@abtnode/router-provider 1.16.42-beta-20250413-121549-22e9a196 → 1.16.42-beta-20250415-224346-080ee735

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/lib/nginx/includes/proxy.raw +4 -4
  2. package/lib/nginx/includes/security/crs4/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf +13 -2
  3. package/package.json +6 -6
package/lib/nginx/includes/proxy.raw CHANGED
@@ -6,10 +6,10 @@ proxy_pass_header server;
6
6
 
7
7
  proxy_headers_hash_bucket_size 512;
8
8
  proxy_buffering on;
9
- proxy_request_buffering on; # Buffer client requests
10
- proxy_buffers 32 32k; # Increased to 32 buffers of 32k = 1MB total
11
- proxy_buffer_size 32k; # Increased for larger headers
12
- proxy_busy_buffers_size 96k; # 2-3 buffers worth (32k * 3)
9
+ proxy_request_buffering off; # Buffer client requests
10
+ proxy_buffers 16 16k; # Smaller buffers for memory efficiency
11
+ proxy_buffer_size 16k; # Smaller buffer size
12
+ proxy_busy_buffers_size 48k; # Adjusted accordingly
13
13
  proxy_next_upstream error timeout invalid_header;
14
14
  proxy_redirect off;
15
15
  proxy_http_version 1.1;
package/lib/nginx/includes/security/crs4/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf CHANGED
@@ -239,14 +239,15 @@ SecRule REQUEST_HEADERS:tus-resumable "@rx ^1\.0\.0$" \
239
239
  ctl:ruleRemoveById=920420"
240
240
 
241
241
  # Fix: did space connect and restore false positive
242
- SecRule REQUEST_FILENAME "@rx (?:/connect-to-did-space|/restore)$" \
242
+ SecRule REQUEST_FILENAME "@rx (?:/connect-to-did-space|/one-click-authorization|/restore)" \
243
243
  "id:1009,\
244
244
  phase:1,\
245
245
  pass,\
246
246
  nolog,\
247
247
  chain"
248
248
  SecRule REQUEST_METHOD "@pm GET" \
249
- "ctl:ruleRemoveById=934110"
249
+ "ctl:ruleRemoveById=934110,\
250
+ ctl:ruleRemoveById=931120"
250
251
 
251
252
  # Fix: did wallet backup false positive
252
253
  SecRule REQUEST_FILENAME "@endsWith /app-records.txt" \
@@ -344,3 +345,13 @@ SecRule REQUEST_FILENAME "@beginsWith /api" \
344
345
  chain"
345
346
  SecRule REQUEST_METHOD "@pm POST" \
346
347
  "ctl:ruleRemoveByTag=attack-rce"
348
+
349
+ # Allow localhost and 127.0.0.1 in redirect_uri for OAuth
350
+ SecRule REQUEST_FILENAME "@contains /.well-known/service/oauth" \
351
+ "id:1019,\
352
+ phase:1,\
353
+ pass,\
354
+ nolog,\
355
+ chain"
356
+ SecRule REQUEST_METHOD "@pm GET POST" \
357
+ "ctl:ruleRemoveById=934110"
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@abtnode/router-provider",
3
- "version": "1.16.42-beta-20250413-121549-22e9a196",
3
+ "version": "1.16.42-beta-20250415-224346-080ee735",
4
4
  "description": "Routing engine implementations for abt node",
5
5
  "author": "polunzh <polunzh@gmail.com>",
6
6
  "homepage": "https://github.com/ArcBlock/blocklet-server#readme",
@@ -32,10 +32,10 @@
32
32
  "url": "https://github.com/ArcBlock/blocklet-server/issues"
33
33
  },
34
34
  "dependencies": {
35
- "@abtnode/constant": "1.16.42-beta-20250413-121549-22e9a196",
36
- "@abtnode/logger": "1.16.42-beta-20250413-121549-22e9a196",
37
- "@abtnode/router-templates": "1.16.42-beta-20250413-121549-22e9a196",
38
- "@abtnode/util": "1.16.42-beta-20250413-121549-22e9a196",
35
+ "@abtnode/constant": "1.16.42-beta-20250415-224346-080ee735",
36
+ "@abtnode/logger": "1.16.42-beta-20250415-224346-080ee735",
37
+ "@abtnode/router-templates": "1.16.42-beta-20250415-224346-080ee735",
38
+ "@abtnode/util": "1.16.42-beta-20250415-224346-080ee735",
39
39
  "@arcblock/http-proxy": "^1.19.1",
40
40
  "@arcblock/is-valid-domain": "^1.0.5",
41
41
  "axios": "^1.7.9",
@@ -60,5 +60,5 @@
60
60
  "bluebird": "^3.7.2",
61
61
  "fs-extra": "^11.2.0"
62
62
  },
63
- "gitHead": "00ff6ee0d86ea1938965c69a973fd08ec1769f08"
63
+ "gitHead": "12f194b33fffb20ceb2dbe5fc348fb14053ac8c9"
64
64
  }