Nginx Changelog
DataDome Nginx Module
2.49.0 (2024-12-05)
- Add
data_dome_auth_enable_referrer_restorationoption to enable the referrer restoration - Use the
X-Forwarded-Protoheader when available to define theProtocolfield in payloads sent to the Protection API - Use uppercase letters for hexadecimal values in payloads sent to the Protection API
- Make parsing case-insensitive for header names
2.48.0 (2024-10-24)
- Collect
JA4headers passed to the module for detection enhancement
2.47.0 (2024-09-23)
- Add support for collecting
JA3headers passed to the module for detection enhancement
2.46.1 (2024-06-21)
- Add
jsonandavifextensions to the default exclusion pattern used for static files
2.46.0 (2024-03-14)
- Collect
x-useridheader - Fix
Content-Typeheader truncation size - Fix
Sec-CH-UA-Mobileheader truncation size
2.45.0 (2023-03-07)
- Change default log level to WARN and add runtime selection to it
v2.44.0 (2023-01-25)
- Improve headers Management: Collect Fetch Metadata
v2.43.1 (2022-11-15)
- Updated payload field name (XForwardedForIp)
v2.43 (2022-10-24)
- Updated default regex exclusion
- Improved headers management
v2.42 (2022-07-01)
- Added support for nginx 1.23.0
v2.41 (2022-02-11)
- Added support for session by header
v2.40 (2021-10-14)
- Improved stability on nginx 1.13.10+ in rare cases
v2.39 (2020-12-02)
- Implemented fix to prevent worker process from shutting down for a long time
v2.38 (2020-08-05)
- Improved stability of our modules for Nginx versions 1.13.10 and later
v2.37 (2020-06-24)
- Improved stability of
dd_serveron the TTL for extremely small DNS
v2.36 (2019-03-19)
- Silenced -Wcast-function-type warnings
v2.35 (2018-11-20)
- Implemented change to decrease DNS response TTL from 1 hour to 5 minutes
v2.34 (2018-05-10)
- Included headers to APIServer's call: Content-Type, From, X-Real-IP, Via and True-Client-IP
- Improved X-Forwarded-For handling
v2.33 (2017-08-07)
- Introduced support for 401 response code from the API Server
v2.32 (2017-04-12)
- Introduced data_dome_auth_set
v2.31 (2017-03-24)
- Reduced traffic size between module and APIServer
v2.30 (2017-03-21)
- Added compatibility with Nginx for versions earlier than 1.5.8, 1.5.6 and 1.5.3
- Removed warnings for Nginx for versions earlier than 1.9.11
v2.29 (2017-03-16)
- Implemented support for X-DataDome-request-Headers
v2.28 (2017-02-08)
- Implemented change to not mark the API server's backend as inactive for 10 seconds in case of any error
v2.27 (2016-12-09)
- Added verification by X-DatadomeResponse header
- Implemented change to send request's headers' names to the API server
- Implemented change to send request's Connection, Pragma and Cache-Control header's value
v2.26 (2016-11-30)
- Implemented change for
data_dome_auth: now it supports disable processing request by setting 'off' up over variable
v2.25 (2016-11-25)
- Fixed possible segfault on large API server response
- Implemented change for data_dome_auth directive to accept variables
v2.24 (2016-11-04)
- Implemented version sync
v2.23 (2016-10-18)
- Fixed default exclusion Regex for match files like some.min.css
v2.22 (2016-09-26)
- Corrected truncate url encoded value
v2.21 (2016-09-21)
- Decreased the maximum API call to 10kb
v2.20 (2016-09-13)
- Added .mp4 and .otf to default exclusion Regex
v2.19 (2016-08-08)
- Removed all code that can read request body
- Added regex exclusion
v2.18 (2016-07-27)
- Implemented fix to send Content-Length header as PostParamLen
v2.17 (2016-06-29)
- Disabled sending cookies and body to API server by default
- Added debug_params option
- Implemented change to send cookies length and body length to API server
- Implemented change to send Authorization length
- Implemented change to send Method
- Implemented change to send X-Requested-With
- Implemented change to send Origin
v2.16 (2016-06-28)
- Added debug mode
v2.15 (2016-06-23)
- Added url encoding to API call parameters
v2.14 (2016-06-03)
- Fixed param truncate logic
v2.13 (2016-04-25)
- Implemented change to not overwrite Set-Cookie header.
v2.12 (2016-04-15)
- Implemented change for module to not generate ClientID
- Removed X-DataDome header with module version
- Added support for X-DataDome-headers from API response
v2.11 (2016-04-09)
- Implemented dynamic server based on https://github.com/GUI/nginx-upstream-dynamic-servers
- Implemented $data_dome_auth_is_uri_regex_matched variable
- Added X-DataDome header with module version
v2.10 (2016-04-07)
- Added support for dynamic module
v2.9 (2016-03-31)
- Implemented change to not call the API server several times
v2.8 (2016-03-30)
- Implemented change to finalize request after sending API server response
v2.7 (2016-03-29)
- Implemented change to not finalize HTTP request two times with different status
v2.6 (2016-01-28)
- Implemented change to re-generate client ID if it is shorter or longer than expected
v2.5 (2016-01-08)
- Fixed bug when Nginx doesn't send response to client when API server responded not 200 without a body
v2.4 (2016-01-08)
- Synchronized version with apache and varnish module
v2.3 (2016-01-06)
- Fixed build with IPv6
- Fixed build on GCC-4.8
- Fixed post_param_limit
- Implemented change to not send '\0' as end of one of the parameters to API Server call
- Implemented change to use IP address for client ID generation if X-Forwarder-For can't be parsed
- Added memzero for new headers and potential crash
- Fixed potential connection leaks
- Implemented fix to send to client API response for 301, 302 and 403
- Implemented fix to send to client location from API response for 301 and 302
v2.2 (2015-12-10)
- Fixed crash caused by X-Forwarder-For without port
- Implemented change to not send empty parameters anymore
v2.1 (2015-12-02)
- Implemented change for Regex to apply to URL only, and not to MIME anymore
V2.0 (2015-11-30)
- Implemented cookie and session ID
- Implemented change to extract more from Header: Accept, AcceptCharset, AcceptEncoding and AcceptLanguage
Updated 15 days ago