Cavemanon/haproxy-protection
8
Fork 0
mirror of https://gitgud.io/fatchan/haproxy-protection.git synced 2025-05-09 02:05:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

charset=utf8 to some service repsonses, "ray id" show in captcha page

Browse Source
This commit is contained in:
Thomas Lynch
2021-11-25 18:20:31 +11:00
parent 85b0d6cd52
commit c16a554754
2 changed files with 11 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
docker-compose.yml
View File

@ -15,6 +15,7 @@ services:
- HCAPTCHA_SITEKEY= - HCAPTCHA_SITEKEY=
- CAPTCHA_COOKIE_SECRET= - CAPTCHA_COOKIE_SECRET=
- POW_COOKIE_SECRET= - POW_COOKIE_SECRET=
- RAY_ID=
nginx: nginx:
image: "nginx:latest" image: "nginx:latest"
volumes: volumes:

16
src/scripts/hcaptcha.lua
View File

@ -11,6 +11,7 @@ local captcha_secret = os.getenv("HCAPTCHA_SECRET")
local captcha_sitekey = os.getenv("HCAPTCHA_SITEKEY") local captcha_sitekey = os.getenv("HCAPTCHA_SITEKEY")
local hcaptcha_cookie_secret = os.getenv("CAPTCHA_COOKIE_SECRET") local hcaptcha_cookie_secret = os.getenv("CAPTCHA_COOKIE_SECRET")
local pow_cookie_secret = os.getenv("POW_COOKIE_SECRET") local pow_cookie_secret = os.getenv("POW_COOKIE_SECRET")
local ray_id = os.getenv("RAY_ID")
local captcha_provider_domain = "hcaptcha.com" local captcha_provider_domain = "hcaptcha.com"
@ -37,7 +38,7 @@ local body_template = [[
body,html{height:100%%} body,html{height:100%%}
body{display:flex;flex-direction:column;background-color:var(--bg-color);color:var(--text-color);font-family:Helvetica,Arial,sans-serif;text-align:center;margin:0} body{display:flex;flex-direction:column;background-color:var(--bg-color);color:var(--text-color);font-family:Helvetica,Arial,sans-serif;text-align:center;margin:0}
h3,p{margin:3px} h3,p{margin:3px}
footer{font-size:small;margin-top:auto;margin-bottom:50px}h3{padding-top:25vh} footer{font-size:small;margin-top:auto;margin-bottom:50px}h3{padding-top:30vh}
</style> </style>
<noscript> <noscript>
<style>.jsonly{display:none}</style> <style>.jsonly{display:none}</style>
@ -50,7 +51,10 @@ local body_template = [[
<noscript> <noscript>
<p class="red">JavaScript is required on this page.</p> <p class="red">JavaScript is required on this page.</p>
</noscript> </noscript>
<footer>Supported by <a href="https://kikeflare.com">KikeFlare</a></footer> <footer>
<p>Protection by <a href="https://kikeflare.com">KikeFlare</a></p>
<p>Vey ID: <code>%s</code></p>
</footer>
<script src="/js/sha1.js"></script> <script src="/js/sha1.js"></script>
</body> </body>
</html> </html>
@ -93,10 +97,11 @@ function _M.view(applet)
else else
pow_body = pow_section_template pow_body = pow_section_template
end end
response_body = string.format(body_template, generated_work, pow_body, captcha_body) -- local your_ip = applet.sf:src()
response_body = string.format(body_template, generated_work, pow_body, captcha_body, ray_id)
response_status_code = 403 response_status_code = 403
applet:set_status(response_status_code) applet:set_status(response_status_code)
applet:add_header("content-type", "text/html") applet:add_header("content-type", "text/html; charset=utf-8")
applet:add_header("content-length", string.len(response_body)) applet:add_header("content-length", string.len(response_body))
applet:start_response() applet:start_response()
applet:send(response_body) applet:send(response_body)
@ -129,7 +134,7 @@ function _M.view(applet)
response_status_code = 302 response_status_code = 302
applet:add_header("location", applet.qs) applet:add_header("location", applet.qs)
applet:set_status(response_status_code) applet:set_status(response_status_code)
applet:add_header("content-type", "text/html") applet:add_header("content-type", "text/html; charset=utf-8")
applet:add_header("content-length", string.len(response_body)) applet:add_header("content-length", string.len(response_body))
applet:start_response() applet:start_response()
applet:send(response_body) applet:send(response_body)
@ -152,7 +157,6 @@ function _M.check_pow_status(txn)
local iterations = parsed_request_cookies["z_ddos_pow"] local iterations = parsed_request_cookies["z_ddos_pow"]
local completed_work = sha.sha1(generated_work .. iterations) local completed_work = sha.sha1(generated_work .. iterations)
local challenge_offset = tonumber(generated_work:sub(1,1),16) * 2 local challenge_offset = tonumber(generated_work:sub(1,1),16) * 2
--core.Debug(completed_work:sub(challenge_offset+1, challenge_offset+4))
if completed_work:sub(challenge_offset+1, challenge_offset+4) == 'b00b' then -- i dont know lua properly :^) if completed_work:sub(challenge_offset+1, challenge_offset+4) == 'b00b' then -- i dont know lua properly :^)
return txn:set_var("txn.pow_passed", true) return txn:set_var("txn.pow_passed", true)
end end