Class: EnforceSsl::EnforceSslRack
- Inherits:
-
Object
- Object
- EnforceSsl::EnforceSslRack
- Defined in:
- lib/enforce_ssl/enforce_ssl_rack.rb
Instance Method Summary collapse
- #call(env) ⇒ Object
-
#initialize(app) ⇒ EnforceSslRack
constructor
A new instance of EnforceSslRack.
Constructor Details
#initialize(app) ⇒ EnforceSslRack
Returns a new instance of EnforceSslRack.
4 5 6 |
# File 'lib/enforce_ssl/enforce_ssl_rack.rb', line 4 def initialize(app) @app = app end |
Instance Method Details
#call(env) ⇒ Object
8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 |
# File 'lib/enforce_ssl/enforce_ssl_rack.rb', line 8 def call(env) scheme = env["rack.url_scheme"] port = env["SERVER_PORT"] is_ssl = port.to_i == Rails.configuration.ssl_port.to_i is_not_ssl = port.to_i == Rails.configuration.no_ssl_port.to_i if is_ssl @status, @headers, @body = @app.call(env) # use only if max_age is set and only in production mode since it # needs a proper (not self-signed) certificate if Rails.configuration.hsts_max_age && Rails.env == "production" subdomain = Rails.configuration.hsts_include_sub_domain == true ? " ; includeSubDomains" : "" @headers['Strict-Transport-Security'] = "max-age=#{Rails.configuration.hsts_max_age.to_i}" + subdomain end elsif is_not_ssl @headers = { "location" => "https://" + env["HTTP_HOST"].sub(/\:.*/, '') + ":#{Rails.configuration.ssl_port}" + env["PATH_INFO"] } @status = 302 @body = '' else @status, @headers, @body = @app.call(env) end [@status, @headers, @body] end |