lubiana/uuid
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

improve security

Browse source
This commit is contained in:
lubiana 2025-06-28 16:52:26 +02:00
parent e883913d3a
commit 137e4bc0c1
Signed by: lubiana
SSH key fingerprint: SHA256:vW1EA0fRR3Fw+dD/sM0K+x3Il2gSry6YRYHqOeQwrfk
3 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
Containerfile
View file

@ -6,7 +6,12 @@ RUN composer install --no-dev --optimize-autoloader
FROM dunglas/frankenphp FROM dunglas/frankenphp
WORKDIR /app WORKDIR /app
COPY public/ ./public COPY public/ ./public
COPY src/ ./src
COPY --from=composer_builder /app/vendor ./vendor COPY --from=composer_builder /app/vendor ./vendor
RUN mv "$PHP_INI_DIR/php.ini-production" "$PHP_INI_DIR/php.ini"
RUN sed -i 's/^\s*expose_php\s*=.*/expose_php = Off/' "$PHP_INI_DIR/php.ini"
ARG USER=appuser ARG USER=appuser
RUN \ RUN \
# Use "adduser -D ${USER}" for alpine based distros # Use "adduser -D ${USER}" for alpine based distros
@ -17,6 +22,7 @@ RUN \
chown -R ${USER}:${USER} /data/caddy && chown -R ${USER}:${USER} /config/caddy chown -R ${USER}:${USER} /data/caddy && chown -R ${USER}:${USER} /config/caddy
USER ${USER} USER ${USER}
LABEL "org.opencontainers.image.description"="Cool und Lässig uuid" LABEL "org.opencontainers.image.description"="Cool und Lässig uuid"
LABEL "org.opencontainers.image.source"="https://git.hannover.ccc.de/lubiana/uuid" LABEL "org.opencontainers.image.source"="https://git.hannover.ccc.de/lubiana/uuid"
LABEL "org.opencontainers.image.title"="UUID Service" LABEL "org.opencontainers.image.title"="UUID Service"

1
src/PlaintextResponse.php
View file

@ -12,6 +12,7 @@ final class PlaintextResponse extends Response
public function __construct(?string $content, int $status = 200, array $headers = []) public function __construct(?string $content, int $status = 200, array $headers = [])
{ {
$headers['Content-Type'] ??= 'text/plain'; $headers['Content-Type'] ??= 'text/plain';
$headers['X-Powered-By'] = 'PHP/9.9.9';
parent::__construct( parent::__construct(
content: $content, content: $content,
status: $status, status: $status,

1
tests/Unit/PlaintextResponseTest.php
View file

@ -54,4 +54,5 @@ test('it handles null content', function (): void {
test('it has correct defaultstatuscode', function (): void { test('it has correct defaultstatuscode', function (): void {
$response = new PlaintextResponse('Hello, World!'); $response = new PlaintextResponse('Hello, World!');
expect($response->getStatusCode())->toBe(200); expect($response->getStatusCode())->toBe(200);
expect($response->headers->get('X-Powered-By'))->toContain('PHP/9.9.9');
}); });