TRKJ/EdgeAPI
2
0
Fork 0
mirror of https://github.com/TeaOSLab/EdgeAPI.git synced 2025-11-04 16:00:24 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
911e57b1f261d89e9a325dc5c16cdde6bbd520c8
EdgeAPI/internal/db/models/http_firewall_rule_group_dao.go

203 lines
5.2 KiB
Go
Raw Normal View History

增加一些表设计
2020-09-23 10:12:57 +08:00
package models
import (
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
"encoding/json"
实现WAF部分功能
2020-10-07 11:18:12 +08:00
"github.com/TeaOSLab/EdgeAPI/internal/errors"
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
增加一些表设计
2020-09-23 10:12:57 +08:00
_ "github.com/go-sql-driver/mysql"
"github.com/iwind/TeaGo/Tea"
"github.com/iwind/TeaGo/dbs"
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
"github.com/iwind/TeaGo/types"
增加一些表设计
2020-09-23 10:12:57 +08:00
)
const (
HTTPFirewallRuleGroupStateEnabled = 1 // 已启用
HTTPFirewallRuleGroupStateDisabled = 0 // 已禁用
)
type HTTPFirewallRuleGroupDAO dbs.DAO
func NewHTTPFirewallRuleGroupDAO() *HTTPFirewallRuleGroupDAO {
return dbs.NewDAO(&HTTPFirewallRuleGroupDAO{
DAOObject: dbs.DAOObject{
DB: Tea.Env,
Table: "edgeHTTPFirewallRuleGroups",
Model: new(HTTPFirewallRuleGroup),
PkName: "id",
},
}).(*HTTPFirewallRuleGroupDAO)
}
var SharedHTTPFirewallRuleGroupDAO = NewHTTPFirewallRuleGroupDAO()
实现HTTP部分功能
2020-09-26 08:06:40 +08:00
// 初始化
func (this *HTTPFirewallRuleGroupDAO) Init() {
this.DAOObject.Init()
this.DAOObject.OnUpdate(func() error {
return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())
})
this.DAOObject.OnInsert(func() error {
return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())
})
this.DAOObject.OnDelete(func() error {
return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())
})
}
增加一些表设计
2020-09-23 10:12:57 +08:00
// 启用条目
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
func (this *HTTPFirewallRuleGroupDAO) EnableHTTPFirewallRuleGroup(id int64) error {
增加一些表设计
2020-09-23 10:12:57 +08:00
_, err := this.Query().
Pk(id).
Set("state", HTTPFirewallRuleGroupStateEnabled).
Update()
return err
}
// 禁用条目
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
func (this *HTTPFirewallRuleGroupDAO) DisableHTTPFirewallRuleGroup(id int64) error {
增加一些表设计
2020-09-23 10:12:57 +08:00
_, err := this.Query().
Pk(id).
Set("state", HTTPFirewallRuleGroupStateDisabled).
Update()
return err
}
// 查找启用中的条目
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
func (this *HTTPFirewallRuleGroupDAO) FindEnabledHTTPFirewallRuleGroup(id int64) (*HTTPFirewallRuleGroup, error) {
增加一些表设计
2020-09-23 10:12:57 +08:00
result, err := this.Query().
Pk(id).
Attr("state", HTTPFirewallRuleGroupStateEnabled).
Find()
if result == nil {
return nil, err
}
return result.(*HTTPFirewallRuleGroup), err
}
// 根据主键查找名称
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
func (this *HTTPFirewallRuleGroupDAO) FindHTTPFirewallRuleGroupName(id int64) (string, error) {
增加一些表设计
2020-09-23 10:12:57 +08:00
return this.Query().
Pk(id).
Result("name").
FindStringCol("")
}
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
// 组合配置
func (this *HTTPFirewallRuleGroupDAO) ComposeFirewallRuleGroup(groupId int64) (*firewallconfigs.HTTPFirewallRuleGroup, error) {
group, err := this.FindEnabledHTTPFirewallRuleGroup(groupId)
if err != nil {
return nil, err
}
if group == nil {
return nil, nil
}
config := &firewallconfigs.HTTPFirewallRuleGroup{}
config.Id = int64(group.Id)
config.IsOn = group.IsOn == 1
config.Name = group.Name
config.Description = group.Description
config.Code = group.Code
if IsNotNull(group.Sets) {
setRefs := []*firewallconfigs.HTTPFirewallRuleSetRef{}
err = json.Unmarshal([]byte(group.Sets), &setRefs)
if err != nil {
return nil, err
}
for _, setRef := range setRefs {
setConfig, err := SharedHTTPFirewallRuleSetDAO.ComposeFirewallRuleSet(setRef.SetId)
if err != nil {
return nil, err
}
if setConfig != nil {
config.SetRefs = append(config.SetRefs, setRef)
config.Sets = append(config.Sets, setConfig)
}
}
}
return config, nil
}
// 从配置中创建分组
func (this *HTTPFirewallRuleGroupDAO) CreateGroupFromConfig(groupConfig *firewallconfigs.HTTPFirewallRuleGroup) (int64, error) {
op := NewHTTPFirewallRuleGroupOperator()
op.IsOn = groupConfig.IsOn
op.Name = groupConfig.Name
op.Description = groupConfig.Description
op.State = HTTPFirewallRuleGroupStateEnabled
op.Code = groupConfig.Code
// sets
setRefs := []*firewallconfigs.HTTPFirewallRuleSetRef{}
for _, setConfig := range groupConfig.Sets {
实现WAF部分功能
2020-10-08 11:11:49 +08:00
setId, err := SharedHTTPFirewallRuleSetDAO.CreateOrUpdateSetFromConfig(setConfig)
实现WAF策略部分功能
2020-10-06 21:02:15 +08:00
if err != nil {
return 0, err
}
setRefs = append(setRefs, &firewallconfigs.HTTPFirewallRuleSetRef{
IsOn: true,
SetId: setId,
})
}
setRefsJSON, err := json.Marshal(setRefs)
if err != nil {
return 0, err
}
op.Sets = setRefsJSON
_, err = this.Save(op)
if err != nil {
return 0, err
}
return types.Int64(op.Id), nil
}
// 修改开启状态
func (this *HTTPFirewallRuleGroupDAO) UpdateGroupIsOn(groupId int64, isOn bool) error {
_, err := this.Query().
Pk(groupId).
Set("isOn", isOn).
Update()
return err
}
实现WAF部分功能
2020-10-07 11:18:12 +08:00
// 创建分组
func (this *HTTPFirewallRuleGroupDAO) CreateGroup(isOn bool, name string, description string) (int64, error) {
op := NewHTTPFirewallRuleGroupOperator()
op.State = HTTPFirewallRuleStateEnabled
op.IsOn = isOn
op.Name = name
op.Description = description
_, err := this.Save(op)
if err != nil {
return 0, err
}
return types.Int64(op.Id), nil
}
// 修改分组
func (this *HTTPFirewallRuleGroupDAO) UpdateGroup(groupId int64, isOn bool, name string, description string) error {
if groupId <= 0 {
return errors.New("invalid groupId")
}
op := NewHTTPFirewallRuleGroupOperator()
op.Id = groupId
op.IsOn = isOn
op.Name = name
op.Description = description
_, err := this.Save(op)
return err
}
实现WAF部分功能
2020-10-08 11:11:49 +08:00
// 修改分组中的规则集
func (this *HTTPFirewallRuleGroupDAO) UpdateGroupSets(groupId int64, setsJSON []byte) error {
if groupId <= 0 {
return errors.New("invalid groupId")
}
op := NewHTTPFirewallRuleGroupOperator()
op.Id = groupId
op.Sets = setsJSON
_, err := this.Save(op)
return err
}
Reference in New Issue Copy Permalink