crowdsecurity/cs-haproxy-spoa-bouncer

EXPERIMENTAL: HAProxy spoe filter for CrowdSec - WAF and IP protection

crowdsec-spoa

HAProxy SPOE filter for CrowdSec - WAF and IP protection

Table of Contents

• crowdsec-spoa
  • Table of Contents
  • About
  • Roadmap

About

Note

This is an experimental project, see roadmap for more details.

Roadmap

This outlines the goals of the project, and the current status of each.

• v0.1.0 - Initial release
  • Container
    • Dockerfile
    • Docker Compose
  • Debian Package
    • Documentation
  • RPM Package
    • Documentation
  • SPOA Server
    • TCP Listener
      • Documentation
      • Configuration File
    • Unix Socket Listener
      • Documentation
      • Configuration File
    • Handler
      • Documentation
  • Ban Remediation
    • Documentation
    • Configuration File
    • Template File
  • Captcha Remediation
    • Documentation
    • Configuration File
    • Template File
  • Country Remediation
    • Documentation
    • Configuration File
  • AppSec
    • Documentation
    • Configuration File

HAProxy response schema

## Base variables
txn.crowdsec.remediation = "captcha" | "ban" | "unknown" | "allow"

## Ban variables
txn.crowdsec.contact_us_url = host.ban.contact_us_url

## Captcha variables
txn.crowdsec.captcha_site_key = host.captcha.site_key
txn.crowdsec.captcha_frontend_key = providers[host.provider].frontend_key
txn.crowdsec.captcha_frontend_js = providers[host.provider].frontend_js