Apache Changelog

DataDome Apache Module

2.53.0 (2023-01-10)

  • Add session by header feature

2.52.0 (2023-06-22)

  • Improve headers management

v2.51.0 (2023-01-26)

  • Collect Fetch Metadata headers (Sec-Fetch-*)

v2.50.1 (2022-11-21)

  • Fix typo in payload field name (XForwardedForIp)
  • Switched to semantic versioning

v2.50 (2022-10-19)

  • Add Sec-CH-* Headers

v2.49 (2022-03-04)

  • Switch to OPENSSL_DIR variable to force paths for OpenSSL includes and libraries

v2.48 (2022-02-07)

  • Support custom paths for OpenSSL includes and libraries
  • Fix backward compatibility with OpenSSL

v2.47 (2021-12-01)

  • Fixed logs on response parsing

v2.46 (2021-10-18)

  • Manage TLSv1.2 (HTTPS) with OpenSSL 1.1.1
  • Remove DomeTimeOut & TimeOut unused parameters

v2.45 (2021-01-12)

  • Restore default DomeStatus on.

v2.44 (2020-12-10)

  • Improved connection tracking
  • Improved debug logging
  • Deprecated unused DomeStatus value
  • Synced exclusion Regex with other modules

v2.43 (2020-09-30)

  • Improved tracking Keep-Alive connection at edge case

v2.42 (2019-01-30)

  • Fixed build on Gentoo Linux

v2.41 (2018-11-20)

  • Decreased DNS response TTL from 1 hour to 5 minutes
  • Switched to using requests' IP addresses. This allows to override the IP addresses by other modules, such as mod_remoteip for example

v2.40 (2018-05-10)

  • Introduced the ApiURI option to override the API Server's call URI
  • Added headers to the API Server's call: Content-Type, From, X-Real-IP, Via and True-Client-IP
  • Improved X-Forwarded-For handling

v2.39 (2017-11-30)

  • Fixed crash caused when the API Server's domain has got no A records

v2.38 (2017-08-07)

  • Disabled SSLv3 for the API Server's connection
  • Introduced support for 401 response code from the API Server

v2.37 (2017-07-20)

  • Fixed crash caused by using DomeStatus inside location directive
  • Fixed dynamic allocation of Regex inside the module's configuration

v2.36 (2017-05-18)

  • Fixed the wrong content type on blocked response when the configuration has a lot of rewrite rules
  • Closed the HTTPS connection properly

v2.35 (2017-04-24)

  • Fixed the regression with the API Server's Keep-Alive connection

v2.34 (2017-04-12)

  • Improved the handling when the module can't allocate the memory
  • Fixed typo in Makefile
  • Implemented a change to not return a partial body of API response to the client

v2.33 (2017-03-16)

  • Implemented support for X-DataDome-request-Headers

v2.32 (2017-02-21)

  • Implemented change to remove X-dd-type header in RESPONSE headers

v2.31 (2017-02-16)

  • Added X-dd-type header in REQUEST headers

v2.30 (2017-02-08)

  • Renamed configuration options to DomeName
  • Fixed an issue when the module's configuration is specified inside virtual host

v2.29 (2017-02-02)

  • Added support for DATA_DOME_DISABLE environment variable to temporary disable the module
  • Added functionality to allow specified Module directives at any place in the config

v2.28 (2016-12-09)

  • Added verification by X-DatadomeResponse header
  • Implemented change to send request's headers' names to the API Server
  • Implemented change to send the request's Connection, Pragma and Cache-Control header values
  • Fixed building by compiler without C99 mode

v2.27 (2016-11-25)

  • Fixed building on Apache 2.2
  • Reduced error and info logs
  • Fixed the timeout error code

v2.26 (2016-11-10)

  • Improved compatibility with HAProxy
  • Added DATA_DOME_STATUS and DATA_DOME_SPENT_TIME environment variables
  • Added 7xx status code to provide internal module status
  • Removed compilation warning
  • Improved timeout
  • Addressed the issue about picking-up random resolved address

v2.25 (2016-11-01)

  • Corrected spent time calculation
  • Implemented a more strict parse of the API server's response.
  • Implemented change to check socket status before sending anything

v2.24 (2016-10-18)

  • Synced exclusion Regex with other modules

v2.23 (2016-10-05)

  • Fixed memory leak caused when the API server closed the SSL connection

v2.22 (2016-10-01)

  • Implemented change to not initialize OpenSSL in the module, when it is expected that mod_ssl has loaded

v2.21 (2016-09-26)

  • Switched to using pre-reserved memory to create the API call body
  • Corrected error handling when memory can't be allocated
  • Fixed double free when API server isn't available
  • Fixed memory overflow when a value has a lot of symbols that are URL-encoded
  • Implemented change to properly truncate URL-encoded values

v2.20 (2016-09-21)

  • Decreased the maximum API call to 10kb

v2.19 (2016-09-13)

  • Added .mp4 and .otf to default exclusion Regex

v2.18 (2016-08-08)

  • Removed all code that can read request body
  • Added Regex exclusion

v2.17 (2016-08-01)

  • Implemented change to send a timestamp to the API server when the full request is ready
  • Implemented change to send Content-Length header as PostParamLen

v2.16 (2016-07-21)

  • Registered the module as APR_HOOK_REALLY_FIRST to process the request as soon as possible

v2.15 (2016-06-29)

  • Disabled sending Cookies and Body to API server by default
  • Added debug_params option
  • Implemented change to send Cookies length and Body length to API server
  • Implemented change to send Authorization length
  • Implemented change to send Method
  • Implemented change to send X-Requested-With
  • Implemented change to send Origin

v2.14 (2016-06-23)

  • Added URL encoding to API call parameters

v2.13 (2016-06-20)

  • Fixed crash caused by SSL reconnection to the API Server (double-free error)

v2.12 (2016-06-03)

  • Fixed param truncate logic

v2.11 (2016-05-24)

  • Fixed Post param size limit

v2.10 (2016-04-25)

  • Implemented change to not overwrite Set-Cookie header

v2.9 (2016-04-15)

  • Implemented change for the module to not generate ClientID
  • Implemented change to remove X-DataDome header with module version
  • Introduced Support for X-DataDome-headers from the API response

v2.8 (2016-04-09)

  • Implemented change to re-call the API server if a call had failed
  • Implemented setup DATA_DOME_IS_URI_REGEX_MATCHED env
  • Added X-DataDome header with module version

v2.7 (2016-03-31)

  • Implemented fix to not call the API server several times

v2.6 (2016-03-15)

  • Removed SSL_3 protocol as it is not supported by openssl anymore

v2.5 (2016-01-28)

  • Added fix to re-generate client ID if it shorter or longer than expected

v2.4 (2016-01-08)

  • Fixed truncating timestamp for API requests on 32-bit systems

v2.3 (2016-01-06)

  • Fixed build on OSX
  • Fixed build on old linux where clock_gettime required lrt
  • Fixed crash caused by X-Forwarder-For without port
  • Added Set-Cookie to error headers
  • Added DomePostParamLimit
  • Added generated client_id to the request's cookie header
  • Implemented fix to send to client API response for 301, 302 and 403
  • Implemented fix to send to client location from API response for 301 and 302
  • Implemented fix to not trim the timestamp on 32-bit systems

v2.1 (2015-12-02)

  • Implemented change for Regex to apply to URL only, and not to MIME anymore
  • Changed Regex to case insensitive

V2.0 (2015-11-30)

  • Implemented Cookie and session ID
  • Implemented change to extract more from Header: Accept, AcceptCharset, AcceptEncoding and AcceptLanguage