ProjectSegfault/go-away
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Condition, rules, state and action refactor / rewrite

Browse Source 
Add nested rules
Add backend action, allow wildcard in backends
Remove poison from tree, update README with action table

Allow defining pass/fail actions on challenge,

Remove redirect/referer parameters on backend pass

Set challenge cookie tied to host

Rewrite DNSBL condition into a challenge

Allow passing an arbitrary path for assets to js challenges

Optimize programs exhaustively on compilation

Activation instead of map for CEL context, faster map access, new network override

Return valid host on cookie setting in case Host is an IP address.
bug: does not work with IPv6, see https://github.com/golang/go/issues/65521

Apply TLS fingerprinter on GetConfigForClient instead of GetCertificate

Cleanup go-away cookies before passing to backend

Code action for specifically replying with an HTTP code
This commit is contained in:
WeebDataHoarder
2025-04-19 00:42:18 +02:00
committed by WeebDataHoarder
parent 1c7fe1bed9
commit ead41055ca
58 changed files with 3258 additions and 2048 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
embed/templates/challenge-anubis.gohtml
View File

@@ -11,7 +11,7 @@
<meta name="{{ $key }}" content="{{ $value }}"/>
{{end}}
{{ end }}
{{ range .Tags }}
{{ range .HeaderTags }}
{{ . }}
{{ end }}
<style>
@@ -155,7 +155,6 @@
/>
{{if .Challenge }}
<p id="status">Loading challenge <em>{{ .Challenge }}</em>...</p>
<script async type="module" src="{{ .Path }}/challenge/{{ .Challenge }}/challenge.mjs?cacheBust={{ .Random }}"></script>
{{else if .Error}}
<p id="status">Error: {{ .Error }}</p>
{{else}}
@@ -202,6 +201,11 @@
</p>
</center>
</footer>
{{ range .EndTags }}
{{ . }}
{{ end }}
</main>
</body>
</html>

7
embed/templates/challenge-forgejo.gohtml
View File

@@ -17,7 +17,7 @@
<meta name="{{ $key }}" content="{{ $value }}"/>
{{end}}
{{ end }}
{{ range .Tags }}
{{ range .HeaderTags }}
{{ . }}
{{ end }}
@@ -62,7 +62,6 @@
{{if .Challenge }}
<h3 id="status">Loading challenge <em>{{ .Challenge }}</em>...</h3>
<script async type="module" src="{{ .Path }}/challenge/{{ .Challenge }}/challenge.mjs?cacheBust={{ .Random }}"></script>
{{else if .Error}}
<h3 id="status">Error: {{ .Error }}</h3>
{{else}}
@@ -110,5 +109,9 @@
</div>
</footer>
{{ range .EndTags }}
{{ . }}
{{ end }}
</body>
</html>

69
embed/templates/challenge.mjs
View File

@@ -1,69 +0,0 @@
import {setup, challenge} from "{{ .ChallengeScript }}";
// from Xeact
const u = (url = "", params = {}) => {
let result = new URL(url, window.location.href);
Object.entries(params).forEach((kv) => {
let [k, v] = kv;
result.searchParams.set(k, v);
});
return result.toString();
};
(async () => {
const status = document.getElementById('status');
const title = document.getElementById('title');
const spinner = document.getElementById('spinner');
status.innerText = 'Starting challenge {{ .Challenge }}...';
try {
const info = await setup({
Path: "{{ .Path }}",
Parameters: "{{ .Parameters }}"
});
if (info != "") {
status.innerText = 'Calculating... ' + info
} else {
status.innerText = 'Calculating...';
}
} catch (err) {
title.innerHTML = "Oh no!";
status.innerHTML = `Failed to initialize: ${err.message}`;
spinner.innerHTML = "";
spinner.style.display = "none";
return
}
try {
const t0 = Date.now();
const { result, info } = await challenge();
const t1 = Date.now();
console.log({ result, info });
title.innerHTML = "Challenge success!";
if (info != "") {
status.innerHTML = `Done! Took ${t1 - t0}ms, ${info}`;
} else {
status.innerHTML = `Done! Took ${t1 - t0}ms`;
}
setTimeout(() => {
const redir = window.location.href;
window.location.href = u("{{ .Path }}/verify-challenge", {
result: result,
redirect: redir,
requestId: "{{ .Id }}",
elapsedTime: t1 - t0,
});
}, 500);
} catch (err) {
title.innerHTML = "Oh no!";
status.innerHTML = `Failed to challenge: ${err.message}`;
spinner.innerHTML = "";
spinner.style.display = "none";
}
})();