Class: HTTP::Security::Headers::PublicKeyPins

Inherits:

Object

Object
HTTP::Security::Headers::PublicKeyPins

show all

Defined in:: lib/http/security/headers/public_key_pins.rb

Direct Known Subclasses

PublicKeyPinsReportOnly

Instance Attribute Summary collapse

#max_age ⇒ Integer readonly
#pin ⇒ Hash{Symbol,String => Array<String>} readonly
#report_uri ⇒ URI::HTTP readonly

Instance Method Summary collapse

#include_sub_domains? ⇒ Boolean
#initialize(options = {}) ⇒ PublicKeyPins constructor
A new instance of PublicKeyPins.
#strict? ⇒ Boolean
#to_s ⇒ Object

Constructor Details

#initialize(options = {}) ⇒ `PublicKeyPins`

Returns a new instance of PublicKeyPins.

# File 'lib/http/security/headers/public_key_pins.rb', line 15

def initialize(options={})
  @pin = {}

  options.each do |key,value|
    if (key.kind_of?(Symbol) && key =~ /^pin_/)
      @pin[key[4..-1].to_sym] = Array(value)
    elsif (key.kind_of?(String) && key.start_with?('pin-'))
      @pin[key[4..-1]] = Array(value)
    end
  end

  @max_age             = options[:max_age]
  @include_sub_domains = options[:includesubdomains]
  @report_uri          = options[:report_uri]
  @strict              = options[:strict]
end

Instance Attribute Details

#max_age ⇒ `Integer` (readonly)

Returns:

(Integer)



10
11
12

# File 'lib/http/security/headers/public_key_pins.rb', line 10

def max_age
  @max_age
end

#pin ⇒ `Hash{Symbol,String => Array<String>}` (readonly)

Returns:

(Hash{Symbol,String => Array<String>})



7
8
9

# File 'lib/http/security/headers/public_key_pins.rb', line 7

def pin
  @pin
end

#report_uri ⇒ `URI::HTTP` (readonly)

Returns:

(URI::HTTP)



13
14
15

# File 'lib/http/security/headers/public_key_pins.rb', line 13

def report_uri
  @report_uri
end

Instance Method Details

#include_sub_domains? ⇒ `Boolean`

Returns:

(Boolean)



32
33
34

# File 'lib/http/security/headers/public_key_pins.rb', line 32

def include_sub_domains?
  !!@include_sub_domains
end

#strict? ⇒ `Boolean`

Returns:

(Boolean)



36
37
38

# File 'lib/http/security/headers/public_key_pins.rb', line 36

def strict?
  !!@strict
end

#to_s ⇒ `Object`

# File 'lib/http/security/headers/public_key_pins.rb', line 40

def to_s
  directives = []

  @pin.each do |algorithm,fingerprints|
    Array(fingerprints).each do |fingerprint|
      directives << "pin-#{algorithm}=#{fingerprint.dump}"
    end
  end

  directives << "max-age=#{@max_age}"           if @max_age
  directives << "includeSubdomains"             if @include_sub_domains
  directives << "report-uri=\"#{@report_uri}\"" if @report_uri
  directives << "strict"                        if @strict

  return directives.join('; ')
end

Class: HTTP::Security::Headers::PublicKeyPins

Direct Known Subclasses

Instance Attribute Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(options = {}) ⇒ PublicKeyPins

Instance Attribute Details

#max_age ⇒ Integer (readonly)

#pin ⇒ Hash{Symbol,String => Array<String>} (readonly)

#report_uri ⇒ URI::HTTP (readonly)

Instance Method Details

#include_sub_domains? ⇒ Boolean

#strict? ⇒ Boolean

#to_s ⇒ Object

#initialize(options = {}) ⇒ `PublicKeyPins`

#max_age ⇒ `Integer` (readonly)

#pin ⇒ `Hash{Symbol,String => Array<String>}` (readonly)

#report_uri ⇒ `URI::HTTP` (readonly)

#include_sub_domains? ⇒ `Boolean`

#strict? ⇒ `Boolean`

#to_s ⇒ `Object`