Class: RnStack::SecurityGenerator

Inherits:

Rails::Generators::Base

Object
Rails::Generators::Base
RnStack::SecurityGenerator

show all

Defined in:: lib/generators/rn_stack/security/security_generator.rb

Instance Method Summary collapse

#setup_security ⇒ Object

Instance Method Details

#setup_security ⇒ `Object`

# File 'lib/generators/rn_stack/security/security_generator.rb', line 5

def setup_security
  say "Configuring Content Security Policy (CSP) and Security Headers..."
  # Create secure initializer
  create_file "config/initializers/content_security_policy.rb", <<~RUBY
    Rails.application.configure do
      config.content_security_policy do |policy|
        policy.default_src :self, :https
        policy.font_src    :self, :https, :data
        policy.img_src     :self, :https, :data
        policy.object_src  :none
        policy.script_src  :self, :https
        policy.style_src   :self, :https
      end
    end
  RUBY
  say "Security policy initialized in config/initializers/content_security_policy.rb"
end

Class: RnStack::SecurityGenerator

Instance Method Summary collapse

Instance Method Details

#setup_security ⇒ Object

#setup_security ⇒ `Object`