summaryrefslogtreecommitdiffhomepage
path: root/applications/luci-app-banip/root
diff options
context:
space:
mode:
Diffstat (limited to 'applications/luci-app-banip/root')
-rw-r--r--applications/luci-app-banip/root/usr/share/luci/menu.d/luci-app-banip.json83
-rw-r--r--applications/luci-app-banip/root/usr/share/rpcd/acl.d/luci-app-banip.json77
2 files changed, 155 insertions, 5 deletions
diff --git a/applications/luci-app-banip/root/usr/share/luci/menu.d/luci-app-banip.json b/applications/luci-app-banip/root/usr/share/luci/menu.d/luci-app-banip.json
new file mode 100644
index 0000000000..fbc998df6d
--- /dev/null
+++ b/applications/luci-app-banip/root/usr/share/luci/menu.d/luci-app-banip.json
@@ -0,0 +1,83 @@
+{
+ "admin/services/banip": {
+ "title": "banIP",
+ "order": "60",
+ "action": {
+ "type": "alias",
+ "path": "admin/services/banip/overview"
+ },
+ "depends": {
+ "acl": [
+ "luci-app-banip"
+ ],
+ "fs": {
+ "/usr/bin/banip-service.sh": "executable",
+ "/etc/init.d/banip": "executable",
+ "/etc/banip/banip.feeds": "file",
+ "/etc/banip/banip.custom.feeds": "file",
+ "/etc/banip/banip.allowlist": "file",
+ "/etc/banip/banip.blocklist": "file",
+ "/etc/banip/banip.countries": "file"
+ },
+ "uci": {
+ "banip": true
+ }
+ }
+ },
+ "admin/services/banip/overview": {
+ "title": "Overview",
+ "order": 10,
+ "action": {
+ "type": "view",
+ "path": "banip/overview"
+ }
+ },
+ "admin/services/banip/allowlist": {
+ "title": "Edit Allowlist",
+ "order": 20,
+ "action": {
+ "type": "view",
+ "path": "banip/allowlist"
+ }
+ },
+ "admin/services/banip/blocklist": {
+ "title": "Edit Blocklist",
+ "order": 30,
+ "action": {
+ "type": "view",
+ "path": "banip/blocklist"
+ }
+ },
+ "admin/services/banip/feeds": {
+ "title": "Edit Custom Feeds",
+ "order": 40,
+ "action": {
+ "type": "view",
+ "path": "banip/feeds"
+ }
+ },
+ "admin/services/banip/setreport": {
+ "title": "Set Reporting",
+ "order": 50,
+ "action": {
+ "type": "view",
+ "path": "banip/setreport"
+ }
+ },
+ "admin/services/banip/firewall_log": {
+ "title": "Firewall Log",
+ "order": 60,
+ "action": {
+ "type": "view",
+ "path": "banip/firewall_log"
+ }
+ },
+ "admin/services/banip/processing_log": {
+ "title": "Processing Log",
+ "order": 70,
+ "action": {
+ "type": "view",
+ "path": "banip/processing_log"
+ }
+ }
+}
diff --git a/applications/luci-app-banip/root/usr/share/rpcd/acl.d/luci-app-banip.json b/applications/luci-app-banip/root/usr/share/rpcd/acl.d/luci-app-banip.json
index c4472c2035..41b4b6650b 100644
--- a/applications/luci-app-banip/root/usr/share/rpcd/acl.d/luci-app-banip.json
+++ b/applications/luci-app-banip/root/usr/share/rpcd/acl.d/luci-app-banip.json
@@ -1,11 +1,78 @@
{
"luci-app-banip": {
- "description": "Grant UCI access for luci-app-banip",
- "read": {
- "uci": [ "banip" ]
- },
+ "description": "Grant access to LuCI app banIP",
"write": {
- "uci": [ "banip" ]
+ "file": {
+ "/etc/banip/*": [
+ "read",
+ "write"
+ ],
+ "/etc/banip/banip.allowlist": [
+ "write"
+ ],
+ "/etc/banip/banip.blocklist": [
+ "write"
+ ],
+ "/etc/banip/banip.custom.feeds": [
+ "read",
+ "write"
+ ]
+ },
+ "uci": [
+ "banip"
+ ]
+ },
+ "read": {
+ "cgi-io": [
+ "exec"
+ ],
+ "file": {
+ "/var/run/banip.lock": [
+ "read"
+ ],
+ "/sbin/logread -e banIP-": [
+ "exec"
+ ],
+ "/usr/sbin/logread -e banIP-": [
+ "exec"
+ ],
+ "/sbin/logread -e banIP/": [
+ "exec"
+ ],
+ "/usr/sbin/logread -e banIP/": [
+ "exec"
+ ],
+ "/usr/sbin/nft -tj list ruleset": [
+ "exec"
+ ],
+ "/etc/init.d/banip stop": [
+ "exec"
+ ],
+ "/etc/init.d/banip reload": [
+ "exec"
+ ],
+ "/etc/init.d/banip restart": [
+ "exec"
+ ],
+ "/etc/init.d/banip report json": [
+ "exec"
+ ],
+ "/etc/init.d/banip search [A-Za-z0-9:.]*": [
+ "exec"
+ ],
+ "/etc/init.d/banip survey [A-Za-z0-9]*": [
+ "exec"
+ ],
+ "/etc/init.d/banip status": [
+ "exec"
+ ],
+ "/etc/init.d/banip lookup": [
+ "exec"
+ ]
+ },
+ "uci": [
+ "banip"
+ ]
}
}
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-10 07:25:26 +0000