Issues in HSTSMiddleware.php (master) - Issues in master - kodeart/koded - Measure and Improve Code Quality continuously with Scrutinizer

Issues (21)

src/Middleware/HSTSMiddleware.php (1 issue)

Labels

Severity

Major 1

<?php

namespace Koded\Framework\Middleware;

use Koded\Http\Interfaces\HttpStatus;
use Koded\Http\ServerResponse;
use Koded\Stdlib\Configuration;
use Psr\Http\Message\{ResponseInterface, ServerRequestInterface};
use Psr\Http\Server\{MiddlewareInterface, RequestHandlerInterface};

class HSTSMiddleware implements MiddlewareInterface
{
    private int $maxAge = 0;
    private string $includeSubDomains = '';

    public function __construct(Configuration $settings)
    {
        $this->maxAge = (int)$settings->get('hsts.maxAge', $this->maxAge);
        if ($settings->get('hsts.includeSubdomains', $this->includeSubDomains)) {
            $this->includeSubDomains = ';includeSubDomains';
        }
    }

    public function process(
        ServerRequestInterface $request,
        RequestHandlerInterface $handler): ResponseInterface
    {
        if ('https' !== $request->getUri()->getScheme()) {
            return (new ServerResponse(null, HttpStatus::MOVED_PERMANENTLY))
                ->withHeader('Location', (string)$request->getUri()->withScheme('https'));
        }
        return $handler->handle($request)->withHeader(

            'Strict-Transport-Security', 'max-age=' . $this->maxAge . $this->includeSubDomains
        );
    }
}


1			<?php
2
3			namespace Koded\Framework\Middleware;
4
5			use Koded\Http\Interfaces\HttpStatus;
6			use Koded\Http\ServerResponse;
7			use Koded\Stdlib\Configuration;
8			use Psr\Http\Message\{ResponseInterface, ServerRequestInterface};
9			use Psr\Http\Server\{MiddlewareInterface, RequestHandlerInterface};
10
11			class HSTSMiddleware implements MiddlewareInterface
12			{
13			private int $maxAge = 0;
14			private string $includeSubDomains = '';
15
16			public function __construct(Configuration $settings)
17			{
18			$this->maxAge = (int)$settings->get('hsts.maxAge', $this->maxAge);
19			if ($settings->get('hsts.includeSubdomains', $this->includeSubDomains)) {
20			$this->includeSubDomains = ';includeSubDomains';
21			}
22			}
23
24			public function process(
25			ServerRequestInterface $request,
26			RequestHandlerInterface $handler): ResponseInterface
27			{
28			if ('https' !== $request->getUri()->getScheme()) {
29			return (new ServerResponse(null, HttpStatus::MOVED_PERMANENTLY))
30			->withHeader('Location', (string)$request->getUri()->withScheme('https'));
31			}
32			return $handler->handle($request)->withHeader(
			0 ignored issues – show Bug Best Practice introduced 2024-02-20 23:53 UTC by Report Bug Copy Issue Report Show Similar Issues like this The expression `return $handler->handle(...his->includeSubDomains)` returns the type `Psr\Http\Message\MessageInterface` which includes types incompatible with the type-hinted return `Psr\Http\Message\ResponseInterface`. Loading history...
33			'Strict-Transport-Security', 'max-age=' . $this->maxAge . $this->includeSubDomains
34			);
35			}
36			}
37

kodeart / koded

Issues (21)

src/Middleware/HSTSMiddleware.php (1 issue)

Labels

Severity

Introduced By

Duplication Side-by-Side

Filter issues like