1,2 @@
+source 'https://rubygems.org'
+gemspec

data/Gemfile.lock

@@ -0,0 +1,17 @@
+PATH
+  remote: .
+  specs:
+    corsair (0.1.0)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    rake (10.4.2)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  bundler (~> 1.7)
+  corsair!
+  rake (~> 10.0)

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2015 Varvet
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,29 @@
+# Corsair
+
+A Rack middleware that adds the simple request CORS Access-Control-Allow-Origin header to your application, even if the app raised an exception.
+
+## Installation
+
+Require Corsair in your application's Gemfile:
+```ruby
+gem "corsair"
+```
+
+In order for Corsair to do its thing it needs to be at the top of the middleware stack. For Rails, this will work nicely in your application.rb:
+```ruby
+config.middleware.insert_before 0, "Rack::Corsair"
+```
+
+## Options
+
+By default, Corsair will add `Access-Control-Allow-Origin: *` to all your response headers. You can currently control which domain gets added instead of `*`, and which resources get the header added. You pass those options in a block, like this:
+```ruby
+config.middleware.insert_before 0, "Rack::Corsair" do |corsair|
+  corsair.allow_origin "*"
+  corsair.allow_resource :things
+end
+```
+
+## License
+
+Licensed under the MIT license. See the separate MIT-LICENSE file.

data/Rakefile

@@ -0,0 +1,11 @@
+require "rake/testtask"
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << "lib"
+  t.libs << "test"
+  t.pattern = "test/**/*_test.rb"
+  t.verbose = false
+end
+
+
+task default: :test

data/corsair.gemspec

@@ -0,0 +1,24 @@
+$:.push File.expand_path("../lib", __FILE__)
+
+# Maintain your gem's version:
+require "corsair/version"
+
+# Describe your gem and declare its dependencies:
+Gem::Specification.new do |gem|
+  gem.name          = "corsair"
+  gem.version       = Rack::Corsair::VERSION
+  gem.authors       = ["Varvet"]
+  gem.email         = ["info@varvet.se"]
+  gem.homepage      = "https://github.com/varvet/corsair"
+  gem.summary       = "Rack middleware for CORS responses in simple requests"
+  gem.description   = "Corsair adds Access-Control-Allow-Origin to the response headers, even if your app raises an error."
+  gem.license       = "MIT"
+
+  gem.files         = `git ls-files -z`.split("\x0")
+  gem.executables   = gem.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+
+  gem.add_development_dependency "bundler", "~> 1.7"
+  gem.add_development_dependency "rake", "~> 10.0"
+end

data/lib/corsair.rb

@@ -0,0 +1,43 @@
+module Rack
+  class Corsair
+    def initialize(app, &block)
+      @app = app
+      @origin = "*"
+      @resources = []
+      block.call(self) if block_given?
+    end
+
+    def call(env)
+      req = Rack::Request.new(env)
+      status, headers, response = @app.call(env)
+
+      if resource_allowed?(req)
+        [status, headers.merge(cors_headers), response]
+      else
+        [status, headers, response]
+      end
+    end
+
+    def allow_origin(origin)
+      @origin = origin
+    end
+
+    def allow_resource(resource)
+      @resources << resource.to_s
+    end
+
+    private
+
+    def resource_allowed?(req)
+      return true if @resources.empty?
+      resource = req.env["PATH_INFO"].split("/")[1]
+      @resources.include?(resource)
+    end
+
+    def cors_headers
+      {
+        "Access-Control-Allow-Origin" => @origin
+      }
+    end
+  end
+end

data/lib/corsair/version.rb

@@ -0,0 +1,5 @@
+module Rack
+  class Corsair
+    VERSION = "0.1.0"
+  end
+end

data/test/unit/cors_test.rb

@@ -0,0 +1,30 @@
+require "minitest/autorun"
+require "rack/test"
+require "corsair"
+
+describe Rack::Corsair do
+  include Rack::Test::Methods
+
+  def app
+    app = Rack::Builder.new do
+      map "/things/1" do
+        run proc { [200, { "Content-Type" => "application/json" }, "{ \"status\": 200 }"] }
+      end
+      map "/things/1000" do
+        run proc { [404, { "Content-Type" => "application/json" }, "{ \"status\": 404 }"] }
+      end
+    end.to_app
+
+    Rack::Corsair.new(app)
+  end
+
+  it "gets access-control-allow-origin header on a 200" do
+    get "/things/1"
+    assert_equal last_response.original_headers["Access-Control-Allow-Origin"], "*"
+  end
+
+  it "gets access-control-allow-origin header on a 404" do
+    get "/things/1000"
+    assert_equal last_response.original_headers["Access-Control-Allow-Origin"], "*"
+  end
+end

metadata

@@ -0,0 +1,84 @@
+--- !ruby/object:Gem::Specification
+name: corsair
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Varvet
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-02-20 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+description: Corsair adds Access-Control-Allow-Origin to the response headers, even
+  if your app raises an error.
+email:
+- info@varvet.se
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".rubocop.yml"
+- Gemfile
+- Gemfile.lock
+- MIT-LICENSE
+- README.md
+- Rakefile
+- corsair.gemspec
+- lib/corsair.rb
+- lib/corsair/version.rb
+- test/unit/cors_test.rb
+homepage: https://github.com/varvet/corsair
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.0
+signing_key: 
+specification_version: 4
+summary: Rack middleware for CORS responses in simple requests
+test_files:
+- test/unit/cors_test.rb