EdgeAPI/internal/db/models/http_firewall_rule_dao.go

package models

import (
	"encoding/json"
	"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
	_ "github.com/go-sql-driver/mysql"
	"github.com/iwind/TeaGo/Tea"
	"github.com/iwind/TeaGo/dbs"
	"github.com/iwind/TeaGo/types"
)

const (
	HTTPFirewallRuleStateEnabled  = 1 // 已启用
	HTTPFirewallRuleStateDisabled = 0 // 已禁用
)

type HTTPFirewallRuleDAO dbs.DAO

func NewHTTPFirewallRuleDAO() *HTTPFirewallRuleDAO {
	return dbs.NewDAO(&HTTPFirewallRuleDAO{
		DAOObject: dbs.DAOObject{
			DB:     Tea.Env,
			Table:  "edgeHTTPFirewallRules",
			Model:  new(HTTPFirewallRule),
			PkName: "id",
		},
	}).(*HTTPFirewallRuleDAO)
}

var SharedHTTPFirewallRuleDAO = NewHTTPFirewallRuleDAO()

// 初始化
func (this *HTTPFirewallRuleDAO) Init() {
	this.DAOObject.Init()
	this.DAOObject.OnUpdate(func() error {
		return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())
	})
	this.DAOObject.OnInsert(func() error {
		return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())
	})
	this.DAOObject.OnDelete(func() error {
		return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())
	})
}

// 启用条目
func (this *HTTPFirewallRuleDAO) EnableHTTPFirewallRule(id int64) error {
	_, err := this.Query().
		Pk(id).
		Set("state", HTTPFirewallRuleStateEnabled).
		Update()
	return err
}

// 禁用条目
func (this *HTTPFirewallRuleDAO) DisableHTTPFirewallRule(id int64) error {
	_, err := this.Query().
		Pk(id).
		Set("state", HTTPFirewallRuleStateDisabled).
		Update()
	return err
}

// 查找启用中的条目
func (this *HTTPFirewallRuleDAO) FindEnabledHTTPFirewallRule(id int64) (*HTTPFirewallRule, error) {
	result, err := this.Query().
		Pk(id).
		Attr("state", HTTPFirewallRuleStateEnabled).
		Find()
	if result == nil {
		return nil, err
	}
	return result.(*HTTPFirewallRule), err
}

// 组合配置
func (this *HTTPFirewallRuleDAO) ComposeFirewallRule(ruleId int64) (*firewallconfigs.HTTPFirewallRule, error) {
	rule, err := this.FindEnabledHTTPFirewallRule(ruleId)
	if err != nil {
		return nil, err
	}
	if rule == nil {
		return nil, nil
	}
	config := &firewallconfigs.HTTPFirewallRule{}
	config.Id = int64(rule.Id)
	config.IsOn = rule.IsOn == 1
	config.Param = rule.Param
	config.Operator = rule.Operator
	config.Value = rule.Value
	config.IsCaseInsensitive = rule.IsCaseInsensitive == 1

	if IsNotNull(rule.CheckpointOptions) {
		checkpointOptions := map[string]interface{}{}
		err = json.Unmarshal([]byte(rule.CheckpointOptions), &checkpointOptions)
		if err != nil {
			return nil, err
		}
		config.CheckpointOptions = checkpointOptions
	}

	config.Description = rule.Description

	return config, nil
}

// 从配置中配置规则
func (this *HTTPFirewallRuleDAO) CreateRuleFromConfig(ruleConfig *firewallconfigs.HTTPFirewallRule) (int64, error) {
	op := NewHTTPFirewallRuleOperator()
	op.State = HTTPFirewallRuleStateEnabled
	op.IsOn = ruleConfig.IsOn
	op.Description = ruleConfig.Description
	op.Param = ruleConfig.Param
	op.Value = ruleConfig.Value
	op.IsCaseInsensitive = ruleConfig.IsCaseInsensitive
	op.Operator = ruleConfig.Operator

	if ruleConfig.CheckpointOptions != nil {
		checkpointOptionsJSON, err := json.Marshal(ruleConfig.CheckpointOptions)
		if err != nil {
			return 0, err
		}
		op.CheckpointOptions = checkpointOptionsJSON
	}
	_, err := this.Save(op)
	if err != nil {
		return 0, err
	}
	return types.Int64(op.Id), nil
}
增加一些表设计 2020-09-23 10:12:57 +08:00			`package models`

			`import (`
实现WAF策略部分功能 2020-10-06 21:02:15 +08:00			`"encoding/json"`
			`"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"`
增加一些表设计 2020-09-23 10:12:57 +08:00			`_ "github.com/go-sql-driver/mysql"`
			`"github.com/iwind/TeaGo/Tea"`
			`"github.com/iwind/TeaGo/dbs"`
实现WAF策略部分功能 2020-10-06 21:02:15 +08:00			`"github.com/iwind/TeaGo/types"`
增加一些表设计 2020-09-23 10:12:57 +08:00			`)`

			`const (`
			`HTTPFirewallRuleStateEnabled = 1 // 已启用`
			`HTTPFirewallRuleStateDisabled = 0 // 已禁用`
			`)`

			`type HTTPFirewallRuleDAO dbs.DAO`

			`func NewHTTPFirewallRuleDAO() *HTTPFirewallRuleDAO {`
			`return dbs.NewDAO(&HTTPFirewallRuleDAO{`
			`DAOObject: dbs.DAOObject{`
			`DB: Tea.Env,`
			`Table: "edgeHTTPFirewallRules",`
			`Model: new(HTTPFirewallRule),`
			`PkName: "id",`
			`},`
			`}).(*HTTPFirewallRuleDAO)`
			`}`

			`var SharedHTTPFirewallRuleDAO = NewHTTPFirewallRuleDAO()`

实现HTTP部分功能 2020-09-26 08:06:40 +08:00			`// 初始化`
			`func (this *HTTPFirewallRuleDAO) Init() {`
			`this.DAOObject.Init()`
			`this.DAOObject.OnUpdate(func() error {`
			`return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())`
			`})`
			`this.DAOObject.OnInsert(func() error {`
			`return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())`
			`})`
			`this.DAOObject.OnDelete(func() error {`
			`return SharedSysEventDAO.CreateEvent(NewServerChangeEvent())`
			`})`
			`}`

增加一些表设计 2020-09-23 10:12:57 +08:00			`// 启用条目`
实现WAF策略部分功能 2020-10-06 21:02:15 +08:00			`func (this *HTTPFirewallRuleDAO) EnableHTTPFirewallRule(id int64) error {`
增加一些表设计 2020-09-23 10:12:57 +08:00			`_, err := this.Query().`
			`Pk(id).`
			`Set("state", HTTPFirewallRuleStateEnabled).`
			`Update()`
			`return err`
			`}`

			`// 禁用条目`
实现WAF策略部分功能 2020-10-06 21:02:15 +08:00			`func (this *HTTPFirewallRuleDAO) DisableHTTPFirewallRule(id int64) error {`
增加一些表设计 2020-09-23 10:12:57 +08:00			`_, err := this.Query().`
			`Pk(id).`
			`Set("state", HTTPFirewallRuleStateDisabled).`
			`Update()`
			`return err`
			`}`

			`// 查找启用中的条目`
实现WAF策略部分功能 2020-10-06 21:02:15 +08:00			`func (this HTTPFirewallRuleDAO) FindEnabledHTTPFirewallRule(id int64) (HTTPFirewallRule, error) {`
增加一些表设计 2020-09-23 10:12:57 +08:00			`result, err := this.Query().`
			`Pk(id).`
			`Attr("state", HTTPFirewallRuleStateEnabled).`
			`Find()`
			`if result == nil {`
			`return nil, err`
			`}`
			`return result.(*HTTPFirewallRule), err`
			`}`
实现WAF策略部分功能 2020-10-06 21:02:15 +08:00
			`// 组合配置`
			`func (this HTTPFirewallRuleDAO) ComposeFirewallRule(ruleId int64) (firewallconfigs.HTTPFirewallRule, error) {`
			`rule, err := this.FindEnabledHTTPFirewallRule(ruleId)`
			`if err != nil {`
			`return nil, err`
			`}`
			`if rule == nil {`
			`return nil, nil`
			`}`
			`config := &firewallconfigs.HTTPFirewallRule{}`
			`config.Id = int64(rule.Id)`
			`config.IsOn = rule.IsOn == 1`
			`config.Param = rule.Param`
			`config.Operator = rule.Operator`
			`config.Value = rule.Value`
			`config.IsCaseInsensitive = rule.IsCaseInsensitive == 1`

			`if IsNotNull(rule.CheckpointOptions) {`
			`checkpointOptions := map[string]interface{}{}`
			`err = json.Unmarshal([]byte(rule.CheckpointOptions), &checkpointOptions)`
			`if err != nil {`
			`return nil, err`
			`}`
			`config.CheckpointOptions = checkpointOptions`
			`}`

			`config.Description = rule.Description`

			`return config, nil`
			`}`

			`// 从配置中配置规则`
			`func (this HTTPFirewallRuleDAO) CreateRuleFromConfig(ruleConfig firewallconfigs.HTTPFirewallRule) (int64, error) {`
			`op := NewHTTPFirewallRuleOperator()`
			`op.State = HTTPFirewallRuleStateEnabled`
			`op.IsOn = ruleConfig.IsOn`
			`op.Description = ruleConfig.Description`
			`op.Param = ruleConfig.Param`
			`op.Value = ruleConfig.Value`
			`op.IsCaseInsensitive = ruleConfig.IsCaseInsensitive`
			`op.Operator = ruleConfig.Operator`

			`if ruleConfig.CheckpointOptions != nil {`
			`checkpointOptionsJSON, err := json.Marshal(ruleConfig.CheckpointOptions)`
			`if err != nil {`
			`return 0, err`
			`}`
			`op.CheckpointOptions = checkpointOptionsJSON`
			`}`
			`_, err := this.Save(op)`
			`if err != nil {`
			`return 0, err`
			`}`
			`return types.Int64(op.Id), nil`
			`}`