refactor: Refactored to remove hasH2Console boolean flag and replace it with a check on the H2 console properties/path.

mscibilia · mscibilia · commit ecd2fddd4687 · 2020-04-01T00:28:51.000+08:00
Fix #1307
diff --git a/src/main/java/ru/mystamps/web/support/spring/security/ContentSecurityPolicyHeaderWriter.java b/src/main/java/ru/mystamps/web/support/spring/security/ContentSecurityPolicyHeaderWriter.java
@@ -151,7 +151,6 @@ class ContentSecurityPolicyHeaderWriter implements HeaderWriter {
 	
 	private final boolean useCdn;
 	private final boolean useSingleHost;
-	private final boolean hasH2Console;
 	private final String host;
 	private final String h2ConsolePath;
 	
@@ -167,7 +166,7 @@ public void writeHeaders(HttpServletRequest request, HttpServletResponse respons
 	protected String constructDirectives(String uri) {
 		boolean onCollectionInfoPage = uri.startsWith(COLLECTION_INFO_PAGE_PATTERN);
 		boolean onAddSeriesPage = uri.equals(SeriesUrl.ADD_SERIES_PAGE);
-		boolean onH2ConsolePage = hasH2Console && uri.startsWith(h2ConsolePath);
+		boolean onH2ConsolePage = h2ConsolePath != null && uri.startsWith(h2ConsolePath);
 		
 		StringBuilder sb = new StringBuilder();
 		
diff --git a/src/main/java/ru/mystamps/web/support/spring/security/SecurityConfig.java b/src/main/java/ru/mystamps/web/support/spring/security/SecurityConfig.java
@@ -87,22 +87,21 @@ public void configure(WebSecurity web) throws Exception {
 	protected void configure(HttpSecurity http) throws Exception {
 		boolean useSingleHost = !environment.acceptsProfiles("prod");
 		boolean useCdn = environment.getProperty("app.use-cdn", Boolean.class, Boolean.TRUE);
-		boolean hasH2Console = environment.acceptsProfiles("test");
 		
 		// @todo #226 Introduce app.use-public-hostname property
 		boolean usePublicHostname = environment.acceptsProfiles("prod");
 		String hostname = usePublicHostname ? SiteUrl.PUBLIC_URL : SiteUrl.SITE;
 
-		String h2ConsolePath = hasH2Console ? h2ConsoleProperties.getPath() : null;
+		String h2ConsolePath = h2ConsoleProperties != null ? h2ConsoleProperties.getPath() : null;
 
 		// Allow unsecured requests to H2 consoles if available.
 		// See also spring.h2.console.path in application-test.properties
 		String[] pathsToIgnore =
-			hasH2Console ? new String[]{h2ConsolePath + "/**", SiteUrl.CSP_REPORTS_HANDLER}
-			             : new String[]{SiteUrl.CSP_REPORTS_HANDLER};
+			h2ConsolePath != null ? new String[]{h2ConsolePath + "/**", SiteUrl.CSP_REPORTS_HANDLER}
+			                      : new String[]{SiteUrl.CSP_REPORTS_HANDLER};
 		
 		ContentSecurityPolicyHeaderWriter cspWriter =
-			new ContentSecurityPolicyHeaderWriter(useCdn, useSingleHost, hasH2Console, hostname, h2ConsolePath);
+			new ContentSecurityPolicyHeaderWriter(useCdn, useSingleHost, hostname, h2ConsolePath);
 		
 		http
 			.authorizeRequests()
