Ballerina library

cloudmersive.security

Module cloudmersive.security

OverviewPrerequisitesQuickstart

API

Client

Definitions

ApiKeysConfig
ClientHttp1Settings
ConnectionConfig
IPThreatDetectionResponse
ProxyConfig
StringAutomaticThreatDetection
StringInsecureDeserializationJsonDetection
StringSqlInjectionDetectionResult
StringXssProtectionResult
StringXxeDetectionResult
ThreatDetectionBotCheckResponse
ThreatDetectionTorNodeResponse
UrlSsrfThreatDetectionRequestFull
UrlSsrfThreatDetectionResponseFull

ballerinax/cloudmersive.security Ballerina library

1.5.1

Overview

This is a generated connector from Cloudmersive OpenAPI specification.

The Cloudmersive Security APIs help you detect and block security threats.

Prerequisites

  • Create a Cloudmersive account
  • Obtain tokens
    • Use this guide to obtain the API key related to your account.

Quickstart

To use the Cloudmersive Security connector in your Ballerina application, update the .bal file as follows:

Step 1 - Import connector

First, import the ballerinax/cloudmersive.security module into the Ballerina project.

Copy
import ballerinax/cloudmersive.security;

Step 2 - Create a new connector instance

You can now make the connection configuration using the access token.

Copy
security:ApiKeysConfig config = {
    apikey : "<your apiKey>"
};

security:Client baseClient = check new Client(clientConfig);

Step 3 - Invoke connector operation

  1. Scan the query for SQL Injection
Copy
string query = "SELECT * FROM Users WHERE UserId = 105 OR 1=1;";
security:StringSqlInjectionDetectionResult|error bEvent = baseClient->contentThreatDetectionCheckSqlInjectionString(query);

if (bEvent is security:StringSqlInjectionDetectionResult) {
    log:printInfo("Threat Report: " + bEvent.toString());
} else {
    test:assertFail(msg = bEvent.toString());
}
  1. Use bal run command to compile and run the Ballerina program

Clients

cloudmersive.security: Client

Isolated

This is a generated connector from Cloudmersive OpenAPI specification. The Cloudmersive Security APIs help you detect and block security threats.

Constructor

Gets invoked to initialize the connector. The connector initialization requires setting the API credentials. Create a Cloudmersive account and obtain tokens following this guide.

init (ApiKeysConfig apiKeyConfig, ConnectionConfig config, string serviceUrl)
  • config ConnectionConfig {}The configurations to be used when initializing the connector
  • serviceUrl string "https://testapi.cloudmersive.com/"URL of the target service

contentThreatDetectionAutomaticThreatDetectionString

Isolated FunctionRemote Function
function contentThreatDetectionAutomaticThreatDetectionString(string payload) returns StringAutomaticThreatDetection|error

Automatically detect threats in an input string

Parameters
  • payload stringUser-facing text input.
Return Type

contentThreatDetectionDetectInsecureDeserializationJsonString

Isolated FunctionRemote Function
function contentThreatDetectionDetectInsecureDeserializationJsonString(string payload) returns StringInsecureDeserializationJsonDetection|error

Detect Insecure Deserialization JSON (JID) attacks in a string

Parameters
  • payload stringUser-facing text input.
Return Type

contentThreatDetectionCheckSqlInjectionString

Isolated FunctionRemote Function
function contentThreatDetectionCheckSqlInjectionString(string payload) returns StringSqlInjectionDetectionResult|error

Check text input for SQL Injection (SQLI) attacks

Parameters
  • payload stringUser-facing text input.
Return Type

contentThreatDetectionProtectXss

Isolated FunctionRemote Function
function contentThreatDetectionProtectXss(string payload) returns StringXssProtectionResult|error

Protect text input from Cross-Site-Scripting (XSS) attacks through normalization

Parameters
  • payload stringUser-facing text input.
Return Type

contentThreatDetectionCheckXxe

Isolated FunctionRemote Function
function contentThreatDetectionCheckXxe(string payload) returns StringXxeDetectionResult|error

Protect text input from XML External Entity (XXE) attacks

Parameters
  • payload stringUser-facing text input.
Return Type

networkThreatDetectionDetectSsrfUrl

Isolated FunctionRemote Function
function networkThreatDetectionDetectSsrfUrl(UrlSsrfThreatDetectionRequestFull payload) returns UrlSsrfThreatDetectionResponseFull|error

Check a URL for Server-side Request Forgery (SSRF) threats

Parameters
Return Type

networkThreatDetectionIsThreat

Isolated FunctionRemote Function
function networkThreatDetectionIsThreat(string payload) returns IPThreatDetectionResponse|error

Check if IP address is a known threat

Parameters
  • payload stringIP address to check, e.g. "55.55.55.55". The input is a string so be sure to enclose it in double-quotes.
Return Type

networkThreatDetectionIsBot

Isolated FunctionRemote Function
function networkThreatDetectionIsBot(string payload) returns ThreatDetectionBotCheckResponse|error

Check if IP address is a Bot client threat

Parameters
  • payload stringIP address to check, e.g. "55.55.55.55". The input is a string so be sure to enclose it in double-quotes.
Return Type

networkThreatDetectionIsTorNode

Isolated FunctionRemote Function
function networkThreatDetectionIsTorNode(string payload) returns ThreatDetectionTorNodeResponse|error

Check if IP address is a Tor node server

Parameters
  • payload stringIP address to check, e.g. "55.55.55.55". The input is a string so be sure to enclose it in double-quotes.
Return Type

Records

cloudmersive.security: ApiKeysConfig

Closed record

Provides API key configurations needed when communicating with a remote HTTP endpoint.

Fields
  • apikey string - Represents API Key Apikey

cloudmersive.security: ClientHttp1Settings

Closed record

Provides settings related to HTTP/1.x protocol.

Fields
  • keepAlive KeepAlive(default http:KEEPALIVE_AUTO) - Specifies whether to reuse a connection for multiple requests
  • chunking Chunking(default http:CHUNKING_AUTO) - The chunking behaviour of the request

cloudmersive.security: ConnectionConfig

Closed record

Provides a set of configurations for controlling the behaviours when communicating with a remote HTTP endpoint.

Fields
  • httpVersion HttpVersion(default http:HTTP_2_0) - The HTTP version understood by the client
  • timeout decimal(default 60) - The maximum time to wait (in seconds) for a response before closing the connection
  • forwarded string(default "disable") - The choice of setting forwarded/x-forwarded header
  • cache CacheConfig? - HTTP caching related configurations
  • compression Compression(default http:COMPRESSION_AUTO) - Specifies the way of handling compression (accept-encoding) header
  • circuitBreaker CircuitBreakerConfig? - Configurations associated with the behaviour of the Circuit Breaker
  • retryConfig RetryConfig? - Configurations associated with retrying
  • validation boolean(default true) - Enables the inbound payload validation functionality which provided by the constraint package. Enabled by default

cloudmersive.security: IPThreatDetectionResponse

Result of performing a IP threat check on an IP address

Fields
  • IsThreat boolean? - True if the input IP address is a threat, false otherwise
  • ThreatType string? - Specifies the type of IP threat; possible values include Blocklist, Botnet, WebBot

cloudmersive.security: ProxyConfig

Closed record

Proxy server configurations to be used with the HTTP client endpoint.

Fields
  • host string(default "") - Host name of the proxy server
  • port int(default 0) - Proxy server port
  • userName string(default "") - Proxy server username
  • password string(default "") - Proxy server password

cloudmersive.security: StringAutomaticThreatDetection

Result of performing an Insecure Deserialization JSON protection operation

Fields
  • Successful boolean? - True if the operation was successful, false otherwise
  • ContainedJsonInsecureDeserializationAttack boolean? - True if the input contained Insecure Deserialization JSON, false otherwise
  • ContainedXssThreat boolean? - True if the input contained XSS attack, false otherwise
  • ContainedXxeThreat boolean? - True if the input contained XXE attack, false otherwise
  • ContainedSqlInjectionThreat boolean? - True if the input contained SQL Injection attack, false otherwise
  • ContainedSsrfThreat boolean? - True if the input contained an Server-Side Request Forgery (SSRF) URL attack, false otherwise
  • IsXML boolean? - True if the input string is XML, false otherwise
  • IsJSON boolean? - True if the input string is JSON, false otherwise
  • IsURL boolean? - True if the input string is a URL, false otherwise
  • OriginalInput string? - Original input string

cloudmersive.security: StringInsecureDeserializationJsonDetection

Result of performing an Insecure Deserialization JSON protection operation

Fields
  • Successful boolean? - True if the operation was successful, false otherwise
  • ContainedJsonInsecureDeserializationAttack boolean? - True if the input contained Insecure Deserialization JSON, false otherwise
  • OriginalInput string? - Original input string

cloudmersive.security: StringSqlInjectionDetectionResult

Result of performing an SQL Injection protection operation

Fields
  • Successful boolean? - True if the operation was successful, false otherwise
  • ContainedSqlInjectionAttack boolean? - True if the input contained SQL Injection attacks, false otherwise
  • OriginalInput string? - Original input string

cloudmersive.security: StringXssProtectionResult

Result of performing an XSS protection operation

Fields
  • Successful boolean? - True if the operation was successful, false otherwise
  • ContainedXss boolean? - True if the input contained XSS scripting, false otherwise
  • OriginalInput string? - Original input string
  • NormalizedResult string? - Normalized string result, with XSS removed

cloudmersive.security: StringXxeDetectionResult

Result of performing an XXE threat detection operation

Fields
  • Successful boolean? - True if the operation was successful, false otherwise
  • ContainedXxe boolean? - True if the input contained XXE threats, false otherwise

cloudmersive.security: ThreatDetectionBotCheckResponse

Result of performing a Bot check on an IP address

Fields
  • IsBot boolean? - True if the input IP address is a Bot or Robot, false otherwise

cloudmersive.security: ThreatDetectionTorNodeResponse

Result of performing a Tor node check on an IP address

Fields
  • IsTorNode boolean? - True if the input IP address is a Tor exit node, false otherwise

cloudmersive.security: UrlSsrfThreatDetectionRequestFull

Request to determine if a URL is an SSRF threat check

Fields
  • BlockedDomains string[]? - Top level domains that you do not want to allow access to, e.g. mydomain.com - will block all subdomains as well

cloudmersive.security: UrlSsrfThreatDetectionResponseFull

Result of checking a URL for SSRF threats

Fields
  • CleanURL boolean? - True if the URL is clean, false if it is at risk of containing an SSRF threat or attack
  • ThreatLevel string? - Threat level of the URL; possible values are High, Medium, Low and None

Import

import ballerinax/cloudmersive.security;Copy

Metadata

Released date: 12 months ago

Version: 1.5.1

License: Apache-2.0

Compatibility

Platform: any

Ballerina version: 2201.4.1

GraalVM compatible: Yes

Pull count

Total: 0

Current verison: 0

Weekly downloads

Source repository

Keywords

IT Operations/Security & Identity Tools

Cost/Freemium

Contributors

Other versions

1.5.1

1.5.01.4.01.2.01.1.0
See more...

Dependencies

ballerina/url/2.2.3ballerina/http/2.6.1

Terms of service

Privacy policy

Cookie policy

Delete policy

© 2024 WSO2 LLC