From 9f7c0cb188e0cb3058d76638352d909fe1776883 Mon Sep 17 00:00:00 2001 From: haburger Date: Tue, 17 Dec 2024 22:40:42 +0000 Subject: [PATCH] new configuration version --- ...visproxy-idp-0ceb05c56644a59d648c13b9.yaml | 2 +- ...urce_service_countries_security_filter.lua | 23 +++++++++++++++++++ .../WEB-INF/web.xml | 20 ++++++++++++++++ 3 files changed, 44 insertions(+), 1 deletion(-) create mode 100644 DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/utility_resource_service_countries_security_filter.lua diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml index b02b6f9..bce35d5 100644 --- a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml +++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml @@ -46,7 +46,7 @@ spec: podDisruptionBudget: maxUnavailable: "50%" git: - tag: "r-62662ede470107ec5096dcb2a1eeea54ac2b8773" + tag: "r-de3192aa36a48a0c9e2734af2cfd5bc3b60701a0" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp" credentials: "git-credentials" keystores: diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/utility_resource_service_countries_security_filter.lua b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/utility_resource_service_countries_security_filter.lua new file mode 100644 index 0000000..8e035ae --- /dev/null +++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/utility_resource_service_countries_security_filter.lua @@ -0,0 +1,23 @@ +package.path = package.path .. ";/opt/nevisproxy/webapp/WEB-INF/lib/lua/Utils.lua" +local Utils = require "Utils" + +function inputHeader(req, resp) + local trace = req:getTracer() + + local queryParams = Utils.getQueryParameters(req) + local path = req:getRequestPath() + local pathInfo = req:getPathInfo() + + -- only allow calls to the countries service + if path == nil then + trace:error("path is nil") + else + trace:error("path is " .. path) + end + if pathInfo == nil then + trace:error("pathInfo is nil") + else + trace:error("path is " .. pathInfo) + end + +end \ No newline at end of file diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml index 1ba000a..6838a0b 100644 --- a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml +++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml @@ -640,6 +640,21 @@ outputHeader + + + Lua_Utility_Resource_Service_Countries_Security_Filter + ch::nevis::isiweb4::filter::lua::LuaFilter + + + Script.InputHeaderFunctionName + inputHeader + + + + Script.Path + /var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/utility_resource_service_countries_security_filter.lua + + ModSecurity_App_Icon_Application @@ -1098,6 +1113,11 @@ CSRF_Default /AUTH/RECOVERY + + + Lua_Utility_Resource_Service_Countries_Security_Filter + /resource/utility/* + JSON_Utility_Resource_Service