test(geolocation): Add tests for geolocation

Author: julienloizelet

.github/workflows/end-to-end-auto-prepend-test-suite.yml

@@ -96,6 +96,15 @@ jobs:
 
       - name: Prepare for playwright test
         run: |
+          cd ${{ github.workspace }}
+          ddev maxmind-download DEFAULT GeoLite2-City /var/www/html/my-own-modules/${{ env.EXTENSION_PATH }}/geolocation
+          ddev maxmind-download DEFAULT GeoLite2-Country /var/www/html/my-own-modules/${{ env.EXTENSION_PATH }}/geolocation
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/geolocation
+          sha256sum -c GeoLite2-Country.tar.gz.sha256.txt
+          sha256sum -c GeoLite2-City.tar.gz.sha256.txt
+          tar -xf GeoLite2-Country.tar.gz
+          tar -xf GeoLite2-City.tar.gz
+          rm GeoLite2-Country.tar.gz GeoLite2-Country.tar.gz.sha256.txt GeoLite2-City.tar.gz GeoLite2-City.tar.gz.sha256.txt
           cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
           chmod +x test-init.sh
           ./test-init.sh
@@ -157,4 +166,9 @@ jobs:
       - name: Run Memcached tests
         run: |
           cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-          ./run-tests.sh ci "./__tests__/7-memcached.js"
+          ./run-tests.sh ci "./__tests__/7-memcached.js"
+
+      - name: Run Geolocation tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/8-geolocation.js"

.github/workflows/end-to-end-test-suite.yml

@@ -1,140 +1,154 @@
 name: End-to-end test suite
 on:
-    push:
-        branches:
-            - main
-        paths-ignore:
-            - '**.md'
-    workflow_dispatch:
+  push:
+    branches:
+      - main
+    paths-ignore:
+      - '**.md'
+  workflow_dispatch:
 
 permissions:
-    contents: read
+  contents: read
 
 jobs:
-    end-to-end-test-suite:
-        strategy:
-            fail-fast: false
-            matrix:
-                wp-version: [ "4.9", "5.0", "5.1", "5.2", "5.3", "5.4", "5.5", "5.6", "5.7", "5.8", "5.9", "6.0" ]
-                php-version: [ "7.2", "7.4", "8.0" ]
-                exclude:
-                    - { php-version: "7.4", wp-version: "4.9" }
-                    - { php-version: "7.4", wp-version: "5.0" }
-                    - { php-version: "7.4", wp-version: "5.1" }
-                    - { php-version: "7.4", wp-version: "5.2" }
-                    - { php-version: "8.0", wp-version: "4.9" }
-                    - { php-version: "8.0", wp-version: "5.0" }
-                    - { php-version: "8.0", wp-version: "5.1" }
-                    - { php-version: "8.0", wp-version: "5.2" }
-                    - { php-version: "8.0", wp-version: "5.3" }
-                    - { php-version: "8.0", wp-version: "5.4" }
-                    - { php-version: "8.0", wp-version: "5.5" }
-
-        name: End-to-end test suite
-        runs-on: ubuntu-latest
-        if: ${{ !contains(github.event.head_commit.message, 'chore(') }}
-
+  end-to-end-test-suite:
+    strategy:
+      fail-fast: false
+      matrix:
+        wp-version: [ "4.9", "5.0", "5.1", "5.2", "5.3", "5.4", "5.5", "5.6", "5.7", "5.8", "5.9", "6.0" ]
+        php-version: [ "7.2", "7.4", "8.0" ]
+        exclude:
+          - { php-version: "7.4", wp-version: "4.9" }
+          - { php-version: "7.4", wp-version: "5.0" }
+          - { php-version: "7.4", wp-version: "5.1" }
+          - { php-version: "7.4", wp-version: "5.2" }
+          - { php-version: "8.0", wp-version: "4.9" }
+          - { php-version: "8.0", wp-version: "5.0" }
+          - { php-version: "8.0", wp-version: "5.1" }
+          - { php-version: "8.0", wp-version: "5.2" }
+          - { php-version: "8.0", wp-version: "5.3" }
+          - { php-version: "8.0", wp-version: "5.4" }
+          - { php-version: "8.0", wp-version: "5.5" }
+
+    name: End-to-end test suite
+    runs-on: ubuntu-latest
+    if: ${{ !contains(github.event.head_commit.message, 'chore(') }}
+
+    env:
+      EXTENSION_NAME: "CrowdSec_Bouncer"
+      EXTENSION_PATH: "crowdsec-bouncer"
+
+    steps:
+
+      - name: Clone DDEV files
+        uses: actions/checkout@v2
+        with:
+          path: .ddev
+          repository: julienloizelet/ddev-wp
+
+      - name: Install DDEV
         env:
-            EXTENSION_NAME: "CrowdSec_Bouncer"
-            EXTENSION_PATH: "crowdsec-bouncer"
-
-        steps:
-
-            -   name: Clone DDEV files
-                uses: actions/checkout@v2
-                with:
-                    path: .ddev
-                    repository: julienloizelet/ddev-wp
-
-            -   name: Install DDEV
-                env:
-                    DDEV_VERSION: v1.19.3
-                run: |
-                    # @see https://ddev.readthedocs.io/en/stable/#installationupgrade-script-linux-and-macos-armarm64-and-amd64-architectures
-                    sudo apt-get -qq update
-                    sudo apt-get -qq -y install libnss3-tools
-                    curl -LO https://raw.githubusercontent.com/drud/ddev/master/scripts/install_ddev.sh
-                    bash install_ddev.sh ${{ env.DDEV_VERSION }}
-                    ddev config global --instrumentation-opt-in=false --omit-containers=dba,ddev-ssh-agent
-                    rm install_ddev.sh
-
-            -   name: Set WP_VERSION_CODE env
-                # used in some directory path and conventional file naming
-                # Example : 5.6.5 => wp565
-                run: |
-                    echo "WP_VERSION_CODE=$(echo wp${{ matrix.wp-version }} | sed 's/\.//g' )" >> $GITHUB_ENV
-
-
-            -   name: Start DDEV for ${{ matrix.wp-version }} with PHP ${{ matrix.php-version }}
-                run: |
-                    cp .ddev/config_overrides/config.${{ env.WP_VERSION_CODE }}.yaml .ddev/config.${{ env.WP_VERSION_CODE }}.yaml
-                    cp .ddev/additional_docker_compose/docker-compose.crowdsec.yaml .ddev/docker-compose.crowdsec.yaml
-                    cp .ddev/additional_docker_compose/docker-compose.playwright.yaml .ddev/docker-compose.playwright.yaml
-                    sed -i -e 's/^php_version:.*/php_version: ${{ matrix.php-version }}/g' .ddev/config.${{ env.WP_VERSION_CODE }}.yaml
-                    mkdir wp-content
-                    ddev start
-                    sudo chmod -R 777 ${{ github.workspace }}/wp-content
-                    sudo chmod -R 777 ${{ github.workspace }}/my-own-modules
-
-            -   name: Install WordPress ${{ matrix.wp-version }} with PHP ${{ matrix.php-version }}
-                run: |
-                    wget https://wordpress.org/wordpress-${{ matrix.wp-version }}.tar.gz
-                    tar -xf wordpress-${{ matrix.wp-version }}.tar.gz wordpress
-                    cp -r wordpress/. ${{ github.workspace }}
-                    rm -rf wordpress
-                    rm wordpress-${{ matrix.wp-version }}.tar.gz
-
-            -   name: Setup WordPress ${{ matrix.wp-version }} with PHP ${{ matrix.php-version }}
-                run: |
-                    ddev exec wp core install --url='https://${{ env.WP_VERSION_CODE }}.ddev.site' --title='WordPress' --admin_user='admin' --admin_password='admin123' --admin_email='admin@admin.com'
-
-
-            -   name: Clone ${{ env.EXTENSION_NAME }} files
-                uses: actions/checkout@v2
-                with:
-                    path: my-own-modules/${{ env.EXTENSION_PATH }}
-
-            -   name: Prepare for playwright test
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    chmod +x test-init.sh
-                    ./test-init.sh
-                    chmod +x run-tests.sh
-
-            -   name: Run Plugin activation tests
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    ./run-tests.sh ci "./__tests__/1-activate-plugin.js"
-
-            -   name: Configure CrowdSec and Wordpress bouncer plugin
-                run: |
-                    ddev crowdsec-config
-
-            -   name: Run Live mode remediation tests
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    ./run-tests.sh ci "./__tests__/2-live-mode-remediations.js ./__tests__/3-live-mode-more.js"
-
-            -   name: Run Live mode cache tests
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    ./run-tests.sh ci "./__tests__/4-live-mode-cache.js"
-
-            -   name: Prepare cron usage
-                run: |
-                  sed -i  's/fastcgi_finish_request/\/\/fastcgi_finish_request/g' wp-cron.php
-
-            -   name: Run Stream mode tests
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    ./run-tests.sh ci "./__tests__/5-stream-mode.js"
-
-            -   name: Run Redis tests
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    ./run-tests.sh ci "./__tests__/6-redis.js"
-
-            -   name: Run Memcached tests
-                run: |
-                    cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
-                    ./run-tests.sh ci "./__tests__/7-memcached.js"
+          DDEV_VERSION: v1.19.3
+        run: |
+          # @see https://ddev.readthedocs.io/en/stable/#installationupgrade-script-linux-and-macos-armarm64-and-amd64-architectures
+          sudo apt-get -qq update
+          sudo apt-get -qq -y install libnss3-tools
+          curl -LO https://raw.githubusercontent.com/drud/ddev/master/scripts/install_ddev.sh
+          bash install_ddev.sh ${{ env.DDEV_VERSION }}
+          ddev config global --instrumentation-opt-in=false --omit-containers=dba,ddev-ssh-agent
+          rm install_ddev.sh
+
+      - name: Set WP_VERSION_CODE env
+        # used in some directory path and conventional file naming
+        # Example : 5.6.5 => wp565
+        run: |
+          echo "WP_VERSION_CODE=$(echo wp${{ matrix.wp-version }} | sed 's/\.//g' )" >> $GITHUB_ENV
+
+
+      - name: Start DDEV for ${{ matrix.wp-version }} with PHP ${{ matrix.php-version }}
+        run: |
+          cp .ddev/config_overrides/config.${{ env.WP_VERSION_CODE }}.yaml .ddev/config.${{ env.WP_VERSION_CODE }}.yaml
+          cp .ddev/additional_docker_compose/docker-compose.crowdsec.yaml .ddev/docker-compose.crowdsec.yaml
+          cp .ddev/additional_docker_compose/docker-compose.playwright.yaml .ddev/docker-compose.playwright.yaml
+          sed -i -e 's/^php_version:.*/php_version: ${{ matrix.php-version }}/g' .ddev/config.${{ env.WP_VERSION_CODE }}.yaml
+          mkdir wp-content
+          ddev start
+          sudo chmod -R 777 ${{ github.workspace }}/wp-content
+          sudo chmod -R 777 ${{ github.workspace }}/my-own-modules
+
+      - name: Install WordPress ${{ matrix.wp-version }} with PHP ${{ matrix.php-version }}
+        run: |
+          wget https://wordpress.org/wordpress-${{ matrix.wp-version }}.tar.gz
+          tar -xf wordpress-${{ matrix.wp-version }}.tar.gz wordpress
+          cp -r wordpress/. ${{ github.workspace }}
+          rm -rf wordpress
+          rm wordpress-${{ matrix.wp-version }}.tar.gz
+
+      - name: Setup WordPress ${{ matrix.wp-version }} with PHP ${{ matrix.php-version }}
+        run: |
+          ddev exec wp core install --url='https://${{ env.WP_VERSION_CODE }}.ddev.site' --title='WordPress' --admin_user='admin' --admin_password='admin123' --admin_email='admin@admin.com'
+
+
+      - name: Clone ${{ env.EXTENSION_NAME }} files
+        uses: actions/checkout@v2
+        with:
+          path: my-own-modules/${{ env.EXTENSION_PATH }}
+
+      - name: Prepare for playwright test
+        run: |
+          cd ${{ github.workspace }}
+          ddev maxmind-download DEFAULT GeoLite2-City /var/www/html/my-own-modules/${{ env.EXTENSION_PATH }}/geolocation
+          ddev maxmind-download DEFAULT GeoLite2-Country /var/www/html/my-own-modules/${{ env.EXTENSION_PATH }}/geolocation
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/geolocation
+          sha256sum -c GeoLite2-Country.tar.gz.sha256.txt
+          sha256sum -c GeoLite2-City.tar.gz.sha256.txt
+          tar -xf GeoLite2-Country.tar.gz
+          tar -xf GeoLite2-City.tar.gz
+          rm GeoLite2-Country.tar.gz GeoLite2-Country.tar.gz.sha256.txt GeoLite2-City.tar.gz GeoLite2-City.tar.gz.sha256.txt
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          chmod +x test-init.sh
+          ./test-init.sh
+          chmod +x run-tests.sh
+
+      - name: Run Plugin activation tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/1-activate-plugin.js"
+
+      - name: Configure CrowdSec and Wordpress bouncer plugin
+        run: |
+          ddev crowdsec-config
+
+      - name: Run Live mode remediation tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/2-live-mode-remediations.js ./__tests__/3-live-mode-more.js"
+
+      - name: Run Live mode cache tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/4-live-mode-cache.js"
+
+      - name: Prepare cron usage
+        run: |
+          sed -i  's/fastcgi_finish_request/\/\/fastcgi_finish_request/g' wp-cron.php
+
+      - name: Run Stream mode tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/5-stream-mode.js"
+
+      - name: Run Redis tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/6-redis.js"
+
+      - name: Run Memcached tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/7-memcached.js"
+
+      - name: Run Geolocation tests
+        run: |
+          cd ${{ github.workspace }}/my-own-modules/${{ env.EXTENSION_PATH }}/tests/e2e-ddev/__scripts__
+          ./run-tests.sh ci "./__tests__/8-geolocation.js"

inc/admin/advanced-settings.php

@@ -282,7 +282,9 @@ function convertInlineIpRangesToComparableIpBounds(string $inlineIpRanges): arra
     '<br><strong>Comma (,)</strong> separated ips or ips ranges. Example: 1.2.3.4/24, 2.3.4.5, 3.4.5.6/27.<br><br>Some common CDN IP list: <a href="https://www.cloudflare.com/fr-fr/ips/" target="_blank">Cloudflare</a>, <a href="https://api.fastly.com/public-ip-list" target="_blank">Fastly</a>',
     'fill the IPs or IPs ranges here...', '');
 
-
+    // Field "crowdsec_hide_mentions"
+    addFieldCheckbox('crowdsec_hide_mentions', 'Hide CrowdSec mentions', 'crowdsec_plugin_advanced_settings', 'crowdsec_advanced_settings', 'crowdsec_admin_advanced_remediations', function () {}, function () {}, '
+    <p>Enable if you want to hide CrowdSec mentions on the Ban and Captcha pages</p>');
 
     /***************************
      ** Section "Geolocation" **

inc/admin/init.php

@@ -125,6 +125,42 @@ function testBouncerConnexionInAdminPage($ip)
         }
     }
 
+    function testGeolocationInAdminPage($ip)
+    {
+        try {
+            $settings = getDatabaseSettings();
+            $bouncer = getBouncerInstance($settings);
+            $geolocationConfig =  $settings['geolocation'];
+            $apiCache = $bouncer->getApiCache();
+            $geolocation = new CrowdSecBouncer\Geolocation();
+            $countryResult = $geolocation->getCountryResult($geolocationConfig, $ip, $apiCache);
+            if (!empty($countryResult['country'])) {
+                $countryMessage = $countryResult['country'];
+            } elseif (!empty($countryResult['not_found'])) {
+                $countryMessage = $countryResult['not_found'];
+            } elseif (!empty($countryResult['error'])) {
+                $countryMessage = $countryResult['error'];
+            }
+            else{
+                $countryMessage = __('Something went wrong.');
+            }
+
+
+            $message = __("Geolocation has been tested for IP: $ip. <br>Result is: $countryMessage");
+
+            AdminNotice::displaySuccess($message);
+        } catch (BouncerException $e) {
+            getCrowdSecLoggerInstance()->error('', [
+                'type' => 'WP_EXCEPTION_WHILE_TESTING_GEOLOCATION',
+                'message' => $e->getMessage(),
+                'code' => $e->getCode(),
+                'file' => $e->getFile(),
+                'line' => $e->getLine(),
+            ]);
+            AdminNotice::displayError('Technical error while testing geolocation: '.$e->getMessage());
+        }
+    }
+
     // ACTIONS
     add_action('admin_post_crowdsec_clear_cache', function () {
         if (
@@ -164,6 +200,17 @@ function testBouncerConnexionInAdminPage($ip)
         exit(0);
     });
 
+    add_action('admin_post_crowdsec_test_geolocation', function () {
+        if (
+            !isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'crowdsec_test_geolocation')) {
+            die('This link expired.');
+        }
+        $ip = isset($_POST['crowdsec_test_geolocation_ip']) ? $_POST['crowdsec_test_geolocation_ip'] : $_SERVER['REMOTE_ADDR'];
+        testGeolocationInAdminPage($ip);
+        header("Location: {$_SERVER['HTTP_REFERER']}");
+        exit(0);
+    });
+
     // THEME
     add_action('admin_enqueue_scripts', function () {
         // enqueue all our scripts