UNPKG

express-waf

Version:

A simple Web Application Firewall (WAF)

github.com/ToMMApps/express-waf

ToMMApps/express-waf

90 lines (75 loc) 2.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
(function() { var _modules = []; var _blocker; var _logger; function ExpressWAF(config) { var Logger = require('./logger'); if(config.log === undefined){ config.log = true; } _logger = new Logger(config.log); var Blocker = require('./blocker'); config.blocker.ipService = ipService; _blocker = new Blocker(config.blocker, _logger); }; ExpressWAF.prototype.addModule = function (moduleName, config, callback) { var FirewallModuleClass = require('./modules/' + moduleName); //search for modules in this directory var firewallModule; config.attack = new AttackHandler(moduleName); if (FirewallModuleClass && FirewallModuleClass.prototype.check) { firewallModule = new FirewallModuleClass(config, _blocker, _logger); _modules.push(firewallModule); } else { callback(moduleName + ' does not define a check function!'); } }; ExpressWAF.prototype.check = function (req, res, cb) { _blocker.check(req, res, function(){ recursiveCall(0, function () { cb(); }); }); /** * This iterates over all modules and run on them function check * @param i {int} iterator * @param callback {function} Callback after iteration ended */ function recursiveCall(i, callback) { if(i >= _modules.length) { callback(); } else { _modules[i].check(req, res, function () { recursiveCall(++i, callback); }) } } }; /** * Removes any additional module from the firewall. */ ExpressWAF.prototype.removeAll = function(cb){ _modules = [_blocker]; cb(); }; ExpressWAF.prototype.isLoggingEnabled = function(cb){ _logger.isEnabled(cb); }; function ipService(req) { var ip = req.ip; //if ip starts with 127 try to find a not localhost url if(ip.indexOf('127') === 0) { ip = req.headers['x-client-ip'] || req.headers['x-forwarded-for'] || ip; } return ip; } function AttackHandler(module){ this._module = module; this.handle = function(req, res){ var _host = ipService(req); _logger.logAttack(this._module, _host); _blocker.blockHost(_host); res.status(403).end(); } } module.exports.ExpressWAF = ExpressWAF; })();