mirror of
https://github.com/StackExchange/dnscontrol.git
synced 2025-11-10 08:20:35 +08:00
151 lines
4.8 KiB
Go
151 lines
4.8 KiB
Go
package cloudflare
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"net/http"
|
|
"net/url"
|
|
"strconv"
|
|
|
|
"github.com/goccy/go-json"
|
|
)
|
|
|
|
// UserAgentRule represents a User-Agent Block. These rules can be used to
|
|
// challenge, block or whitelist specific User-Agents for a given zone.
|
|
type UserAgentRule struct {
|
|
ID string `json:"id"`
|
|
Description string `json:"description"`
|
|
Mode string `json:"mode"`
|
|
Configuration UserAgentRuleConfig `json:"configuration"`
|
|
Paused bool `json:"paused"`
|
|
}
|
|
|
|
// UserAgentRuleConfig represents a Zone Lockdown config, which comprises
|
|
// a Target ("ip" or "ip_range") and a Value (an IP address or IP+mask,
|
|
// respectively.)
|
|
type UserAgentRuleConfig ZoneLockdownConfig
|
|
|
|
// UserAgentRuleResponse represents a response from the Zone Lockdown endpoint.
|
|
type UserAgentRuleResponse struct {
|
|
Result UserAgentRule `json:"result"`
|
|
Response
|
|
ResultInfo `json:"result_info"`
|
|
}
|
|
|
|
// UserAgentRuleListResponse represents a response from the List Zone Lockdown endpoint.
|
|
type UserAgentRuleListResponse struct {
|
|
Result []UserAgentRule `json:"result"`
|
|
Response
|
|
ResultInfo `json:"result_info"`
|
|
}
|
|
|
|
// CreateUserAgentRule creates a User-Agent Block rule for the given zone ID.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#user-agent-blocking-rules-create-a-useragent-rule
|
|
func (api *API) CreateUserAgentRule(ctx context.Context, zoneID string, ld UserAgentRule) (*UserAgentRuleResponse, error) {
|
|
switch ld.Mode {
|
|
case "block", "challenge", "js_challenge", "managed_challenge":
|
|
break
|
|
default:
|
|
return nil, errors.New(`the User-Agent Block rule mode must be one of "block", "challenge", "js_challenge", "managed_challenge"`)
|
|
}
|
|
|
|
uri := fmt.Sprintf("/zones/%s/firewall/ua_rules", zoneID)
|
|
res, err := api.makeRequestContext(ctx, http.MethodPost, uri, ld)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
response := &UserAgentRuleResponse{}
|
|
err = json.Unmarshal(res, &response)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("%s: %w", errUnmarshalError, err)
|
|
}
|
|
|
|
return response, nil
|
|
}
|
|
|
|
// UpdateUserAgentRule updates a User-Agent Block rule (based on the ID) for the given zone ID.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#user-agent-blocking-rules-update-useragent-rule
|
|
func (api *API) UpdateUserAgentRule(ctx context.Context, zoneID string, id string, ld UserAgentRule) (*UserAgentRuleResponse, error) {
|
|
uri := fmt.Sprintf("/zones/%s/firewall/ua_rules/%s", zoneID, id)
|
|
res, err := api.makeRequestContext(ctx, http.MethodPut, uri, ld)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
response := &UserAgentRuleResponse{}
|
|
err = json.Unmarshal(res, &response)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("%s: %w", errUnmarshalError, err)
|
|
}
|
|
|
|
return response, nil
|
|
}
|
|
|
|
// DeleteUserAgentRule deletes a User-Agent Block rule (based on the ID) for the given zone ID.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#user-agent-blocking-rules-delete-useragent-rule
|
|
func (api *API) DeleteUserAgentRule(ctx context.Context, zoneID string, id string) (*UserAgentRuleResponse, error) {
|
|
uri := fmt.Sprintf("/zones/%s/firewall/ua_rules/%s", zoneID, id)
|
|
res, err := api.makeRequestContext(ctx, http.MethodDelete, uri, nil)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
response := &UserAgentRuleResponse{}
|
|
err = json.Unmarshal(res, &response)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("%s: %w", errUnmarshalError, err)
|
|
}
|
|
|
|
return response, nil
|
|
}
|
|
|
|
// UserAgentRule retrieves a User-Agent Block rule (based on the ID) for the given zone ID.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#user-agent-blocking-rules-useragent-rule-details
|
|
func (api *API) UserAgentRule(ctx context.Context, zoneID string, id string) (*UserAgentRuleResponse, error) {
|
|
uri := fmt.Sprintf("/zones/%s/firewall/ua_rules/%s", zoneID, id)
|
|
res, err := api.makeRequestContext(ctx, http.MethodGet, uri, nil)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
response := &UserAgentRuleResponse{}
|
|
err = json.Unmarshal(res, &response)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("%s: %w", errUnmarshalError, err)
|
|
}
|
|
|
|
return response, nil
|
|
}
|
|
|
|
// ListUserAgentRules retrieves a list of User-Agent Block rules for a given zone ID by page number.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#user-agent-blocking-rules-list-useragent-rules
|
|
func (api *API) ListUserAgentRules(ctx context.Context, zoneID string, page int) (*UserAgentRuleListResponse, error) {
|
|
v := url.Values{}
|
|
if page <= 0 {
|
|
page = 1
|
|
}
|
|
|
|
v.Set("page", strconv.Itoa(page))
|
|
v.Set("per_page", strconv.Itoa(100))
|
|
|
|
uri := fmt.Sprintf("/zones/%s/firewall/ua_rules?%s", zoneID, v.Encode())
|
|
res, err := api.makeRequestContext(ctx, http.MethodGet, uri, nil)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
response := &UserAgentRuleListResponse{}
|
|
err = json.Unmarshal(res, &response)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("%s: %w", errUnmarshalError, err)
|
|
}
|
|
|
|
return response, nil
|
|
}
|