repost 0.3.3 → 0.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 998c57594b27cb1c140eb6e141b2e64467a5cde407410c58bd3547f3529e7d20
-  data.tar.gz: d7fef86b10e728d49154e6883fdf53659bbbacd0f281283e6ff586f82cc67199
+  metadata.gz: 016666c656489330b6bcfe1eed7663fa1670210f211e2e7ad35cce82ea9a8322
+  data.tar.gz: 744a0637065596ddb685097a54dd9219d908fd659f69a731e94866f766ef8bd8
 SHA512:
-  metadata.gz: 4ce51773149c3bb5afc481c415753a46e2136d2ef1e41aa17709028ec24682c95a44a913dddba3ea20c06a15bb201384478ab6cac42cb1f41eba97316d35e875
-  data.tar.gz: 97a6ab774d780fbe9cf238ee6172764adbc10d6dd6b0282f3c8950e967f413b560cb4852179d419c27d62dc1dd5ee542c66108864d90444902388a8c8235af64
+  metadata.gz: f607b05add6ffde3b3f93c37ed5621818b2c6dec4cd5d24899a57083b5aec972d693bd6fc8e0f21663a39c7b9045ed9101c03211a9eaef8295d1c692b6c947b5
+  data.tar.gz: b8b2ed81ceb699f67445ad7c9c0cbbc6ce98fde6ef09634f9ea021cf995af06f069de000cbd77563eb75b55bb5867d78af35b314808a748ef9a32080dd15476c

data/lib/repost/action.rb

@@ -1,7 +1,7 @@
 module Repost
   class Action
-    def self.perform(*args)
-      action = new(*args)
+    def self.perform(*args, **kw_args)
+      action = new(*args, **kw_args)
       action.perform
     end
   end

data/lib/repost/extend_controller.rb

@@ -3,12 +3,16 @@ if defined?(Rails) && defined?(ActiveSupport)
     class ::ActionController::Base
 
       def repost(url, params: {}, options: {})
+        status = options.delete(:status) || :ok
         authenticity_token = form_authenticity_token if ['auto', :auto].include?(options[:authenticity_token])
         render html: Repost::Senpai.perform(
           url,
           params: params,
-          options: options.merge({authenticity_token: authenticity_token}.compact)
-        ).html_safe
+          options: options.merge({
+            authenticity_token: authenticity_token,
+            autosubmit_nonce: content_security_policy_nonce,
+          }.compact)
+        ).html_safe, status: status
       end
 
       alias :redirect_post :repost

data/lib/repost/senpai.rb

@@ -12,6 +12,7 @@ module Repost
       @charset            = options.fetch(:charset, DEFAULT_CHARSET)
       @form_id            = options.fetch(:form_id, generated_form_id)
       @autosubmit         = options.fetch(:autosubmit, true)
+      @autosubmit_nonce   = options.fetch(:autosubmit_nonce, nil)
       @section_classes    = options.dig(:decor, :section, :classes)
       @section_html       = options.dig(:decor, :section, :html)
       @submit_classes     = options.dig(:decor, :submit, :classes)
@@ -31,10 +32,10 @@ module Repost
 
     attr_reader :url, :params, :options, :method, :form_id, :autosubmit,
                 :section_classes, :section_html, :submit_classes,
-                :submit_text, :authenticity_token, :charset
+                :submit_text, :authenticity_token, :charset, :autosubmit_nonce
 
     def form_head
-      "<form id='#{form_id}' action='#{url}' method='#{method}' accept-charset='#{charset}'>"
+      %Q(<form id="#{form_id}" action="#{url}" method="#{method}" accept-charset="#{charset}">)
     end
 
     def form_body
@@ -46,34 +47,39 @@ module Repost
     end
 
     def form_input(key, value)
-      if value.is_a?(Hash)
+      case value
+      when Hash
         value.map do |inner_key, inner_value|
           form_input("#{key}[#{inner_key}]", inner_value)
         end.join
+      when Array
+        value.map do |inner_value|
+          form_input("#{key}[]", inner_value)
+        end.join
       else
-        "<input type='hidden' name='#{key}' value='#{value}'>"
+        %Q(<input type="hidden" name="#{key}" value=#{process_value(value)}>)
       end
     end
 
     def form_footer
-      "</form>"
+      %Q(</form>)
     end
 
     def csrf_token
-      "<input name='authenticity_token' value='#{authenticity_token}' type='hidden'>"
+      %Q(<input name="authenticity_token" value="#{authenticity_token}" type="hidden">)
     end
 
     def no_script
-      "<noscript>
+      %Q(<noscript>
         #{submit_section}
-      </noscript>"
+      </noscript>)
     end
 
     def submit_section
-      "<div class='#{section_classes}'>
+      %Q(<div class="#{section_classes}">
         #{section_html}
-        <input class='#{submit_classes}' type='submit' value='#{submit_text}'></input>
-      </div>"
+        <input class="#{submit_classes}" type="submit" value="#{submit_text}"></input>
+      </div>)
     end
 
     def generated_form_id
@@ -81,9 +87,15 @@ module Repost
     end
 
     def auto_submit_script
-      "<script>
-        document.getElementById('#{form_id}').submit();
-      </script>"
+      nonce_attr = %Q( nonce="#{autosubmit_nonce}") if autosubmit_nonce
+      %Q(<script#{nonce_attr}>
+        document.getElementById("#{form_id}").submit();
+      </script>)
+    end
+
+    def process_value(value)
+      return value if value.is_a?(Integer)
+      %Q("#{value.to_s.gsub("\"", '\'')}")
     end
   end
 end

data/lib/repost/version.rb

@@ -1,3 +1,3 @@
 module Repost
-  VERSION = "0.3.3"
+  VERSION = "0.4.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: repost
 version: !ruby/object:Gem::Version
-  version: 0.3.3
+  version: 0.4.0
 platform: ruby
 authors:
 - YaroslavO
-autorequire: 
+autorequire:
 bindir: exe
 cert_chain: []
-date: 2020-06-17 00:00:00.000000000 Z
+date: 2022-07-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -71,7 +71,7 @@ licenses:
 - MIT
 metadata:
   homepage_uri: https://vergilet.github.io/repost/
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -86,8 +86,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.8
-signing_key: 
+rubygems_version: 3.2.15
+signing_key:
 specification_version: 4
 summary: Gem implements Redirect using POST method
 test_files: []