Merge pull request #134 from julienloizelet/fix/empty-raw-config

Fix/empty raw config

Author: julienloizelet

CHANGELOG.md

@@ -5,6 +5,16 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en)
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
 
+## [2.0.4](https://github.com/crowdsecurity/cs-wordpress-bouncer/releases/tag/v2.0.4) - 2023-03-09
+[_Compare with previous release_](https://github.com/crowdsecurity/cs-wordpress-bouncer/compare/v2.0.3...v2.0.4)
+
+### Fixed
+
+- If a database option is empty, we add the default value to avoid configuration PHP error
+
+---
+
+
 ## [2.0.3](https://github.com/crowdsecurity/cs-wordpress-bouncer/releases/tag/v2.0.3) - 2023-02-16
 [_Compare with previous release_](https://github.com/crowdsecurity/cs-wordpress-bouncer/compare/v2.0.2...v2.0.3)
 

crowdsec.php

@@ -4,7 +4,7 @@
  * Plugin URI: https://github.com/crowdsecurity/cs-wordpress-bouncer
  * Description: Safer Together. Protect your WordPress application with CrowdSec.
  * Tags: crowdsec-bouncer, wordpress, security, firewall, captcha, ip-scanner, ip-blocker, ip-blocking, ip-address, ip-database, ip-range-check, crowdsec, ban-hosts, ban-management, anti-hacking, hacker-protection, captcha-image, captcha-generator, captcha-generation, captcha-service
- * Version: 2.0.3
+ * Version: 2.0.4
  * Author: CrowdSec
  * Author URI: https://www.crowdsec.net/
  * Github: https://github.com/crowdsecurity/cs-wordpress-bouncer
@@ -13,7 +13,7 @@
  * Requires PHP: 7.2
  * Requires at least: 4.9
  * Tested up to: 6.1
- * Stable tag: 2.0.3
+ * Stable tag: 2.0.4
  * Text Domain: crowdsec-wp
  * First release: 2021.
  */

inc/Bouncer.php

@@ -31,7 +31,7 @@ class Bouncer extends AbstractBouncer
      */
     public function __construct(array $configs, LoggerInterface $logger = null)
     {
-        $this->shouldNotBounceWpAdmin = (bool)($configs['crowdsec_public_website_only']??true);
+        $this->shouldNotBounceWpAdmin = (bool)($configs['crowdsec_public_website_only'] ?? true);
         $configs = $this->handleRawConfigs($configs);
         $this->logger = $logger ?: new FileLog($configs, 'wordpress_bouncer');
         $configs['user_agent_version'] = Constants::VERSION;
@@ -63,55 +63,114 @@ public function handleRawConfigs(array $rawConfigs): array
         return [
             // LAPI connection
             'api_key' => $this->escape((string)$rawConfigs['crowdsec_api_key'] ?? ''),
-            'auth_type' => (string)($rawConfigs['crowdsec_auth_type'] ?? Constants::AUTH_KEY),
-            'tls_cert_path' => Constants::TLS_DIR . '/' . ltrim((string)$rawConfigs['crowdsec_tls_cert_path'] ?? '', '/'),
-            'tls_key_path' => Constants::TLS_DIR . '/' . ltrim((string)$rawConfigs['crowdsec_tls_key_path'] ?? '', '/'),
-            'tls_verify_peer' => (bool)($rawConfigs['crowdsec_tls_verify_peer'] ?? false),
+            'auth_type' => (string)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_auth_type',
+                Constants::AUTH_KEY
+            )),
+            'tls_cert_path' => Constants::TLS_DIR . '/' .
+                               ltrim(
+                                   (string)($this->handleRawConfig(
+                                       $rawConfigs, 'crowdsec_tls_cert_path', '')
+                                   ),
+                                   '/'
+                               ),
+            'tls_key_path' => Constants::TLS_DIR . '/' .
+                              ltrim(
+                                  (string)($this->handleRawConfig(
+                                      $rawConfigs, 'crowdsec_tls_key_path', '')
+                                  ),
+                                  '/'
+                              ),
+            'tls_verify_peer' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_tls_verify_peer', false)),
             'tls_ca_cert_path' => Constants::TLS_DIR . '/' .
-                                  ltrim((string)$rawConfigs['crowdsec_tls_ca_cert_path'], '/'),
+                                  ltrim(
+                                      (string)($this->handleRawConfig(
+                                          $rawConfigs, 'crowdsec_tls_ca_cert_path', '')
+                                      ),
+                                      '/'
+                                  ),
             'api_url' => $this->escape((string)$rawConfigs['crowdsec_api_url'] ?? ''),
-            'use_curl' => (bool)($rawConfigs['crowdsec_use_curl'] ?? false),
-            'api_timeout' => (int)($rawConfigs['crowdsec_api_timeout'] ?? Constants::API_TIMEOUT),
+            'use_curl' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_use_curl', false)),
+            'api_timeout' => (int)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_api_timeout',
+                Constants::API_TIMEOUT
+            )),
             // Debug
-            'debug_mode' => (bool)($rawConfigs['crowdsec_debug_mode'] ?? false),
-            'disable_prod_log' => (bool)($rawConfigs['crowdsec_disable_prod_log'] ?? false),
+            'debug_mode' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_debug_mode', false)),
+            'disable_prod_log' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_disable_prod_log', false)),
             'log_directory_path' => Constants::LOG_BASE_PATH,
             'forced_test_ip' => (string)($rawConfigs['crowdsec_forced_test_ip'] ?? ''),
             'forced_test_forwarded_ip' => (string)($rawConfigs['crowdsec_forced_test_forwarded_ip'] ?? ''),
-            'display_errors' => (bool)($rawConfigs['crowdsec_display_errors'] ?? false),
+            'display_errors' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_display_errors', false)),
             // Bouncer
-            'bouncing_level' => (string)($rawConfigs['crowdsec_bouncing_level'] ?? Constants::BOUNCING_LEVEL_DISABLED),
+            'bouncing_level' => (string)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_bouncing_level',
+                Constants::BOUNCING_LEVEL_DISABLED
+            )),
             'trust_ip_forward_array' => (array)($rawConfigs['crowdsec_trust_ip_forward_array'] ?? []),
-            'fallback_remediation' => (string)($rawConfigs['crowdsec_fallback_remediation'] ??
-                                               Constants::REMEDIATION_BYPASS),
+            'fallback_remediation' => (string)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_fallback_remediation',
+                Constants::REMEDIATION_BYPASS
+            )),
             // Cache settings
-            'stream_mode' => (bool)($rawConfigs['crowdsec_stream_mode'] ?? false),
-            'cache_system' => $this->escape((string)$rawConfigs['crowdsec_cache_system'] ?? Constants::CACHE_SYSTEM_PHPFS),
+            'stream_mode' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_stream_mode', false)),
+            'cache_system' => $this->escape((string)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_cache_system',
+                Constants::CACHE_SYSTEM_PHPFS
+            ))),
             'fs_cache_path' => Constants::CACHE_PATH,
             'redis_dsn' => $this->escape((string)$rawConfigs['crowdsec_redis_dsn'] ?? ''),
             'memcached_dsn' => $this->escape((string)$rawConfigs['crowdsec_memcached_dsn'] ?? ''),
-            'clean_ip_cache_duration' => (int)($rawConfigs['crowdsec_clean_ip_cache_duration'] ??
-                                               Constants::CACHE_EXPIRATION_FOR_CLEAN_IP),
-            'bad_ip_cache_duration' => (int)($rawConfigs['crowdsec_bad_ip_cache_duration'] ??
-                                             Constants::CACHE_EXPIRATION_FOR_BAD_IP),
-            'captcha_cache_duration' => (int)($rawConfigs['crowdsec_captcha_cache_duration'] ??
-                                              Constants::CACHE_EXPIRATION_FOR_CAPTCHA),
+            'clean_ip_cache_duration' => (int)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_clean_ip_cache_duration',
+                Constants::CACHE_EXPIRATION_FOR_CLEAN_IP
+            )),
+            'bad_ip_cache_duration' => (int)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_bad_ip_cache_duration',
+                Constants::CACHE_EXPIRATION_FOR_BAD_IP
+            )),
+            'captcha_cache_duration' => (int)($this->handleRawConfig(
+                $rawConfigs,
+                'crowdsec_captcha_cache_duration',
+                Constants::CACHE_EXPIRATION_FOR_CAPTCHA
+            )),
             // Geolocation
             'geolocation' => [
-                'enabled' => (bool)($rawConfigs['crowdsec_geolocation_enabled'] ?? false),
-                'type' => (string)($rawConfigs['crowdsec_geolocation_type'] ?? Constants::GEOLOCATION_TYPE_MAXMIND),
-                'cache_duration' => (int)($rawConfigs['crowdsec_geolocation_cache_duration']
-                                          ?? Constants::CACHE_EXPIRATION_FOR_GEO),
+                'enabled' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_geolocation_enabled', false)),
+                'type' => (string)($this->handleRawConfig(
+                    $rawConfigs,
+                    'crowdsec_geolocation_type',
+                    Constants::GEOLOCATION_TYPE_MAXMIND
+                )),
+                'cache_duration' => (int)($this->handleRawConfig(
+                    $rawConfigs,
+                    'crowdsec_geolocation_cache_duration',
+                    Constants::CACHE_EXPIRATION_FOR_GEO
+                )),
                 'maxmind' => [
-                    'database_type' => (string)($rawConfigs['crowdsec_geolocation_maxmind_database_type'] ??
-                                                Constants::MAXMIND_COUNTRY),
+                    'database_type' => (string)($this->handleRawConfig(
+                        $rawConfigs,
+                        'crowdsec_geolocation_maxmind_database_type',
+                        Constants::MAXMIND_COUNTRY)
+                    ),
                     'database_path' => Constants::GEOLOCATION_DIR . '/' .
-                                       ltrim((string)($rawConfigs['crowdsec_geolocation_maxmind_database_path'] ?? ''),
-                                           '/'),
+                                       ltrim(
+                                           (string)($this->handleRawConfig(
+                                               $rawConfigs, 'crowdsec_geolocation_maxmind_database_path', '')
+                                           ),
+                                           '/'
+                                       ),
                 ]
             ],
             // Ban and Captcha walls
-            'hide_mentions' => (bool)($rawConfigs['crowdsec_hide_mentions'] ?? false),
+            'hide_mentions' => (bool)($this->handleRawConfig($rawConfigs, 'crowdsec_hide_mentions', false)),
             'custom_css' => $this->specialcharsDecodeEntQuotes(
                 (string)($rawConfigs['crowdsec_theme_custom_css'] ?? '')
             ),
@@ -191,6 +250,15 @@ public function handleRawConfigs(array $rawConfigs): array
         ];
     }
 
+    private function handleRawConfig(array $rawConfigs, string $key, $defaultValue)
+    {
+        if (!empty($rawConfigs[$key])) {
+            return $rawConfigs[$key];
+        }
+
+        return $defaultValue;
+    }
+
     /**
      * @return string Ex: "X-Forwarded-For"
      */
@@ -295,6 +363,7 @@ public function shouldBounceCurrentIp(): bool
                 }
             }
         }
+
         return true;
     }
 }

inc/Constants.php

@@ -20,7 +20,7 @@ class Constants extends LibConstants
     public const LOG_BASE_PATH = __DIR__ . '/../logs/';
     public const CACHE_PATH = __DIR__ . '/../.cache';
     public const CONFIG_PATH = __DIR__ . '/standalone-settings.php';
-    public const VERSION = 'v2.0.3';
+    public const VERSION = 'v2.0.4';
     public const GEOLOCATION_DIR = __DIR__ . '/../geolocation';
     public const TLS_DIR = __DIR__ . '/../tls';
 }

readme.txt

@@ -4,7 +4,7 @@ Donate link: https://crowdsec.net/
 Tags: crowdsec-bouncer, wordpress, security, firewall, captcha, ip-scanner, ip-blocker, ip-blocking, ip-address, ip-database, ip-range-check, crowdsec, ban-hosts, ban-management, anti-hacking, hacker-protection, captcha-image, captcha-generator, captcha-generation, captcha-service
 Requires at least: 4.9
 Tested up to: 6.1
-Stable tag: 2.0.3
+Stable tag: 2.0.4
 Requires PHP: 7.2
 License: MIT
 License URI: https://opensource.org/licenses/MIT