roda 3.43.0 → 3.43.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG +4 -0
- data/lib/roda/plugins/default_headers.rb +15 -14
- data/lib/roda/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 95c0306a50aefb2cfa3bd700403ff2d8441acb78438dcca36bdb0341708208fe
|
|
4
|
+
data.tar.gz: df524e11cab19b33d6f4e2a139f2813b89dc0832863aa2e0ac70c69cc4f98e68
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: dc0c531cdc7d9ae5d122cae6394b49ebd9014811c6dfba64ef70bc2b4ffe03d66efe2a10dd11f180a1c68db15a7bf3e048f8fdd8550fa72584d2190d8b3d59ea
|
|
7
|
+
data.tar.gz: 3f42b2dd764cae91a0b81f43933c230b5795f29f33aebf18a7cbfd800071dfdb9ce29f80b471747105e6caa524571877f207cffde621fdaf3d04b89d5c295f8e
|
data/CHANGELOG
CHANGED
|
@@ -1,3 +1,7 @@
|
|
|
1
|
+
= 3.43.1 (2021-04-13)
|
|
2
|
+
|
|
3
|
+
* [SECURITY] Fix issue where loading content_security_policy plugin after default_headers plugin had no effect (jeremyevans)
|
|
4
|
+
|
|
1
5
|
= 3.43.0 (2021-04-12)
|
|
2
6
|
|
|
3
7
|
* Add host_authorization plugin, for checking that requests are submitted using an approved host (jeremyevans)
|
|
@@ -23,30 +23,31 @@ class Roda
|
|
|
23
23
|
module DefaultHeaders
|
|
24
24
|
# Merge the given headers into the existing default headers, if any.
|
|
25
25
|
def self.configure(app, headers={})
|
|
26
|
-
|
|
26
|
+
app.opts[:default_headers] = (app.default_headers || app::RodaResponse::DEFAULT_HEADERS).merge(headers).freeze
|
|
27
|
+
end
|
|
28
|
+
|
|
29
|
+
module ClassMethods
|
|
30
|
+
# The default response headers to use for the current class.
|
|
31
|
+
def default_headers
|
|
32
|
+
opts[:default_headers]
|
|
33
|
+
end
|
|
27
34
|
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
if
|
|
32
|
-
|
|
33
|
-
|
|
35
|
+
# Optimize the response class set_default_headers method if it hasn't been
|
|
36
|
+
# overridden and all default headers are strings.
|
|
37
|
+
def freeze
|
|
38
|
+
if (headers = opts[:default_headers]).all?{|k, v| k.is_a?(String) && v.is_a?(String)} &&
|
|
39
|
+
(self::RodaResponse.instance_method(:set_default_headers).owner == Base::ResponseMethods)
|
|
40
|
+
self::RodaResponse.class_eval(<<-END, __FILE__, __LINE__+1)
|
|
34
41
|
private
|
|
35
42
|
|
|
36
|
-
alias set_default_headers set_default_headers
|
|
37
43
|
def set_default_headers
|
|
38
44
|
h = @headers
|
|
39
45
|
#{headers.map{|k,v| "h[#{k.inspect}] ||= #{v.inspect}"}.join('; ')}
|
|
40
46
|
end
|
|
41
47
|
END
|
|
42
48
|
end
|
|
43
|
-
end
|
|
44
|
-
end
|
|
45
49
|
|
|
46
|
-
|
|
47
|
-
# The default response headers to use for the current class.
|
|
48
|
-
def default_headers
|
|
49
|
-
opts[:default_headers]
|
|
50
|
+
super
|
|
50
51
|
end
|
|
51
52
|
end
|
|
52
53
|
|
data/lib/roda/version.rb
CHANGED
|
@@ -8,7 +8,7 @@ class Roda
|
|
|
8
8
|
|
|
9
9
|
# The patch version of Roda, updated only for bug fixes from the last
|
|
10
10
|
# feature release.
|
|
11
|
-
RodaPatchVersion =
|
|
11
|
+
RodaPatchVersion = 1
|
|
12
12
|
|
|
13
13
|
# The full version of Roda as a string.
|
|
14
14
|
RodaVersion = "#{RodaMajorVersion}.#{RodaMinorVersion}.#{RodaPatchVersion}".freeze
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: roda
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 3.43.
|
|
4
|
+
version: 3.43.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Jeremy Evans
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-04-
|
|
11
|
+
date: 2021-04-13 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rack
|