DRY up the samesite only/except usage validations

stve · stve · commit fc8a80b6aa66 · 2016-04-14T13:47:05.000-04:00
diff --git a/lib/secure_headers/utils/cookies_config.rb b/lib/secure_headers/utils/cookies_config.rb
@@ -55,15 +55,8 @@ def validate_samesite_hash_config!
 
         if is_hash?(config[:samesite][:strict])
           validate_exclusive_use_of_hash_constraints!(config[:samesite][:strict], 'samesite strict')
-          
-          # validate exclusivity of only and except members within strict and lax
-          if (intersection = (config[:samesite][:lax].fetch(:only, []) & config[:samesite][:strict].fetch(:only, []))).any?
-            raise CookiesConfigError.new("samesite cookie config is invalid, cookie(s) #{intersection.join(', ')} cannot be enforced as lax and strict")
-          end
-
-          if (intersection = (config[:samesite][:lax].fetch(:except, []) & config[:samesite][:strict].fetch(:except, []))).any?
-            raise CookiesConfigError.new("samesite cookie config is invalid, cookie(s) #{intersection.join(', ')} cannot be enforced as lax and strict")
-          end
+          validate_exclusive_use_of_samesite_enforcement!(:only)
+          validate_exclusive_use_of_samesite_enforcement!(:except)
         end
       end
     end
@@ -83,6 +76,13 @@ def validate_exclusive_use_of_hash_constraints!(conf, attribute)
       end
     end
 
+    # validate exclusivity of only and except members within strict and lax
+    def validate_exclusive_use_of_samesite_enforcement!(attribute)
+      if (intersection = (config[:samesite][:lax].fetch(attribute, []) & config[:samesite][:strict].fetch(attribute, []))).any?
+        raise CookiesConfigError.new("samesite cookie config is invalid, cookie(s) #{intersection.join(', ')} cannot be enforced as lax and strict")
+      end
+    end
+
     def is_hash?(obj)
       obj && obj.is_a?(Hash)
     end
