From f0e2bec01ea5f6d2abda25f6091f4a50259cb90a Mon Sep 17 00:00:00 2001
From: Rajib Sharia <rajibsharia@gmail.com>
Date: Thu, 3 Apr 2025 11:37:09 +0800
Subject: [PATCH 1/3] Create paperless-ngx test log

---
 fail2ban/tests/files/logs/paperless-ngx | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 fail2ban/tests/files/logs/paperless-ngx

diff --git a/fail2ban/tests/files/logs/paperless-ngx b/fail2ban/tests/files/logs/paperless-ngx
new file mode 100644
index 00000000..b3688e52
--- /dev/null
+++ b/fail2ban/tests/files/logs/paperless-ngx
@@ -0,0 +1,5 @@
+# failJSON: { "time": "2024-08-30T16:26:55", "match": true , "host": "80.187.85.94" }
+[2024-08-30 16:26:55,139] [INFO] [paperless.auth] Login failed for user `testuser` from private IP `80.187.85.94`.
+
+# failJSON: { "time": "2024-08-30T17:44:54", "match": true , "host": "2001:db8::b6d3:95d7:1425:766d" }
+[2024-08-30 17:44:54,874] [INFO] [paperless.auth] Login failed for user `test6pub` from IP `2001:db8::b6d3:95d7:1425:766d`.

From 0c50c6cc277a1b729ab9062dfaaf033ab14ad089 Mon Sep 17 00:00:00 2001
From: Rajib Sharia <rajibsharia@gmail.com>
Date: Thu, 3 Apr 2025 11:39:47 +0800
Subject: [PATCH 2/3] Create paperless-ngx.conf

Filter for unsuccessful authentication attempts on paperless-ngx
---
 config/filter.d/paperless-ngx.conf | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 config/filter.d/paperless-ngx.conf

diff --git a/config/filter.d/paperless-ngx.conf b/config/filter.d/paperless-ngx.conf
new file mode 100644
index 00000000..e2d17db0
--- /dev/null
+++ b/config/filter.d/paperless-ngx.conf
@@ -0,0 +1,9 @@
+# Fail2Ban filter for unsuccessful paperless-ngx authentication attempts
+# Logged in /var/log/paperless.log
+
+# Author: LearningSpot
+
+[Definition]
+
+failregex = ^\s*(?:\[\]\s*)?\[INFO\] \[paperless\.auth\] Login failed for user `<F-USER>\S+</F-USER>` from (private )?IP `<ADDR>`\.$
+ignoreregex =

From 9321af0513df69135921a5f37fe96889ef82f525 Mon Sep 17 00:00:00 2001
From: Rajib Sharia <rajibsharia@gmail.com>
Date: Thu, 3 Apr 2025 11:41:17 +0800
Subject: [PATCH 3/3] Update jail.conf

Added jail for paperless-ngx
---
 config/jail.conf | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/config/jail.conf b/config/jail.conf
index 5d75f4f5..baa9e9d8 100644
--- a/config/jail.conf
+++ b/config/jail.conf
@@ -995,3 +995,7 @@ logpath = /var/log/daemon.log
 [vaultwarden]
 port = http,https
 logpath = /var/log/vaultwarden.log
+
+[paperless-ngx]
+port = http,https,8000
+logpath = /var/log/paperless.log