Permalink
Browse files

added rack-protection

  • Loading branch information...
hsbt committed Feb 19, 2014
1 parent e229a18 commit 62c696a94f5ec398f373e53cd6c89712c8d282f4
Showing with 12 additions and 4 deletions.
  1. +2 −1 Gemfile
  2. +6 −3 Gemfile.lock
  3. +4 −0 config.ru
View
@@ -1,5 +1,5 @@
source "https://rubygems.org"
-ruby '2.1.0'
+ruby '2.1.0' unless ENV['DEV']
gem 'rake', '~> 10.0'
gem 'jekyll', '>= 1.0.2'
@@ -8,6 +8,7 @@ gem 'kramdown'
gem 'passenger'
gem 'rack-jekyll'
gem 'rack-rewrite'
+gem 'rack-protection'
group :development do
gem 'spidr', '~> 0.4'
View
@@ -5,7 +5,7 @@ GEM
classifier (1.3.4)
fast-stemmer (>= 1.0.0)
colorator (0.1)
- commander (4.1.5)
+ commander (4.1.6)
highline (~> 1.6.11)
daemon_controller (1.1.8)
fast-stemmer (1.0.2)
@@ -22,7 +22,7 @@ GEM
redcarpet (~> 2.3.0)
safe_yaml (~> 0.9.7)
toml (~> 0.1.0)
- kramdown (1.3.1)
+ kramdown (1.3.2)
liquid (2.5.5)
listen (1.3.1)
rb-fsevent (>= 0.9.3)
@@ -46,6 +46,8 @@ GEM
rack-jekyll (0.4.1)
jekyll (>= 0.12.0, < 2.0)
rack (~> 1.5.0)
+ rack-protection (1.5.2)
+ rack
rack-rewrite (1.5.0)
rake (10.1.1)
rb-fsevent (0.9.4)
@@ -57,7 +59,7 @@ GEM
safe_yaml (0.9.7)
spidr (0.4.1)
nokogiri (~> 1.3)
- toml (0.1.0)
+ toml (0.1.1)
parslet (~> 1.5.0)
yajl-ruby (1.1.0)
@@ -69,6 +71,7 @@ DEPENDENCIES
kramdown
passenger
rack-jekyll
+ rack-protection
rack-rewrite
rake (~> 10.0)
spidr (~> 0.4)
View
@@ -1,5 +1,6 @@
require 'rack/jekyll'
require 'rack/rewrite'
+require 'rack/protection'
use Rack::CommonLogger
@@ -75,4 +76,7 @@ use Rack::Rewrite do
r302 %r{^/pt/bibliotecas(.*)$}, "/pt/libraries$1"
end
+use Rack::Protection::HttpOrigin
+use Rack::Protection::FrameOptions
+
run Rack::Jekyll.new

0 comments on commit 62c696a

Please sign in to comment.