From ca0446be51abb3965793ea50955262f03dc2b1e6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Michal=20=C5=A0pa=C4=8Dek?= Date: Fri, 15 Mar 2024 18:22:49 +0100 Subject: [PATCH] Let's move the fun values to the correct namespace Ref #289 --- site/app/Application/SanitizedPhpInfo.php | 8 +++----- site/app/EasterEgg/PhpInfoCookieSanitization.php | 13 +++++++++++++ 2 files changed, 16 insertions(+), 5 deletions(-) create mode 100644 site/app/EasterEgg/PhpInfoCookieSanitization.php diff --git a/site/app/Application/SanitizedPhpInfo.php b/site/app/Application/SanitizedPhpInfo.php index 2986014fe..08456262f 100644 --- a/site/app/Application/SanitizedPhpInfo.php +++ b/site/app/Application/SanitizedPhpInfo.php @@ -3,6 +3,7 @@ namespace MichalSpacekCz\Application; +use MichalSpacekCz\EasterEgg\PhpInfoCookieSanitization; use MichalSpacekCz\Http\Cookies\CookieName; use MichalSpacekCz\Http\Cookies\Cookies; use Nette\Http\Session; @@ -22,10 +23,7 @@ public function __construct( public function getHtml(): string { // Session id is sanitized by default but let's be explicit here - $this->phpInfo->addSanitization( - $this->sessionHandler->getId(), - 'SetecAstronomy31337Y0lo53ssi0nId⛄', - ); + $this->phpInfo->addSanitization($this->sessionHandler->getId(), PhpInfoCookieSanitization::SESSION_ID); // Sanitize these as well even though they're sent to sign-in URL only $cookieNames = [ @@ -35,7 +33,7 @@ public function getHtml(): string foreach ($cookieNames as $cookieName) { $cookie = $this->cookies->getString($cookieName); if ($cookie !== null) { - $this->phpInfo->addSanitization($cookie, 'TooManySecrets31337Y0loCookieVal☃️'); + $this->phpInfo->addSanitization($cookie, PhpInfoCookieSanitization::COOKIE_VALUE); } } return $this->phpInfo->getHtml(); diff --git a/site/app/EasterEgg/PhpInfoCookieSanitization.php b/site/app/EasterEgg/PhpInfoCookieSanitization.php new file mode 100644 index 000000000..a63d4fd38 --- /dev/null +++ b/site/app/EasterEgg/PhpInfoCookieSanitization.php @@ -0,0 +1,13 @@ +