utils.rb

Path: lib/rack/utils.rb
Last Update: Wed Mar 13 10:25:03 +0100 2013

Required files

fileutils   set   tempfile   rack/multipart   time   rack/backports/uri/common_18   rack/backports/uri/common_192   rack/backports/uri/common_193   uri/common  

Methods

Constants

ESCAPE_HTML = { "&" => "&amp;", "<" => "&lt;", ">" => "&gt;", "'" => "&#x27;", '"' => "&quot;", "/" => "&#x2F;"
ESCAPE_HTML_PATTERN = Regexp.union(*ESCAPE_HTML.keys)
ESCAPE_HTML_PATTERN = /#{Regexp.union(*ESCAPE_HTML.keys)}/n   On 1.8, there is a kcode = ‘u’ bug that allows for XSS otherwhise TODO doesn‘t apply to jruby, so a better condition above might be preferable?
HTTP_STATUS_CODES = { 100 => 'Continue', 101 => 'Switching Protocols', 102 => 'Processing', 200 => 'OK', 201 => 'Created', 202 => 'Accepted', 203 => 'Non-Authoritative Information', 204 => 'No Content', 205 => 'Reset Content', 206 => 'Partial Content', 207 => 'Multi-Status', 208 => 'Already Reported', 226 => 'IM Used', 300 => 'Multiple Choices', 301 => 'Moved Permanently', 302 => 'Found', 303 => 'See Other', 304 => 'Not Modified', 305 => 'Use Proxy', 306 => 'Reserved', 307 => 'Temporary Redirect', 308 => 'Permanent Redirect', 400 => 'Bad Request', 401 => 'Unauthorized', 402 => 'Payment Required', 403 => 'Forbidden', 404 => 'Not Found', 405 => 'Method Not Allowed', 406 => 'Not Acceptable', 407 => 'Proxy Authentication Required', 408 => 'Request Timeout', 409 => 'Conflict', 410 => 'Gone', 411 => 'Length Required', 412 => 'Precondition Failed', 413 => 'Request Entity Too Large', 414 => 'Request-URI Too Long', 415 => 'Unsupported Media Type', 416 => 'Requested Range Not Satisfiable', 417 => 'Expectation Failed', 422 => 'Unprocessable Entity', 423 => 'Locked', 424 => 'Failed Dependency', 425 => 'Reserved for WebDAV advanced collections expired proposal', 426 => 'Upgrade Required', 427 => 'Unassigned', 428 => 'Precondition Required', 429 => 'Too Many Requests', 430 => 'Unassigned', 431 => 'Request Header Fields Too Large', 500 => 'Internal Server Error', 501 => 'Not Implemented', 502 => 'Bad Gateway', 503 => 'Service Unavailable', 504 => 'Gateway Timeout', 505 => 'HTTP Version Not Supported', 506 => 'Variant Also Negotiates (Experimental)', 507 => 'Insufficient Storage', 508 => 'Loop Detected', 509 => 'Unassigned', 510 => 'Not Extended', 511 => 'Network Authentication Required'   Every standard HTTP code mapped to the appropriate message. Generated with: irb -ropen-uri -rnokogiri > Nokogiri::XML(open("www.iana.org/assignments/http-status-codes/http-status-codes.xml")).css("record").each{|r|
        puts "#{r.css('value').text} => '#{r.css('description').text}'"}
STATUS_WITH_NO_ENTITY_BODY = Set.new((100..199).to_a << 204 << 205 << 304)   Responses with HTTP status codes that should not have an entity body
SYMBOL_TO_STATUS_CODE = Hash[*HTTP_STATUS_CODES.map { |code, message| [message.downcase.gsub(/\s|-/, '_').to_sym, code]
Multipart = Rack::Multipart

Public Instance methods

Parses the "Range:" header, if present, into an array of Range objects. Returns nil if the header is missing or syntactically invalid. Returns an empty array if none of the ranges are satisfiable.

Escape ampersands, brackets and quotes to their HTML/XML entities.

Modified version of stdlib time.rb Time#rfc2822 to use ’%d-%b-%Y’ instead of ’% %b %Y’. It assumes that the time is in GMT to comply to the RFC 2109.

NOTE: I‘m not sure the RFC says it requires GMT, but is ambigous enough that I‘m certain someone implemented only that option. Do not use %a and %b from Time.strptime, it would use localized names for weekday and month.

Constant time string comparison.

[Validate]