From aeeb169111ba20fcdadb4d6584c283c5615d7030 Mon Sep 17 00:00:00 2001
From: JanHoefelmeyer <107021473+JanHoefelmeyer@users.noreply.github.com>
Date: Fri, 7 Jul 2023 14:02:58 +0200
Subject: [PATCH] Allow http redirects (#400)

* Fix HTTP Header redirects causing the checker to fail a domain

* Slightly clarify comment

* Formatting

---------

Co-authored-by: JanHoefelmeyer <hoefelmeyer.jan@gmail.com>
---
 cmd/csaf_checker/rules.go | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/cmd/csaf_checker/rules.go b/cmd/csaf_checker/rules.go
index 0899480..a1bc3fb 100644
--- a/cmd/csaf_checker/rules.go
+++ b/cmd/csaf_checker/rules.go
@@ -166,8 +166,11 @@ func (p *processor) eval(requirement int) bool {
 
 	case 5:
 		return !p.badAmberRedPermissions.hasErrors()
+	// Currently, only domains using HTTP-Header redirects are checked.
+	// A domain reaching evaluation will only have HTTP-Header redirects if any,
+	// and thus requirement 6 will always be fullfilled.
 	case 6:
-		return len(p.redirects) == 0
+		return true
 	case 7:
 		return !p.badProviderMetadata.hasErrors()
 	case 8: