RubyGems - omg-actionpack - Versions diffs - 8.0.0.alpha1 - Mend

omg-actionpack 8.0.0.alpha1

Files changed (187) hide show

checksums.yaml +7 -0
data/CHANGELOG.md +129 -0
data/MIT-LICENSE +21 -0
data/README.rdoc +57 -0
data/lib/abstract_controller/asset_paths.rb +14 -0
data/lib/abstract_controller/base.rb +299 -0
data/lib/abstract_controller/caching/fragments.rb +149 -0
data/lib/abstract_controller/caching.rb +68 -0
data/lib/abstract_controller/callbacks.rb +265 -0
data/lib/abstract_controller/collector.rb +44 -0
data/lib/abstract_controller/deprecator.rb +9 -0
data/lib/abstract_controller/error.rb +8 -0
data/lib/abstract_controller/helpers.rb +243 -0
data/lib/abstract_controller/logger.rb +16 -0
data/lib/abstract_controller/railties/routes_helpers.rb +25 -0
data/lib/abstract_controller/rendering.rb +126 -0
data/lib/abstract_controller/translation.rb +42 -0
data/lib/abstract_controller/url_for.rb +37 -0
data/lib/abstract_controller.rb +36 -0
data/lib/action_controller/api/api_rendering.rb +18 -0
data/lib/action_controller/api.rb +155 -0
data/lib/action_controller/base.rb +332 -0
data/lib/action_controller/caching.rb +49 -0
data/lib/action_controller/deprecator.rb +9 -0
data/lib/action_controller/form_builder.rb +55 -0
data/lib/action_controller/log_subscriber.rb +96 -0
data/lib/action_controller/metal/allow_browser.rb +123 -0
data/lib/action_controller/metal/basic_implicit_render.rb +17 -0
data/lib/action_controller/metal/conditional_get.rb +341 -0
data/lib/action_controller/metal/content_security_policy.rb +86 -0
data/lib/action_controller/metal/cookies.rb +20 -0
data/lib/action_controller/metal/data_streaming.rb +154 -0
data/lib/action_controller/metal/default_headers.rb +21 -0
data/lib/action_controller/metal/etag_with_flash.rb +22 -0
data/lib/action_controller/metal/etag_with_template_digest.rb +59 -0
data/lib/action_controller/metal/exceptions.rb +106 -0
data/lib/action_controller/metal/flash.rb +67 -0
data/lib/action_controller/metal/head.rb +67 -0
data/lib/action_controller/metal/helpers.rb +129 -0
data/lib/action_controller/metal/http_authentication.rb +565 -0
data/lib/action_controller/metal/implicit_render.rb +67 -0
data/lib/action_controller/metal/instrumentation.rb +120 -0
data/lib/action_controller/metal/live.rb +398 -0
data/lib/action_controller/metal/logging.rb +22 -0
data/lib/action_controller/metal/mime_responds.rb +337 -0
data/lib/action_controller/metal/parameter_encoding.rb +84 -0
data/lib/action_controller/metal/params_wrapper.rb +312 -0
data/lib/action_controller/metal/permissions_policy.rb +38 -0
data/lib/action_controller/metal/rate_limiting.rb +62 -0
data/lib/action_controller/metal/redirecting.rb +251 -0
data/lib/action_controller/metal/renderers.rb +181 -0
data/lib/action_controller/metal/rendering.rb +260 -0
data/lib/action_controller/metal/request_forgery_protection.rb +667 -0
data/lib/action_controller/metal/rescue.rb +33 -0
data/lib/action_controller/metal/streaming.rb +183 -0
data/lib/action_controller/metal/strong_parameters.rb +1546 -0
data/lib/action_controller/metal/testing.rb +25 -0
data/lib/action_controller/metal/url_for.rb +65 -0
data/lib/action_controller/metal.rb +339 -0
data/lib/action_controller/railtie.rb +149 -0
data/lib/action_controller/railties/helpers.rb +26 -0
data/lib/action_controller/renderer.rb +161 -0
data/lib/action_controller/template_assertions.rb +13 -0
data/lib/action_controller/test_case.rb +691 -0
data/lib/action_controller.rb +80 -0
data/lib/action_dispatch/constants.rb +34 -0
data/lib/action_dispatch/deprecator.rb +9 -0
data/lib/action_dispatch/http/cache.rb +249 -0
data/lib/action_dispatch/http/content_disposition.rb +47 -0
data/lib/action_dispatch/http/content_security_policy.rb +365 -0
data/lib/action_dispatch/http/filter_parameters.rb +80 -0
data/lib/action_dispatch/http/filter_redirect.rb +50 -0
data/lib/action_dispatch/http/headers.rb +134 -0
data/lib/action_dispatch/http/mime_negotiation.rb +187 -0
data/lib/action_dispatch/http/mime_type.rb +389 -0
data/lib/action_dispatch/http/mime_types.rb +54 -0
data/lib/action_dispatch/http/parameters.rb +119 -0
data/lib/action_dispatch/http/permissions_policy.rb +189 -0
data/lib/action_dispatch/http/rack_cache.rb +67 -0
data/lib/action_dispatch/http/request.rb +498 -0
data/lib/action_dispatch/http/response.rb +556 -0
data/lib/action_dispatch/http/upload.rb +107 -0
data/lib/action_dispatch/http/url.rb +344 -0
data/lib/action_dispatch/journey/formatter.rb +226 -0
data/lib/action_dispatch/journey/gtg/builder.rb +149 -0
data/lib/action_dispatch/journey/gtg/simulator.rb +50 -0
data/lib/action_dispatch/journey/gtg/transition_table.rb +217 -0
data/lib/action_dispatch/journey/nfa/dot.rb +27 -0
data/lib/action_dispatch/journey/nodes/node.rb +208 -0
data/lib/action_dispatch/journey/parser.rb +103 -0
data/lib/action_dispatch/journey/path/pattern.rb +209 -0
data/lib/action_dispatch/journey/route.rb +189 -0
data/lib/action_dispatch/journey/router/utils.rb +105 -0
data/lib/action_dispatch/journey/router.rb +151 -0
data/lib/action_dispatch/journey/routes.rb +82 -0
data/lib/action_dispatch/journey/scanner.rb +70 -0
data/lib/action_dispatch/journey/visitors.rb +267 -0
data/lib/action_dispatch/journey/visualizer/fsm.css +30 -0
data/lib/action_dispatch/journey/visualizer/fsm.js +159 -0
data/lib/action_dispatch/journey/visualizer/index.html.erb +52 -0
data/lib/action_dispatch/journey.rb +7 -0
data/lib/action_dispatch/log_subscriber.rb +25 -0
data/lib/action_dispatch/middleware/actionable_exceptions.rb +46 -0
data/lib/action_dispatch/middleware/assume_ssl.rb +27 -0
data/lib/action_dispatch/middleware/callbacks.rb +38 -0
data/lib/action_dispatch/middleware/cookies.rb +719 -0
data/lib/action_dispatch/middleware/debug_exceptions.rb +206 -0
data/lib/action_dispatch/middleware/debug_locks.rb +129 -0
data/lib/action_dispatch/middleware/debug_view.rb +73 -0
data/lib/action_dispatch/middleware/exception_wrapper.rb +350 -0
data/lib/action_dispatch/middleware/executor.rb +32 -0
data/lib/action_dispatch/middleware/flash.rb +318 -0
data/lib/action_dispatch/middleware/host_authorization.rb +171 -0
data/lib/action_dispatch/middleware/public_exceptions.rb +64 -0
data/lib/action_dispatch/middleware/reloader.rb +16 -0
data/lib/action_dispatch/middleware/remote_ip.rb +199 -0
data/lib/action_dispatch/middleware/request_id.rb +50 -0
data/lib/action_dispatch/middleware/server_timing.rb +78 -0
data/lib/action_dispatch/middleware/session/abstract_store.rb +112 -0
data/lib/action_dispatch/middleware/session/cache_store.rb +66 -0
data/lib/action_dispatch/middleware/session/cookie_store.rb +129 -0
data/lib/action_dispatch/middleware/session/mem_cache_store.rb +34 -0
data/lib/action_dispatch/middleware/show_exceptions.rb +88 -0
data/lib/action_dispatch/middleware/ssl.rb +180 -0
data/lib/action_dispatch/middleware/stack.rb +194 -0
data/lib/action_dispatch/middleware/static.rb +192 -0
data/lib/action_dispatch/middleware/templates/rescues/_actions.html.erb +13 -0
data/lib/action_dispatch/middleware/templates/rescues/_actions.text.erb +0 -0
data/lib/action_dispatch/middleware/templates/rescues/_message_and_suggestions.html.erb +22 -0
data/lib/action_dispatch/middleware/templates/rescues/_request_and_response.html.erb +17 -0
data/lib/action_dispatch/middleware/templates/rescues/_request_and_response.text.erb +23 -0
data/lib/action_dispatch/middleware/templates/rescues/_source.html.erb +36 -0
data/lib/action_dispatch/middleware/templates/rescues/_source.text.erb +8 -0
data/lib/action_dispatch/middleware/templates/rescues/_trace.html.erb +62 -0
data/lib/action_dispatch/middleware/templates/rescues/_trace.text.erb +9 -0
data/lib/action_dispatch/middleware/templates/rescues/blocked_host.html.erb +12 -0
data/lib/action_dispatch/middleware/templates/rescues/blocked_host.text.erb +9 -0
data/lib/action_dispatch/middleware/templates/rescues/diagnostics.html.erb +35 -0
data/lib/action_dispatch/middleware/templates/rescues/diagnostics.text.erb +9 -0
data/lib/action_dispatch/middleware/templates/rescues/invalid_statement.html.erb +24 -0
data/lib/action_dispatch/middleware/templates/rescues/invalid_statement.text.erb +16 -0
data/lib/action_dispatch/middleware/templates/rescues/layout.erb +284 -0
data/lib/action_dispatch/middleware/templates/rescues/missing_exact_template.html.erb +23 -0
data/lib/action_dispatch/middleware/templates/rescues/missing_exact_template.text.erb +3 -0
data/lib/action_dispatch/middleware/templates/rescues/missing_template.html.erb +11 -0
data/lib/action_dispatch/middleware/templates/rescues/missing_template.text.erb +3 -0
data/lib/action_dispatch/middleware/templates/rescues/routing_error.html.erb +32 -0
data/lib/action_dispatch/middleware/templates/rescues/routing_error.text.erb +11 -0
data/lib/action_dispatch/middleware/templates/rescues/template_error.html.erb +20 -0
data/lib/action_dispatch/middleware/templates/rescues/template_error.text.erb +7 -0
data/lib/action_dispatch/middleware/templates/rescues/unknown_action.html.erb +6 -0
data/lib/action_dispatch/middleware/templates/rescues/unknown_action.text.erb +3 -0
data/lib/action_dispatch/middleware/templates/routes/_route.html.erb +19 -0
data/lib/action_dispatch/middleware/templates/routes/_table.html.erb +232 -0
data/lib/action_dispatch/railtie.rb +77 -0
data/lib/action_dispatch/request/session.rb +283 -0
data/lib/action_dispatch/request/utils.rb +109 -0
data/lib/action_dispatch/routing/endpoint.rb +19 -0
data/lib/action_dispatch/routing/inspector.rb +323 -0
data/lib/action_dispatch/routing/mapper.rb +2372 -0
data/lib/action_dispatch/routing/polymorphic_routes.rb +363 -0
data/lib/action_dispatch/routing/redirection.rb +218 -0
data/lib/action_dispatch/routing/route_set.rb +958 -0
data/lib/action_dispatch/routing/routes_proxy.rb +66 -0
data/lib/action_dispatch/routing/url_for.rb +244 -0
data/lib/action_dispatch/routing.rb +262 -0
data/lib/action_dispatch/system_test_case.rb +206 -0
data/lib/action_dispatch/system_testing/browser.rb +75 -0
data/lib/action_dispatch/system_testing/driver.rb +85 -0
data/lib/action_dispatch/system_testing/server.rb +33 -0
data/lib/action_dispatch/system_testing/test_helpers/screenshot_helper.rb +164 -0
data/lib/action_dispatch/system_testing/test_helpers/setup_and_teardown.rb +23 -0
data/lib/action_dispatch/testing/assertion_response.rb +48 -0
data/lib/action_dispatch/testing/assertions/response.rb +114 -0
data/lib/action_dispatch/testing/assertions/routing.rb +343 -0
data/lib/action_dispatch/testing/assertions.rb +25 -0
data/lib/action_dispatch/testing/integration.rb +694 -0
data/lib/action_dispatch/testing/request_encoder.rb +60 -0
data/lib/action_dispatch/testing/test_helpers/page_dump_helper.rb +35 -0
data/lib/action_dispatch/testing/test_process.rb +57 -0
data/lib/action_dispatch/testing/test_request.rb +73 -0
data/lib/action_dispatch/testing/test_response.rb +58 -0
data/lib/action_dispatch.rb +147 -0
data/lib/action_pack/gem_version.rb +19 -0
data/lib/action_pack/version.rb +12 -0
data/lib/action_pack.rb +27 -0
metadata +375 -0

data/lib/action_controller.rb ADDED Viewed

@@ -0,0 +1,80 @@
+# frozen_string_literal: true
+# :markup: markdown
+require "abstract_controller"
+require "action_dispatch"
+require "action_controller/deprecator"
+require "action_controller/metal/strong_parameters"
+require "action_controller/metal/exceptions"
+# # Action Controller
+#
+# Action Controller is a module of Action Pack.
+#
+# Action Controller provides a base controller class that can be subclassed to
+# implement filters and actions to handle requests. The result of an action is
+# typically content generated from views.
+module ActionController
+  extend ActiveSupport::Autoload
+  autoload :API
+  autoload :Base
+  autoload :Metal
+  autoload :Renderer
+  autoload :FormBuilder
+  eager_autoload do
+    autoload :Caching
+  end
+  autoload_under "metal" do
+    autoload :AllowBrowser
+    autoload :ConditionalGet
+    autoload :ContentSecurityPolicy
+    autoload :Cookies
+    autoload :DataStreaming
+    autoload :DefaultHeaders
+    autoload :EtagWithTemplateDigest
+    autoload :EtagWithFlash
+    autoload :PermissionsPolicy
+    autoload :Flash
+    autoload :Head
+    autoload :Helpers
+    autoload :HttpAuthentication
+    autoload :BasicImplicitRender
+    autoload :ImplicitRender
+    autoload :Instrumentation
+    autoload :Live
+    autoload :Logging
+    autoload :MimeResponds
+    autoload :ParamsWrapper
+    autoload :RateLimiting
+    autoload :Redirecting
+    autoload :Renderers
+    autoload :Rendering
+    autoload :RequestForgeryProtection
+    autoload :Rescue
+    autoload :Streaming
+    autoload :StrongParameters
+    autoload :ParameterEncoding
+    autoload :Testing
+    autoload :UrlFor
+  end
+  autoload_under "api" do
+    autoload :ApiRendering
+  end
+  autoload_at "action_controller/test_case" do
+    autoload :TestCase
+    autoload :TestRequest
+    autoload :TemplateAssertions
+  end
+end
+# Common Active Support usage in Action Controller
+require "active_support/core_ext/module/attribute_accessors"
+require "active_support/core_ext/module/attr_internal"
+require "active_support/core_ext/name_error"
+require "active_support/inflector"

data/lib/action_dispatch/constants.rb ADDED Viewed

@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+# :markup: markdown
+require "rack/version"
+module ActionDispatch
+  module Constants
+    # Response Header keys for Rack 2.x and 3.x
+    if Gem::Version.new(Rack::RELEASE) < Gem::Version.new("3")
+      VARY = "Vary"
+      CONTENT_ENCODING = "Content-Encoding"
+      CONTENT_SECURITY_POLICY = "Content-Security-Policy"
+      CONTENT_SECURITY_POLICY_REPORT_ONLY = "Content-Security-Policy-Report-Only"
+      LOCATION = "Location"
+      FEATURE_POLICY = "Feature-Policy"
+      X_REQUEST_ID = "X-Request-Id"
+      X_CASCADE = "X-Cascade"
+      SERVER_TIMING = "Server-Timing"
+      STRICT_TRANSPORT_SECURITY = "Strict-Transport-Security"
+    else
+      VARY = "vary"
+      CONTENT_ENCODING = "content-encoding"
+      CONTENT_SECURITY_POLICY = "content-security-policy"
+      CONTENT_SECURITY_POLICY_REPORT_ONLY = "content-security-policy-report-only"
+      LOCATION = "location"
+      FEATURE_POLICY = "feature-policy"
+      X_REQUEST_ID = "x-request-id"
+      X_CASCADE = "x-cascade"
+      SERVER_TIMING = "server-timing"
+      STRICT_TRANSPORT_SECURITY = "strict-transport-security"
+    end
+  end
+end

data/lib/action_dispatch/deprecator.rb ADDED Viewed

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+# :markup: markdown
+module ActionDispatch
+  def self.deprecator # :nodoc:
+    @deprecator ||= ActiveSupport::Deprecation.new
+  end
+end

data/lib/action_dispatch/http/cache.rb ADDED Viewed

@@ -0,0 +1,249 @@
+# frozen_string_literal: true
+# :markup: markdown
+module ActionDispatch
+  module Http
+    module Cache
+      module Request
+        HTTP_IF_MODIFIED_SINCE = "HTTP_IF_MODIFIED_SINCE"
+        HTTP_IF_NONE_MATCH     = "HTTP_IF_NONE_MATCH"
+        mattr_accessor :strict_freshness, default: false
+        def if_modified_since
+          if since = get_header(HTTP_IF_MODIFIED_SINCE)
+            Time.rfc2822(since) rescue nil
+          end
+        end
+        def if_none_match
+          get_header HTTP_IF_NONE_MATCH
+        end
+        def if_none_match_etags
+          if_none_match ? if_none_match.split(",").each(&:strip!) : []
+        end
+        def not_modified?(modified_at)
+          if_modified_since && modified_at && if_modified_since >= modified_at
+        end
+        def etag_matches?(etag)
+          if etag
+            validators = if_none_match_etags
+            validators.include?(etag) || validators.include?("*")
+          end
+        end
+        # Check response freshness (`Last-Modified` and `ETag`) against request
+        # `If-Modified-Since` and `If-None-Match` conditions.
+        # If both headers are supplied, based on configuration, either `ETag` is preferred over `Last-Modified`
+        # or both are considered equally. You can adjust the preference with
+        # `config.action_dispatch.strict_freshness`.
+        # Reference: http://tools.ietf.org/html/rfc7232#section-6
+        def fresh?(response)
+          if Request.strict_freshness
+            if if_none_match
+              etag_matches?(response.etag)
+            elsif if_modified_since
+              not_modified?(response.last_modified)
+            else
+              false
+            end
+          else
+            last_modified = if_modified_since
+            etag          = if_none_match
+            return false unless last_modified || etag
+            success = true
+            success &&= not_modified?(response.last_modified) if last_modified
+            success &&= etag_matches?(response.etag) if etag
+            success
+          end
+        end
+      end
+      module Response
+        attr_reader :cache_control
+        def last_modified
+          if last = get_header(LAST_MODIFIED)
+            Time.httpdate(last)
+          end
+        end
+        def last_modified?
+          has_header? LAST_MODIFIED
+        end
+        def last_modified=(utc_time)
+          set_header LAST_MODIFIED, utc_time.httpdate
+        end
+        def date
+          if date_header = get_header(DATE)
+            Time.httpdate(date_header)
+          end
+        end
+        def date?
+          has_header? DATE
+        end
+        def date=(utc_time)
+          set_header DATE, utc_time.httpdate
+        end
+        # This method sets a weak ETag validator on the response so browsers and proxies
+        # may cache the response, keyed on the ETag. On subsequent requests, the
+        # `If-None-Match` header is set to the cached ETag. If it matches the current
+        # ETag, we can return a `304 Not Modified` response with no body, letting the
+        # browser or proxy know that their cache is current. Big savings in request time
+        # and network bandwidth.
+        #
+        # Weak ETags are considered to be semantically equivalent but not byte-for-byte
+        # identical. This is perfect for browser caching of HTML pages where we don't
+        # care about exact equality, just what the user is viewing.
+        #
+        # Strong ETags are considered byte-for-byte identical. They allow a browser or
+        # proxy cache to support `Range` requests, useful for paging through a PDF file
+        # or scrubbing through a video. Some CDNs only support strong ETags and will
+        # ignore weak ETags entirely.
+        #
+        # Weak ETags are what we almost always need, so they're the default. Check out
+        # #strong_etag= to provide a strong ETag validator.
+        def etag=(weak_validators)
+          self.weak_etag = weak_validators
+        end
+        def weak_etag=(weak_validators)
+          set_header "ETag", generate_weak_etag(weak_validators)
+        end
+        def strong_etag=(strong_validators)
+          set_header "ETag", generate_strong_etag(strong_validators)
+        end
+        def etag?; etag; end
+        # True if an ETag is set, and it's a weak validator (preceded with `W/`).
+        def weak_etag?
+          etag? && etag.start_with?('W/"')
+        end
+        # True if an ETag is set, and it isn't a weak validator (not preceded with
+        # `W/`).
+        def strong_etag?
+          etag? && !weak_etag?
+        end
+      private
+        DATE          = "Date"
+        LAST_MODIFIED = "Last-Modified"
+        SPECIAL_KEYS  = Set.new(%w[extras no-store no-cache max-age public private must-revalidate])
+        def generate_weak_etag(validators)
+          "W/#{generate_strong_etag(validators)}"
+        end
+        def generate_strong_etag(validators)
+          %("#{ActiveSupport::Digest.hexdigest(ActiveSupport::Cache.expand_cache_key(validators))}")
+        end
+        def cache_control_segments
+          if cache_control = _cache_control
+            cache_control.delete(" ").split(",")
+          end
+        end
+        def cache_control_headers
+          cache_control = {}
+          cache_control_segments&.each do |segment|
+            directive, argument = segment.split("=", 2)
+            if SPECIAL_KEYS.include? directive
+              directive.tr!("-", "_")
+              cache_control[directive.to_sym] = argument || true
+            else
+              cache_control[:extras] ||= []
+              cache_control[:extras] << segment
+            end
+          end
+          cache_control
+        end
+        def prepare_cache_control!
+          @cache_control = cache_control_headers
+        end
+        DEFAULT_CACHE_CONTROL = "max-age=0, private, must-revalidate"
+        NO_STORE              = "no-store"
+        NO_CACHE              = "no-cache"
+        PUBLIC                = "public"
+        PRIVATE               = "private"
+        MUST_REVALIDATE       = "must-revalidate"
+        IMMUTABLE             = "immutable"
+        def handle_conditional_get!
+          # Normally default cache control setting is handled by ETag middleware. But, if
+          # an etag is already set, the middleware defaults to `no-cache` unless a default
+          # `Cache-Control` value is previously set. So, set a default one here.
+          if (etag? || last_modified?) && !self._cache_control
+            self._cache_control = DEFAULT_CACHE_CONTROL
+          end
+        end
+        def merge_and_normalize_cache_control!(cache_control)
+          control = cache_control_headers
+          return if control.empty? && cache_control.empty?  # Let middleware handle default behavior
+          if cache_control.any?
+            # Any caching directive coming from a controller overrides no-cache/no-store in
+            # the default Cache-Control header.
+            control.delete(:no_cache)
+            control.delete(:no_store)
+            if extras = control.delete(:extras)
+              cache_control[:extras] ||= []
+              cache_control[:extras] += extras
+              cache_control[:extras].uniq!
+            end
+            control.merge! cache_control
+          end
+          options = []
+          if control[:no_store]
+            options << PRIVATE if control[:private]
+            options << NO_STORE
+          elsif control[:no_cache]
+            options << PUBLIC if control[:public]
+            options << NO_CACHE
+            options.concat(control[:extras]) if control[:extras]
+          else
+            extras = control[:extras]
+            max_age = control[:max_age]
+            stale_while_revalidate = control[:stale_while_revalidate]
+            stale_if_error = control[:stale_if_error]
+            options << "max-age=#{max_age.to_i}" if max_age
+            options << (control[:public] ? PUBLIC : PRIVATE)
+            options << MUST_REVALIDATE if control[:must_revalidate]
+            options << "stale-while-revalidate=#{stale_while_revalidate.to_i}" if stale_while_revalidate
+            options << "stale-if-error=#{stale_if_error.to_i}" if stale_if_error
+            options << IMMUTABLE if control[:immutable]
+            options.concat(extras) if extras
+          end
+          self._cache_control = options.join(", ")
+        end
+      end
+    end
+  end
+end

data/lib/action_dispatch/http/content_disposition.rb ADDED Viewed

@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+# :markup: markdown
+module ActionDispatch
+  module Http
+    class ContentDisposition # :nodoc:
+      def self.format(disposition:, filename:)
+        new(disposition: disposition, filename: filename).to_s
+      end
+      attr_reader :disposition, :filename
+      def initialize(disposition:, filename:)
+        @disposition = disposition
+        @filename = filename
+      end
+      TRADITIONAL_ESCAPED_CHAR = /[^ A-Za-z0-9!\#$+.^_`|~-]/
+      def ascii_filename
+        'filename="' + percent_escape(I18n.transliterate(filename), TRADITIONAL_ESCAPED_CHAR) + '"'
+      end
+      RFC_5987_ESCAPED_CHAR = /[^A-Za-z0-9!\#$&+.^_`|~-]/
+      def utf8_filename
+        "filename*=UTF-8''" + percent_escape(filename, RFC_5987_ESCAPED_CHAR)
+      end
+      def to_s
+        if filename
+          "#{disposition}; #{ascii_filename}; #{utf8_filename}"
+        else
+          "#{disposition}"
+        end
+      end
+      private
+        def percent_escape(string, pattern)
+          string.gsub(pattern) do |char|
+            char.bytes.map { |byte| "%%%02X" % byte }.join
+          end
+        end
+    end
+  end
+end