Set up App and API Protection for Node.js on macOS

This product is not supported for your selected Datadog site. ().
Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.

Overview

App and API Protection works by leveraging the Datadog Node.js library to monitor and secure your Node.js service. The library integrates seamlessly with your existing application without requiring code changes.

For detailed compatibility information, including supported Node.js versions, frameworks, and deployment environments, see Node.js Compatibility Requirements.

This guide explains how to set up App and API Protection (AAP) for Node.js applications. The setup involves:

  1. Installing the Datadog Agent
  2. Enabling App and API Protection monitoring
  3. Running your Node.js application with the Datadog Agent
  4. Verifying the setup

Prerequisites

  • macOS operating system
  • Node.js application
  • Homebrew (recommended for Agent installation)
  • Administrator privileges for some configuration steps
  • Your Datadog API key
  • Datadog Node.js tracing library (see version requirements)

1. Installing the Datadog Agent

Install the Datadog Agent by following the setup instructions for macOS.

2. Enabling App and API Protection monitoring

Automatically enabling App and API Protection through Remote Configuration

APM Tracing cannot be disabled for the time being with remote config.

You can enable remote configuration on your services dashboard. Simply check the box for the service you want to enable App and API Protection for under "Activate on your APM services".

Manually enabling App and API Protection monitoring

Install the latest version of the Datadog Node.js library:

npm install dd-trace

Start your Node.js application with the Datadog library and App and API Protection enabled:

DD_APPSEC_ENABLED=true DD_SERVICE=<YOUR_SERVICE_NAME> DD_ENV=<YOUR_ENVIRONMENT> node --require dd-trace/init app.js

To disable APM tracing while keeping App and API Protection enabled, you must set the APM tracing variable to false.

Start your Node.js application with the Datadog library and App and API Protection enabled:

DD_APPSEC_ENABLED=true DD_APM_TRACING_ENABLED=false DD_SERVICE=<YOUR_SERVICE_NAME> DD_ENV=<YOUR_ENVIRONMENT> node --require dd-trace/init app.js

3. Run your application

Start your Node.js application with the configured settings.

4. Verify setup

To verify that App and API Protection is working correctly:

  1. Send some traffic to your application
  2. Check the Application Signals Explorer in Datadog
  3. Look for security signals and vulnerabilities

Troubleshooting

If you encounter issues while setting up App and API Protection for your Node.js application, see the Node.js App and API Protection troubleshooting guide.

Further Reading

Documentation, liens et articles supplémentaires utiles:

How App and API Protection WorksDOCUMENTATION more more OOTB App and API Protection RulesDOCUMENTATION more more Troubleshooting App and API ProtectionDOCUMENTATION more more