Sha256: 265acec4d2e29a139aad2c7c1cd49fbcfbae5f3dda346a97cc9a17869c03184c

Contents?: true

Size: 1015 Bytes

Versions: 22

Compression:

Stored size: 1015 Bytes

Contents

module SecureHeaders
  class XPCDPConfigError < StandardError; end
  class XPermittedCrossDomainPolicies
    HEADER_NAME = "X-Permitted-Cross-Domain-Policies"
    DEFAULT_VALUE = 'none'
    VALID_POLICIES = %w(all none master-only by-content-type by-ftp-filename)
    CONFIG_KEY = :x_permitted_cross_domain_policies

    class << self
      # Public: generate an X-Permitted-Cross-Domain-Policies header.
      #
      # Returns a default header if no configuration is provided, or a
      # header name and value based on the config.
      def make_header(config = nil)
        [HEADER_NAME, config || DEFAULT_VALUE]
      end

      def validate_config!(config)
        return if config.nil? || config == OPT_OUT
        raise TypeError.new("Must be a string. Found #{config.class}: #{config}") unless config.is_a?(String)
        unless VALID_POLICIES.include?(config.downcase)
          raise XPCDPConfigError.new("Value can only be one of #{VALID_POLICIES.join(', ')}")
        end
      end
    end
  end
end

Version data entries

22 entries across 22 versions & 1 rubygems

Version Path
secure_headers-3.6.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.5.1 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.5.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.5.0.pre lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.4.1 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.4.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.3.2 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.3.1 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.3.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.2.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.1.2 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.1.1 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.1.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.3 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.2 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.1 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.0 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.0.rc1 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.0.pre3 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb
secure_headers-3.0.0.pre2 lib/secure_headers/headers/x_permitted_cross_domain_policies.rb