ixtlan-core 0.1.1 → 0.2.0

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2008 Kristian Meier
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/lib/generators/ixtlan/setup/templates/application_layout.html.erb

@@ -6,7 +6,7 @@
   <%%= javascript_include_tag :defaults %>
   <%%= csrf_meta_tag %>
   <%% if controller.respond_to?(:current_user) && controller.send(:current_user) != nil %>
-  <meta "http-equiv"="refresh" content="#{controller.session_idle_timeout * 60 + 5}" />
+  <meta http-equiv="refresh" content="<%%= controller.send(:idle_session_timeout) * 60 + 5 %>" />
   <%% end %>
 </head>
 <body>

data/lib/generators/scaffold_controller/templates/controller.rb

@@ -40,7 +40,7 @@ class <%= controller_class_name %>Controller < ApplicationController
   # POST <%= route_url %>.json
   def create
     @<%= singular_table_name %> = <%= orm_class.build(class_name, "params[:#{singular_table_name}]") %>
-<% unless options[:modified_by] -%>
+<% if options[:modified_by] -%>
     @<%= singular_table_name %>.current_user = current_user
 <% end -%>
 

data/lib/ixtlan/core/cache_headers.rb

@@ -42,7 +42,7 @@ module Ixtlan
 
       def cache_headers
         if(respond_to?(:current_user) && current_user)
-          mode = self.class.instance_variable_get(:@mode)
+          mode = self.class.instance_variable_get(:@_cache_mode)
           case mode
           when :private
             no_caching(self.class.instance_variable_get(:@no_store))
@@ -53,8 +53,6 @@ module Ixtlan
           else
             send mode if mode
           end
-#        else
-#          allow_browser_and_proxy_to_cache(self.class.instance_variable_get(:@no_store))
         end
       end
 
@@ -62,21 +60,16 @@ module Ixtlan
         base.class_eval do
           def self.cache_headers(mode = nil, no_store = true)
             if(mode)
-              @mode = mode.to_sym
+              @_cache_mode = mode.to_sym
             end
             @no_store = no_store
           end
-          alias :render_old :render
-          def render(*args)
-            cache_headers
-            render_old(*args)
-          end
         end
       end
 
       private
       def cachable_response?
-        request.method == :get &&
+        request.method.to_s.downcase == "get" &&
           [200, 203, 206, 300, 301].member?(response.status)
       end
 

data/lib/ixtlan/core/extra_headers.rb

@@ -0,0 +1,29 @@
+module Ixtlan
+  module Core
+    module ExtraHeaders
+
+      def self.included(base)
+        base.class_eval do
+          alias :render_old :render
+          def render(*args, &block)
+            cache_headers
+            x_frame_headers
+            render_old(*args, &block)
+          end
+          alias :send_file_old :send_file
+          def send_file(*args)
+            cache_headers
+            x_frame_headers
+            send_file_old(*args)
+          end
+          alias :send_data_old :send_data
+          def send_data(*args)
+            cache_headers
+            x_frame_headers
+            send_file_old(*args)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/ixtlan/core/railtie.rb

@@ -1,4 +1,6 @@
+require 'ixtlan/core/extra_headers'
 require 'ixtlan/core/cache_headers'
+require 'ixtlan/core/x_frame_headers'
 require 'ixtlan/core/configuration_rack'
 require 'ixtlan/core/configuration_manager'
 
@@ -31,6 +33,13 @@ module Ixtlan
         ActiveRecord::Generators::ModelGenerator.class_option :singleton, :type => :boolean, :default => false
       end
 
+      config.before_configuration do |app|
+        app.config.class.class_eval do
+          attr_accessor :x_frame_headers
+        end
+        app.config.x_frame_headers = :deny
+      end
+
       config.before_initialize do |app|
         app.config.class.class_eval do
           attr_accessor :configuration_model
@@ -39,7 +48,10 @@ module Ixtlan
             @configuration_model = clazz
           end
         end
+        ::ActionController::Base.send(:include, Ixtlan::Core::ExtraHeaders)
+        ::ActionController::Base.send(:include, Ixtlan::Core::XFrameHeaders)
         ::ActionController::Base.send(:include, Ixtlan::Core::CacheHeaders)
+
         app.config.middleware.use Ixtlan::Core::ConfigurationRack
       end
     end

data/lib/ixtlan/core/x_frame_headers.rb

@@ -0,0 +1,29 @@
+module Ixtlan
+  module Core
+    module XFrameHeaders
+
+      protected
+
+      def x_frame_headers
+        case self.class.instance_variable_get(:@_x_frame_mode) || Rails.configuration.x_frame_headers
+        when :deny
+          response.headers["X-FRAME-OPTIONS"] = "DENY"
+        when :sameorigin
+          response.headers["X-FRAME-OPTIONS"] = "SAMEORIGIN"
+        end
+      end
+
+      def self.included(base)
+        base.class_eval do
+          def self.x_frame_headers(mode)
+            if(mode)
+              @_x_frame_mode = mode.to_sym
+            else
+              @_x_frame_mode = nil
+            end
+          end
+        end
+      end
+    end
+  end
+end

metadata

@@ -4,9 +4,9 @@ version: !ruby/object:Gem::Version
   prerelease: false
   segments: 
     - 0
-    - 1
-    - 1
-  version: 0.1.1
+    - 2
+    - 0
+  version: 0.2.0
 platform: ruby
 authors: 
   - mkristian
@@ -14,7 +14,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2011-03-22 00:00:00 +05:30
+date: 2011-04-03 00:00:00 +05:30
 default_executable: 
 dependencies: 
   - !ruby/object:Gem::Dependency 
@@ -22,13 +22,20 @@ dependencies:
     prerelease: false
     requirement: &id001 !ruby/object:Gem::Requirement 
       requirements: 
-        - - "="
+        - - ">="
           - !ruby/object:Gem::Version 
             segments: 
               - 0
               - 4
               - 2
             version: 0.4.2
+        - - <
+          - !ruby/object:Gem::Version 
+            segments: 
+              - 0
+              - 4
+              - 99999
+            version: 0.4.99999
     type: :runtime
     version_requirements: *id001
   - !ruby/object:Gem::Dependency 
@@ -86,8 +93,10 @@ dependencies:
               - 3
               - 0
               - 2
-              - 1
-            version: 0.8.3.0.2.1
+              - 0
+              - 26
+              - 0
+            version: 0.8.3.0.2.0.26.0
     type: :development
     version_requirements: *id005
 description: base for some gems related to protect privacy and increase security along some other utils
@@ -100,6 +109,7 @@ extensions: []
 extra_rdoc_files: []
 
 files: 
+  - MIT-LICENSE
   - lib/ixtlan-core.rb
   - lib/generators/model/model_generator.rb
   - lib/generators/scaffold/scaffold_generator.rb
@@ -126,6 +136,8 @@ files:
   - lib/generators/rails/templates/edit.html.erb
   - lib/generators/rails/templates/migration.rb
   - lib/generators/rails/templates/_form.html.erb
+  - lib/ixtlan/core/extra_headers.rb
+  - lib/ixtlan/core/x_frame_headers.rb
   - lib/ixtlan/core/railtie.rb
   - lib/ixtlan/core/configuration_manager.rb
   - lib/ixtlan/core/cache_headers.rb