UNPKG

@aikidosec/firewall

Version:

Zen by Aikido is an embedded Application Firewall that autonomously protects Node.js apps against common and critical attacks, provides rate limiting, detects malicious traffic (including bots), and more.

aikido.dev/zen

AikidoSec/firewall-node

51 lines (50 loc) 1.72 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.matchEndpoints = matchEndpoints; const tryParseURLPath_1 = require("./tryParseURLPath"); function matchEndpoints(context, endpoints) { const matches = []; if (!context.method) { return matches; } const possible = endpoints.filter((endpoint) => { if (endpoint.method === "*") { return true; } return endpoint.method === context.method; }); // Sort so that exact method matches come first before wildcard matches possible.sort((a, b) => { if (a.method === b.method) { return 0; } if (a.method === "*") { return 1; } return -1; }); const exact = possible.find((endpoint) => endpoint.route === context.route); if (exact) { matches.push(exact); } if (context.url) { // Find matching wildcard routes // We use the path from the URL, since the route can already include params like :id const path = (0, tryParseURLPath_1.tryParseURLPath)(context.url); const wildcards = possible .filter((endpoint) => endpoint.route.includes("*")) .sort((a, b) => { // Sort endpoints based on the amount of * in the route return b.route.split("*").length - a.route.split("*").length; }); if (path) { for (const wildcard of wildcards) { const regex = new RegExp(`^${wildcard.route.replace(/\*/g, "(.*)")}/?$`, "i"); if (regex.test(path)) { matches.push(wildcard); } } } } return matches; }