Pass CI pipeline

lmuntaner · lmuntaner · commit 0340c0ff7f39 · 2025-10-06T11:05:19.000+02:00
diff --git a/src/frontend/tests/e2e-playwright/authorize/migration.spec.ts b/src/frontend/tests/e2e-playwright/authorize/migration.spec.ts
@@ -15,6 +15,11 @@ import { isNullish } from "@dfinity/utils";
 const TEST_USER_NAME = "Test User";
 
 test.describe("Migration from an app", () => {
+  test.skip(
+    ({ browserName }) => browserName === "webkit",
+    "Migration test not supported on Safari because it uses virtual authenticators which are not supported.",
+  );
+
   test("User can migrate a legacy identity", async ({ page }) => {
     const auth = dummyAuth();
     let credential: Protocol.WebAuthn.Credential | undefined;
diff --git a/src/frontend/tests/e2e-playwright/dashboard/migration.spec.ts b/src/frontend/tests/e2e-playwright/dashboard/migration.spec.ts
@@ -39,6 +39,11 @@ const upgradeLegacyIdentity = async (
 };
 
 test.describe("Migration", () => {
+  test.skip(
+    ({ browserName }) => browserName === "webkit",
+    "Migration test not supported on Safari because it uses virtual authenticators which are not supported.",
+  );
+
   test("User can migrate a legacy identity", async ({ page }) => {
     // Step 1: Create a legacy identity
     await page.goto(LEGACY_II_URL);
diff --git a/src/frontend/tests/e2e-playwright/fixtures.ts b/src/frontend/tests/e2e-playwright/fixtures.ts
@@ -36,7 +36,7 @@ export const test = base.extend({
         }
 
         const canister_name = hostToCanisterName[url.hostname];
-        if (!canister_name) {
+        if (canister_name === undefined) {
           return route.continue();
         }
         // The vite server uses the Host header and the localhost subdomain to determine where the redirect the request.
diff --git a/src/internet_identity/src/http.rs b/src/internet_identity/src/http.rs
@@ -126,10 +126,10 @@ pub fn security_headers(
         // Content-Security-Policy (CSP)
         // Comprehensive policy to prevent XSS attacks and data injection
         // See content_security_policy_header() function for detailed explanation
-        // (
-        //     "Content-Security-Policy".to_string(),
-        //     content_security_policy_header(integrity_hashes, maybe_related_origins),
-        // ),
+        (
+            "Content-Security-Policy".to_string(),
+            content_security_policy_header(integrity_hashes, maybe_related_origins),
+        ),
         // Strict-Transport-Security (HSTS)
         // Forces browsers to use HTTPS for all future requests to this domain
         // max-age=31536000: Valid for 1 year (31,536,000 seconds)

Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@ export const test = base.extend({`
`36`	`36`	`}`
`37`	`37`
`38`	`38`	`const canister_name = hostToCanisterName[url.hostname];`
`39`		`- if (!canister_name) {`
	`39`	`+ if (canister_name === undefined) {`
`40`	`40`	`return route.continue();`
`41`	`41`	`}`
`42`	`42`	`// The vite server uses the Host header and the localhost subdomain to determine where the redirect the request.`