Add webpack-dev-server to csp spec

These specs aren't super useful if they're just targeting the permissive dev configuration...
18F · Dec 23, 2021 · 54495cc · 54495cc
1 parent 72e1058
commit 54495cc
Showing 1 changed file with 4 additions and 2 deletions.
diff --git a/spec/requests/csp_spec.rb b/spec/requests/csp_spec.rb
@@ -24,7 +24,7 @@
       expect(content_security_policy['media-src']).to eq("'self'")
       expect(content_security_policy['object-src']).to eq("'none'")
       expect(content_security_policy['script-src']).to match(
-        /'self' 'unsafe-eval' 'unsafe-inline' 'nonce-[\w\d=\/+]+'/,
+        /'self' 'unsafe-eval' 'unsafe-inline' localhost:3035 'nonce-[\w\d=\/+]+'/,
       )
       expect(content_security_policy['style-src']).to eq("'self' 'unsafe-inline'")
     end
@@ -49,7 +49,9 @@
       )
       expect(content_security_policy['media-src']).to eq("'self'")
       expect(content_security_policy['object-src']).to eq("'none'")
-      expect(content_security_policy['script-src']).to eq("'self' 'unsafe-eval' 'unsafe-inline'")
+      expect(content_security_policy['script-src']).to eq(
+        "'self' 'unsafe-eval' 'unsafe-inline' localhost:3035",
+      )
       expect(content_security_policy['style-src']).to eq("'self' 'unsafe-inline'")
     end
   end