Download the PHP package moh8med/bffs without Composer
On this page you can find all versions of the php package moh8med/bffs. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Informations about the package bffs
🔰 BFFS - Backend for Frontend Shield
BFFS is a simple project built with Laravel that implements the backend for frontend pattern to help you build a security shield in front of your APIs and Microservices.
Here are some key points about BFFS:
- Implements the backend for frontend pattern to separate the concerns of the frontend and backend and improve security.
- Includes advanced request validation features, such as E.164 international phone number standard, password NIST standards, email RFC and DNS validation, email spoofing detection, and scanning uploaded files with Cisco ClamAV.
- Uses Redis for rate limiting requests to improve security and reduce the risk of DDoS attacks.
- Utilizes Swoole to speed up response time and improve overall performance.
- Built using Laravel, a popular PHP web application framework, making it easy to integrate with existing systems.
Features
Monitoring
- [x] Uptime Monitor
- [x] SSL Certificate Expiry
- [x] Email notification
- [x] Slack notification
Performance Tuning
- [x] Running on Octane (Swoole or Roadrunner)
- [x] API Aggregation
- [x] Response Caching with Redis
Security Hardening
- [x] Trusted Hosts
- [x] Add Cloudflare IPs to Trusted Proxies
- [x] CORS Handling
- [x] Rate Limiting with Redis
- [x] Restricting Access by GeoIP2 (MaxMind DB)
Web Application Firewall (WAF)
- [ ] Bot: Bad Bot Detection
- [ ] RFI: Remote File Inclusion
- [ ] XSS: Cross Site Scripting
- [ ] SQLi: SQL Injection
Antivirus and Malware
- [x] Scanning uploaded files with Cisco ClamAV
Advanced Request Validation
- [x] Email RFC compliance
- [x] Email domain DNS
- [x] Email disposable/throwaway domains
- [x] Email spoofing detection
- [ ] Email deliverability check
- [x] Password NIST standards
- [x] HaveIBeenPwned password check
- [x] Phone country prefix checking and E.164 standard
- [x] Phone number type: mobile, landline, etc
- [ ] Phone number verification
Getting Started
To get started with BFFS, you will need to have a basic understanding of Laravel and its dependencies.
Installation
-
Install the package via composer:
-
Run the migrations:
-
Configure your environment variables in the .env file.
-
Update the databases:
-
Create your first uptime monitor:
- You will need Cisco ClamAV installed to scan uploaded files against malwares:
Then set CLAMAV_SKIP_VALIDATION=false
in the .env
file.
Usage
Once the server is running, you can start making requests to the endpoints that are protected by the BFFS shield.
-
Start the server:
- Test your BFFS server:
Contributions
If you would like to contribute to the project, please feel free to open a pull request with your changes.
License
This project is licensed under the MIT License.
All versions of bffs with dependencies
geoip2/geoip2 Version ~2.1
guzzlehttp/guzzle Version ^7.5
laravel/framework Version ^9.19
laravel/octane Version ^1.4
laravel/sanctum Version ^3.0
laravel/tinker Version ^2.7
monicahq/laravel-cloudflare Version ^3.3
propaganistas/laravel-disposable-email Version ^2.2
propaganistas/laravel-phone Version ^4.4
spatie/laravel-responsecache Version ^7.4
spatie/laravel-uptime-monitor Version ^4.2
sunspikes/clamav-validator Version ^2.6
torann/geoip Version ^3.0