lusca: support new csrf options: blacklist and whitelist for 1.6 (#36024)

2026-02-06 10:56:53 +00:00 · 2019-06-13 14:43:51 +09:00 · 2019-06-13 14:43:51 +09:00 · b3cf16f4e0
commit b3cf16f4e0
parent e584cee6c9
2 changed files with 25 additions and 7 deletions
--- a/types/lusca/index.d.ts
+++ b/types/lusca/index.d.ts
@ -1,6 +1,6 @@
-// Type definitions for lusca 1.5
+// Type definitions for lusca 1.6
 // Project: https://github.com/krakenjs/lusca#readme
-// Definitions by: Corbin Crutchley <https://github.com/crutchcorn>
+// Definitions by: Corbin Crutchley <https://github.com/crutchcorn>, Naoto Yokoyama <https://github.com/builtinnya>
 // Definitions: https://github.com/DefinitelyTyped/DefinitelyTyped
 // TypeScript Version: 2.2

@ -37,12 +37,15 @@ declare namespace lusca {
        preload?: boolean;
    }

-    type csrfOptions = csrfOptionsAngular | csrfOptionsNonAngular;
+    type csrfOptions = csrfOptionsBase & csrfOptionsAngularOrNonAngular & csrfOptionsBlacklistOrWhitelist;

-    interface csrfOptionsAngular  {
+    interface csrfOptionsBase {
        key?: string;
        secret?: string;
        impl?: () => any;
+    }
+
+    interface csrfOptionsAngular {
        cookie?: string | {
            options?: object;
        };
@ -50,9 +53,6 @@ declare namespace lusca {
    }

    interface csrfOptionsNonAngular {
-        key?: string;
-        secret?: string;
-        impl?: () => any;
        cookie?: string | {
            name: string;
            options?: object;
@ -60,6 +60,20 @@ declare namespace lusca {
        angular?: false;
    }

+    type csrfOptionsAngularOrNonAngular = csrfOptionsAngular | csrfOptionsNonAngular;
+
+    interface csrfOptionsBlacklist {
+        blacklist?: string[];
+        whitelist?: never;
+    }
+
+    interface csrfOptionsWhitelist {
+        blacklist?: never;
+        whitelist?: string[];
+    }
+
+    type csrfOptionsBlacklistOrWhitelist = csrfOptionsBlacklist | csrfOptionsWhitelist;
+
    interface xssProtectionOptions {
        enabled?: boolean;
        mode?: string;
--- a/types/lusca/lusca-tests.ts
+++ b/types/lusca/lusca-tests.ts
@ -15,6 +15,10 @@ app.use(lusca({
 }));

 app.use(lusca.csrf());
+app.use(lusca.csrf({cookie: {name: 'csrf'}}));
+app.use(lusca.csrf({cookie: 'csrf', angular: true}));
+app.use(lusca.csrf({blacklist: ['/blacklist']}));
+app.use(lusca.csrf({whitelist: ['/whitelist']}));
 app.use(lusca.csp({policy: [{ "img-src": "'self' http:" }, "block-all-mixed-content"], reportOnly: false}));
 app.use(lusca.xframe('SAMEORIGIN'));
 app.use(lusca.p3p('ABCDEF'));