EdgeCommon/pkg/serverconfigs/firewallconfigs/http_firewall_inbound_config.go

package firewallconfigs

import "github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/ipconfigs"

type HTTPFirewallInboundConfig struct {
	IsOn      bool                        `yaml:"isOn" json:"isOn"`
	GroupRefs []*HTTPFirewallRuleGroupRef `yaml:"groupRefs" json:"groupRefs"`
	Groups    []*HTTPFirewallRuleGroup    `yaml:"groups" json:"groups"`

	// 地区相关
	Region *HTTPFirewallRegionConfig `yaml:"region" json:"region"`

	// IP名单
	WhiteListRef *ipconfigs.IPListRef `yaml:"whiteListRef" json:"whiteListRef"`
	BlackListRef *ipconfigs.IPListRef `yaml:"blackListRef" json:"blackListRef"`
	GreyListRef  *ipconfigs.IPListRef `yaml:"greyListRef" json:"greyListRef"`
}

// 初始化
func (this *HTTPFirewallInboundConfig) Init() error {
	for _, group := range this.Groups {
		err := group.Init()
		if err != nil {
			return err
		}
	}

	if this.Region != nil {
		err := this.Region.Init()
		if err != nil {
			return err
		}
	}

	return nil
}

// 根据Code查找Group
func (this *HTTPFirewallInboundConfig) FindGroupWithCode(code string) *HTTPFirewallRuleGroup {
	for _, group := range this.Groups {
		if group.Code == code {
			return group
		}
	}
	return nil
}

// 删除某个分组
func (this *HTTPFirewallInboundConfig) RemoveRuleGroup(groupId int64) {
	groups := []*HTTPFirewallRuleGroup{}
	refs := []*HTTPFirewallRuleGroupRef{}
	for _, g := range this.Groups {
		if g.Id == groupId {
			continue
		}
		groups = append(groups, g)
	}
	for _, ref := range this.GroupRefs {
		if ref.GroupId == groupId {
			continue
		}
		refs = append(refs, ref)
	}
	this.Groups = groups
	this.GroupRefs = refs
}
实现WAF策略部分功能 2020-10-06 21:02:21 +08:00			`package firewallconfigs`

实现IP名单管理 2020-11-07 19:40:32 +08:00			`import "github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/ipconfigs"`

实现WAF策略部分功能 2020-10-06 21:02:21 +08:00			`type HTTPFirewallInboundConfig struct {`
			IsOn bool `yaml:"isOn" json:"isOn"`
			GroupRefs []*HTTPFirewallRuleGroupRef `yaml:"groupRefs" json:"groupRefs"`
			Groups []*HTTPFirewallRuleGroup `yaml:"groups" json:"groups"`
增加国家/地区封禁管理 2020-11-06 11:02:18 +08:00
			`// 地区相关`
			Region *HTTPFirewallRegionConfig `yaml:"region" json:"region"`
实现IP名单管理 2020-11-07 19:40:32 +08:00
			`// IP名单`
			WhiteListRef *ipconfigs.IPListRef `yaml:"whiteListRef" json:"whiteListRef"`
			BlackListRef *ipconfigs.IPListRef `yaml:"blackListRef" json:"blackListRef"`
			GreyListRef *ipconfigs.IPListRef `yaml:"greyListRef" json:"greyListRef"`
实现WAF策略部分功能 2020-10-06 21:02:21 +08:00			`}`

			`// 初始化`
			`func (this *HTTPFirewallInboundConfig) Init() error {`
			`for _, group := range this.Groups {`
			`err := group.Init()`
			`if err != nil {`
			`return err`
			`}`
			`}`
实现IP黑白名单、国家｜地区封禁、省份封禁 2020-11-09 10:43:47 +08:00
			`if this.Region != nil {`
			`err := this.Region.Init()`
			`if err != nil {`
			`return err`
			`}`
			`}`

实现WAF策略部分功能 2020-10-06 21:02:21 +08:00			`return nil`
			`}`

			`// 根据Code查找Group`
			`func (this HTTPFirewallInboundConfig) FindGroupWithCode(code string) HTTPFirewallRuleGroup {`
			`for _, group := range this.Groups {`
			`if group.Code == code {`
			`return group`
			`}`
			`}`
			`return nil`
			`}`
实现WAF部分功能 2020-10-07 11:18:24 +08:00
			`// 删除某个分组`
			`func (this *HTTPFirewallInboundConfig) RemoveRuleGroup(groupId int64) {`
			`groups := []*HTTPFirewallRuleGroup{}`
			`refs := []*HTTPFirewallRuleGroupRef{}`
			`for _, g := range this.Groups {`
			`if g.Id == groupId {`
			`continue`
			`}`
			`groups = append(groups, g)`
			`}`
			`for _, ref := range this.GroupRefs {`
			`if ref.GroupId == groupId {`
			`continue`
			`}`
			`refs = append(refs, ref)`
			`}`
			`this.Groups = groups`
			`this.GroupRefs = refs`
			`}`