Sha256: 60c4c9bd643416fe88ed6ac655494508a6e45e0bd65108de77045f0e38ef6d49

Contents?: true

Size: 1.1 KB

Versions: 4

Compression:

Stored size: 1.1 KB

Contents

# Copyright (c) 2020 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
# frozen_string_literal: true

require 'contrast/framework/rails/patch/assess_configuration'
module Contrast
  module Framework
    module Rails
      module Patch
        # Our patch into the Rails::Application::Configuration Class, allowing
        # for the runtime detection of insecure configurations on individual
        # ActionDispatch::Session::AbstractStore instances within the
        # application.
        class RailsApplicationConfiguration
          def self.instrument
            @_instrument ||= begin
              ::Rails::Application::Configuration.class_eval do
                alias_method :cs__patched_session_store, :session_store
                def session_store *args
                  ret = cs__patched_session_store(*args)
                  Contrast::Framework::Rails::Patch::AssessConfiguration.analyze_session_store(*args)
                  ret
                end
              end
              true
            end
          end
        end
      end
    end
  end
end

Version data entries

4 entries across 4 versions & 1 rubygems

Version Path
contrast-agent-4.2.0 lib/contrast/framework/rails/patch/rails_application_configuration.rb
contrast-agent-4.1.0 lib/contrast/framework/rails/patch/rails_application_configuration.rb
contrast-agent-4.0.0 lib/contrast/framework/rails/patch/rails_application_configuration.rb
contrast-agent-3.16.0 lib/contrast/framework/rails/patch/rails_application_configuration.rb