RubyGems - iodine - Versions diffs - 0.1.11 → 0.1.12 - Mend

iodine 0.1.11 → 0.1.12

This version of iodine might be problematic. Click here for more details.

Files changed (7) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 250a126cc91b5d00df756b4c30131c309d07b14d
-  data.tar.gz: a8942a8c016c08efcff06269a3fb00daedf66380
+  metadata.gz: 0cae62f19555de3237661fc0f47461290f31a47d
+  data.tar.gz: d4ee6c036d77d5ccc9cc243d2e5407609d39cc16
 SHA512:
-  metadata.gz: 8f3831ce442b7bf7bfb8f2abe1b3c9595f277f434ebb669cf11b6e204ca1c420fefddd7f6d53a1916d149a9ed589503359321750d6556d4626eb98d5d79ce0c0
-  data.tar.gz: da4e06d3f70e5bc3811ddb75e0b21df1ac6dacd1aa654432593b853ba49ddce9276568f09beafb10a948b7ede257d991a0d27f1b462b33869f3424a524f235a2
+  metadata.gz: 8ae4692ca663399664b005c9fd8983d151ca14a6ba543455e497d0884eabe760b0719c1bf520ad129584260ca3229f202afe3b80b16ede4c9055077415f77e02
+  data.tar.gz: 311d1785ec2ff505173d2eb2e34daafd997bcdd038710223d2f69b4348363df587dd4d3ebcedeca8c9fe65f93f86b8efcbbf19796fc4604b77b80c445cdf57cb

data/CHANGELOG.md CHANGED Viewed

@@ -8,6 +8,14 @@ Please notice that this change log contains changes for upcoming releases as wel
 ***
+Change log v.0.1.12
+**Update**: Passing a hash as the cookie value will allow to set cookie parameters using the {Response#set_cookie} options. i.e.: `cookies['key']= {value: "lock", max_age: 20}`.
+**Security**: set the HttpOnly flag for session id cookies.
+***
 Change log v.0.1.11
 **Fix**: fixed the Rack server Handler, which was broken in version 0.1.10.

data/lib/iodine/http/request.rb CHANGED Viewed

@@ -28,7 +28,7 @@ module Iodine
 					elsif self.has_key?( key.to_s.to_sym)
 						key = key.to_s.to_sym
 					end
-					@response.set_cookie key, (val.nil? ? nil : val.to_s.dup)
+					@response.set_cookie key, (val.nil? ? nil : val)
 					super
 				end
 				# overrides th [] method to allow Symbols and Strings to mix and match

data/lib/iodine/http/response.rb CHANGED Viewed

@@ -126,7 +126,7 @@ module Iodine
 			def session
 				return @session if @session
 				id = request.cookies[::Iodine::Http.session_token.to_sym] || SecureRandom.uuid
-				set_cookie ::Iodine::Http.session_token, id, expires: (Time.now+86_400), secure:  @request.ssl?
+				set_cookie ::Iodine::Http.session_token, id, expires: (Time.now+86_400), secure: @request.ssl?, http_only: true
 				@request[:session] = @session = ::Iodine::Http::SessionManager.get(id)
 			end
@@ -199,6 +199,10 @@ module Iodine
 			#
 			def set_cookie name, value, params = {}
 				raise 'Cannot set cookies after the headers had been sent.' if headers_sent?
+				if value.is_a?(Hash) && value.has_key?(:value) && params.empty?
+					params = value
+					value = params.delete :value
+				end
 				name = name.to_s
 				raise 'Illegal cookie name' if name =~ COOKIE_NAME_REGEXP
 				if value.nil?
@@ -208,7 +212,7 @@ module Iodine
 					params[:expires] ||= (Time.now + 315360000) unless params[:max_age]
 				end
 				params[:path] ||= '/'.freeze
-				value = Iodine::Http::Request.encode_url(value)
+				value = Iodine::Http::Request.encode_url(value) # this dups the string
 				if params[:max_age]
 					value << ('; Max-Age=%s' % params[:max_age])
 				else

data/lib/iodine/http/session.rb CHANGED Viewed

@@ -81,6 +81,11 @@ module Iodine
 						@data.clear
 						nil
 					end
+					# Forced the session's data to be reloaded
+					def refresh
+						load
+					end
 					protected
 					# def destroy
 					# 	# save data to tmp-file

data/lib/iodine/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Iodine
-  VERSION = "0.1.11"
+  VERSION = "0.1.12"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: iodine
 version: !ruby/object:Gem::Version
-  version: 0.1.11
+  version: 0.1.12
 platform: ruby
 authors:
 - Boaz Segev
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2015-11-07 00:00:00.000000000 Z
+date: 2015-11-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler