Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add response headers passing to WAF #2701

Merged
merged 1 commit into from
Apr 5, 2023
Merged

Add response headers passing to WAF #2701

merged 1 commit into from
Apr 5, 2023

Conversation

lloeki
Copy link
Contributor

@lloeki lloeki commented Mar 20, 2023

What does this PR do?

Propagate Rack response headers to the WAF

Motivation

Suspicious request blocking

Additional Notes

Nope

How to test the change?

System tests + CI

@github-actions github-actions bot added appsec Application Security monitoring product integrations Involves tracing integrations labels Mar 20, 2023
@lloeki lloeki force-pushed the appsec-rack-response-headers branch 3 times, most recently from 3815cbb to d70a0f2 Compare March 20, 2023 15:21
@lloeki
Copy link
Contributor Author

lloeki commented Mar 20, 2023

System tests seem to actually lack a test for that. Rulesets don't even include a rule for this WAF address.

@lloeki lloeki marked this pull request as ready for review March 20, 2023 15:24
@lloeki lloeki requested a review from a team March 20, 2023 15:24
GustavoCaso
GustavoCaso approved these changes Mar 21, 2023
View reviewed changes
Copy link
Member

@GustavoCaso GustavoCaso left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@lloeki lloeki force-pushed the appsec-rack-response-headers branch from d70a0f2 to 55818e7 Compare April 5, 2023 07:51
@lloeki lloeki force-pushed the appsec-rack-response-headers branch from 55818e7 to 7dce952 Compare April 5, 2023 13:41
@codecov-commenter
Copy link

Codecov Report

Merging #2701 (7dce952) into master (fd50833) will increase coverage by 0.00%.
The diff coverage is 100.00%.

@@           Coverage Diff           @@
##           master    #2701   +/-   ##
=======================================
  Coverage   98.06%   98.07%           
=======================================
  Files        1222     1222           
  Lines       67271    67277    +6     
  Branches     3013     3013           
=======================================
+ Hits        65972    65980    +8     
+ Misses       1299     1297    -2
Impacted Files Coverage Δ
spec/ddtrace/release_gem_spec.rb 100.00% <ø> (ø)
...b/datadog/appsec/contrib/rack/reactive/response.rb 100.00% <100.00%> (ø)
...adog/appsec/contrib/rack/reactive/response_spec.rb 100.00% <100.00%> (ø)

... and 5 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

@lloeki lloeki merged commit 72222b4 into master Apr 5, 2023
51 checks passed
@lloeki lloeki deleted the appsec-rack-response-headers branch April 5, 2023 14:22
@github-actions github-actions bot added this to the 1.11.0 milestone Apr 5, 2023
@lloeki lloeki modified the milestones: 1.11.0, 1.11.0.beta1 Apr 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@GustavoCaso GustavoCaso GustavoCaso approved these changes

Assignees
No one assigned
Labels
appsec Application Security monitoring product integrations Involves tracing integrations
Projects
None yet
Milestone
1.11.0.beta1
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@lloeki @codecov-commenter @GustavoCaso