You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
39 lines
1.1 KiB
39 lines
1.1 KiB
// Copyright (c) André N. Klingsheim. See License.txt in the project root for license information.
|
|
|
|
using Microsoft.AspNet.Builder;
|
|
using Microsoft.AspNet.Http;
|
|
using NWebsec.Core.HttpHeaders;
|
|
using NWebsec.Core.HttpHeaders.Configuration;
|
|
|
|
namespace NWebsec.Middleware.Middleware
|
|
{
|
|
|
|
public class HpkpMiddleware : MiddlewareBase
|
|
{
|
|
private readonly IHpkpConfiguration _config;
|
|
private readonly HeaderResult _headerResult;
|
|
|
|
public HpkpMiddleware(RequestDelegate next, HpkpOptions options, bool reportOnly)
|
|
: base(next)
|
|
{
|
|
_config = options.Config;
|
|
|
|
var headerGenerator = new HeaderGenerator();
|
|
_headerResult = headerGenerator.CreateHpkpResult(_config, reportOnly);
|
|
}
|
|
|
|
internal override void PreInvokeNext(HttpContext context)
|
|
{
|
|
|
|
if (_config.HttpsOnly && !context.Request.IsHttps)
|
|
{
|
|
return;
|
|
}
|
|
|
|
if (_headerResult.Action == HeaderResult.ResponseAction.Set)
|
|
{
|
|
context.Response.Headers[_headerResult.Name] = _headerResult.Value;
|
|
}
|
|
}
|
|
}
|
|
}
|