Nginx Changelog

DataDome Nginx Module

2.46.1 (2024-06-21)

  • Add json and avif extensions to the default exclusion pattern used for static files

2.46.0 (2024-03-14)

  • Collect x-userid header
  • Fix Content-Type header truncation size
  • Fix Sec-CH-UA-Mobile header truncation size

2.45.0 (2023-03-07)

  • Change default log level to WARN and add runtime selection to it

v2.44.0 (2023-01-25)

  • Improve headers Management: Collect Fetch Metadata

v2.43.1 (2022-11-15)

  • Updated payload field name (XForwardedForIp)

v2.43 (2022-10-24)

  • Updated default regex exclusion
  • Improved headers management

v2.42 (2022-07-01)

  • Added support for nginx 1.23.0

v2.41 (2022-02-11)

  • Added support for session by header

v2.40 (2021-10-14)

  • Improved stability on nginx 1.13.10+ in rare cases

v2.39 (2020-12-02)

  • Implemented fix to prevent worker process from shutting down for a long time

v2.38 (2020-08-05)

  • Improved stability of our modules for Nginx versions 1.13.10 and later

v2.37 (2020-06-24)

  • Improved stability of dd_server on the TTL for extremely small DNS

v2.36 (2019-03-19)

  • Silenced -Wcast-function-type warnings

v2.35 (2018-11-20)

  • Implemented change to decrease DNS response TTL from 1 hour to 5 minutes

v2.34 (2018-05-10)

  • Included headers to APIServer's call: Content-Type, From, X-Real-IP, Via and True-Client-IP
  • Improved X-Forwarded-For handling

v2.33 (2017-08-07)

  • Introduced support for 401 response code from the API Server

v2.32 (2017-04-12)

  • Introduced data_dome_auth_set

v2.31 (2017-03-24)

  • Reduced traffic size between module and APIServer

v2.30 (2017-03-21)

  • Added compatibility with Nginx for versions earlier than 1.5.8, 1.5.6 and 1.5.3
  • Removed warnings for Nginx for versions earlier than 1.9.11

v2.29 (2017-03-16)

  • Implemented support for X-DataDome-request-Headers

v2.28 (2017-02-08)

  • Implemented change to not mark the API server's backend as inactive for 10 seconds in case of any error

v2.27 (2016-12-09)

  • Added verification by X-DatadomeResponse header
  • Implemented change to send request's headers' names to the API server
  • Implemented change to send request's Connection, Pragma and Cache-Control header's value

v2.26 (2016-11-30)

  • Implemented change for data_dome_auth: now it supports disable processing request by setting 'off' up over variable

v2.25 (2016-11-25)

  • Fixed possible segfault on large API server response
  • Implemented change for data_dome_auth directive to accept variables

v2.24 (2016-11-04)

  • Implemented version sync

v2.23 (2016-10-18)

  • Fixed default exclusion Regex for match files like some.min.css

v2.22 (2016-09-26)

  • Corrected truncate url encoded value

v2.21 (2016-09-21)

  • Decreased the maximum API call to 10kb

v2.20 (2016-09-13)

  • Added .mp4 and .otf to default exclusion Regex

v2.19 (2016-08-08)

  • Removed all code that can read request body
  • Added regex exclusion

v2.18 (2016-07-27)

  • Implemented fix to send Content-Length header as PostParamLen

v2.17 (2016-06-29)

  • Disabled sending cookies and body to API server by default
  • Added debug_params option
  • Implemented change to send cookies length and body length to API server
  • Implemented change to send Authorization length
  • Implemented change to send Method
  • Implemented change to send X-Requested-With
  • Implemented change to send Origin

v2.16 (2016-06-28)

  • Added debug mode

v2.15 (2016-06-23)

  • Added url encoding to API call parameters

v2.14 (2016-06-03)

  • Fixed param truncate logic

v2.13 (2016-04-25)

  • Implemented change to not overwrite Set-Cookie header.

v2.12 (2016-04-15)

  • Implemented change for module to not generate ClientID
  • Removed X-DataDome header with module version
  • Added support for X-DataDome-headers from API response

v2.11 (2016-04-09)

v2.10 (2016-04-07)

  • Added support for dynamic module

v2.9 (2016-03-31)

  • Implemented change to not call the API server several times

v2.8 (2016-03-30)

  • Implemented change to finalize request after sending API server response

v2.7 (2016-03-29)

  • Implemented change to not finalize HTTP request two times with different status

v2.6 (2016-01-28)

  • Implemented change to re-generate client ID if it is shorter or longer than expected

v2.5 (2016-01-08)

  • Fixed bug when Nginx doesn't send response to client when API server responded not 200 without a body

v2.4 (2016-01-08)

  • Synchronized version with apache and varnish module

v2.3 (2016-01-06)

  • Fixed build with IPv6
  • Fixed build on GCC-4.8
  • Fixed post_param_limit
  • Implemented change to not send '\0' as end of one of the parameters to API Server call
  • Implemented change to use IP address for client ID generation if X-Forwarder-For can't be parsed
  • Added memzero for new headers and potential crash
  • Fixed potential connection leaks
  • Implemented fix to send to client API response for 301, 302 and 403
  • Implemented fix to send to client location from API response for 301 and 302

v2.2 (2015-12-10)

  • Fixed crash caused by X-Forwarder-For without port
  • Implemented change to not send empty parameters anymore

v2.1 (2015-12-02)

  • Implemented change for Regex to apply to URL only, and not to MIME anymore

V2.0 (2015-11-30)

  • Implemented cookie and session ID
  • Implemented change to extract more from Header: Accept, AcceptCharset, AcceptEncoding and AcceptLanguage