EvanHahn/crystal-helmet

Stars
28
Rank 853,600 (Top 18 %)
Language
Crystal
License
MIT License
Created about 8 years ago
Updated over 6 years ago

EvanHahn/crystal-helmet

EvanHahn

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

a port of the Node Helmet module to the Crystal programming language

Helmet

Helmet helps you secure your Crystal web apps by setting various HTTP headers. It's not a silver bullet, but it can help!

This is a port of the Node.js version of Helmet.

Installation

Add this to your application's shard.yml:

dependencies:
  helmet:
    github: EvanHahn/crystal-helmet

Usage

require "http/server"
require "helmet"

server = HTTP::Server.new("0.0.0.0", 8080,
  [
    Helmet::DNSPrefetchControllerHandler.new,
    Helmet::FrameGuardHandler.new,
    Helmet::InternetExplorerNoOpenHandler.new,
    Helmet::NoSniffHandler.new,
    Helmet::StrictTransportSecurityHandler.new(7.day),
    Helmet::XSSFilterHandler.new,
  ]) do |context|
  context.response.content_type = "text/plain"
  context.response.print "Hello world!"
end

server.listen

Helmet is really just a collection of smaller handlers that set HTTP headers. See them listed in the example above and in the documentation.

Contributing

Fork it (https://github.com/EvanHahn/crystal-helmet/fork)
Create your branch (git checkout -b my-new-feature)
Commit your changes (git commit -am 'Add XYZ')
Push to the branch (git push origin my-new-feature)
Create a new pull request

Contributors

Evan Hahn - creator, maintainer
Du Ba Thach - #3

HumanizeDuration.js

361000 becomes "6 minutes, 1 second"

Express.js-in-Action-code

Code from "Express.js in Action", a little book I wrote

ffmpeg-buddy

a lil webpage that helps you write ffmpeg commands

brainfuck-web-app

a web app written in Brainfuck that returns your user-agent to you

English-text-highlighting

experiment: what if English text was highlighted

ScriptInclude

asynchronously load .js

dotfiles

Moved to https://gitlab.com/EvanHahn/dotfiles.

two-factor-auth-list

a list of websites supporting two-factor authentication

deep-proxy

obj.very.deeply.nested.property.isNow = 'possible'

haha.sh

a bash script that generates hearty laughter

tiny-coming-soon-page

a tiny "coming soon" page

Unity-RTS-camera

A little script for RTS games in Unity. Abandoned. Add an issue if you want to take over!

airtable-cli

a command line interface to Airtable (WIP)

wren-please

Assertion library for Wren.

iscp

interactive scp

arraywrap.js

source moved to https://git.sr.ht/~evanhahn/arraywrap.js

check-ecmascript-version-compatibility

Test files for ES5 compatibility

functional-state-machine.js

a tiny javascript state machine that's just a function

SnackWrap

after changing a file, run a command. Abandoned. Add an issue if you want to take over!

js13kgames-2013

my entry to js13kgames 2013

atom-language-brainfuck

Brainfuck syntax for Atom

evanhahn-dot-com

Repo now lives on Sourcehut

opt-out-list

Opt out of ad tracking on various websites

cyborg.txt

robots.txt utilities for Node

canvas-to-favicon

take a 16x16 canvas and send it to the favicon

node-persisted-json-object

make a normal object persist as JSON

MouseTracker.js

keep mouse.x and mouse.y updated

pomo

a command-line Pomodoro timer

percentage.js

Project is now at https://git.sr.ht/~evanhahn/percentage.js

JSCPP

Port some JavaScript to C++.

Gribbagrab

load them resources. Abandoned. Contact me if you want to take over!

Evan-Hahn-Project-Skeleton

PRETTY OUTDATED YEAH

BRAINFUCK2000

A BRAINFUCK INTERPRETER FOR THE STARS

flood

my take on a Video Game

stackoverflow.com-q-30337525-804100

answering http://stackoverflow.com/q/30337525/804100

braintree-hosted-fields-bootstrap

An unofficial jQuery plugin for Braintree's Hosted Fields and the Bootstrap framework.

code-doodles

doodles made of code

user-agent-bag

RFC-respecting User-Agent serialization and deserialization

setAttributes

call .setAttribute on a DOM node more easily

scrabbler

a python scrabble solver

QRIt

Simple webpage that generates QR codes.

coinflip.js

randomly return true or false

image-to-table

trip-to-carbon-xyz

a light wrapper around triptocarbon.xyz

rename

ring-secure-headers

WIP: Ring (Clojure) security with HTTP headers.

wren-querystring

querystring parser/stringifier for Wren

luluwrite

Pastebin + Medium. Abandoned. Add an issue if you want to take over!

Recurry.js

abandoned. check out rrule.js

is-password-ok

is the password kinda ok

Content-Security-Policy-sandbox

a lil app for playing around with CSP

ring-tones

this name is a pun

hide-news-feed

hide the Facebook news feed in any browser. This project has been abandoned—please open an issue if you would like to take it over.

wren-vector3d

3D vectors for Wren

Fiesta.js

No longer maintained! See issues if you want to take over.

expecting.js

No longer maintained! See issues if you want to take over.

ticker

a lightweight wrapper on requestAnimationFrame

blooming-onion

lildash

NO LONGER MAINTAINED. Use 101.js.

airtable-clj

Clojure wrapper around the Airtable API (WIP)

when-will-breath-of-the-wild-be-released

i want to know when the next Zelda comes out

Pingaling-for-Chrome

Monitor your network status from Chrome.

js1k-2016

mailtolink.js

make mailto: links

clone-github

clone all of a GitHub user's repositories

toki-pona-to-hex

umpm

abandoned package manager for University of Michigan students. Add an issue if you want to take over the project!

startInterval

setInterval that starts immediately. made for a tutorial

who-are-you-on-facebook

proof of concept (WIP)

gopher-node-menudle

generate Gopher menus with Node. Abandoned. Add an issue if you want to take over!

Aubrey

turn any key-value store into a powerful collection (WIP)

MiniClass

tiny JavaScript classes. Abandoned. Add an issue if you want to take over!

JSTypes

Small JavaScript library that deals with variable types. Abandoned. Add an issue if you want to take over!

Circles-1K

Pretty circles in 1 kilobyte of JavaScript.

el-rando

command line tool to generate random stuff

js1k-2015

pietime. won 10th place somehow

us-military-dj-names

us military operations make great DJ names

ExtJS-vs.-Sencha-Touch

Comparing the similar APIs of Sencha Touch and ExtJS.

patterns

make simple patterns that could be on a hipster shirt

Chucklehuck

Playing around with ChucK. Don't mind me.

truth-table

generate truth tables from the command line. made for a class

miniexpress

Express.js in under 50 lines. not for real use

nimi-mute

A Toki Pona dictionary.

xml-to-text

in goes the XML, out comes the plain text

node-html-pack

inline styles and scripts and minify everything

oneatatime

don't execute an async function again until it's done (WIP)

js1k-2014

"dragon scales", my entry to js1k 2014

time-in-korea

a simple Android app that tells you the time in South Korea. Abandoned. Add an issue if you want to take over!

import-pinboard-to-standard-notes

a little web app to import Pinboard bookmarks into Standard Notes