Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat[patch]: support for patch verb #38

Merged
merged 14 commits into from
Aug 6, 2021
Merged

feat[patch]: support for patch verb #38

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
674d8a4
support for patch verb
jakeyheath Aug 2, 2021
59984e8
updating readme
jakeyheath Aug 2, 2021
4b13625
misspelling in test
jakeyheath Aug 2, 2021
35d9d47
no trailing comma
jakeyheath Aug 2, 2021
c36832c
Update README.md
jakeyheath Aug 2, 2021
91c17e9
Update ssrf_filter_spec.rb
jakeyheath Aug 2, 2021
08d944b
updating version lock on psych
jakeyheath Aug 2, 2021
0abecde
Merge branch 'heathj/patchverb' of github.com:jacobrheath/ssrf_filter…
jakeyheath Aug 2, 2021
ca6124f
another version update to capture lower ruby versions
jakeyheath Aug 2, 2021
be7887f
another version constraint error
jakeyheath Aug 2, 2021
aa1f8ec
last try :fingers-crossed
jakeyheath Aug 2, 2021
9641cc8
one more time
jakeyheath Aug 2, 2021
e20d944
pinning rexml
jakeyheath Aug 5, 2021
0e8cbfe
misspelling
jakeyheath Aug 5, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,9 +42,9 @@ response.body

### API reference

`SsrfFilter.get/.put/.post/.delete/.head(url, options = {}, &block)`
`SsrfFilter.get/.put/.post/.delete/.head/.patch(url, options = {}, &block)`

Fetches the requested url using a get/put/post/delete/head request, respectively.
Fetches the requested url using a get/put/post/delete/head/patch request, respectively.

Params:
- `url` — the url to fetch.
Expand Down
5 changes: 3 additions & 2 deletions lib/ssrf_filter/ssrf_filter.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -77,7 +77,8 @@ def self.prefixlen_from_ipaddr(ipaddr)
put: ::Net::HTTP::Put,
post: ::Net::HTTP::Post,
delete: ::Net::HTTP::Delete,
head: ::Net::HTTP::Head
head: ::Net::HTTP::Head,
patch: ::Net::HTTP::Patch
}.freeze

FIBER_LOCAL_KEY = :__ssrf_filter_hostname
Expand All @@ -100,7 +101,7 @@ class TooManyRedirects < Error
class CRLFInjection < Error
end

%i[get put post delete head].each do |method|
%i[get put post delete head patch].each do |method|
define_singleton_method(method) do |url, options = {}, &block|
::SsrfFilter::Patch::SSLSocket.apply!
::SsrfFilter::Patch::HTTPGenericRequest.apply!
Expand Down
2 changes: 2 additions & 0 deletions ssrf_filter.gemspec
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ Gem::Specification.new do |gem|

gem.add_development_dependency('bundler-audit', '~> 0.6.1')
gem.add_development_dependency('coveralls', '~> 0.8.22')
gem.add_development_dependency('psych', '< 4')
gem.add_development_dependency('rspec', '~> 3.8.0')
gem.add_development_dependency('webmock', '>= 3.5.1')
gem.add_development_dependency('webrick') if major >= 3
Expand All @@ -31,6 +32,7 @@ Gem::Specification.new do |gem|
# ssrf_filter doesn't use public_suffix directly, it's required by `addressable` which is required
# by `webmock`. We need to set this requirement here to pin a version that is compatible with ruby 2.0
gem.add_development_dependency('public_suffix', '2.0.5')
gem.add_development_dependency('rexml', '3.2.4')
gem.add_development_dependency('rubocop', '~> 0.50.0')
end
end