Cavemanon/haproxy-protection
9
Fork 0
mirror of https://gitgud.io/fatchan/haproxy-protection.git synced 2025-05-09 02:05:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
283 Commits 2 Branches 1 Tag
241c04a1b2c808a8815c6ad6c8fe5389d0587c82
Commit Graph

144 Commits

Author SHA1 Message Date
Thomas Lynch
241c04a1b2 Add health check setup in server registration 
Add observe layer4 inter to default server line
Fix 3rd nginx and update docker-compose
Remove x-haproxy-cn header fetch because it only needs to be a static fetch of haproxy_cn, since the logic overwrite it to be equivalent
 2025-03-28 21:27:21 +11:00
Thomas Lynch
a65d7b90d1 update example maps 2025-03-16 23:03:50 +11:00
Thomas Lynch
842df64c5e Update haproxy dockerfile for newer lua and fix ca-certificate installation 
Add verify_none option in server registration (for development testing of SSL backends)
 2025-03-16 22:49:00 +11:00
Thomas Lynch
30eb129bd8 Push ssl testing 2025-03-16 15:55:49 +11:00
Thomas Lynch
488eb02210 Fix some issues with runtime socket because geo server splitting used invalid character 
Add additional challenge, not enabled yet
 2025-03-16 14:08:39 +11:00
Thomas Lynch
6f10291892 First iteration of working geo routing 2025-03-15 17:31:20 +11:00
Thomas Lynch
84ddfbc719 Add geo routing to different backends for same domain 2025-03-15 12:45:22 +11:00
Thomas Lynch
c0a2f77f8b Read from ddos_config table to determine if nojs script should be shown (allowing to be disabled per domain or path 2025-03-09 23:06:59 +11:00
Thomas Lynch
bbec69b89b Remove redundant and fix forwarded IP in varnish config 
Skip unnecessary methods in haproxy instead of giving extra work to varnish (kept the check in vcl)
 2024-11-29 15:19:11 +11:00
Thomas Lynch
0016aa5204 Clean up some sockets locations 
Remove vcl_init for secret initialisation
 2024-11-13 14:20:50 +11:00
Thomas Lynch
ad659aa1c5 server name typo 2024-11-12 20:00:14 +11:00
Thomas Lynch
f233c1f06d Switch to unix sockets for varnish<->haproxy comms 
Remove some cruft from old caching
 2024-11-12 19:58:38 +11:00
Thomas Lynch
0d5e39cad1 Implement varnish for caching alongside haproxy, remove using internal haproxy cache 2024-11-12 18:41:02 +11:00
Thomas Lynch
f6e1adf1c5 clear css map 2024-10-21 18:11:28 +11:00
Thomas Lynch
7e44a236a1 Add the custom css map (for bot-check page so far) 2024-10-21 00:07:03 +11:00
Thomas Lynch
c2074eec5f Precompute captcha section on startup since its based on (what) an ENV 
Remove unused captcha_backend_name and captcha backend in config, not needed since haproxy 2.7
 2024-09-16 22:30:00 +10:00
Thomas Lynch
f7dc984d60 Testing new ACLs for query string 2024-07-11 21:09:24 +10:00
Thomas Lynch
f6ec537cb0 Test another stick table, track req.query 2024-07-07 23:03:11 +10:00
Thomas Lynch
53a679fc76 add missing global configs for master-worker mode and crt base 2024-06-30 22:36:54 +10:00
Thomas Lynch
5e60a42383 Bump haproxy to 3.0 in docker build 2024-06-11 15:23:33 +10:00
Thomas Lynch
25f702d157 Add ACL so alt-svc header is only sent when geo continent not matching server env 2024-01-28 17:44:07 +11:00
Thomas Lynch
3f1852dd1b Add env var example for maxconn and cache total-max-size 2023-10-19 21:34:02 +11:00
Thomas Lynch
1dd69fd924 Add geo blocking for country and continent, changes get_ip_var lua script section to use two tables 2023-10-15 18:13:52 +11:00
Thomas Lynch
e36add4ee7 Add asn blocking 2023-09-09 21:39:45 +10:00
Thomas Lynch
93cac69798 Make blocked and whitelist maps multi tenant 2023-09-07 16:47:21 +10:00
Thomas Lynch
d687e54d17 Test with updated dataplaneapi for map fix and exclusing backends in sync, change to .yml, and empty backends map 2023-09-03 01:16:14 +10:00
Thomas Lynch
96fef80694 add maps for upcoming vpn and asn handling 2023-09-02 22:18:47 +10:00
Thomas Lynch
bdd2213c6b haproxy 2.8 dockerfile, remove testing cert, change ddos map for json testing 2023-06-15 22:02:42 +10:00
Thomas Lynch
eb82a3d391 ne wjson map format for excluding exits 2023-06-15 22:01:53 +10:00
Thomas Lynch
1df8277ee2 Bugfix to declaration of crawler whitelist map, reduce difficulty for testing 2023-06-10 12:51:56 +10:00
Thomas Lynch
ab5614e702 Revert dockerfile because 2.8 and http/3 still has some issues with lua 2023-06-08 00:14:25 +10:00
Thomas Lynch
b70fd56201 Test with http3 quic and updated dockerfile with haproxy 2.8 2023-06-08 00:00:05 +10:00
Thomas Lynch
b109e0caf0 Bugfix 400/429 errorfiles 2023-06-04 17:05:36 +10:00
Thomas Lynch
10c875e689 update config for crawler-whitelist, cleanup a few things in the example 2023-06-04 13:04:13 +10:00
Thomas Lynch
2ec52e804d update dataplaneapi in Dockerfile for testing 2023-06-04 12:52:11 +10:00
Thomas Lynch
fa4680aaa6 Add translation json_query vars to error pages thanks to @l29utp0 2023-06-04 12:51:34 +10:00
Thomas Lynch
22b6b4795e WIP of configurable challenge settings per-domain with a ddos_config map and handling 2023-05-21 20:13:23 +10:00
Thomas Lynch
14922d7e2f Refactor fetching header for difference between applet and transaction mode. 
Improve locale_strings map by re json.encode.
Add method to put translation jsons into txn var and read with a json_query fetch inside template files not served by a lua view e.g. maintenance page
 2023-05-21 15:18:55 +10:00
Thomas Lynch
35defc8238 update maintenance page to have icon and change title style 2023-04-29 19:48:44 +10:00
Thomas Lynch
88ba9f264b add /.basedflare/pow-icon (useful with rewrite for custom loading image) 2023-04-29 15:43:35 +10:00
Thomas Lynch
f1cf3f6390 frontend js translations 2023-04-20 21:23:50 +10:00
Thomas Lynch
93c01c05c5 Update redirect to new redirect and rewrite 
Add example geoip config
Add example alt-svc config
Update README
 2023-04-19 21:04:44 +10:00
Thomas Lynch
5fd4ae842c Add new (optional) auto script to be optionally included in frontend sites, will auto solve POW when low time left 
Allow bot-check to return json format to be compatible with that
Update challenge script
 2023-04-14 01:42:56 +10:00
Thomas Lynch
a6f3613b6a More concise wording, offer a .min.js for scripts 2023-04-11 21:13:25 +10:00
Thomas Lynch
8b361f89c5 Image on bot-check adn css tweak, change footers to basedflare link in template, maintenance, bot-check 2023-04-10 17:48:44 +10:00
Thomas Lynch
e46b223759 add x-country code in cgi template.txt 2023-04-08 00:16:31 +10:00
Thomas Lynch
40da57544a Support multiple backends per domain with the help of some lua 2023-04-06 22:40:03 +10:00
Thomas Lynch
3e75fafd38 update cgi/trace template 2023-03-23 01:09:56 +11:00
Thomas Lynch
94567f69ff Improve appearance and affordance of challenge pages with some template and js tweaks 2023-03-19 13:07:41 +11:00
Thomas Lynch
9478892614 Allow proper ssl verification for backends (With a privately managed CA of course) 2023-03-18 15:21:21 +11:00