From 4aec403d35a8a3a93b22c41dfa3c8f45ec30ff0a Mon Sep 17 00:00:00 2001 From: alexferl Date: Mon, 31 Mar 2025 22:58:29 -0400 Subject: [PATCH] rename struct Signed-off-by: alexferl --- secure.go | 10 +++++----- secure_test.go | 18 +++++++++--------- 2 files changed, 14 insertions(+), 14 deletions(-) diff --git a/secure.go b/secure.go index 21bf829..2e4e305 100644 --- a/secure.go +++ b/secure.go @@ -122,9 +122,9 @@ type Config struct { XFrameOptions string } -// DefaultSecureConfig is the default Secure middleware config. +// DefaultConfig is the default middleware config. // It provides a secure baseline for web applications but may need customization for specific requirements. -var DefaultSecureConfig = Config{ +var DefaultConfig = Config{ Skipper: middleware.DefaultSkipper, ContentSecurityPolicy: "default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self'; base-uri 'self'; form-action 'self';", CrossOriginEmbedderPolicy: "require-corp", @@ -143,15 +143,15 @@ var DefaultSecureConfig = Config{ // New returns a middleware with optional custom configuration. // This middleware adds various security-related HTTP headers to each response. -// If no configuration is provided, it uses DefaultSecureConfig. +// If no configuration is provided, it uses DefaultConfig. func New(config ...Config) echo.MiddlewareFunc { - cfg := DefaultSecureConfig + cfg := DefaultConfig if len(config) > 0 { cfg = config[0] } if cfg.Skipper == nil { - cfg.Skipper = DefaultSecureConfig.Skipper + cfg.Skipper = DefaultConfig.Skipper } return func(next echo.HandlerFunc) echo.HandlerFunc { diff --git a/secure_test.go b/secure_test.go index fd0d81b..c7b0cf6 100644 --- a/secure_test.go +++ b/secure_test.go @@ -26,7 +26,7 @@ func TestNewWithConfig(t *testing.T) { }{ { name: "Default config", - config: DefaultSecureConfig, + config: DefaultConfig, expected: map[string]string{ echo.HeaderContentSecurityPolicy: "default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self'; base-uri 'self'; form-action 'self';", HeaderCrossOriginEmbedderPolicy: "require-corp", @@ -177,12 +177,12 @@ func TestNew(t *testing.T) { assert.NoError(t, err) - assert.Equal(t, DefaultSecureConfig.ContentSecurityPolicy, rec.Header().Get(echo.HeaderContentSecurityPolicy)) - assert.Equal(t, DefaultSecureConfig.CrossOriginEmbedderPolicy, rec.Header().Get(HeaderCrossOriginEmbedderPolicy)) - assert.Equal(t, DefaultSecureConfig.CrossOriginOpenerPolicy, rec.Header().Get(HeaderCrossOriginOpenerPolicy)) - assert.Equal(t, DefaultSecureConfig.CrossOriginResourcePolicy, rec.Header().Get(HeaderCrossOriginResourcePolicy)) - assert.Equal(t, DefaultSecureConfig.PermissionsPolicy, rec.Header().Get(HeaderPermissionsPolicy)) - assert.Equal(t, DefaultSecureConfig.ReferrerPolicy, rec.Header().Get(echo.HeaderReferrerPolicy)) - assert.Equal(t, DefaultSecureConfig.XContentTypeOptions, rec.Header().Get(echo.HeaderXContentTypeOptions)) - assert.Equal(t, DefaultSecureConfig.XFrameOptions, rec.Header().Get(echo.HeaderXFrameOptions)) + assert.Equal(t, DefaultConfig.ContentSecurityPolicy, rec.Header().Get(echo.HeaderContentSecurityPolicy)) + assert.Equal(t, DefaultConfig.CrossOriginEmbedderPolicy, rec.Header().Get(HeaderCrossOriginEmbedderPolicy)) + assert.Equal(t, DefaultConfig.CrossOriginOpenerPolicy, rec.Header().Get(HeaderCrossOriginOpenerPolicy)) + assert.Equal(t, DefaultConfig.CrossOriginResourcePolicy, rec.Header().Get(HeaderCrossOriginResourcePolicy)) + assert.Equal(t, DefaultConfig.PermissionsPolicy, rec.Header().Get(HeaderPermissionsPolicy)) + assert.Equal(t, DefaultConfig.ReferrerPolicy, rec.Header().Get(echo.HeaderReferrerPolicy)) + assert.Equal(t, DefaultConfig.XContentTypeOptions, rec.Header().Get(echo.HeaderXContentTypeOptions)) + assert.Equal(t, DefaultConfig.XFrameOptions, rec.Header().Get(echo.HeaderXFrameOptions)) }