helmet with connect (not express)

[imrefazekas]

Hello,

I added helmet to my connect-based app and having an issue with it:

TypeError: Object #<ServerResponse> has no method 'header'
    at Object.handle (/.../helmet/lib/middleware/csp.js:26:17)
    at next (/.../node_modules/connect/lib/proto.js:193:15)

My configuration:

    var app = connect()
    .use( connect.static( pr.pathTo(global.codePath, 'dist/www') ) )
    .use( connect.query() )
    .use( connect.cookieParser() )
    .use( connect.session( { ... } ) )
    .use( connect.urlencoded() )
    .use( connect.json() )
    .use( connect.csrf() )
    .use( helmet.csp() );

Any help is much appreciated.

[hb9cwp]

For a quick fix, replace header( by setHeader( in /.../helmet/lib/middleware/csp.js. Or better, do an npm update to make sure that you have Helmet v0.1.3.
Hope this helps.

[imrefazekas]

"make sure that you have Helmet v0.1.3." -helped not, and manually edit the helmet file would make any deploy not properly maintainable but by adding the following middleware would do the magic:

    .use( function(req, res, next){
        res.header = function(name, value){ this.setHeader(name, value); }.bind( res );
        next();
    } )

But I guess extend the prototype before creating connect app, would fit better to my case:

    http.ServerResponse.prototype.header = function(name, value){ this.setHeader(name, value); };

Hope, this helps to others.
Thanks again!