8acce4637a
* Allow to disable remote lapi registration * Extract method and make it extendable as a generic middleware * Change method name so it make sense to read abort remote if <config> * golint
38 lines
794 B
Go
38 lines
794 B
Go
package v1
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
|
|
"github.com/crowdsecurity/crowdsec/pkg/database/ent"
|
|
"github.com/gin-gonic/gin"
|
|
)
|
|
|
|
var (
|
|
bouncerContextKey = "bouncer_info"
|
|
)
|
|
|
|
func getBouncerFromContext(ctx *gin.Context) (*ent.Bouncer, error) {
|
|
bouncerInterface, exist := ctx.Get(bouncerContextKey)
|
|
if !exist {
|
|
return nil, fmt.Errorf("bouncer not found")
|
|
}
|
|
|
|
bouncerInfo, ok := bouncerInterface.(*ent.Bouncer)
|
|
if !ok {
|
|
return nil, fmt.Errorf("bouncer not found")
|
|
}
|
|
|
|
return bouncerInfo, nil
|
|
}
|
|
|
|
func (c *Controller) AbortRemoteIf(option bool) gin.HandlerFunc {
|
|
return func(gctx *gin.Context) {
|
|
incomingIP := gctx.ClientIP()
|
|
if option && incomingIP != "127.0.0.1" && incomingIP != "::1" {
|
|
gctx.JSON(http.StatusForbidden, gin.H{"message": "access forbidden"})
|
|
gctx.Abort()
|
|
}
|
|
}
|
|
}
|