Clean code and required changes made

brokenhandsio · Jan 5, 2021 · ed920b4 · ed920b4
1 parent ba0e18c
commit ed920b4
Show file tree

Hide file tree

Showing 4 changed files with 6 additions and 5 deletions.
diff --git a/README.md b/README.md
@@ -441,10 +441,10 @@ strict-transport-security: max-age=31536000; includeSubDomains; preload
 
 If Strict-Transport-Security is not enough to accomplish a forwarding connection to HTTPS from the browsers, you can opt to add an additional middleware who provides this redirection if clients try to reach your site with an HTTP connection.
 
-To use the HSTS Redirect Middleware, you can add the following line in your middlewares, preferably before securityHeadersFactory.build():
+To use the HTTPS Redirect Middleware, you can add the following line in **configure.swift** to enable the middleware. This must be done before `securityHeadersFactory.build()` to ensure HSTS works:
 
 ```swift
-app.middleware.use(securityHeadersFactory.redirectMiddleware)
+app.middleware.use(HTTPSRedirectMiddleware())
 ```
 
 ## Server

diff --git a/...nfigurations/HSTSRedirectMiddleware.swift → ...figurations/HTTPSRedirectMiddleware.swift b/...nfigurations/HSTSRedirectMiddleware.swift → ...figurations/HTTPSRedirectMiddleware.swift
@@ -1,7 +1,9 @@
 import Vapor
 
-public class HSTSRedirectMiddleware: Middleware {
+public class HTTPSRedirectMiddleware: Middleware {
 
+    public init() {}
+
     public func respond(to request: Request, chainingTo next: Responder) -> EventLoopFuture<Response> {
         if request.application.environment == .development {
             return next.respond(to: request)

diff --git a/Sources/VaporSecurityHeaders/SecurityHeadersFactory.swift b/Sources/VaporSecurityHeaders/SecurityHeadersFactory.swift
@@ -9,7 +9,6 @@ public class SecurityHeadersFactory {
     var server: ServerConfiguration?
     var referrerPolicy: ReferrerPolicyConfiguration?
     var contentSecurityPolicyReportOnly: ContentSecurityPolicyReportOnlyConfiguration?
-    public var redirectMiddleware = HSTSRedirectMiddleware()
 
     public init() {}
 

diff --git a/Tests/VaporSecurityHeadersTests/RedirectionTest.swift b/Tests/VaporSecurityHeadersTests/RedirectionTest.swift
@@ -65,7 +65,7 @@ class RedirectionTest: XCTestCase {
             application.environment = environment
         }
         if withRedirection == true {
-        application.middleware.use(SecurityHeadersFactory().redirectMiddleware)
+        application.middleware.use(HTTPSRedirectMiddleware())
         }
         try routes(application)
         return try application.responder.respond(to: request).wait()