Skip to content

Block outbound HTTP(s) requests #646

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 19 commits into
base: main
Choose a base branch
from
Open

Block outbound HTTP(s) requests #646

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
48776d1
Add types for outbound blocking
timokoessler Jun 26, 2025
d05edaf
Prepare ServiceConfig and stats
timokoessler Jun 30, 2025
662bc44
Fix linting
timokoessler Jun 30, 2025
7c3beb4
Add blocking to Fetch, http and Undici
timokoessler Jun 30, 2025
b79cc2c
Extend test coverage
timokoessler Jun 30, 2025
094577a
Rename, fix tests
timokoessler Jun 30, 2025
f641243
Merge branch 'main' into block-outbound
timokoessler Sep 5, 2025
0313529
Merge branch 'main' into block-outbound
timokoessler Nov 6, 2025
19f00e9
Fix merge
timokoessler Nov 6, 2025
7a3d47c
Merge branch 'main' of github.com:AikidoSec/node-RASP into block-outb…
hansott Nov 13, 2025
bb887f4
Fix ESM tests (port as string vs number)
hansott Nov 14, 2025
83b2169
Merge branch 'main' of github.com:AikidoSec/node-RASP into block-outb…
hansott Nov 17, 2025
8a7fbc1
Merge branch 'main' of github.com:AikidoSec/node-RASP into block-outb…
hansott Nov 21, 2025
d02cb1f
Remove blockedHits
hansott Nov 21, 2025
4f8609d
Simplify InspectionResult and move domains to normal config
hansott Nov 21, 2025
45d0ced
Align message with expected test message
hansott Nov 21, 2025
2a4b71c
Fix tests
hansott Nov 24, 2025
075ab8e
Fix test
hansott Nov 24, 2025
0d9707c
Add end2end tests for blocking outbound connections
hansott Nov 24, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion end2end/server/src/handlers/updateConfig.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
const { updateAppConfig, getAppConfig } = require("../zen/config");
const { updateAppConfig } = require("../zen/config");

module.exports = function updateConfig(req, res) {
if (!req.app) {
throw new Error("App is missing");
Expand Down
2 changes: 2 additions & 0 deletions end2end/server/src/zen/config.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,8 @@ function generateConfig(app) {
blockedUserIds: [],
allowedIPAddresses: [],
receivedAnyStats: false,
blockNewOutgoingRequests: false,
domains: [],
};
}

Expand Down
207 changes: 207 additions & 0 deletions end2end/tests-new/hono-pg-esm-outbound.test.mjs
View file
Open in desktop
Copy link
Member

@bitterpanda63 bitterpanda63 Dec 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why is that directory called tests-new btw?

Copy link
Member Author

@timokoessler timokoessler Dec 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We use two separate test runners for the old and new e2e tests :). The reason was a bug preventing ESM tests using the old one and that we would like to switch.

Original file line number Diff line number Diff line change
@@ -0,0 +1,207 @@
import { spawn } from "child_process";
import { resolve } from "path";
import { test } from "node:test";
import { equal, match, fail } from "node:assert";
import { getRandomPort } from "./utils/get-port.mjs";
import { timeout } from "./utils/timeout.mjs";

const pathToAppDir = resolve(
import.meta.dirname,
"../../sample-apps/hono-pg-esm"
);
const testServerUrl = "http://localhost:5874";

const blockedUrl = "https://ssrf-redirects.testssandbox.com/";
const allowedUrl = "https://aikido.dev/";
const unknownUrl = "https://google.com/";

test("blockNewOutgoingRequests is false", async () => {
const port = await getRandomPort();

const response = await fetch(`${testServerUrl}/api/runtime/apps`, {
method: "POST",
});
const body = await response.json();
const token = body.token;

const config = await fetch(`${testServerUrl}/api/runtime/config`, {
method: "POST",
headers: {
"Content-Type": "application/json",
Authorization: token,
},
body: JSON.stringify({
allowedIPAddresses: ["1.2.3.4"],
blockNewOutgoingRequests: false,
domains: [
{ hostname: "ssrf-redirects.testssandbox.com", mode: "block" },
{ hostname: "aikido.dev", mode: "allow" },
// Otherwise we cannot communicate with the mock server
{ hostname: "localhost", mode: "allow" },
],
}),
});
equal(config.status, 200);

const server = spawn(
`node`,
["--require", "@aikidosec/firewall/instrument", "./app.js", port],
{
cwd: pathToAppDir,
env: {
...process.env,
AIKIDO_DEBUG: "true",
AIKIDO_BLOCK: "true",
AIKIDO_TOKEN: token,
AIKIDO_ENDPOINT: testServerUrl,
AIKIDO_REALTIME_ENDPOINT: testServerUrl,
},
}
);

server.on("error", (err) => {
fail(err);
});

let stderr = "";
server.stderr.on("data", (data) => {
stderr += data.toString();
});

try {
await timeout(2000);

// Blocks request to blocked domain
const blocked = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(blockedUrl)}`,
{ signal: AbortSignal.timeout(5000) }
);
equal(blocked.status, 500);
match(stderr, /Zen has blocked an outbound connection/);

// Allows request to allowed domain
const allowed = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(allowedUrl)}`,
{ signal: AbortSignal.timeout(5000) }
);
equal(allowed.status, 200);
equal((await allowed.json()).success, true);

// Allows request to unknown domain
const unknown = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(unknownUrl)}`,
{ signal: AbortSignal.timeout(5000) }
);
equal(unknown.status, 200);
equal((await unknown.json()).success, true);

// Allows blocked domain from bypass IP
stderr = "";
const bypass = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(blockedUrl)}`,
{
headers: { "X-Forwarded-For": "1.2.3.4" },
signal: AbortSignal.timeout(5000),
}
);
equal(bypass.status, 200);
equal((await bypass.json()).success, true);
} finally {
server.kill();
}
});

test("blockNewOutgoingRequests is true", async () => {
const port = await getRandomPort();

const response = await fetch(`${testServerUrl}/api/runtime/apps`, {
method: "POST",
});
const body = await response.json();
const token = body.token;

const config = await fetch(`${testServerUrl}/api/runtime/config`, {
method: "POST",
headers: {
"Content-Type": "application/json",
Authorization: token,
},
body: JSON.stringify({
allowedIPAddresses: ["1.2.3.4"],
blockNewOutgoingRequests: true,
domains: [
{ hostname: "ssrf-redirects.testssandbox.com", mode: "block" },
{ hostname: "aikido.dev", mode: "allow" },
],
}),
});
equal(config.status, 200);

const server = spawn(
`node`,
["--require", "@aikidosec/firewall/instrument", "./app.js", port],
{
cwd: pathToAppDir,
env: {
...process.env,
AIKIDO_DEBUG: "true",
AIKIDO_BLOCK: "true",
AIKIDO_TOKEN: token,
AIKIDO_ENDPOINT: testServerUrl,
AIKIDO_REALTIME_ENDPOINT: testServerUrl,
},
}
);

server.on("error", (err) => {
fail(err);
});

let stderr = "";
server.stderr.on("data", (data) => {
stderr += data.toString();
});

try {
await timeout(2000);

// Blocks request to blocked domain
const blocked = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(blockedUrl)}`,
{ signal: AbortSignal.timeout(5000) }
);
equal(blocked.status, 500);
match(stderr, /Zen has blocked an outbound connection/);

// Allows request to allowed domain
const allowed = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(allowedUrl)}`,
{ signal: AbortSignal.timeout(5000) }
);
equal(allowed.status, 200);
equal((await allowed.json()).success, true);

// Blocks request to unknown domain
stderr = "";
const unknown = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(unknownUrl)}`,
{ signal: AbortSignal.timeout(5000) }
);
equal(unknown.status, 500);
match(stderr, /Zen has blocked an outbound connection/);

// Allows unknown domain from bypass IP
stderr = "";
const bypass = await fetch(
`http://127.0.0.1:${port}/fetch?url=${encodeURIComponent(unknownUrl)}`,
{
headers: { "X-Forwarded-For": "1.2.3.4" },
signal: AbortSignal.timeout(5000),
}
);
equal(bypass.status, 200);
equal((await bypass.json()).success, true);
} finally {
server.kill();
}
});
Loading