diff --git a/example/main.go b/example/main.go index 1e3de9b..4cfe9b2 100644 --- a/example/main.go +++ b/example/main.go @@ -4,8 +4,8 @@ import ( "log/slog" "net/http" - "gitserver.in/patialtech/mux" - "gitserver.in/patialtech/mux/middleware" + "code.patial.tech/go/mux" + "code.patial.tech/go/mux/middleware" ) func main() { diff --git a/go.mod b/go.mod index 3bd7d28..c6ae597 100644 --- a/go.mod +++ b/go.mod @@ -1,3 +1,3 @@ -module gitserver.in/patialtech/mux +module code.patial.tech/go/mux -go 1.23.2 +go 1.24 diff --git a/middleware/helmet.go b/middleware/helmet.go index 87beeb1..672d1ec 100644 --- a/middleware/helmet.go +++ b/middleware/helmet.go @@ -102,19 +102,16 @@ const ( YearDuration = 365 * 24 * 60 * 60 // EmbedderDefault default value will be "require-corp" - EmbedderDefault Embedder = "" EmbedderRequireCorp Embedder = "require-corp" EmbedderCredentialLess Embedder = "credentialless" EmbedderUnsafeNone Embedder = "unsafe-none" // OpenerDefault default value will be "same-origin" - OpenerDefault Opener = "" OpenerSameOrigin Opener = "same-origin" OpenerSameOriginAllowPopups Opener = "same-origin-allow-popups" OpenerUnsafeNone Opener = "unsafe-none" // ResourceDefault default value will be "same-origin" - ResourceDefault Resource = "" ResourceSameOrigin Resource = "same-origin" ResourceSameSite Resource = "same-site" ResourceCrossOrigin Resource = "cross-origin" @@ -129,14 +126,12 @@ const ( UnsafeUrl Referrer = "unsafe-url" // CDPDefault default value is "none" - CDPDefault CDP = "" CDPNone CDP = "none" CDPMasterOnly CDP = "master-only" CDPByContentType CDP = "by-content-type" CDPAll CDP = "all" // XFrameDefault default value will be "sameorigin" - XFrameDefault XFrame = "" XFrameSameOrigin XFrame = "sameorigin" XFrameDeny XFrame = "deny" ) @@ -148,21 +143,21 @@ func Helmet(opt HelmetOption) func(http.Handler) http.Handler { w.Header().Add("Content-Security-Policy", opt.ContentSecurityPolicy.value()) // Cross-Origin-Embedder-Policy, if nil set default - if opt.CrossOriginEmbedderPolicy == EmbedderDefault { + if opt.CrossOriginEmbedderPolicy == "" { w.Header().Add("Cross-Origin-Embedder-Policy", string(EmbedderRequireCorp)) } else { w.Header().Add("Cross-Origin-Embedder-Policy", string(opt.CrossOriginEmbedderPolicy)) } // Cross-Origin-Opener-Policy, if nil set default - if opt.CrossOriginOpenerPolicy == OpenerDefault { + if opt.CrossOriginOpenerPolicy == "" { w.Header().Add("Cross-Origin-Opener-Policy", string(OpenerSameOrigin)) } else { w.Header().Add("Cross-Origin-Opener-Policy", string(opt.CrossOriginOpenerPolicy)) } // Cross-Origin-Resource-Policy, if nil set default - if opt.CrossOriginResourcePolicy == ResourceDefault { + if opt.CrossOriginResourcePolicy == "" { w.Header().Add("Cross-Origin-Resource-Policy", string(ResourceSameOrigin)) } else { w.Header().Add("Cross-Origin-Resource-Policy", string(opt.CrossOriginResourcePolicy)) @@ -223,13 +218,13 @@ func Helmet(opt HelmetOption) func(http.Handler) http.Handler { } // indicate whether a browser should be allowed to render a page in iframe | frame | embed | object - if opt.XFrameOption == XFrameDefault { + if opt.XFrameOption == "" { w.Header().Add("X-Frame-Options", string(XFrameSameOrigin)) } else { w.Header().Add("X-Frame-Options", string(opt.XFrameOption)) } - if opt.CrossDomainPolicies == CDPDefault { + if opt.CrossDomainPolicies == "" { w.Header().Add("X-Permitted-Cross-Domain-Policies", string(CDPNone)) } else { w.Header().Add("X-Permitted-Cross-Domain-Policies", string(opt.CrossDomainPolicies)) diff --git a/middleware/helmet_test.go b/middleware/helmet_test.go index 809b535..940a175 100644 --- a/middleware/helmet_test.go +++ b/middleware/helmet_test.go @@ -6,13 +6,13 @@ import ( "net/http/httptest" "testing" - "gitserver.in/patialtech/mux" + "code.patial.tech/go/mux" ) func TestHelmet(t *testing.T) { r := mux.NewRouter() r.Use(Helmet(HelmetOption{})) - r.Get("/hello", func(writer http.ResponseWriter, request *http.Request) { + r.GET("/hello", func(writer http.ResponseWriter, request *http.Request) { _, _ = writer.Write([]byte("hello there")) })