RuleBasedFilterMiddleware 1.0.0

.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher. 
dotnet add package RuleBasedFilterMiddleware --version 1.0.0
                    


                    

                
NuGet\Install-Package RuleBasedFilterMiddleware -Version 1.0.0
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="RuleBasedFilterMiddleware" Version="1.0.0" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="RuleBasedFilterMiddleware" Version="1.0.0" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="RuleBasedFilterMiddleware" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add RuleBasedFilterMiddleware --version 1.0.0
                    


                    

                
#r "nuget: RuleBasedFilterMiddleware, 1.0.0"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package RuleBasedFilterMiddleware@1.0.0
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=RuleBasedFilterMiddleware&version=1.0.0
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=RuleBasedFilterMiddleware&version=1.0.0
                    


                            Install as a Cake Tool

Rule-Based Filter Middleware

Rule-Based Filter Middleware is an ASP.NET Core middleware library that provides configurable request filtering and validation through rule-based policies. It enables you to protect your web APIs from abuse, scraping, and various attack patterns by defining rules in YAML configuration files.

Wiki

https://deepwiki.com/lexxamcode/RuleBasedFilterMiddleware

Features

  • Rule-based request filtering: Configure rules to allow or deny requests based on endpoints, HTTP methods, source IPs, and parameter values
  • Sequence analysis: Detect patterns in request sequences to identify systematic data scraping or abuse
  • Configurable via YAML: Easy configuration through human-readable YAML files
  • Request storage & history analysis: Store and analyze request history to detect suspicious patterns
  • Extensible architecture: Create custom sequence analyzers to detect specific patterns

Installation

Add the Rule-Based Filter Middleware to your ASP.NET Core project using NuGet:

dotnet add package RuleBasedFilterMiddleware

Getting Started

  1. Add the Rule-Based Filter services to your application
// In Program.cs or Startup.cs  
var options = new RuleBasedRequestFilterOptions  
{  
    EnableRequestSequenceValidation = true,  
    ConfigurationFileName = "rulesConf.yml" // Default configuration file name  
};  
  
builder.Services  
    .AddRuleBasedRequestFilterServices(options)  
    .UseRequestStorage();
  1. Add the middleware to your request pipeline
// In Program.cs or Startup.cs Configure method  
app.UseRuleBasedFilter();
  1. Create a rules configuration file

Create a rulesConf.yml file in the root directory of your project with your rules. Here's an example:

rules:  
  - name: bulk-download-defence  
    method: get  
    endpoint: "/api/data"  
    access-policy: allow  
    argument-rules:  
      - name: z-restrict  
        type: default  
        argument-name: z  
        argument-type: int  
        argument-should-be: "> 0"  
    sequence-analyses:  
      - analysis-type: NonRandomSequenceAnalyzer  
        by-arguments:  
        - name: x  
          type: int  
        - name: y  
          type: int

Creating Custom Sequence Analyzers

You can extend the functionality by creating custom sequence analyzers:

  1. Create a class that implements IRequestSequenceAnalyzer
public class CustomSequenceAnalyzer : IRequestSequenceAnalyzer  
{  
    private readonly IRequestStorage _requestStorage;  
    private readonly RuleBasedRequestFilterOptions _options;  
  
    public CustomSequenceAnalyzer(IRequestStorage requestStorage, RuleBasedRequestFilterOptions options)  
    {  
        _requestStorage = requestStorage;  
        _options = options;  
    }  
  
    public async Task<bool> DidAnalysisSucceed(string userIp, List<ParameterSequenceAnalysis> parameterRules)  
    {  
        // Implement your custom analysis logic here  
        // Return true if the sequence is suspicious, false otherwise  
    }  
}
  1. Register your custom analyzer
builder.Services.AddSequenceAnalyzer<CustomSequenceAnalyzer>();
  1. Reference your analyzer in the rules configuration
sequence-analyses:  
  - analysis-type: CustomSequenceAnalyzer  
    by-arguments:  
    - name: parameter1  
      type: int  
    - name: parameter2  
      type: string

Rule Configuration

Rules are defined in YAML format and support the following structure:

  • name: Unique identifier for the rule
  • method: HTTP method (get, post, etc.)
  • endpoint: URL path to match
  • access-policy: Either "allow" or "deny"
  • source-ip (optional): Source IP to match
  • argument-rules (optional): List of parameter validation rules
  • sequence-analyses (optional): List of sequence analysis configurations

Argument Rules

Each argument rule contains:

  • name: Identifier for the rule
  • type: Rule type (default, longitude, latitude, etc.)
  • argument-name: Name of the parameter to validate
  • argument-type: Data type (int, double, string, etc.)
  • argument-should-be: Condition expression (e.g., "> 0", "== 0", "between -10 54")

Sequence Analyses

Each sequence analysis configuration contains:

  • analysis-type: Name of the sequence analyzer class
  • by-arguments: List of parameters to track in the sequence

Sample Applications

The repository includes sample applications demonstrating how to use the middleware:

  • TestTileApi: Shows how to implement the middleware in a tile server API
  • TestWebApplication: Demonstrates basic rule configuration and usage

Notes

The Rule-Based Filter Middleware is designed to protect APIs against various types of abuse patterns, including systematic data scraping, parameter manipulation, and brute force attacks. The sequence analysis feature is particularly useful for detecting patterns that aren't evident in individual requests but become apparent when analyzing request sequences.

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
1.0.0 206 5/4/2025