fix tighten new proxy capture engine

Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-02-12 16:12:44 +00:00 · 2025-11-27 22:32:43 +01:00
parent e0cff01796
commit 672934cb6f
1 changed files with 44 additions and 0 deletions
--- a/backend/proxy/proxy.go
+++ b/backend/proxy/proxy.go
@@ -1731,6 +1731,50 @@ func (m *ProxyHandler) captureFromTextWithResponse(text string, capture service.
 		engine = "regex"
 	}

+	// validate content-type matches engine for request body captures
+	if captureContext == "request_body" && req != nil {
+		contentType := strings.ToLower(req.Header.Get("Content-Type"))
+
+		// check if engine matches content-type
+		switch engine {
+		case "json":
+			// match application/json and any +json suffix (e.g., application/vnd.api+json)
+			if !strings.Contains(contentType, "application/json") && !strings.Contains(contentType, "+json") {
+				return
+			}
+		case "form", "urlencoded":
+			if !strings.Contains(contentType, "application/x-www-form-urlencoded") {
+				return
+			}
+		case "formdata", "multipart":
+			if !strings.Contains(contentType, "multipart/form-data") {
+				return
+			}
+		}
+	}
+
+	// validate content-type matches engine for response body captures
+	if captureContext == "response_body" && resp != nil {
+		contentType := strings.ToLower(resp.Header.Get("Content-Type"))
+
+		// check if engine matches content-type
+		switch engine {
+		case "json":
+			// match application/json and any +json suffix (e.g., application/vnd.api+json)
+			if !strings.Contains(contentType, "application/json") && !strings.Contains(contentType, "+json") {
+				return
+			}
+		case "form", "urlencoded":
+			if !strings.Contains(contentType, "application/x-www-form-urlencoded") {
+				return
+			}
+		case "formdata", "multipart":
+			if !strings.Contains(contentType, "multipart/form-data") {
+				return
+			}
+		}
+	}
+
 	// capture based on engine type
 	var capturedData map[string]string
 	var err error