diff --git a/lib/rack/attack.rb b/lib/rack/attack.rb index ad668756..afb5b088 100644 --- a/lib/rack/attack.rb +++ b/lib/rack/attack.rb @@ -96,8 +96,9 @@ def initialize(app) end def call(env) - return @app.call(env) unless self.class.enabled + return @app.call(env) if !self.class.enabled || env["rack.attack.called"] + env["rack.attack.called"] = true env['PATH_INFO'] = PathNormalizer.normalize_path(env['PATH_INFO']) request = Rack::Attack::Request.new(env) diff --git a/lib/rack/attack/railtie.rb b/lib/rack/attack/railtie.rb index ceed9f7d..398ac6c2 100644 --- a/lib/rack/attack/railtie.rb +++ b/lib/rack/attack/railtie.rb @@ -3,17 +3,9 @@ module Rack class Attack class Railtie < ::Rails::Railtie - initializer 'rack.attack.middleware', after: :load_config_initializers, before: :build_middleware_stack do |app| + initializer "rack-attack.middleware" do |app| if Gem::Version.new(::Rails::VERSION::STRING) >= Gem::Version.new("5.1") - middlewares = app.config.middleware - operations = middlewares.send(:operations) + middlewares.send(:delete_operations) - - use_middleware = operations.none? do |operation| - middleware = operation[1] - middleware.include?(Rack::Attack) - end - - middlewares.use(Rack::Attack) if use_middleware + app.middleware.use(Rack::Attack) end end end diff --git a/spec/acceptance/rails_middleware_spec.rb b/spec/acceptance/rails_middleware_spec.rb index 2c69b7e1..8e7b014a 100644 --- a/spec/acceptance/rails_middleware_spec.rb +++ b/spec/acceptance/rails_middleware_spec.rb @@ -18,12 +18,6 @@ assert_equal 1, @app.middleware.count(Rack::Attack) end - it "is not added when it was added explicitly" do - @app.config.middleware.use(Rack::Attack) - @app.initialize! - assert_equal 1, @app.middleware.count(Rack::Attack) - end - it "is not added when it was explicitly deleted" do @app.config.middleware.delete(Rack::Attack) @app.initialize! diff --git a/spec/spec_helper.rb b/spec/spec_helper.rb index 9649be81..10f856bf 100644 --- a/spec/spec_helper.rb +++ b/spec/spec_helper.rb @@ -41,6 +41,8 @@ def app Rack::Builder.new do # Use Rack::Lint to test that rack-attack is complying with the rack spec use Rack::Lint + # Intentionally added twice to test idempotence property + use Rack::Attack use Rack::Attack use Rack::Lint