npm - c2-http - Versions diffs - 1.0.169 → 1.0.171 - Mend

c2-http 1.0.169 → 1.0.171

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/middleware/global-middleware/item/MiddlewareBody.d.ts CHANGED Viewed

@@ -1,5 +1,6 @@
 import express from "express";
 declare class MiddlewareBody {
+    private readonly LIMIT_BYTES;
     config(expressApplication: express.Application): void;
 }
 declare const _default: MiddlewareBody;

package/dist/middleware/global-middleware/item/MiddlewareBody.js CHANGED Viewed

@@ -5,14 +5,59 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 const body_parser_1 = __importDefault(require("body-parser"));
 const c2_util_1 = require("c2-util");
+const http_status_1 = require("http-status");
 // import moment from "moment";
 class MiddlewareBody {
+    LIMIT_BYTES = 1024 * 1024; // 1MB
     config(expressApplication) {
-        expressApplication.use(body_parser_1.default.json({ limit: "25mb" }));
-        expressApplication.use(body_parser_1.default.urlencoded({ limit: "25mb", extended: true })); // Aumentar de 5mb para 25mb
-        expressApplication.use(body_parser_1.default.text({ limit: "25mb" }));
+        // Middleware para verificar tamanho da requisição ANTES do body-parser processar
+        expressApplication.use((request, response, next) => {
+            const contentLength = request.headers["content-length"];
+            if (contentLength && parseInt(contentLength) > this.LIMIT_BYTES) {
+                // Logar informações da requisição antes de retornar o erro
+                const requestInfo = {
+                    method: request.method,
+                    url: request.originalUrl || request.url,
+                    headers: request.headers,
+                    contentLength: contentLength,
+                    contentLengthMB: (parseInt(contentLength) / (1024 * 1024)).toFixed(2) + " MB",
+                    limitMB: (this.LIMIT_BYTES / (1024 * 1024)).toFixed(2) + " MB",
+                    ip: request.ip || request.socket.remoteAddress,
+                    userAgent: request.headers["user-agent"]
+                };
+                (0, c2_util_1.log)("LOG_REQUEST_TOO_LARGE", JSON.stringify(requestInfo, null, 2));
+                return response.status(http_status_1.FORBIDDEN).json({
+                    message: "Request too large",
+                    detail: "O tamanho da requisição excede o limite permitido"
+                });
+            }
+            next();
+        });
+        expressApplication.use(body_parser_1.default.json({ limit: "1mb" }));
+        expressApplication.use(body_parser_1.default.urlencoded({ limit: "1mb", extended: true })); // Aumentar de 5mb para 25mb
+        expressApplication.use(body_parser_1.default.text({ limit: "1mb" }));
         // Adicionar parser para tipos não especificados
-        expressApplication.use(body_parser_1.default.raw({ limit: "25mb", type: "*/*" }));
+        expressApplication.use(body_parser_1.default.raw({ limit: "1mb", type: "*/*" }));
+        // Error handler para capturar erros do body-parser (caso o content-length não esteja disponível)
+        expressApplication.use((error, request, response, next) => {
+            if (error && (error.status === 413 || error.type === "entity.too.large" || error.message?.includes("request entity too large"))) {
+                // Logar informações da requisição antes de retornar o erro
+                const requestInfo = {
+                    method: request.method,
+                    url: request.originalUrl || request.url,
+                    headers: request.headers,
+                    contentLength: request.headers["content-length"] || "unknown",
+                    ip: request.ip || request.socket.remoteAddress,
+                    userAgent: request.headers["user-agent"]
+                };
+                (0, c2_util_1.log)("LOG_REQUEST_TOO_LARGE", JSON.stringify(requestInfo, null, 2));
+                return response.status(http_status_1.FORBIDDEN).json({
+                    message: "Request too large",
+                    detail: "O tamanho da requisição excede o limite permitido"
+                });
+            }
+            next(error);
+        });
         expressApplication.use((request, response, next) => {
             // log("LOG_BODY", "Body middleware enabled")
             const str = JSON.stringify(request.body);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "c2-http",
-  "version": "1.0.169",
+  "version": "1.0.171",
   "description": "Biblioteca Typescript para API NodeJS",
   "repository": "https://cabralsilva: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@github.com/cabralsilva/c2-http.git",
   "author": "Daniel Cabral <cabralconsultoriaemsoftware@gmail.com>",