[Update] 자동 오탐 검증을 위한 라우터 추가

2026-06-04 06:31:51 +09:00 · 2025-06-26 15:20:30 +09:00 · 2025-06-26 15:20:30 +09:00 · 3c5db3c1fd
commit 3c5db3c1fd
parent 53db0fb14e
5 changed files with 188 additions and 23 deletions
--- a/addon/init.py
+++ b/addon/init.py
@ -9,6 +9,10 @@ from access_token import AccessTokenScanner
 from addon.google_login_hint import GoogleLoginHint
 import os
 from dotenv import load_dotenv
+from lib.false_true_varifing_task import FalseTrueVarifingTask
+
+# Initialize the singleton task manager
+false_true_varifing_task = FalseTrueVarifingTask()

 load_dotenv(override=True)

@ -21,6 +25,10 @@ class PKCEAddon:
            f"[DEBUG] Processing request: {flow.request.method} {flow.request.pretty_url}"
        )
        try:
+            # 오탐 검사하고 있을때는 검증하지 않음
+            if false_true_varifing_task.is_verifing_false_true():
+                return
+                     
            await self.checker.test(flow)
        except Exception as e:
            print(f"[ERROR] Addon failed: {e}")
@ -33,6 +41,9 @@ class CsrfAddon:

    async def response(self, flow: http.HTTPFlow):
        try:
+            # 오탐 검사하고 있을때는 검증하지 않음
+            if false_true_varifing_task.is_verifing_false_true():
+                return
            await self.checker.response(flow)
        except Exception as e:
            print(f"[ERROR] CSRF Addon failed: {e}")
@ -42,21 +53,18 @@ class CsrfAddon:
 class ScopeAddon:
    def __init__(self):
        self.checker = ScopeDetection()
-        self._flow_map = {}  # 요청 정보를 저장
-
-    async def request(self, flow: http.HTTPFlow):
-        self._flow_map[flow.id] = {
-            "method": flow.request.method,
-            "url": flow.request.pretty_url,
-            "query": flow.request.query,
-        }

    async def response(self, flow: http.HTTPFlow):
        try:
+            # 오탐 검사하고 있을때는 검증하지 않음
+            if false_true_varifing_task.is_verifing_false_true():
+                return
            await self.checker.test(flow)
        except Exception as e:
            print(f"[ERROR] ScopeDetection failed: {e}")

+
+
 class NonceAddon:
    def __init__(self):
        self.checker = NonceChecker()
@ -70,12 +78,17 @@ class NonceAddon:
            print(f"[ERROR] NonceAddon failed: {e}")
            pass

+
+
 class AccessTokenAddon:
    def __init__(self):
        self.checker = AccessTokenScanner()

    async def response(self, flow: http.HTTPFlow):
        try:
+            # 오탐 검사하고 있을때는 검증하지 않음
+            if false_true_varifing_task.is_verifing_false_true():
+                return
            await self.checker.scan(flow)
        except Exception as e:
            print(f"[ERROR] AccessToken Addon failed: {e}")
@ -88,6 +101,9 @@ class RedirectBypassAddon:
    # request 대신 response 로 바꿔 보세요:
    async def response(self, flow: http.HTTPFlow):
        try:
+            # 오탐 검사하고 있을때는 검증하지 않음
+            if false_true_varifing_task.is_verifing_false_true():
+                return
            await self.checker.test(flow)
        except Exception as e:
            print(f"[ERROR] RedirectBypass Addon failed: {e}")