Module: Datadog::AppSec::Contrib::Rails::Patcher

Defined in:

lib/datadog/appsec/contrib/rails/patcher.rb

Overview

Patcher for AppSec on Rails

Defined Under Namespace

Modules: ProcessActionPatch

Constant Summary

BEFORE_INITIALIZE_ONLY_ONCE_PER_APP =

Hash.new { |h, key| h[key] = Datadog::Core::Utils::OnlyOnce.new }

AFTER_INITIALIZE_ONLY_ONCE_PER_APP =

Hash.new { |h, key| h[key] = Datadog::Core::Utils::OnlyOnce.new }

Class Method Summary

• .add_middleware(app) ⇒ Object
• .after_initialize(app) ⇒ Object
• .before_initialize(app) ⇒ Object
• .include_middleware?(middleware, app) ⇒ Boolean
• .inspect_middlewares(app) ⇒ Object
• .patch ⇒ Object
• .patch_after_initialize ⇒ Object
• .patch_before_initialize ⇒ Object
• .patch_process_action ⇒ Object
• .patched? ⇒ Boolean
• .setup_security ⇒ Object
• .target_version ⇒ Object

Class Method Details

.add_middleware(app) ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 56

def add_middleware(app)
  # Add trace middleware
  if include_middleware?(Datadog::Tracing::Contrib::Rack::TraceMiddleware, app)
    app.middleware.insert_after(
      Datadog::Tracing::Contrib::Rack::TraceMiddleware,
      Datadog::AppSec::Contrib::Rack::RequestMiddleware
    )
  else
    app.middleware.insert_before(0, Datadog::AppSec::Contrib::Rack::RequestMiddleware)
  end
end

.after_initialize(app) ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 137

def after_initialize(app)
  AFTER_INITIALIZE_ONLY_ONCE_PER_APP[app].run do
    # Finish configuring the tracer after the application is initialized.
    # We need to wait for some things, like application name, middleware stack, etc.
    setup_security
    inspect_middlewares(app)
  end
end

.before_initialize(app) ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 47

def before_initialize(app)
  BEFORE_INITIALIZE_ONLY_ONCE_PER_APP[app].run do
    # Middleware must be added before the application is initialized.
    # Otherwise the middleware stack will be frozen.
    add_middleware(app) if Datadog.configuration.tracing[:rails][:middleware]
    patch_process_action
  end
end

.include_middleware?(middleware, app) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 93

def include_middleware?(middleware, app)
  found = false

  # find tracer middleware reference in Rails::Configuration::MiddlewareStackProxy
  app.middleware.instance_variable_get(:@operations).each do |operation|
    args = case operation
    when Array
      # rails 5.2
      _op, args = operation
      args
    when Proc
      if operation.binding.local_variables.include?(:args)
        # rails 6.0, 6.1
        operation.binding.local_variable_get(:args)
      else
        # rails 7.0 uses ... to pass args
        args_getter = Class.new do
          def method_missing(_op, *args) # standard:disable Style/MissingRespondToMissing
            args
          end
        end.new
        operation.call(args_getter)
      end
    else
      # unknown, pass through
      []
    end

    found = true if args.include?(middleware)
  end

  found
end

.inspect_middlewares(app) ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 127

def inspect_middlewares(app)
  Datadog.logger.debug { +'Rails middlewares: ' << app.middleware.map(&:inspect).inspect }
end

.patch ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 33

def patch
  Gateway::Watcher.watch
  patch_before_initialize
  patch_after_initialize

  Patcher.instance_variable_set(:@patched, true)
end

.patch_after_initialize ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 131

def patch_after_initialize
  ::ActiveSupport.on_load(:after_initialize) do
    Datadog::AppSec::Contrib::Rails::Patcher.after_initialize(self)
  end
end

.patch_before_initialize ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 41

def patch_before_initialize
  ::ActiveSupport.on_load(:before_initialize) do
    Datadog::AppSec::Contrib::Rails::Patcher.before_initialize(self)
  end
end

.patch_process_action ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 89

def patch_process_action
  ::ActionController::Metal.prepend(ProcessActionPatch)
end

.patched? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 25

def patched?
  Patcher.instance_variable_get(:@patched)
end

.setup_security ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 146

def setup_security
  Datadog::AppSec::Contrib::Rails::Framework.setup
end

.target_version ⇒ Object

# File 'lib/datadog/appsec/contrib/rails/patcher.rb', line 29

def target_version
  Integration.version
end