Tweak to CSP form-action self which broke performance tests (#365)

* Tweak to CSP form-action self which broke performance tests * Fixed date bug which causes periodic test fail depending on day of the month
hmrc · Mar 13, 2023 · f3f23a1 · f3f23a1
1 parent 8e82995
commit f3f23a1
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/conf/application.conf b/conf/application.conf
@@ -45,7 +45,7 @@ template-amazon-s3-protocol = "http"
 template-amazon-s3-path = "/template/mustache"
 #Update the env's csp to remove www.google-analytics.com & http://google-analytics.com
 
-play.filters.headers.contentSecurityPolicy = "form-action 'self' localhost:9553 localhost:9556 localhost:9597; base-uri 'self'; block-all-mixed-content; child-src 'self' *.digital.nuance.com; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com localhost:9032 localhost:9310 localhost:9250; default-src 'self' 'unsafe-inline' localhost:9032 localhost:9310 localhost:9250; font-src 'self' data: fonts.gstatic.com fonts.googleapis.com; frame-ancestors 'self'; img-src 'self' https://*.google-analytics.com https://*.googletagmanager.com localhost:9032 localhost:9310 data:; script-src 'self' 'unsafe-inline' localhost:12345 localhost:9032 localhost:9250 localhost:9310 analytics.analytics-egain.com *.optimizely.com optimizely.s3.amazonaws.com www.google-analytics.com https://*.googletagmanager.com ssl.gstatic.com www.gstatic.com; style-src 'self' 'unsafe-inline' localhost:9032 localhost:9310 localhost:9250;"
+play.filters.headers.contentSecurityPolicy = "form-action 'self' localhost:9553 localhost:9556 localhost:9597; localhost:8500; base-uri 'self'; block-all-mixed-content; child-src 'self' *.digital.nuance.com; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com localhost:9032 localhost:9310 localhost:9250; default-src 'self' 'unsafe-inline' localhost:9032 localhost:9310 localhost:9250; font-src 'self' data: fonts.gstatic.com fonts.googleapis.com; frame-ancestors 'self'; img-src 'self' https://*.google-analytics.com https://*.googletagmanager.com localhost:9032 localhost:9310 data:; script-src 'self' 'unsafe-inline' localhost:12345 localhost:9032 localhost:9250 localhost:9310 analytics.analytics-egain.com *.optimizely.com optimizely.s3.amazonaws.com www.google-analytics.com https://*.googletagmanager.com ssl.gstatic.com www.gstatic.com; style-src 'self' 'unsafe-inline' localhost:9032 localhost:9310 localhost:9250;"
 
 play.i18n.langCookieHttpOnly = true
 

diff --git a/test/views/multiyear/transfer/TransferTest.scala b/test/views/multiyear/transfer/TransferTest.scala
@@ -441,7 +441,7 @@ class TransferTest extends BaseTest with NinoGenerator {
       val localDate = LocalDate.now().plusYears(1)
       val request = FakeRequest().withMethod("POST").withFormUrlEncodedBody(
         "dateOfMarriage.day" -> s"${localDate.getDayOfMonth}",
-        "dateOfMarriage.month" -> s"${localDate.getDayOfMonth}",
+        "dateOfMarriage.month" -> s"${localDate.getMonthValue}",
         "dateOfMarriage.year" -> s"${localDate.getYear}"
       )
       val result = transferController.dateOfMarriageAction(request)