crowdsec icon indicating copy to clipboard operation
crowdsec copied to clipboard
verified publisher icon crowdsecurity

allowlists add via LAPI

Open timtrense-leadec opened this issue 6 months ago • 4 comments

What would you like to be added?

There currently exists the cscli allowlists add <name> <ip> command line. But there is no POST /v1/allowlists/<name>/items in the local API.

I want to be able to add a new item to the LAPI, just like the endpoint on the CAPI.

/kind enhancement

Why is this needed?

I want to provide an http shim, which calls the new LAPI endpoint. That shim shall add the source IP of the request to the allowlist for 30 minutes (or until pipeline ends). This would allow my IaC code CD pipeline runners to elevate themselfes at the start of their job. I need this, because the access pattern of my IaC code triggers a plethora of scenarios, which I dont want to disable or weaken.

timtrense-leadec avatar Jun 12 '25 10:06 timtrense-leadec

@timtrense-leadec: Thanks for opening an issue, it is currently awaiting triage.

In the meantime, you can:

  1. Check Crowdsec Documentation to see if your issue can be self resolved.
  2. You can also join our Discord.
  3. Check Releases to make sure your agent is on the latest version.
Details

I am a bot created to help the crowdsecurity developers manage community feedback and contributions. You can check out my manifest file to understand my behavior and what I can do. If you want to use this for your project, you can check out the BirthdayResearch/oss-governance-bot repository.

github-actions[bot] avatar Jun 12 '25 10:06 github-actions[bot]

@timtrense-leadec: There are no 'kind' label on this issue. You need a 'kind' label to start the triage process.

  • /kind feature
  • /kind enhancement
  • /kind refactoring
  • /kind bug
  • /kind packaging
Details

I am a bot created to help the crowdsecurity developers manage community feedback and contributions. You can check out my manifest file to understand my behavior and what I can do. If you want to use this for your project, you can check out the BirthdayResearch/oss-governance-bot repository.

github-actions[bot] avatar Jun 12 '25 10:06 github-actions[bot]

/kind enhancement

timtrense-leadec avatar Jun 12 '25 10:06 timtrense-leadec

We addressed this point in https://github.com/crowdsecurity/crowdsec/issues/3525

We are not opposed but it not a priority to us so feel free to create a PR.

LaurenceJJones avatar Jun 12 '25 11:06 LaurenceJJones