Skip to content

A Rust interface to ModSecurity

License

Apache-2.0, MIT licenses found

Licenses found

Apache-2.0
LICENSE-APACHE
MIT
LICENSE-MIT
Notifications You must be signed in to change notification settings

rkrishn7/rust-modsecurity

Repository files navigation

modsecurity

Crates.io MSRV Codecov Check Safety Test Contributions

A Rust-interface to the ModSecurity library.

If you're looking for low-level FFI bindings to libmodsecurity, check out modsecurity-sys.

Example

Block requests with admin in the path

use modsecurity::{ModSecurity, Rules};

let ms = ModSecurity::default();

let mut rules = Rules::new();
rules.add_plain(r#"
    SecRuleEngine On

    SecRule REQUEST_URI "@rx admin" "id:1,phase:1,deny,status:401"
"#).expect("Failed to add rules");

let mut transaction = ms
    .transaction_builder()
    .with_rules(&rules)
    .build()
    .expect("Error building transaction");

transaction.process_uri("http://example.com/admin", "GET", "1.1").expect("Error processing URI");
transaction.process_request_headers().expect("Error processing request headers");

let intervention = transaction.intervention().expect("Expected intervention");

assert_eq!(intervention.status(), 401);

More examples can be found in the examples directory.

Documentation

Information regarding the ModSecurity language can be found in the ModSecurity Reference Manual.

Documentation for this crate can be found on docs.rs.

Requirements

This crate requires libmodsecurity >= 3.0.13 to be installed on your system.

License

Licensed under either of

at your option.

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.

About

A Rust interface to ModSecurity

Resources

License

Apache-2.0, MIT licenses found

Licenses found

Apache-2.0
LICENSE-APACHE
MIT
LICENSE-MIT

Stars

Watchers

Forks

Packages

No packages published

Languages