Rack::Protection

Constants

SIGNATURE
VERSION

Public Class Methods

new(app, options = {}) click to toggle source

# File lib/rack/protection.rb, line 19
def self.new(app, options = {})
  # does not include: RemoteReferrer, AuthenticityToken and FormToken
  except = Array options[:except]
  Rack::Builder.new do
    use EscapedParams,    options unless except.include? :escaped_params
    use FrameOptions,     options unless except.include? :frame_options
    use IPSpoofing,       options unless except.include? :ip_spoofing
    use JsonCsrf,         options unless except.include? :json_csrf
    use PathTraversal,    options unless except.include? :path_traversal
    use RemoteToken,      options unless except.include? :remote_token
    use SessionHijacking, options unless except.include? :session_hijacking
    use XSSHeader,        options unless except.include? :xss_header
    run app
  end.to_app
end

version() click to toggle source

# File lib/rack/protection/version.rb, line 3
def self.version
  VERSION
end

Home Classes Methods

In Files

Namespace

Methods

Class/Module Index

Rack::Protection

Constants

Public Class Methods