idcjp/cfmgrv4
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
364567c138
cfmgrv4/app/Services/Cloudflare/FirewallService.php
최준흠 364567c138 cfmgrv4 init...10
2025-03-12 14:30:46 +09:00

133 lines
5.7 KiB
PHP
Raw Blame History

<?php
namespace App\Services\Cloudflare;
use App\Models\Cloudflare\FirewallModel;
use App\Models\Cloudflare\AccountModel;
use App\Entities\Cloudflare\ZoneEntity;
use App\Entities\Cloudflare\FirewallEntity;
use App\Services\MyLogService;
class FirewallService extends CloudflareService
{
private ?ZoneEntity $_parent_entity = null;
private ?FirewallModel $_model = null;
private ?AccountModel $_accountModel = null;
public function __construct()
{
parent::__construct("Firewall", "Firewall");
}
private function getParentEntity(): ZoneEntity
{
if ($this->_parent_entity === null) {
throw new \Exception(__FUNCTION__ . "에서 부모정보가 없습니다.");
}
return $this->_parent_entity;
}
private function setParentEntity(ZoneEntity $parent_entity): void
{
$this->_parent_entity = $parent_entity;
$account_entity = $this->getAccountModel()->getEntityByPK($this->getParentEntity()->getParent());
if ($account_entity === null) {
throw new \Exception("해당 계정정보를 찾을수 없습니다.");
}
$auth_entity = $this->getAuthModel()->getEntityByPK($account_entity->getParent());
if ($auth_entity === null) {
throw new \Exception("해당 계정정보를 찾을수 없습니다.");
}
$this->setAuthEntity($auth_entity);
}
public function getModel(): FirewallModel
{
if ($this->_model === null) {
$this->_model = new FirewallModel();
}
return $this->_model;
}
protected function getAccountModel(): AccountModel
{
if ($this->_accountModel === null) {
$this->_accountModel = new AccountModel();
}
return $this->_accountModel;
}
protected function getArrayByResult(\stdClass $rule, array $formDatas = []): array
{
// log_message("debug", var_export($result, true));
$formDatas[FirewallModel::PK] = $rule->id;
$formDatas[FirewallModel::PARENT] = $this->getParentEntity()->getPK();
$formDatas['mode'] = $rule->action;
$formDatas[FirewallModel::TITLE] = $rule->description;
$formDatas['expression'] = $rule->expression;
$formDatas['enabled'] = isset($rule->enabled) && $rule->enabled ? "on" : "off";
$formDatas['updated_at'] = date("Y-m-d H:i:s");
$formDatas['created_at'] = $rule->last_updated;
// log_message("debug", print_r($formDatas, true));
return $formDatas;
}
public function modify(ZoneEntity $parent_entity, FirewallEntity $entity, array $formDatas): FirewallEntity
{
//부모데이터정의
$this->setParentEntity($parent_entity);
$datas = [
'id' => $entity->getPK(), // 수정할 rule의 ID
"action" => $entity->mode,
"description" => $entity->description,
"expression" => $entity->expression,
'enabled' => isset($formDatas['enabled']) && $formDatas['enabled'] === "on" ? true : false // true/false 값으로 설정
];
// 인코딩된 JSON을 확인
// throw new \Exception("Firewall:" . __FUNCTION__ . "\n" . json_encode($datas, JSON_PRETTY_PRINT) . "\n" . var_export($datas, true));
$response = $this->getMySocket()->patch("zones/{$this->getParentEntity()->getPK()}/rulesets/{$entity->getRulesetID()}/rules/{$entity->getPK()}", $datas);
$body = json_decode($response->getBody());
foreach ($body->result->rules as $rule) {
if ($rule->id === $entity->getPK()) {
$formDatas = $this->getArrayByResult($rule, ['rulesetid' => $body->result->id]);
//변경전 entity 값, 변경값 formDatas Log남기기
MyLogService::add("info", "{$body->result->id}:{$entity->expression}=>{$rule}");
//DB수정
$entity = $this->getModel()->modify($entity, $formDatas);
MyLogService::add("info", __FUNCTION__ . " {$entity->getTitle()} " . MESSAGES["UPDATED"]);
// log_message("debug", $this->getModel()->getLastQuery());
}
}
return $entity;
}
//Reload
public function reload(ZoneEntity $parent_entity): array
{
//부모데이터정의
$this->setParentEntity($parent_entity);
// log_message("notice", "\n-----------Zone {$this->getParentEntity()->getTitle()}의 Firewall 처리 시작-----------");
$entities = [];
try {
$response = $this->getMySocket()->get("zones/{$this->getParentEntity()->getPK()}/rulesets/phases/http_request_firewall_custom/entrypoint");
$body = json_decode($response->getBody());
foreach ($body->result->rules as $rule) {
if (!is_object($rule) || get_class($rule) !== 'stdClass') {
log_message("error", "Firewall: result is not a stdClass:\n" . var_export($rule, true) . "\n");
} else {
$formDatas = ['rulesetid' => $body->result->id];
$formDatas = $this->getArrayByResult($rule, $formDatas);
$entity = $this->getModel()->modify(new FirewallEntity(), $formDatas);
log_message("debug", "{$entity->getTitle()} Firewall 처리,[{$this->getMySocket()::$_request}]");
$entities[$entity->getPK()] = $entity;
}
}
} catch (\Exception $e) {
log_message("error", $e->getMessage());
// throw new \Exception($e->getMessage());
}
// log_message("notice", "\n-----------Zone {$this->getParentEntity()->getTitle()}의 Firewall처리[" . count($entities) . "개] 완료-----------");
return $entities;
}
}
Reference in New Issue View Git Blame Copy Permalink