Sha256: 6ec5bbeaca9a0162db3540af6e5211ffa927752781555cc4c771d27fe1a6b3a2
Contents?: true
Size: 1.65 KB
Versions: 5
Compression:
Stored size: 1.65 KB
Contents
# frozen_string_literal: true
module Datadog
module AppSec
module Contrib
module Rack
module Reactive
# Dispatch data from a Rack response to the WAF context
module Response
ADDRESSES = [
'response.status',
'response.headers',
].freeze
private_constant :ADDRESSES
def self.publish(op, gateway_response)
catch(:block) do
op.publish('response.status', gateway_response.status)
op.publish('response.headers', gateway_response.headers)
nil
end
end
def self.subscribe(op, waf_context)
op.subscribe(*ADDRESSES) do |*values|
Datadog.logger.debug { "reacted to #{ADDRESSES.inspect}: #{values.inspect}" }
response_status = values[0]
response_headers = values[1]
response_headers_no_cookies = response_headers.dup.tap { |h| h.delete('set-cookie') }
persistent_data = {
'server.response.status' => response_status.to_s,
'server.response.headers' => response_headers,
'server.response.headers.no_cookies' => response_headers_no_cookies,
}
waf_timeout = Datadog.configuration.appsec.waf_timeout
result = waf_context.run(persistent_data, {}, waf_timeout)
next if result.status != :match
yield result
throw(:block, true) unless result.actions.empty?
end
end
end
end
end
end
end
end
Version data entries
5 entries across 5 versions & 1 rubygems