Inspection of "Provide additional configuration options for CSP a..." - signify-nz/silverstripe-security-headers - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#6)

unknown

created 2021-08-24 23:36 UTC

Status

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -559,7 +559,7 @@
 block discarded – undo
         }
         $data = urldecode($data);
 
-        $data = preg_replace_callback('/(?:^|(?<=&))[^=[]+/', function ($match) {
+        $data = preg_replace_callback('/(?:^|(?<=&))[^=[]+/', function($match) {
             return bin2hex(urldecode($match[0]));
         }, $data);
 

Please login to merge, or discard this patch.

src/Middleware/SecurityHeaderMiddleware.php 1 patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -155,7 +155,7 @@
 block discarded – undo
             'max_age' => 1800,
             'endpoints' => [[
                 'url' => $this->getReportURI(),
-            ],],
+            ], ],
             'include_subdomains' => $this->getIncludeSubdomains(),
         ];
         return json_encode($header);

Please login to merge, or discard this patch.

src/Controllers/CSPViolationsController.php 1 patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -143,7 +143,7 @@
 block discarded – undo
                         // Firefox doesn't report the disposition.
                         return 'unknown';
                     }
-                    return ;
+                    return;
                 case self::BLOCKED_URI:
                     return $cspReport['blocked-uri'];
                 case self::EFFECTIVE_DIRECTIVE:

Please login to merge, or discard this patch.

tests/SecurityHeaderMiddlewareTest.php 1 patch

Spacing +3 added lines, -3 removed lines patch added patch discarded remove patch

@@ -99,7 +99,7 @@  discard block
 block discarded – undo
                     ],
                 ],
             ],
-            function () use ($testURI) {
+            function() use ($testURI) {
                 $defaultUri = Director::absoluteURL(SecurityHeaderMiddleware::config()->get('report_uri'));
                 $response = $this->getResponse();
                 $csp = $response->getHeader('Content-Security-Policy');
@@ -129,7 +129,7 @@  discard block
 block discarded – undo
                     'use_report_to' => true,
                 ],
             ],
-            function () {
+            function() {
                 $response = $this->getResponse();
                 $csp = $response->getHeader('Content-Security-Policy');
                 $reportHeaderExists = $response->getHeader('Report-To') !== null;
@@ -174,7 +174,7 @@  discard block
 block discarded – undo
                     'use_report_to' => true,
                 ],
             ],
-            function () {
+            function() {
                 $defaultEndpoint = SecurityHeaderMiddleware::config()->get('report_to_group');
                 $defaultUri = Director::absoluteURL(SecurityHeaderMiddleware::config()->get('report_uri'));
                 $response = $this->getResponse();

Please login to merge, or discard this patch.

		@@ -559,7 +559,7 @@
		block discarded – undo
559	559	}
560	560	$data = urldecode($data);
561	561
562		- $data = preg_replace_callback('/(?:^\|(?<=&))[^=[]+/', function ($match) {
	562	+ $data = preg_replace_callback('/(?:^\|(?<=&))[^=[]+/', function($match) {
563	563	return bin2hex(urldecode($match[0]));
564	564	}, $data);
565	565

		@@ -143,7 +143,7 @@
		block discarded – undo
143	143	// Firefox doesn't report the disposition.
144	144	return 'unknown';
145	145	}
146		- return ;
	146	+ return;
147	147	case self::BLOCKED_URI:
148	148	return $cspReport['blocked-uri'];
149	149	case self::EFFECTIVE_DIRECTIVE:

		@@ -155,7 +155,7 @@
		block discarded – undo
155	155	'max_age' => 1800,
156	156	'endpoints' => [[
157	157	'url' => $this->getReportURI(),
158		- ],],
	158	+ ], ],
159	159	'include_subdomains' => $this->getIncludeSubdomains(),
160	160	];
161	161	return json_encode($header);

		@@ -99,7 +99,7 @@ discard block
		block discarded – undo
99	99	],
100	100	],
101	101	],
102		- function () use ($testURI) {
	102	+ function() use ($testURI) {
103	103	$defaultUri = Director::absoluteURL(SecurityHeaderMiddleware::config()->get('report_uri'));
104	104	$response = $this->getResponse();
105	105	$csp = $response->getHeader('Content-Security-Policy');
		@@ -129,7 +129,7 @@ discard block
		block discarded – undo
129	129	'use_report_to' => true,
130	130	],
131	131	],
132		- function () {
	132	+ function() {
133	133	$response = $this->getResponse();
134	134	$csp = $response->getHeader('Content-Security-Policy');
135	135	$reportHeaderExists = $response->getHeader('Report-To') !== null;
		@@ -174,7 +174,7 @@ discard block
		block discarded – undo
174	174	'use_report_to' => true,
175	175	],
176	176	],
177		- function () {
	177	+ function() {
178	178	$defaultEndpoint = SecurityHeaderMiddleware::config()->get('report_to_group');
179	179	$defaultUri = Director::absoluteURL(SecurityHeaderMiddleware::config()->get('report_uri'));
180	180	$response = $this->getResponse();

signify-nz / silverstripe-security-headers

Pull Request — master (#6)

Status

Category

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Spacing +3 added lines, -3 removed lines patch added patch discarded remove patch