86 lines
2.4 KiB
Go
86 lines
2.4 KiB
Go
package apps
|
|
|
|
import (
|
|
"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"
|
|
"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/default/httpdns/httpdnsutils"
|
|
"github.com/iwind/TeaGo/actions"
|
|
"github.com/iwind/TeaGo/maps"
|
|
)
|
|
|
|
type PoliciesAction struct {
|
|
actionutils.ParentAction
|
|
}
|
|
|
|
func (this *PoliciesAction) Init() {
|
|
this.Nav("httpdns", "app", "")
|
|
}
|
|
|
|
func (this *PoliciesAction) RunGet(params struct{}) {
|
|
httpdnsutils.AddLeftMenu(this.Parent())
|
|
this.Data["policies"] = loadGlobalPolicies()
|
|
this.Show()
|
|
}
|
|
|
|
func (this *PoliciesAction) RunPost(params struct {
|
|
DefaultTTL int
|
|
DefaultSniPolicy string
|
|
DefaultFallbackMs int
|
|
ECSMode string
|
|
ECSIPv4Prefix int
|
|
ECSIPv6Prefix int
|
|
PinningMode string
|
|
SANMode string
|
|
|
|
Must *actions.Must
|
|
CSRF *actionutils.CSRF
|
|
}) {
|
|
params.Must.Field("defaultTTL", params.DefaultTTL).Gt(0, "默认 TTL 需要大于 0")
|
|
params.Must.Field("defaultFallbackMs", params.DefaultFallbackMs).Gt(0, "默认超时需要大于 0")
|
|
|
|
if params.DefaultTTL > 86400 {
|
|
this.Fail("默认 TTL 不能超过 86400 秒")
|
|
return
|
|
}
|
|
if params.DefaultFallbackMs > 10000 {
|
|
this.Fail("默认超时不能超过 10000 毫秒")
|
|
return
|
|
}
|
|
if params.DefaultSniPolicy != "level1" && params.DefaultSniPolicy != "level2" && params.DefaultSniPolicy != "level3" {
|
|
this.Fail("默认 SNI 等级不正确")
|
|
return
|
|
}
|
|
if params.ECSMode != "off" && params.ECSMode != "auto" && params.ECSMode != "custom" {
|
|
this.Fail("ECS 模式不正确")
|
|
return
|
|
}
|
|
if params.ECSIPv4Prefix < 0 || params.ECSIPv4Prefix > 32 {
|
|
this.Fail("IPv4 掩码范围是 0-32")
|
|
return
|
|
}
|
|
if params.ECSIPv6Prefix < 0 || params.ECSIPv6Prefix > 128 {
|
|
this.Fail("IPv6 掩码范围是 0-128")
|
|
return
|
|
}
|
|
if params.PinningMode != "off" && params.PinningMode != "report" && params.PinningMode != "enforce" {
|
|
this.Fail("Pinning 策略不正确")
|
|
return
|
|
}
|
|
if params.SANMode != "off" && params.SANMode != "report" && params.SANMode != "strict" {
|
|
this.Fail("SAN 策略不正确")
|
|
return
|
|
}
|
|
|
|
saveGlobalPolicies(maps.Map{
|
|
"defaultTTL": params.DefaultTTL,
|
|
"defaultSniPolicy": params.DefaultSniPolicy,
|
|
"defaultFallbackMs": params.DefaultFallbackMs,
|
|
"ecsMode": params.ECSMode,
|
|
"ecsIPv4Prefix": params.ECSIPv4Prefix,
|
|
"ecsIPv6Prefix": params.ECSIPv6Prefix,
|
|
"pinningMode": params.PinningMode,
|
|
"sanMode": params.SANMode,
|
|
})
|
|
|
|
this.Success()
|
|
}
|