EdgeAdmin/internal/web/actions/default/servers/components/waf/ipadmin/provinces.go

package ipadmin

import (
	"encoding/json"
	"github.com/TeaOSLab/EdgeAdmin/internal/oplogs"
	"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"
	"github.com/TeaOSLab/EdgeAdmin/internal/web/models"
	"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
	"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
	"github.com/iwind/TeaGo/actions"
	"github.com/iwind/TeaGo/lists"
	"github.com/iwind/TeaGo/maps"
)

const ChinaCountryId = 1

type ProvincesAction struct {
	actionutils.ParentAction
}

func (this *ProvincesAction) Init() {
	this.Nav("", "", "ipadmin")
}

func (this *ProvincesAction) RunGet(params struct {
	FirewallPolicyId int64
}) {
	this.Data["subMenuItem"] = "province"

	// 当前选中的省份
	policyConfig, err := models.SharedHTTPFirewallPolicyDAO.FindEnabledPolicyConfig(this.AdminContext(), params.FirewallPolicyId)
	if err != nil {
		this.ErrorPage(err)
		return
	}
	if policyConfig == nil {
		this.NotFound("firewallPolicy", params.FirewallPolicyId)
		return
	}
	selectedProvinceIds := []int64{}
	if policyConfig.Inbound != nil && policyConfig.Inbound.Region != nil {
		selectedProvinceIds = policyConfig.Inbound.Region.DenyProvinceIds
	}

	provincesResp, err := this.RPC().RegionProvinceRPC().FindAllEnabledRegionProvincesWithCountryId(this.AdminContext(), &pb.FindAllEnabledRegionProvincesWithCountryIdRequest{
		CountryId: int64(ChinaCountryId),
	})
	if err != nil {
		this.ErrorPage(err)
		return
	}
	provinceMaps := []maps.Map{}
	for _, province := range provincesResp.Provinces {
		provinceMaps = append(provinceMaps, maps.Map{
			"id":        province.Id,
			"name":      province.Name,
			"isChecked": lists.ContainsInt64(selectedProvinceIds, province.Id),
		})
	}
	this.Data["provinces"] = provinceMaps

	this.Show()
}

func (this *ProvincesAction) RunPost(params struct {
	FirewallPolicyId int64
	ProvinceIds      []int64

	Must *actions.Must
}) {
	// 日志
	defer this.CreateLog(oplogs.LevelInfo, "WAF策略 %d 设置禁止访问的省份", params.FirewallPolicyId)

	policyConfig, err := models.SharedHTTPFirewallPolicyDAO.FindEnabledPolicyConfig(this.AdminContext(), params.FirewallPolicyId)
	if err != nil {
		this.ErrorPage(err)
		return
	}
	if policyConfig == nil {
		this.NotFound("firewallPolicy", params.FirewallPolicyId)
		return
	}

	if policyConfig.Inbound == nil {
		policyConfig.Inbound = &firewallconfigs.HTTPFirewallInboundConfig{IsOn: true}
	}
	if policyConfig.Inbound.Region == nil {
		policyConfig.Inbound.Region = &firewallconfigs.HTTPFirewallRegionConfig{
			IsOn: true,
		}
	}
	policyConfig.Inbound.Region.DenyProvinceIds = params.ProvinceIds

	inboundJSON, err := json.Marshal(policyConfig.Inbound)
	if err != nil {
		this.ErrorPage(err)
		return
	}

	_, err = this.RPC().HTTPFirewallPolicyRPC().UpdateHTTPFirewallInboundConfig(this.AdminContext(), &pb.UpdateHTTPFirewallInboundConfigRequest{
		HttpFirewallPolicyId: params.FirewallPolicyId,
		InboundJSON:          inboundJSON,
	})
	if err != nil {
		this.ErrorPage(err)
		return
	}

	this.Success()
}
增加国家/地区封禁管理 2020-11-06 11:02:26 +08:00			`package ipadmin`

增加封禁省份管理 2020-11-06 11:30:35 +08:00			`import (`
			`"encoding/json"`
增加若干操作日志/代理服务DNS CNAME显示的地方增加拷贝到剪贴板图标 2020-11-17 15:41:43 +08:00			`"github.com/TeaOSLab/EdgeAdmin/internal/oplogs"`
增加封禁省份管理 2020-11-06 11:30:35 +08:00			`"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"`
			`"github.com/TeaOSLab/EdgeAdmin/internal/web/models"`
			`"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"`
			`"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"`
			`"github.com/iwind/TeaGo/actions"`
			`"github.com/iwind/TeaGo/lists"`
			`"github.com/iwind/TeaGo/maps"`
			`)`

			`const ChinaCountryId = 1`
增加国家/地区封禁管理 2020-11-06 11:02:26 +08:00
			`type ProvincesAction struct {`
			`actionutils.ParentAction`
			`}`

			`func (this *ProvincesAction) Init() {`
			`this.Nav("", "", "ipadmin")`
			`}`

增加封禁省份管理 2020-11-06 11:30:35 +08:00			`func (this *ProvincesAction) RunGet(params struct {`
			`FirewallPolicyId int64`
			`}) {`
增加国家/地区封禁管理 2020-11-06 11:02:26 +08:00			`this.Data["subMenuItem"] = "province"`
增加封禁省份管理 2020-11-06 11:30:35 +08:00
			`// 当前选中的省份`
			`policyConfig, err := models.SharedHTTPFirewallPolicyDAO.FindEnabledPolicyConfig(this.AdminContext(), params.FirewallPolicyId)`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`
			`if policyConfig == nil {`
			`this.NotFound("firewallPolicy", params.FirewallPolicyId)`
			`return`
			`}`
			`selectedProvinceIds := []int64{}`
			`if policyConfig.Inbound != nil && policyConfig.Inbound.Region != nil {`
			`selectedProvinceIds = policyConfig.Inbound.Region.DenyProvinceIds`
			`}`

			`provincesResp, err := this.RPC().RegionProvinceRPC().FindAllEnabledRegionProvincesWithCountryId(this.AdminContext(), &pb.FindAllEnabledRegionProvincesWithCountryIdRequest{`
			`CountryId: int64(ChinaCountryId),`
			`})`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`
			`provinceMaps := []maps.Map{}`
			`for _, province := range provincesResp.Provinces {`
			`provinceMaps = append(provinceMaps, maps.Map{`
			`"id": province.Id,`
			`"name": province.Name,`
			`"isChecked": lists.ContainsInt64(selectedProvinceIds, province.Id),`
			`})`
			`}`
			`this.Data["provinces"] = provinceMaps`

增加国家/地区封禁管理 2020-11-06 11:02:26 +08:00			`this.Show()`
			`}`
增加封禁省份管理 2020-11-06 11:30:35 +08:00
			`func (this *ProvincesAction) RunPost(params struct {`
			`FirewallPolicyId int64`
			`ProvinceIds []int64`

			`Must *actions.Must`
			`}) {`
增加若干操作日志/代理服务DNS CNAME显示的地方增加拷贝到剪贴板图标 2020-11-17 15:41:43 +08:00			`// 日志`
改进操作日志 2020-11-20 15:32:42 +08:00			`defer this.CreateLog(oplogs.LevelInfo, "WAF策略 %d 设置禁止访问的省份", params.FirewallPolicyId)`
增加若干操作日志/代理服务DNS CNAME显示的地方增加拷贝到剪贴板图标 2020-11-17 15:41:43 +08:00
增加封禁省份管理 2020-11-06 11:30:35 +08:00			`policyConfig, err := models.SharedHTTPFirewallPolicyDAO.FindEnabledPolicyConfig(this.AdminContext(), params.FirewallPolicyId)`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`
			`if policyConfig == nil {`
			`this.NotFound("firewallPolicy", params.FirewallPolicyId)`
			`return`
			`}`

			`if policyConfig.Inbound == nil {`
			`policyConfig.Inbound = &firewallconfigs.HTTPFirewallInboundConfig{IsOn: true}`
			`}`
			`if policyConfig.Inbound.Region == nil {`
			`policyConfig.Inbound.Region = &firewallconfigs.HTTPFirewallRegionConfig{`
			`IsOn: true,`
			`}`
			`}`
			`policyConfig.Inbound.Region.DenyProvinceIds = params.ProvinceIds`

			`inboundJSON, err := json.Marshal(policyConfig.Inbound)`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`

			`_, err = this.RPC().HTTPFirewallPolicyRPC().UpdateHTTPFirewallInboundConfig(this.AdminContext(), &pb.UpdateHTTPFirewallInboundConfigRequest{`
集群可以设置默认的WAF策略、缓存策略 2020-12-17 15:50:44 +08:00			`HttpFirewallPolicyId: params.FirewallPolicyId,`
			`InboundJSON: inboundJSON,`
增加封禁省份管理 2020-11-06 11:30:35 +08:00			`})`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`

			`this.Success()`
			`}`