Previous Message Next Message
Forum List Message List New Topic Print View
Mike Gagnon
May 18, 2012 11:38AM
Hello,

I would like to add a new feature to the HttpAccessKeyModule (
http://wiki.nginx.org/HttpAccessKeyModule).

As currently implemented when the visitor omits the key then the module
yields a 403 page. I would like to change this behavior, such that when a
visitor omits a key, then the module yields a page that contains javascript
to automatically generate a key. This page however, must be dynamically
generated for the specific URI requested (SSI seems appropriate).

If you're curious, I am building this feature to implement a "client
puzzle" protocol to rate-limit DoS attacks targeting upstream servers.
http://en.wikipedia.org/wiki/Client_Puzzle_Protocol

It is not clear to me how to implement this feature.
The NGX_HTTP_ACCESS_PHASE seems to have a limited ability to affect the
processing of requests. I.e. it can only return a status code, and it
cannot redirect the request to a specific content handler. Is this correct?
Do I need to invent a new internal status code? Would that require
modifying the nginx core?

Thanks!
Mike Gagnon
_______________________________________________
nginx-devel mailing list
nginx-devel@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx-devel
Reply Quote
RSS
SubjectAuthorViewsPosted

Modifying HttpAccessKeyModule

Mike Gagnon729May 18, 2012 11:38AM

Re: Modifying HttpAccessKeyModule

Oleksandr V. Typlyns'kyi155May 18, 2012 07:00PM

Re: Modifying HttpAccessKeyModule

Mike Gagnon222May 18, 2012 08:48PM



Sorry, you do not have permission to post/reply in this forum.

Online Users

Guests: 68
Record Number of Users: 5 on May 17, 2013
Record Number of Guests: 138 on May 16, 2013
Powered by nginx    Powered by FreeBSD    PHP Powered    Powered by Percona     ipv6 ready