Merge pull request #5734 from kenjis/fix-csp

kenjis · web-flow · commit 95b4ec4a78f0 · 2022-02-24T14:31:12.000+09:00
refactor: remove unneeded `&amp;` references in ContentSecurityPolicy.php
diff --git a/system/HTTP/ContentSecurityPolicy.php b/system/HTTP/ContentSecurityPolicy.php
@@ -298,7 +298,7 @@ public function getScriptNonce(): string
      *
      * Should be called just prior to sending the response to the user agent.
      */
-    public function finalize(ResponseInterface &$response)
+    public function finalize(ResponseInterface $response)
     {
         if ($this->autoNonce === false) {
             return;
@@ -663,7 +663,7 @@ protected function addOption($options, string $target, ?bool $explicitReporting
      * placeholders with actual nonces, that we'll then add to our
      * headers.
      */
-    protected function generateNonces(ResponseInterface &$response)
+    protected function generateNonces(ResponseInterface $response)
     {
         $body = $response->getBody();
 
@@ -695,7 +695,7 @@ protected function generateNonces(ResponseInterface &$response)
      * Content-Security-Policy and Content-Security-Policy-Report-Only headers
      * with their values to the response object.
      */
-    protected function buildHeaders(ResponseInterface &$response)
+    protected function buildHeaders(ResponseInterface $response)
     {
         /**
          * Ensure both headers are available and arrays...

Original file line number	Diff line number	Diff line change
`@@ -298,7 +298,7 @@ public function getScriptNonce(): string`
`298`	`298`	`*`
`299`	`299`	`* Should be called just prior to sending the response to the user agent.`
`300`	`300`	`*/`
`301`		`- public function finalize(ResponseInterface &$response)`
	`301`	`+ public function finalize(ResponseInterface $response)`
`302`	`302`	`{`
`303`	`303`	`if ($this->autoNonce === false) {`
`304`	`304`	`return;`
`@@ -663,7 +663,7 @@ protected function addOption($options, string $target, ?bool $explicitReporting`
`663`	`663`	`* placeholders with actual nonces, that we'll then add to our`
`664`	`664`	`* headers.`
`665`	`665`	`*/`
`666`		`- protected function generateNonces(ResponseInterface &$response)`
	`666`	`+ protected function generateNonces(ResponseInterface $response)`
`667`	`667`	`{`
`668`	`668`	`$body = $response->getBody();`
`669`	`669`
`@@ -695,7 +695,7 @@ protected function generateNonces(ResponseInterface &$response)`
`695`	`695`	`* Content-Security-Policy and Content-Security-Policy-Report-Only headers`
`696`	`696`	`* with their values to the response object.`
`697`	`697`	`*/`
`698`		`- protected function buildHeaders(ResponseInterface &$response)`
	`698`	`+ protected function buildHeaders(ResponseInterface $response)`
`699`	`699`	`{`
`700`	`700`	`/**`
`701`	`701`	`* Ensure both headers are available and arrays...`