Sha256: 36486546bf3fe4fb808469624018ffb80a27c5a30cf255e06cc66d88c198a015

Contents?: true

Size: 1.92 KB

Versions: 6

Compression:

Stored size: 1.92 KB

Contents

# typed: true

require_relative '../response'

module Datadog
  module AppSec
    module Contrib
      module Rack
        module Reactive
          # Dispatch data from a Rack response to the WAF context
          module Response
            def self.publish(op, response)
              catch(:block) do
                op.publish('response.status', Rack::Response.status(response))

                nil
              end
            end

            def self.subscribe(op, waf_context)
              addresses = [
                'response.status',
              ]

              op.subscribe(*addresses) do |*values|
                Datadog.logger.debug { "reacted to #{addresses.inspect}: #{values.inspect}" }

                response_status = values[0]

                waf_args = {
                  'server.response.status' => response_status.to_s,
                }

                waf_timeout = Datadog::AppSec.settings.waf_timeout
                result = waf_context.run(waf_args, waf_timeout)

                Datadog.logger.debug { "WAF TIMEOUT: #{result.inspect}" } if result.timeout

                case result.status
                when :match
                  Datadog.logger.debug { "WAF: #{result.inspect}" }

                  block = result.actions.include?('block')

                  yield [result, block]

                  throw(:block, [result, true]) if block
                when :ok
                  Datadog.logger.debug { "WAF OK: #{result.inspect}" }
                when :invalid_call
                  Datadog.logger.debug { "WAF CALL ERROR: #{result.inspect}" }
                when :invalid_rule, :invalid_flow, :no_rule
                  Datadog.logger.debug { "WAF RULE ERROR: #{result.inspect}" }
                else
                  Datadog.logger.debug { "WAF UNKNOWN: #{result.status.inspect} #{result.inspect}" }
                end
              end
            end
          end
        end
      end
    end
  end
end

Version data entries

6 entries across 6 versions & 1 rubygems

Version Path
ddtrace-1.8.0 lib/datadog/appsec/contrib/rack/reactive/response.rb
ddtrace-1.7.0 lib/datadog/appsec/contrib/rack/reactive/response.rb
ddtrace-1.6.1 lib/datadog/appsec/contrib/rack/reactive/response.rb
ddtrace-1.6.0 lib/datadog/appsec/contrib/rack/reactive/response.rb
ddtrace-1.5.2 lib/datadog/appsec/contrib/rack/reactive/response.rb
ddtrace-1.5.1 lib/datadog/appsec/contrib/rack/reactive/response.rb