fatchan
/
haproxy-panel-next
mirror of https://gitgud.io/fatchan/haproxy-panel-next.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Next.js+React web interface for controlling HAProxy clusters (groups of servers), in conjunction with with https://gitgud.io/fatchan/haproxy-protection.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
97 Commits
1 Branch
0 Tags
2.9 MiB
 
 
Tag: Branch: Tree: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Go to file
Thomas Lynch 839a49de0a
switch up the options for cert generating, still TODO: serials 		2 days ago
components Add the matching menulinks to account page, and update the icon for CSR to the unfilled variant 3 days ago
controllers Make ca verity subject and altnames so any user can generate them safely 3 days ago
img update README 4 days ago
pages filter shown certs to only permission domains 3 days ago
public add new favicon 7 months ago
.dockerignore Allow ca cert and pinned fp/s to be separate, and ignore node_modules in dockerignore, vastly speeds up builds (duh) 3 days ago
.env.example Add influxdb stat exporting 4 days ago
.eslintrc.json eslint, fix some bigs 11 months ago
.gitignore CA cert signing request option, add ca.js. early version 5 days ago
Dockerfile CA cert signing request option, add ca.js. early version 5 days ago
LICENSE add AGPLv3 license 11 months ago
README.md change in server ID fetching 3 days ago
acme.js skip internal verification check in acme because it fails sometimes and doesnt bother trying to get a cert which would work normally 4 weeks ago
agent.js Allow ca cert and pinned fp/s to be separate, and ignore node_modules in dockerignore, vastly speeds up builds (duh) 3 days ago
api.js Add statistics page based on dataplane.getStats, link in sidebar, udpated README 2 weeks ago
ca.js switch up the options for cert generating, still TODO: serials 2 days ago
db.js Initial commit 11 months ago
docker-compose.yml CA cert signing request option, add ca.js. early version 5 days ago
gulpfile.js fix a few bugs in cert issuance and comment out a check in cluster deletion until they are converted to have an ID 2 weeks ago
influxdb.js Add influxdb stat exporting 4 days ago
next.config.js implement global toggle 11 months ago
openapi-definition.js Make openapi definitio nstatic and sync inited and change how the instances in dataplaneAll works 4 weeks ago
package-lock.json Add influxdb stat exporting 4 days ago
package.json Add influxdb stat exporting 4 days ago
router.js split agent into separate file 4 days ago
server.js Make ca verity subject and altnames so any user can generate them safely 3 days ago
util.js add rewrite map for redirecting domains easily 2 weeks ago

README.md

BasedFlare Control Panel

Work in progress. Not recommended for production deployment. No instructions or help provided whatsoever.

Internally uses haproxy dataplaneapi. Intended for use with haproxy-protection.

Provides a control panel interface to conveniently manage clusters (groups of identically configured) HAProxy servers. Can be used with a single server cluster. Uses haproxy runtime apis to update maps, acls, etc.

Features:
  • Works with javascript disabled on the client (next.js server side rendering).
  • List/add/remove clusters (server groups).
  • List/add/remove domains for your account.
  • Control allowed hosts for a cluster.
  • Custom backend server IP and port per-domain.
  • HTTPS certificate management. Automatically generate for domain(s) and upload to cluster servers.
  • Supports local private CA. Can install root cert on all your proxies and can sign CSR's for proper origin ssl validation.
  • IP or subnet blacklist. Supports ipv4 and ipv6.
  • IP or subnet whitelist. Supports ipv4 and ipv6.
  • Redirects, rewrites url to a different domain+path.
  • Protection rules, choose bot protection mode "none" (whitelist), proof-of-work or proof-of-work+captcha. Can be domain-wide or a domain+path. Path overrides domain-wide.
  • Global override for protection mode, to enable for all domains in a cluster.
  • Maintenance mode, disables proxying for selected domains and serves an "under maintenance" page from haproxy.
  • Statistics page with server and backend-level breakdowns based on haproxy stats socket data. Ability to export statistics to influxdb.
Todo:
  • Better Multi-user support
    • allow domain/cluster editing (with user dupe check) for non-admins
    • problems w/ ip whitelist and blacklist
  • Some kind of payment system
  • More advanced rules and ability to allow/block/bot mode based on those rules.
  • Show statistics from clusters or servers within a cluster.
    • Intelligent auto toggling of proteciton modes based on these stats

Screenshots

screenshot

For generous people

Bitcoin (BTC): bc1q4elrlz5puak4m9xy3hfvmpempnpqpu95v8s9m6

Monero (XMR): 89J9DXPLUBr5HjNDNZTEo4WYMFTouSsGjUjBnUCCUxJGUirthnii4naZ8JafdnmhPe4NP1nkWsgcK82Uga7X515nNR1isuh

Oxen (OXEN): LBjExqjDKCFT6Tj198CfK8auAzBERJX1ogtcsjuKZ6AYWTFxwEADLgf2zZ8NHvWCa1UW7vrtY8DJmPYFpj3MEE69CryCvN6