caswaf icon indicating copy to clipboard operation
caswaf copied to clipboard

Published 20 hours ago verified publisher icon casbin

[feature] add rule feature

Open nomeguy opened this issue 1 month ago • 0 comments

Rule should be added to CasWAF as first-class object (Go struct, CURD, list page, edit page, etc.)

Rule contains two parts: condition and an action.

Condition can be:

  1. Always true
  2. WAF rule matched
  3. IP whitelist/blacklist
  4. UA whitelist/blacklist
  5. Composite conditions like requestUrl.startsWith("/attack") && method == "POST || WAF rule matched"

Action can be:

  1. Pass or Block
  2. Log or Not-log
  3. Requires login (via Casdoor: https://casdoor.org/ )
  4. Requires captcha (via Casdoor captcha provider: https://casdoor.org/docs/category/captcha/ )

nomeguy avatar May 28 '24 12:05 nomeguy