Class: CookieStore::Cookie

Inherits:

Object

• Object
• CookieStore::Cookie

Defined in:

lib/cookie_store/cookie.rb

Constant Summary

IPADDR =

/\A#{URI::REGEXP::PATTERN::IPV4ADDR}\Z|\A#{URI::REGEXP::PATTERN::IPV6ADDR}\Z/

Instance Attribute Summary

• #comment ⇒ Object readonly

  String, nil

  RFC 2965 field for indicating comment (or a location) describing the cookie to a usesr agent.

• #comment_url ⇒ Object readonly

  String, nil

  RFC 2965 field for indicating comment (or a location) describing the cookie to a usesr agent.

• #created_at ⇒ Object readonly

  Time

  Time when this cookie was first evaluated and created.

• #discard ⇒ Object readonly

  Boolean

  RFC 2965 field for indicating session lifetime for a cookie.

• #domain ⇒ Object readonly

  String

  The domain scope of the cookie.

• #expires ⇒ Object readonly

  DateTime

  The Expires directive tells the browser when to delete the cookie.

• #http_only ⇒ Object readonly

  Boolean

  Popular browser extension to mark a cookie as invisible to code running within the browser, such as JavaScript.

• #max_age ⇒ Object readonly

  Fixnum

  RFC 6265 allows the use of the Max-Age attribute to set the cookie’s expiration as an interval of seconds in the future, relative to the time the browser received the cookie.

• #name ⇒ Object readonly

  String

  The name of the cookie.

• #path ⇒ Object readonly

  String

  The path scope of the cookie.

• #ports ⇒ Object readonly

  Array<FixNum>, nil

  RFC 2965 port scope for the cookie.

• #secure ⇒ Object readonly

  Boolean

  The secure flag is set to indicate that the cookie should only be sent securely.

• #value ⇒ Object readonly

  String

  The value of the cookie, without any attempts at decoding.

• #version ⇒ Object readonly

  Fixnum

  Version indicator, currently either * 0 for netscape cookies * 1 for RFC 2965 cookies.

Class Method Summary

• .parse(request_uri, set_cookie_value) ⇒ Object
• .parse_cookies(request_uri, set_cookie_value) ⇒ Object

Instance Method Summary

• #domain_match(request_domain) ⇒ Object

  From RFC2965 Section 1.

• #expired? ⇒ Boolean

  Indicates whether the cookie is currently considered valid.

• #expires_at ⇒ Time^?

  Evaluate when this cookie will expire.

• #initialize(name, value, attributes = {}) ⇒ Cookie constructor

  A new instance of Cookie.

• #path_match(request_path) ⇒ Object

  From RFC2965 Section 1.

• #port_match(request_port) ⇒ Object

  From RFC2965 Section 3.3 .

• #request_match?(request_uri) ⇒ Boolean

  Returns a true if the request_uri is a domain-match, a path-match, and a port-match.

• #session? ⇒ Boolean

  Indicates whether the cookie will be considered invalid after the end of the current user session.

• #to_s ⇒ Object

Constructor Details

#initialize(name, value, attributes = {}) ⇒ Cookie

Returns a new instance of Cookie.

# File 'lib/cookie_store/cookie.rb', line 60

def initialize(name, value, attributes={})
  @name = name
  @value = value
  @secure = false
  @http_only = false
  @version = 1
  @discard = false
  @created_at = Time.now
  
  @attributes = attributes

  %i{name value domain path secure http_only version comment comment_url discard ports expires max_age created_at}.each do |attr_name|
    if attributes.has_key?(attr_name)
      self.instance_variable_set(:"@#{attr_name}", attributes[attr_name])
    end
  end
end

Instance Attribute Details

#comment ⇒ Object (readonly)

String, nil

RFC 2965 field for indicating comment (or a location)

describing the cookie to a usesr agent.

# File 'lib/cookie_store/cookie.rb', line 38

def comment
  @comment
end

#comment_url ⇒ Object (readonly)

String, nil

RFC 2965 field for indicating comment (or a location)

describing the cookie to a usesr agent.

# File 'lib/cookie_store/cookie.rb', line 38

def comment_url
  @comment_url
end

#created_at ⇒ Object (readonly)

Time

Time when this cookie was first evaluated and created.

# File 'lib/cookie_store/cookie.rb', line 58

def created_at
  @created_at
end

#discard ⇒ Object (readonly)

Boolean

RFC 2965 field for indicating session lifetime for a cookie

# File 'lib/cookie_store/cookie.rb', line 41

def discard
  @discard
end

#domain ⇒ Object (readonly)

String

The domain scope of the cookie. Follows the RFC 2965

‘effective host’ rules. A ‘dot’ prefix indicates that it applies both to the non-dotted domain and child domains, while no prefix indicates that only exact matches of the domain are in scope.

# File 'lib/cookie_store/cookie.rb', line 15

def domain
  @domain
end

#expires ⇒ Object (readonly)

DateTime

The Expires directive tells the browser when to delete the cookie.

Derived from the format used in RFC 1123

# File 'lib/cookie_store/cookie.rb', line 50

def expires
  @expires
end

#http_only ⇒ Object (readonly)

Boolean

Popular browser extension to mark a cookie as invisible

to code running within the browser, such as JavaScript

# File 'lib/cookie_store/cookie.rb', line 29

def http_only
  @http_only
end

#max_age ⇒ Object (readonly)

Fixnum

RFC 6265 allows the use of the Max-Age attribute to set the

cookie’s expiration as an interval of seconds in the future, relative to the time the browser received the cookie.

# File 'lib/cookie_store/cookie.rb', line 55

def max_age
  @max_age
end

#name ⇒ Object (readonly)

String

The name of the cookie.

# File 'lib/cookie_store/cookie.rb', line 6

def name
  @name
end

#path ⇒ Object (readonly)

String

The path scope of the cookie. The cookie applies to URI paths

that prefix match this value.

# File 'lib/cookie_store/cookie.rb', line 19

def path
  @path
end

#ports ⇒ Object (readonly)

Array<FixNum>, nil

RFC 2965 port scope for the cookie. If not nil,

indicates specific ports on the HTTP server which should receive this cookie if contacted.

# File 'lib/cookie_store/cookie.rb', line 46

def ports
  @ports
end

#secure ⇒ Object (readonly)

Boolean

The secure flag is set to indicate that the cookie should

only be sent securely. Nearly all HTTP User Agent implementations assume this to mean that the cookie should only be sent over a SSL/TLS-protected connection

# File 'lib/cookie_store/cookie.rb', line 25

def secure
  @secure
end

#value ⇒ Object (readonly)

String

The value of the cookie, without any attempts at decoding.

# File 'lib/cookie_store/cookie.rb', line 9

def value
  @value
end

#version ⇒ Object (readonly)

Fixnum

Version indicator, currently either

• 0 for netscape cookies

• 1 for RFC 2965 cookies

# File 'lib/cookie_store/cookie.rb', line 34

def version
  @version
end

Class Method Details

.parse(request_uri, set_cookie_value) ⇒ Object

# File 'lib/cookie_store/cookie.rb', line 163

def self.parse(request_uri, set_cookie_value)
  parse_cookies(request_uri, set_cookie_value).first
end

.parse_cookies(request_uri, set_cookie_value) ⇒ Object

# File 'lib/cookie_store/cookie.rb', line 167

def self.parse_cookies(request_uri, set_cookie_value)
  uri = request_uri.is_a?(URI) ? request_uri : URI.parse(request_uri)
  
  cookies = []
  CookieStore::CookieParser.parse(set_cookie_value) do |parsed|
    parsed[:attributes][:domain]  ||= uri.host.downcase
    parsed[:attributes][:path]    ||= uri.path

    cookie = CookieStore::Cookie.new(parsed[:key], parsed[:value], parsed[:attributes])

    cookies << if block_given?
      yield(cookie)
    else
      cookie
    end
  end

  cookies
end

Instance Method Details

#domain_match(request_domain) ⇒ Object

From RFC2965 Section 1.

Host A’s name domain-matches host B’s if

• their host name strings string-compare equal; or

• A is a HDN string and has the form NB, where N is a non-empty name string, B has the form .B’, and B’ is a HDN string. (So, x.y.com domain-matches .Y.com but not Y.com.)

# File 'lib/cookie_store/cookie.rb', line 137

def domain_match(request_domain)
  request_domain = request_domain.downcase

  return true if domain == request_domain
  
  return false if request_domain =~ IPADDR
  
  return true if domain == ".#{request_domain}"
  
  return false if !domain.include?('.') && domain != 'local'
  
  return false if !request_domain.end_with?(domain)

  return !(request_domain[0...-domain.length].count('.') > (request_domain[-domain.length-1] == '.' ? 1 : 0))
end

#expired? ⇒ Boolean

Indicates whether the cookie is currently considered valid

Returns:

• (Boolean)

# File 'lib/cookie_store/cookie.rb', line 93

def expired?
  expires_at && Time.now > expires_at
end

#expires_at ⇒ Time^?

Evaluate when this cookie will expire. Uses the original cookie fields for a max-age or expires

Returns:

• (Time, nil) —

  Time of expiry, if this cookie has an expiry set

# File 'lib/cookie_store/cookie.rb', line 82

def expires_at
  if max_age
    created_at + max_age
  else
    expires
  end
end

#path_match(request_path) ⇒ Object

From RFC2965 Section 1.

For two strings that represent paths, P1 and P2, P1 path-matches P2 if P2 is a prefix of P1 (including the case where P1 and P2 string- compare equal). Thus, the string /tec/waldo path-matches /tec.

# File 'lib/cookie_store/cookie.rb', line 124

def path_match(request_path)
  request_path.start_with?(path)
end

#port_match(request_port) ⇒ Object

From RFC2965 Section 3.3

The default behavior is that a cookie MAY be returned to any request-port.

If the port attribute is set the port must be in the port-list.

# File 'lib/cookie_store/cookie.rb', line 158

def port_match(request_port)
  return true unless ports
  ports.include?(request_port)
end

#request_match?(request_uri) ⇒ Boolean

Returns a true if the request_uri is a domain-match, a path-match, and a port-match

Returns:

• (Boolean)

# File 'lib/cookie_store/cookie.rb', line 114

def request_match?(request_uri)
  uri = request_uri.is_a?(URI) ? request_uri : URI.parse(request_uri)
  domain_match(uri.host) && path_match(uri.path) &&  port_match(uri.port)
end

#session? ⇒ Boolean

Indicates whether the cookie will be considered invalid after the end of the current user session

Returns:

• (Boolean)

# File 'lib/cookie_store/cookie.rb', line 100

def session?
  !expires_at || discard
end

#to_s ⇒ Object

# File 'lib/cookie_store/cookie.rb', line 104

def to_s
  if value.include?('"')
    "#{name}=\"#{value.gsub('"', '\\"')}\""
  else
    "#{name}=#{value}"
  end
end