aiwaf 0.1.7.3__py3-none-any.whl → 0.1.7.6__py3-none-any.whl

aiwaf/middleware.py

@@ -14,7 +14,7 @@ from django.core.cache import cache
 from django.db.models import F
 from django.apps import apps
 from django.urls import get_resolver
-
+from .trainer import STATIC_KW, STATUS_IDX, is_exempt_path, path_exists_in_django
 from .blacklist_manager import BlacklistManager
 from .models import DynamicKeyword
 
@@ -131,17 +131,45 @@ class AIAnomalyMiddleware(MiddlewareMixin):
     WINDOW = getattr(settings, "AIWAF_WINDOW_SECONDS", 60)
     TOP_N  = getattr(settings, "AIWAF_DYNAMIC_TOP_N", 10)
 
+    def __init__(self, get_response=None):
+        super().__init__(get_response)
+        model_path = os.path.join(os.path.dirname(__file__), "resources", "model.pkl")
+        self.model = joblib.load(model_path)
+
     def process_request(self, request):
         if is_exempt_path(request.path):
             return None
+        request._start_time = time.time()
         ip = get_ip(request)
         if BlacklistManager.is_blocked(ip):
             return JsonResponse({"error": "blocked"}, status=403)
+        return None
 
+    def process_response(self, request, response):
+        if is_exempt_path(request.path):
+            return response
+        ip = get_ip(request)
         now = time.time()
         key = f"aiwaf:{ip}"
         data = cache.get(key, [])
-        data.append((now, request.path, 0, 0.0))
+        path_len = len(request.path)
+        if not path_exists_in_django(request.path) and not is_exempt_path(request.path):
+            kw_hits = sum(1 for kw in STATIC_KW if kw in request.path.lower())
+        else:
+            kw_hits = 0
+
+        resp_time = now - getattr(request, "_start_time", now)
+        status_code = str(response.status_code)
+        status_idx = STATUS_IDX.index(status_code) if status_code in STATUS_IDX else -1
+        burst_count = sum(1 for (t, _, _, _) in data if now - t <= 10)
+        total_404 = sum(1 for (_, _, st, _) in data if st == 404)
+        feats = [path_len, kw_hits, resp_time, status_idx, burst_count, total_404]
+        X = np.array(feats, dtype=float).reshape(1, -1)
+        if self.model.predict(X)[0] == -1:
+            BlacklistManager.block(ip, "AI anomaly")
+            return JsonResponse({"error": "blocked"}, status=403)
+
+        data.append((now, request.path, response.status_code, resp_time))
         data = [d for d in data if now - d[0] < self.WINDOW]
         cache.set(key, data, timeout=self.WINDOW)
         for seg in re.split(r"\W+", request.path.lower()):
@@ -149,28 +177,7 @@ class AIAnomalyMiddleware(MiddlewareMixin):
                 obj, _ = DynamicKeyword.objects.get_or_create(keyword=seg)
                 DynamicKeyword.objects.filter(pk=obj.pk).update(count=F("count") + 1)
 
-        if len(data) < 5:
-            return None
-        top_dynamic = list(
-            DynamicKeyword.objects
-            .order_by("-count")
-            .values_list("keyword", flat=True)[: self.TOP_N]
-        )
-        ALL_KW = set(STATIC_KW) | set(top_dynamic)
-
-        total    = len(data)
-        ratio404 = sum(1 for (_, _, st, _) in data if st == 404) / total
-        hits     = sum(any(kw in path.lower() for kw in ALL_KW) for (_, path, _, _) in data)
-        avg_rt   = np.mean([rt for (_, _, _, rt) in data]) if data else 0.0
-        ivs      = [data[i][0] - data[i - 1][0] for i in range(1, total)]
-        avg_iv   = np.mean(ivs) if ivs else 0.0
-
-        X = np.array([[total, ratio404, hits, avg_rt, avg_iv]], dtype=float)
-        if MODEL.predict(X)[0] == -1:
-            BlacklistManager.block(ip, "AI anomaly")
-            return JsonResponse({"error": "blocked"}, status=403)
-
-        return None
+        return response
 
 
 class HoneypotMiddleware(MiddlewareMixin):

{aiwaf-0.1.7.3.dist-info → aiwaf-0.1.7.6.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: aiwaf
-Version: 0.1.7.3
+Version: 0.1.7.6
 Summary: AI-powered Web Application Firewall
 Home-page: https://github.com/aayushgauba/aiwaf
 Author: Aayush Gauba

{aiwaf-0.1.7.3.dist-info → aiwaf-0.1.7.6.dist-info}/RECORD

@@ -1,7 +1,7 @@
 aiwaf/__init__.py,sha256=nQFpJ1YpX48snzLjEQCf8zD2YNh8v0b_kPTrXx8uBYc,46
 aiwaf/apps.py,sha256=nCez-Ptlv2kaEk5HenA8b1pATz1VfhrHP1344gwcY1A,142
 aiwaf/blacklist_manager.py,sha256=sM6uTH7zD6MOPGb0kzqV2aFut2vxKgft_UVeRJr7klw,392
-aiwaf/middleware.py,sha256=50y13kXr_2oL9dymqncJfNhrCiPsLInWP4aVK1f88Ss,7469
+aiwaf/middleware.py,sha256=kH77E1xWVIjQF6frUGM6kdoz-gZXGAh43Fj-2hPEbSM,7990
 aiwaf/models.py,sha256=8au1umopgCo0lthztTTRrYRJQUM7uX8eAeXgs3z45K4,1282
 aiwaf/storage.py,sha256=bxCILzzvA1-q6nwclRE8WrfoRhe25H4VrsQDf0hl_lY,1903
 aiwaf/trainer.py,sha256=ir5kFTeLQuhMd2h094ct03Wr-rNZsX-mZHwjLx29F54,6422
@@ -12,8 +12,8 @@ aiwaf/management/commands/detect_and_train.py,sha256=-o-LZ7QZ5GeJPCekryox1DGXKMm
 aiwaf/resources/model.pkl,sha256=rCCXH38SJrnaOba2WZrU1LQVzWT34x6bTVkq20XJU-Q,1091129
 aiwaf/templatetags/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 aiwaf/templatetags/aiwaf_tags.py,sha256=1KGqeioYmgKACDUiPkykSqI7DLQ6-Ypy1k00weWj9iY,399
-aiwaf-0.1.7.3.dist-info/licenses/LICENSE,sha256=Ir8PX4dxgAcdB0wqNPIkw84fzIIRKE75NoUil9RX0QU,1069
-aiwaf-0.1.7.3.dist-info/METADATA,sha256=k-einbUwi_qqx8Nk_CwSysIZKC-bL9RztcIbsEZQUJs,6116
-aiwaf-0.1.7.3.dist-info/WHEEL,sha256=0CuiUZ_p9E4cD6NyLD6UG80LBXYyiSYZOKDm5lp32xk,91
-aiwaf-0.1.7.3.dist-info/top_level.txt,sha256=kU6EyjobT6UPCxuWpI_BvcHDG0I2tMgKaPlWzVxe2xI,6
-aiwaf-0.1.7.3.dist-info/RECORD,,
+aiwaf-0.1.7.6.dist-info/licenses/LICENSE,sha256=Ir8PX4dxgAcdB0wqNPIkw84fzIIRKE75NoUil9RX0QU,1069
+aiwaf-0.1.7.6.dist-info/METADATA,sha256=wzS_EmYIHPo4JULdOAoVZvWn7Yo2I9qrRkcWkHw-k34,6116
+aiwaf-0.1.7.6.dist-info/WHEEL,sha256=DnLRTWE75wApRYVsjgc6wsVswC54sMSJhAEd4xhDpBk,91
+aiwaf-0.1.7.6.dist-info/top_level.txt,sha256=kU6EyjobT6UPCxuWpI_BvcHDG0I2tMgKaPlWzVxe2xI,6
+aiwaf-0.1.7.6.dist-info/RECORD,,

{aiwaf-0.1.7.3.dist-info → aiwaf-0.1.7.6.dist-info}/WHEEL

@@ -1,5 +1,5 @@
 Wheel-Version: 1.0
-Generator: setuptools (80.3.1)
+Generator: setuptools (80.4.0)
 Root-Is-Purelib: true
 Tag: py3-none-any