Add encrypted cookie store

author: Santiago Pastorino <santiago@wyeworks.com> 2012-10-30 18:12:23 -0200
committer: Santiago Pastorino <santiago@wyeworks.com> 2012-11-03 14:57:54 -0200
commit: fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1 (patch)
tree: 5b106a4db62c0e13f0ace00c8785e48b78b0d070 /actionpack/lib
parent: 38c40dbbc1de5837a05d762be95e69105acc929c (diff)
download: rails-fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1.tar.gz
rails-fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1.tar.bz2
rails-fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1.zip
2 files changed, 25 insertions, 7 deletions
diff --git a/actionpack/lib/action_dispatch.rb b/actionpack/lib/action_dispatch.rb
index 0ec355246e..ab1755acd5 100644
--- a/actionpack/lib/action_dispatch.rb
+++ b/actionpack/lib/action_dispatch.rb
@@ -81,10 +81,11 @@ module ActionDispatch
   end
 
   module Session
-    autoload :AbstractStore, 'action_dispatch/middleware/session/abstract_store'
-    autoload :CookieStore,   'action_dispatch/middleware/session/cookie_store'
-    autoload :MemCacheStore, 'action_dispatch/middleware/session/mem_cache_store'
-    autoload :CacheStore,    'action_dispatch/middleware/session/cache_store'
+    autoload :AbstractStore,        'action_dispatch/middleware/session/abstract_store'
+    autoload :CookieStore,          'action_dispatch/middleware/session/cookie_store'
+    autoload :EncryptedCookieStore, 'action_dispatch/middleware/session/cookie_store'
+    autoload :MemCacheStore,        'action_dispatch/middleware/session/mem_cache_store'
+    autoload :CacheStore,           'action_dispatch/middleware/session/cache_store'
   end
 
   mattr_accessor :test_app
diff --git a/actionpack/lib/action_dispatch/middleware/session/cookie_store.rb b/actionpack/lib/action_dispatch/middleware/session/cookie_store.rb
index 3f28ea75ef..039846688e 100644
--- a/actionpack/lib/action_dispatch/middleware/session/cookie_store.rb
+++ b/actionpack/lib/action_dispatch/middleware/session/cookie_store.rb
@@ -57,8 +57,7 @@ module ActionDispatch
       def unpacked_cookie_data(env)
         env["action_dispatch.request.unsigned_session_cookie"] ||= begin
           stale_session_check! do
-            request = ActionDispatch::Request.new(env)
-            if data = request.cookie_jar.signed[@key]
+            if data = cookie_jar(env)[@key]
               data.stringify_keys!
             end
             data || {}
@@ -72,8 +71,26 @@ module ActionDispatch
       end
 
       def set_cookie(env, session_id, cookie)
+        cookie_jar(env)[@key] = cookie
+      end
+
+      def get_cookie
+        cookie_jar(env)[@key]
+      end
+
+      def cookie_jar(env)
+        request = ActionDispatch::Request.new(env)
+        request.cookie_jar.signed
+      end
+    end
+
+    class EncryptedCookieStore < CookieStore
+
+      private
+
+      def cookie_jar(env)
         request = ActionDispatch::Request.new(env)
-        request.cookie_jar.signed[@key] = cookie
+        request.cookie_jar.encrypted
       end
     end
   end
author	Santiago Pastorino <santiago@wyeworks.com>	2012-10-30 18:12:23 -0200
committer	Santiago Pastorino <santiago@wyeworks.com>	2012-11-03 14:57:54 -0200
commit	fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1 (patch)
tree	5b106a4db62c0e13f0ace00c8785e48b78b0d070 /actionpack/lib
parent	38c40dbbc1de5837a05d762be95e69105acc929c (diff)
download	rails-fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1.tar.gz rails-fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1.tar.bz2 rails-fb0cea2b8cf61cde1aa4c640b56e896fbe308aa1.zip