OSDN Git Service

(root) / newslash / newslash.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: b40e20c)
add Hsts Plugin
authorhylom <hylom@users.sourceforge.jp>
Tue, 24 Oct 2017 09:49:37 +0000 (18:49 +0900)
committerhylom <hylom@users.sourceforge.jp>
Tue, 24 Oct 2017 09:49:37 +0000 (18:49 +0900)
src/newslash_web/lib/Newslash/Plugin/Hsts.pm [new file with mode: 0644] patch | blob
src/newslash_web/lib/Newslash/Web.pm patch | blob | history

diff --git a/src/newslash_web/lib/Newslash/Plugin/Hsts.pm b/src/newslash_web/lib/Newslash/Plugin/Hsts.pm
new file mode 100644 (file)
index 0000000..b6942fc
--- /dev/null
+++ b/src/newslash_web/lib/Newslash/Plugin/Hsts.pm
@@ -0,0 +1,24 @@
+package Newslash::Plugin::Hsts;
+use Mojo::Base 'Mojolicious::Plugin';
+use Mojo::URL;
+
+use constant MAX_AGE_DEFAULT => 7776000;
+
+sub register {
+    my ($self, $app, $conf) = @_;
+    $conf ||= {};
+    my $_conf = $app->config('Htst') || {};
+    my $opts = { %$conf, %$_conf };
+    my $max_age = defined $opts->{max_age} ? $opts->{max_age} : MAX_AGE_DEFAULT;
+
+    $app->hook(before_render => sub {
+                   my ($c, $args) = @_;
+                   return if !$c->req->is_secure;
+                   return if $c->tx->is_websocket;
+                   $c->res->headers->add('Strict-Transport-Security' => "max-age=$max_age");
+               });
+}
+
+
+
+1;
diff --git a/src/newslash_web/lib/Newslash/Web.pm b/src/newslash_web/lib/Newslash/Web.pm
index e6c3e3b..7157404 100644 (file)
--- a/src/newslash_web/lib/Newslash/Web.pm
+++ b/src/newslash_web/lib/Newslash/Web.pm
@@ -130,6 +130,9 @@ sub startup {
     # set canocal (for test.srad.jp)
     $app->plugin('Newslash::Plugin::Canonical');
 
+    # use HSTS
+    $app->plugin('Newslash::Plugin::Hsts');
+
     # Event Que
     $app->plugin('Newslash::Plugin::EventQue');
 
newslash
About OSDN
Find Software
Develop Software
Help