mirror of
https://github.com/TeaOSLab/EdgeAdmin.git
synced 2025-11-04 05:00:25 +08:00
157 lines
3.7 KiB
Go
157 lines
3.7 KiB
Go
package waf
|
|
|
|
import (
|
|
"encoding/json"
|
|
"github.com/TeaOSLab/EdgeAdmin/internal/oplogs"
|
|
"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"
|
|
"github.com/TeaOSLab/EdgeAdmin/internal/web/models"
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
|
|
"github.com/iwind/TeaGo/actions"
|
|
"github.com/iwind/TeaGo/maps"
|
|
"strings"
|
|
)
|
|
|
|
type UpdateSetPopupAction struct {
|
|
actionutils.ParentAction
|
|
}
|
|
|
|
func (this *UpdateSetPopupAction) Init() {
|
|
this.Nav("", "", "")
|
|
}
|
|
|
|
func (this *UpdateSetPopupAction) RunGet(params struct {
|
|
FirewallPolicyId int64
|
|
GroupId int64
|
|
Type string
|
|
SetId int64
|
|
}) {
|
|
// 日志
|
|
defer this.CreateLog(oplogs.LevelInfo, "修改WAF规则集 %d 基本信息", params.SetId)
|
|
|
|
this.Data["groupId"] = params.GroupId
|
|
this.Data["type"] = params.Type
|
|
|
|
firewallPolicy, err := models.SharedHTTPFirewallPolicyDAO.FindEnabledPolicyConfig(this.AdminContext(), params.FirewallPolicyId)
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
return
|
|
}
|
|
if firewallPolicy == nil {
|
|
this.NotFound("firewallPolicy", params.FirewallPolicyId)
|
|
return
|
|
}
|
|
this.Data["firewallPolicy"] = firewallPolicy
|
|
|
|
// 一些配置
|
|
this.Data["connectors"] = []maps.Map{
|
|
{
|
|
"name": "和(AND)",
|
|
"value": firewallconfigs.HTTPFirewallRuleConnectorAnd,
|
|
"description": "所有规则都满足才视为匹配",
|
|
},
|
|
{
|
|
"name": "或(OR)",
|
|
"value": firewallconfigs.HTTPFirewallRuleConnectorOr,
|
|
"description": "任一规则满足了就视为匹配",
|
|
},
|
|
}
|
|
|
|
actionMaps := []maps.Map{}
|
|
for _, action := range firewallconfigs.AllActions {
|
|
actionMaps = append(actionMaps, maps.Map{
|
|
"name": action.Name,
|
|
"description": action.Description,
|
|
"code": action.Code,
|
|
})
|
|
}
|
|
this.Data["actions"] = actionMaps
|
|
|
|
// 规则集信息
|
|
setConfig, err := models.SharedHTTPFirewallRuleSetDAO.FindRuleSetConfig(this.AdminContext(), params.SetId)
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
return
|
|
}
|
|
if setConfig == nil {
|
|
this.NotFound("firewallRuleSet", params.SetId)
|
|
return
|
|
}
|
|
this.Data["setConfig"] = setConfig
|
|
|
|
this.Show()
|
|
}
|
|
|
|
func (this *UpdateSetPopupAction) RunPost(params struct {
|
|
GroupId int64
|
|
SetId int64
|
|
|
|
Name string
|
|
RulesJSON []byte
|
|
Connector string
|
|
Action string
|
|
|
|
Must *actions.Must
|
|
}) {
|
|
// 规则集信息
|
|
setConfig, err := models.SharedHTTPFirewallRuleSetDAO.FindRuleSetConfig(this.AdminContext(), params.SetId)
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
return
|
|
}
|
|
if setConfig == nil {
|
|
this.NotFound("firewallRuleSet", params.SetId)
|
|
return
|
|
}
|
|
|
|
params.Must.
|
|
Field("name", params.Name).
|
|
Require("请输入规则集名称")
|
|
|
|
if len(params.RulesJSON) == 0 {
|
|
this.Fail("请添加至少一个规则")
|
|
}
|
|
rules := []*firewallconfigs.HTTPFirewallRule{}
|
|
err = json.Unmarshal(params.RulesJSON, &rules)
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
}
|
|
if len(rules) == 0 {
|
|
this.Fail("请添加至少一个规则")
|
|
}
|
|
|
|
setConfig.Name = params.Name
|
|
setConfig.Connector = params.Connector
|
|
setConfig.Rules = rules
|
|
setConfig.Action = params.Action
|
|
setConfig.ActionOptions = maps.Map{}
|
|
|
|
for k, v := range this.ParamsMap {
|
|
if len(v) == 0 {
|
|
continue
|
|
}
|
|
index := strings.Index(k, "action_")
|
|
if index > -1 {
|
|
setConfig.ActionOptions[k[len("action_"):]] = v[0]
|
|
}
|
|
}
|
|
|
|
setConfigJSON, err := json.Marshal(setConfig)
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
return
|
|
}
|
|
|
|
_, err = this.RPC().HTTPFirewallRuleSetRPC().CreateOrUpdateHTTPFirewallRuleSetFromConfig(this.AdminContext(), &pb.CreateOrUpdateHTTPFirewallRuleSetFromConfigRequest{FirewallRuleSetConfigJSON: setConfigJSON})
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
return
|
|
}
|
|
if err != nil {
|
|
this.ErrorPage(err)
|
|
return
|
|
}
|
|
|
|
this.Success()
|
|
}
|