EdgeCommon/pkg/serverconfigs/firewallconfigs/http_firewall_action_utils.go

package firewallconfigs

import (
	"reflect"
)

var AllActions = []*HTTPFirewallActionDefinition{
	{
		Name:        "显示网页",
		Code:        HTTPFirewallActionPage,
		Description: "显示请求被拦截的网页。",
		Category:    HTTPFirewallActionCategoryBlock,
	},
	{
		Name:        "阻止",
		Code:        HTTPFirewallActionBlock,
		Description: "阻止请求并中断当前连接，并自动将当前客户端IP加入到系统黑名单；使用此动作时，请先自行严格测试设置的规则是否正确，避免因错误封禁而导致用户无法正常访问的严重后果！",
		Category:    HTTPFirewallActionCategoryBlock,
	},
	{
		Name:        "Captcha人机识别",
		Code:        HTTPFirewallActionCaptcha,
		Description: "在浏览器使用人机识别机制（比如验证码）来验证客户端。",
		Category:    HTTPFirewallActionCategoryVerify,
	},
	{
		Name:        "JS Cookie验证",
		Code:        HTTPFirewallActionJavascriptCookie,
		Description: "首次访问网站时通过Javascript设置Cookie来验证请求。",
		Category:    HTTPFirewallActionCategoryVerify,
	},
	{
		Name:        "记录IP",
		Code:        HTTPFirewallActionRecordIP,
		Description: "将此IP记录到某个IP名单中。",
		Category:    HTTPFirewallActionCategoryBlock,
	},
	{
		Name:        "跳转",
		Code:        HTTPFirewallActionRedirect,
		Description: "跳转到新的URL。",
		Category:    HTTPFirewallActionCategoryBlock,
	},
	{
		Name:        "允许通过",
		Code:        HTTPFirewallActionAllow,
		Description: "允许跳过规则集正常通过防火墙。",
		Category:    HTTPFirewallActionCategoryAllow,
	},
	{
		Name:        "允许并记录日志",
		Code:        HTTPFirewallActionLog,
		Description: "允许正常通过并记录到日志。",
		Category:    HTTPFirewallActionCategoryAllow,
	},
	{
		Name:        "标签",
		Code:        HTTPFirewallActionTag,
		Description: "为匹配的请求打上标签。",
		Category:    HTTPFirewallActionCategoryAllow,
	},
	{
		Name:        "告警",
		Code:        HTTPFirewallActionNotify,
		Description: "向集群的消息接收人发送消息通知（商业版）。",
		Category:    HTTPFirewallActionCategoryVerify,
	},
	{
		Name:        "GET 302",
		Code:        HTTPFirewallActionGet302,
		Description: "通过302重定向GET请求验证客户端真实性。",
		Category:    HTTPFirewallActionCategoryVerify,
	},
	{
		Name:        "POST 307",
		Code:        HTTPFirewallActionPost307,
		Description: "通过307重定向POST请求验证客户端真实性。",
		Category:    HTTPFirewallActionCategoryVerify,
	},
	{
		Name:     "跳到下一个规则分组",
		Code:     HTTPFirewallActionGoGroup,
		Type:     reflect.TypeOf(new(HTTPFirewallGoGroupAction)).Elem(),
		Category: HTTPFirewallActionCategoryVerify,
	},
	{
		Name:     "跳到下一个规则集",
		Code:     HTTPFirewallActionGoSet,
		Type:     reflect.TypeOf(new(HTTPFirewallGoSetAction)).Elem(),
		Category: HTTPFirewallActionCategoryVerify,
	},
}

func FindActionDefinition(actionCode HTTPFirewallActionString) *HTTPFirewallActionDefinition {
	for _, def := range AllActions {
		if def.Code == actionCode {
			return def
		}
	}
	return nil
}
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+								package firewallconfigs
 								import (
 									"reflect"
 								)
 								var AllActions = []*HTTPFirewallActionDefinition{
-												WAF策略增加显示页面动作默认设置

											
										
										
											2024-01-20 16:18:49 +08:00
+									{
 										Name:        "显示网页",
 										Code:        HTTPFirewallActionPage,
 										Description: "显示请求被拦截的网页。",
 										Category:    HTTPFirewallActionCategoryBlock,
 									},
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									{
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Name:        "阻止",
 										Code:        HTTPFirewallActionBlock,
-												优化WAF“阻止”动作的文字提示

											
										
										
											2023-12-24 10:13:37 +08:00
+										Description: "阻止请求并中断当前连接，并自动将当前客户端IP加入到系统黑名单；使用此动作时，请先自行严格测试设置的规则是否正确，避免因错误封禁而导致用户无法正常访问的严重后果！",
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Category:    HTTPFirewallActionCategoryBlock,
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									},
-												增加Javascript Cookie验证

											
										
										
											2022-08-25 15:36:01 +08:00
+									{
-												WAF人机识别实现点击验证和滑动解锁验证/单个网站可以设置默认的人机识别方式

											
										
										
											2023-11-15 15:12:08 +08:00
+										Name:        "Captcha人机识别",
-												增加Javascript Cookie验证

											
										
										
											2022-08-25 15:36:01 +08:00
+										Code:        HTTPFirewallActionCaptcha,
-												WAF人机识别实现点击验证和滑动解锁验证/单个网站可以设置默认的人机识别方式

											
										
										
											2023-11-15 15:12:08 +08:00
+										Description: "在浏览器使用人机识别机制（比如验证码）来验证客户端。",
-												增加Javascript Cookie验证

											
										
										
											2022-08-25 15:36:01 +08:00
+										Category:    HTTPFirewallActionCategoryVerify,
 									},
 									{
 										Name:        "JS Cookie验证",
 										Code:        HTTPFirewallActionJavascriptCookie,
-												优化JS Cookie验证文字提示

											
										
										
											2022-08-25 16:03:18 +08:00
+										Description: "首次访问网站时通过Javascript设置Cookie来验证请求。",
-												增加Javascript Cookie验证

											
										
										
											2022-08-25 15:36:01 +08:00
+										Category:    HTTPFirewallActionCategoryVerify,
 									},
 									{
 										Name:        "记录IP",
 										Code:        HTTPFirewallActionRecordIP,
 										Description: "将此IP记录到某个IP名单中。",
 										Category:    HTTPFirewallActionCategoryBlock,
 									},
-												WAF增加“跳转”动作

											
										
										
											2023-05-28 17:45:39 +08:00
+									{
 										Name:        "跳转",
 										Code:        HTTPFirewallActionRedirect,
 										Description: "跳转到新的URL。",
 										Category:    HTTPFirewallActionCategoryBlock,
 									},
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									{
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Name:        "允许通过",
 										Code:        HTTPFirewallActionAllow,
-												WAF允许ALLOW动作增加有效范围

											
										
										
											2024-01-20 21:26:21 +08:00
+										Description: "允许跳过规则集正常通过防火墙。",
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Category:    HTTPFirewallActionCategoryAllow,
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									},
 									{
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Name:        "允许并记录日志",
 										Code:        HTTPFirewallActionLog,
 										Description: "允许正常通过并记录到日志。",
 										Category:    HTTPFirewallActionCategoryAllow,
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									},
 									{
-												增加Javascript Cookie验证

											
										
										
											2022-08-25 15:36:01 +08:00
+										Name:        "标签",
 										Code:        HTTPFirewallActionTag,
 										Description: "为匹配的请求打上标签。",
 										Category:    HTTPFirewallActionCategoryAllow,
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									},
 									{
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Name:        "告警",
 										Code:        HTTPFirewallActionNotify,
-												增加Javascript Cookie验证

											
										
										
											2022-08-25 15:36:01 +08:00
+										Description: "向集群的消息接收人发送消息通知（商业版）。",
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Category:    HTTPFirewallActionCategoryVerify,
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									},
 									{
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Name:        "GET 302",
 										Code:        HTTPFirewallActionGet302,
-												WAF增加多个动作

											
										
										
											2021-07-18 16:26:45 +08:00
+										Description: "通过302重定向GET请求验证客户端真实性。",
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Category:    HTTPFirewallActionCategoryVerify,
 									},
 									{
 										Name:        "POST 307",
 										Code:        HTTPFirewallActionPost307,
-												WAF增加多个动作

											
										
										
											2021-07-18 16:26:45 +08:00
+										Description: "通过307重定向POST请求验证客户端真实性。",
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										Category:    HTTPFirewallActionCategoryVerify,
 									},
 									{
 										Name:     "跳到下一个规则分组",
 										Code:     HTTPFirewallActionGoGroup,
 										Type:     reflect.TypeOf(new(HTTPFirewallGoGroupAction)).Elem(),
 										Category: HTTPFirewallActionCategoryVerify,
 									},
 									{
 										Name:     "跳到下一个规则集",
 										Code:     HTTPFirewallActionGoSet,
 										Type:     reflect.TypeOf(new(HTTPFirewallGoSetAction)).Elem(),
 										Category: HTTPFirewallActionCategoryVerify,
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									},
 								}
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+								func FindActionDefinition(actionCode HTTPFirewallActionString) *HTTPFirewallActionDefinition {
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+									for _, def := range AllActions {
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+										if def.Code == actionCode {
 											return def
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+										}
 									}
-												WAF支持更多动作

											
										
										
											2021-07-14 22:46:31 +08:00
+									return nil
-												实现WAF策略部分功能

											
										
										
											2020-10-06 21:02:21 +08:00
+								}