repost 0.3.0 → 0.3.5

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: bc815d8628862bce90efaea620e728bbe5bc4361270012168bd91c3638c27dfd
-  data.tar.gz: dd1647ded8a8b2ba1cd4e4e923a288d65ae8c02fd3c352743b55530f4ef53a7f
+  metadata.gz: a550b943057d547063df1b9a6775a89f112e997eb10dc892ad5288d6badc7d0a
+  data.tar.gz: '081133fd059196c4c7e071e183333400e0ecddeca66e0c39467f16d10f84e489'
 SHA512:
-  metadata.gz: 0e090ab38d6712ce42ce7b58a856c26df4fd4f9c7234afe559239669a8c232bfeb0840e1e2148d51fcaa8ad76669a601d1484a704087cc6597b3278333a8ecbe
-  data.tar.gz: af0311293b5ecdd4f995680880a046cb299a5e54b47dcbf516a5c6d2358ae662d4c919ce908f2a60ccc6b79199e4c074d3299a924aabf5bec414f9b01ae9c3f0
+  metadata.gz: 379a30beab17dc0516de3551d6922e2f66243bb02e53e1ec589f25dea58035d843ddb65257b8048fefddef217e64f833caa79207ab67defc649d5f8dc884b198
+  data.tar.gz: 42f022dee1b7c95109e26d158ac1166635d16adea63fe3e8a88703e5e5084064fc86852ece2889c0eb9c3fd86a27c805e19187f33bc3c1f8068af2a90abc24b5

data/lib/repost/action.rb

@@ -1,7 +1,7 @@
 module Repost
   class Action
-    def self.perform(*args)
-      action = new(*args)
+    def self.perform(*args, **kw_args)
+      action = new(*args, **kw_args)
       action.perform
     end
   end

data/lib/repost/extend_controller.rb

@@ -1,18 +1,22 @@
-if defined?(Rails)
-  class ::ActionController::Base
-    AUTO_TOKEN_OPTIONS = ['auto', :auto].freeze
+if defined?(Rails) && defined?(ActiveSupport)
+  ActiveSupport.on_load(:action_controller) do
+    class ::ActionController::Base
 
-    def repost(url, params: {}, options: {})
-      authenticity_token = form_authenticity_token if AUTO_TOKEN_OPTIONS.include?(options[:authenticity_token])
-      render html: Repost::Senpai.perform(
-        url,
-        params: params,
-        options: options.merge({authenticity_token: authenticity_token}.compact)
-      ).html_safe
-    end
+      def repost(url, params: {}, options: {})
+        authenticity_token = form_authenticity_token if ['auto', :auto].include?(options[:authenticity_token])
+        render html: Repost::Senpai.perform(
+          url,
+          params: params,
+          options: options.merge({
+            authenticity_token: authenticity_token,
+            autosubmit_nonce: content_security_policy_nonce,
+          }.compact)
+        ).html_safe
+      end
 
-    alias :redirect_post :repost
+      alias :redirect_post :repost
 
+    end
   end
 end
 

data/lib/repost/senpai.rb

@@ -12,6 +12,7 @@ module Repost
       @charset            = options.fetch(:charset, DEFAULT_CHARSET)
       @form_id            = options.fetch(:form_id, generated_form_id)
       @autosubmit         = options.fetch(:autosubmit, true)
+      @autosubmit_nonce   = options.fetch(:autosubmit_nonce, nil)
       @section_classes    = options.dig(:decor, :section, :classes)
       @section_html       = options.dig(:decor, :section, :html)
       @submit_classes     = options.dig(:decor, :submit, :classes)
@@ -31,7 +32,7 @@ module Repost
 
     attr_reader :url, :params, :options, :method, :form_id, :autosubmit,
                 :section_classes, :section_html, :submit_classes,
-                :submit_text, :authenticity_token, :charset
+                :submit_text, :authenticity_token, :charset, :autosubmit_nonce
 
     def form_head
       "<form id='#{form_id}' action='#{url}' method='#{method}' accept-charset='#{charset}'>"
@@ -39,12 +40,22 @@ module Repost
 
     def form_body
       inputs = params.map do |key, value|
-        "<input type='hidden' name='#{key}' value='#{value}'>"
+        form_input(key, value)
       end
       inputs.unshift(csrf_token) if authenticity_token
       inputs.join
     end
 
+    def form_input(key, value)
+      if value.is_a?(Hash)
+        value.map do |inner_key, inner_value|
+          form_input("#{key}[#{inner_key}]", inner_value)
+        end.join
+      else
+        "<input type='hidden' name='#{key}' value='#{value}'>"
+      end
+    end
+
     def form_footer
       "</form>"
     end
@@ -71,7 +82,8 @@ module Repost
     end
 
     def auto_submit_script
-      "<script>
+      nonce_attr = %Q( nonce="#{autosubmit_nonce}") if autosubmit_nonce
+      "<script#{nonce_attr}>
         document.getElementById('#{form_id}').submit();
       </script>"
     end

data/lib/repost/version.rb

@@ -1,3 +1,3 @@
 module Repost
-  VERSION = "0.3.0"
+  VERSION = "0.3.5"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: repost
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.3.5
 platform: ruby
 authors:
 - YaroslavO
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2019-10-07 00:00:00.000000000 Z
+date: 2021-01-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -30,14 +30,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '13.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '13.0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -86,7 +86,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.1
+rubygems_version: 3.0.8
 signing_key: 
 specification_version: 4
 summary: Gem implements Redirect using POST method