Skip to content

Added support for \aikido\should_whitelist_request API + tests + docs#404

Merged
tudor-timcu merged 4 commits intomainfrom
feat/should-whitelist-request
Mar 23, 2026
Merged

Added support for \aikido\should_whitelist_request API + tests + docs#404
tudor-timcu merged 4 commits intomainfrom
feat/should-whitelist-request

Conversation

@tudor-timcu
Copy link
Copy Markdown
Collaborator

@tudor-timcu tudor-timcu commented Mar 23, 2026
edited by aikido-pr-checks bot
Loading

Summary by Aikido

Security Issues: 0 🔍 Quality Issues: 5 ✅ Resolved Issues: 2

🚀 New Features

  • Added should_whitelist_request API with tests and documentation

⚡ Enhancements

  • Implemented whitelist evaluation in request processor and Go handler
  • Extended Action/extension to support whitelisted actions and globals init

🔧 Refactors

  • Changed endpoint allowlist flag type to integer and updated context

More info

@tudor-timcu
Add should_whitelist_request function and related documentation
3248a73 
Introduced the `should_whitelist_request` function to determine if a request is whitelisted based on IP configuration. This includes checks for endpoint-level allowlists, global bypass lists, and global allowed IP lists. Added corresponding documentation detailing the function's behavior and properties. Updated related files to support this functionality, including new tests for various whitelisting scenarios.
@tudor-timcu tudor-timcu changed the title Added should_whitelist_request function and related documentation Added support for \aikido\should_whitelist_request API + tests + docs Mar 23, 2026
aikido-pr-checks[bot]
aikido-pr-checks bot reviewed Mar 23, 2026
View reviewed changes
aikido-pr-checks[bot]
aikido-pr-checks bot reviewed Mar 23, 2026
View reviewed changes
aikido-pr-checks[bot]
aikido-pr-checks bot reviewed Mar 23, 2026
View reviewed changes
@tudor-timcu
Initialize checkedWhitelistRequest in Aikido globals and PhpLifecycle…
e35971b 
… request initialization
@tudor-timcu
Update whitelisting logic and tests for IP allowlists
c97b628 
Modified the `should_whitelist_request` documentation to clarify that the request IP must be in the endpoint allowlist. Updated the request processing logic to use `IsEndpointIpWhitelisted` for checking IPs against the endpoint allowlist. Refactored the context to store the allowlist status as an integer. Enhanced tests to validate multiple IPs in the global allowlist and adjusted assertions accordingly.
aikido-pr-checks[bot]
aikido-pr-checks bot reviewed Mar 23, 2026
View reviewed changes
aikido-pr-checks[bot]
aikido-pr-checks bot reviewed Mar 23, 2026
View reviewed changes
@tudor-timcu
Clarify documentation for global allowed IP list in `should_whitelist…
25e1779 
…_request`

Updated the `should_whitelist_request` documentation to specify that the global allowed IP list may include geo-location allow lists. This enhances understanding of the conditions under which a request IP is considered whitelisted.
@tudor-timcu tudor-timcu merged commit f7ea514 into main Mar 23, 2026
243 checks passed
@tudor-timcu tudor-timcu deleted the feat/should-whitelist-request branch March 23, 2026 10:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@PopoviciMarian PopoviciMarian PopoviciMarian approved these changes

+1 more reviewer

@aikido-pr-checks aikido-pr-checks[bot] aikido-pr-checks[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@tudor-timcu @PopoviciMarian