perimeterx-js-core 0.6.2 → 0.7.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/action/ActionData.d.ts +1 -1
- package/lib/action/Decision.d.ts +1 -1
- package/lib/action/ProductAction.d.ts +1 -1
- package/lib/activities/model/Activity.d.ts +1 -1
- package/lib/activities/model/ActivityDetails.d.ts +5 -5
- package/lib/activities/utils.js +1 -1
- package/lib/additional_activity_handler/AdditionalActivityHandler.d.ts +1 -1
- package/lib/config/ConfigurationParams.d.ts +2 -1
- package/lib/config/DefaultConfigurations.js +1 -0
- package/lib/config/IConfiguration.d.ts +4 -0
- package/lib/config/StaticConfigurationBase.d.ts +1 -0
- package/lib/config/StaticConfigurationBase.js +3 -0
- package/lib/context/DefaultContext.d.ts +4 -1
- package/lib/context/DefaultContext.js +6 -3
- package/lib/context/interfaces/MobileData.d.ts +1 -1
- package/lib/context/interfaces/ReadonlyContext.d.ts +1 -1
- package/lib/context/interfaces/RequestData.d.ts +6 -1
- package/lib/context/interfaces/RiskApiData.d.ts +1 -1
- package/lib/context/interfaces/ServerData.d.ts +1 -1
- package/lib/context/interfaces/TlsData.d.ts +1 -1
- package/lib/context/interfaces/TokenData.d.ts +1 -1
- package/lib/cors/CustomBlockResponseHeadersHandler.d.ts +1 -1
- package/lib/cors/CustomPreflightHandler.d.ts +1 -1
- package/lib/custom_parameters/CustomParameters.d.ts +1 -1
- package/lib/custom_parameters/CustomParametersFunction.d.ts +1 -1
- package/lib/enforcer/EnforcerBase.d.ts +2 -1
- package/lib/enforcer/EnforcerBase.js +13 -3
- package/lib/enforcer/options/EnforcerBaseOptions.d.ts +3 -1
- package/lib/enforcer/options/EnforcerOptionsType.d.ts +1 -1
- package/lib/enforcer/options/EnforcerV2Options.d.ts +1 -1
- package/lib/enforcer/options/EnforcerV3Options.d.ts +1 -1
- package/lib/first_party/FirstPartyData.d.ts +1 -1
- package/lib/graphql/model/GraphQLData.d.ts +1 -1
- package/lib/graphql/model/GraphQLOperation.d.ts +1 -1
- package/lib/http/impl/FormDataImpl.js +2 -2
- package/lib/http/impl/MinimalResponseImpl.d.ts +1 -1
- package/lib/http/impl/OutgoingRequestImpl.d.ts +1 -1
- package/lib/http/interfaces/IHttpClient.d.ts +1 -1
- package/lib/http/interfaces/ReadonlyHeaders.d.ts +1 -1
- package/lib/logger/HttpLogServiceClient.d.ts +17 -0
- package/lib/logger/HttpLogServiceClient.js +60 -0
- package/lib/logger/ILogServiceClient.d.ts +6 -0
- package/lib/logger/ILogServiceClient.js +1 -0
- package/lib/logger/ILogger.d.ts +6 -0
- package/lib/logger/LoggerBase.d.ts +6 -2
- package/lib/logger/LoggerBase.js +12 -1
- package/lib/logger/constants.d.ts +2 -0
- package/lib/logger/constants.js +2 -0
- package/lib/logger/index.d.ts +4 -0
- package/lib/logger/index.js +3 -0
- package/lib/logger/model/EnrichedLogRecord.d.ts +3 -0
- package/lib/logger/model/EnrichedLogRecord.js +1 -0
- package/lib/logger/model/LogMetadata.d.ts +9 -0
- package/lib/logger/model/LogMetadata.js +1 -0
- package/lib/logger/model/LogRecord.d.ts +6 -0
- package/lib/logger/model/LogRecord.js +1 -0
- package/lib/logger/model/index.d.ts +3 -0
- package/lib/logger/model/index.js +3 -0
- package/lib/phase/PhaseResult.d.ts +1 -1
- package/lib/phase/flow/EndEnforcerFlow.d.ts +6 -0
- package/lib/phase/flow/EndEnforcerFlow.js +10 -0
- package/lib/phase/flow/index.d.ts +1 -0
- package/lib/phase/flow/index.js +1 -0
- package/lib/phase/impl/SendLogsPhase.d.ts +11 -0
- package/lib/phase/impl/SendLogsPhase.js +26 -0
- package/lib/phase/impl/index.d.ts +1 -0
- package/lib/phase/impl/index.js +1 -0
- package/lib/products/account_defender/AccountDefender.d.ts +1 -1
- package/lib/products/account_defender/AccountDefenderData.d.ts +1 -1
- package/lib/products/account_defender/JwtData.d.ts +1 -1
- package/lib/products/bot_defender/BotDefender.d.ts +1 -1
- package/lib/products/bot_defender/BotDefenderData.d.ts +1 -1
- package/lib/products/bot_defender/block/model/BlockData.d.ts +1 -1
- package/lib/products/bot_defender/block/model/JsonBlockPayload.d.ts +1 -1
- package/lib/products/bot_defender/block/model/MobileBlockPayload.d.ts +1 -1
- package/lib/products/bot_defender/block/utils.js +5 -4
- package/lib/products/bot_defender/filter/DefaultBotDefenderFilter.js +5 -1
- package/lib/products/bot_defender/reasons/BotDefenderReasonType.d.ts +1 -1
- package/lib/products/credential_intelligence/endpoint/CredentialEndpointConfiguration.d.ts +1 -1
- package/lib/products/credential_intelligence/endpoint/login_successful/CustomLoginSuccessfulCallback.d.ts +1 -1
- package/lib/products/credential_intelligence/model/CredentialData.d.ts +1 -1
- package/lib/products/credential_intelligence/model/CredentialIntelligenceData.d.ts +1 -1
- package/lib/products/credential_intelligence/model/Credentials.d.ts +1 -1
- package/lib/products/credential_intelligence/model/CustomExtractionCallback.d.ts +1 -1
- package/lib/products/interfaces/ProductData.d.ts +1 -1
- package/lib/products/interfaces/ProductDataType.d.ts +1 -1
- package/lib/products/interfaces/ProductType.d.ts +1 -1
- package/lib/products/interfaces/Products.d.ts +1 -1
- package/lib/pxde/model/PXDE.d.ts +1 -1
- package/lib/pxde/model/PxdeData.d.ts +1 -1
- package/lib/pxhd/model/PXHD.d.ts +1 -1
- package/lib/risk_api/client/PostRiskApiClientBase.js +1 -1
- package/lib/risk_api/model/RiskActivity.d.ts +4 -4
- package/lib/risk_api/risk_response/RiskResponsePayloadType.d.ts +1 -1
- package/lib/risk_api/risk_response/v2/RiskResponseV2Payload.d.ts +1 -1
- package/lib/risk_api/risk_response/v3/RiskResponseV3Payload.d.ts +1 -1
- package/lib/risk_token/parser/DefaultTokenV2Parser.d.ts +1 -1
- package/lib/risk_token/parser/DefaultTokenV3Parser.d.ts +1 -1
- package/lib/risk_token/parser/TokenParserOptions.d.ts +1 -1
- package/lib/risk_token/token/TokenPayloadType.d.ts +1 -1
- package/lib/risk_token/token/v2/TokenV2Payload.d.ts +1 -1
- package/lib/risk_token/token/v3/TokenV3Payload.d.ts +1 -1
- package/lib/telemetry/model/TelemetryActivity.d.ts +2 -2
- package/lib/utils/cipher/ICipherUtils.d.ts +1 -1
- package/lib/utils/constants.d.ts +1 -1
- package/lib/utils/constants.js +1 -1
- package/lib/utils/index.d.ts +1 -0
- package/lib/utils/index.js +1 -0
- package/lib/utils/url_parser/DefaultUrlParser.d.ts +13 -0
- package/lib/utils/url_parser/DefaultUrlParser.js +21 -0
- package/lib/utils/url_parser/IURLParser.d.ts +4 -0
- package/lib/utils/url_parser/IURLParser.js +1 -0
- package/lib/utils/url_parser/index.d.ts +2 -0
- package/lib/utils/url_parser/index.js +2 -0
- package/lib/utils/utils.d.ts +5 -0
- package/lib/utils/utils.js +5 -1
- package/package.json +4 -4
package/lib/logger/LoggerBase.js
CHANGED
|
@@ -1,14 +1,17 @@
|
|
|
1
1
|
import { LoggerSeverity } from './LoggerSeverity';
|
|
2
2
|
export class LoggerBase {
|
|
3
|
-
constructor(loggerSeverity = LoggerSeverity.ERROR) {
|
|
3
|
+
constructor(loggerSeverity = LoggerSeverity.ERROR, logs = []) {
|
|
4
4
|
this.loggerSeverity = loggerSeverity;
|
|
5
|
+
this.logs = logs;
|
|
5
6
|
}
|
|
6
7
|
debug(message) {
|
|
8
|
+
this.recordLog(message, LoggerSeverity.DEBUG);
|
|
7
9
|
if (this.loggerSeverity == LoggerSeverity.DEBUG) {
|
|
8
10
|
this.logDebug(message);
|
|
9
11
|
}
|
|
10
12
|
}
|
|
11
13
|
error(message) {
|
|
14
|
+
this.recordLog(message, LoggerSeverity.ERROR);
|
|
12
15
|
if (this.loggerSeverity != LoggerSeverity.NONE) {
|
|
13
16
|
this.logError(message);
|
|
14
17
|
}
|
|
@@ -27,4 +30,12 @@ export class LoggerBase {
|
|
|
27
30
|
logDebug(message) {
|
|
28
31
|
this.log(message);
|
|
29
32
|
}
|
|
33
|
+
// default implementation, can be overridden
|
|
34
|
+
getLogs() {
|
|
35
|
+
return this.logs;
|
|
36
|
+
}
|
|
37
|
+
recordLog(message, loggerSeverity) {
|
|
38
|
+
const logRecord = { message: message, severity: loggerSeverity, messageTimestamp: Date.now() };
|
|
39
|
+
this.logs.push(logRecord);
|
|
40
|
+
}
|
|
30
41
|
}
|
package/lib/logger/index.d.ts
CHANGED
|
@@ -1,4 +1,8 @@
|
|
|
1
1
|
export { ILogger } from './ILogger';
|
|
2
|
+
export { ILogServiceClient } from './ILogServiceClient';
|
|
2
3
|
export { LoggerBase } from './LoggerBase';
|
|
4
|
+
export { HttpLogServiceClient } from './HttpLogServiceClient';
|
|
3
5
|
export { DefaultLogger } from './DefaultLogger';
|
|
4
6
|
export { LoggerSeverity } from './LoggerSeverity';
|
|
7
|
+
export * from './constants';
|
|
8
|
+
export * from './model';
|
package/lib/logger/index.js
CHANGED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export {};
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export {};
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export {};
|
|
@@ -0,0 +1,6 @@
|
|
|
1
|
+
import { IConfiguration } from '../../config';
|
|
2
|
+
import { CompositePhase } from '../impl';
|
|
3
|
+
import { EnforcerBaseOptions } from '../../enforcer';
|
|
4
|
+
export declare class EndEnforcerFlow<Req, Res> extends CompositePhase<Req, Res> {
|
|
5
|
+
constructor(config: IConfiguration<Req, Res>, { logServiceClient }: Required<EnforcerBaseOptions<Req, Res>>);
|
|
6
|
+
}
|
|
@@ -0,0 +1,10 @@
|
|
|
1
|
+
import { CompositePhase, SendLogsPhase } from '../impl';
|
|
2
|
+
export class EndEnforcerFlow extends CompositePhase {
|
|
3
|
+
constructor(config, { logServiceClient }) {
|
|
4
|
+
const phasesArray = [];
|
|
5
|
+
if (logServiceClient) {
|
|
6
|
+
phasesArray.push(new SendLogsPhase(config, logServiceClient));
|
|
7
|
+
}
|
|
8
|
+
super(phasesArray);
|
|
9
|
+
}
|
|
10
|
+
}
|
package/lib/phase/flow/index.js
CHANGED
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
import { IContext } from '../../context';
|
|
2
|
+
import { IPhase } from '../IPhase';
|
|
3
|
+
import { PhaseResult } from '../PhaseResult';
|
|
4
|
+
import { IConfiguration } from '../../config';
|
|
5
|
+
import { ILogServiceClient } from '../../logger';
|
|
6
|
+
export declare class SendLogsPhase<Req, Res> implements IPhase<Req, Res> {
|
|
7
|
+
private readonly config;
|
|
8
|
+
private readonly logServiceClient;
|
|
9
|
+
constructor(config: IConfiguration<Req, Res>, logServiceClient: ILogServiceClient<Req, Res>);
|
|
10
|
+
execute(context: IContext<Req, Res>): Promise<PhaseResult>;
|
|
11
|
+
}
|
|
@@ -0,0 +1,26 @@
|
|
|
1
|
+
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
|
|
2
|
+
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
|
|
3
|
+
return new (P || (P = Promise))(function (resolve, reject) {
|
|
4
|
+
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
|
|
5
|
+
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
|
|
6
|
+
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
|
|
7
|
+
step((generator = generator.apply(thisArg, _arguments || [])).next());
|
|
8
|
+
});
|
|
9
|
+
};
|
|
10
|
+
import { X_PX_ENFORCER_LOG_HEADER } from '../../logger';
|
|
11
|
+
export class SendLogsPhase {
|
|
12
|
+
constructor(config, logServiceClient) {
|
|
13
|
+
this.config = config;
|
|
14
|
+
this.logServiceClient = logServiceClient;
|
|
15
|
+
}
|
|
16
|
+
execute(context) {
|
|
17
|
+
var _a;
|
|
18
|
+
return __awaiter(this, void 0, void 0, function* () {
|
|
19
|
+
const headerValue = (_a = context.requestData.headers[X_PX_ENFORCER_LOG_HEADER]) === null || _a === void 0 ? void 0 : _a[0];
|
|
20
|
+
if (headerValue == this.config.loggerAuthToken) {
|
|
21
|
+
yield this.logServiceClient.sendLogs(context, this.config.logger.getLogs());
|
|
22
|
+
}
|
|
23
|
+
return { done: false };
|
|
24
|
+
});
|
|
25
|
+
}
|
|
26
|
+
}
|
package/lib/phase/impl/index.js
CHANGED
|
@@ -5,7 +5,7 @@ import { IBase64Utils } from '../../utils';
|
|
|
5
5
|
import { IAccountDefender } from './IAccountDefender';
|
|
6
6
|
import { AccountDefenderData } from './AccountDefenderData';
|
|
7
7
|
import { JwtData } from './JwtData';
|
|
8
|
-
export
|
|
8
|
+
export type AccountDefenderOptions = {
|
|
9
9
|
base64Utils: IBase64Utils;
|
|
10
10
|
};
|
|
11
11
|
export declare class AccountDefender<Req, Res> implements IAccountDefender<Req, Res> {
|
|
@@ -11,7 +11,7 @@ import { IBase64Utils, IIpRangeChecker } from '../../utils';
|
|
|
11
11
|
import { IBotDefender } from '../';
|
|
12
12
|
import { BotDefenderData } from './BotDefenderData';
|
|
13
13
|
import { BotDefenderS2SCallReason } from './reasons';
|
|
14
|
-
export
|
|
14
|
+
export type BotDefenderOptions<Req, Res> = {
|
|
15
15
|
base64Utils: IBase64Utils;
|
|
16
16
|
firstParty?: IFirstParty<Req, Res>;
|
|
17
17
|
blocker?: IConditionalBlocker<Req, Res>;
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
import { ActionData } from '../../action';
|
|
2
|
-
export
|
|
2
|
+
export type BotDefenderData = ActionData & {
|
|
3
3
|
/**
|
|
4
4
|
* Whether the request should go through the enforcement flow in monitor mode.
|
|
5
5
|
* This depends on various configurations including the module mode, monitored routes, enforced
|
|
@@ -13,18 +13,19 @@ export const renderHtml = (htmlTemplate, blockData) => {
|
|
|
13
13
|
};
|
|
14
14
|
export const createBlockData = (config, context) => {
|
|
15
15
|
var _a, _b;
|
|
16
|
-
const
|
|
16
|
+
const captchaScriptSuffix = '/captcha.js';
|
|
17
|
+
const captchaParams = `?a=${context.blockAction}&u=${context.uuid}&v=${context.vid || ''}&m=${context.isMobile ? '1' : '0'}`;
|
|
17
18
|
let jsClientSrc = `${config.backendClientUrl}/${config.appId}/main.min.js`;
|
|
18
|
-
let blockScript = `${config.backendCaptchaUrl}/${config.appId}${captchaParams}`;
|
|
19
|
+
let blockScript = `${config.backendCaptchaUrl}/${config.appId}${captchaScriptSuffix}${captchaParams}`;
|
|
19
20
|
let hostUrl = config.backendCollectorUrl;
|
|
20
21
|
if (config.firstPartyEnabled && !context.isMobile) {
|
|
21
22
|
jsClientSrc = getMostCustomizedFirstPartyPath(config, FirstPartySuffix.SENSOR);
|
|
22
|
-
blockScript = `${getMostCustomizedFirstPartyPath(config, FirstPartySuffix.CAPTCHA)}${captchaParams}`;
|
|
23
|
+
blockScript = `${getMostCustomizedFirstPartyPath(config, FirstPartySuffix.CAPTCHA)}${config.customFirstPartyCaptchaEndpoint ? captchaParams : `${captchaScriptSuffix}${captchaParams}`}`;
|
|
23
24
|
hostUrl = getMostCustomizedFirstPartyPath(config, FirstPartySuffix.XHR);
|
|
24
25
|
}
|
|
25
26
|
const cssRef = config.cssRef ? `<link rel="stylesheet" type="text/css" href="${config.cssRef}" />` : '';
|
|
26
27
|
const jsRef = config.jsRef ? `<script src="${config.jsRef}"></script>` : '';
|
|
27
|
-
const altBlockScript = `${config.altBackendCaptchaUrl}/${config.appId}${captchaParams}`;
|
|
28
|
+
const altBlockScript = `${config.altBackendCaptchaUrl}/${config.appId}${captchaScriptSuffix}${captchaParams}`;
|
|
28
29
|
return {
|
|
29
30
|
appId: config.appId,
|
|
30
31
|
vid: context.vid || ((_b = (_a = context.requestData) === null || _a === void 0 ? void 0 : _a.cookies) === null || _b === void 0 ? void 0 : _b[PXVID_COOKIE_NAME]) || '',
|
|
@@ -9,7 +9,11 @@ export class DefaultBotDefenderFilter {
|
|
|
9
9
|
shouldFilter(context) {
|
|
10
10
|
const { requestData } = context;
|
|
11
11
|
const filterReason = this.getFilterReason(requestData);
|
|
12
|
-
|
|
12
|
+
if (filterReason !== FilterReason.NONE) {
|
|
13
|
+
this.config.logger.debug(`filter request due to ${filterReason}`);
|
|
14
|
+
return true;
|
|
15
|
+
}
|
|
16
|
+
return false;
|
|
13
17
|
}
|
|
14
18
|
getFilterReason(request) {
|
|
15
19
|
if (this.shouldFilterByExtension(request)) {
|
|
@@ -2,4 +2,4 @@ import { Action } from '../../../action';
|
|
|
2
2
|
import { BotDefenderBlockReason } from './BotDefenderBlockReason';
|
|
3
3
|
import { BotDefenderPassReason } from './BotDefenderPassReason';
|
|
4
4
|
import { BotDefenderS2SCallReason } from './BotDefenderS2SCallReason';
|
|
5
|
-
export
|
|
5
|
+
export type BotDefenderReasonType<A extends Action> = A extends Action.BLOCK ? BotDefenderBlockReason : A extends Action.SIMULATED_BLOCK ? BotDefenderBlockReason : A extends Action.PASS_REQUEST ? BotDefenderPassReason : A extends Action.TRIGGER_RISK_API ? BotDefenderS2SCallReason : never;
|
|
@@ -2,7 +2,7 @@ import { HttpMethod } from '../../../http';
|
|
|
2
2
|
import { CustomExtractionCallback } from '../model';
|
|
3
3
|
import { PathType, SentThrough, CredentialIntelligenceVersion } from './index';
|
|
4
4
|
import { CustomLoginSuccessfulCallback, LoginSuccessfulReportingMethod } from './login_successful';
|
|
5
|
-
export
|
|
5
|
+
export type CredentialEndpointConfiguration<Req, Res> = {
|
|
6
6
|
/**
|
|
7
7
|
* The URI of the request that contains the credentials.
|
|
8
8
|
*/
|
|
@@ -1 +1 @@
|
|
|
1
|
-
export
|
|
1
|
+
export type CustomLoginSuccessfulCallback<Res> = (response: Res) => boolean | Promise<boolean>;
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
import { ActionData } from '../../../action';
|
|
2
2
|
import { CredentialData } from './CredentialData';
|
|
3
|
-
export
|
|
3
|
+
export type CredentialIntelligenceData = ActionData & CredentialData & {
|
|
4
4
|
endpointIndex?: number;
|
|
5
5
|
isLoginSuccessful?: boolean;
|
|
6
6
|
isCompromised?: boolean;
|
|
@@ -1,2 +1,2 @@
|
|
|
1
1
|
import { Credentials } from './Credentials';
|
|
2
|
-
export
|
|
2
|
+
export type CustomExtractionCallback<Req> = (request: Req) => Credentials | Promise<Credentials>;
|
|
@@ -2,4 +2,4 @@ import { ProductName } from '../utils';
|
|
|
2
2
|
import { BotDefenderData } from '../bot_defender';
|
|
3
3
|
import { CredentialIntelligenceData } from '../credential_intelligence';
|
|
4
4
|
import { AccountDefenderData } from '../account_defender';
|
|
5
|
-
export
|
|
5
|
+
export type ProductDataType<Name extends ProductName> = Name extends ProductName.BOT_DEFENDER ? BotDefenderData : Name extends ProductName.CREDENTIAL_INTELLIGENCE ? CredentialIntelligenceData : Name extends ProductName.CODE_DEFENDER ? never : Name extends ProductName.ACCOUNT_DEFENDER ? AccountDefenderData : Name extends ProductName.HYPE_SALE_CHALLENGE ? never : never;
|
|
@@ -2,4 +2,4 @@ import { ProductName } from '../utils';
|
|
|
2
2
|
import { IBotDefender } from '../bot_defender';
|
|
3
3
|
import { ICredentialIntelligence } from '../credential_intelligence';
|
|
4
4
|
import { IAccountDefender } from '../account_defender';
|
|
5
|
-
export
|
|
5
|
+
export type ProductType<Name extends ProductName, Req, Res> = Name extends ProductName.BOT_DEFENDER ? IBotDefender<Req, Res> : Name extends ProductName.CREDENTIAL_INTELLIGENCE ? ICredentialIntelligence<Req, Res> : Name extends ProductName.ACCOUNT_DEFENDER ? IAccountDefender<Req, Res> : never;
|
package/lib/pxde/model/PXDE.d.ts
CHANGED
package/lib/pxhd/model/PXHD.d.ts
CHANGED
|
@@ -62,7 +62,7 @@ export class PostRiskApiClientBase {
|
|
|
62
62
|
request: {
|
|
63
63
|
ip: context.requestData.ip,
|
|
64
64
|
headers: this.formatRiskHeadersField(context.requestData.headers),
|
|
65
|
-
url: context.requestData.
|
|
65
|
+
url: context.requestData.rawUrl,
|
|
66
66
|
},
|
|
67
67
|
additional: {
|
|
68
68
|
s2s_call_reason: ((_a = context.reasons) === null || _a === void 0 ? void 0 : _a[ProductName.BOT_DEFENDER]) ||
|
|
@@ -3,16 +3,16 @@ import { TokenOrigin } from '../../risk_token';
|
|
|
3
3
|
import { CustomParameters } from '../../custom_parameters';
|
|
4
4
|
import { GraphQLData } from '../../graphql/';
|
|
5
5
|
import { CredentialIntelligenceVersion, SsoStep } from '../../products';
|
|
6
|
-
export
|
|
6
|
+
export type HeaderEntry = {
|
|
7
7
|
name: string;
|
|
8
8
|
value: string;
|
|
9
9
|
};
|
|
10
|
-
export
|
|
10
|
+
export type RiskRequestData = {
|
|
11
11
|
ip: string;
|
|
12
12
|
url: string;
|
|
13
13
|
headers: HeaderEntry[];
|
|
14
14
|
};
|
|
15
|
-
export
|
|
15
|
+
export type RiskAdditionalData = {
|
|
16
16
|
request_id: string;
|
|
17
17
|
module_version: string;
|
|
18
18
|
s2s_call_reason: string;
|
|
@@ -47,7 +47,7 @@ export declare type RiskAdditionalData = {
|
|
|
47
47
|
ci_version?: CredentialIntelligenceVersion;
|
|
48
48
|
sso_step?: SsoStep;
|
|
49
49
|
} & CustomParameters;
|
|
50
|
-
export
|
|
50
|
+
export type RiskActivity = {
|
|
51
51
|
vid?: string;
|
|
52
52
|
uuid?: string;
|
|
53
53
|
pxhd?: string;
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
import { TokenVersion } from '../../risk_token';
|
|
2
2
|
import { RiskResponseV3Payload } from './v3';
|
|
3
3
|
import { RiskResponseV2Payload } from './v2';
|
|
4
|
-
export
|
|
4
|
+
export type RiskResponsePayloadType<TokenV extends TokenVersion> = TokenV extends TokenVersion.V3 ? RiskResponseV3Payload : TokenV extends TokenVersion.V2 ? RiskResponseV2Payload : never;
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
import { PXDE } from '../../../pxde';
|
|
2
2
|
import { BlockAction } from '../../../blocker';
|
|
3
3
|
import { RiskStatus } from '../../model';
|
|
4
|
-
export
|
|
4
|
+
export type RiskResponseV2Payload = {
|
|
5
5
|
status: RiskStatus;
|
|
6
6
|
cookie_cfg_block_result?: '0' | '1';
|
|
7
7
|
action?: BlockAction;
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
import { BlockAction } from '../../../blocker';
|
|
2
2
|
import { PXDE } from '../../../pxde';
|
|
3
3
|
import { RiskStatus } from '../../model';
|
|
4
|
-
export
|
|
4
|
+
export type RiskResponseV3Payload = {
|
|
5
5
|
status: RiskStatus;
|
|
6
6
|
score?: number;
|
|
7
7
|
action?: BlockAction;
|
|
@@ -3,7 +3,7 @@ import { TokenParserBase } from './TokenParserBase';
|
|
|
3
3
|
import { TokenVersion } from '../TokenVersion';
|
|
4
4
|
import { IConfiguration } from '../../config';
|
|
5
5
|
import { IToken } from '../token';
|
|
6
|
-
export
|
|
6
|
+
export type DefaultTokenV2ParserOptions = {
|
|
7
7
|
base64Utils: IBase64Utils;
|
|
8
8
|
hmacUtils: IHmacUtils;
|
|
9
9
|
};
|
|
@@ -3,7 +3,7 @@ import { ICipherUtils, IHmacUtils } from '../../utils';
|
|
|
3
3
|
import { TokenVersion } from '../TokenVersion';
|
|
4
4
|
import { IToken } from '../token';
|
|
5
5
|
import { TokenParserBase } from './TokenParserBase';
|
|
6
|
-
export
|
|
6
|
+
export type DefaultTokenV3ParserOptions = {
|
|
7
7
|
cipherUtils: ICipherUtils;
|
|
8
8
|
hmacUtils: IHmacUtils;
|
|
9
9
|
};
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
import { TokenVersion } from '../TokenVersion';
|
|
2
2
|
import { DefaultTokenV3ParserOptions } from './DefaultTokenV3Parser';
|
|
3
3
|
import { DefaultTokenV2ParserOptions } from './DefaultTokenV2Parser';
|
|
4
|
-
export
|
|
4
|
+
export type TokenOptionsType<TokenV> = TokenV extends TokenVersion.V2 ? DefaultTokenV2ParserOptions : DefaultTokenV3ParserOptions;
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
import { TokenVersion } from '../TokenVersion';
|
|
2
2
|
import { TokenV3Payload } from './v3/TokenV3Payload';
|
|
3
3
|
import { TokenV2Payload } from './v2/TokenV2Payload';
|
|
4
|
-
export
|
|
4
|
+
export type TokenPayloadType<TokenV extends TokenVersion> = TokenV extends TokenVersion.V3 ? TokenV3Payload : TokenV extends TokenVersion.V2 ? TokenV2Payload : never;
|
|
@@ -1,13 +1,13 @@
|
|
|
1
1
|
import { ActivityType } from '../../activities';
|
|
2
2
|
import { ConfigurationParams } from '../../config';
|
|
3
|
-
export
|
|
3
|
+
export type TelemetryActivityDetails = {
|
|
4
4
|
enforcer_configs: ConfigurationParams<unknown, unknown>;
|
|
5
5
|
module_version: string;
|
|
6
6
|
update_reason: 'command';
|
|
7
7
|
node_name?: string;
|
|
8
8
|
os_name?: string;
|
|
9
9
|
};
|
|
10
|
-
export
|
|
10
|
+
export type TelemetryActivity = {
|
|
11
11
|
type: ActivityType.ENFORCER_TELEMETRY;
|
|
12
12
|
timestamp: number;
|
|
13
13
|
px_app_id: string;
|
package/lib/utils/constants.d.ts
CHANGED
|
@@ -8,4 +8,4 @@ export declare const X_PX_AUTHORIZATION_HEADER_NAME = "x-px-authorization";
|
|
|
8
8
|
export declare const X_PX_ORIGINAL_TOKEN_HEADER_NAME = "x-px-original-token";
|
|
9
9
|
export declare const X_PX_BYPASS_REASON_HEADER_NAME = "x-px-bypass-reason";
|
|
10
10
|
export declare const EMAIL_ADDRESS_REGEX: RegExp;
|
|
11
|
-
export declare const CORE_MODULE_VERSION = "JS Core 0.
|
|
11
|
+
export declare const CORE_MODULE_VERSION = "JS Core 0.7.1";
|
package/lib/utils/constants.js
CHANGED
|
@@ -8,4 +8,4 @@ export const X_PX_AUTHORIZATION_HEADER_NAME = 'x-px-authorization';
|
|
|
8
8
|
export const X_PX_ORIGINAL_TOKEN_HEADER_NAME = 'x-px-original-token';
|
|
9
9
|
export const X_PX_BYPASS_REASON_HEADER_NAME = 'x-px-bypass-reason';
|
|
10
10
|
export const EMAIL_ADDRESS_REGEX = /^[a-zA-Z0-9_+&*-]+(?:\.[a-zA-Z0-9_+&*-]+)*@(?:[a-zA-Z0-9-]+\.)+[a-zA-Z]{2,7}$/;
|
|
11
|
-
export const CORE_MODULE_VERSION = 'JS Core 0.
|
|
11
|
+
export const CORE_MODULE_VERSION = 'JS Core 0.7.1';
|
package/lib/utils/index.d.ts
CHANGED
package/lib/utils/index.js
CHANGED
|
@@ -0,0 +1,13 @@
|
|
|
1
|
+
import { IURLParser } from './IURLParser';
|
|
2
|
+
import { IURL } from '../../http';
|
|
3
|
+
export type UrlParserOptions = {
|
|
4
|
+
normalize?: boolean;
|
|
5
|
+
reverseCharactersEncoding?: boolean;
|
|
6
|
+
};
|
|
7
|
+
export declare class DefaultUrlParser implements IURLParser {
|
|
8
|
+
private options;
|
|
9
|
+
constructor(options?: UrlParserOptions);
|
|
10
|
+
parse(rawUrl: string): IURL;
|
|
11
|
+
private reverseCharactersEncoding;
|
|
12
|
+
private normalize;
|
|
13
|
+
}
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
export class DefaultUrlParser {
|
|
2
|
+
constructor(options) {
|
|
3
|
+
this.options = Object.assign({ normalize: true, reverseCharactersEncoding: false }, options);
|
|
4
|
+
}
|
|
5
|
+
parse(rawUrl) {
|
|
6
|
+
const url = new URL(rawUrl);
|
|
7
|
+
if (this.options.reverseCharactersEncoding) {
|
|
8
|
+
url.pathname = this.reverseCharactersEncoding(url.pathname);
|
|
9
|
+
}
|
|
10
|
+
if (this.options.normalize) {
|
|
11
|
+
url.pathname = this.normalize(url.pathname);
|
|
12
|
+
}
|
|
13
|
+
return url;
|
|
14
|
+
}
|
|
15
|
+
reverseCharactersEncoding(path) {
|
|
16
|
+
return decodeURI(path);
|
|
17
|
+
}
|
|
18
|
+
normalize(path) {
|
|
19
|
+
return path.replace(/\/+$/, '').replace(/\/+/g, '/');
|
|
20
|
+
}
|
|
21
|
+
}
|