mimemagic_action_pack_uploaded_file 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 077b10e6c2f50aa17647af43a9397fc0d310a36a
+  data.tar.gz: 2cad192b016a7eaea3b0452d9628899fb293291a
+SHA512:
+  metadata.gz: 52c12fd4168964090f562dfe091a8c66ae0bd5d179379c8f1849f1450deaf3d090ded1fa70c4dfb41ebbd6b093f0b285dc2b79dad69b609f391d464d68a33676
+  data.tar.gz: 6b33d888af0dbb255ebb161d5c3ef0e7b09137fbafe9d971fccb17d396464d43039e155f88a16b38f3f52a551e62633d40a4359dc45309fa76b7d0dc97f3d950

data/.gitignore

@@ -0,0 +1,9 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/

data/.rspec

@@ -0,0 +1,2 @@
+--format documentation
+--color

data/.travis.yml

@@ -0,0 +1,5 @@
+sudo: false
+language: ruby
+rvm:
+  - 2.4.0
+before_install: gem install bundler -v 1.13.7

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in mimemagic_action_pack_uploaded_file.gemspec
+gemspec

data/README.md

@@ -0,0 +1,32 @@
+# MimemagicActionPackUploadedFile
+
+Detected content_type by `ActionDispatch::HTTP::UploadedFile` is not trusted because it does not validate received content_type.
+Therefore, content_type should be detected by magicbyte.  `MimemagicActionPackUploadedFile` extends `ActionDispatch::HTTP::UploadedFile` to 
+detects actual content_type with [mimemagic](https://github.com/minad/mimemagic)
+
+## Installation
+
+```
+gem 'mimemagic_action_pack_uploaded_file'
+```
+
+## CarrierWave configuration
+
+Define `content_type_whitelist` to your uploader.
+[Click here for details](Please https://github.com/carrierwaveuploader/carrierwave#securing-uploads)
+
+```
+class YourUploader < CarrierWave::Uploader::Base
+  def content_type_whitelist
+    %w(image/jpeg image/png)
+  end
+end
+```
+
+## Testing
+
+`bundle exec rake spec`
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/alpaca-tc/mimemagic_action_pack_uploaded_file.

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/lib/mimemagic_action_pack_uploaded_file.rb

@@ -0,0 +1,5 @@
+require 'mimemagic_action_pack_uploaded_file/version'
+
+module MimemagicActionPackUploadedFile
+  autoload :UploadedFileWithMimemagic, 'mimemagic_action_pack_uploaded_file/uploaded_file_with_mimemagic'
+end

data/lib/mimemagic_action_pack_uploaded_file/railtie.rb

@@ -0,0 +1,9 @@
+require 'rails'
+
+module MimemagicActionPackUploadedFile
+  class Railtie < Rails::Railtie
+    initializer 'mimemagic_action_pack_uploaded_file.initializer', after: 'action_dispatch.configure' do
+      ActionDispatch::Http::UploadedFile.prepend(MimemagicActionPackUploadedFile::UploadedFileWithMimemagic)
+    end
+  end
+end

data/lib/mimemagic_action_pack_uploaded_file/uploaded_file_with_mimemagic.rb

@@ -0,0 +1,13 @@
+require 'mimemagic'
+
+module MimemagicActionPackUploadedFile
+  # Detect content_type from magic byte instead of request parameters.
+  module UploadedFileWithMimemagic
+    UNKNOWN_CONTENT_TYPE = 'unknown/unknown'.freeze
+
+    def initialize(*)
+      super
+      @content_type = MimeMagic.by_magic(@tempfile).try(:type) || UNKNOWN_CONTENT_TYPE
+    end
+  end
+end

data/lib/mimemagic_action_pack_uploaded_file/version.rb

@@ -0,0 +1,3 @@
+module MimemagicActionPackUploadedFile
+  VERSION = '0.1.0'.freeze
+end

data/mimemagic_action_pack_uploaded_file.gemspec

@@ -0,0 +1,26 @@
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'mimemagic_action_pack_uploaded_file/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'mimemagic_action_pack_uploaded_file'
+  spec.version       = MimemagicActionPackUploadedFile::VERSION
+  spec.authors       = ['alpaca-tc']
+  spec.email         = ['alpaca-tc@alpaca.tc']
+
+  spec.summary       = %q{Extend ActionDispatch::HTTP::UploadedFile to detect file type from magic byte}
+  spec.description   = %q{Extend ActionDispatch::HTTP::UploadedFile to detect file type from magic byte}
+  spec.homepage      = 'https://github.com/alpaca-tc/mimemagic_action_pack_uploaded_file'
+
+  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+
+  spec.require_paths = ['lib']
+
+  spec.add_dependency 'rails', '>= 4.1.0'
+  spec.add_dependency 'mimemagic', '>= 0.3.0'
+  spec.add_development_dependency 'bundler', '~> 1.13'
+  spec.add_development_dependency 'rake', '~> 10.0'
+  spec.add_development_dependency 'rspec', '~> 3.0'
+end

metadata

@@ -0,0 +1,126 @@
+--- !ruby/object:Gem::Specification
+name: mimemagic_action_pack_uploaded_file
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- alpaca-tc
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-12-29 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.1.0
+- !ruby/object:Gem::Dependency
+  name: mimemagic
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.3.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.3.0
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.13'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.13'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+description: Extend ActionDispatch::HTTP::UploadedFile to detect file type from magic
+  byte
+email:
+- alpaca-tc@alpaca.tc
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- Gemfile
+- README.md
+- Rakefile
+- lib/mimemagic_action_pack_uploaded_file.rb
+- lib/mimemagic_action_pack_uploaded_file/railtie.rb
+- lib/mimemagic_action_pack_uploaded_file/uploaded_file_with_mimemagic.rb
+- lib/mimemagic_action_pack_uploaded_file/version.rb
+- mimemagic_action_pack_uploaded_file.gemspec
+homepage: https://github.com/alpaca-tc/mimemagic_action_pack_uploaded_file
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.8
+signing_key: 
+specification_version: 4
+summary: Extend ActionDispatch::HTTP::UploadedFile to detect file type from magic
+  byte
+test_files: []