SecurityHeaderControllerExtension::onAfterInit() - Code Metrics - guttmann/silverstripe-security-headers - Measure and Improve Code Quality continuously with Scrutinizer

SecurityHeaderControllerExtension::onAfterInit() B
last analyzed 2018-03-01 02:27 UTC

↳ Parent: SecurityHeaderControllerExtension

Complexity

Conditions	6
Paths	5

Size

Total Lines	21
Code Lines	11

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	15
CRAP Score	6

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
c	1
b	0
f	0
dl	0
loc	21
ccs	15
cts	15
cp	1
rs	8.7624
cc	6
eloc	11
nc	5
nop	0
crap	6

<?php

namespace Guttmann\SilverStripe;

use Config;
use Extension;

class SecurityHeaderControllerExtension extends Extension
{

    public function onAfterInit()
    {
        $response = $this->owner->getResponse();

        $headersToSend = (array) Config::inst()->get('Guttmann\SilverStripe\SecurityHeaderControllerExtension', 'headers');
        $xHeaderMap = (array) Config::inst()->get('Guttmann\SilverStripe\SecurityHeaderControllerExtension', 'x_headers_map');

        foreach ($headersToSend as $header => $value) {
            if ($header === 'Content-Security-Policy' && !$this->browserHasWorkingCSPImplementation()) {
                continue;
            }

            $response->addHeader($header, $value);

            if (isset($xHeaderMap[$header])) {
                foreach ($xHeaderMap[$header] as $xHeader) {
                    $response->addHeader($xHeader, $value);
                }
            }
        }
    }

    private function browserHasWorkingCSPImplementation()
    {
        $agent = strtolower(
            $this->owner->getRequest()->getHeader('User-Agent')
        );

        if (strpos($agent, 'safari') === false) {
            return true;
        }

        $split = explode('version/', $agent);

        if (!isset($split[1])) {
            return true;
        }

        $version = trim($split[1]);
        $versions = explode('.', $version);

        if (isset($versions[0]) && $versions[0] <= 5) {
            return false;
        }

        return true;
    }

}


1		<?php
2
3		namespace Guttmann\SilverStripe;
4
5		use Config;
6		use Extension;
7
8		class SecurityHeaderControllerExtension extends Extension
9		{
10
11	2	public function onAfterInit()
12		{
13	2	$response = $this->owner->getResponse();
14
15	2	$headersToSend = (array) Config::inst()->get('Guttmann\SilverStripe\SecurityHeaderControllerExtension', 'headers');
16	2	$xHeaderMap = (array) Config::inst()->get('Guttmann\SilverStripe\SecurityHeaderControllerExtension', 'x_headers_map');
17
18	2	foreach ($headersToSend as $header => $value) {
19	2	if ($header === 'Content-Security-Policy' && !$this->browserHasWorkingCSPImplementation()) {
20	1	continue;
21		}
22
23	2	$response->addHeader($header, $value);
24
25	2	if (isset($xHeaderMap[$header])) {
26	2	foreach ($xHeaderMap[$header] as $xHeader) {
27	2	$response->addHeader($xHeader, $value);
28	2	}
29	2	}
30	2	}
31	2	}
32
33	2	private function browserHasWorkingCSPImplementation()
34		{
35	2	$agent = strtolower(
36	2	$this->owner->getRequest()->getHeader('User-Agent')
37	2	);
38
39	2	if (strpos($agent, 'safari') === false) {
40	1	return true;
41		}
42
43	1	$split = explode('version/', $agent);
44
45	1	if (!isset($split[1])) {
46	1	return true;
47		}
48
49	1	$version = trim($split[1]);
50	1	$versions = explode('.', $version);
51
52	1	if (isset($versions[0]) && $versions[0] <= 5) {
53	1	return false;
54		}
55
56	1	return true;
57		}
58
59		}
60

guttmann / silverstripe-security-headers

SecurityHeaderControllerExtension::onAfterInit() B last analyzed 2018-03-01 02:27 UTC

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like

SecurityHeaderControllerExtension::onAfterInit() B
last analyzed 2018-03-01 02:27 UTC