74 lines
2.2 KiB
Rust
74 lines
2.2 KiB
Rust
use http::{HeaderName, HeaderValue};
|
|
|
|
use crate::{Error, Header};
|
|
|
|
/// `Access-Control-Allow-Credentials` header, part of
|
|
/// [CORS](http://www.w3.org/TR/cors/#access-control-allow-headers-response-header)
|
|
///
|
|
/// > The Access-Control-Allow-Credentials HTTP response header indicates whether the
|
|
/// > response to request can be exposed when the credentials flag is true. When part
|
|
/// > of the response to an preflight request it indicates that the actual request can
|
|
/// > be made with credentials. The Access-Control-Allow-Credentials HTTP header must
|
|
/// > match the following ABNF:
|
|
///
|
|
/// # ABNF
|
|
///
|
|
/// ```text
|
|
/// Access-Control-Allow-Credentials: "Access-Control-Allow-Credentials" ":" "true"
|
|
/// ```
|
|
///
|
|
/// Since there is only one acceptable field value, the header struct does not accept
|
|
/// any values at all. Setting an empty `AccessControlAllowCredentials` header is
|
|
/// sufficient. See the examples below.
|
|
///
|
|
/// # Example values
|
|
/// * "true"
|
|
///
|
|
/// # Examples
|
|
///
|
|
/// ```
|
|
/// use headers::AccessControlAllowCredentials;
|
|
///
|
|
/// let allow_creds = AccessControlAllowCredentials;
|
|
/// ```
|
|
#[derive(Clone, PartialEq, Eq, Debug)]
|
|
pub struct AccessControlAllowCredentials;
|
|
|
|
impl Header for AccessControlAllowCredentials {
|
|
fn name() -> &'static HeaderName {
|
|
&::http::header::ACCESS_CONTROL_ALLOW_CREDENTIALS
|
|
}
|
|
|
|
fn decode<'i, I: Iterator<Item = &'i HeaderValue>>(values: &mut I) -> Result<Self, Error> {
|
|
values
|
|
.next()
|
|
.and_then(|value| {
|
|
if value == "true" {
|
|
Some(AccessControlAllowCredentials)
|
|
} else {
|
|
None
|
|
}
|
|
})
|
|
.ok_or_else(Error::invalid)
|
|
}
|
|
|
|
fn encode<E: Extend<HeaderValue>>(&self, values: &mut E) {
|
|
values.extend(::std::iter::once(HeaderValue::from_static("true")));
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::super::test_decode;
|
|
use super::*;
|
|
|
|
#[test]
|
|
fn allow_credentials_is_case_sensitive() {
|
|
let allow_header = test_decode::<AccessControlAllowCredentials>(&["true"]);
|
|
assert!(allow_header.is_some());
|
|
|
|
let allow_header = test_decode::<AccessControlAllowCredentials>(&["True"]);
|
|
assert!(allow_header.is_none());
|
|
}
|
|
}
|