| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 |
- # frozen_string_literal: true
- class ContentSecurityPolicy
- def base_host
- Rails.configuration.x.web_domain
- end
- def assets_host
- url_from_configured_asset_host || url_from_base_host
- end
- def media_hosts
- [assets_host, cdn_host_value].compact
- end
- private
- def url_from_configured_asset_host
- Rails.configuration.action_controller.asset_host
- end
- def cdn_host_value
- s3_alias_host || s3_cloudfront_host || azure_alias_host || s3_hostname_host
- end
- def url_from_base_host
- host_to_url(base_host)
- end
- def host_to_url(host_string)
- uri_from_configuration_and_string(host_string) if host_string.present?
- end
- def s3_alias_host
- host_to_url ENV.fetch('S3_ALIAS_HOST', nil)
- end
- def s3_cloudfront_host
- host_to_url ENV.fetch('S3_CLOUDFRONT_HOST', nil)
- end
- def azure_alias_host
- host_to_url ENV.fetch('AZURE_ALIAS_HOST', nil)
- end
- def s3_hostname_host
- host_to_url ENV.fetch('S3_HOSTNAME', nil)
- end
- def uri_from_configuration_and_string(host_string)
- Addressable::URI.parse("#{host_protocol}://#{host_string}").tap do |uri|
- uri.path += '/' unless uri.path.blank? || uri.path.end_with?('/')
- end.to_s
- end
- def host_protocol
- Rails.configuration.x.use_https ? 'https' : 'http'
- end
- end
|
