RubyGems - rack-cors - Versions diffs - 0.1.0 - Mend

rack-cors 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of rack-cors might be problematic. Click here for more details.

Files changed (4) hide show

data/Rakefile ADDED

@@ -0,0 +1,12 @@
+begin
+  require 'jeweler'
+  Jeweler::Tasks.new do |gemspec|
+    gemspec.name = "rack-cors"
+    gemspec.summary = "Middleware for enabling Cross-Origin Resource Sharing in Rack apps"
+    gemspec.email = "csyu77@gmail.com"
+    gemspec.homepage = "http://github.com/cyu/rack-cors"
+    gemspec.authors = ["Calvin Yu"]
+  end
+rescue LoadError
+  puts "Jeweler not available. Install it with: gem install jeweler"
+end

data/VERSION ADDED

	@@ -0,0 +1 @@
1	+ 0.1.0

data/lib/rack/cors.rb ADDED

@@ -0,0 +1,130 @@
+module Rack
+  class Cors
+    def initialize(app)
+      @app = app
+      yield self if block_given?
+    end
+    def allow
+      all_resources << (resources = Resources.new)
+      yield resources
+    end
+    def call(env)
+      cors_headers = nil
+      if env['HTTP_ORIGIN']
+        if env['REQUEST_METHOD'] == 'OPTIONS'
+          headers = process_preflight(env)
+          return [200, headers, []] if headers
+        end
+        cors_headers = process_cors(env)
+      end
+      status, headers, body = @app.call env
+      headers = headers.merge(cors_headers) if cors_headers
+      [status, headers, body]
+    end
+    protected
+      def all_resources
+        @all_resources ||= []
+      end
+      def process_preflight(env)
+        resource = find_resource(env['HTTP_ORIGIN'], env['PATH_INFO'])
+        resource.to_preflight_headers(env) if resource
+      end
+      def process_cors(env)
+        resource = find_resource(env['HTTP_ORIGIN'], env['PATH_INFO'])
+        resource.to_headers(env) if resource
+      end
+      def find_resource(origin, path)
+        allowed = all_resources.detect {|r| r.allow_origin?(origin)}
+        allowed ? allowed.find_resource(path) : nil
+      end
+      class Resources
+        def initialize
+          @origins   = []
+          @resources = []
+        end
+        def origins(*args)
+          @origins = args.flatten.collect{|n| "http://#{n}" unless n.match(/^https?:\/\//)}
+        end
+        def resource(path, opts={})
+          @resources << Resource.new(path, opts)
+        end
+        def allow_origin?(source)
+          @origins.include?(source)
+        end
+        def find_resource(path)
+          @resources.detect{|r| r.match?(path)}
+        end
+      end
+      class Resource
+        attr_accessor :path, :methods, :headers, :max_age, :credentials, :pattern
+        def initialize(path, opts = {})
+          self.path        = path
+          self.methods     = ensure_enum(opts[:methods]) || [:get]
+          self.credentials = opts[:credentials] || true
+          self.headers     = ensure_enum(opts[:headers]) || nil
+          self.max_age     = opts[:max_age] || 1728000
+          self.pattern     = compile(path)
+        end
+        def match?(path)
+          pattern =~ path
+        end
+        def to_headers(env)
+          { 'Access-Control-Allow-Origin'       => env['HTTP_ORIGIN'],
+            'Access-Control-Allow-Methods'      => methods.collect{|m| m.to_s.upcase}.join(', '),
+            'Access-Control-Allow-Credentials'  => credentials.to_s,
+            'Access-Control-Max-Age'            => max_age.to_s }
+        end
+        def to_preflight_headers(env)
+          h = to_headers(env)
+          h.merge!('Access-Control-Allow-Headers' => headers.join(', ')) if headers
+          h
+        end
+        protected
+          def ensure_enum(v)
+            return nil if v.nil?
+            [v] unless v.respond_to?(:join)
+          end
+          def compile(path)
+            if path.respond_to? :to_str
+              special_chars = %w{. + ( )}
+              pattern =
+                path.to_str.gsub(/((:\w+)|[\*#{special_chars.join}])/) do |match|
+                  case match
+                  when "*"
+                    "(.*?)"
+                  when *special_chars
+                    Regexp.escape(match)
+                  else
+                    "([^/?&#]+)"
+                  end
+                end
+              /^#{pattern}$/
+            elsif path.respond_to? :match
+              path
+            else
+              raise TypeError, path
+            end
+          end
+      end
+  end
+end

metadata ADDED

@@ -0,0 +1,64 @@
+--- !ruby/object:Gem::Specification
+name: rack-cors
+version: !ruby/object:Gem::Version
+  prerelease: false
+  segments:
+  - 0
+  - 1
+  - 0
+  version: 0.1.0
+platform: ruby
+authors:
+- Calvin Yu
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2010-06-02 00:00:00 -04:00
+default_executable:
+dependencies: []
+description:
+email: csyu77@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- Rakefile
+- VERSION
+- lib/rack/cors.rb
+has_rdoc: true
+homepage: http://github.com/cyu/rack-cors
+licenses: []
+post_install_message:
+rdoc_options:
+- --charset=UTF-8
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+requirements: []
+rubyforge_project:
+rubygems_version: 1.3.6
+signing_key:
+specification_version: 3
+summary: Middleware for enabling Cross-Origin Resource Sharing in Rack apps
+test_files: []