Code coverage report for esecurity/lib/middleware/xss.js

Statements: 100% (12 / 12)      Branches: 100% (6 / 6)      Functions: 100% (2 / 2)      Lines: 100% (11 / 11)      Ignored: none     

All files » esecurity/lib/middleware/ » xss.js
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24  1   5 5   5     5 2   3   3   3   3   3      
 
module.exports = function XssConstructor(opts) {
 
    opts = opts || {};
    opts.blockMode = opts.blockMode !== false;
    
    return function xss(req, res, next) {
        
        // self-awareness
        if (req._esecurity_xss)
            return next();
 
        req._esecurity_xss = true;
        
        var xssHeader = ['1'];
        
        if (opts.blockMode) xssHeader.push('mode=block');
        
        res.set('X-XSS-Protection', xssHeader.join(';'));
        
        return next();
    };
};