Class: TransportACL::X509Matcher

Inherits:

Object

• Object
• TransportACL::X509Matcher

Defined in:

lib/bolt_ext/server_acl.rb

Instance Method Summary

• #initialize(options) ⇒ X509Matcher constructor

  A new instance of X509Matcher.

• #match(env) ⇒ Object

Constructor Details

#initialize(options) ⇒ X509Matcher

Returns a new instance of X509Matcher.

# File 'lib/bolt_ext/server_acl.rb', line 7

def initialize(options)
  @options = options.freeze
end

Instance Method Details

#match(env) ⇒ Object

# File 'lib/bolt_ext/server_acl.rb', line 11

def match(env)
  certificate = Rails::Auth::X509::Certificate.new(env['puma.peercert'])
  # This can be extended fairly easily to search OpenSSL::X509::Certificate#extensions for subjectAltNames.
  @options.all? { |name, value| certificate[name] == value }
end