update client libraries and samples

Author: GyulyVGC

client_common/src/appguard.ts

@@ -11,7 +11,7 @@ import {APP_ID_FILE, APP_SECRET_FILE, FIREWALL_DEFAULTS_FILE, TOKEN_FILE} from "
 import {AuthorizationRequest} from "./proto/appguard_commands/AuthorizationRequest";
 import {ClientMessage} from "./proto/appguard_commands/ClientMessage";
 import {ServerMessage__Output} from "./proto/appguard_commands/ServerMessage";
-import {FirewallDefaults} from "./proto/appguard_commands/FirewallDefaults";
+import {FirewallDefaults, FirewallDefaults__Output} from "./proto/appguard_commands/FirewallDefaults";
 
 const opts = {includeDirs: [
     'node_modules/@nullnet/appguard-express/node_modules/appguard-client-common/proto/',
@@ -32,22 +32,21 @@ const fs = require('fs');
 
 // process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0'
 
-export type AppGuardConfig = {
-    host: string;
-    port: number;
-    tls: boolean;
-};
-
 export class AppGuardService {
     private client: AppGuardClient
-    private config: AppGuardConfig
 
-    constructor(config: AppGuardConfig){
+    constructor(){
+        require('dotenv').config()
+        let host = process.env.CONTROL_SERVICE_ADDR || '0.0.0.0'
+        let port = process.env.CONTROL_SERVICE_PORT || '50051'
+        let tls = false;
+
+        console.log(`Connecting to ${host}:${port}`);
+
         this.client = new grpcObj.appguard.AppGuard(
-            `${config.host}:${config.port}`,
-            config.tls ? grpc.credentials.createSsl() : grpc.credentials.createInsecure()
+            `${host}:${port}`,
+            tls ? grpc.credentials.createSsl() : grpc.credentials.createInsecure()
         );
-        this.config = config;
     }
     async onModuleInit(){
         return new Promise((resolve, reject) => {
@@ -100,8 +99,23 @@ export class AppGuardService {
         })
     }
 
+    async firewallDefaultsRequest(token: string): Promise<FirewallDefaults__Output>{
+        let req = {
+            token: token,
+        };
+        return new Promise((resolve, reject) => {
+            this.client.firewallDefaultsRequest(req, (err, res) => {
+                if(err){
+                    reject(err)
+                } else {
+                    resolve(res as FirewallDefaults__Output)
+                }
+            })
+        })
+    }
+
     firewallPromise = (promise: Promise<AppGuardResponse__Output>): Promise<AppGuardResponse__Output> => {
-        let firewallDefaults: FirewallDefaults = getFirewallDefaults();
+        let firewallDefaults: FirewallDefaults = readFirewallDefaults();
         let timeout = firewallDefaults.timeout;
         let defaultPolicy = firewallDefaults.policy;
         if (timeout !== undefined) {
@@ -117,7 +131,7 @@ export class AppGuardService {
     }
 
     connectionPromise = (connection: AppGuardTcpConnection): Promise<AppGuardTcpResponse__Output> => {
-        let firewallDefaults: FirewallDefaults = getFirewallDefaults();
+        let firewallDefaults: FirewallDefaults = readFirewallDefaults();
         let timeout = firewallDefaults.timeout;
         let promise = this.handleTcpConnection(connection);
         if (timeout !== undefined) {
@@ -194,7 +208,7 @@ export class AppGuardService {
     }
 }
 
-function getFirewallDefaults(): FirewallDefaults {
+function readFirewallDefaults(): FirewallDefaults {
     let text = fs.readFileSync(FIREWALL_DEFAULTS_FILE, 'utf8');
     return JSON.parse(text);
 }

client_common/src/auth.ts

@@ -46,4 +46,8 @@ export class AuthHandler {
     token(): string {
         return fs.readFileSync(TOKEN_FILE, 'utf8');
     }
+
+    writeFirewallDefaults(firewallDefaults: FirewallDefaults) {
+        fs.writeFileSync(FIREWALL_DEFAULTS_FILE, JSON.stringify(firewallDefaults), {flag: 'w'});
+    }
 }

client_common/src/index.ts

@@ -1,4 +1,4 @@
 export {FirewallPolicy} from "./proto/appguard_commands/FirewallPolicy";
-export {AppGuardService, AppGuardConfig} from './appguard';
+export {AppGuardService} from './appguard';
 export {AuthHandler} from './auth';
 export {AppGuardTcpInfo} from './proto/appguard/AppGuardTcpInfo';

clients/express/sample/src/index.ts

@@ -1,18 +1,9 @@
 import express from 'express'
-import {AppGuardConfig, createAppGuardMiddleware, FirewallPolicy} from '@nullnet/appguard-express'
+import {createAppGuardMiddleware, FirewallPolicy} from '@nullnet/appguard-express'
 
 const app = express()
 
-const appGuardConfig: AppGuardConfig = {
-    host: 'localhost',
-    port: 50051,
-    tls: false,
-    defaultPolicy: FirewallPolicy.ALLOW,
-    timeout: 1_000,
-    firewall: "[]",
-}
-
-const appGuardMiddleware = createAppGuardMiddleware(appGuardConfig)
+const appGuardMiddleware = createAppGuardMiddleware()
 
 // AC #1:
 // Able to use as direct express module

clients/express/src/express-middleware.ts

@@ -1,25 +1,21 @@
 import { NextFunction, Request, Response, Send } from 'express';
-import { FirewallPolicy, AppGuardTcpInfo, AppGuardService, AuthHandler, AppGuardConfig } from 'appguard-client-common';
+import { FirewallPolicy, AppGuardTcpInfo, AppGuardService, AuthHandler } from 'appguard-client-common';
 
 type ExpressMiddleware = (
   req: Request,
   res: Response,
   next: NextFunction
 ) => void | Promise<void>;
 
-export const createAppGuardMiddleware = (config: AppGuardConfig) => {
-  const appGuardService = new AppGuardService(config);
+export const createAppGuardMiddleware = () => {
+  const appGuardService = new AppGuardService();
   let authHandler = new AuthHandler(appGuardService);
 
   async function initialize() {
     await appGuardService.onModuleInit();
-    await authHandler.init();
-    await appGuardService.updateFirewall({
-        // @ts-ignore
-        token: authHandler.token(),
-        // @ts-ignore
-        firewall: config.firewall
-    })
+    await authHandler.init("ExpressJS");
+    let fw_defaults = await appGuardService.firewallDefaultsRequest(authHandler.token());
+    authHandler.writeFirewallDefaults(fw_defaults);
   }
   initialize();
 

clients/express/src/index.ts

@@ -1,2 +1,2 @@
 export {createAppGuardMiddleware} from './express-middleware';
-export {FirewallPolicy, AppGuardConfig} from "appguard-client-common";
+export {FirewallPolicy} from "appguard-client-common";

clients/nextjs/package-lock.json

@@ -1,16 +1,7 @@
 import type {NextRequest} from 'next/server'
-import {AppGuardConfig, createAppGuardMiddleware, FirewallPolicy} from "../../src";
+import {createAppGuardMiddleware} from "../../src";
 
-const appGuardConfig: AppGuardConfig = {
-    host: 'localhost',
-    port: 50051,
-    tls: false,
-    defaultPolicy: FirewallPolicy.ALLOW,
-    timeout: 1_000,
-    firewall: '[{"policy": "deny", "infix_tokens": [{"type": "predicate", "condition": "contains", "http_request_url": [".php", ".env"]}]}]',
-}
-
-let appGuardMiddleware = await createAppGuardMiddleware(appGuardConfig);
+let appGuardMiddleware = await createAppGuardMiddleware();
 
 export default async function middleware(request: NextRequest) {
     return await appGuardMiddleware(request);

clients/nextjs/sample/src/middleware.ts

@@ -1,3 +1,2 @@
 export {createAppGuardMiddleware} from './nextjs-middleware';
 export {FirewallPolicy} from "appguard-client-common";
-export type { AppGuardConfig } from "appguard-client-common";

clients/nextjs/src/index.ts

@@ -1,19 +1,17 @@
 import {NextRequest, NextResponse} from 'next/server';
-import { FirewallPolicy, AppGuardTcpInfo, AppGuardService, AuthHandler, AppGuardConfig } from 'appguard-client-common';
+import { FirewallPolicy, AppGuardTcpInfo, AppGuardService, AuthHandler } from 'appguard-client-common';
 
 type NextjsMiddleware = (req: NextRequest) => Promise<NextResponse>;
 
-export const createAppGuardMiddleware = async (config: AppGuardConfig) => {
-    const appGuardService = new AppGuardService(config);
+export const createAppGuardMiddleware = async () => {
+    const appGuardService = new AppGuardService();
     let authHandler = new AuthHandler(appGuardService);
 
     async function initialize() {
         await appGuardService.onModuleInit();
-        await authHandler.init();
-        await appGuardService.updateFirewall({
-            token: authHandler.token(),
-            firewall: config.firewall
-        })
+        await authHandler.init("NextJS");
+        let fw_defaults = await appGuardService.firewallDefaultsRequest(authHandler.token());
+        authHandler.writeFirewallDefaults(fw_defaults);
     }
     await initialize();