RubyGems - sinatra-cors - Versions diffs - 0.1.1 → 0.2.0 - Mend

sinatra-cors 0.1.1 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c2bc1222ec8ec8330f4d315673a0ca86bb9bb713
-  data.tar.gz: 0af5f254fe59eb85c126696a8752ff1c840d1f5e
+  metadata.gz: ff5b1f839cff23f60932ac3e449d8f429550dcae
+  data.tar.gz: 618991731d2f808e37b028bb884fc59a275e02d5
 SHA512:
-  metadata.gz: 36e1a8f117d2bf8a67fa8bf6d9857f8935159cb059ec5613c3bee59bbce0b653afe2d2ab69a858a67623c4a0ce9db0b4c8b6d68c12c845eba851a9725490f19c
-  data.tar.gz: a9227d942a57d2171a6dddbef420c54feb1e3c718a8fb69951492d8504d5352229f85b3320c89c597b7cb6cc4f6cd89fbe732087793d89e3c9aa66972e799936
+  metadata.gz: 5a7f3ae81a92f2beb2b1b8c28bdfdd9d787b9fbb4c86030e4cbec0bdc9d89d06e7d0aeef1749606717a566cb3d75195b02060f2d5995c273d6635667daf880a6
+  data.tar.gz: 5aa1f60d221502d4922e54cd08f24d43be12cd62236407e55ec1a678cb7feac3967eeb799e695e83a7bb00f0f9d3e674618c4f805597cfc9c2580f1ae733cd2b

data/lib/sinatra/cors.rb CHANGED Viewed

@@ -10,6 +10,7 @@ module Sinatra
               logger.warn bad_method_message
               return
             end
             unless headers_are_allowed?
               logger.warn bad_headers_message
               return
@@ -41,16 +42,15 @@ module Sinatra
       end
       def method_is_allowed?
-        allow_methods = settings.allow_methods || response.headers["Allow"] || ""
-        request_method = request.env["HTTP_ACCESS_CONTROL_REQUEST_METHOD"] || ""
-        allow_methods.split.include? request_method
+        allow_methods = settings.allow_methods.split & response.headers["Allow"].split
+        request_method = request.env["HTTP_ACCESS_CONTROL_REQUEST_METHOD"]
+        allow_methods.include? request_method
       end
       def headers_are_allowed?
-        allow_headers = settings.allow_headers || ""
+        allow_headers = settings.allow_headers
         request_headers = request.env["HTTP_ACCESS_CONTROL_REQUEST_HEADERS"] || ""
-        diff = request_headers.split - allow_headers.split
-        diff.size == 0
+        (request_headers.split - allow_headers.split).empty?
       end
       def origin_is_allowed?
@@ -81,19 +81,30 @@ to requests with these headers, you can add them to the `allow_headers` sinatra
     def self.registered(app)
       app.helpers Cors::Helpers
-      app.disable :allow_origin
-      app.disable :allow_methods
-      app.disable :allow_headers
+      app.set :allow_origin, ""
+      app.set :allow_methods, ""
+      app.set :allow_headers, ""
       app.disable :max_age
       app.disable :expose_headers
       app.disable :allow_credentials
-      app.set(:is_cors_preflight) { |bool|
+      app.set(:is_cors_preflight) do |bool|
         condition { is_cors_request? && is_preflight_request? == bool }
-      }
+      end
       app.options "*", is_cors_preflight: true do
-        response.headers["Allow"] = settings.allow_methods || ""
+        matches = []
+        settings.routes.each do |method, routes|
+          routes.each do |route|
+            process_route(route[0], route[1], route[2]) do |application, pattern|
+              matches << method
+            end
+          end
+        end
+        pass if matches.size == 1
+        response.headers["Allow"] = matches.join " "
       end
       app.after do

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: sinatra-cors
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.2.0
 platform: ruby
 authors:
 - Jason Desrosiers