clio/WhitelistHandler_8hpp_source.html

#pragma once


#include "util/config/ArrayView.hpp"

#include "util/config/ConfigDefinition.hpp"

#include "util/config/ValueView.hpp"

#include "web/Resolver.hpp"

#include "web/dosguard/WhitelistHandlerInterface.hpp"


#include <boost/asio.hpp>

#include <boost/asio/ip/address.hpp>

#include <boost/asio/ip/network_v4.hpp>

#include <boost/asio/ip/network_v6.hpp>

#include <boost/iterator/transform_iterator.hpp>

#include <fmt/format.h>


#include <algorithm>

#include <regex>

#include <string>

#include <string_view>

#include <unordered_map>

#include <unordered_set>

#include <vector>


namespace web::dosguard {


class Whitelist {

    std::vector<boost::asio::ip::network_v4> subnetsV4_;

    std::vector<boost::asio::ip::network_v6> subnetsV6_;

    std::vector<boost::asio::ip::address> ips_;


public:

    void

    add(std::string_view net);


    bool

    isWhiteListed(std::string_view ip) const;


private:

    static bool

    isInV4Subnet(boost::asio::ip::address const& addr, boost::asio::ip::network_v4 const& subnet);


    static bool

    isInV6Subnet(boost::asio::ip::address const& addr, boost::asio::ip::network_v6 const& subnet);


    static bool

    isV4(std::string_view net);


    static bool

    isV6(std::string_view net);


    static bool

    isMask(std::string_view net);

};


class WhitelistHandler : public WhitelistHandlerInterface {

    Whitelist whitelist_;


public:

    template <SomeResolver HostnameResolverType = Resolver>


    WhitelistHandler(

        util::config::ClioConfigDefinition const& config,

        HostnameResolverType&& resolver = {}

    )

    {

        std::unordered_set<std::string> const arr =

            getWhitelist(config, std::forward<HostnameResolverType>(resolver));

        for (auto const& net : arr)

            whitelist_.add(net);

    }


    bool


    isWhiteListed(std::string_view ip) const override

    {

        return whitelist_.isWhiteListed(ip);

    }


private:

    template <SomeResolver HostnameResolverType>

    [[nodiscard]] static std::unordered_set<std::string>

    getWhitelist(util::config::ClioConfigDefinition const& config, HostnameResolverType&& resolver)

    {

        auto const whitelist = config.getArray("dos_guard.whitelist");

        std::unordered_set<std::string> hostnames{};

        // resolve hostnames to ips

        std::unordered_set<std::string> ips;


        for (auto it = whitelist.begin<util::config::ValueView>();

             it != whitelist.end<util::config::ValueView>();

             ++it)

            hostnames.insert((*it).asString());


        for (auto const& hostname : hostnames) {

            auto resolvedIps = resolver.resolve(hostname);

            for (auto& ip : resolvedIps) {

                ips.insert(std::move(ip));

            }

        };


        return ips;

    }

};


}  // namespace web::dosguard

util::config::ClioConfigDefinition
All the config data will be stored and extracted from this class.
Definition ConfigDefinition.hpp:31

util::config::ClioConfigDefinition::getArray
ArrayView getArray(std::string_view prefix) const
Returns the specified Array object from ClioConfigDefinition.
Definition ConfigDefinition.cpp:66

util::config::ValueView
Provides view into ConfigValues that represents values in Clio Config.
Definition ValueView.hpp:27

web::dosguard::WhitelistHandlerInterface
Interface for a whitelist handler.
Definition WhitelistHandlerInterface.hpp:10

web::dosguard::WhitelistHandler::WhitelistHandler
WhitelistHandler(util::config::ClioConfigDefinition const &config, HostnameResolverType &&resolver={})
Adds all whitelisted IPs and masks from the given config.
Definition WhitelistHandler.hpp:85

web::dosguard::WhitelistHandler::isWhiteListed
bool isWhiteListed(std::string_view ip) const override
Checks to see if the given IP is whitelisted.
Definition WhitelistHandler.hpp:103

web::dosguard::Whitelist
A whitelist to remove rate limits of certain IP addresses.
Definition WhitelistHandler.hpp:29

web::dosguard::Whitelist::isWhiteListed
bool isWhiteListed(std::string_view ip) const
Checks to see if ip address is whitelisted.
Definition WhitelistHandler.cpp:40

web::dosguard::Whitelist::add
void add(std::string_view net)
Add network address to whitelist.
Definition WhitelistHandler.cpp:21