Module: Tina4::CorsMiddleware

Defined in:

lib/tina4/cors.rb

Class Method Summary

• .apply_headers(response_headers, env = {}) ⇒ Object

  Apply CORS headers to a response headers hash.

• .config ⇒ Object
• .origin_allowed?(origin) ⇒ Boolean

  Check if a given origin is allowed.

• .preflight_response(env = {}) ⇒ Object

  Handle OPTIONS preflight request, returns a Rack response array.

• .reset! ⇒ Object

Class Method Details

.apply_headers(response_headers, env = {}) ⇒ Object

Apply CORS headers to a response headers hash

# File 'lib/tina4/cors.rb', line 31

def apply_headers(response_headers, env = {})
  origin = resolve_origin(env)
  response_headers["access-control-allow-origin"] = origin
  response_headers["access-control-allow-methods"] = config[:methods]
  response_headers["access-control-allow-headers"] = config[:headers]
  response_headers["access-control-max-age"] = config[:max_age]
  response_headers["access-control-allow-credentials"] = config[:credentials] if config[:credentials] == "true"
  response_headers
end

.config ⇒ Object

# File 'lib/tina4/cors.rb', line 6

def config
  @config ||= load_config
end

.origin_allowed?(origin) ⇒ Boolean

Check if a given origin is allowed

Returns:

• (Boolean)

# File 'lib/tina4/cors.rb', line 42

def origin_allowed?(origin)
  return true if config[:origins] == "*"

  allowed = config[:origins].split(",").map(&:strip)
  allowed.include?(origin)
end

.preflight_response(env = {}) ⇒ Object

Handle OPTIONS preflight request, returns a Rack response array

# File 'lib/tina4/cors.rb', line 15

def preflight_response(env = {})
  origin = resolve_origin(env)
  [
    204,
    {
      "access-control-allow-origin" => origin,
      "access-control-allow-methods" => config[:methods],
      "access-control-allow-headers" => config[:headers],
      "access-control-max-age" => config[:max_age],
      "access-control-allow-credentials" => config[:credentials]
    },
    [""]
  ]
end

.reset! ⇒ Object

# File 'lib/tina4/cors.rb', line 10

def reset!
  @config = nil
end