alihan/arc-evilsocket
1
0
Fork 0
mirror of https://github.com/evilsocket/arc.git synced 2024-05-26 22:37:37 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
arc-evilsocket/middlewares/security.go
Simone Margaritelli 4fe9172d00 misc: refactored logging to use islazy/log
2019-11-20 12:07:36 +01:00

42 lines
1001 B
Go
Raw Permalink Blame History

/*
* Arc - Copyleft of Simone 'evilsocket' Margaritelli.
* evilsocket at protonmail dot com
* https://www.evilsocket.net/
*
* See LICENSE.
*/
package middlewares
import (
"fmt"
"github.com/evilsocket/islazy/log"
"github.com/gin-gonic/gin"
"gopkg.in/unrolled/secure.v1"
"strings"
)
func Security(tlsFingerprint string) gin.HandlerFunc {
rules := secure.New(secure.Options{
FrameDeny: true,
ContentTypeNosniff: true,
BrowserXssFilter: true,
ReferrerPolicy: "same-origin",
// PublicKey: fmt.Sprintf("pin-sha256=\"%s\"; max-age=5184000", tlsFingerprint),
})
return func(c *gin.Context) {
err := rules.Process(c.Writer, c.Request)
if err != nil {
who := strings.Split(c.Request.RemoteAddr, ":")[0]
req := fmt.Sprintf("%s %s", c.Request.Method, c.Request.URL.Path)
log.Warning("%s > %s | Security exception: %s", who, req, err)
c.Abort()
return
}
if status := c.Writer.Status(); status > 300 && status < 399 {
c.Abort()
}
}
}
Reference in New Issue View Git Blame Copy Permalink