perimeterx-js-core 0.1.0

package/lib/block_handler/DefaultBlockResponseGenerator.d.ts

@@ -0,0 +1,14 @@
+import { IContext } from '../context';
+import { IConfiguration } from '../config';
+import { IHttpResponse } from '../http';
+import { IBase64Utils } from '../utils';
+import { IBlockResponseGenerator } from './IBlockResponseGenerator';
+export declare class DefaultBlockResponseGenerator implements IBlockResponseGenerator {
+    private readonly config;
+    private readonly captchaResponseGenerator;
+    constructor(config: IConfiguration, base64Utils: IBase64Utils);
+    shouldGenerate(context: IContext): boolean;
+    generateBlockResponse(context: IContext): IHttpResponse;
+    private generateRateLimitResponse;
+    private generateCaptchaResponse;
+}

package/lib/block_handler/DefaultBlockResponseGenerator.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DefaultBlockResponseGenerator = void 0;
+var pxhd_1 = require("../pxhd");
+var http_1 = require("../http");
+var BlockAction_1 = require("./BlockAction");
+var CaptchaBlockResponseGenerator_1 = require("./captcha/CaptchaBlockResponseGenerator");
+var rate_limit_template_1 = require("./templates/rate_limit_template");
+var DefaultBlockResponseGenerator = /** @class */ (function () {
+    function DefaultBlockResponseGenerator(config, base64Utils) {
+        this.config = config;
+        this.captchaResponseGenerator = new CaptchaBlockResponseGenerator_1.CaptchaBlockResponseGenerator(config, base64Utils);
+    }
+    DefaultBlockResponseGenerator.prototype.shouldGenerate = function (context) {
+        return !context.isMonitoredRequest && !!context.blockReason;
+    };
+    DefaultBlockResponseGenerator.prototype.generateBlockResponse = function (context) {
+        var res;
+        switch (context.blockAction) {
+            case BlockAction_1.BlockAction.RATE_LIMIT:
+                res = this.generateRateLimitResponse();
+                break;
+            case BlockAction_1.BlockAction.CHALLENGE:
+            case BlockAction_1.BlockAction.CAPTCHA:
+            default:
+                res = this.generateCaptchaResponse(context);
+                break;
+        }
+        return pxhd_1.PXHDUtils.addPxhdToResponse(context, res);
+    };
+    DefaultBlockResponseGenerator.prototype.generateRateLimitResponse = function () {
+        var _a;
+        var status = 429;
+        var headers = (_a = {},
+            _a[http_1.CONTENT_TYPE_HEADER_NAME] = [http_1.ContentType.TEXT_HTML],
+            _a);
+        return new http_1.DefaultHttpResponse(rate_limit_template_1.RATE_LIMIT_TEMPLATE, { status: status, headers: headers });
+    };
+    DefaultBlockResponseGenerator.prototype.generateCaptchaResponse = function (context) {
+        return this.captchaResponseGenerator.generateBlockResponse(context);
+    };
+    return DefaultBlockResponseGenerator;
+}());
+exports.DefaultBlockResponseGenerator = DefaultBlockResponseGenerator;

package/lib/block_handler/IBlockResponseGenerator.d.ts

@@ -0,0 +1,14 @@
+import { IContext } from '../context';
+import { IHttpResponse } from '../http';
+export interface IBlockResponseGenerator {
+    /**
+     * @param context - The request context.
+     * @returns boolean - Whether or not a block response should be generated.
+     */
+    shouldGenerate(context: IContext): boolean;
+    /**
+     * @param context - The request context.
+     * @returns IHttpResponse - The block response that should be returned to the end-user.
+     */
+    generateBlockResponse(context: IContext): IHttpResponse;
+}

package/lib/block_handler/IBlockResponseGenerator.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/block_handler/captcha/CaptchaBlockResponseGenerator.d.ts

@@ -0,0 +1,14 @@
+import { IConfiguration } from '../../config';
+import { IContext } from '../../context';
+import { IHttpResponse } from '../../http';
+import { IBase64Utils } from '../../utils';
+import { IBlockResponseGenerator } from '../IBlockResponseGenerator';
+export declare class CaptchaBlockResponseGenerator implements IBlockResponseGenerator {
+    private readonly config;
+    private readonly jsonCaptchaGenerator;
+    private readonly mobileCaptchaGenerator;
+    private readonly htmlCaptchaGenerator;
+    constructor(config: IConfiguration, base64Utils: IBase64Utils);
+    shouldGenerate({ blockAction }: IContext): boolean;
+    generateBlockResponse(context: IContext): IHttpResponse;
+}

package/lib/block_handler/captcha/CaptchaBlockResponseGenerator.js

@@ -0,0 +1,30 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CaptchaBlockResponseGenerator = void 0;
+var BlockAction_1 = require("../BlockAction");
+var JsonCaptchaResponseGenerator_1 = require("./JsonCaptchaResponseGenerator");
+var MobileCaptchaResponseGenerator_1 = require("./MobileCaptchaResponseGenerator");
+var HtmlCaptchaResponseGenerator_1 = require("./HtmlCaptchaResponseGenerator");
+var CaptchaBlockResponseGenerator = /** @class */ (function () {
+    function CaptchaBlockResponseGenerator(config, base64Utils) {
+        this.config = config;
+        this.jsonCaptchaGenerator = new JsonCaptchaResponseGenerator_1.JsonCaptchaResponseGenerator(config);
+        this.mobileCaptchaGenerator = new MobileCaptchaResponseGenerator_1.MobileCaptchaResponseGenerator(config, base64Utils);
+        this.htmlCaptchaGenerator = new HtmlCaptchaResponseGenerator_1.HtmlCaptchaResponseGenerator(config);
+    }
+    CaptchaBlockResponseGenerator.prototype.shouldGenerate = function (_a) {
+        var blockAction = _a.blockAction;
+        return blockAction === BlockAction_1.BlockAction.CAPTCHA || !Object.values(BlockAction_1.BlockAction).includes(blockAction);
+    };
+    CaptchaBlockResponseGenerator.prototype.generateBlockResponse = function (context) {
+        if (this.mobileCaptchaGenerator.shouldGenerate(context)) {
+            return this.mobileCaptchaGenerator.generateBlockResponse(context);
+        }
+        if (this.jsonCaptchaGenerator.shouldGenerate(context)) {
+            return this.jsonCaptchaGenerator.generateBlockResponse(context);
+        }
+        return this.htmlCaptchaGenerator.generateBlockResponse(context);
+    };
+    return CaptchaBlockResponseGenerator;
+}());
+exports.CaptchaBlockResponseGenerator = CaptchaBlockResponseGenerator;

package/lib/block_handler/captcha/HtmlCaptchaResponseGenerator.d.ts

@@ -0,0 +1,10 @@
+import { IConfiguration } from '../../config';
+import { IContext } from '../../context';
+import { IHttpResponse } from '../../http';
+import { IBlockResponseGenerator } from '../IBlockResponseGenerator';
+export declare class HtmlCaptchaResponseGenerator implements IBlockResponseGenerator {
+    private readonly config;
+    constructor(config: IConfiguration);
+    shouldGenerate(context: IContext): boolean;
+    generateBlockResponse(context: IContext): IHttpResponse;
+}

package/lib/block_handler/captcha/HtmlCaptchaResponseGenerator.js

@@ -0,0 +1,25 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HtmlCaptchaResponseGenerator = void 0;
+var http_1 = require("../../http");
+var utils_1 = require("../utils");
+var captcha_template_1 = require("../templates/captcha_template");
+var HtmlCaptchaResponseGenerator = /** @class */ (function () {
+    function HtmlCaptchaResponseGenerator(config) {
+        this.config = config;
+    }
+    HtmlCaptchaResponseGenerator.prototype.shouldGenerate = function (context) {
+        return true;
+    };
+    HtmlCaptchaResponseGenerator.prototype.generateBlockResponse = function (context) {
+        var _a;
+        var status = 403;
+        var headers = (_a = {},
+            _a[http_1.CONTENT_TYPE_HEADER_NAME] = [http_1.ContentType.TEXT_HTML],
+            _a);
+        var body = (0, utils_1.renderHtml)(captcha_template_1.CAPTCHA_TEMPLATE, (0, utils_1.createBlockData)(this.config, context));
+        return new http_1.DefaultHttpResponse(body, { status: status, headers: headers });
+    };
+    return HtmlCaptchaResponseGenerator;
+}());
+exports.HtmlCaptchaResponseGenerator = HtmlCaptchaResponseGenerator;

package/lib/block_handler/captcha/JsonCaptchaResponseGenerator.d.ts

@@ -0,0 +1,10 @@
+import { IConfiguration } from '../../config';
+import { IContext } from '../../context';
+import { IHttpResponse } from '../../http';
+import { IBlockResponseGenerator } from '../IBlockResponseGenerator';
+export declare class JsonCaptchaResponseGenerator implements IBlockResponseGenerator {
+    private readonly config;
+    constructor(config: IConfiguration);
+    shouldGenerate(context: IContext): boolean;
+    generateBlockResponse(context: IContext): IHttpResponse;
+}

package/lib/block_handler/captcha/JsonCaptchaResponseGenerator.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JsonCaptchaResponseGenerator = void 0;
+var BlockAction_1 = require("../BlockAction");
+var http_1 = require("../../http");
+var utils_1 = require("../utils");
+var JsonCaptchaResponseGenerator = /** @class */ (function () {
+    function JsonCaptchaResponseGenerator(config) {
+        this.config = config;
+    }
+    JsonCaptchaResponseGenerator.prototype.shouldGenerate = function (context) {
+        var _a, _b;
+        if (!this.config.advancedBlockingResponseEnabled) {
+            return false;
+        }
+        var acceptHeaderValue = ((_a = context.requestData.headers.get(http_1.ACCEPT_HEADER_NAME)) === null || _a === void 0 ? void 0 : _a[0]) ||
+            ((_b = context.requestData.headers.get(http_1.CONTENT_TYPE_HEADER_NAME)) === null || _b === void 0 ? void 0 : _b[0]) ||
+            '';
+        var acceptHeaderContainsJson = acceptHeaderValue === null || acceptHeaderValue === void 0 ? void 0 : acceptHeaderValue.split(',').some(function (value) { return value.toLowerCase() === http_1.ContentType.APPLICATION_JSON; });
+        return !context.isMobile && context.blockAction !== BlockAction_1.BlockAction.RATE_LIMIT && acceptHeaderContainsJson;
+    };
+    JsonCaptchaResponseGenerator.prototype.generateBlockResponse = function (context) {
+        var _a;
+        var status = 403;
+        var headers = (_a = {},
+            _a[http_1.CONTENT_TYPE_HEADER_NAME] = [http_1.ContentType.APPLICATION_JSON],
+            _a);
+        var blockData = (0, utils_1.createBlockData)(this.config, context);
+        var jsonBlockPayload = {
+            appId: blockData.appId,
+            jsClientSrc: blockData.jsClientSrc,
+            customLogo: blockData.customLogo,
+            firstPartyEnabled: blockData.firstPartyEnabled,
+            vid: blockData.vid,
+            uuid: blockData.uuid,
+            hostUrl: blockData.hostUrl,
+            blockScript: blockData.blockScript,
+            altBlockScript: blockData.altBlockScript,
+        };
+        return new http_1.DefaultHttpResponse(JSON.stringify(jsonBlockPayload), { status: status, headers: headers });
+    };
+    return JsonCaptchaResponseGenerator;
+}());
+exports.JsonCaptchaResponseGenerator = JsonCaptchaResponseGenerator;

package/lib/block_handler/captcha/MobileCaptchaResponseGenerator.d.ts

@@ -0,0 +1,12 @@
+import { IConfiguration } from '../../config';
+import { IContext } from '../../context';
+import { IHttpResponse } from '../../http';
+import { IBase64Utils } from '../../utils';
+import { IBlockResponseGenerator } from '../IBlockResponseGenerator';
+export declare class MobileCaptchaResponseGenerator implements IBlockResponseGenerator {
+    private readonly config;
+    private readonly base64Utils;
+    constructor(config: IConfiguration, base64Utils: IBase64Utils);
+    shouldGenerate(context: IContext): boolean;
+    generateBlockResponse(context: IContext): IHttpResponse;
+}

package/lib/block_handler/captcha/MobileCaptchaResponseGenerator.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MobileCaptchaResponseGenerator = void 0;
+var http_1 = require("../../http");
+var BlockAction_1 = require("../BlockAction");
+var utils_1 = require("../utils");
+var captcha_template_1 = require("../templates/captcha_template");
+var MobileCaptchaResponseGenerator = /** @class */ (function () {
+    function MobileCaptchaResponseGenerator(config, base64Utils) {
+        this.config = config;
+        this.base64Utils = base64Utils;
+    }
+    MobileCaptchaResponseGenerator.prototype.shouldGenerate = function (context) {
+        return context.isMobile;
+    };
+    MobileCaptchaResponseGenerator.prototype.generateBlockResponse = function (context) {
+        var _a;
+        var status = 403;
+        var headers = (_a = {},
+            _a[http_1.CONTENT_TYPE_HEADER_NAME] = [http_1.ContentType.APPLICATION_JSON],
+            _a);
+        var blockData = (0, utils_1.createBlockData)(this.config, context);
+        var captchaPage = (0, utils_1.renderHtml)(captcha_template_1.CAPTCHA_TEMPLATE, blockData);
+        var mobileBlockPayload = {
+            action: (0, BlockAction_1.blockActionToWord)(blockData.blockAction),
+            uuid: blockData.uuid,
+            vid: blockData.vid,
+            appId: blockData.appId,
+            page: this.base64Utils.base64Encode(captchaPage),
+            collectorHost: this.config.backendCollectorUrl,
+        };
+        return new http_1.DefaultHttpResponse(JSON.stringify(mobileBlockPayload), { status: status, headers: headers });
+    };
+    return MobileCaptchaResponseGenerator;
+}());
+exports.MobileCaptchaResponseGenerator = MobileCaptchaResponseGenerator;

package/lib/block_handler/index.d.ts

@@ -0,0 +1,13 @@
+export { BlockData } from './model/BlockData';
+export { JsonBlockPayload } from './model/JsonBlockPayload';
+export { MobileBlockPayload } from './model/MobileBlockPayload';
+export { BlockAction } from './BlockAction';
+export { BlockReason } from './BlockReason';
+export { IBlockResponseGenerator } from './IBlockResponseGenerator';
+export { DefaultBlockResponseGenerator } from './DefaultBlockResponseGenerator';
+export { CaptchaBlockResponseGenerator } from './captcha/CaptchaBlockResponseGenerator';
+export { HtmlCaptchaResponseGenerator } from './captcha/HtmlCaptchaResponseGenerator';
+export { JsonCaptchaResponseGenerator } from './captcha/JsonCaptchaResponseGenerator';
+export { MobileCaptchaResponseGenerator } from './captcha/MobileCaptchaResponseGenerator';
+export { CAPTCHA_TEMPLATE } from './templates/captcha_template';
+export { RATE_LIMIT_TEMPLATE } from './templates/rate_limit_template';

package/lib/block_handler/index.js

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RATE_LIMIT_TEMPLATE = exports.CAPTCHA_TEMPLATE = exports.MobileCaptchaResponseGenerator = exports.JsonCaptchaResponseGenerator = exports.HtmlCaptchaResponseGenerator = exports.CaptchaBlockResponseGenerator = exports.DefaultBlockResponseGenerator = exports.BlockReason = exports.BlockAction = void 0;
+var BlockAction_1 = require("./BlockAction");
+Object.defineProperty(exports, "BlockAction", { enumerable: true, get: function () { return BlockAction_1.BlockAction; } });
+var BlockReason_1 = require("./BlockReason");
+Object.defineProperty(exports, "BlockReason", { enumerable: true, get: function () { return BlockReason_1.BlockReason; } });
+var DefaultBlockResponseGenerator_1 = require("./DefaultBlockResponseGenerator");
+Object.defineProperty(exports, "DefaultBlockResponseGenerator", { enumerable: true, get: function () { return DefaultBlockResponseGenerator_1.DefaultBlockResponseGenerator; } });
+var CaptchaBlockResponseGenerator_1 = require("./captcha/CaptchaBlockResponseGenerator");
+Object.defineProperty(exports, "CaptchaBlockResponseGenerator", { enumerable: true, get: function () { return CaptchaBlockResponseGenerator_1.CaptchaBlockResponseGenerator; } });
+var HtmlCaptchaResponseGenerator_1 = require("./captcha/HtmlCaptchaResponseGenerator");
+Object.defineProperty(exports, "HtmlCaptchaResponseGenerator", { enumerable: true, get: function () { return HtmlCaptchaResponseGenerator_1.HtmlCaptchaResponseGenerator; } });
+var JsonCaptchaResponseGenerator_1 = require("./captcha/JsonCaptchaResponseGenerator");
+Object.defineProperty(exports, "JsonCaptchaResponseGenerator", { enumerable: true, get: function () { return JsonCaptchaResponseGenerator_1.JsonCaptchaResponseGenerator; } });
+var MobileCaptchaResponseGenerator_1 = require("./captcha/MobileCaptchaResponseGenerator");
+Object.defineProperty(exports, "MobileCaptchaResponseGenerator", { enumerable: true, get: function () { return MobileCaptchaResponseGenerator_1.MobileCaptchaResponseGenerator; } });
+var captcha_template_1 = require("./templates/captcha_template");
+Object.defineProperty(exports, "CAPTCHA_TEMPLATE", { enumerable: true, get: function () { return captcha_template_1.CAPTCHA_TEMPLATE; } });
+var rate_limit_template_1 = require("./templates/rate_limit_template");
+Object.defineProperty(exports, "RATE_LIMIT_TEMPLATE", { enumerable: true, get: function () { return rate_limit_template_1.RATE_LIMIT_TEMPLATE; } });

package/lib/block_handler/model/BlockData.d.ts

@@ -0,0 +1,16 @@
+import { BlockAction } from '../BlockAction';
+export declare type BlockData = {
+    appId: string;
+    hostUrl: string;
+    jsClientSrc: string;
+    firstPartyEnabled: boolean;
+    blockScript: string;
+    altBlockScript: string;
+    cssRef?: string;
+    vid?: string;
+    uuid?: string;
+    customLogo?: string;
+    jsRef?: string;
+    isMobile?: boolean;
+    blockAction?: BlockAction;
+};

package/lib/block_handler/model/BlockData.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/block_handler/model/JsonBlockPayload.d.ts

@@ -0,0 +1,11 @@
+export declare type JsonBlockPayload = {
+    appId: string;
+    jsClientSrc: string;
+    firstPartyEnabled: boolean;
+    vid: string;
+    uuid: string;
+    hostUrl: string;
+    blockScript: string;
+    altBlockScript: string;
+    customLogo?: string;
+};

package/lib/block_handler/model/JsonBlockPayload.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/block_handler/model/MobileBlockPayload.d.ts

@@ -0,0 +1,8 @@
+export declare type MobileBlockPayload = {
+    action: string;
+    uuid: string;
+    vid: string;
+    appId: string;
+    page: string;
+    collectorHost: string;
+};

package/lib/block_handler/model/MobileBlockPayload.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/block_handler/templates/captcha_template.d.ts

@@ -0,0 +1 @@
+export declare const CAPTCHA_TEMPLATE = "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n    <meta charset=\"utf-8\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n    <meta name=\"description\" content=\"px-captcha\">\n    <title>Access to this page has been denied</title>\n    {{cssRef}}\n</head>\n<body>\n    <script>\n        /* PerimeterX assignments */\n        window._pxVid = '{{vid}}';\n        window._pxUuid = '{{uuid}}';\n        window._pxAppId = '{{appId}}';\n        window._pxMobile = {{isMobile}};\n        window._pxHostUrl = '{{hostUrl}}';\n        window._pxCustomLogo = '{{customLogo}}';\n        window._pxJsClientSrc = '{{jsClientSrc}}';\n        window._pxFirstPartyEnabled = {{firstPartyEnabled}};\n        var pxCaptchaSrc = '{{blockScript}}';\n\n        var script = document.createElement('script');\n        script.src = pxCaptchaSrc;\n        script.onerror = function () {\n            script = document.createElement('script');\n            script.src = '{{altBlockScript}}';\n            script.onerror = window._pxOnError;\n            document.head.appendChild(script);\n        };\n        window._pxOnError = function () {\n            var style = document.createElement('style');\n            style.innerText = '@import url(https://fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap);body{background-color:#fafbfc}.px-captcha-error-container{position:fixed;height:340px;background-color:#fff;font-family:Roboto,sans-serif}.px-captcha-error-header{color:#f0f1f2;font-size:29px;margin:67px 0 33px;font-weight:500;line-height:.83;text-align:center}.px-captcha-error-message{color:#f0f1f2;font-size:18px;margin:0 0 29px;line-height:1.33;text-align:center}.px-captcha-error-button{text-align:center;line-height:48px;width:253px;margin:auto;border-radius:50px;border:solid 1px #f0f1f2;font-size:20px;color:#f0f1f2}.px-captcha-error-wrapper{margin:18px 0 0}div.px-captcha-error{margin:auto;text-align:center;width:400px;height:30px;font-size:12px;background-color:#fcf0f2;color:#ce0e2d}img.px-captcha-error{margin:6px 8px -2px 0}.px-captcha-error-refid{border-top:solid 1px #f0eeee;height:27px;margin:13px 0 0;border-radius:0 0 3px 3px;background-color:#fafbfc;font-size:10px;line-height:2.5;text-align:center;color:#b1b5b8}@media (min-width:620px){.px-captcha-error-container{width:530px;top:50%;left:50%;margin-top:-170px;margin-left:-265px;border-radius:3px;box-shadow:0 2px 9px -1px rgba(0,0,0,.13)}}@media (min-width:481px) and (max-width:620px){.px-captcha-error-container{width:85%;top:50%;left:50%;margin-top:-170px;margin-left:-42.5%;border-radius:3px;box-shadow:0 2px 9px -1px rgba(0,0,0,.13)}}@media (max-width:480px){body{background-color:#fff}.px-captcha-error-header{color:#f0f1f2;font-size:29px;margin:55px 0 33px}.px-captcha-error-container{width:530px;top:50%;left:50%;margin-top:-170px;margin-left:-265px}.px-captcha-error-refid{position:fixed;width:100%;left:0;bottom:0;border-radius:0;font-size:14px;line-height:2}}@media (max-width:390px){div.px-captcha-error{font-size:10px}.px-captcha-error-refid{font-size:11px;line-height:2.5}}';\n            document.head.appendChild(style);\n            var div = document.createElement('div');\n            div.className = 'px-captcha-error-container';\n            div.innerHTML = '<div class=\"px-captcha-error-header\">Before we continue...</div><div class=\"px-captcha-error-message\">Press & Hold to confirm you are<br>a human (and not a bot).</div><div class=\"px-captcha-error-button\">Press & Hold</div><div class=\"px-captcha-error-wrapper\"><div class=\"px-captcha-error\"><img class=\"px-captcha-error\" src=\"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAAQCAMAAADDGrRQAAAABGdBTUEAALGPC/xhBQAAAAFzUkdCAK7OHOkAAABFUExURUdwTNYELOEGONQILd0AONwALtwEL+AAL9MFLfkJSNQGLdMJLdQJLdQGLdQKLtYFLNcELdUGLdcBL9gFL88OLdUFLNEOLglBhT4AAAAXdFJOUwC8CqgNIRgRoAS1dWWuR4RTjzgryZpYblfkcAAAAI9JREFUGNNdj+sWhCAIhAdvqGVa1r7/oy6RZ7eaH3D4ZACBIed9wlOOMtUnSrEmZ6cHa9YAIfsbCkWrdpi/c50Bk2CO9mNLdMAu03wJA3HpEnfpxbyOg6ruyx8JJi6KNstnslp1dbPd9GnqmuYq7mmcv1zjnbQw8cV0xzkqo+fX1zkjUOO7wnrInUTxJiruC3vtBNRoQQn2AAAAAElFTkSuQmCC\">Please check your internet connection' + (window._pxMobile ? '' : ' or disable your ad-blocker') + '.</div></div><div class=\"px-captcha-error-refid\">Reference ID ' + window._pxUuid + '</div>';\n            document.body.appendChild(div);\n            if (window._pxMobile) {\n                setTimeout(function() {\n                    location.href = '/px/captcha_close?status=-1';\n                }, 5000);\n            }\n        };\n        document.head.appendChild(script);\n    </script>\n    {{jsRef}}\n</body>\n</html>\n";

package/lib/block_handler/templates/captcha_template.js

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CAPTCHA_TEMPLATE = void 0;
+exports.CAPTCHA_TEMPLATE = "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n    <meta charset=\"utf-8\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n    <meta name=\"description\" content=\"px-captcha\">\n    <title>Access to this page has been denied</title>\n    {{cssRef}}\n</head>\n<body>\n    <script>\n        /* PerimeterX assignments */\n        window._pxVid = '{{vid}}';\n        window._pxUuid = '{{uuid}}';\n        window._pxAppId = '{{appId}}';\n        window._pxMobile = {{isMobile}};\n        window._pxHostUrl = '{{hostUrl}}';\n        window._pxCustomLogo = '{{customLogo}}';\n        window._pxJsClientSrc = '{{jsClientSrc}}';\n        window._pxFirstPartyEnabled = {{firstPartyEnabled}};\n        var pxCaptchaSrc = '{{blockScript}}';\n\n        var script = document.createElement('script');\n        script.src = pxCaptchaSrc;\n        script.onerror = function () {\n            script = document.createElement('script');\n            script.src = '{{altBlockScript}}';\n            script.onerror = window._pxOnError;\n            document.head.appendChild(script);\n        };\n        window._pxOnError = function () {\n            var style = document.createElement('style');\n            style.innerText = '@import url(https://fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap);body{background-color:#fafbfc}.px-captcha-error-container{position:fixed;height:340px;background-color:#fff;font-family:Roboto,sans-serif}.px-captcha-error-header{color:#f0f1f2;font-size:29px;margin:67px 0 33px;font-weight:500;line-height:.83;text-align:center}.px-captcha-error-message{color:#f0f1f2;font-size:18px;margin:0 0 29px;line-height:1.33;text-align:center}.px-captcha-error-button{text-align:center;line-height:48px;width:253px;margin:auto;border-radius:50px;border:solid 1px #f0f1f2;font-size:20px;color:#f0f1f2}.px-captcha-error-wrapper{margin:18px 0 0}div.px-captcha-error{margin:auto;text-align:center;width:400px;height:30px;font-size:12px;background-color:#fcf0f2;color:#ce0e2d}img.px-captcha-error{margin:6px 8px -2px 0}.px-captcha-error-refid{border-top:solid 1px #f0eeee;height:27px;margin:13px 0 0;border-radius:0 0 3px 3px;background-color:#fafbfc;font-size:10px;line-height:2.5;text-align:center;color:#b1b5b8}@media (min-width:620px){.px-captcha-error-container{width:530px;top:50%;left:50%;margin-top:-170px;margin-left:-265px;border-radius:3px;box-shadow:0 2px 9px -1px rgba(0,0,0,.13)}}@media (min-width:481px) and (max-width:620px){.px-captcha-error-container{width:85%;top:50%;left:50%;margin-top:-170px;margin-left:-42.5%;border-radius:3px;box-shadow:0 2px 9px -1px rgba(0,0,0,.13)}}@media (max-width:480px){body{background-color:#fff}.px-captcha-error-header{color:#f0f1f2;font-size:29px;margin:55px 0 33px}.px-captcha-error-container{width:530px;top:50%;left:50%;margin-top:-170px;margin-left:-265px}.px-captcha-error-refid{position:fixed;width:100%;left:0;bottom:0;border-radius:0;font-size:14px;line-height:2}}@media (max-width:390px){div.px-captcha-error{font-size:10px}.px-captcha-error-refid{font-size:11px;line-height:2.5}}';\n            document.head.appendChild(style);\n            var div = document.createElement('div');\n            div.className = 'px-captcha-error-container';\n            div.innerHTML = '<div class=\"px-captcha-error-header\">Before we continue...</div><div class=\"px-captcha-error-message\">Press & Hold to confirm you are<br>a human (and not a bot).</div><div class=\"px-captcha-error-button\">Press & Hold</div><div class=\"px-captcha-error-wrapper\"><div class=\"px-captcha-error\"><img class=\"px-captcha-error\" src=\"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAAQCAMAAADDGrRQAAAABGdBTUEAALGPC/xhBQAAAAFzUkdCAK7OHOkAAABFUExURUdwTNYELOEGONQILd0AONwALtwEL+AAL9MFLfkJSNQGLdMJLdQJLdQGLdQKLtYFLNcELdUGLdcBL9gFL88OLdUFLNEOLglBhT4AAAAXdFJOUwC8CqgNIRgRoAS1dWWuR4RTjzgryZpYblfkcAAAAI9JREFUGNNdj+sWhCAIhAdvqGVa1r7/oy6RZ7eaH3D4ZACBIed9wlOOMtUnSrEmZ6cHa9YAIfsbCkWrdpi/c50Bk2CO9mNLdMAu03wJA3HpEnfpxbyOg6ruyx8JJi6KNstnslp1dbPd9GnqmuYq7mmcv1zjnbQw8cV0xzkqo+fX1zkjUOO7wnrInUTxJiruC3vtBNRoQQn2AAAAAElFTkSuQmCC\">Please check your internet connection' + (window._pxMobile ? '' : ' or disable your ad-blocker') + '.</div></div><div class=\"px-captcha-error-refid\">Reference ID ' + window._pxUuid + '</div>';\n            document.body.appendChild(div);\n            if (window._pxMobile) {\n                setTimeout(function() {\n                    location.href = '/px/captcha_close?status=-1';\n                }, 5000);\n            }\n        };\n        document.head.appendChild(script);\n    </script>\n    {{jsRef}}\n</body>\n</html>\n";

package/lib/block_handler/templates/rate_limit_template.d.ts

@@ -0,0 +1 @@
+export declare const RATE_LIMIT_TEMPLATE = "<html>\n<head>\n    <title>Too Many Requests</title>\n</head>\n<body>\n    <h1>Too Many Requests</h1>\n    <p>Reached maximum requests limitation, try again soon.</p>\n</body>\n</html>\n";

package/lib/block_handler/templates/rate_limit_template.js

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RATE_LIMIT_TEMPLATE = void 0;
+exports.RATE_LIMIT_TEMPLATE = "<html>\n<head>\n    <title>Too Many Requests</title>\n</head>\n<body>\n    <h1>Too Many Requests</h1>\n    <p>Reached maximum requests limitation, try again soon.</p>\n</body>\n</html>\n";

package/lib/block_handler/utils.d.ts

@@ -0,0 +1,5 @@
+import { IConfiguration } from '../config';
+import { IContext } from '../context';
+import { BlockData } from './model/BlockData';
+export declare const renderHtml: (htmlTemplate: string, blockData?: BlockData) => string;
+export declare const createBlockData: (config: IConfiguration, context: IContext) => BlockData;

package/lib/block_handler/utils.js

@@ -0,0 +1,48 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createBlockData = exports.renderHtml = void 0;
+var utils_1 = require("../utils");
+var first_party_1 = require("../first_party");
+var renderHtml = function (htmlTemplate, blockData) {
+    if (!blockData) {
+        return htmlTemplate;
+    }
+    Object.entries(blockData).forEach(function (_a) {
+        var key = _a[0], value = _a[1];
+        var replace = "{{".concat(key, "}}");
+        var regEx = new RegExp(replace, 'g');
+        htmlTemplate = htmlTemplate.replace(regEx, "".concat(value));
+    });
+    return htmlTemplate;
+};
+exports.renderHtml = renderHtml;
+var createBlockData = function (config, context) {
+    var _a, _b;
+    var captchaParams = "/captcha.js?a=".concat(context.blockAction, "&u=").concat(context.uuid, "&v=").concat(context.vid || '', "&m=").concat(context.isMobile ? '1' : '0');
+    var jsClientSrc = "".concat(config.backendClientUrl, "/").concat(config.appId, "/main.min.js");
+    var blockScript = "".concat(config.backendCaptchaUrl, "/").concat(config.appId).concat(captchaParams);
+    var hostUrl = config.backendCollectorUrl;
+    if (config.firstPartyEnabled && !context.isMobile) {
+        jsClientSrc = (0, first_party_1.getFirstPartySensorScriptPath)(config.firstPartyPrefix);
+        blockScript = "".concat((0, first_party_1.getFirstPartyCaptchaScriptPathPrefix)(config.firstPartyPrefix)).concat(captchaParams);
+        hostUrl = (0, first_party_1.getFirstPartyXhrPathPrefix)(config.firstPartyPrefix);
+    }
+    var cssRef = config.cssRef ? "<link rel=\"stylesheet\" type=\"text/css\" href=\"".concat(config.cssRef, "\" />") : '';
+    var jsRef = config.jsRef ? "<script src=\"".concat(config.jsRef, "\"></script>") : '';
+    var altBlockScript = "".concat(config.altBackendCaptchaUrl, "/").concat(config.appId).concat(captchaParams);
+    return {
+        appId: config.appId,
+        vid: context.vid || ((_b = (_a = context.requestData) === null || _a === void 0 ? void 0 : _a.cookies) === null || _b === void 0 ? void 0 : _b[utils_1.PXVID_COOKIE_NAME]) || '',
+        uuid: context.uuid || '',
+        isMobile: context.isMobile,
+        customLogo: config.customLogo || '',
+        hostUrl: hostUrl,
+        cssRef: cssRef,
+        jsRef: jsRef,
+        jsClientSrc: jsClientSrc,
+        firstPartyEnabled: config.firstPartyEnabled,
+        blockScript: blockScript,
+        altBlockScript: altBlockScript,
+    };
+};
+exports.createBlockData = createBlockData;

package/lib/config/ConfigurationParams.d.ts

@@ -0,0 +1,65 @@
+import { CustomParametersFunction } from '../custom_parameters';
+import { AdditionalActivityHandler } from '../additional_activity_handler';
+export declare type ConfigurationParams = {
+    px_app_id: string;
+    px_auth_token: string;
+    px_cookie_secret: string;
+    px_s2s_timeout?: number;
+    px_backend_url?: string;
+    px_blocking_score?: number;
+    px_user_agent_max_length?: number;
+    px_risk_cookie_max_length?: number;
+    px_risk_cookie_min_iterations?: number;
+    px_risk_cookie_max_iterations?: number;
+    px_logger_severity?: 'debug' | 'error' | 'none';
+    px_ip_headers?: string[];
+    px_module_enabled?: boolean;
+    px_module_mode?: 'monitor' | 'active_blocking';
+    px_advanced_blocking_response_enabled?: boolean;
+    px_max_activity_batch_size?: number;
+    px_batch_activities_timeout_ms?: number;
+    px_bypass_monitor_header?: string;
+    px_csp_enabled?: boolean;
+    px_csp_no_updates_max_interval_minutes?: number;
+    px_csp_policy_refresh_interval_minutes?: number;
+    px_enforced_routes?: string[];
+    px_first_party_enabled?: boolean;
+    px_first_party_prefix?: string;
+    px_backend_captcha_url?: string;
+    px_backend_client_url?: string;
+    px_backend_collector_url?: string;
+    px_login_credentials_extraction_enabled?: boolean;
+    px_login_credentials_extraction?: object[];
+    px_credentials_intelligence_version?: 'v2' | 'multistep_sso';
+    px_compromised_credentials_header?: string;
+    px_send_raw_username_on_additional_s2s_activity?: boolean;
+    px_additional_s2s_activity_header_enabled?: boolean;
+    px_login_successful_reporting_method?: '' | 'status' | 'body' | 'header' | 'custom';
+    px_login_successful_body_regex?: string;
+    px_login_successful_header_name?: string;
+    px_login_successful_header_value?: string;
+    px_login_successful_status?: number[];
+    px_monitored_routes?: string[];
+    px_sensitive_headers?: string[];
+    px_sensitive_routes?: string[];
+    px_filter_by_extension?: string[];
+    px_filter_by_http_method?: string[];
+    px_filter_by_ip?: string[];
+    px_filter_by_route?: string[];
+    px_filter_by_user_agent?: string[];
+    px_css_ref?: string;
+    px_js_ref?: string;
+    px_custom_cookie_header?: string;
+    px_custom_logo?: string;
+    px_proxy_url?: string;
+    px_jwt_cookie_name?: string;
+    px_jwt_cookie_user_id_field_name?: string;
+    px_jwt_cookie_additional_field_names?: string[];
+    px_jwt_header_name?: string;
+    px_jwt_header_user_id_field_name?: string;
+    px_jwt_header_additional_field_names?: string[];
+    px_extract_ip?: () => {};
+    px_additional_activity_handler?: AdditionalActivityHandler;
+    px_enrich_custom_parameters?: CustomParametersFunction;
+    px_login_successful_custom_callback?: () => {};
+};

package/lib/config/ConfigurationParams.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/config/DefaultConfigurations.d.ts

@@ -0,0 +1,2 @@
+import { ConfigurationParams } from './ConfigurationParams';
+export declare const DEFAULT_CONFIGURATIONS: ConfigurationParams;

package/lib/config/DefaultConfigurations.js

@@ -0,0 +1,107 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DEFAULT_CONFIGURATIONS = void 0;
+var LoggerSeverity_1 = require("../logger/LoggerSeverity");
+var ModuleMode_1 = require("../utils/ModuleMode");
+exports.DEFAULT_CONFIGURATIONS = {
+    px_app_id: '',
+    px_auth_token: '',
+    px_cookie_secret: '',
+    px_s2s_timeout: 1000,
+    px_blocking_score: 100,
+    px_user_agent_max_length: 8528,
+    px_risk_cookie_max_length: 2048,
+    px_risk_cookie_min_iterations: 500,
+    px_risk_cookie_max_iterations: 5000,
+    px_logger_severity: LoggerSeverity_1.LoggerSeverity.ERROR,
+    px_ip_headers: [],
+    px_extract_ip: null,
+    px_module_enabled: true,
+    px_module_mode: ModuleMode_1.ModuleMode.MONITOR,
+    px_additional_activity_handler: null,
+    px_advanced_blocking_response_enabled: true,
+    px_max_activity_batch_size: 20,
+    px_batch_activities_timeout_ms: 1000,
+    px_bypass_monitor_header: '',
+    px_csp_enabled: false,
+    px_csp_no_updates_max_interval_minutes: 60,
+    px_csp_policy_refresh_interval_minutes: 5,
+    px_enforced_routes: [],
+    px_first_party_enabled: true,
+    px_first_party_prefix: '',
+    px_backend_url: '',
+    px_backend_collector_url: '',
+    px_backend_captcha_url: 'https://captcha.px-cdn.net',
+    px_backend_client_url: 'https://client.perimeterx.net',
+    px_login_credentials_extraction_enabled: false,
+    px_login_credentials_extraction: [],
+    px_credentials_intelligence_version: 'v2',
+    px_compromised_credentials_header: 'px-compromised-credentials',
+    px_send_raw_username_on_additional_s2s_activity: false,
+    px_additional_s2s_activity_header_enabled: false,
+    px_login_successful_reporting_method: '',
+    px_login_successful_body_regex: '',
+    px_login_successful_header_name: '',
+    px_login_successful_header_value: '',
+    px_login_successful_status: [],
+    px_login_successful_custom_callback: null,
+    px_monitored_routes: [],
+    px_sensitive_headers: ['cookie', 'cookies'],
+    px_sensitive_routes: [],
+    px_filter_by_extension: [
+        '.css',
+        '.bmp',
+        '.tif',
+        '.ttf',
+        '.docx',
+        '.woff2',
+        '.js',
+        '.pict',
+        '.tiff',
+        '.eot',
+        '.xlsx',
+        '.jpg',
+        '.csv',
+        '.eps',
+        '.woff',
+        '.xls',
+        '.jpeg',
+        '.doc',
+        '.ejs',
+        '.otf',
+        '.pptx',
+        '.gif',
+        '.pdf',
+        '.swf',
+        '.svg',
+        '.ps',
+        '.ico',
+        '.pls',
+        '.midi',
+        '.svgz',
+        '.class',
+        '.png',
+        '.ppt',
+        '.mid',
+        '.webp',
+        '.jar',
+        '.json',
+        '.xml',
+    ],
+    px_filter_by_http_method: [],
+    px_filter_by_ip: [],
+    px_filter_by_route: [],
+    px_filter_by_user_agent: [],
+    px_css_ref: '',
+    px_js_ref: '',
+    px_custom_cookie_header: '',
+    px_custom_logo: '',
+    px_enrich_custom_parameters: null,
+    px_proxy_url: '',
+    px_jwt_cookie_name: '',
+    px_jwt_cookie_user_id_field_name: '',
+    px_jwt_cookie_additional_field_names: [],
+    px_jwt_header_name: '',
+    px_jwt_header_user_id_field_name: '',
+    px_jwt_header_additional_field_names: [],
+};