mirror of
https://github.com/bunkerity/bunkerized-nginx
synced 2023-12-13 21:30:18 +01:00
46 lines
1.4 KiB
Bash
46 lines
1.4 KiB
Bash
#!/bin/bash
|
|
|
|
# load default values
|
|
. /opt/entrypoint/defaults.sh
|
|
|
|
# load some functions
|
|
. /opt/entrypoint/utils.sh
|
|
|
|
# copy stub LUA scripts
|
|
cp -r /opt/lua/* /usr/local/lib/lua
|
|
|
|
# DNS resolvers
|
|
resolvers=$(spaces_to_lua "$DNS_RESOLVERS")
|
|
replace_in_file "/usr/local/lib/lua/dns.lua" "%DNS_RESOLVERS%" "$resolvers"
|
|
|
|
# whitelist IP
|
|
list=$(spaces_to_lua "$WHITELIST_IP_LIST")
|
|
replace_in_file "/usr/local/lib/lua/whitelist.lua" "%WHITELIST_IP_LIST%" "$list"
|
|
|
|
# whitelist rDNS
|
|
list=$(spaces_to_lua "$WHITELIST_REVERSE_LIST")
|
|
replace_in_file "/usr/local/lib/lua/whitelist.lua" "%WHITELIST_REVERSE_LIST%" "$list"
|
|
|
|
# blacklist IP
|
|
list=$(spaces_to_lua "$BLACKLIST_IP_LIST")
|
|
replace_in_file "/usr/local/lib/lua/blacklist.lua" "%BLACKLIST_IP_LIST%" "$list"
|
|
|
|
# blacklist rDNS
|
|
list=$(spaces_to_lua "$BLACKLIST_REVERSE_LIST")
|
|
replace_in_file "/usr/local/lib/lua/blacklist.lua" "%BLACKLIST_REVERSE_LIST%" "$list"
|
|
|
|
# DNSBL
|
|
list=$(spaces_to_lua "$DNSBL_LIST")
|
|
replace_in_file "/usr/local/lib/lua/dnsbl.lua" "%DNSBL_LIST%" "$list"
|
|
|
|
# CrowdSec setup
|
|
if [ "$(has_value USE_CROWDSEC yes)" != "" ] ; then
|
|
replace_in_file "/usr/local/lib/lua/crowdsec/crowdsec.conf" "%CROWDSEC_HOST%" "$CROWDSEC_HOST"
|
|
replace_in_file "/usr/local/lib/lua/crowdsec/crowdsec.conf" "%CROWDSEC_KEY%" "$CROWDSEC_KEY"
|
|
fi
|
|
|
|
# Whitelist IP for API
|
|
if [ "$USE_API" = "yes" ] ; then
|
|
list=$(spaces_to_lua "$API_WHITELIST_IP")
|
|
replace_in_file "/usr/local/lib/lua/api.lua" "%API_WHITELIST_IP%" "$list"
|
|
fi
|