interface ConnectionGater {
    denyDialMultiaddr?(multiaddr): boolean | Promise<boolean>;
    denyDialPeer?(peerId): boolean | Promise<boolean>;
    denyInboundConnection?(maConn): boolean | Promise<boolean>;
    denyInboundEncryptedConnection?(peerId, maConn): boolean | Promise<boolean>;
    denyInboundRelayReservation?(source): boolean | Promise<boolean>;
    denyInboundRelayedConnection?(relay, remotePeer): boolean | Promise<boolean>;
    denyInboundUpgradedConnection?(peerId, maConn): boolean | Promise<boolean>;
    denyOutboundConnection?(peerId, maConn): boolean | Promise<boolean>;
    denyOutboundEncryptedConnection?(peerId, maConn): boolean | Promise<boolean>;
    denyOutboundRelayedConnection?(source, destination): boolean | Promise<boolean>;
    denyOutboundUpgradedConnection?(peerId, maConn): boolean | Promise<boolean>;
    filterMultiaddrForPeer?(peer, multiaddr): boolean | Promise<boolean>;
}

Methods

  • denyDialMultiaddr tests whether we're permitted to dial the specified multiaddr.

    This is called by the connection manager - if the peer id of the remote node is known it will be present in the multiaddr.

    Return true to prevent dialing the passed peer on the passed multiaddr.

    Parameters

    Returns boolean | Promise<boolean>

  • denyDialPeer tests whether we're permitted to Dial the specified peer.

    This is called by the dialer.connectToPeer implementation before dialling a peer.

    Return true to prevent dialing the passed peer.

    Parameters

    Returns boolean | Promise<boolean>

  • denyInboundConnection tests whether an incipient inbound connection is allowed.

    This is called by the upgrader, or by the transport directly (e.g. QUIC, Bluetooth), straight after it has accepted a connection from its socket.

    Return true to deny the incoming passed connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyInboundEncryptedConnection tests whether a given connection, now encrypted, is allowed.

    This is called by the upgrader, after it has performed the security handshake, and before it negotiates the muxer, or by the directly by the transport, at the exact same checkpoint.

    Return true to deny the passed secured connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyInboundRelayedConnection tests whether a remote peer is allowed to open a relayed connection to this node.

    This is invoked on the relay client when a remote relay has received an instruction to relay a connection to the client.

    Return true to deny the relayed connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyInboundUpgradedConnection tests whether a fully capable connection is allowed.

    This is called after encryption has been negotiated and the connection has been multiplexed, if a multiplexer is configured.

    Return true to deny the passed upgraded connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyOutboundConnection tests whether an incipient outbound connection is allowed.

    This is called by the upgrader, or by the transport directly (e.g. QUIC, Bluetooth), straight after it has created a connection with its socket.

    Return true to deny the incoming passed connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyOutboundEncryptedConnection tests whether a given connection, now encrypted, is allowed.

    This is called by the upgrader, after it has performed the security handshake, and before it negotiates the muxer, or by the directly by the transport, at the exact same checkpoint.

    Return true to deny the passed secured connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyOutboundRelayedConnection tests whether a remote peer is allowed to open a relayed connection to the destination node.

    This is invoked on the relay server when a source client with a reservation instructs the server to relay a connection to a destination peer.

    Return true to deny the relayed connection.

    Parameters

    Returns boolean | Promise<boolean>

  • denyOutboundUpgradedConnection tests whether a fully capable connection is allowed.

    This is called after encryption has been negotiated and the connection has been multiplexed, if a multiplexer is configured.

    Return true to deny the passed upgraded connection.

    Parameters

    Returns boolean | Promise<boolean>