suzanne.soy/travis-api
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

sinatrafy

Browse Source
This commit is contained in:
Konstantin Haase 2012-11-18 12:06:57 +01:00
parent 707b2c68e8
commit 46c55bc400
1 changed files with 8 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
lib/travis/api/app/endpoint/authorization.rb
View File

@ -44,6 +44,7 @@ class Travis::Api::App
^ http:// (localhost|127\.0\.0\.1)(:\d+)? $ | ^ http:// (localhost|127\.0\.0\.1)(:\d+)? $ |
^ https:// ([\w\-_]+\.)?travis-ci\.(org|com) $ ^ https:// ([\w\-_]+\.)?travis-ci\.(org|com) $
}x }x
set blank_gif: Base64.decode64('R0lGODlhBQAFAJH/AP///wAAAMDAwAAAACH5BAEAAAIALAAAAAAFAAUAAAIElI+pWAA7\n')
# Endpoint for retrieving an authorization code, which in turn can be used # Endpoint for retrieving an authorization code, which in turn can be used
# to generate an access token. # to generate an access token.
@ -117,10 +118,7 @@ class Travis::Api::App
# token is being received. # token is being received.
get '/post_message', scope: :public do get '/post_message', scope: :public do
content_type :html content_type :html
response.set_cookie('cookie_check', '1') erb :container
host ="#{request.scheme}://#{request.host}"
host << ":#{request.port}" unless request.port == 80
erb :container, {}, host: host
end end
get '/post_message/iframe', scope: :public do get '/post_message/iframe', scope: :public do
@ -134,13 +132,14 @@ class Travis::Api::App
end end
get '/set_cookie' do get '/set_cookie' do
blank_gif = Base64.decode64 'R0lGODlhBQAFAJH/AP///wAAAMDAwAAAACH5BAEAAAIALAAAAAAFAAUAAAIElI+pWAA7\n' content_type :gif
[200, { 'Content-Type' => 'image/gif', 'Set-Cookie' => 'foo=bar' }, blank_gif] response.set_cookie('foo', 'bar')
settings.blank_gif
end end
get '/check_cookie' do get '/check_cookie' do
third_party_cookies = (!!(env["HTTP_COOKIE"].to_s =~ /foo=bar/)).inspect content_type :js
[200, { 'Content-Type' => 'text/javascript' }, ["cookiesCheckCallback(#{third_party_cookies})"]] "cookiesCheckCallback(%p)" % request.cookie.include?('foo')
end end
error Faraday::Error::ClientError do error Faraday::Error::ClientError do
@ -280,7 +279,7 @@ alert('refusing to send a token to <%= target_origin.inspect %>, not whitelisted
var url = window.location.pathname + '/iframe' + window.location.search; var url = window.location.pathname + '/iframe' + window.location.search;
var img = document.createElement('img'); var img = document.createElement('img');
img.src = "<%= host %>/auth/set_cookie"; img.src = "<%= url('/auth/set_cookie') %>";
img.onload = function() { img.onload = function() {
console.log('img onload'); console.log('img onload');