Merge branch 'igor-safelist-github-ips' into igor-update-rack-attack

2016-07-05 13:03:05 +02:00 · 2016-07-05 13:03:05 +02:00 · 50b78a1458
commit 50b78a1458
parent d84d3983b8 79c14d697e
1 changed files with 3 additions and 1 deletions
--- a/lib/travis/api/attack.rb
+++ b/lib/travis/api/attack.rb
@ -32,13 +32,15 @@ class Rack::Attack
    "/auth/post_message/iframe"
  ]

+  GITHUB_CIDR = NetAddr::CIDR.create('192.30.252.0/22')
+
  safelist('safelist build status images') do |request|
    /\.(png|svg)$/.match(request.path)
  end

  # https://help.github.com/articles/what-ip-addresses-does-github-use-that-i-should-safelist/
  safelist('safelist anything coming from github') do |request|
-    request.ip && NetAddr::CIDR.create('192.30.252.0/22').contains?(request.ip)
+    request.ip && GITHUB_CIDR.contains?(request.ip)
  end

  ####