UNPKG

@aikidosec/firewall

Version:

Zen by Aikido is an embedded Application Firewall that autonomously protects Node.js apps against common and critical attacks, provides rate limiting, detects malicious traffic (including bots), and more.

aikido.dev/zen

AikidoSec/firewall-node

48 lines (47 loc) 1.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
"use strict"; /* * Largely based on parseHeaders function from nodejs/unici * MIT License * Copyright (c) Matteo Collina and Undici contributors * https://github.com/nodejs/undici */ Object.defineProperty(exports, "__esModule", { value: true }); exports.parseHeaders = parseHeaders; function parseHeaders(headers, obj) { if (obj === undefined) obj = {}; for (let i = 0; i < headers.length; i += 2) { const key = headerNameToString(headers[i]); let val = obj[key]; if (val) { if (typeof val === "string") { val = [val]; obj[key] = val; } val.push(headers[i + 1].toString("utf8")); } else { const headersValue = headers[i + 1]; if (typeof headersValue === "string") { obj[key] = headersValue; } else { obj[key] = Array.isArray(headersValue) ? headersValue.map((x) => x.toString("utf8")) : headersValue.toString("utf8"); } } } // See https://github.com/nodejs/node/pull/46528 if ("content-length" in obj && "content-disposition" in obj) { obj["content-disposition"] = Buffer.from( // @ts-expect-error Ignore obj["content-disposition"]).toString("latin1"); } return obj; } function headerNameToString(value) { return typeof value === "string" ? value.toLowerCase() : value.toString("latin1").toLowerCase(); }