Scott Smith, profile picture
Uploaded byScott Smith
325 views

Weird Ruby

This document discusses various Ruby expressions and methods used in the Rack::Attack gem for throttling web requests. It contains example code snippets and asks questions about specific expressions to understand what they are doing. These include questions about operator precedence, instance vs class variables and methods, and whether blocks are being called on instances or classes.

Embed presentation

Download to read offline
Weird Ruby
Scott Smith · https://github.com/oldfartdeveloper · Twitter @ofd · Blog http://blog.scottnelsonsmith.com Co-run · OC-Ruby · Ember-SC
Rack Attack · A Gem: rackattack · Ruby expressions I've never seen before
Can you tell me what they mean? Here goes!
Operator Method with arguments
module Rack class Attack class Check attr_reader :name, :block, :type def initialize(name, options = {}, block) @name, @block = name, block @type = options.fetch(:type, nil) end # Wha'? What's this do? def [](req) block[req].tap {|match| if match req.env["rack.attack.matched"] = name req.env["rack.attack.match_type"] = type Rack::Attack.instrument(req) end } end end end end
"or" and "," operators · Precedences? · Parenthesis (or lack of them)
module Rack class Attack class Fail2Ban class << self def filter(discriminator, options) # Wha? What's happening here? bantime = options[:bantime] or raise ArgumentError, "Must pass bantime option" findtime = options[:findtime] or raise ArgumentError, "Must pass findtime option" maxretry = options[:maxretry] or raise ArgumentError, "Must pass maxretry option" ...
Don' Do Nuttin'
module Rack class Attack class Request < ::Rack::Request end end end
instance or class var?
class Rack::Attack ... class << self # Wha? These instance or class accessors? attr_accessor :notifier, :blacklisted_response, :throttled_response def whitelist(name, &block) self.whitelists[name] = Whitelist.new(name, block) end ... # Wha? Is @whitelists an instance or class var? def whitelists; @whitelists ||= {}; end ... end ...
Is it instance or class method?
Within Rack::Attack we have this instance method def call(env) req = Rack::Attack::Request.new(env) # Wha? Is #whitelisted? an instance or class method? if whitelisted?(req) @app.call(env) elsif blacklisted?(req) self.class.blacklisted_response[env] elsif throttled?(req) self.class.throttled_response[env] else tracked?(req) @app.call(env) end end
Nudity In a class but not in a method
class Rack::Attack # Wha? throttle('req/ip', :limit => (ENV['RACKATTACK_LIMIT'].present? ? Integer(ENV['RACKATTACK_LIMIT']) : 300), :period => (ENV['RACKATTACK_PERIOD'].present? ? Integer(ENV['RACKATTACK_PERIOD']) : 1.minutes)) do |req| req.ip end whitelist('from hedgeye office') do |req| if (whitelist_pattern = ENV['WHITELIST_IP_PATTERN']) && !whitelist_pattern.blank? Rails.logger.info("#{req.ip} =~ /#{whitelist_pattern}/ #=> #{req.ip =~ /#{whitelist_pattern}/}") req.ip =~ /#{whitelist_pattern}/ end end # https://www.pivotaltracker.com/n/projects/414867/stories/76620326 blacklist('block bad user agent request from Chinese bot') do |req| offset = req.user_agent =~ /WEasouSpiderW/ !offset.nil? && offset >= 0 end self.throttled_response = lambda do |env| [ 503, # status {}, # headers ['']] # body end end end
SCORE 7 out of 7 - god otherwise: mortal Thanks for playing

More Related Content

ODP
10 Things I Hate About Scala
byMeir Maor
 
PDF
Effective Scala (JavaDay Riga 2013)
bymircodotta
 
PDF
Metaprogramming in Ruby
byNicolò Calcavecchia
 
PDF
Effective Scala (SoftShake 2013)
bymircodotta
 
PPTX
Building native Android applications with Mirah and Pindah
byNick Plante
 
PPTX
Multimethods
byAman King
 
ODP
AST Transformations
byHamletDRC
 
ODP
Ast transformations
byHamletDRC
 
10 Things I Hate About Scala
byMeir Maor
 
Effective Scala (JavaDay Riga 2013)
bymircodotta
 
Metaprogramming in Ruby
byNicolò Calcavecchia
 
Effective Scala (SoftShake 2013)
bymircodotta
 
Building native Android applications with Mirah and Pindah
byNick Plante
 
Multimethods
byAman King
 
AST Transformations
byHamletDRC
 
Ast transformations
byHamletDRC
 

What's hot

PPT
Java script unleashed
byDibyendu Tiwary
 
PDF
Introduction To Scala
byPeter Maas
 
PDF
Functional Java 8 - Introduction
byŁukasz Biały
 
PPT
Java findamentals1
byTodor Kolev
 
PPT
Java findamentals1
byTodor Kolev
 
PPT
Java findamentals1
byTodor Kolev
 
PDF
DIY: Analyse statique en Java
bylyonjug
 
ODP
Scala Reflection & Runtime MetaProgramming
byMeir Maor
 
PDF
Ponies and Unicorns With Scala
byTomer Gabel
 
PDF
Clean Code (why not do it)
byDiego Pacheco
 
PPT
Core Java
byBharat17485
 
PPT
Exception Handling1
byguest739536
 
PDF
Effective Scala: Programming Patterns
byVasil Remeniuk
 
KEY
1 the language essentials
byHonnix Liang
 
PPT
String and string manipulation
byShahjahan Samoon
 
PDF
Introduction to Type Script by Sam Goldman, SmartLogic
bySmartLogic
 
PDF
Introduction to Dart
byRameshNair6
 
PDF
Ruby 3の型解析に向けた計画
bymametter
 
KEY
Java Performance MythBusters
bySebastian Zarnekow
 
PDF
Java SE 8 best practices
byStephen Colebourne
 
Java script unleashed
byDibyendu Tiwary
 
Introduction To Scala
byPeter Maas
 
Functional Java 8 - Introduction
byŁukasz Biały
 
Java findamentals1
byTodor Kolev
 
Java findamentals1
byTodor Kolev
 
Java findamentals1
byTodor Kolev
 
DIY: Analyse statique en Java
bylyonjug
 
Scala Reflection & Runtime MetaProgramming
byMeir Maor
 
Ponies and Unicorns With Scala
byTomer Gabel
 
Clean Code (why not do it)
byDiego Pacheco
 
Core Java
byBharat17485
 
Exception Handling1
byguest739536
 
Effective Scala: Programming Patterns
byVasil Remeniuk
 
1 the language essentials
byHonnix Liang
 
String and string manipulation
byShahjahan Samoon
 
Introduction to Type Script by Sam Goldman, SmartLogic
bySmartLogic
 
Introduction to Dart
byRameshNair6
 
Ruby 3の型解析に向けた計画
bymametter
 
Java Performance MythBusters
bySebastian Zarnekow
 
Java SE 8 best practices
byStephen Colebourne
 

Viewers also liked

PPT
Lattelecom Optiskais internets
byEuroRSCGRiga
 
PPTX
Rock Paper Scissors Multiplayer Website in Elixir and Elm
byScott Smith
 
PPT
Lattelecom Optiskais internets RUS
byEuroRSCGRiga
 
PPTX
RFK - Leader
byDarlesa Cahoon
 
PPTX
Sales Presentation v1 copy
byEddie Twomey
 
PPTX
Sales presentation - Fastway Couriers
byEddie Twomey
 
PPT
Say yes to a meatless monday
byHockeyRef
 
PPT
Training Delivery Options
byDarlesa Cahoon
 
PDF
What About Elm?
byScott Smith
 
PPT
Stress powerpointbasic
byHockeyRef
 
PPTX
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
byIan Colle
 
DOCX
Current Eddie_Twomey C.V. 2015
byEddie Twomey
 
PPT
Facebook Ads
byPetr Slavík [LION]
 
PDF
Limites Problemas resueltos
byLeonardo Barmontec
 
Lattelecom Optiskais internets
byEuroRSCGRiga
 
Rock Paper Scissors Multiplayer Website in Elixir and Elm
byScott Smith
 
Lattelecom Optiskais internets RUS
byEuroRSCGRiga
 
RFK - Leader
byDarlesa Cahoon
 
Sales Presentation v1 copy
byEddie Twomey
 
Sales presentation - Fastway Couriers
byEddie Twomey
 
Say yes to a meatless monday
byHockeyRef
 
Training Delivery Options
byDarlesa Cahoon
 
What About Elm?
byScott Smith
 
Stress powerpointbasic
byHockeyRef
 
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
byIan Colle
 
Current Eddie_Twomey C.V. 2015
byEddie Twomey
 
Facebook Ads
byPetr Slavík [LION]
 
Limites Problemas resueltos
byLeonardo Barmontec
 

Recently uploaded

PDF
One Agent to Rule Them All - The Fellowship of AI Agents
byIvo Andreev
 
PPTX
List on Python Programming Language.pptx
byRICHARDALONSAGAY1
 
PDF
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
PDF
Revolutionising-SQL-Data-Modelling-with-SqlDBM.pdf
bySQL DBM
 
PDF
DSD-INT 2025 Stochastic flood event generation using wflow and a diffusion do...
byDeltares
 
PDF
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!
bydoquangminh962004
 
PPTX
SNG460-CNG489_Week6_3-7Nov25_Chp6-Part1.pptx
byberayseray382
 
PDF
DSD-INT 2025 Hydrological Modelling in Society Assumptions, Impacts, and Appl...
byDeltares
 
PPTX
Membershipanywhere - Digital Membership Card - USA , Canada, Australia.pptx
bymembershipanywhere
 
PPTX
Modern P&C Insurance Software for Smarter, Faster Operations.pptx
byInsurance Tech Services
 
PDF
BCS-FACS Peter Landin Semantics Seminar - Formal Methods: Whence and Whither?
byJonathan Bowen
 
PPTX
application security presentation 2 by harman
byharmanideapad
 
PDF
Jeremy Millul - An NYU Computer Science Graduate
byJeremy Millul
 
PPTX
Fast-tracking quality for hundreds applications with automated testing layers
byBogdan Plieshka
 
PDF
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
PDF
nsfconvertersoftwaretoconvertNSFtoPST.pdf
byNSF Converter Software
 
PPTX
SNG460-CNG489_Week8_17-21Nov25_Chp8-OdtuClass.pptx
byberayseray382
 
PPTX
AI Agent Overview - Why we need AI Agent
byAlokGope
 
PDF
Database Management Systems(DBMS):UNIT-II Relational Data Model BCA SEP SEM ...
byKuvempu University
 
PDF
DSD-INT 2025 Latest Developments for HydroMT and wflow - Meshgi
byDeltares
 
One Agent to Rule Them All - The Fellowship of AI Agents
byIvo Andreev
 
List on Python Programming Language.pptx
byRICHARDALONSAGAY1
 
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
Revolutionising-SQL-Data-Modelling-with-SqlDBM.pdf
bySQL DBM
 
DSD-INT 2025 Stochastic flood event generation using wflow and a diffusion do...
byDeltares
 
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!
bydoquangminh962004
 
SNG460-CNG489_Week6_3-7Nov25_Chp6-Part1.pptx
byberayseray382
 
DSD-INT 2025 Hydrological Modelling in Society Assumptions, Impacts, and Appl...
byDeltares
 
Membershipanywhere - Digital Membership Card - USA , Canada, Australia.pptx
bymembershipanywhere
 
Modern P&C Insurance Software for Smarter, Faster Operations.pptx
byInsurance Tech Services
 
BCS-FACS Peter Landin Semantics Seminar - Formal Methods: Whence and Whither?
byJonathan Bowen
 
application security presentation 2 by harman
byharmanideapad
 
Jeremy Millul - An NYU Computer Science Graduate
byJeremy Millul
 
Fast-tracking quality for hundreds applications with automated testing layers
byBogdan Plieshka
 
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
nsfconvertersoftwaretoconvertNSFtoPST.pdf
byNSF Converter Software
 
SNG460-CNG489_Week8_17-21Nov25_Chp8-OdtuClass.pptx
byberayseray382
 
AI Agent Overview - Why we need AI Agent
byAlokGope
 
Database Management Systems(DBMS):UNIT-II Relational Data Model BCA SEP SEM ...
byKuvempu University
 
DSD-INT 2025 Latest Developments for HydroMT and wflow - Meshgi
byDeltares
 

Weird Ruby

  • 1.
  • 2.
    Scott Smith ·https://github.com/oldfartdeveloper · Twitter @ofd · Blog http://blog.scottnelsonsmith.com Co-run · OC-Ruby · Ember-SC
  • 3.
    Rack Attack ·A Gem: rackattack · Ruby expressions I've never seen before
  • 4.
    Can you tellme what they mean? Here goes!
  • 5.
  • 6.
    module Rack classAttack class Check attr_reader :name, :block, :type def initialize(name, options = {}, block) @name, @block = name, block @type = options.fetch(:type, nil) end # Wha'? What's this do? def [](req) block[req].tap {|match| if match req.env["rack.attack.matched"] = name req.env["rack.attack.match_type"] = type Rack::Attack.instrument(req) end } end end end end
  • 7.
    "or" and "," operators · Precedences? · Parenthesis (or lack of them)
  • 8.
    module Rack classAttack class Fail2Ban class << self def filter(discriminator, options) # Wha? What's happening here? bantime = options[:bantime] or raise ArgumentError, "Must pass bantime option" findtime = options[:findtime] or raise ArgumentError, "Must pass findtime option" maxretry = options[:maxretry] or raise ArgumentError, "Must pass maxretry option" ...
  • 9.
  • 10.
    module Rack classAttack class Request < ::Rack::Request end end end
  • 11.
  • 12.
    class Rack::Attack ... class << self # Wha? These instance or class accessors? attr_accessor :notifier, :blacklisted_response, :throttled_response def whitelist(name, &block) self.whitelists[name] = Whitelist.new(name, block) end ... # Wha? Is @whitelists an instance or class var? def whitelists; @whitelists ||= {}; end ... end ...
  • 13.
    Is it instance or class method?
  • 14.
    Within Rack::Attack wehave this instance method def call(env) req = Rack::Attack::Request.new(env) # Wha? Is #whitelisted? an instance or class method? if whitelisted?(req) @app.call(env) elsif blacklisted?(req) self.class.blacklisted_response[env] elsif throttled?(req) self.class.throttled_response[env] else tracked?(req) @app.call(env) end end
  • 15.
    Nudity In aclass but not in a method
  • 16.
    class Rack::Attack #Wha? throttle('req/ip', :limit => (ENV['RACKATTACK_LIMIT'].present? ? Integer(ENV['RACKATTACK_LIMIT']) : 300), :period => (ENV['RACKATTACK_PERIOD'].present? ? Integer(ENV['RACKATTACK_PERIOD']) : 1.minutes)) do |req| req.ip end whitelist('from hedgeye office') do |req| if (whitelist_pattern = ENV['WHITELIST_IP_PATTERN']) && !whitelist_pattern.blank? Rails.logger.info("#{req.ip} =~ /#{whitelist_pattern}/ #=> #{req.ip =~ /#{whitelist_pattern}/}") req.ip =~ /#{whitelist_pattern}/ end end # https://www.pivotaltracker.com/n/projects/414867/stories/76620326 blacklist('block bad user agent request from Chinese bot') do |req| offset = req.user_agent =~ /WEasouSpiderW/ !offset.nil? && offset >= 0 end self.throttled_response = lambda do |env| [ 503, # status {}, # headers ['']] # body end end end
  • 17.
    SCORE 7 outof 7 - god otherwise: mortal Thanks for playing