ProjectSegfault/go-away
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 8beb22a93b no more needs master Arya 2025-07-25 11:00:59 +05:30
  • b28d39ab74 fix ci Arya Kiran 2025-07-24 16:58:21 +05:30
  • 158462136b CI attempt Uno build-test Midou 2025-07-22 14:05:51 +01:00
  • 458022b3c2 Was that reaaaaaaally necessary? Midou 2025-07-19 03:14:54 +01:00
  • e1a318bc38 build/wasm: update script to build TinyGo v0.38.0, update resulting js-pow-sha256 wasm artifact WeebDataHoarder 2025-07-03 02:41:50 +02:00
  • 8323536e84 build/docker: disable PIE buildmode under riscv64 due to https://github.com/golang/go/issues/64875 WeebDataHoarder 2025-06-28 10:44:08 +02:00
  • 99ddb2b62b build/docker: address legacy "ENV key value" form and RedundantTargetPlatform WeebDataHoarder 2025-06-28 10:35:10 +02:00
  • e4e5b0bc5d build/docker: pass JWT_PRIVATE_KEY_SEED as a secret env, add alternate GOAWAY_JWT_PRIVATE_KEY_SEED env WeebDataHoarder 2025-06-28 10:29:42 +02:00
  • 057bca753d build: set -buildmode pie, -bindnow linker flag. Enables Full RELRO, NX, PIE, no RPATH/RUNPATH, nothing to FORTIFY WeebDataHoarder 2025-06-28 10:18:13 +02:00
  • d1d80c5078 challenges/context: add JA4 fingerprint in the headers Geoffrey “Frogeye” Preud'homme 2025-06-27 21:13:56 +02:00
  • 6e53bc224a bind/tls: allow configuring min/max TLS version, ciphers, and curves tls-entries-reload WeebDataHoarder 2025-06-18 16:08:35 +02:00
  • c1cb81e758 bind/tls: allow specifying multiple tls entries WeebDataHoarder 2025-06-18 15:44:12 +02:00
  • 9a6f25df59 http/query: preserve raw query state when modifying url query WeebDataHoarder 2025-06-09 13:49:31 +02:00
  • c16f0863ae examples/generic.yml: use path.matches in condition Alan Orth 2025-05-17 23:46:40 +03:00
  • 85a8f0d9ec examples: remove erroneous whitespace Alan Orth 2025-05-17 23:45:39 +03:00
  • a5e2e6625b cmd: move http/backend error logs to debug level WeebDataHoarder 2025-05-17 18:55:48 +02:00
  • d24e4b521a examples/snippets: add CGNAT range to networks-private WeebDataHoarder 2025-05-14 21:12:48 +02:00
  • 3ac6b9d366 cmd/go-away: log private key fingerprint on load WeebDataHoarder 2025-05-14 01:30:48 +02:00
  • 484a5e3535 challenge/context: clear cookies by issuing a new cookie instead of clearing it WeebDataHoarder 2025-05-14 01:30:31 +02:00
  • 6032ac0b78 http: add cache-control headers to prevent caching by other proxies elsewhere WeebDataHoarder 2025-05-13 23:48:21 +02:00
  • 163fce6cfc challenge/resource-load: use proper redirect URL to current issued challenge, add static/dynamic cache bust WeebDataHoarder 2025-05-13 23:43:31 +02:00
  • 3abdc2ee5b examples: add private / localhost networks to snippets and forgejo/generic examples WeebDataHoarder 2025-05-13 03:05:11 +02:00
  • 3b045e9608 state/template: fix not allowing external templates to be defined WeebDataHoarder 2025-05-08 12:14:01 +02:00
  • 1d2f4e8a5b challenge/context: use additional HTTP headers in challenge key generation if the challenge allows for it WeebDataHoarder 2025-05-04 20:21:53 +02:00
  • 0ca8e277f9 Patches to bring compatibility to Go 1.22 * Disabled container building * No TLS Fingerprinting * HTTP/2 H2C uses golang.org/x/net/http2/h2c * html DOM walking uses custom function instead of iterator * Pinned these packages to latest compatible releases: * github.com/go-jose/go-jose/v4 v4.0.5 * golang.org/x/crypto v0.33.0 * golang.org/x/net v0.37.0 * golang.org/x/exp v0.0.0-20250210185358-939b2ce775ac * golang.org/x/text v0.22.0 * google.golang.org/genproto/googleapis v0.0.0-20240826202546-f6391c0de4c7 go1.22 WeebDataHoarder 2025-04-15 19:35:34 +02:00
  • c6a1d50f39 examples/config.yml: fix YAML syntax Alan Orth 2025-05-04 12:25:44 +03:00
  • b1f1e9a54f challenge/http: fix setting request headers properly, add method header WeebDataHoarder 2025-05-04 04:03:07 +02:00
  • e0c0f8745d readme: add latest release badge WeebDataHoarder 2025-05-04 04:02:38 +02:00
  • fb6c5c3eb4 examples/forgejo: remove standard-bots rule, it's redundant WeebDataHoarder 2025-05-03 22:43:09 +02:00
  • aebbfa4eaa context: set client network address without original port on backend-ip-header option WeebDataHoarder 2025-05-03 22:32:25 +02:00
  • 816d0fef90 ci: trigger on tags v0.7.0 WeebDataHoarder 2025-05-03 22:14:15 +02:00
  • 06aca367a1 ci: change push trigger WeebDataHoarder 2025-05-03 22:12:13 +02:00
  • 44c9114ae5 challenges: add refresh via JavaScript window.location WeebDataHoarder 2025-05-03 21:35:12 +02:00
  • 4b1878f1ac examples/forgejo: exclude fetchers from suspicious crawler WeebDataHoarder 2025-05-03 21:21:13 +02:00
  • 925a1d59a2 challenges: return ErrNoCookie when no cookies of given name are present nix WeebDataHoarder 2025-05-03 17:41:50 +02:00
  • 76417b4308 challenges: parse all existing cookies with given name and extract valid one always WeebDataHoarder 2025-05-03 17:37:52 +02:00
  • 0e62f80f9b challenges: prevent unbounded growth of stored cookies by bundling all state onto a single JWT token WeebDataHoarder 2025-05-03 17:30:39 +02:00
  • 2cb5972371 challenges/context: allow setting request headers towards the backend WeebDataHoarder 2025-05-03 15:55:13 +02:00
  • 3d73ee76c4 state: add more meta tags onto cached tags, add missing txt and xml resources to well-known snippet WeebDataHoarder 2025-05-03 05:59:32 +02:00
  • 5bc1ab428b docker: add GOAWAY_CHALLENGE_TEMPLATE_LOGO parameter to Dockerfile WeebDataHoarder 2025-05-03 04:17:02 +02:00
  • 606f8ec3a0 templates: explicitly allow overriding logo via cmdline/override in config, have bundled templates support it WeebDataHoarder 2025-05-03 04:14:11 +02:00
  • 1ea19c5a6c state context: Added proxy-safe-link-tags to proxy <link> tags, use specific LinkTags ranger on templates instead of raw elements WeebDataHoarder 2025-05-03 04:00:17 +02:00
  • 736c2708e9 examples/forgejo: exclude fetchers from TLS Fingerprint rule WeebDataHoarder 2025-05-02 22:21:40 +02:00
  • 74cc614564 readme: cleanup, redirect to wiki as necessary WeebDataHoarder 2025-05-02 20:55:44 +02:00
  • e8e072286e challenge: lower preload-early-hint-deadline to 2 seconds by default WeebDataHoarder 2025-05-02 20:42:25 +02:00
  • 0d28d1680c readme: add ngx_http_js_challenge_module and haproxy-protection WeebDataHoarder 2025-05-02 13:39:20 +02:00
  • 2ab45983e9 feat: all betterstack ip ranges and useragent (#16) pwgen2155 2025-05-02 11:00:39 +00:00
  • a2225fe749 context: allow nil request context in fetch cases WeebDataHoarder 2025-05-02 02:23:48 +02:00
  • 61d0964eb0 docker: fix docker entrypoint to optionally accept the command option nakoo 2025-04-30 05:35:55 +00:00
  • b9ca196c63 settings/bind: allow specifying bind/client timeouts WeebDataHoarder 2025-05-01 22:26:27 +02:00
  • f6a8f50a53 settings/backend: allow configuring dial and transport timeouts WeebDataHoarder 2025-05-01 22:23:23 +02:00
  • 3047dcfd4b examples/forgejo: Restrict meta tag fetching for likely bots WeebDataHoarder 2025-05-01 16:15:28 +02:00
  • 868c76eeb9 examples/forgejo: add commit graph endpoint to heavy resources WeebDataHoarder 2025-05-01 14:20:03 +02:00
  • d412672ed4 state: explicitly free resources on Close() WeebDataHoarder 2025-05-01 14:16:19 +02:00
  • d80e282781 readme: note existence of the wiki WeebDataHoarder 2025-05-01 03:23:14 +02:00
  • 2ecbd1db21 condition: ast: deprecated inNetwork is not a member function, fix logic WeebDataHoarder 2025-05-01 02:44:12 +02:00
  • d6c29846df condition: generalize AST compilation, hot load network prefix blocks as needed, walk the AST and detect and preload networks WeebDataHoarder 2025-05-01 02:35:27 +02:00
  • 6e47cec540 examples/forgejo: allow releases summary-card fetch WeebDataHoarder 2025-05-01 02:34:14 +02:00
  • fccaa64fad conditions: verify that AST condition result is bool WeebDataHoarder 2025-05-01 00:50:37 +02:00
  • a9f03267b6 settings: allow transparent backends that don't set all values WeebDataHoarder 2025-04-30 20:54:50 +02:00
  • 4ce6d9efa3 cmd: add go runtime version and arch logs WeebDataHoarder 2025-04-30 10:45:14 +02:00
  • cb46d4c7b6 ci: trigger builds on PRs WeebDataHoarder 2025-04-30 10:44:47 +02:00
  • e46a5c75f8 debug: output mismatched backend host WeebDataHoarder 2025-04-30 03:11:29 +02:00
  • b3cd741bee readme: note that port is necessary in case of non-standard port usage WeebDataHoarder 2025-04-30 03:08:18 +02:00
  • 3606590b48 Revert "docker: fix docker entrypoint to allow the command option" WeebDataHoarder 2025-04-30 02:41:25 +02:00
  • a87023861a state: fix errors when loading network lists WeebDataHoarder 2025-04-29 05:19:10 +02:00
  • 6a6c3fef07 testdata: Initial action/challenges testing tests WeebDataHoarder 2025-04-29 05:06:46 +02:00
  • 467ad9c5a9 state: fix errors when loading network lists WeebDataHoarder 2025-04-29 05:19:10 +02:00
  • e7833a7106 cmd: attach slog to all http servers WeebDataHoarder 2025-04-29 02:03:40 +02:00
  • 3c73c2de1c docker: fix docker entrypoint to allow the command option nakoo 2025-04-28 15:54:59 +00:00
  • 62277aac64 examples: modify spa to allow cookie fallback on other endpoints WeebDataHoarder 2025-04-28 17:30:23 +02:00
  • 6db839e23f examples: add spa.yml for single page application examples WeebDataHoarder 2025-04-28 17:25:49 +02:00
  • e49c4ae72f action/context: add capability to set response headers WeebDataHoarder 2025-04-28 12:40:03 +02:00
  • 61655b6a02 utils: remove debug print of all received networks on RADb WeebDataHoarder 2025-04-28 12:25:53 +02:00
  • b8bf35d4de utils: fix radb fetching lines too long for scanner buffer size, allow caching empty results WeebDataHoarder 2025-04-27 22:04:21 +02:00
  • b285c13e4c state: do not cache network prefixes if they have zero entries WeebDataHoarder 2025-04-27 21:44:04 +02:00
  • e7ef9af42a utils: remove debug initialization code from RADb helper WeebDataHoarder 2025-04-27 21:42:58 +02:00
  • 2bb8ec833d challenges/refresh: change refresh-mode to refresh-via as examples show WeebDataHoarder 2025-04-27 21:42:29 +02:00
  • a5d973dbaa actions: fix context action stopping processing WeebDataHoarder 2025-04-27 21:41:55 +02:00
  • 1a9224e453 challenge: fix skipped challenged being logged as issued due to inner condition WeebDataHoarder 2025-04-27 21:41:30 +02:00
  • 3234c4e801 feature: Implement <meta> tag fetcher from backends with allow-listed entries to prevent unwanted keys to pass WeebDataHoarder 2025-04-27 21:40:59 +02:00
  • 957303bbca examples: Do not block generic tools on generic.yml by default WeebDataHoarder 2025-04-27 21:19:17 +02:00
  • d36d8354a2 examples: clarify rules order, default action and standard-tools rule WeebDataHoarder 2025-04-27 20:53:30 +02:00
  • 666ffa574a challenge: implement IPv6 Happy Eyeballs again, use errors to detect this within challenge, cleanup referrer tags WeebDataHoarder 2025-04-27 18:49:58 +02:00
  • 06c363e55a context: add ip prefix on keyed cookie WeebDataHoarder 2025-04-27 17:37:34 +02:00
  • 62ece572d9 challenge: Use top /24 for IPv4 or top /64 for IPv6 WeebDataHoarder 2025-04-27 17:30:34 +02:00
  • c5ad9cdf03 context: add CONTEXT action to apply options on current request WeebDataHoarder 2025-04-27 17:20:57 +02:00
  • d353286a08 readme: update "why do this?" section with Wikimedia blog WeebDataHoarder 2025-04-27 16:50:59 +02:00
  • 0473109e60 http: allow specifying Go DNS resolver on config backends v0.6.0 WeebDataHoarder 2025-04-27 13:05:11 +02:00
  • eb96acb559 cmd: have -check use same logger as fatal errors WeebDataHoarder 2025-04-27 12:18:49 +02:00
  • c33531d7eb cmd: log errors with ERROR severity via slog, additionally print newline string, fixes #12 WeebDataHoarder 2025-04-27 12:17:18 +02:00
  • b3eb0ab4b7 docker: remove GOAWAY_POLICY_SNIPPETS by default WeebDataHoarder 2025-04-27 11:51:17 +02:00
  • 45692ec6c0 readme: use proper forge for powxy WeebDataHoarder 2025-04-26 00:03:43 +02:00
  • 32b7c578f6 readme: add CSSWAF, rewrite table WeebDataHoarder 2025-04-25 23:56:29 +02:00
  • 01ef63abea challenge: quote expected challenge name on error WeebDataHoarder 2025-04-25 23:20:53 +02:00
  • 0b9f077b6c context: delete query parameters set by go-away WeebDataHoarder 2025-04-25 22:48:34 +02:00
  • a85aa95dbd cmd: support changing path from well-known prefix, allow configuring full path WeebDataHoarder 2025-04-25 22:16:09 +02:00
  • a1f97adde8 metrics: fix global state reset on policy reload WeebDataHoarder 2025-04-25 22:09:02 +02:00
  • bca5b25f28 docker: include default snippets onto Dockerfile, allow multiple snippets folders, closes #8 WeebDataHoarder 2025-04-25 18:09:25 +02:00
  • d665036d98 examples: move desired-crawlers before undesired-networks WeebDataHoarder 2025-04-25 17:59:16 +02:00