Fijxu/lua-cs-bouncer-mcaptcha
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
212 commits 1 branch 0 tags 246 KiB
Commit graph

212 commits

This branch
This branch
All branches
Author SHA1 Message Date
Fijxu
f7e368e2e9
Little fix. 2024-09-08 03:23:09 -03:00
Fijxu
6c45ccb3b9
Merge remote-tracking branch 'origin' 2024-09-08 02:59:01 -03:00
Fijxu
e41d14d2f9
Support for mcaptcha (dirty) 2024-09-08 02:58:50 -03:00
Laurence Jones
7a85876436
enhance: allow code 444 (#74) 
Fix: #72

Allow the use of code 444 as a response code
 2024-09-04 09:11:59 +01:00
Andrew "Bob" Brockhurst
5249a8c4e8
New config param to allow ban checking on internal requests. (#69) 2024-08-23 11:31:45 +01:00
blotus
ec3885e6f9
appsec: add user agent in custom header (#66) 2024-02-22 15:04:11 +01:00
blotus
654bc2ce39
allow to only set APPSEC_URL (#65) 2024-02-22 15:03:56 +01:00
blotus
cce2ea3946
do not try to read request body in HTTP2/3 if there's no content-length header (#64) 2024-02-22 10:18:05 +01:00
blotus
26e9c0c19c
exit with ngx.DECLINED when the request is allowed (#62) 2024-02-06 12:05:35 +01:00
Laurence Jones
0e4983a1a3
Fix status code return on err (#56) 2024-01-22 10:32:56 +00:00
blotus
d493b215c4
appsec: get response code from appsec body (#55) 2024-01-15 16:37:59 +01:00
AlteredCoder
535f009e59
fix IP usage in csmod.Allow(ip) and repair captcha for bouncing (#53) 
---------

Co-authored-by: Laurence Jones <laurence.jones@live.co.uk>
 2024-01-15 10:49:12 +01:00
Thibault "bui" Koechlin
cb0d72bdf1
fix default timeout (#52) 2024-01-04 15:22:11 +01:00
Laurence Jones
718ebae9e1
Fix http reporting (#51) 
* Update crowdsec.lua

* distinct timeouts for stream and live mode

---------

Co-authored-by: bui <thibault@crowdsec.net>
 2024-01-04 10:39:49 +00:00
AlteredCoder
926de93ce2
AppSec Component integration (#43) 
Integrate AppSec Component 

---------

Co-authored-by: Sebastien Blot <sebastien@crowdsec.net>
 2023-12-13 18:23:55 +01:00
Laurence Jones
0461b74b22
Add a nil check to the parse ip function (#50) 2023-11-07 08:39:25 +00:00
Laurence Jones
f44ea23d5e
Add no cache headers (#47) 2023-10-23 15:53:15 +01:00
blotus
cd881cb387
properly parse config value containing = (#42) 2023-08-04 17:13:42 +02:00
Laurence Jones
902f055023
Add other captcha providers / update templates (#39) 
* Add option for another captcha providers (hcaptcha, turnstile)

* Fix wrong map usage

* Update templates to mobile first and light/dark mode options

* rename recaptcha to captcha more generic

* Just one more update to show pointer cursor on submit button

* height on mobile was out fixed

* Edit title

* Make button same color dark and light mode easily to see

* Add auto captcha submit on completion and increase height on ban template on mobile

* Fix typo

* Fix dark mode button on ban

* Add short timeout to make captcha smoother

* half timeout to make captcha smoother

* Fix the things I noticed when updating the haproxy bouncer

* Fix light mode on load within templates
 2023-03-29 10:07:30 +01:00
blotus
cad85ae199
New approach for handling stream update (#36) 2022-11-25 14:02:56 +01:00
alteredCoder
eb5de9c364 fix ret_code option check 2022-03-31 18:24:46 +02:00
AlteredCoder
10a3d510c1
Merge pull request #34 from crowdsecurity/minor_refactor 
Minor refactor for the ret_code parsing
 2022-03-31 17:24:46 +02:00
alteredCoder
4f2c35ca91 Minor refactor for the ret_code parsing 2022-03-31 17:22:09 +02:00
AlteredCoder
57bfc35500
Merge pull request #33 from crowdsecurity/fix_empty_ret_code 
Fix empty ret_code behavior and empty line in config
 2022-03-31 17:09:57 +02:00
alteredCoder
1201e453de Fix empty ret_code behavior and empty line in config 2022-03-31 17:02:53 +02:00
AlteredCoder
b4d03d1988
Merge pull request #32 from crowdsecurity/fix_security_issue 
Fix Bouncer bypass when using HTTP1.0
 2022-03-31 10:57:34 +02:00
alteredCoder
29b27f4218 Add warning when ret_code is not supported 2022-03-30 19:16:25 +02:00
alteredCoder
5c6e890f49 Fix Bouncer bypass when using HTTP1.0 2022-03-30 18:34:28 +02:00
alteredCoder
0d59627714 reset to live mode by default 2022-03-10 11:47:50 +01:00
he2ss
a23a923158 add LICENSE 2022-03-10 10:50:16 +01:00
AlteredCoder
ca54fbd8fc
Merge pull request #31 from crowdsecurity/fix_fallback_remediation 
Fix fallback remediation
 2022-03-09 15:24:18 +01:00
alteredCoder
300b448990 Fix fallback remediation 2022-03-09 15:18:13 +01:00
he2ss
e7aae5afa5
Merge pull request #30 from crowdsecurity/update_readme 
update README
 2022-03-08 16:25:59 +01:00
he2ss
5a3d941d55 update README 2022-03-08 16:25:16 +01:00
he2ss
e8ef8ee889 fix typo 2022-03-08 16:23:36 +01:00
he2ss
06ad700da1 add warning 2022-03-08 16:22:51 +01:00
he2ss
eb0ca6bd3d update README 2022-03-08 16:18:32 +01:00
he2ss
e0d9cb1c10
Merge pull request #27 from LePresidente/main 
Add ability to enabled/disable bouncer from config.
 2022-03-08 12:58:04 +01:00
Brian Munro
a7d712f65d Fix nginx error to reflect option default. 2022-02-24 17:09:03 +02:00
Brian Munro
39e00286e3 Fix indentation, use space instead of tabs 2022-02-24 17:07:35 +02:00
AlteredCoder
445164e43b
Merge pull request #28 from crowdsecurity/fix_live_query_mode 
Fix live query mode when IP is good
 2022-02-24 15:17:21 +01:00
alteredCoder
f56383722b fix 2022-02-22 18:50:11 +01:00
alteredCoder
2cd7200544 Fix live query mode when IP is good 2022-02-22 18:41:30 +01:00
Brian Munro
e688107dc4 Make sure only true|false is entered into the config. 2022-02-22 16:16:32 +02:00
Brian Munro
d65ae46067 Add ability to enabled/disable bouncer from config. 2022-02-22 06:33:05 +02:00
AlteredCoder
f8eac632a9
Merge pull request #26 from crowdsecurity/close_http_connection 
Close HTTP connections
 2022-02-09 15:39:50 +01:00
alteredCoder
e978bf7b33 Close HTTP connections 2022-02-09 15:37:06 +01:00
he2ss
ab667b6779
Merge pull request #25 from crowdsecurity/fix_error 
improve configuration mgmt code
 2022-02-08 18:05:55 +01:00
he2ss
4313d97ba6 improve captcha template path verif 2022-02-08 17:50:28 +01:00
he2ss
6f689d54ec fix error message 2022-02-08 17:48:03 +01:00