rack-steady_etag 0.2.0 → 0.2.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4e9c4ec38a103ceb321da1a48a78a09872e7d47875fbd0fa1e15814116f79e64
-  data.tar.gz: cb4abb1d12ac1c2a06427f7e6f63de34c4d8b99c56248287470f2c4aa3be655a
+  metadata.gz: d3047cb500ace97518e12a5667bad5602d27b493f24d6a8a6c8236372fe7ca36
+  data.tar.gz: d9c3afe27e063227577e1921f6f4ce4e170f7f5627be0126096f1ed846ad7d1e
 SHA512:
-  metadata.gz: ab95c964994e61c962903a4a395be6715bc2a8d69e1cb66f0eb19371c4691972ff8d2cd76d8740129715652d515f0f0704238afbae5e30be9527065e0b127d59
-  data.tar.gz: f10b144400e01f9587e51f7f20330cb8a3d14381c4183ecfa84f9180d301b01986eeb1df3b1f498115eabab2161763106e8dde26c96e3ce9fc031eb94c56016e
+  metadata.gz: b86c5ec23d0d27170406530421acea4a54be83caf4c0513de01004136e92d2842aa771927f9ab8074bd918b83f3f10efc651b3e815dc8c5c2036769767c28077
+  data.tar.gz: b28cddf4577f20d1c0c75cdcf7c58d9ce5765f2148ab6fde4b9c0533725d09aa4c596b1624cab70c4e36a5b909e67153fd14ff95a272e9ef8fa0ee5ac81800c8

data/CHANGELOG.md

@@ -5,6 +5,10 @@ This project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html
 
 ## Unreleased
 
+## 0.2.1 - 2022-05-12
+
+- Only strip patterns for HTML and XHTML responses.
+
 ## 0.2.0 - 2022-05-12
 
 - Be more compatible with Rack 2.2.2:

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    rack-steady_etag (0.2.0)
+    rack-steady_etag (0.2.1)
       activesupport (>= 3.2)
       rack (~> 2.0)
 

data/README.md

@@ -20,17 +20,27 @@ By default Rails uses [`Rack::ETag`](https://rdoc.info/github/rack/rack/Rack/ETa
 You can add your own patterns:
 
 ```ruby
-Rack::SteadyETag::IGNORED_PATTERNS << /<meta name="XSRF-TOKEN" value="[^"]+">/
+Rack::SteadyETag::STRIP_PATTERNS << /<meta name="XSRF-TOKEN" value="[^"]+">/
 ```
 
 You can also push lambda for arbitrary transformations:
 
 ```ruby
-Rack::SteadyETag::IGNORED_PATTERNS << -> { |text| text.gsub(/<meta name="XSRF-TOKEN" value="[^"]+">/, '') }
+Rack::SteadyETag::STRIP_PATTERNS << -> { |text| text.gsub(/<meta name="XSRF-TOKEN" value="[^"]+">/, '') }
 ```
 
 Transformations are only applied for the `ETag` hash. The response body will not be changed.
 
+## What responses are processed
+
+This middleware will process responses that match all of the following: 
+
+- Responses with a HTTP status of 200 or 201
+- Responses with a `Content-Type` of `text/html` or `application/xhtml+xml`
+- Responses with a body. 
+
+This middleware can also add a default `Cache-Control` header for responses it *didn't* process. This is passed as an argument during middleware initialization (see *Installation* below). 
+
 ## Covered edge cases
 
 - Different `ETags` are generated when the same content is accessed with different Rack sessions.

data/lib/rack/steady_etag/version.rb

@@ -2,6 +2,6 @@
 
 module Rack
   class SteadyEtag
-    VERSION = "0.2.0"
+    VERSION = "0.2.1"
   end
 end

data/lib/rack/steady_etag.rb

@@ -19,20 +19,25 @@ module Rack
     # Yes, Rack::ETag sets a default Cache-Control for responses that it can digest.
     DEFAULT_CACHE_CONTROL = "max-age=0, private, must-revalidate"
 
-    IGNORE_PATTERNS = [
+    STRIP_PATTERNS = [
       /<meta\b[^>]*\bname=(["'])csrf-token\1[^>]+>/i,
       /<meta\b[^>]*\bname=(["'])csp-nonce\1[^>]+>/i,
       /<input\b[^>]*\bname=(["'])authenticity_token\1[^>]+>/i,
       lambda { |string| string.gsub(/(<script\b[^>]*)\bnonce=(["'])[^"']+\2+/i, '\1') }
     ]
 
+    STRIP_CONTENT_TYPES = %w[
+      text/html
+      application/xhtml+xml
+    ]
+
     def initialize(app, no_digest_cache_control = nil, digest_cache_control = DEFAULT_CACHE_CONTROL)
       @app = app
 
       @digest_cache_control = digest_cache_control
 
-      # Rails sets a default `Cache-Control: no-cache` for responses that
-      # we cannot digest.
+      # Rails sets a default `Cache-Control: no-cache` for responses that we cannot digest.
+      # See https://github.com/rails/rails/blob/d96609505511a76c618dc3adfa3ca4679317d008/railties/lib/rails/application/default_middleware_stack.rb#L81
       @no_digest_cache_control = no_digest_cache_control
     end
 
@@ -94,20 +99,14 @@ module Rack
       parts = []
       digest = nil
 
+      strippable_response = STRIP_CONTENT_TYPES.include?(headers['Content-Type'])
+
       body.each do |part|
         parts << part
 
         if part.present?
-          part = strip_ignore_patterns(part)
-
-          unless digest
-            digest = Digest::SHA256.new
-
-            if session && (session_id = session['session_id'])
-              digest << session_id.to_s
-            end
-          end
-
+          digest ||= initialize_digest(session)
+          part = strip_patterns(part) if strippable_response
           digest << part
         end
       end
@@ -119,12 +118,22 @@ module Rack
       [digest, parts]
     end
 
-    def strip_ignore_patterns(html)
-      IGNORE_PATTERNS.each do |ignore_pattern|
-        if ignore_pattern.respond_to?(:call)
-          html = ignore_pattern.call(html)
+    def initialize_digest(session)
+      digest = Digest::SHA256.new
+
+      if session && (session_id = session['session_id'])
+        digest << session_id.to_s
+      end
+
+      digest
+    end
+
+    def strip_patterns(html)
+      STRIP_PATTERNS.each do |pattern|
+        if pattern.respond_to?(:call)
+          html = pattern.call(html)
         else
-          html = html.gsub(ignore_pattern, '')
+          html = html.gsub(pattern, '')
         end
       end
       html

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rack-steady_etag
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.2.1
 platform: ruby
 authors:
 - Henning Koch