bubblev
/
bubble
9
0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 130 Vikivietne Aktivitāte
Etiķetes Atskaites punkti
Jauns izmaiņu pieprasījums

#58 Add request protector app with cross-domain cookies filtering

Sapludināts
jonathan sapludināja 35 revīzijas no kris/request_protector_app uz master pirms 4 gadiem
Saruna 4 Revīzijas 35 Izmainītie faili 17
kris komentēja pirms 4 gadiem

@jonathan please review

Waiting on Jenkins build: https://jenkins.bubblev.org/job/bubble-dev-kris/252/
but not sure how it will go as current master build is failing.

@jonathan please review Waiting on Jenkins build: https://jenkins.bubblev.org/job/bubble-dev-kris/252/ but not sure how it will go as current master build is failing.
jonathan tika piešķirta problēma no kris pirms 4 gadiem
jonathan komentēja pirms 4 gadiem
Īpašnieks

Looks good, but what would the regex be if the intent is “delete any cookies NOT belonging to the current domain, or one of its subdomains”?

It seems like we would need some more logic -- if we add these 2 things I think it would work:

  1. The regex can include {{fqdn}} which will be replaced (in mitm-land) with the (regex-escaped) FQDN for the current request
  2. In addition to regex and replacement, add mode which can be match or no_match. Or, alternatively, see if the “regex negation” syntax works in Python’s regex implementation, see: https://stackoverflow.com/questions/2637675/how-to-negate-the-whole-regex ). If regex negation works, that may be easier.

Thoughts?

Looks good, but what would the regex be if the intent is "delete any cookies NOT belonging to the current domain, or one of its subdomains"? It seems like we would need some more logic -- if we add these 2 things I think it would work: 1. The regex can include `{{fqdn}}` which will be replaced (in mitm-land) with the (regex-escaped) FQDN for the current request 2. In addition to `regex` and `replacement`, add `mode` which can be `match` or `no_match`. Or, alternatively, see if the "regex negation" syntax works in Python's regex implementation, see: https://stackoverflow.com/questions/2637675/how-to-negate-the-whole-regex ). If regex negation works, that may be easier. Thoughts?
kris komentēja pirms 4 gadiem
Autors
  1. will do. Separate PR? (easier review)
  2. (?!...) is supported in python3’s re
1. will do. Separate PR? (easier review) 2. `(?!...)` is supported in python3's `re`
jonathan komentēja pirms 4 gadiem
Īpašnieks
  1. will do. Separate PR? (easier review)

No, let’s do it in this one. And test it :) this will be very cool when it works!

  1. (?!...) is supported in python3’s re

That’s good news. Let’s do that.

> 1. will do. Separate PR? (easier review) No, let's do it in this one. And test it :) this will be very cool when it works! > 2. `(?!...)` is supported in python3's `re` That's good news. Let's do that.
👍 1
kris nomainīts nosaukums no Add request protector app with cross-domain cookies filtering uz WIP: (testing after fqdn part) Add request protector app with cross-domain cookies filtering pirms 4 gadiem
kris nomainīts nosaukums no WIP: (testing after fqdn part) Add request protector app with cross-domain cookies filtering uz Add request protector app with cross-domain cookies filtering pirms 4 gadiem
kris nomainīts nosaukums no Add request protector app with cross-domain cookies filtering uz WIP: (waiting on fresh Jenkins build) Add request protector app with cross-domain cookies filtering pirms 4 gadiem
kris nomainīts nosaukums no WIP: (waiting on fresh Jenkins build) Add request protector app with cross-domain cookies filtering uz Add request protector app with cross-domain cookies filtering pirms 4 gadiem
kris komentēja pirms 4 gadiem
Autors

Passing Jenkins build: https://jenkins.bubblev.org/job/bubble-dev-kris/260/

Passing Jenkins build: https://jenkins.bubblev.org/job/bubble-dev-kris/260/
jonathan pieprasīja izmaiņas pirms 4 gadiem
jonathan atstāja komentāru

minor changes requested.

bubble-server/src/main/resources/models/defaults/bubblePlan.json
@@ -38,2 +38,3 @@
{"app": "UserBlocker"},
{"app": "TlsPassthru"}
{"app": "TlsPassthru"},
{"app": "RequestProtector"}
jonathan komentēja pirms 4 gadiem

Let’s add RequestProtector app to all plans.

Let's add `RequestProtector` app to all plans.
bubble-server/src/main/resources/packer/roles/mitmproxy/files/bubble_api.py
@@ -452,0 +487,4 @@

def _replace_in_headers(headers: nheaders.Headers, modifiers_dict: dict) -> int:
"""
Taken from original mitmproxy's Header class implementation with sligh change to allow replacement with empty string
jonathan komentēja pirms 4 gadiem

r/sligh/slight/

`r/sligh/slight/`
kris komentēja pirms 4 gadiem

Actully, I’ll remove this second part completely as I did a larger changes here recently

Actully, I'll remove this second part completely as I did a larger changes here recently
jonathan pieminēja šo problēmu revīzijā pirms 4 gadiem
Add request protector app with cross-domain cookies filtering (#58) Add RequestProtector app to cheapest plan Update comment with typo Merge branch 'master' into kris/request_protector_app Merge branch 'master' into kris/request_protector_app Merge branch 'kris/request_protector_app' of git.bubblev.org:bubblev/bubble into kris/request_protector_app Extract method for updating requests host and port Fix header replacement Replace all cross-domain cookies with empty Add fqdn variable support in header replacements Merge branch 'master' into kris/request_protector_app Merge branch 'master' into kris/request_protector_app Merge branch 'master' into kris/request_protector_app Merge branch 'master' into kris/request_protector_app Add add header replacement button label Try to add initial header replacement for cross-domain cookies Merge branch 'master' into kris/request_protector_app Merge branch 'master' into kris/request_protector_app use special header replacement to skip emptied headers Set RequestProtector replacement optional again Fix replacement reference in RequestProtector app Update flex domains with empty set if needed Add back request heades modifiers as prime app Extract and refactor _primeApp method Merge branch 'master' into kris/request_protector_app # Conflicts - WIP: # bubble-server/src/main/java/bubble/service/stream/StandardAppPrimerService.java Use HeaderReplacement's id field in JSONs Make RequestProtector's replacement field required Add new app to some plans Set new app to have `app` presentation Add RuleDriver and AppMatcher for the new app Add request protector app Remove not used filter Merge branch 'master' into kris/request_protector_app Add full support for response header modification Merge branch 'master' into kris/request_protector_app # Conflicts: # utils/cobbzilla-utils Add RequestProtector app Co-authored-by: jonathan <jonathan@noreply.git.bubblev.org> Co-authored-by: Kristijan Mitrovic <kmitrovic@itekako.com> Reviewed-on: https://git.bubblev.org/bubblev/bubble/pulls/58
jonathan aizvēra šo izmaiņu pieprasījumu pirms 4 gadiem
jonathan izdzēsa atzaru kris/request_protector_app pirms 4 gadiem

Recenzenti

jonathan pieprasīja izmaiņas pirms 4 gadiem
Izmaiņu pieprasījums tika sapludināts ar revīziju 237e90d126.
Pierakstieties, lai pievienotos šai sarunai.
Recenzenti
Pieprasīt recenziju
Nav recenzentu
 jonathan
Etiķetes
Apstiprināt etiķetes
Noņemt etiķetes
Nav neviena ieraksta
Nav etiķešu
Atskaites punkts
Uzstādīt atskaites punktu
Notīrīt atskaites punktus
Nav neviena ieraksta
Nav atskaites punktu
Atbildīgie
Piešķirt lietotājus
Noņemt atbildīgo
Nav atbildīgo
 jonathan
2 dalībnieki
Paziņojumi
Izpildes termiņš

Izpildes termiņš nav uzstādīts.

Atkarības

Šim izmaiņu pieprasījumam pagaidām nav nevienas atkarības.

Rakstīt Priekšskatītījums
Notiek ielāde…
Atcelt
Saglabāt
Vēl nav satura.
Dzēst atzaru 'kris/request_protector_app'

Atzara dzēšana ir neatgriezeniska, kā arī tā ir NEATGRIEZENISKA. Vai turpināt?