ngx_lua_waf_oneinstack/config.lua

--WAF config file,enable = "on",disable = "off"

--waf status
config_waf_enable = "on"
--log dir
config_log_dir = "/data/wwwlogs"
--rule setting
config_rule_dir = "/usr/local/nginx/conf/waf/wafconf"
--enable/disable white url
config_white_url_check = "on"
--enable/disable white ip
config_white_ip_check = "on"
--enable/disable block ip
config_black_ip_check = "on"
--enable/disable url filtering
config_url_check = "on"
--enalbe/disable url args filtering
config_url_args_check = "on"
--enable/disable user agent filtering
config_user_agent_check = "on"
--enable/disable cookie deny filtering
config_cookie_check = "on"
--enable/disable cc filtering
config_cc_check = "on"
--cc rate the xxx of xxx seconds
config_cc_rate = "60/60"
--enable/disable post filtering
config_post_check = "on"
--config waf output redirect/html
config_waf_output = "html"
--if config_waf_output ,setting url
config_waf_redirect_url = "/captcha"
config_waf_captcha_html=[[
<html>
    <head>
        <meta http-equiv="content-type" content="text/html; charset=UTF-8">
        <title data-sw-translate>Please enter verification code - OneinStack WAF</title>
        <style> body { font-family: Tahoma, Verdana, Arial, sans-serif; }
                        .head_title{margin-top:100px; font-family:"微软雅黑"; font-size:50px; font-weight:lighter;}
                        p{font-family:"微软雅黑"; font-size:16px; font-weight:lighter; color:#666666;}
                        .btn{ float:left;margin-left:15px; margin-top:5px; width:85px; height:30px; background:#56c458;font-family:"微软雅黑"; font-size:16px; color:#FFFFFF; border:0;}
                        .inp_s{ float:left; margin-left:15px; margin-top:5px; width:200px; height:30px;}
                        .yz{float:left; width:160px; height:40px;}
                        .fors{ margin:0 auto;width:500px; height:40px;}
                .form {width: 500px; margin: 2em auto;}
        </style>
    </head>
    <body>
        <div align="center">
                        <p><h1 class="head_title" data-sw-translate>Sorry...</h1></p>
                        <p data-sw-translate>Your query looks similar to an automated request from computer software. In order to protect our users, please forgive us for temporarily not processing your request.</p>
                        <p data-sw-translate>To continue accessing the webpage, please enter the characters shown below:</p>
                <div class="form">
                    <img id="captcha-img" class="yz" src="https://oneinstack.com/restapi/v1/captchas/038fb48d9f8170e9a7c67aee79106a31" alt="Captcha image"><input id="captcha-input" class="inp_s" type="text" name="response" /><input id="captcha-submit" class="btn" type="submit" data-sw-translate value="Submit" />
                </div>
        </div>
    <script src="https://cdn.bootcss.com/jquery/3.3.1/jquery.min.js"></script>
    <script>
        var url = 'https://oneinstack.com/restapi/v1/captchas'
        // 获取验证码 hash
        $.post(url).then((res) => {
                const {errno, errmsg, data} = JSON.parse(res)
                if (errno) {
                        return alert(errmsg)
                }

                // 更新验证码图片
                document.querySelector('#captcha-img').src = `${url}/${data}`

                // 提交验证码
                document.querySelector('#captcha-submit').addEventListener('click', e => {
                        $.post(`${url}/check`, {
                                key: data,
                                code: document.querySelector('#captcha-input').value,
                        }).then(res => {
                                const {errno, errmsg, data} = JSON.parse(res)
                                if (errno) {
                                        return location.reload()
                                }

                                var targetUrl = new URLSearchParams(location.search).get('continue')
                                targetUrl = atob(targetUrl)
                                location.href = targetUrl
                        })
                })
        })

        window.SwaggerTranslator = {
            _words: [],
            translate: function () {
                var $this = this;
                $('[data-sw-translate]').each(function () {
                    $(this).html($this._tryTranslate($(this).html()));
                    $(this).val($this._tryTranslate($(this).val()));
                    $(this).attr('title', $this._tryTranslate($(this).attr('title')));
                });
            },

            _tryTranslate: function (word) {
                return this._words[$.trim(word)] !== undefined ? this._words[$.trim(word)] : word;
            },

            learn: function (wordsMap) {
                this._words = wordsMap;
            }
        };

        window.SwaggerTranslator.learn({
            "Please enter verification code - OneinStack WAF": "输入验证码 - OneinStack防火墙",
            "Your query looks similar to an automated request from computer software. In order to protect our users, please forgive us for temporarily not processing your request.": "您的查询看起来类似于来自计算机软件的自动请求。为了保护我们的用户，请原谅我们现在暂时不能处理您的请求。",
            "To continue accessing the webpage, please enter the characters shown below:": "要继续访问网页，请输入下面所示字符：",
            "Sorry...": "很抱歉...",
            "Submit": "提交",
        });

        $(function () {
            window.SwaggerTranslator.translate();
        });
    </script>
    </body>
</html>
]]
config_output_html=[[
<html xmlns="http://www.w3.org/1999/xhtml"><head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>网站防火墙</title>
<style>
p {
	line-height:20px;
}
ul{ list-style-type:none;}
li{ list-style-type:none;}
</style>
</head>
<body style=" padding:0; margin:0; font:14px/1.5 Microsoft Yahei, 宋体,sans-serif; color:#555;">
 <div style="margin: 0 auto; width:1000px; padding-top:70px; overflow:hidden;">
  <div style="width:600px; float:left;">
    <div style=" height:40px; line-height:40px; color:#fff; font-size:16px; overflow:hidden; background:#6bb3f6; padding-left:20px;">网站防火墙 </div>
    <div style="border:1px dashed #cdcece; border-top:none; font-size:14px; background:#fff; color:#555; line-height:24px; height:220px; padding:20px 20px 0 20px; overflow-y:auto;background:#f3f7f9;">
      <p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px;"><span style=" font-weight:600; color:#fc4f03;">您的请求带有不合法参数，已被网站管理员设置拦截！</span></p>
      <p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px;">可能原因：您提交的内容包含危险的攻击请求</p>
      <p style=" margin-top:12px; margin-bottom:12px; margin-left:0px; margin-right:0px; -qt-block-indent:1; text-indent:0px;">如何解决：</p>
      <ul style="margin-top: 0px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; -qt-list-indent: 1;"><li style=" margin-top:12px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px;">1）检查提交内容；</li>
      <li style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px;">2）如网站托管，请联系空间提供商；</li>
      <li style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px;">3）普通网站访客，请联系网站管理员；</li></ul>
    </div>
  </div>
</div>
</body></html>
]]