RubyGems - rack - Versions diffs - 2.1.0 → 3.1.0 - Mend

rack 2.1.0 → 3.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of rack might be problematic. Click here for more details.

Files changed (88) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +377 -16
data/CONTRIBUTING.md +144 -0
data/MIT-LICENSE +1 -1
data/README.md +328 -0
data/SPEC.rdoc +365 -0
data/lib/rack/auth/abstract/handler.rb +3 -1
data/lib/rack/auth/abstract/request.rb +2 -2
data/lib/rack/auth/basic.rb +4 -7
data/lib/rack/bad_request.rb +8 -0
data/lib/rack/body_proxy.rb +34 -12
data/lib/rack/builder.rb +162 -59
data/lib/rack/cascade.rb +24 -10
data/lib/rack/common_logger.rb +43 -28
data/lib/rack/conditional_get.rb +30 -25
data/lib/rack/constants.rb +66 -0
data/lib/rack/content_length.rb +10 -16
data/lib/rack/content_type.rb +9 -7
data/lib/rack/deflater.rb +78 -50
data/lib/rack/directory.rb +86 -63
data/lib/rack/etag.rb +14 -22
data/lib/rack/events.rb +18 -17
data/lib/rack/files.rb +99 -61
data/lib/rack/head.rb +8 -9
data/lib/rack/headers.rb +238 -0
data/lib/rack/lint.rb +868 -642
data/lib/rack/lock.rb +2 -6
data/lib/rack/logger.rb +3 -0
data/lib/rack/media_type.rb +9 -4
data/lib/rack/method_override.rb +6 -2
data/lib/rack/mime.rb +14 -5
data/lib/rack/mock.rb +1 -253
data/lib/rack/mock_request.rb +171 -0
data/lib/rack/mock_response.rb +124 -0
data/lib/rack/multipart/generator.rb +15 -8
data/lib/rack/multipart/parser.rb +238 -107
data/lib/rack/multipart/uploaded_file.rb +17 -7
data/lib/rack/multipart.rb +54 -42
data/lib/rack/null_logger.rb +9 -0
data/lib/rack/query_parser.rb +87 -105
data/lib/rack/recursive.rb +3 -1
data/lib/rack/reloader.rb +0 -4
data/lib/rack/request.rb +366 -135
data/lib/rack/response.rb +186 -68
data/lib/rack/rewindable_input.rb +24 -6
data/lib/rack/runtime.rb +8 -7
data/lib/rack/sendfile.rb +29 -27
data/lib/rack/show_exceptions.rb +27 -12
data/lib/rack/show_status.rb +21 -13
data/lib/rack/static.rb +19 -12
data/lib/rack/tempfile_reaper.rb +14 -5
data/lib/rack/urlmap.rb +5 -6
data/lib/rack/utils.rb +274 -260
data/lib/rack/version.rb +21 -0
data/lib/rack.rb +18 -103
metadata +25 -52
data/README.rdoc +0 -262
data/Rakefile +0 -123
data/SPEC +0 -263
data/bin/rackup +0 -5
data/contrib/rack.png +0 -0
data/contrib/rack.svg +0 -150
data/contrib/rack_logo.svg +0 -164
data/contrib/rdoc.css +0 -412
data/example/lobster.ru +0 -6
data/example/protectedlobster.rb +0 -16
data/example/protectedlobster.ru +0 -10
data/lib/rack/auth/digest/md5.rb +0 -131
data/lib/rack/auth/digest/nonce.rb +0 -54
data/lib/rack/auth/digest/params.rb +0 -54
data/lib/rack/auth/digest/request.rb +0 -43
data/lib/rack/chunked.rb +0 -92
data/lib/rack/core_ext/regexp.rb +0 -14
data/lib/rack/file.rb +0 -8
data/lib/rack/handler/cgi.rb +0 -62
data/lib/rack/handler/fastcgi.rb +0 -102
data/lib/rack/handler/lsws.rb +0 -63
data/lib/rack/handler/scgi.rb +0 -73
data/lib/rack/handler/thin.rb +0 -38
data/lib/rack/handler/webrick.rb +0 -122
data/lib/rack/handler.rb +0 -104
data/lib/rack/lobster.rb +0 -72
data/lib/rack/server.rb +0 -467
data/lib/rack/session/abstract/id.rb +0 -528
data/lib/rack/session/cookie.rb +0 -205
data/lib/rack/session/memcache.rb +0 -10
data/lib/rack/session/pool.rb +0 -85
data/rack.gemspec +0 -44

data/lib/rack/auth/digest/md5.rb DELETED Viewed

@@ -1,131 +0,0 @@
-# frozen_string_literal: true
-require 'rack/auth/abstract/handler'
-require 'rack/auth/digest/request'
-require 'rack/auth/digest/params'
-require 'rack/auth/digest/nonce'
-require 'digest/md5'
-module Rack
-  module Auth
-    module Digest
-      # Rack::Auth::Digest::MD5 implements the MD5 algorithm version of
-      # HTTP Digest Authentication, as per RFC 2617.
-      #
-      # Initialize with the [Rack] application that you want protecting,
-      # and a block that looks up a plaintext password for a given username.
-      #
-      # +opaque+ needs to be set to a constant base64/hexadecimal string.
-      #
-      class MD5 < AbstractHandler
-        attr_accessor :opaque
-        attr_writer :passwords_hashed
-        def initialize(app, realm = nil, opaque = nil, &authenticator)
-          @passwords_hashed = nil
-          if opaque.nil? and realm.respond_to? :values_at
-            realm, opaque, @passwords_hashed = realm.values_at :realm, :opaque, :passwords_hashed
-          end
-          super(app, realm, &authenticator)
-          @opaque = opaque
-        end
-        def passwords_hashed?
-          !!@passwords_hashed
-        end
-        def call(env)
-          auth = Request.new(env)
-          unless auth.provided?
-            return unauthorized
-          end
-          if !auth.digest? || !auth.correct_uri? || !valid_qop?(auth)
-            return bad_request
-          end
-          if valid?(auth)
-            if auth.nonce.stale?
-              return unauthorized(challenge(stale: true))
-            else
-              env['REMOTE_USER'] = auth.username
-              return @app.call(env)
-            end
-          end
-          unauthorized
-        end
-        private
-        QOP = 'auth'
-        def params(hash = {})
-          Params.new do |params|
-            params['realm'] = realm
-            params['nonce'] = Nonce.new.to_s
-            params['opaque'] = H(opaque)
-            params['qop'] = QOP
-            hash.each { |k, v| params[k] = v }
-          end
-        end
-        def challenge(hash = {})
-          "Digest #{params(hash)}"
-        end
-        def valid?(auth)
-          valid_opaque?(auth) && valid_nonce?(auth) && valid_digest?(auth)
-        end
-        def valid_qop?(auth)
-          QOP == auth.qop
-        end
-        def valid_opaque?(auth)
-          H(opaque) == auth.opaque
-        end
-        def valid_nonce?(auth)
-          auth.nonce.valid?
-        end
-        def valid_digest?(auth)
-          pw = @authenticator.call(auth.username)
-          pw && Rack::Utils.secure_compare(digest(auth, pw), auth.response)
-        end
-        def md5(data)
-          ::Digest::MD5.hexdigest(data)
-        end
-        alias :H :md5
-        def KD(secret, data)
-          H "#{secret}:#{data}"
-        end
-        def A1(auth, password)
-          "#{auth.username}:#{auth.realm}:#{password}"
-        end
-        def A2(auth)
-          "#{auth.method}:#{auth.uri}"
-        end
-        def digest(auth, password)
-          password_hash = passwords_hashed? ? password : H(A1(auth, password))
-          KD password_hash, "#{auth.nonce}:#{auth.nc}:#{auth.cnonce}:#{QOP}:#{H A2(auth)}"
-        end
-      end
-    end
-  end
-end

data/lib/rack/auth/digest/nonce.rb DELETED Viewed

@@ -1,54 +0,0 @@
-# frozen_string_literal: true
-require 'digest/md5'
-require 'base64'
-module Rack
-  module Auth
-    module Digest
-      # Rack::Auth::Digest::Nonce is the default nonce generator for the
-      # Rack::Auth::Digest::MD5 authentication handler.
-      #
-      # +private_key+ needs to set to a constant string.
-      #
-      # +time_limit+ can be optionally set to an integer (number of seconds),
-      # to limit the validity of the generated nonces.
-      class Nonce
-        class << self
-          attr_accessor :private_key, :time_limit
-        end
-        def self.parse(string)
-          new(*Base64.decode64(string).split(' ', 2))
-        end
-        def initialize(timestamp = Time.now, given_digest = nil)
-          @timestamp, @given_digest = timestamp.to_i, given_digest
-        end
-        def to_s
-          Base64.encode64("#{@timestamp} #{digest}").strip
-        end
-        def digest
-          ::Digest::MD5.hexdigest("#{@timestamp}:#{self.class.private_key}")
-        end
-        def valid?
-          digest == @given_digest
-        end
-        def stale?
-          !self.class.time_limit.nil? && (Time.now.to_i - @timestamp) > self.class.time_limit
-        end
-        def fresh?
-          !stale?
-        end
-      end
-    end
-  end
-end

data/lib/rack/auth/digest/params.rb DELETED Viewed

@@ -1,54 +0,0 @@
-# frozen_string_literal: true
-module Rack
-  module Auth
-    module Digest
-      class Params < Hash
-        def self.parse(str)
-          Params[*split_header_value(str).map do |param|
-            k, v = param.split('=', 2)
-            [k, dequote(v)]
-          end.flatten]
-        end
-        def self.dequote(str) # From WEBrick::HTTPUtils
-          ret = (/\A"(.*)"\Z/ =~ str) ? $1 : str.dup
-          ret.gsub!(/\\(.)/, "\\1")
-          ret
-        end
-        def self.split_header_value(str)
-          str.scan(/\w+\=(?:"[^\"]+"|[^,]+)/n)
-        end
-        def initialize
-          super()
-          yield self if block_given?
-        end
-        def [](k)
-          super k.to_s
-        end
-        def []=(k, v)
-          super k.to_s, v.to_s
-        end
-        UNQUOTED = ['nc', 'stale']
-        def to_s
-          map do |k, v|
-            "#{k}=#{(UNQUOTED.include?(k) ? v.to_s : quote(v))}"
-          end.join(', ')
-        end
-        def quote(str) # From WEBrick::HTTPUtils
-          '"' + str.gsub(/[\\\"]/o, "\\\1") + '"'
-        end
-      end
-    end
-  end
-end

data/lib/rack/auth/digest/request.rb DELETED Viewed

@@ -1,43 +0,0 @@
-# frozen_string_literal: true
-require 'rack/auth/abstract/request'
-require 'rack/auth/digest/params'
-require 'rack/auth/digest/nonce'
-module Rack
-  module Auth
-    module Digest
-      class Request < Auth::AbstractRequest
-        def method
-          @env[RACK_METHODOVERRIDE_ORIGINAL_METHOD] || @env[REQUEST_METHOD]
-        end
-        def digest?
-          "digest" == scheme
-        end
-        def correct_uri?
-          request.fullpath == uri
-        end
-        def nonce
-          @nonce ||= Nonce.parse(params['nonce'])
-        end
-        def params
-          @params ||= Params.parse(parts.last)
-        end
-        def respond_to?(sym, *)
-          super or params.has_key? sym.to_s
-        end
-        def method_missing(sym, *args)
-          return super unless params.has_key?(key = sym.to_s)
-          return params[key] if args.size == 0
-          raise ArgumentError, "wrong number of arguments (#{args.size} for 0)"
-        end
-      end
-    end
-  end
-end

data/lib/rack/chunked.rb DELETED Viewed

@@ -1,92 +0,0 @@
-# frozen_string_literal: true
-require 'rack/utils'
-module Rack
-  # Middleware that applies chunked transfer encoding to response bodies
-  # when the response does not include a Content-Length header.
-  class Chunked
-    include Rack::Utils
-    # A body wrapper that emits chunked responses
-    class Body
-      TERM = "\r\n"
-      TAIL = "0#{TERM}"
-      include Rack::Utils
-      def initialize(body)
-        @body = body
-      end
-      def each(&block)
-        term = TERM
-        @body.each do |chunk|
-          size = chunk.bytesize
-          next if size == 0
-          chunk = chunk.b
-          yield [size.to_s(16), term, chunk, term].join
-        end
-        yield TAIL
-        insert_trailers(&block)
-        yield TERM
-      end
-      def close
-        @body.close if @body.respond_to?(:close)
-      end
-      private
-      def insert_trailers(&block)
-      end
-    end
-    class TrailerBody < Body
-      private
-      def insert_trailers(&block)
-        @body.trailers.each_pair do |k, v|
-          yield "#{k}: #{v}\r\n"
-        end
-      end
-    end
-    def initialize(app)
-      @app = app
-    end
-    # pre-HTTP/1.0 (informally "HTTP/0.9") HTTP requests did not have
-    # a version (nor response headers)
-    def chunkable_version?(ver)
-      case ver
-      when 'HTTP/1.0', nil, 'HTTP/0.9'
-        false
-      else
-        true
-      end
-    end
-    def call(env)
-      status, headers, body = @app.call(env)
-      headers = HeaderHash.new(headers)
-      if ! chunkable_version?(env[SERVER_PROTOCOL]) ||
-         STATUS_WITH_NO_ENTITY_BODY.key?(status.to_i) ||
-         headers[CONTENT_LENGTH] ||
-         headers[TRANSFER_ENCODING]
-        [status, headers, body]
-      else
-        headers.delete(CONTENT_LENGTH)
-        headers[TRANSFER_ENCODING] = 'chunked'
-        if headers['Trailer']
-          [status, headers, TrailerBody.new(body)]
-        else
-          [status, headers, Body.new(body)]
-        end
-      end
-    end
-  end
-end

data/lib/rack/core_ext/regexp.rb DELETED Viewed

@@ -1,14 +0,0 @@
-# frozen_string_literal: true
-# Regexp has `match?` since Ruby 2.4
-# so to support Ruby < 2.4 we need to define this method
-module Rack
-  module RegexpExtensions
-    refine Regexp do
-      def match?(string, pos = 0)
-        !!match(string, pos)
-      end
-    end unless //.respond_to?(:match?)
-  end
-end

data/lib/rack/file.rb DELETED Viewed

@@ -1,8 +0,0 @@
-# frozen_string_literal: true
-require 'rack/files'
-module Rack
-  warn "Rack::File is deprecated, please use Rack::Files instead."
-  File = Files
-end

data/lib/rack/handler/cgi.rb DELETED Viewed

@@ -1,62 +0,0 @@
-# frozen_string_literal: true
-require 'rack/content_length'
-require 'rack/rewindable_input'
-module Rack
-  module Handler
-    class CGI
-      def self.run(app, options = nil)
-        $stdin.binmode
-        serve app
-      end
-      def self.serve(app)
-        env = ENV.to_hash
-        env.delete "HTTP_CONTENT_LENGTH"
-        env[SCRIPT_NAME] = ""  if env[SCRIPT_NAME] == "/"
-        env.update(
-          RACK_VERSION      => Rack::VERSION,
-          RACK_INPUT        => Rack::RewindableInput.new($stdin),
-          RACK_ERRORS       => $stderr,
-          RACK_MULTITHREAD  => false,
-          RACK_MULTIPROCESS => true,
-          RACK_RUNONCE      => true,
-          RACK_URL_SCHEME   => ["yes", "on", "1"].include?(ENV[HTTPS]) ? "https" : "http"
-        )
-        env[QUERY_STRING] ||= ""
-        env[HTTP_VERSION] ||= env[SERVER_PROTOCOL]
-        env[REQUEST_PATH] ||= "/"
-        status, headers, body = app.call(env)
-        begin
-          send_headers status, headers
-          send_body body
-        ensure
-          body.close  if body.respond_to? :close
-        end
-      end
-      def self.send_headers(status, headers)
-        $stdout.print "Status: #{status}\r\n"
-        headers.each { |k, vs|
-          vs.split("\n").each { |v|
-            $stdout.print "#{k}: #{v}\r\n"
-          }
-        }
-        $stdout.print "\r\n"
-        $stdout.flush
-      end
-      def self.send_body(body)
-        body.each { |part|
-          $stdout.print part
-          $stdout.flush
-        }
-      end
-    end
-  end
-end

data/lib/rack/handler/fastcgi.rb DELETED Viewed

@@ -1,102 +0,0 @@
-# frozen_string_literal: true
-require 'fcgi'
-require 'socket'
-require 'rack/content_length'
-require 'rack/rewindable_input'
-if defined? FCGI::Stream
-  class FCGI::Stream
-    alias _rack_read_without_buffer read
-    def read(n, buffer = nil)
-      buf = _rack_read_without_buffer n
-      buffer.replace(buf.to_s)  if buffer
-      buf
-    end
-  end
-end
-module Rack
-  module Handler
-    class FastCGI
-      def self.run(app, options = {})
-        if options[:File]
-          STDIN.reopen(UNIXServer.new(options[:File]))
-        elsif options[:Port]
-          STDIN.reopen(TCPServer.new(options[:Host], options[:Port]))
-        end
-        FCGI.each { |request|
-          serve request, app
-        }
-      end
-      def self.valid_options
-        environment  = ENV['RACK_ENV'] || 'development'
-        default_host = environment == 'development' ? 'localhost' : '0.0.0.0'
-        {
-          "Host=HOST" => "Hostname to listen on (default: #{default_host})",
-          "Port=PORT" => "Port to listen on (default: 8080)",
-          "File=PATH" => "Creates a Domain socket at PATH instead of a TCP socket. Ignores Host and Port if set.",
-        }
-      end
-      def self.serve(request, app)
-        env = request.env
-        env.delete "HTTP_CONTENT_LENGTH"
-        env[SCRIPT_NAME] = ""  if env[SCRIPT_NAME] == "/"
-        rack_input = RewindableInput.new(request.in)
-        env.update(
-          RACK_VERSION      => Rack::VERSION,
-          RACK_INPUT        => rack_input,
-          RACK_ERRORS       => request.err,
-          RACK_MULTITHREAD  => false,
-          RACK_MULTIPROCESS => true,
-          RACK_RUNONCE      => false,
-          RACK_URL_SCHEME   => ["yes", "on", "1"].include?(env[HTTPS]) ? "https" : "http"
-        )
-        env[QUERY_STRING] ||= ""
-        env[HTTP_VERSION] ||= env[SERVER_PROTOCOL]
-        env[REQUEST_PATH] ||= "/"
-        env.delete "CONTENT_TYPE"  if env["CONTENT_TYPE"] == ""
-        env.delete "CONTENT_LENGTH"  if env["CONTENT_LENGTH"] == ""
-        begin
-          status, headers, body = app.call(env)
-          begin
-            send_headers request.out, status, headers
-            send_body request.out, body
-          ensure
-            body.close  if body.respond_to? :close
-          end
-        ensure
-          rack_input.close
-          request.finish
-        end
-      end
-      def self.send_headers(out, status, headers)
-        out.print "Status: #{status}\r\n"
-        headers.each { |k, vs|
-          vs.split("\n").each { |v|
-            out.print "#{k}: #{v}\r\n"
-          }
-        }
-        out.print "\r\n"
-        out.flush
-      end
-      def self.send_body(out, body)
-        body.each { |part|
-          out.print part
-          out.flush
-        }
-      end
-    end
-  end
-end

data/lib/rack/handler/lsws.rb DELETED Viewed

@@ -1,63 +0,0 @@
-# frozen_string_literal: true
-require 'lsapi'
-require 'rack/content_length'
-require 'rack/rewindable_input'
-module Rack
-  module Handler
-    class LSWS
-      def self.run(app, options = nil)
-        while LSAPI.accept != nil
-          serve app
-        end
-      end
-      def self.serve(app)
-        env = ENV.to_hash
-        env.delete "HTTP_CONTENT_LENGTH"
-        env[SCRIPT_NAME] = "" if env[SCRIPT_NAME] == "/"
-        rack_input = RewindableInput.new($stdin.read.to_s)
-        env.update(
-          RACK_VERSION      => Rack::VERSION,
-          RACK_INPUT        => rack_input,
-          RACK_ERRORS       => $stderr,
-          RACK_MULTITHREAD  => false,
-          RACK_MULTIPROCESS => true,
-          RACK_RUNONCE      => false,
-          RACK_URL_SCHEME   => ["yes", "on", "1"].include?(ENV[HTTPS]) ? "https" : "http"
-        )
-        env[QUERY_STRING] ||= ""
-        env[HTTP_VERSION] ||= env[SERVER_PROTOCOL]
-        env[REQUEST_PATH] ||= "/"
-        status, headers, body = app.call(env)
-        begin
-          send_headers status, headers
-          send_body body
-        ensure
-          body.close if body.respond_to? :close
-        end
-      ensure
-        rack_input.close
-      end
-      def self.send_headers(status, headers)
-        print "Status: #{status}\r\n"
-        headers.each { |k, vs|
-          vs.split("\n").each { |v|
-            print "#{k}: #{v}\r\n"
-          }
-        }
-        print "\r\n"
-        STDOUT.flush
-      end
-      def self.send_body(body)
-        body.each { |part|
-          print part
-          STDOUT.flush
-        }
-      end
-    end
-  end
-end

data/lib/rack/handler/scgi.rb DELETED Viewed

@@ -1,73 +0,0 @@
-# frozen_string_literal: true
-require 'scgi'
-require 'stringio'
-require 'rack/content_length'
-require 'rack/chunked'
-module Rack
-  module Handler
-    class SCGI < ::SCGI::Processor
-      attr_accessor :app
-      def self.run(app, options = nil)
-        options[:Socket] = UNIXServer.new(options[:File]) if options[:File]
-        new(options.merge(app: app,
-                          host: options[:Host],
-                          port: options[:Port],
-                          socket: options[:Socket])).listen
-      end
-      def self.valid_options
-        environment  = ENV['RACK_ENV'] || 'development'
-        default_host = environment == 'development' ? 'localhost' : '0.0.0.0'
-        {
-          "Host=HOST" => "Hostname to listen on (default: #{default_host})",
-          "Port=PORT" => "Port to listen on (default: 8080)",
-        }
-      end
-      def initialize(settings = {})
-        @app = settings[:app]
-        super(settings)
-      end
-      def process_request(request, input_body, socket)
-        env = Hash[request]
-        env.delete "HTTP_CONTENT_TYPE"
-        env.delete "HTTP_CONTENT_LENGTH"
-        env[REQUEST_PATH], env[QUERY_STRING] = env["REQUEST_URI"].split('?', 2)
-        env[HTTP_VERSION] ||= env[SERVER_PROTOCOL]
-        env[PATH_INFO] = env[REQUEST_PATH]
-        env[QUERY_STRING] ||= ""
-        env[SCRIPT_NAME] = ""
-        rack_input = StringIO.new(input_body)
-        rack_input.set_encoding(Encoding::BINARY)
-        env.update(
-          RACK_VERSION      => Rack::VERSION,
-          RACK_INPUT        => rack_input,
-          RACK_ERRORS       => $stderr,
-          RACK_MULTITHREAD  => true,
-          RACK_MULTIPROCESS => true,
-          RACK_RUNONCE      => false,
-          RACK_URL_SCHEME   => ["yes", "on", "1"].include?(env[HTTPS]) ? "https" : "http"
-        )
-        status, headers, body = app.call(env)
-        begin
-          socket.write("Status: #{status}\r\n")
-          headers.each do |k, vs|
-            vs.split("\n").each { |v| socket.write("#{k}: #{v}\r\n")}
-          end
-          socket.write("\r\n")
-          body.each {|s| socket.write(s)}
-        ensure
-          body.close if body.respond_to? :close
-        end
-      end
-    end
-  end
-end