perimeterx-js-core 0.25.0 → 0.26.0

package/lib/cjs/risk_api/model/GetRiskRequestHeaders.js

@@ -0,0 +1,185 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RISK_ACTIVITY_ADDITIONAL_FIELDS_TO_HEADER_NAMES = exports.RISK_ACTIVITY_REQUEST_FIELDS_TO_HEADER_NAMES = exports.RISK_ACTIVITY_FIELDS_TO_HEADER_NAMES = void 0;
+exports.RISK_ACTIVITY_FIELDS_TO_HEADER_NAMES = {
+    vid: {
+        header: 'x-px-vid',
+    },
+    client_uuid: {
+        header: 'x-px-client-uuid',
+    },
+    pxhd: {
+        header: 'x-px-pxhd',
+    },
+};
+exports.RISK_ACTIVITY_REQUEST_FIELDS_TO_HEADER_NAMES = {
+    socket_ip: {
+        header: 'x-px-socket-ip',
+    },
+    url: {
+        header: 'x-px-url',
+    },
+};
+exports.RISK_ACTIVITY_ADDITIONAL_FIELDS_TO_HEADER_NAMES = {
+    cpa: {
+        header: 'x-px-add-cpa',
+        convertToString: function (value) { return "".concat(value); },
+    },
+    enforcer_start_time: {
+        header: 'x-px-add-enforcer-start-time',
+        convertToString: function (value) { return "".concat(value); },
+    },
+    is_hype_sale: {
+        header: 'x-px-add-is-hype-sale',
+        convertToString: function (value) { return "".concat(value); },
+    },
+    px_cookie_hmac: {
+        header: 'x-px-add-cookie-hmac',
+    },
+    raw_url: {
+        header: 'x-px-add-raw-url',
+    },
+    tls_ja3_fingerprint: {
+        header: 'x-px-add-tls-ja3-fingerprint',
+    },
+    tls_preferred_ciphers: {
+        header: 'x-px-add-tls-preferred-ciphers',
+    },
+    used_cookie_secret: {
+        header: 'x-px-add-used-cookie-secret',
+    },
+    risk_start_time: {
+        header: 'x-px-add-risk-start-time',
+        convertToString: function (value) { return "".concat(value); },
+    },
+    app_user_id: {
+        header: 'x-px-add-app-user-id',
+    },
+    ci_version: {
+        header: 'x-px-add-ci-version',
+    },
+    cookie_origin: {
+        header: 'x-px-add-cookie-origin',
+    },
+    cross_tab_session: {
+        header: 'x-px-add-cross-tab-session',
+    },
+    custom_param1: {
+        header: 'x-px-custom-param1',
+    },
+    custom_param10: {
+        header: 'x-px-custom-param10',
+    },
+    custom_param2: {
+        header: 'x-px-custom-param2',
+    },
+    custom_param3: {
+        header: 'x-px-custom-param3',
+    },
+    custom_param4: {
+        header: 'x-px-custom-param4',
+    },
+    custom_param5: {
+        header: 'x-px-custom-param5',
+    },
+    custom_param6: {
+        header: 'x-px-custom-param6',
+    },
+    custom_param7: {
+        header: 'x-px-custom-param7',
+    },
+    custom_param8: {
+        header: 'x-px-custom-param8',
+    },
+    custom_param9: {
+        header: 'x-px-custom-param9',
+    },
+    enforcer_vid_source: {
+        header: 'x-px-add-enforcer-vid-source',
+    },
+    server_info_datacenter: {
+        header: 'x-px-add-server-info-datacenter',
+    },
+    server_info_region: {
+        header: 'x-px-add-server-info-region',
+    },
+    graphql_operations: {
+        header: 'x-px-add-graphql-operations',
+        convertToString: function (value) { return JSON.stringify(value); },
+    },
+    http_method: {
+        header: 'x-px-add-http-method',
+    },
+    http_version: {
+        header: 'x-px-add-http-version',
+    },
+    jwt_additional_fields: {
+        header: 'x-px-add-jwt-additional-fields',
+        convertToString: function (value) { return JSON.stringify(value); },
+    },
+    module_version: {
+        header: 'x-px-add-module-version',
+    },
+    original_token: {
+        header: 'x-px-add-original-token',
+    },
+    original_token_error: {
+        header: 'x-px-add-original-token-error',
+    },
+    original_uuid: {
+        header: 'x-px-add-original-uuid',
+    },
+    pass: {
+        header: 'x-px-add-pass',
+    },
+    px_cookie: {
+        header: 'x-px-add-px-cookie',
+    },
+    px_decoded_original_token: {
+        header: 'x-px-decoded-original-token',
+    },
+    px_orig_cookie: {
+        header: 'x-px-add-px-orig-cookie',
+    },
+    request_cookie_names: {
+        header: 'x-px-add-request-cookie-names',
+        convertToString: function (value) { return value.join(','); },
+    },
+    request_id: {
+        header: 'x-px-add-request-id',
+    },
+    risk_mode: {
+        header: 'x-px-add-risk-mode',
+    },
+    sso_step: {
+        header: 'x-px-add-sso-step',
+    },
+    tls_cipher: {
+        header: 'x-px-add-tls-cipher',
+    },
+    tls_ciphers_sha: {
+        header: 'x-px-add-tls-ciphers-sha',
+    },
+    tls_extension_sha: {
+        header: 'x-px-add-tls-extension-sha',
+    },
+    tls_protocol: {
+        header: 'x-px-add-tls-protocol',
+    },
+    tls_server: {
+        header: 'x-px-add-tls-server',
+    },
+    user: {
+        header: 'x-px-add-user',
+    },
+    remote_config_id: {
+        header: 'x-px-add-remote-config-id',
+    },
+    remote_config_version: {
+        header: 'x-px-add-remote-config-version',
+        convertToString: function (value) { return "".concat(value); },
+    },
+    s2s_call_reason: {
+        header: 'x-px-add-s2s-call-reason',
+    },
+};

package/lib/cjs/risk_api/model/GetRiskResponseHeaders.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GetRiskResponseHeaders = void 0;
+exports.GetRiskResponseHeaders = {
+    Action: 'x-px-action',
+    AdditionalRiskInfo: 'x-px-additional-risk-info',
+    CookieCfgBlockResult: 'x-px-cookie-cfg-block-result',
+    DataEnrichment: 'x-px-data-enrichment',
+    Drc: 'x-px-drc',
+    Message: 'x-px-message',
+    Pxhd: 'x-px-pxhd',
+    PxhdDomain: 'x-px-pxhddomain',
+    Status: 'x-px-status',
+    TelemetryRequested: 'x-px-telemetry-requested',
+    Uuid: 'x-px-uuid',
+};

package/lib/cjs/risk_api/model/index.js

@@ -18,3 +18,5 @@ __exportStar(require("./RiskActivity.js"), exports);
 __exportStar(require("./RiskStatus.js"), exports);
 __exportStar(require("./RiskApiCallResult.js"), exports);
 __exportStar(require("./S2SErrorReason.js"), exports);
+__exportStar(require("./GetRiskResponseHeaders.js"), exports);
+__exportStar(require("./GetRiskRequestHeaders.js"), exports);

package/lib/cjs/{phase/impl/SendAsyncActivitiesOnRequestPhase.js → risk_api/risk_response/PostRiskResponseBase.js}

@@ -1,4 +1,19 @@
 "use strict";
+var __extends = (this && this.__extends) || (function () {
+    var extendStatics = function (d, b) {
+        extendStatics = Object.setPrototypeOf ||
+            ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
+            function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };
+        return extendStatics(d, b);
+    };
+    return function (d, b) {
+        if (typeof b !== "function" && b !== null)
+            throw new TypeError("Class extends value " + String(b) + " is not a constructor or null");
+        extendStatics(d, b);
+        function __() { this.constructor = d; }
+        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    };
+})();
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -36,39 +51,20 @@ var __generator = (this && this.__generator) || function (thisArg, body) {
     }
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.SendAsyncActivitiesOnRequestPhase = void 0;
-var action_1 = require("../../action/index.js");
-var SendAsyncActivitiesOnRequestPhase = /** @class */ (function () {
-    function SendAsyncActivitiesOnRequestPhase(activityClient) {
-        this.activityClient = activityClient;
+exports.PostRiskResponseBase = void 0;
+var RiskResponseBase_1 = require("./RiskResponseBase.js");
+var PostRiskResponseBase = /** @class */ (function (_super) {
+    __extends(PostRiskResponseBase, _super);
+    function PostRiskResponseBase() {
+        return _super !== null && _super.apply(this, arguments) || this;
     }
-    SendAsyncActivitiesOnRequestPhase.prototype.execute = function (context) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(context.action === action_1.Action.BLOCK)) return [3 /*break*/, 2];
-                        return [4 /*yield*/, this.sendAsyncActivity(context)];
-                    case 1:
-                        _a.sent();
-                        _a.label = 2;
-                    case 2: return [2 /*return*/, { done: false }];
-                }
-            });
-        });
-    };
-    SendAsyncActivitiesOnRequestPhase.prototype.sendAsyncActivity = function (context) {
+    PostRiskResponseBase.prototype.parseRiskResponse = function (response) {
         return __awaiter(this, void 0, void 0, function () {
             return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.activityClient.sendActivities(context)];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/];
-                }
+                return [2 /*return*/, response.json()];
             });
         });
     };
-    return SendAsyncActivitiesOnRequestPhase;
-}());
-exports.SendAsyncActivitiesOnRequestPhase = SendAsyncActivitiesOnRequestPhase;
+    return PostRiskResponseBase;
+}(RiskResponseBase_1.RiskResponseBase));
+exports.PostRiskResponseBase = PostRiskResponseBase;

package/lib/cjs/risk_api/risk_response/RiskResponseBase.js

@@ -44,18 +44,21 @@ var RiskResponseBase = /** @class */ (function () {
     }
     RiskResponseBase.prototype.validate = function () {
         return __awaiter(this, void 0, void 0, function () {
-            var _a, e_1;
-            return __generator(this, function (_b) {
-                switch (_b.label) {
+            var riskResponse, e_1;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
                     case 0:
-                        _b.trys.push([0, 2, , 3]);
-                        _a = this;
-                        return [4 /*yield*/, this.response.json()];
+                        _a.trys.push([0, 2, , 3]);
+                        return [4 /*yield*/, this.parseRiskResponse(this.response)];
                     case 1:
-                        _a.riskResponse = (_b.sent());
+                        riskResponse = _a.sent();
+                        if (!riskResponse) {
+                            return [2 /*return*/, false];
+                        }
+                        this.riskResponse = riskResponse;
                         return [2 /*return*/, this.status === model_1.RiskStatus.SUCCESS && this.validateRiskResponseScore()];
                     case 2:
-                        e_1 = _b.sent();
+                        e_1 = _a.sent();
                         return [2 /*return*/, false];
                     case 3: return [2 /*return*/];
                 }

package/lib/cjs/risk_api/risk_response/index.js

@@ -16,6 +16,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
 Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./IRiskResponse.js"), exports);
 __exportStar(require("./RiskResponseBase.js"), exports);
+__exportStar(require("./PostRiskResponseBase.js"), exports);
 __exportStar(require("./CommonRiskResponsePayload.js"), exports);
 __exportStar(require("./v2/index.js"), exports);
 __exportStar(require("./v3/index.js"), exports);

package/lib/cjs/risk_api/risk_response/serialize/SerializedRiskResponse.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.SerializedRiskResponse = void 0;
+var utils_1 = require("../../../utils/index.js");
 var SerializedRiskResponse = /** @class */ (function () {
     function SerializedRiskResponse(riskResponseJson) {
         this.action = riskResponseJson.action;
@@ -16,7 +17,10 @@ var SerializedRiskResponse = /** @class */ (function () {
         this.uuid = riskResponseJson.uuid;
     }
     SerializedRiskResponse.prototype.validate = function () {
-        return true;
+        throw new utils_1.EnforcerError('SerializedRiskResponse.validate() should not be invoked');
+    };
+    SerializedRiskResponse.prototype.toJSON = function () {
+        return this;
     };
     return SerializedRiskResponse;
 }());

package/lib/cjs/risk_api/risk_response/v2/GetRiskResponseV2.js

@@ -0,0 +1,80 @@
+"use strict";
+var __extends = (this && this.__extends) || (function () {
+    var extendStatics = function (d, b) {
+        extendStatics = Object.setPrototypeOf ||
+            ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
+            function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };
+        return extendStatics(d, b);
+    };
+    return function (d, b) {
+        if (typeof b !== "function" && b !== null)
+            throw new TypeError("Class extends value " + String(b) + " is not a constructor or null");
+        extendStatics(d, b);
+        function __() { this.constructor = d; }
+        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GetRiskResponseV2 = void 0;
+var RiskResponseBase_1 = require("../RiskResponseBase.js");
+var model_1 = require("../../model/index.js");
+var GetRiskResponseV2 = /** @class */ (function (_super) {
+    __extends(GetRiskResponseV2, _super);
+    function GetRiskResponseV2(response) {
+        return _super.call(this, response) || this;
+    }
+    GetRiskResponseV2.prototype.parseRiskResponse = function (response) {
+        var riskStatus = this.getHeader(response, model_1.GetRiskResponseHeaders.Status);
+        if (!riskStatus) {
+            return null;
+        }
+        var status = parseInt(riskStatus);
+        var blockResult = this.getHeader(response, model_1.GetRiskResponseHeaders.CookieCfgBlockResult);
+        var additionalRiskInfo = this.getHeader(response, model_1.GetRiskResponseHeaders.AdditionalRiskInfo);
+        var dataEnrichment = this.getHeader(response, model_1.GetRiskResponseHeaders.DataEnrichment);
+        var drc = this.getHeader(response, model_1.GetRiskResponseHeaders.Drc);
+        var message = this.getHeader(response, model_1.GetRiskResponseHeaders.Message);
+        var pxhd = this.getHeader(response, model_1.GetRiskResponseHeaders.Pxhd);
+        var pxhdDomain = this.getHeader(response, model_1.GetRiskResponseHeaders.PxhdDomain);
+        var telemetryRequested = this.getHeader(response, model_1.GetRiskResponseHeaders.TelemetryRequested);
+        var uuid = this.getHeader(response, model_1.GetRiskResponseHeaders.Uuid);
+        var action = this.getHeader(response, model_1.GetRiskResponseHeaders.Action);
+        return {
+            status: status,
+            action: action,
+            uuid: uuid,
+            pxhd: pxhd,
+            message: message,
+            data_enrichment: dataEnrichment ? JSON.parse(dataEnrichment) : undefined,
+            pxhdDomain: pxhdDomain,
+            additional_risk_info: additionalRiskInfo,
+            telemetry_requested: !!telemetryRequested,
+            drc: drc ? parseInt(drc) : undefined,
+            cookie_cfg_block_result: blockResult,
+        };
+    };
+    GetRiskResponseV2.prototype.getHeader = function (response, header) {
+        var _a;
+        return (_a = response.headers[header.toLowerCase()]) === null || _a === void 0 ? void 0 : _a[0];
+    };
+    Object.defineProperty(GetRiskResponseV2.prototype, "score", {
+        // TODO: This is the same as in PostRiskResponseV2. We should deduplicate this.
+        get: function () {
+            var _a;
+            return typeof ((_a = this.riskResponse) === null || _a === void 0 ? void 0 : _a.cookie_cfg_block_result) === 'undefined'
+                ? undefined
+                : this.riskResponse.cookie_cfg_block_result === '1'
+                    ? 100
+                    : 0;
+        },
+        enumerable: false,
+        configurable: true
+    });
+    GetRiskResponseV2.prototype.validateRiskResponseScore = function () {
+        var _a;
+        var blockResult = (_a = this.riskResponse) === null || _a === void 0 ? void 0 : _a.cookie_cfg_block_result;
+        return typeof blockResult === 'string' && ['0', '1'].includes(blockResult);
+    };
+    return GetRiskResponseV2;
+}(RiskResponseBase_1.RiskResponseBase));
+exports.GetRiskResponseV2 = GetRiskResponseV2;

package/lib/cjs/risk_api/risk_response/v2/{DefaultRiskResponseV2.js → PostRiskResponseV2.js}

@@ -15,14 +15,14 @@ var __extends = (this && this.__extends) || (function () {
     };
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.DefaultRiskResponseV2 = void 0;
-var RiskResponseBase_1 = require("../RiskResponseBase.js");
-var DefaultRiskResponseV2 = /** @class */ (function (_super) {
-    __extends(DefaultRiskResponseV2, _super);
-    function DefaultRiskResponseV2(response) {
+exports.PostRiskResponseV2 = void 0;
+var PostRiskResponseBase_1 = require("../PostRiskResponseBase.js");
+var PostRiskResponseV2 = /** @class */ (function (_super) {
+    __extends(PostRiskResponseV2, _super);
+    function PostRiskResponseV2(response) {
         return _super.call(this, response) || this;
     }
-    Object.defineProperty(DefaultRiskResponseV2.prototype, "score", {
+    Object.defineProperty(PostRiskResponseV2.prototype, "score", {
         get: function () {
             var _a;
             return typeof ((_a = this.riskResponse) === null || _a === void 0 ? void 0 : _a.cookie_cfg_block_result) === 'undefined'
@@ -34,11 +34,11 @@ var DefaultRiskResponseV2 = /** @class */ (function (_super) {
         enumerable: false,
         configurable: true
     });
-    DefaultRiskResponseV2.prototype.validateRiskResponseScore = function () {
+    PostRiskResponseV2.prototype.validateRiskResponseScore = function () {
         var _a;
         var blockResult = (_a = this.riskResponse) === null || _a === void 0 ? void 0 : _a.cookie_cfg_block_result;
         return typeof blockResult === 'string' && ['0', '1'].includes(blockResult);
     };
-    return DefaultRiskResponseV2;
-}(RiskResponseBase_1.RiskResponseBase));
-exports.DefaultRiskResponseV2 = DefaultRiskResponseV2;
+    return PostRiskResponseV2;
+}(PostRiskResponseBase_1.PostRiskResponseBase));
+exports.PostRiskResponseV2 = PostRiskResponseV2;

package/lib/cjs/risk_api/risk_response/v2/index.js

@@ -14,5 +14,6 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./DefaultRiskResponseV2.js"), exports);
+__exportStar(require("./GetRiskResponseV2.js"), exports);
+__exportStar(require("./PostRiskResponseV2.js"), exports);
 __exportStar(require("./RiskResponseV2Payload.js"), exports);

package/lib/cjs/risk_api/risk_response/v3/{DefaultRiskResponseV3.js → PostRiskResponseV3.js}

@@ -15,14 +15,14 @@ var __extends = (this && this.__extends) || (function () {
     };
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.DefaultRiskResponseV3 = void 0;
-var RiskResponseBase_1 = require("../RiskResponseBase.js");
-var DefaultRiskResponseV3 = /** @class */ (function (_super) {
-    __extends(DefaultRiskResponseV3, _super);
-    function DefaultRiskResponseV3(response) {
+exports.PostRiskResponseV3 = void 0;
+var PostRiskResponseBase_1 = require("../PostRiskResponseBase.js");
+var PostRiskResponseV3 = /** @class */ (function (_super) {
+    __extends(PostRiskResponseV3, _super);
+    function PostRiskResponseV3(response) {
         return _super.call(this, response) || this;
     }
-    Object.defineProperty(DefaultRiskResponseV3.prototype, "score", {
+    Object.defineProperty(PostRiskResponseV3.prototype, "score", {
         get: function () {
             var _a;
             return (_a = this.riskResponse) === null || _a === void 0 ? void 0 : _a.score;
@@ -30,10 +30,10 @@ var DefaultRiskResponseV3 = /** @class */ (function (_super) {
         enumerable: false,
         configurable: true
     });
-    DefaultRiskResponseV3.prototype.validateRiskResponseScore = function () {
+    PostRiskResponseV3.prototype.validateRiskResponseScore = function () {
         var _a;
         return typeof ((_a = this.riskResponse) === null || _a === void 0 ? void 0 : _a.score) === 'number';
     };
-    return DefaultRiskResponseV3;
-}(RiskResponseBase_1.RiskResponseBase));
-exports.DefaultRiskResponseV3 = DefaultRiskResponseV3;
+    return PostRiskResponseV3;
+}(PostRiskResponseBase_1.PostRiskResponseBase));
+exports.PostRiskResponseV3 = PostRiskResponseV3;

package/lib/cjs/risk_api/risk_response/v3/index.js

@@ -14,5 +14,5 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./DefaultRiskResponseV3.js"), exports);
+__exportStar(require("./PostRiskResponseV3.js"), exports);
 __exportStar(require("./RiskResponseV3Payload.js"), exports);

package/lib/cjs/risk_api/utils.js

@@ -0,0 +1,36 @@
+"use strict";
+var __assign = (this && this.__assign) || function () {
+    __assign = Object.assign || function(t) {
+        for (var s, i = 1, n = arguments.length; i < n; i++) {
+            s = arguments[i];
+            for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p))
+                t[p] = s[p];
+        }
+        return t;
+    };
+    return __assign.apply(this, arguments);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.formatRiskHeadersField = exports.createRiskApiActivity = void 0;
+var activities_1 = require("../activities/index.js");
+var utils_1 = require("../utils/index.js");
+var createRiskApiActivity = function (config, context) {
+    var _a, _b, _c;
+    return {
+        vid: context.vid,
+        client_uuid: context.uuid,
+        pxhd: (_a = context.pxhd) === null || _a === void 0 ? void 0 : _a.value,
+        request: {
+            socket_ip: context.requestData.ip,
+            headers: (0, exports.formatRiskHeadersField)(context.requestData.headers, config),
+            url: context.requestData.url.href,
+        },
+        additional: __assign(__assign({}, (0, activities_1.createCommonActivityDetails)(config, context)), { s2s_call_reason: (_b = context.riskApiData.s2sCallReason) !== null && _b !== void 0 ? _b : 'unknown_reason', risk_start_time: (_c = context.riskApiData.riskStartTime) !== null && _c !== void 0 ? _c : Date.now() }),
+    };
+};
+exports.createRiskApiActivity = createRiskApiActivity;
+var formatRiskHeadersField = function (headers, config) {
+    var headersWithoutSensitive = (0, utils_1.removeSensitiveHeaders)(headers, config.sensitiveHeaders);
+    return (0, activities_1.toHeaderEntryArray)(headersWithoutSensitive);
+};
+exports.formatRiskHeadersField = formatRiskHeadersField;

package/lib/cjs/telemetry/DefaultTelemetry.js

@@ -127,7 +127,6 @@ var DefaultTelemetry = /** @class */ (function () {
             _a[http_1.AUTHORIZATION_HEADER_NAME] = [(0, utils_1.getAuthorizationHeader)(this.config.authToken)],
             _a);
         var activity = this.createTelemetryActivity(context);
-        context.logger.debug("created telemetry activity config - ".concat(JSON.stringify(activity.details.enforcer_configs, utils_1.telemetryConfigReplacer)));
         return new http_1.OutgoingRequestImpl({
             url: url,
             method: method,
@@ -157,14 +156,18 @@ var DefaultTelemetry = /** @class */ (function () {
                 enforcer_configs: telemetryConfig,
             },
         };
-        (0, utils_1.transferExistingProperties)(context.serverData, activity.details, {
-            osName: 'os_name',
-            nodeName: 'node_name',
-        });
-        (0, utils_1.transferExistingProperties)(this.config, activity.details, {
-            remoteConfigId: 'remote_config_id',
-            remoteConfigVersion: 'remote_config_version',
-        });
+        if (context.serverData.osName) {
+            activity.details.os_name = context.serverData.osName;
+        }
+        if (context.serverData.nodeName) {
+            activity.details.node_name = context.serverData.nodeName;
+        }
+        if (this.config.remoteConfigId) {
+            activity.details.remote_config_id = this.config.remoteConfigId;
+        }
+        if (this.config.remoteConfigVersion) {
+            activity.details.remote_config_version = this.config.remoteConfigVersion;
+        }
         return activity;
     };
     return DefaultTelemetry;

package/lib/cjs/utils/constants.js

@@ -14,4 +14,4 @@ exports.PUSH_DATA_FEATURE_HEADER_NAME = 'x-px-feature';
 exports.EMAIL_ADDRESS_REGEX = /^[a-zA-Z0-9_+&*-]+(?:\.[a-zA-Z0-9_+&*-]+)*@(?:[a-zA-Z0-9-]+\.)+[a-zA-Z]{2,7}$/;
 exports.URL_REGEX = /^(https?:)\/\/(([^@\s:\/]+):?([^@\s\/]*)@)?(([^:\/?#]*)(?:\:([0-9]+))?)(\/?[^?#]*)(\?[^#]*|)(#.*|)$/;
 exports.REGEX_STRUCTURE = /^\/(.+?)\/([gimsuyvd]*)$/;
-exports.CORE_MODULE_VERSION = 'JS Core 0.25.0';
+exports.CORE_MODULE_VERSION = 'JS Core 0.26.0';

package/lib/cjs/utils/utils.js

@@ -36,7 +36,7 @@ var __generator = (this && this.__generator) || function (thisArg, body) {
     }
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.isNullOrUndefined = exports.isValidTokenVersion = exports.telemetryConfigReplacer = exports.convertRegexStringToRegex = exports.algoToCryptoString = exports.algoToSubtleCryptoString = exports.sleep = exports.getPropertyFromObject = exports.rejectOnTimeout = exports.transferExistingProperties = exports.isStringMatch = exports.isStringInPatterns = exports.removeSensitiveHeaders = exports.redactSensitiveFields = exports.getExtension = exports.getAuthorizationHeader = exports.getCollectorDomain = exports.getScoreApiDomain = exports.isEmailAddress = exports.isValidUuid = exports.isValidEnumValue = void 0;
+exports.isNullOrUndefined = exports.isValidTokenVersion = exports.telemetryConfigReplacer = exports.convertRegexStringToRegex = exports.algoToCryptoString = exports.algoToSubtleCryptoString = exports.sleep = exports.getPropertyFromObject = exports.rejectOnTimeout = exports.isStringMatch = exports.isStringInPatterns = exports.removeSensitiveHeaders = exports.redactSensitiveFields = exports.getExtension = exports.getAuthorizationHeader = exports.getCollectorDomain = exports.getScoreApiDomain = exports.isEmailAddress = exports.isValidUuid = exports.isValidEnumValue = void 0;
 var http_1 = require("../http/index.js");
 var error_1 = require("./error/index.js");
 var constants_1 = require("./constants.js");
@@ -136,24 +136,6 @@ var isStringMatch = function (str, pattern) {
     return false;
 };
 exports.isStringMatch = isStringMatch;
-/**
- * @deprecated this method is not typesafe. Copy the fields manually instead,
- *             unsafe - ignores compilerOptions.strictNullChecks
- */
-var transferExistingProperties = function (fromObj, toObj, propertyMappings) {
-    if (!toObj || !fromObj) {
-        return;
-    }
-    Object.entries(propertyMappings).forEach(function (_a) {
-        var fromObjKey = _a[0], toObjKey = _a[1];
-        if ((typeof fromObj[fromObjKey] !== 'string' && fromObj[fromObjKey] != null) ||
-            (typeof fromObj[fromObjKey] === 'string' && fromObj[fromObjKey] !== '')) {
-            // @ts-ignore
-            toObj[toObjKey] = fromObj[fromObjKey];
-        }
-    });
-};
-exports.transferExistingProperties = transferExistingProperties;
 var rejectOnTimeout = function (promise, ms) { return __awaiter(void 0, void 0, void 0, function () {
     var id, timeout, resolvedPromise;
     return __generator(this, function (_a) {

package/lib/esm/action/Action.js

@@ -1,7 +1,22 @@
+/**
+ * The action that should be taken by the enforcer.
+ */
 export var Action;
 (function (Action) {
+    /**
+     * Indicates that the request should be allowed to pass.
+     */
     Action["PASS_REQUEST"] = "pass_request";
+    /**
+     * Indicates that there is not enough information to make a decision and a Risk API request should be made.
+     */
     Action["TRIGGER_RISK_API"] = "trigger_risk_api";
+    /**
+     * Indicates that the request should be blocked, but no block response will be returned.
+     */
     Action["SIMULATED_BLOCK"] = "simulated_block";
+    /**
+     * Indicates that the request should be blocked and a block response should be returned.
+     */
     Action["BLOCK"] = "block";
 })(Action || (Action = {}));

package/lib/esm/action/ActionPriorityOrder.js

@@ -1,4 +1,8 @@
 import { Action } from './Action.js';
+/**
+ * The priority order of actions that the enforcer should take. The array will be traversed in order,
+ * and the first action that matches a product recommendation will be taken.
+ */
 export const ACTION_PRIORITY_ORDER = [
     Action.BLOCK,
     Action.SIMULATED_BLOCK,