module SafeCookies::Helpers
Constants
- KNOWN_COOKIES_DIVIDER
Public Instance Methods
http_only(cookie)
click to toggle source
# File lib/safe_cookies/helpers.rb, line 29 def http_only(cookie) if should_be_http_only?(cookie) and cookie !~ /(^|;\s)HttpOnly($|;)/ "#{cookie}; HttpOnly" else cookie end end
secure(cookie)
click to toggle source
# File lib/safe_cookies/helpers.rb, line 20 def secure(cookie) # Regexp from https://github.com/tobmatth/rack-ssl-enforcer/ if should_be_secure?(cookie) and cookie !~ /(^|;\s)secure($|;)/ "#{cookie}; secure" else cookie end end
should_be_http_only?(cookie)
click to toggle source
# File lib/safe_cookies/helpers.rb, line 95 def should_be_http_only?(cookie) cookie_name = cookie.split('=').first.strip not @config.scriptable_cookie?(cookie_name) end
should_be_secure?(cookie)
click to toggle source
# File lib/safe_cookies/helpers.rb, line 81 def should_be_secure?(cookie) cookie_name = cookie.split('=').first.strip ssl? and not @config.insecure_cookie?(cookie_name) end
ssl?()
click to toggle source
# File lib/safe_cookies/helpers.rb, line 86 def ssl? if @request.respond_to?(:ssl?) @request.ssl? else # older Rack versions @request.scheme == 'https' end end