Added new template for combined firstParty and Enforcer lambdas #3
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Contributor
There was a problem hiding this comment. I would suggest reorganizing the files and directories for clarity. What I might do is have the most basic usage of our library in the src/
Or something like this. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,45 @@ | ||
| import { CloudFrontRequest, CloudFrontRequestEvent, CloudFrontResponseResult, Context } from 'aws-lambda'; | ||
| import { HumanSecurityEnforcer, HumanSecurityFirstParty } from './px/humansecurity'; | ||
| import { getConfigAsync } from './custom/config'; | ||
|
|
||
|
|
||
| // define and export a handler | ||
| export async function handler( | ||
| event: CloudFrontRequestEvent, | ||
| context: Context | ||
| ): Promise<CloudFrontRequest | CloudFrontResponseResult> { | ||
| // extract request from event | ||
| const request = event.Records[0].cf.request; | ||
|
|
||
| // retrieve and await the configuration | ||
| const config = await getConfigAsync(); | ||
|
|
||
| // initialize enforcer and first party | ||
| const enforcer = HumanSecurityEnforcer.initialize(config); | ||
| const firstParty = HumanSecurityFirstParty.initialize(config); | ||
|
Comment on lines
+18
to
+19
Contributor
There was a problem hiding this comment. Should be initialized once instead of on every invocation of the handler. Store them in global variables and reuse them. |
||
|
|
||
|
|
||
| // handle first party before calling enforce or other custom logic | ||
| const firstPartyResult = await firstParty.handleFirstParty(request, context); | ||
|
|
||
| // if the result exists, the incoming request is a HUMAN first party request | ||
| // the result should be returned from the handler | ||
| if (firstPartyResult) { | ||
| return firstPartyResult; | ||
| } | ||
|
|
||
| // if the request is not first party, we should enforce the incoming request | ||
| const blockResponse = await enforcer.enforce(request); | ||
|
|
||
| // if we received a response, we should return it from the handler | ||
| // this will return the block response to the end user and prevent the | ||
| // request from reaching the origin server | ||
| if (blockResponse) { | ||
| return blockResponse; | ||
| } | ||
|
|
||
| // if we did not receive a block response, the request can be processed | ||
| // using custom logic as desired and eventually returned from the handler | ||
| // to pass it along to the origin server | ||
| return request; | ||
| } | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do we need this?