class Conjoin::Middleware
Public Class Methods
new(app, options = {})
click to toggle source
taken from github.com/rkh/rack-protection/blob/master/lib/rack/protection.rb#L20
# File lib/conjoin/middleware.rb, line 8 def new app, options = {} # except = Array options[:except] # use_these = Array options[:use] Rack::Builder.new do if not Conjoin.env.mounted? use Rack::Session::Cookie, secret: ENV['SECRET_BASE_KEY'] end # we need to disable session_hijacking because IE uses different headers # for ajax request over standard ones. # https://github.com/rkh/rack-protection/issues/11#issuecomment-9005539 use Rack::Protection, except: [:session_hijacking, :http_origin] use Rack::Csrf if not Conjoin.env.mounted? and Conjoin.env.development? require 'rack-livereload' use Rack::LiveReload use Rack::Reloader end if Conjoin.env.test? or Conjoin.env.development? require 'better_errors' use BetterErrors::Middleware if ENV['PRY_RESCUE'] require 'pry' require 'pry-rescue' use PryRescue::Rack end end # continue running the application run app end.to_app end