Skip to content
/ api-security-gateway Public

A security gateway for APIs with rate limiting, IP whitelisting, and injection prevention.

License

View license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

garethslinn/api-security-gateway

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
src
src
 
 
test
test
 
 
.babelrc
.babelrc
 
 
.gitignore
.gitignore
 
 
.npmignore
.npmignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
api-security-gateway.png
api-security-gateway.png
 
 
package.json
package.json
 
 

Repository files navigation

api-security-gateway

API Security Gateway

A security gateway for APIs with features such as rate limiting, IP whitelisting, and injection prevention. This library helps you secure your APIs by controlling access and preventing common attack vectors.

Features

  • Rate Limiting: Control the number of requests a user can make within a specified timeframe.
  • IP Whitelisting/Blacklisting: Allow or deny requests based on IP addresses.
  • Injection Prevention: Sanitize inputs to prevent SQL injection, XSS, and other injection attacks.

Installation

You can install the library using npm:

npm install api-security-gateway


A security gateway for APIs with features such as rate limiting, IP whitelisting, and injection prevention. This library helps you secure your APIs by controlling access and preventing common attack vectors.

## Features

- **Rate Limiting**: Control the number of requests a user can make within a specified timeframe.
- **IP Whitelisting/Blacklisting**: Allow or deny requests based on IP addresses.
- **Injection Prevention**: Sanitize inputs to prevent SQL injection, XSS, and other injection attacks.

## Installation

```bash
git clone https://github.com/yourusername/api-security-gateway.git
cd api-security-gateway
npm install

Using with Express

Here's an example of how to use the api-security-gateway library in an Express application:

const express = require("express");
const apiSecurityGateway = require("api-security-gateway");

const app = express();
app.use(express.json());

const securityOptions = {
  rateLimit: {
    maxRequests: 100,
    windowMs: 15 * 60 * 1000, // 15 minutes
  },
  ipFilter: {
    whitelist: ["127.0.0.1"],
    blacklist: ["192.168.1.1"],
  },
};

const securityGateway = apiSecurityGateway(securityOptions);

app.use((req, res, next) => {
  const requestInfo = {
    ip: req.ip,
    body: req.body,
    query: req.query,
    params: req.params,
  };

  const result = securityGateway(requestInfo);
  if (result.status === 200) {
    next();
  } else {
    res.status(result.status).json({ message: result.message });
  }
});

app.get("/secure-endpoint", (req, res) => {
  res.send("This is a secure endpoint");
});

app.listen(3000, () => {
  console.log("Server running on port 3000");
});

License

This project is licensed under the MIT License - see the LICENSE file for details.

About

A security gateway for APIs with rate limiting, IP whitelisting, and injection prevention.

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages