/cs-haproxy-spoa-bouncer

EXPERIMENTAL: HAProxy spoe filter for CrowdSec - WAF and IP protection

Primary LanguageGoMIT LicenseMIT

crowdsec-spoa

HAProxy SPOE filter for CrowdSec - WAF and IP protection

Table of Contents

About

Note

This is an experimental project, see roadmap for more details.

Roadmap

This outlines the goals of the project, and the current status of each.

  • v0.1.0 - Initial release
    • Container
      • Dockerfile
      • Docker Compose
    • Debian Package
      • Documentation
    • RPM Package
      • Documentation
    • SPOA Server
      • TCP Listener
        • Documentation
        • Configuration File
      • Unix Socket Listener
        • Documentation
        • Configuration File
      • Handler
        • Documentation
    • Ban Remediation
      • Documentation
      • Configuration File
      • Template File
    • Captcha Remediation
      • Documentation
      • Configuration File
      • Template File
    • Country Remediation
      • Documentation
      • Configuration File
    • AppSec
      • Documentation
      • Configuration File

HAProxy response schema

## Base variables
txn.crowdsec.remediation = "captcha" | "ban" | "unknown" | "allow"

## Ban variables
txn.crowdsec.contact_us_url = host.ban.contact_us_url

## Captcha variables
txn.crowdsec.captcha_site_key = host.captcha.site_key
txn.crowdsec.captcha_frontend_key = providers[host.provider].frontend_key
txn.crowdsec.captcha_frontend_js = providers[host.provider].frontend_js