Cavemanon/haproxy-protection
8
Fork 0
mirror of https://gitgud.io/fatchan/haproxy-protection.git synced 2025-05-09 02:05:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
230 Commits 2 Branches 1 Tag
4c473532f6863ea6918d42216fe7717062e7b6ac
Commit Graph

20 Commits

Author SHA1 Message Date
Thomas Lynch
4c473532f6 Set proper expiry date based on ddos config cex or default 2023-12-14 23:42:46 +11:00
Thomas Lynch
1dd69fd924 Add geo blocking for country and continent, changes get_ip_var lua script section to use two tables 2023-10-15 18:13:52 +11:00
Thomas Lynch
bf3e2571c1 Run set_lang_json internally on match to blocking map 2023-09-10 22:08:57 +10:00
Thomas Lynch
e36add4ee7 Add asn blocking 2023-09-09 21:39:45 +10:00
Thomas Lynch
93cac69798 Make blocked and whitelist maps multi tenant 2023-09-07 16:47:21 +10:00
Thomas Lynch
a82483224b Fix issue with pplet.qs taking whole query but not parsing the path out of it for the map loopup, caused issues with selecting captcha mode 2023-08-06 17:45:52 +10:00
Thomas Lynch
eb82a3d391 ne wjson map format for excluding exits 2023-06-15 22:01:53 +10:00
Thomas Lynch
22b6b4795e WIP of configurable challenge settings per-domain with a ddos_config map and handling 2023-05-21 20:13:23 +10:00
Thomas Lynch
14922d7e2f Refactor fetching header for difference between applet and transaction mode. 
Improve locale_strings map by re json.encode.
Add method to put translation jsons into txn var and read with a json_query fetch inside template files not served by a lua view e.g. maintenance page
 2023-05-21 15:18:55 +10:00
Thomas Lynch
c93ca7f16c Remove . prefix on cookie domain 2023-04-29 23:02:13 +10:00
Thomas Lynch
32c5e2dfca Fix using incorrect prompt for noscript sha256 vs argon2 2023-04-29 22:57:34 +10:00
Thomas Lynch
f1cf3f6390 frontend js translations 2023-04-20 21:23:50 +10:00
Thomas Lynch
2af32627eb Start on localisation ref #22 2023-04-19 23:08:15 +10:00
Thomas Lynch
5fd4ae842c Add new (optional) auto script to be optionally included in frontend sites, will auto solve POW when low time left 
Allow bot-check to return json format to be compatible with that
Update challenge script
 2023-04-14 01:42:56 +10:00
Thomas Lynch
3cc7482084 Fully convert to data plane api 
Change global ACL to a map to realtime update with data plane api
Change how on setartup servers are registered in lua
 2023-02-18 15:14:40 +11:00
Thomas Lynch
87f66479d8 - Change to using domain instead of resolving, because cloudflare blocked this even with the host header, and haproxy 2.7 appears to no longer need this 'hack' 
- Fix issue with matched_expiry being 0 and breaking captcha cookie
- Spacing
 2023-02-13 21:59:02 +11:00
Thomas Lynch
f231b86544 Ability to choose between sha256 or argon2 with env var close #21 2023-02-11 23:38:59 +11:00
Thomas Lynch
9531049aa9 Update haproxy config, scripts & docker-compose to use simpler mroe organised files layout 
Make cookies sent from captcha/pow response be httponly
 2023-02-11 21:39:38 +11:00
Thomas Lynch
6e5cf2af31 Make cookie expiry based on issued expiry date from challenge date instead of all expiring on bucket. 
Fixes potential issue of challenges being incorrect if solved right on the bucket change
Allows to solve a challenge at any time (even in the background) and not see the challenge page twice in a small period
Allows for backend to make dynamic expiry of tokens e.g make tor tokens or based on IP reputation not last as long (not implemented atm)
Close #20
 2023-02-11 20:57:21 +11:00
Thomas Lynch
08a966c121 Reorganise, move code to not be split between haproxy and src folder 2023-02-11 15:06:35 +11:00