Skip to content

Commit

Permalink
added verification for first party xhr url
Browse files Browse the repository at this point in the history
  • Loading branch information
@pxjohnny
pxjohnny committed Jan 24, 2024
1 parent 3b41c4c commit 3a4d642
Showing 1 changed file with 24 additions and 3 deletions.
27 changes: 24 additions & 3 deletions PerimeterXModule/Internals/ReverseProxy.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@
using System.Net;
using System.Text;
using System.Web;
using System.Text.RegularExpressions;

namespace PerimeterX
{
Expand Down Expand Up @@ -175,7 +176,16 @@ public void ReversePxXhr(HttpContext context)
RenderPredefinedResponse(context, contentType, defaultResponse);
return;
}
string uri = context.Request.RawUrl.Replace(XhrReversePrefix, "");

string pathName = context.Request.Path.Replace(XhrReversePrefix, "");
string url = CollectorUrl + pathName + context.Request.QueryString;
string host = Regex.Replace(CollectorUrl, "https?:\\/\\/", "");
if (!isValidThirdPartyUrl(url, host, pathName))
{
PxLoggingUtils.LogDebug(string.Format("First party XHR URL is inaccurate: {0}, rendreing default response", url));
RenderPredefinedResponse(context, contentType, defaultResponse);
return;
}

string vid = null;
HttpCookie pxvid = context.Request.Cookies.Get("pxvid");
Expand Down Expand Up @@ -212,7 +222,7 @@ public void ReversePxXhr(HttpContext context)
context.Request.Headers.Add("Cookie", string.Format("pxvid={0}", vid));
}

bool success = ProcessRequest(context, CollectorUrl, uri);
bool success = ProcessRequest(context, CollectorUrl, pathName);
if (!success)
{
PxLoggingUtils.LogDebug("Redirect XHR returned bad status, rendering default response");
Expand Down Expand Up @@ -296,6 +306,17 @@ private void RenderPredefinedResponse(HttpContext context, string contentType, s
context.Response.End();
}


public bool isValidThirdPartyUrl(string url, string expectedHost, string expectedPath)
{
try
{
Uri uri = new Uri(url);
return uri.Host.ToLower() == expectedHost.ToLower() && uri.PathAndQuery.StartsWith(expectedPath);
}
catch (Exception e)
{
return false;
}
}
}
}

0 comments on commit 3a4d642

Please sign in to comment.