feat: request weight #608
Closed
feat: request weight #608
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Xe Iaso <[email protected]>
Signed-off-by: Xe Iaso <[email protected]>
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| ogCacheConsiderHost = flag.Bool("og-cache-consider-host", false, "enable or disable the use of the host in the Open Graph tag cache") | ||
| extractResources = flag.String("extract-resources", "", "if set, extract the static resources to the specified folder") | ||
| webmasterEmail = flag.String("webmaster-email", "", "if set, displays webmaster's email on the reject page for appeals") | ||
| valkeyURL = flag.String("valkey-url", "", "Valkey URL for Anubis' state layer") |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| ogCacheConsiderHost = flag.Bool("og-cache-consider-host", false, "enable or disable the use of the host in the Open Graph tag cache") | ||
| extractResources = flag.String("extract-resources", "", "if set, extract the static resources to the specified folder") | ||
| webmasterEmail = flag.String("webmaster-email", "", "if set, displays webmaster's email on the reject page for appeals") | ||
| valkeyURL = flag.String("valkey-url", "", "Valkey URL for Anubis' state layer") |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| ogCacheConsiderHost = flag.Bool("og-cache-consider-host", false, "enable or disable the use of the host in the Open Graph tag cache") | ||
| extractResources = flag.String("extract-resources", "", "if set, extract the static resources to the specified folder") | ||
| webmasterEmail = flag.String("webmaster-email", "", "if set, displays webmaster's email on the reject page for appeals") | ||
| valkeyURL = flag.String("valkey-url", "", "Valkey URL for Anubis' state layer") |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| @@ -0,0 +1,86 @@ | |||
| package valkey | |||
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| @@ -0,0 +1,86 @@ | |||
| package valkey | |||
Check failure
Code scanning / check-spelling
Check File Path Error
| } | ||
| } | ||
|
|
||
| func (prc *PassRateChecker) Hash() string { |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| } | ||
|
|
||
| func (prc *PassRateChecker) Hash() string { | ||
| return internal.SHA256sum(fmt.Sprintf("pass rate checker::%s", prc.header)) |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| return internal.SHA256sum(fmt.Sprintf("pass rate checker::%s", prc.header)) | ||
| } | ||
|
|
||
| func (prc *PassRateChecker) Check(r *http.Request) (bool, error) { |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
| } | ||
|
|
||
| func (prc *PassRateChecker) Check(r *http.Request) (bool, error) { | ||
| data, err := prc.store.MultiGetInt(r.Context(), [][]string{ |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
|
|
||
| func (prc *PassRateChecker) Check(r *http.Request) (bool, error) { | ||
| data, err := prc.store.MultiGetInt(r.Context(), [][]string{ | ||
| {"pass_rate", prc.header, r.Header.Get(prc.header), "pass"}, |
Check failure
Code scanning / check-spelling
Unrecognized Spelling Error
Xe
added a commit
that referenced
this pull request
Jun 6, 2025
Replaces #608 This is a big one and will be what makes Anubis a generic web application firewall. This introduces the WEIGH option, allowing administrators to have facets of request metadata add or remove "weight", or the level of suspicion. This really makes Anubis weigh the soul of requests. Signed-off-by: Xe Iaso <[email protected]>
Xe
added a commit
that referenced
this pull request
Jun 9, 2025
Replaces #608 This is a big one and will be what makes Anubis a generic web application firewall. This introduces the WEIGH option, allowing administrators to have facets of request metadata add or remove "weight", or the level of suspicion. This really makes Anubis weigh the soul of requests. Signed-off-by: Xe Iaso <[email protected]>
Xe
added a commit
that referenced
this pull request
Jun 9, 2025
* feat(lib): implement request weight Replaces #608 This is a big one and will be what makes Anubis a generic web application firewall. This introduces the WEIGH option, allowing administrators to have facets of request metadata add or remove "weight", or the level of suspicion. This really makes Anubis weigh the soul of requests. Signed-off-by: Xe Iaso <[email protected]> * fix(lib): maintain legacy challenge behavior Signed-off-by: Xe Iaso <[email protected]> * fix(lib): make weight have dedicated checkers for the hashes Signed-off-by: Xe Iaso <[email protected]> * feat(data): convert some rules over to weight points Signed-off-by: Xe Iaso <[email protected]> * docs: document request weight Signed-off-by: Xe Iaso <[email protected]> * fix(CHANGELOG): spelling error Signed-off-by: Xe Iaso <[email protected]> * chore: spelling Signed-off-by: Xe Iaso <[email protected]> * docs: fix links to challenge information Signed-off-by: Xe Iaso <[email protected]> * docs(policies): fix formatting Signed-off-by: Xe Iaso <[email protected]> * fix(config): make default weight adjustment 5 Signed-off-by: Xe Iaso <[email protected]> --------- Signed-off-by: Xe Iaso <[email protected]>
JasonLovesDoggo
pushed a commit
to JasonLovesDoggo/anubis
that referenced
this pull request
Jun 17, 2025
* feat(lib): implement request weight Replaces TecharoHQ#608 This is a big one and will be what makes Anubis a generic web application firewall. This introduces the WEIGH option, allowing administrators to have facets of request metadata add or remove "weight", or the level of suspicion. This really makes Anubis weigh the soul of requests. Signed-off-by: Xe Iaso <[email protected]> * fix(lib): maintain legacy challenge behavior Signed-off-by: Xe Iaso <[email protected]> * fix(lib): make weight have dedicated checkers for the hashes Signed-off-by: Xe Iaso <[email protected]> * feat(data): convert some rules over to weight points Signed-off-by: Xe Iaso <[email protected]> * docs: document request weight Signed-off-by: Xe Iaso <[email protected]> * fix(CHANGELOG): spelling error Signed-off-by: Xe Iaso <[email protected]> * chore: spelling Signed-off-by: Xe Iaso <[email protected]> * docs: fix links to challenge information Signed-off-by: Xe Iaso <[email protected]> * docs(policies): fix formatting Signed-off-by: Xe Iaso <[email protected]> * fix(config): make default weight adjustment 5 Signed-off-by: Xe Iaso <[email protected]> --------- Signed-off-by: Xe Iaso <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is a big one and will be what makes Anubis a generic web application firewall. This introduces the WEIGH option, allowing administrators to have facets of request metadata add or remove "weight", or the level of suspicion. This really makes Anubis weigh the soul of requests.
Checklist:
[Unreleased]section of docs/docs/CHANGELOG.mdnpm run test:integration(unsupported on Windows, please use WSL)