feat(*): Use 0.26.0 version of crowdsec/bouncer lib

Author: julienloizelet

.github/workflows/release.yml

@@ -40,7 +40,7 @@ jobs:
                 uses: actions/checkout@v2
 
             -   name: Check version ${{ env.VERSION_NUMBER }} consistency in files
-                # Check crowdsec.php, readme.txt, inc/constants.php and CHANGELOG.md
+                # Check crowdsec.php, readme.txt, inc/Constants.php and CHANGELOG.md
                 run: |
                     CURRENT_DATE=$(date +'%Y-%m-%d')
                     CHANGELOG_VERSION=$(grep -o -E "## \[(.*)\] - $CURRENT_DATE"  CHANGELOG.md | head -1 | sed 's/ //g')
@@ -84,14 +84,14 @@ jobs:
                         echo "Stable tag in readme.txt: KO"
                         exit 1
                     fi
-                    CONSTANT_VERSION=$(grep -E "WordPress CrowdSec Bouncer/v(.*)"  inc/constants.php | sed 's/[\x27(),/ ]//g')
+                    CONSTANT_VERSION=$(grep -E "WordPress CrowdSec Bouncer/v(.*)"  inc/Constants.php | sed 's/[\x27(),/ ]//g')
                     echo $CONSTANT_VERSION
-                    echo "defineCROWDSEC_BOUNCER_USER_AGENTWordPressCrowdSecBouncerv${{ env.VERSION_NUMBER }}"
-                    if [[ $CONSTANT_VERSION == "defineCROWDSEC_BOUNCER_USER_AGENTWordPressCrowdSecBouncerv${{ env.VERSION_NUMBER }};" ]]
+                    echo "publicconstCROWDSEC_BOUNCER_USER_AGENTWordPressCrowdSecBouncerv${{ env.VERSION_NUMBER }}"
+                    if [[ $CONSTANT_VERSION == "publicconstCROWDSEC_BOUNCER_USER_AGENTWordPressCrowdSecBouncerv${{ env.VERSION_NUMBER }};" ]]
                     then
-                        echo "Version in inc/constants.php: OK"
+                        echo "Version in inc/Constants.php: OK"
                     else
-                        echo "Version in inc/constants.php: KO"
+                        echo "Version in inc/Constants.php: KO"
                         exit 1
                     fi
 

composer.json

@@ -19,7 +19,7 @@
 		}
 	},
 	"require": {
-		"crowdsec/bouncer": "0.24.0",
+		"crowdsec/bouncer": "0.26.0",
 		"symfony/polyfill-mbstring": "1.20.0",
 		"symfony/service-contracts": "2.4.1"
 	},

composer.lock

@@ -24,9 +24,6 @@
 
 
 require_once __DIR__.'/inc/plugin-setup.php';
-require_once __DIR__.'/inc/constants.php';
-$crowdsecRandomLogFolder = get_option('crowdsec_random_log_folder') ?: '';
-crowdsecDefineConstants($crowdsecRandomLogFolder);
 require_once __DIR__.'/inc/scheduling.php';
 register_activation_hook(__FILE__, 'activate_crowdsec_plugin');
 register_deactivation_hook(__FILE__, 'deactivate_crowdsec_plugin');

crowdsec.php

@@ -1,12 +1,10 @@
 <?php
 
-require_once __DIR__.'/constants.php';
 
 use CrowdSecBouncer\AbstractBounce;
 use CrowdSecBouncer\Bouncer;
-use CrowdSecBouncer\Constants;
-use CrowdSecBouncer\IBounce;
 use CrowdSecBouncer\BouncerException;
+require_once __DIR__ . '/Constants.php';
 
 /**
  * The class that apply a bounce.
@@ -23,13 +21,6 @@ class Bounce extends AbstractBounce
     public function init(array $crowdSecConfig, array $forcedConfigs = []): Bouncer
     {
         $finalConfigs = array_merge($crowdSecConfig, $forcedConfigs);
-        $crowdsecRandomLogFolder = $finalConfigs['crowdsec_random_log_folder'];
-        crowdsecDefineConstants($crowdsecRandomLogFolder);
-        $this->setDebug($finalConfigs['crowdsec_debug_mode']??false);
-        $this->setDisplayErrors($finalConfigs['crowdsec_display_errors'] ?? false);
-        $this->initLogger();
-
-
 
         return $this->getBouncerInstance($finalConfigs);
     }
@@ -49,20 +40,17 @@ protected function specialcharsDecodeEntQuotes(string $value)
      */
     public function getBouncerInstance(array $settings, bool $forceReload = false): Bouncer
     {
-        $crowdSecLogPath = CROWDSEC_LOG_PATH;
-        $crowdSecDebugLogPath = CROWDSEC_DEBUG_LOG_PATH;
-        $this->logger = getStandaloneCrowdSecLoggerInstance($crowdSecLogPath, $this->debug, $crowdSecDebugLogPath);
         $this->settings = $settings;
 
         $configs = [
             // LAPI connection
             'api_key' => $this->escape($this->getStringSettings('crowdsec_api_key')),
             'api_url' => $this->escape($this->getStringSettings('crowdsec_api_url')),
-            'api_user_agent' => CROWDSEC_BOUNCER_USER_AGENT,
-            'api_timeout' => CrowdSecBouncer\Constants::API_TIMEOUT,
+            'api_user_agent' => Constants::CROWDSEC_BOUNCER_USER_AGENT,
+            'api_timeout' => Constants::API_TIMEOUT,
             // Debug
             'debug_mode' => $this->getBoolSettings('crowdsec_debug_mode'),
-            'log_directory_path' => CROWDSEC_LOG_BASE_PATH,
+            'log_directory_path' => Constants::CROWDSEC_LOG_BASE_PATH,
             'forced_test_ip' => $this->getStringSettings('crowdsec_forced_test_ip'),
             'forced_test_forwarded_ip' => $this->getStringSettings('crowdsec_forced_test_forwarded_ip'),
             'display_errors' => $this->getBoolSettings('crowdsec_display_errors'),
@@ -73,7 +61,7 @@ public function getBouncerInstance(array $settings, bool $forceReload = false):
             // Cache settings
             'stream_mode' => $this->getBoolSettings('crowdsec_stream_mode'),
             'cache_system' => $this->escape($this->getStringSettings('crowdsec_cache_system')),
-            'fs_cache_path' => CROWDSEC_CACHE_PATH,
+            'fs_cache_path' => Constants::CROWDSEC_CACHE_PATH,
             'redis_dsn' => $this->escape($this->getStringSettings('crowdsec_redis_dsn')),
             'memcached_dsn' => $this->escape($this->getStringSettings('crowdsec_memcached_dsn')),
             'clean_ip_cache_duration' => $this->getIntegerSettings('crowdsec_clean_ip_cache_duration')?:Constants::CACHE_EXPIRATION_FOR_CLEAN_IP,
@@ -89,7 +77,7 @@ public function getBouncerInstance(array $settings, bool $forceReload = false):
                 'save_result' => $this->getBoolSettings('crowdsec_geolocation_save_result'),
                 'maxmind' => [
                     'database_type' => $this->getStringSettings('crowdsec_geolocation_maxmind_database_type')?:Constants::MAXMIND_COUNTRY,
-                    'database_path' => CROWDSEC_BOUNCER_GEOLOCATION_DIR. '/'.ltrim($this->getStringSettings('crowdsec_geolocation_maxmind_database_path'), '/'),
+                    'database_path' => Constants::CROWDSEC_BOUNCER_GEOLOCATION_DIR. '/'.ltrim($this->getStringSettings('crowdsec_geolocation_maxmind_database_path'), '/'),
                 ]
             ]
         ];
@@ -222,6 +210,10 @@ public function getPostedVariable(string $name): ?string
      */
     public function shouldBounceCurrentIp(): bool
     {
+        // We should not bounce when headers already sent
+        if (headers_sent()) {
+            return false;
+        }
         // Don't bounce favicon calls.
         if ('/favicon.ico' === $_SERVER['REQUEST_URI']) {
             return false;
@@ -309,10 +301,6 @@ public function sendResponse(?string $body, int $statusCode = 200): void
 
     public function safelyBounce(array $configs): bool
     {
-        if (headers_sent()) {
-            // We should not bounce when headers already sent
-            return false;
-        }
         // If there is any technical problem while bouncing, don't block the user. Bypass boucing and log the error.
         set_error_handler(function ($errno, $errstr) {
             throw new BouncerException("$errstr (Error level: $errno)");
@@ -325,8 +313,12 @@ public function safelyBounce(array $configs): bool
             }elseif($configs['crowdsec_bouncing_level'] === 'flex_boucing'){
                 $configs['crowdsec_bouncing_level'] = Constants::BOUNCING_LEVEL_FLEX;
             }
-            $this->init($configs);
-            $this->run();
+            $this->settings = $configs;
+            $this->initLogger($configs);
+            if ($this->shouldBounceCurrentIp()) {
+                $this->init($configs);
+                $this->run();
+            }
             $result = true;
         } catch (\Exception $e) {
             if(!$this->logger){
@@ -344,7 +336,7 @@ public function safelyBounce(array $configs): bool
                     'line' => $e->getLine(),
                 ]);
             }
-            if ($this->displayErrors) {
+            if (!empty($configs['display_errors'])) {
                 throw $e;
             }
         }
@@ -364,40 +356,27 @@ public function isConfigValid(): bool
             $apiUrl = $this->escape($this->getStringSettings('crowdsec_api_url'));
             if (empty($apiUrl)) {
                 $issues['errors'][] = [
-                'type' => 'INCORRECT_API_URL',
-                'message' => 'Bouncer enabled but no API URL provided',
-            ];
+                    'type' => 'INCORRECT_API_URL',
+                    'message' => 'Bouncer enabled but no API URL provided',
+                ];
             }
 
             $apiKey = $this->escape($this->getStringSettings('crowdsec_api_key'));
             if (empty($apiKey)) {
                 $issues['errors'][] = [
-                'type' => 'INCORRECT_API_KEY',
-                'message' => 'Bouncer enabled but no API key provided',
-            ];
-            }
-
-            try {
-                $cacheSystem = $this->escape($this->getStringSettings('crowdsec_cache_system'));
-                $memcachedDsn = $this->escape($this->getStringSettings('crowdsec_memcached_dsn'));
-                $redisDsn = $this->escape($this->getStringSettings('crowdsec_redis_dsn'));
-                $fsCachePath = CROWDSEC_CACHE_PATH;
-                getCacheAdapterInstanceStandalone($cacheSystem, $memcachedDsn, $redisDsn, $fsCachePath);
-            } catch (BouncerException $e) {
-                $issues['errors'][] = [
-                'type' => 'CACHE_CONFIG_ERROR',
-                'message' => $e->getMessage(),
-            ];
+                    'type' => 'INCORRECT_API_KEY',
+                    'message' => 'Bouncer enabled but no API key provided',
+                ];
             }
         }
 
         return !count($issues['errors']) && !count($issues['warnings']);
     }
 
-    public function initLogger(): void
+    public function initLogger(array $configs): void
     {
-        $crowdSecLogPath = CROWDSEC_LOG_PATH;
-        $crowdSecDebugLogPath = CROWDSEC_DEBUG_LOG_PATH;
-        $this->logger = getStandaloneCrowdSecLoggerInstance($crowdSecLogPath, $this->debug, $crowdSecDebugLogPath);
+        $isDebug = !empty($configs['crowdsec_debug_mode']);
+        $this->logger = getStandaloneCrowdSecLoggerInstance(Constants::CROWDSEC_LOG_PATH, $isDebug, Constants::CROWDSEC_DEBUG_LOG_PATH);
+
     }
 }

inc/Bounce.php

@@ -0,0 +1,28 @@
+<?php
+
+declare(strict_types=1);
+
+use CrowdSecBouncer\Constants as LibConstants;
+
+/**
+ * Every constant of the plugin are set here.
+ *
+ * @author    CrowdSec team
+ *
+ * @see      https://crowdsec.net CrowdSec Official Website
+ *
+ * @copyright Copyright (c) 2020+ CrowdSec
+ * @license   MIT License
+ */
+class Constants extends LibConstants
+{
+
+    public const CROWDSEC_LOG_BASE_PATH = __DIR__ . '/../logs/';
+    public const CROWDSEC_LOG_PATH = __DIR__ . '/../logs/prod.log';
+    public const CROWDSEC_DEBUG_LOG_PATH = __DIR__ . '/../logs/debug.log';
+    public const CROWDSEC_CACHE_PATH = __DIR__ . '/../.cache';
+    public const CROWDSEC_CONFIG_PATH = __DIR__ . '/standalone-settings.php';
+    public const CROWDSEC_BOUNCER_USER_AGENT = 'WordPress CrowdSec Bouncer/v1.7.0';
+    public const CROWDSEC_BOUNCER_GEOLOCATION_DIR = __DIR__ . '/../geolocation';
+
+}