TRKJ/EdgeCommon
2
0
Fork 0
mirror of https://github.com/TeaOSLab/EdgeCommon.git synced 2025-11-07 15:20:24 +08:00
Code Issues Packages Projects Releases Wiki Activity

WAF国家/地区封禁、省份封禁增加例外URL、限制URL

Browse Source
This commit is contained in:
GoEdgeLab
2023-05-25 12:02:25 +08:00
parent c74861a1ad
commit 67d3f2eb5c
1 changed files with 81 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

81
pkg/serverconfigs/firewallconfigs/http_firewall_region_config.go
View File

@@ -1,18 +1,99 @@
package firewallconfigs package firewallconfigs
import "github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/shared"
type HTTPFirewallRegionConfig struct { type HTTPFirewallRegionConfig struct {
IsOn bool `yaml:"isOn" json:"isOn"` IsOn bool `yaml:"isOn" json:"isOn"`
DenyCountryIds []int64 `yaml:"denyCountryIds" json:"denyCountryIds"` // 封禁的国家|地区 DenyCountryIds []int64 `yaml:"denyCountryIds" json:"denyCountryIds"` // 封禁的国家|地区
DenyProvinceIds []int64 `yaml:"denyProvinceIds" json:"denyProvinceIds"` // 封禁的省或自治区 DenyProvinceIds []int64 `yaml:"denyProvinceIds" json:"denyProvinceIds"` // 封禁的省或自治区
CountryOnlyURLPatterns []*shared.URLPattern `yaml:"countryOnlyURLPatterns" json:"countryOnlyURLPatterns"` // 仅限的URL
CountryExceptURLPatterns []*shared.URLPattern `yaml:"countryExceptURLPatterns" json:"countryExceptURLPatterns"` // 排除的URL
ProvinceOnlyURLPatterns []*shared.URLPattern `yaml:"provinceOnlyURLPatterns" json:"provinceOnlyURLPatterns"` // 仅限的URL
ProvinceExceptURLPatterns []*shared.URLPattern `yaml:"provinceExceptURLPatterns" json:"provinceExceptURLPatterns"` // 排除的URL
isNotEmpty bool isNotEmpty bool
} }
func (this *HTTPFirewallRegionConfig) Init() error { func (this *HTTPFirewallRegionConfig) Init() error {
this.isNotEmpty = len(this.DenyCountryIds) > 0 || len(this.DenyProvinceIds) > 0 this.isNotEmpty = len(this.DenyCountryIds) > 0 || len(this.DenyProvinceIds) > 0
for _, pattern := range this.CountryExceptURLPatterns {
err := pattern.Init()
if err != nil {
return err
}
}
for _, pattern := range this.CountryOnlyURLPatterns {
err := pattern.Init()
if err != nil {
return err
}
}
for _, pattern := range this.ProvinceExceptURLPatterns {
err := pattern.Init()
if err != nil {
return err
}
}
for _, pattern := range this.ProvinceOnlyURLPatterns {
err := pattern.Init()
if err != nil {
return err
}
}
return nil return nil
} }
func (this *HTTPFirewallRegionConfig) IsNotEmpty() bool { func (this *HTTPFirewallRegionConfig) IsNotEmpty() bool {
return this.isNotEmpty return this.isNotEmpty
} }
func (this *HTTPFirewallRegionConfig) MatchCountryURL(url string) bool {
// except
if len(this.CountryExceptURLPatterns) > 0 {
for _, pattern := range this.CountryExceptURLPatterns {
if pattern.Match(url) {
return false
}
}
}
if len(this.CountryOnlyURLPatterns) > 0 {
for _, pattern := range this.CountryOnlyURLPatterns {
if pattern.Match(url) {
return true
}
}
return false
}
return true
}
func (this *HTTPFirewallRegionConfig) MatchProvinceURL(url string) bool {
// except
if len(this.ProvinceExceptURLPatterns) > 0 {
for _, pattern := range this.ProvinceExceptURLPatterns {
if pattern.Match(url) {
return false
}
}
}
if len(this.ProvinceOnlyURLPatterns) > 0 {
for _, pattern := range this.ProvinceOnlyURLPatterns {
if pattern.Match(url) {
return true
}
}
return false
}
return true
}