Contents

# frozen_string_literal: true

module Alchemy
  # Provides methods to secure your picture attributes against DOS attacks.
  #
  class PictureAttributes
    SECURE_ATTRIBUTES = %w(id size crop crop_from crop_size quality upsample).freeze

    class << self
      # Secures given attributes
      #
      # @param attributes [Hash]
      # @return [String]
      #
      def secure(attributes)
        Digest::SHA1.hexdigest(joined_attributes(attributes))[0..15]
      end

      private

      # Takes attributes and joins them with the +security_token+ of your rails app.
      #
      def joined_attributes(attributes)
        attributes.stringify_keys.values_at(*SECURE_ATTRIBUTES, Rails.configuration.secret_token).join('-')
      end
    end
  end
end

Version data entries

20 entries across 20 versions & 1 rubygems

Version	Path
alchemy_cms-4.0.6	lib/alchemy/picture_attributes.rb
alchemy_cms-4.2.4	lib/alchemy/picture_attributes.rb
alchemy_cms-4.2.3	lib/alchemy/picture_attributes.rb
alchemy_cms-4.2.2	lib/alchemy/picture_attributes.rb
alchemy_cms-4.1.2	lib/alchemy/picture_attributes.rb
alchemy_cms-4.1.1	lib/alchemy/picture_attributes.rb
alchemy_cms-4.2.1	lib/alchemy/picture_attributes.rb
alchemy_cms-4.2.0	lib/alchemy/picture_attributes.rb
alchemy_cms-4.2.0.rc1	lib/alchemy/picture_attributes.rb
alchemy_cms-4.1.0	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.5	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.4	lib/alchemy/picture_attributes.rb
alchemy_cms-4.1.0.rc1	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.3	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.2	lib/alchemy/picture_attributes.rb
alchemy_cms-4.1.0.beta	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.1	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.0	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.0.rc2	lib/alchemy/picture_attributes.rb
alchemy_cms-4.0.0.rc1	lib/alchemy/picture_attributes.rb