Class: Rack::TorTag

Inherits:

Object

• Object
• Rack::TorTag

Defined in:

lib/rack/tor_tag.rb

Constant Summary

DEFAULT_PARAMS =

{
  # You could run your own if you want.
  # https://www.torproject.org/projects/tordnsel.html.en
  :dnsel => 'ip-port.exitlist.torproject.org',
  :host_ips => nil, # will get from env
  :host_port => nil
}

Instance Method Summary

• #call(env) ⇒ Object
• #initialize(app, params = {}) ⇒ TorTag constructor

  A new instance of TorTag.

Constructor Details

#initialize(app, params = {}) ⇒ TorTag

Returns a new instance of TorTag.

# File 'lib/rack/tor_tag.rb', line 17

def initialize(app, params = {})
  @app = app
  @params = DEFAULT_PARAMS.merge(params)
  # raise ArgumentError, "Must pass :host_ips" unless RESOLV_WORKS
end

Instance Method Details

#call(env) ⇒ Object

# File 'lib/rack/tor_tag.rb', line 23

def call(env)
  ip = env['action_dispatch.remote_ip']
  # Getting the right IP is hard. Let's punt.
  # http://api.rubyonrails.org/classes/ActionDispatch/RemoteIp.html
  # http://blog.gingerlime.com/2012/rails-ip-spoofing-vulnerabilities-and-protection/
  raise 'Must run after ActionDispatch::RemoteIp' if ip.blank?

  case is_tor?(ip, env)
  when true
    env['tor'] = true
    env['tor_ip'] = ip # stick it elsewhere
    env['action_dispatch.remote_ip'] = '127.0.0.2' # make all Tor IPs look alike
  when false
    env['tor'] = false
  else
    env['tor'] = nil # i.e. unknown
  end

  # Continue normal processing
  @app.call(env)
end