可信计算>> paranoik>> 返回
项目作者: gmoqa

项目描述 :
HTTP Request integrity verifier middleware for Node.js
高级语言: JavaScript
项目地址: git://github.com/gmoqa/paranoik.git
创建时间: 2019-05-03T17:33:44Z
项目社区:https://github.com/gmoqa/paranoik
开源协议:MIT License
下载


paranoik

NPM Version size license

Check integrity of each request using a custom HTTP header checksum (X-Checksum).

The hash is formed by [request url, request method, request data, request user-agent, secret key] in a MD5 hash function.

Installation

  1. npm install paranoik

Backend Usage

  1. const express = require('express');
  2. const paranoik = require('paranoik');
  4. const app = express();
  6. app.use(paranoik('YOUR_SECRET'));

Express Configuration

  1. const options = {
  2.     secret: YOUR_SECRET,
  3.     whitelist: [
  4.         '/login',
  5.         '/recovery'
  6.     ]
  7. };
  9. app.use(paranoik(options));

Frontend usage

  1. import paranoik from 'paranoik';
  3. axios.interceptors.request.use( async (config) => {
  4.     config.headers.XChecksum = await paranoik.checksum('YOUR_SECRET');
  5.     return config;
  6.   }, function (error) {
  7.     return Promise.reject(error);
  8.   });

License

MIT