EdgeAdmin/internal/web/actions/default/servers/components/waf/createRulePopup.go

package waf

import (
	"encoding/json"
	"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"
	"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
	"github.com/iwind/TeaGo/actions"
	"github.com/iwind/TeaGo/lists"
	"github.com/iwind/TeaGo/maps"
)

type CreateRulePopupAction struct {
	actionutils.ParentAction
}

func (this *CreateRulePopupAction) Init() {
	this.Nav("", "", "")
}

func (this *CreateRulePopupAction) RunGet(params struct {
	Type string
}) {
	// check points
	checkpointList := []maps.Map{}
	for _, checkpoint := range firewallconfigs.AllCheckpoints {
		if (params.Type == "inbound" && checkpoint.IsRequest) || (params.Type == "outbound" && !checkpoint.IsRequest) {
			checkpointList = append(checkpointList, maps.Map{
				"name":        checkpoint.Name,
				"prefix":      checkpoint.Prefix,
				"description": checkpoint.Description,
				"hasParams":   checkpoint.HasParams,
				"params":      checkpoint.Params,
				"options":     checkpoint.Options,
				"isComposed":  checkpoint.IsComposed,
			})
		}
	}

	// operators
	this.Data["operators"] = lists.Map(firewallconfigs.AllRuleOperators, func(k int, v interface{}) interface{} {
		def := v.(*firewallconfigs.RuleOperatorDefinition)
		return maps.Map{
			"name":        def.Name,
			"code":        def.Code,
			"description": def.Description,
			"case":        def.CaseInsensitive,
		}
	})

	this.Data["checkpoints"] = checkpointList

	this.Show()
}

func (this *CreateRulePopupAction) RunPost(params struct {
	RuleId           int64
	Prefix           string
	Operator         string
	Param            string
	ParamFiltersJSON []byte
	OptionsJSON      []byte
	Value            string
	Case             bool

	Must *actions.Must
}) {
	params.Must.
		Field("prefix", params.Prefix).
		Require("请选择参数")

	rule := &firewallconfigs.HTTPFirewallRule{
		Id:   params.RuleId,
		IsOn: true,
	}
	if len(params.Param) > 0 {
		rule.Param = "${" + params.Prefix + "." + params.Param + "}"
	} else {
		rule.Param = "${" + params.Prefix + "}"
	}

	paramFilters := []*firewallconfigs.ParamFilter{}
	if len(params.ParamFiltersJSON) > 0 {
		err := json.Unmarshal(params.ParamFiltersJSON, &paramFilters)
		if err != nil {
			this.ErrorPage(err)
			return
		}
	}
	rule.ParamFilters = paramFilters

	rule.Operator = params.Operator
	rule.Value = params.Value
	rule.IsCaseInsensitive = params.Case

	if len(params.OptionsJSON) > 0 {
		options := []maps.Map{}
		err := json.Unmarshal(params.OptionsJSON, &options)
		if err != nil {
			this.ErrorPage(err)
			return
		}

		rule.CheckpointOptions = map[string]interface{}{}
		for _, option := range options {
			rule.CheckpointOptions[option.GetString("code")] = option.Get("value")
		}
	}

	// 校验
	err := rule.Init()
	if err != nil {
		this.Fail("校验规则 '" + rule.Param + " " + rule.Operator + " " + rule.Value + "' 失败，原因：" + err.Error())
	}

	this.Data["rule"] = rule
	this.Success()
}
实现WAF部分功能 2020-10-08 11:11:37 +08:00			`package waf`

			`import (`
			`"encoding/json"`
			`"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"`
			`"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"`
			`"github.com/iwind/TeaGo/actions"`
			`"github.com/iwind/TeaGo/lists"`
			`"github.com/iwind/TeaGo/maps"`
			`)`

			`type CreateRulePopupAction struct {`
			`actionutils.ParentAction`
			`}`

			`func (this *CreateRulePopupAction) Init() {`
			`this.Nav("", "", "")`
			`}`

			`func (this *CreateRulePopupAction) RunGet(params struct {`
			`Type string`
			`}) {`
			`// check points`
			`checkpointList := []maps.Map{}`
[WAF]规则中增加请求Header长度限制和响应Header长度限制 2020-11-18 19:35:32 +08:00			`for _, checkpoint := range firewallconfigs.AllCheckpoints {`
			`if (params.Type == "inbound" && checkpoint.IsRequest) \|\| (params.Type == "outbound" && !checkpoint.IsRequest) {`
实现WAF部分功能 2020-10-08 11:11:37 +08:00			`checkpointList = append(checkpointList, maps.Map{`
[WAF]规则中增加请求Header长度限制和响应Header长度限制 2020-11-18 19:35:32 +08:00			`"name": checkpoint.Name,`
			`"prefix": checkpoint.Prefix,`
			`"description": checkpoint.Description,`
[waf]支持包含二进制、不支持二进制等操作符；支持对参数值编解码 2020-11-21 20:43:45 +08:00			`"hasParams": checkpoint.HasParams,`
[WAF]规则中增加请求Header长度限制和响应Header长度限制 2020-11-18 19:35:32 +08:00			`"params": checkpoint.Params,`
			`"options": checkpoint.Options,`
			`"isComposed": checkpoint.IsComposed,`
实现WAF部分功能 2020-10-08 11:11:37 +08:00			`})`
			`}`
			`}`

			`// operators`
			`this.Data["operators"] = lists.Map(firewallconfigs.AllRuleOperators, func(k int, v interface{}) interface{} {`
			`def := v.(*firewallconfigs.RuleOperatorDefinition)`
			`return maps.Map{`
			`"name": def.Name,`
			`"code": def.Code,`
			`"description": def.Description,`
			`"case": def.CaseInsensitive,`
			`}`
			`})`

			`this.Data["checkpoints"] = checkpointList`

			`this.Show()`
			`}`

			`func (this *CreateRulePopupAction) RunPost(params struct {`
[waf]支持包含二进制、不支持二进制等操作符；支持对参数值编解码 2020-11-21 20:43:45 +08:00			`RuleId int64`
			`Prefix string`
			`Operator string`
			`Param string`
			`ParamFiltersJSON []byte`
			`OptionsJSON []byte`
			`Value string`
			`Case bool`
实现WAF部分功能 2020-10-08 11:11:37 +08:00
			`Must *actions.Must`
			`}) {`
			`params.Must.`
			`Field("prefix", params.Prefix).`
			`Require("请选择参数")`

			`rule := &firewallconfigs.HTTPFirewallRule{`
			`Id: params.RuleId,`
			`IsOn: true,`
			`}`
			`if len(params.Param) > 0 {`
			`rule.Param = "${" + params.Prefix + "." + params.Param + "}"`
			`} else {`
			`rule.Param = "${" + params.Prefix + "}"`
			`}`
[waf]支持包含二进制、不支持二进制等操作符；支持对参数值编解码 2020-11-21 20:43:45 +08:00
			`paramFilters := []*firewallconfigs.ParamFilter{}`
			`if len(params.ParamFiltersJSON) > 0 {`
			`err := json.Unmarshal(params.ParamFiltersJSON, &paramFilters)`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`
			`}`
			`rule.ParamFilters = paramFilters`

实现WAF部分功能 2020-10-08 11:11:37 +08:00			`rule.Operator = params.Operator`
			`rule.Value = params.Value`
			`rule.IsCaseInsensitive = params.Case`

			`if len(params.OptionsJSON) > 0 {`
			`options := []maps.Map{}`
			`err := json.Unmarshal(params.OptionsJSON, &options)`
			`if err != nil {`
			`this.ErrorPage(err)`
			`return`
			`}`

			`rule.CheckpointOptions = map[string]interface{}{}`
			`for _, option := range options {`
[WAF]规则中增加请求Header长度限制和响应Header长度限制 2020-11-18 19:35:32 +08:00			`rule.CheckpointOptions[option.GetString("code")] = option.Get("value")`
实现WAF部分功能 2020-10-08 11:11:37 +08:00			`}`
			`}`

			`// 校验`
			`err := rule.Init()`
			`if err != nil {`
			`this.Fail("校验规则 '" + rule.Param + " " + rule.Operator + " " + rule.Value + "' 失败，原因：" + err.Error())`
			`}`

			`this.Data["rule"] = rule`
			`this.Success()`
			`}`