Class: EnforceSsl::EnforceSslRack

Inherits:

Object

Object
EnforceSsl::EnforceSslRack

show all

Defined in:: lib/enforce_ssl/enforce_ssl_rack.rb

Instance Method Summary collapse

#call(env) ⇒ Object
#initialize(app) ⇒ EnforceSslRack constructor

A new instance of EnforceSslRack.

Constructor Details

#initialize(app) ⇒ `EnforceSslRack`

Returns a new instance of EnforceSslRack.



4
5
6

# File 'lib/enforce_ssl/enforce_ssl_rack.rb', line 4

def initialize(app)
  @app = app
end

Instance Method Details

#call(env) ⇒ `Object`

# File 'lib/enforce_ssl/enforce_ssl_rack.rb', line 8

def call(env)
  scheme = env["rack.url_scheme"]
  port = env["SERVER_PORT"]
  is_ssl = port.to_i == Rails.configuration.ssl_port.to_i
  is_not_ssl = port.to_i == Rails.configuration.no_ssl_port.to_i

  if is_ssl
    @status, @headers, @body = @app.call(env)
    
    # use only if max_age is set and only in production mode since it
    # needs a proper (not self-signed) certificate
    if Rails.configuration.hsts_max_age && Rails.env == "production"
      subdomain = Rails.configuration.hsts_include_sub_domain == true ? " ; includeSubDomains" : ""
      @headers['Strict-Transport-Security'] = "max-age=#{Rails.configuration.hsts_max_age.to_i}" + subdomain
      
    end
  elsif is_not_ssl
    @headers = { "location" => "https://" + env["HTTP_HOST"].sub(/\:.*/, '') + ":#{Rails.configuration.ssl_port}" + env["PATH_INFO"] }
    @status = 302
    @body = ''
  else
    @status, @headers, @body = @app.call(env)
  end
  [@status, @headers, @body]
end

Class: EnforceSsl::EnforceSslRack

Instance Method Summary collapse

Constructor Details

#initialize(app) ⇒ EnforceSslRack

Instance Method Details

#call(env) ⇒ Object

#initialize(app) ⇒ `EnforceSslRack`

#call(env) ⇒ `Object`