Cavemanon/haproxy-protection
8
Fork 0
mirror of https://gitgud.io/fatchan/haproxy-protection.git synced 2025-05-09 02:05:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
281 Commits 2 Branches 1 Tag
fca0eb03b891c3d2a834d1d8b7a39e6a85f3d28b
Commit Graph

58 Commits

Author SHA1 Message Date
Thomas Lynch
fca0eb03b8 Fix the fetch context in server selection not having txn.cdn available, pull from header directly instead 2025-03-17 19:06:28 +11:00
Thomas Lynch
842df64c5e Update haproxy dockerfile for newer lua and fix ca-certificate installation 
Add verify_none option in server registration (for development testing of SSL backends)
 2025-03-16 22:49:00 +11:00
Thomas Lynch
fdbd19ba30 Remove debug prints 2025-03-16 15:57:56 +11:00
Thomas Lynch
488eb02210 Fix some issues with runtime socket because geo server splitting used invalid character 
Add additional challenge, not enabled yet
 2025-03-16 14:08:39 +11:00
Thomas Lynch
6f10291892 First iteration of working geo routing 2025-03-15 17:31:20 +11:00
Thomas Lynch
84ddfbc719 Add geo routing to different backends for same domain 2025-03-15 12:45:22 +11:00
Thomas Lynch
c0a2f77f8b Read from ddos_config table to determine if nojs script should be shown (allowing to be disabled per domain or path 2025-03-09 23:06:59 +11:00
Thomas Lynch
2011f60377 Fix some variables to be local scope instead of globals 2025-01-19 00:23:23 +11:00
Thomas Lynch
413deac66b Change bot-check cookie to Lax because that only breaks cross-site navigations without providing any real securit ybenefit 2024-12-08 12:41:53 +11:00
Thomas Lynch
923957d0e7 Change variable to table map name, for checking against whitelist for admin bypass 2024-11-30 03:55:40 +11:00
Thomas Lynch
ba05a88ca8 Allow admin accounts whitelists to bypass for all domains even if not matching in domtoacc map 2024-11-29 15:22:08 +11:00
Thomas Lynch
6643e3f7db default to empty string if nil map lookup in css map 2024-10-21 18:14:53 +11:00
Thomas Lynch
7e44a236a1 Add the custom css map (for bot-check page so far) 2024-10-21 00:07:03 +11:00
Thomas Lynch
f9a3798edb Escape first %s in string format, no need to template in %s... 2024-09-17 21:15:59 +10:00
Thomas Lynch
89ff3637d4 Add an optional USE_INTER_FONT to insert inter css tags and extra css for font 
Separate css out into variable to template into body template with first stage template compile
 2024-09-17 21:15:04 +10:00
Thomas Lynch
c2074eec5f Precompute captcha section on startup since its based on (what) an ENV 
Remove unused captcha_backend_name and captcha backend in config, not needed since haproxy 2.7
 2024-09-16 22:30:00 +10:00
Thomas Lynch
45f81f96ae Optimizations, remove a call to string.format, remove an if in else/if for deciding pow and/or captcha check 2024-09-16 21:00:20 +10:00
Thomas Lynch
f1d827f3b3 Improve red class, make not fullwidth and left aligned text 2024-08-15 23:06:22 +10:00
Thomas Lynch
7ab93e33e7 minify bot check page css 2024-08-15 22:56:30 +10:00
Thomas Lynch
c29a14ffd8 Remove updateelem calls to hide some unnecessary messages in frontend scripts 
Update spacing of some elements on bot check page
 2024-08-15 22:50:29 +10:00
Thomas Lynch
ba62d322a4 Update bot-check page styling 2024-08-15 22:45:17 +10:00
Thomas Lynch
a0ff482b17 Cleanup server registration and fix for Haproxy 3.0 because newline delimited commands are rejected. Now must be separated by semicolon. 2024-07-11 21:10:03 +10:00
Thomas Lynch
33f9e76c4f Set cookie expiry properly instead of lasting forever 2023-12-15 00:02:23 +11:00
Thomas Lynch
4c473532f6 Set proper expiry date based on ddos config cex or default 2023-12-14 23:42:46 +11:00
Thomas Lynch
1dd69fd924 Add geo blocking for country and continent, changes get_ip_var lua script section to use two tables 2023-10-15 18:13:52 +11:00
Thomas Lynch
2f9823bf51 Adjust lua get_server_names 2023-09-18 23:14:32 +10:00
Thomas Lynch
bf3e2571c1 Run set_lang_json internally on match to blocking map 2023-09-10 22:08:57 +10:00
Thomas Lynch
e36add4ee7 Add asn blocking 2023-09-09 21:39:45 +10:00
Thomas Lynch
93cac69798 Make blocked and whitelist maps multi tenant 2023-09-07 16:47:21 +10:00
Thomas Lynch
2e2e532ea8 Add some more debug logging to register-servers, found the issue 2023-09-02 22:18:04 +10:00
Thomas Lynch
c28e4d438e Remove unnecessary code in getpath method 2023-08-06 19:22:09 +10:00
Thomas Lynch
a82483224b Fix issue with pplet.qs taking whole query but not parsing the path out of it for the map loopup, caused issues with selecting captcha mode 2023-08-06 17:45:52 +10:00
Thomas Lynch
eb82a3d391 ne wjson map format for excluding exits 2023-06-15 22:01:53 +10:00
Thomas Lynch
22b6b4795e WIP of configurable challenge settings per-domain with a ddos_config map and handling 2023-05-21 20:13:23 +10:00
Thomas Lynch
14922d7e2f Refactor fetching header for difference between applet and transaction mode. 
Improve locale_strings map by re json.encode.
Add method to put translation jsons into txn var and read with a json_query fetch inside template files not served by a lua view e.g. maintenance page
 2023-05-21 15:18:55 +10:00
Thomas Lynch
c93ca7f16c Remove . prefix on cookie domain 2023-04-29 23:02:13 +10:00
Thomas Lynch
32c5e2dfca Fix using incorrect prompt for noscript sha256 vs argon2 2023-04-29 22:57:34 +10:00
Thomas Lynch
88ba9f264b add /.basedflare/pow-icon (useful with rewrite for custom loading image) 2023-04-29 15:43:35 +10:00
Thomas Lynch
f1cf3f6390 frontend js translations 2023-04-20 21:23:50 +10:00
Thomas Lynch
2af32627eb Start on localisation ref #22 2023-04-19 23:08:15 +10:00
Thomas Lynch
5e2943064a Move ...s in template 2023-04-14 01:44:52 +10:00
Thomas Lynch
5fd4ae842c Add new (optional) auto script to be optionally included in frontend sites, will auto solve POW when low time left 
Allow bot-check to return json format to be compatible with that
Update challenge script
 2023-04-14 01:42:56 +10:00
Thomas Lynch
a6f3613b6a More concise wording, offer a .min.js for scripts 2023-04-11 21:13:25 +10:00
Thomas Lynch
8b361f89c5 Image on bot-check adn css tweak, change footers to basedflare link in template, maintenance, bot-check 2023-04-10 17:48:44 +10:00
Thomas Lynch
37bbec9f3b add missing map 2023-04-06 22:47:21 +10:00
Thomas Lynch
40da57544a Support multiple backends per domain with the help of some lua 2023-04-06 22:40:03 +10:00
Thomas Lynch
94567f69ff Improve appearance and affordance of challenge pages with some template and js tweaks 2023-03-19 13:07:41 +11:00
Thomas Lynch
9478892614 Allow proper ssl verification for backends (With a privately managed CA of course) 2023-03-18 15:21:21 +11:00
Thomas Lynch
521e4ab335 not bold h3, hide generic favicon, white bg instead off offwhite 2023-03-06 19:47:50 +11:00
Thomas Lynch
4c97df8fb1 test ssl verify none to backends 2023-03-02 22:18:25 +11:00