php-cs-fixes

Author: sankarsuda

config/firewall.php

@@ -1,11 +1,9 @@
 <?php
 
-return [
+declare(strict_types=1);
 
-    /*
-     * Enable / disable firewall
-     *
-     */
+return [
+    // Enable / disable firewall
 
     'enabled'                     => env('FIREWALL_ENABLED', false),
 
@@ -26,10 +24,7 @@
     'blacklist'                   => [],
     'whitelist'                   => [],
 
-    /*
-     * Response action for blocked responses
-     *
-     */
+    // Response action for blocked responses
 
     'responses'                   => [
         'blacklist' => [
@@ -78,10 +73,7 @@
 
     'ip_list_cache_expire_time'   => 60, // minutes - disabled by default
 
-    /*
-     * Send suspicious events to log?
-     *
-     */
+    // Send suspicious events to log?
 
     'enable_log'                  => true,
 
@@ -112,9 +104,7 @@
 
     'enable_country_search'       => true,
 
-    /*
-     * Should Firewall use the database?
-     */
+    // Should Firewall use the database?
 
     'use_database'                => true,
 
@@ -149,9 +139,7 @@
 
     'geoip_database_path'         => storage_path('geoip'),
 
-    /*
-     * Block suspicious attacks
-     */
+    // Block suspicious attacks
 
     'attack_blocker'              => [
         'enabled'           => [
@@ -162,7 +150,6 @@
         'cache_key_prefix'  => 'firewall-attack-blocker',
 
         'allowed_frequency' => [
-
             'ip'      => [
                 'requests' => 50,
                 'seconds'  => 1 * 60, // 1 minute
@@ -172,7 +159,6 @@
                 'requests' => 3000,
                 'seconds'  => 2 * 60, // 2 minutes
             ],
-
         ],
 
         'action'            => [
@@ -185,7 +171,6 @@
                 'blacklist_unknown'     => false,
                 'blacklist_whitelisted' => false,
             ],
-
         ],
 
         'response'          => [
@@ -195,7 +180,6 @@
             'redirect_to' => null,
             'abort'       => false, // return abort() instead of Response::make() - disabled by default
         ],
-
     ],
 
     'notifications'               => [

config/geocoder.php

@@ -1,5 +1,7 @@
 <?php
 
+declare(strict_types=1);
+
 use Geocoder\Provider\Chain\Chain;
 use Geocoder\Provider\GeoIP2\GeoIP2;
 use GeoIp2\Database\Reader;

config/google2fa.php

@@ -1,10 +1,9 @@
 <?php
 
-return [
+declare(strict_types=1);
 
-    /*
-     * Auth container binding
-     */
+return [
+    // Auth container binding
 
     'enabled'              => true,
 
@@ -15,60 +14,39 @@
 
     'lifetime'             => 0, // 0 = eternal
 
-    /*
-     * Renew lifetime at every new request.
-     */
+    // Renew lifetime at every new request.
 
     'keep_alive'           => true,
 
-    /*
-     * Auth container binding
-     */
+    // Auth container binding
 
     'auth'                 => 'auth',
 
-    /*
-     * 2FA verified session var
-     */
+    // 2FA verified session var
 
     'session_var'          => 'google2fa',
 
-    /*
-     * One Time Password request input name
-     */
+    // One Time Password request input name
     'otp_input'            => 'one_time_password',
 
-    /*
-     * One Time Password Window
-     */
+    // One Time Password Window
     'window'               => 1,
 
-    /*
-     * Forbid user to reuse One Time Passwords.
-     */
+    // Forbid user to reuse One Time Passwords.
     'forbid_old_passwords' => false,
 
-    /*
-     * User's table column for google2fa secret
-     */
+    // User's table column for google2fa secret
     'otp_secret_column'    => 'google2fa_secret',
 
-    /*
-     * One Time Password View
-     */
+    // One Time Password View
     'view'                 => 'security::auth.2fa',
 
-    /*
-     * One Time Password error message
-     */
+    // One Time Password error message
     'error_messages'       => [
         'wrong_otp'       => "The 'One Time Password' typed was wrong.",
         'cannot_be_empty' => 'One Time Password cannot be empty.',
     ],
 
-    /*
-     * Throw exceptions or just fire events?
-     */
+    // Throw exceptions or just fire events?
     'throw_exceptions'     => true,
-
 ];

config/security-headers.php

@@ -1,8 +1,9 @@
 <?php
 
-return [
+declare(strict_types=1);
 
-    'enable' => true,
+return [
+    'enable' => env('SECURITY_HEADERS_ENABLE', false),
     /*
      * Server
      *
@@ -81,9 +82,9 @@
      */
 
     'clear-site-data'                   => [
-        'enable'            => false,
+        'enable'            => true,
 
-        'all'               => false,
+        'all'               => true,
 
         'cache'             => true,
 
@@ -103,11 +104,11 @@
      */
 
     'hsts'                              => [
-        'enable'              => false,
+        'enable'              => true,
 
         'max-age'             => 15552000,
 
-        'include-sub-domains' => false,
+        'include-sub-domains' => true,
 
         'preload'             => true,
     ],
@@ -492,7 +493,7 @@
 
         'style-src'                 => [
             'allow'               => [
-                "*",
+                '*',
             ],
 
             'hashes'              => [
@@ -502,7 +503,6 @@
             ],
 
             'nonces'              => [
-                //
             ],
 
             'schemes'             => [
@@ -516,50 +516,47 @@
         ],
 
         'img-src'                   => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
         'default-src'               => [
-            //
         ],
 
         'base-uri'                  => [
-            //
         ],
 
         'connect-src'               => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'font-src'                  => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'form-action'               => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'frame-ancestors'           => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'frame-src'                 => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'manifest-src'              => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'media-src'                 => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:', 'data:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:', 'data:'],
         ],
 
         'object-src'                => [
-            //
         ],
 
         'worker-src'                => [
-            'schemes' => ['*', "self", 'http:', 'https:', 'blob:'],
+            'schemes' => ['*', 'self', 'http:', 'https:', 'blob:'],
         ],
 
         'plugin-types'              => [
@@ -569,7 +566,5 @@
         'require-sri-for'           => '',
 
         'sandbox'                   => '',
-
     ],
-
 ];

config/security.php

@@ -1,7 +1,8 @@
 <?php
 
-return [
+declare(strict_types=1);
 
+return [
     /*
     |--------------------------------------------------------------------------
     | Notify New Device
@@ -25,5 +26,4 @@
      */
 
     'older'  => 365,
-
 ];

database/migrations/2018_11_29_110417_create_auth_login_history_table.php

@@ -1,5 +1,7 @@
 <?php
 
+declare(strict_types=1);
+
 use Illuminate\Database\Migrations\Migration;
 use Illuminate\Database\Schema\Blueprint;
 
@@ -8,9 +10,9 @@ class CreateAuthLoginHistoryTable extends Migration
     /**
      * Run the migrations.
      */
-    public function up()
+    public function up(): void
     {
-        Schema::create('auth_login_history', function (Blueprint $table) {
+        Schema::create('auth_login_history', function (Blueprint $table): void {
             $table->string('id', 36)->primary();
             $table->bigInteger('user_id')->unsigned()->nullable()->index('user_id');
             $table->string('ip', 20)->nullable()->index('ip');
@@ -34,7 +36,7 @@ public function up()
     /**
      * Reverse the migrations.
      */
-    public function down()
+    public function down(): void
     {
         Schema::drop('auth_login_history');
     }

database/migrations/2019_08_25_000634_add_2fa_to_users.php

@@ -1,5 +1,7 @@
 <?php
 
+declare(strict_types=1);
+
 use Illuminate\Database\Migrations\Migration;
 use Illuminate\Database\Schema\Blueprint;
 use Illuminate\Support\Facades\Schema;
@@ -9,19 +11,19 @@ class Add2faToUsers extends Migration
     /**
      * Run the migrations.
      */
-    public function up()
+    public function up(): void
     {
-        Schema::table(config('bright.table.users', 'users'), function (Blueprint $table) {
+        Schema::table(config('bright.table.users', 'users'), function (Blueprint $table): void {
             $table->string('google2fa_secret', 50)->nullable()->after('remember_token');
         });
     }
 
     /**
      * Reverse the migrations.
      */
-    public function down()
+    public function down(): void
     {
-        Schema::table(config('bright.table.users', 'users'), function (Blueprint $table) {
+        Schema::table(config('bright.table.users', 'users'), function (Blueprint $table): void {
             $table->dropColumn('google2fa_secret');
         });
     }