You are here

Home » API reference » Fastly 8.3

datadome_integration_fetch.html.twig in Fastly 8.3 

if (req.backend == datadome) {
declare local var.status STRING;
set var.status = beresp.status;
# check that it is real ApiServer response
if (var.status != beresp.http.x-datadomeresponse) {
restart;
}
unset beresp.http.x-datadomeresponse;
# copy datadome headers
set req.http.x-datadome-headers-pairs:x-datadome-headers = urlencode(beresp.http.x-datadome-headers);

if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-set-cookie( |$)+") {
set req.http.x-datadome-headers-pairs:x-set-cookie = urlencode(beresp.http.x-set-cookie);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-datadome-server( |$)+") {
set req.http.x-datadome-headers-pairs:x-datadome-server = urlencode(beresp.http.x-datadome-server);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-datadome( |$)+") {
set req.http.x-datadome-headers-pairs:x-datadome = urlencode(beresp.http.x-datadome);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+content-type( |$)+") {
set req.http.x-datadome-headers-pairs:content-type = urlencode(beresp.http.content-type);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+charset( |$)+") {
set req.http.x-datadome-headers-pairs:charset = urlencode(beresp.http.charset);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+cache-control( |$)+") {
set req.http.x-datadome-headers-pairs:cache-control = urlencode(beresp.http.cache-control);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+pragma( |$)+") {
set req.http.x-datadome-headers-pairs:pragma = urlencode(beresp.http.pragma);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+access-control-allow-credentials( |$)+") {
set req.http.x-datadome-headers-pairs:access-control-allow-credentials = urlencode(beresp.http.access-control-allow-credentials);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+access-control-expose-headers( |$)+") {
set req.http.x-datadome-headers-pairs:access-control-expose-headers = urlencode(beresp.http.access-control-expose-headers);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+access-control-allow-origin( |$)+") {
set req.http.x-datadome-headers-pairs:access-control-allow-origin = urlencode(beresp.http.access-control-allow-origin);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-datadome-cid( |$)+") {
set req.http.x-datadome-headers-pairs:x-datadome-cid = urlencode(beresp.http.x-datadome-cid);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-dd-b( |$)+") {
set req.http.x-datadome-headers-pairs:x-dd-b = urlencode(beresp.http.x-dd-b);
}
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-dd-type( |$)+") {
set req.http.x-datadome-headers-pairs:x-dd-type = urlencode(beresp.http.x-dd-type);
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-dd-type( |$)+") {
set req.http.x-dd-type = beresp.http.x-dd-type;
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botname( |$)+") {
set req.http.x-datadome-botname = beresp.http.x-datadome-botname;
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botfamily( |$)+") {
set req.http.x-datadome-botfamily = beresp.http.x-datadome-botfamily;
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-isbot( |$)+") {
set req.http.x-datadome-isbot = beresp.http.x-datadome-isbot;
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-captchapassed( |$)+") {
set req.http.x-datadome-captchapassed = beresp.http.x-datadome-captchapassed;
}
# don't forget about ApiServer's cookies
if (beresp.http.x-datadome-headers ~ "(?i)(^| )+set-cookie( |$)+") {
set req.http.x-datadome-headers-pairs:set-cookie = urlencode(beresp.http.set-cookie);
}

# Continue only if ApiServer returns expected blocked status
if (beresp.status != 403 && beresp.status != 401 && beresp.status != 301 && beresp.status != 302) {
unset beresp.http.x-datadome-headers;
unset beresp.http.x-datadome-request-headers;
restart;
}

# ok, it is banned request, cleanup it a bit
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-dd-type( |$)+") {
if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-dd-type( |$)+") {
unset beresp.http.x-dd-type;
}
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botname( |$)+") {
if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-botname( |$)+") {
unset beresp.http.x-datadome-botname;
}
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botfamily( |$)+") {
if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-botfamily( |$)+") {
unset beresp.http.x-datadome-botfamily;
}
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-isbot( |$)+") {
if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-isbot( |$)+") {
unset beresp.http.x-datadome-isbot;
}
}
if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-captchapassed( |$)+") {
if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-captchapassed( |$)+") {
unset beresp.http.x-datadome-captchapassed;
}
}
unset beresp.http.x-datadome-headers;
unset beresp.http.x-datadome-request-headers;
}

File

fastly_edge_modules/templates/datadome_integration_fetch.html.twig
View source 
  1. if (req.backend == datadome) {

  2. declare local var.status STRING;

  3. set var.status = beresp.status;

  4. # check that it is real ApiServer response

  5. if (var.status != beresp.http.x-datadomeresponse) {

  6. restart;

  7. }

  8. unset beresp.http.x-datadomeresponse;

  9. # copy datadome headers

  10. set req.http.x-datadome-headers-pairs:x-datadome-headers = urlencode(beresp.http.x-datadome-headers);

  11. 

  12. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-set-cookie( |$)+") {

  13. set req.http.x-datadome-headers-pairs:x-set-cookie = urlencode(beresp.http.x-set-cookie);

  14. }

  15. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-datadome-server( |$)+") {

  16. set req.http.x-datadome-headers-pairs:x-datadome-server = urlencode(beresp.http.x-datadome-server);

  17. }

  18. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-datadome( |$)+") {

  19. set req.http.x-datadome-headers-pairs:x-datadome = urlencode(beresp.http.x-datadome);

  20. }

  21. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+content-type( |$)+") {

  22. set req.http.x-datadome-headers-pairs:content-type = urlencode(beresp.http.content-type);

  23. }

  24. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+charset( |$)+") {

  25. set req.http.x-datadome-headers-pairs:charset = urlencode(beresp.http.charset);

  26. }

  27. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+cache-control( |$)+") {

  28. set req.http.x-datadome-headers-pairs:cache-control = urlencode(beresp.http.cache-control);

  29. }

  30. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+pragma( |$)+") {

  31. set req.http.x-datadome-headers-pairs:pragma = urlencode(beresp.http.pragma);

  32. }

  33. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+access-control-allow-credentials( |$)+") {

  34. set req.http.x-datadome-headers-pairs:access-control-allow-credentials = urlencode(beresp.http.access-control-allow-credentials);

  35. }

  36. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+access-control-expose-headers( |$)+") {

  37. set req.http.x-datadome-headers-pairs:access-control-expose-headers = urlencode(beresp.http.access-control-expose-headers);

  38. }

  39. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+access-control-allow-origin( |$)+") {

  40. set req.http.x-datadome-headers-pairs:access-control-allow-origin = urlencode(beresp.http.access-control-allow-origin);

  41. }

  42. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-datadome-cid( |$)+") {

  43. set req.http.x-datadome-headers-pairs:x-datadome-cid = urlencode(beresp.http.x-datadome-cid);

  44. }

  45. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-dd-b( |$)+") {

  46. set req.http.x-datadome-headers-pairs:x-dd-b = urlencode(beresp.http.x-dd-b);

  47. }

  48. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+x-dd-type( |$)+") {

  49. set req.http.x-datadome-headers-pairs:x-dd-type = urlencode(beresp.http.x-dd-type);

  50. }

  51. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-dd-type( |$)+") {

  52. set req.http.x-dd-type = beresp.http.x-dd-type;

  53. }

  54. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botname( |$)+") {

  55. set req.http.x-datadome-botname = beresp.http.x-datadome-botname;

  56. }

  57. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botfamily( |$)+") {

  58. set req.http.x-datadome-botfamily = beresp.http.x-datadome-botfamily;

  59. }

  60. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-isbot( |$)+") {

  61. set req.http.x-datadome-isbot = beresp.http.x-datadome-isbot;

  62. }

  63. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-captchapassed( |$)+") {

  64. set req.http.x-datadome-captchapassed = beresp.http.x-datadome-captchapassed;

  65. }

  66. # don't forget about ApiServer's cookies

  67. if (beresp.http.x-datadome-headers ~ "(?i)(^| )+set-cookie( |$)+") {

  68. set req.http.x-datadome-headers-pairs:set-cookie = urlencode(beresp.http.set-cookie);

  69. }

  70. 

  71. # Continue only if ApiServer returns expected blocked status

  72. if (beresp.status != 403 && beresp.status != 401 && beresp.status != 301 && beresp.status != 302) {

  73. unset beresp.http.x-datadome-headers;

  74. unset beresp.http.x-datadome-request-headers;

  75. restart;

  76. }

  77. 

  78. # ok, it is banned request, cleanup it a bit

  79. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-dd-type( |$)+") {

  80. if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-dd-type( |$)+") {

  81. unset beresp.http.x-dd-type;

  82. }

  83. }

  84. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botname( |$)+") {

  85. if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-botname( |$)+") {

  86. unset beresp.http.x-datadome-botname;

  87. }

  88. }

  89. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-botfamily( |$)+") {

  90. if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-botfamily( |$)+") {

  91. unset beresp.http.x-datadome-botfamily;

  92. }

  93. }

  94. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-isbot( |$)+") {

  95. if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-isbot( |$)+") {

  96. unset beresp.http.x-datadome-isbot;

  97. }

  98. }

  99. if (beresp.http.x-datadome-request-headers ~ "(?i)(^| )+x-datadome-captchapassed( |$)+") {

  100. if (beresp.http.x-datadome-headers !~ "(?i)(^| )+x-datadome-captchapassed( |$)+") {

  101. unset beresp.http.x-datadome-captchapassed;

  102. }

  103. }

  104. unset beresp.http.x-datadome-headers;

  105. unset beresp.http.x-datadome-request-headers;

  106. }