Michael Schiemer
e30753ba0e
- Fix RedisCache driver to handle MGET failures gracefully with fallback - Add comprehensive discovery context comparison debug tools - Identify root cause: WEB context discovery missing 166 items vs CLI - WEB context missing RequestFactory class entirely (52 vs 69 commands) - Improved exception handling with detailed binding diagnostics
50 lines
1.6 KiB
PHP
50 lines
1.6 KiB
PHP
<?php
|
|
// Security test endpoint for production deployment validation
|
|
declare(strict_types=1);
|
|
|
|
header('Content-Type: application/json');
|
|
|
|
$tests = [
|
|
'environment' => [
|
|
'app_env' => $_ENV['APP_ENV'] ?? 'not-set',
|
|
'app_debug' => $_ENV['APP_DEBUG'] ?? 'not-set',
|
|
'status' => ($_ENV['APP_ENV'] ?? '') === 'production' && ($_ENV['APP_DEBUG'] ?? '') === 'false' ? 'PASS' : 'FAIL'
|
|
],
|
|
'performance_debug' => [
|
|
'analytics_track_performance' => $_ENV['ANALYTICS_TRACK_PERFORMANCE'] ?? 'not-set',
|
|
'status' => (strpos($_ENV['ANALYTICS_TRACK_PERFORMANCE'] ?? '', 'false') !== false) ? 'PASS' : 'FAIL'
|
|
],
|
|
'xdebug' => [
|
|
'xdebug_mode' => $_ENV['XDEBUG_MODE'] ?? 'not-set',
|
|
'status' => ($_ENV['XDEBUG_MODE'] ?? '') === 'off' ? 'PASS' : 'FAIL'
|
|
],
|
|
'security_headers' => [
|
|
'https_only' => isset($_SERVER['HTTPS']) ? 'PASS' : 'FAIL',
|
|
'user_agent_required' => !empty($_SERVER['HTTP_USER_AGENT']) ? 'PASS' : 'FAIL'
|
|
]
|
|
];
|
|
|
|
// Calculate overall status
|
|
$overall_status = 'PASS';
|
|
foreach ($tests as $category => $test) {
|
|
if (isset($test['status']) && $test['status'] === 'FAIL') {
|
|
$overall_status = 'FAIL';
|
|
break;
|
|
}
|
|
if (is_array($test)) {
|
|
foreach ($test as $key => $value) {
|
|
if ($key === 'status' || !is_string($value)) continue;
|
|
if ($value === 'FAIL') {
|
|
$overall_status = 'FAIL';
|
|
break 2;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
echo json_encode([
|
|
'overall_status' => $overall_status,
|
|
'timestamp' => date('Y-m-d H:i:s'),
|
|
'tests' => $tests
|
|
], JSON_PRETTY_PRINT);
|
|
?>
|