rack-encoding_guard 0.1.1 → 0.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +20 -12
- data/VERSION +1 -1
- data/lib/rack/encoding_guard/middleware.rb +1 -1
- data/lib/rack/encoding_guard/reject_strategy.rb +1 -1
- data/rack-encoding_guard.gemspec +2 -2
- data/spec/lib/rack/encoding_guard/middleware_spec.rb +4 -4
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: a03cfd562d474ea8ca8fed6d4ddc49041ea547d8
|
|
4
|
+
data.tar.gz: b5c9080c796145afc48fe9b63e856717444eb1f9
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 91702c42498856445e047d50a97d3a65b1660688eb130e7e67ef8f5f105ee8fd4e4e0d48daee3581e9f3b3d413b561224af8269593ade2ae6faca22e01853487
|
|
7
|
+
data.tar.gz: 72de23f3b9f462fe5369e32e5318114d6184fe15fc485f41486d4501dae2e712a84826854a171dcc4a4e215287cf2a45ec256ce5292d6bbe171f18d76549d9df
|
data/README.md
CHANGED
|
@@ -27,28 +27,36 @@ If you are on Rails, you can insert the middleware to your application.rb
|
|
|
27
27
|
config.middleware.use 'Rack::EncodingGuard::Middleware'
|
|
28
28
|
```
|
|
29
29
|
|
|
30
|
-
###
|
|
31
|
-
|
|
30
|
+
### Sanitize Strategy
|
|
31
|
+
This is the default strategy. When using it sanitization, all invalid characters
|
|
32
|
+
will be stripped out of all relevant ENV vars. Subsequently, no encoding errors
|
|
33
|
+
will occur down the middleware stack.
|
|
32
34
|
```ruby
|
|
33
|
-
config.middleware.use 'Rack::EncodingGuard::Middleware', :
|
|
35
|
+
config.middleware.use 'Rack::EncodingGuard::Middleware', :sanitize
|
|
34
36
|
```
|
|
35
37
|
|
|
36
|
-
###
|
|
37
|
-
When using
|
|
38
|
+
### Reject Strategy
|
|
39
|
+
When using this strategy, all requests containing invalid characters are
|
|
40
|
+
rejected with a HTTP status 400 code ("Bad Request"). Additionally, you can
|
|
41
|
+
configure which hint will be displayed to the requesting user:
|
|
38
42
|
```ruby
|
|
39
|
-
config.middleware.use 'Rack::EncodingGuard::Middleware', :
|
|
43
|
+
config.middleware.use 'Rack::EncodingGuard::Middleware', :reject, with: 'Check that URL, mate!'
|
|
40
44
|
```
|
|
41
45
|
|
|
42
46
|
## Contributing to Rack::EncodingGuard
|
|
43
|
-
* Check out the latest master to make sure the feature hasn't been implemented
|
|
44
|
-
|
|
47
|
+
* Check out the latest master to make sure the feature hasn't been implemented
|
|
48
|
+
or the bug hasn't been fixed yet.
|
|
49
|
+
* Check out the issue tracker to make sure someone already hasn't requested it
|
|
50
|
+
and/or contributed it.
|
|
45
51
|
* Fork the project.
|
|
46
52
|
* Start a feature/bugfix branch.
|
|
47
53
|
* Commit and push until you are happy with your contribution.
|
|
48
|
-
* Make sure to add tests for it. This is important so I don't break it in a
|
|
49
|
-
|
|
54
|
+
* Make sure to add tests for it. This is important so I don't break it in a
|
|
55
|
+
future version unintentionally.
|
|
56
|
+
* Please try not to mess with the Rakefile, version, or history. If you want to
|
|
57
|
+
have your own version, or is otherwise necessary, that is fine, but please
|
|
58
|
+
isolate to its own commit so I can cherry-pick around it.
|
|
50
59
|
|
|
51
60
|
## Copyright
|
|
52
|
-
Copyright (c) 2015 Tobias Casper. See LICENSE.txt for
|
|
53
|
-
further details.
|
|
61
|
+
Copyright (c) 2015 Tobias Casper. See LICENSE.txt for further details.
|
|
54
62
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
0.1.
|
|
1
|
+
0.1.2
|
|
@@ -18,7 +18,7 @@ module Rack
|
|
|
18
18
|
|
|
19
19
|
def resolve_strategy_object(strategy, options)
|
|
20
20
|
case strategy
|
|
21
|
-
when nil then
|
|
21
|
+
when nil then SanitizeStrategy.new(options)
|
|
22
22
|
when Class then strategy.new(options)
|
|
23
23
|
when String then strategy.constantize.new(options)
|
|
24
24
|
when Symbol
|
data/rack-encoding_guard.gemspec
CHANGED
|
@@ -2,11 +2,11 @@
|
|
|
2
2
|
# DO NOT EDIT THIS FILE DIRECTLY
|
|
3
3
|
# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
|
|
4
4
|
# -*- encoding: utf-8 -*-
|
|
5
|
-
# stub: rack-encoding_guard 0.1.
|
|
5
|
+
# stub: rack-encoding_guard 0.1.2 ruby lib
|
|
6
6
|
|
|
7
7
|
Gem::Specification.new do |s|
|
|
8
8
|
s.name = "rack-encoding_guard"
|
|
9
|
-
s.version = "0.1.
|
|
9
|
+
s.version = "0.1.2"
|
|
10
10
|
|
|
11
11
|
s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
|
|
12
12
|
s.require_paths = ["lib"]
|
|
@@ -13,14 +13,14 @@ describe Rack::EncodingGuard::Middleware do
|
|
|
13
13
|
end
|
|
14
14
|
|
|
15
15
|
context 'with strategies' do
|
|
16
|
-
it 'uses
|
|
16
|
+
it 'uses SanitizeStrategy when second argument is omitted' do
|
|
17
17
|
middleware = described_class.new(app)
|
|
18
|
-
expect(middleware.strategy).to be_a Rack::EncodingGuard::
|
|
18
|
+
expect(middleware.strategy).to be_a Rack::EncodingGuard::SanitizeStrategy
|
|
19
19
|
end
|
|
20
20
|
|
|
21
|
-
it 'uses
|
|
21
|
+
it 'uses SanitizeStrategy when second argument is nil' do
|
|
22
22
|
middleware = described_class.new(app, nil)
|
|
23
|
-
expect(middleware.strategy).to be_a Rack::EncodingGuard::
|
|
23
|
+
expect(middleware.strategy).to be_a Rack::EncodingGuard::SanitizeStrategy
|
|
24
24
|
end
|
|
25
25
|
|
|
26
26
|
it 'uses RejectStrategy when second argument is :reject' do
|