Next.js+React web interface for controlling HAProxy clusters (groups of servers), in conjunction with with https://gitgud.io/fatchan/haproxy-protection.
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
|
2 days ago | |
---|---|---|
components | 3 days ago | |
controllers | 3 days ago | |
img | 4 days ago | |
pages | 3 days ago | |
public | 7 months ago | |
.dockerignore | 3 days ago | |
.env.example | 4 days ago | |
.eslintrc.json | 11 months ago | |
.gitignore | 5 days ago | |
Dockerfile | 5 days ago | |
LICENSE | 11 months ago | |
README.md | 3 days ago | |
acme.js | 4 weeks ago | |
agent.js | 3 days ago | |
api.js | 2 weeks ago | |
ca.js | 2 days ago | |
db.js | 11 months ago | |
docker-compose.yml | 5 days ago | |
gulpfile.js | 2 weeks ago | |
influxdb.js | 4 days ago | |
next.config.js | 11 months ago | |
openapi-definition.js | 4 weeks ago | |
package-lock.json | 4 days ago | |
package.json | 4 days ago | |
router.js | 4 days ago | |
server.js | 3 days ago | |
util.js | 2 weeks ago |
README.md
BasedFlare Control Panel
Work in progress. Not recommended for production deployment. No instructions or help provided whatsoever.
Internally uses haproxy dataplaneapi. Intended for use with haproxy-protection.
Provides a control panel interface to conveniently manage clusters (groups of identically configured) HAProxy servers. Can be used with a single server cluster. Uses haproxy runtime apis to update maps, acls, etc.
Features:
- Works with javascript disabled on the client (next.js server side rendering).
- List/add/remove clusters (server groups).
- List/add/remove domains for your account.
- Control allowed hosts for a cluster.
- Custom backend server IP and port per-domain.
- HTTPS certificate management. Automatically generate for domain(s) and upload to cluster servers.
- Supports local private CA. Can install root cert on all your proxies and can sign CSR's for proper origin ssl validation.
- IP or subnet blacklist. Supports ipv4 and ipv6.
- IP or subnet whitelist. Supports ipv4 and ipv6.
- Redirects, rewrites url to a different domain+path.
- Protection rules, choose bot protection mode "none" (whitelist), proof-of-work or proof-of-work+captcha. Can be domain-wide or a domain+path. Path overrides domain-wide.
- Global override for protection mode, to enable for all domains in a cluster.
- Maintenance mode, disables proxying for selected domains and serves an "under maintenance" page from haproxy.
- Statistics page with server and backend-level breakdowns based on haproxy stats socket data. Ability to export statistics to influxdb.
Todo:
- Better Multi-user support
- allow domain/cluster editing (with user dupe check) for non-admins
- problems w/ ip whitelist and blacklist
- Some kind of payment system
- More advanced rules and ability to allow/block/bot mode based on those rules.
- Show statistics from clusters or servers within a cluster.
- Intelligent auto toggling of proteciton modes based on these stats
Screenshots
For generous people
Bitcoin (BTC): bc1q4elrlz5puak4m9xy3hfvmpempnpqpu95v8s9m6
Monero (XMR): 89J9DXPLUBr5HjNDNZTEo4WYMFTouSsGjUjBnUCCUxJGUirthnii4naZ8JafdnmhPe4NP1nkWsgcK82Uga7X515nNR1isuh
Oxen (OXEN): LBjExqjDKCFT6Tj198CfK8auAzBERJX1ogtcsjuKZ6AYWTFxwEADLgf2zZ8NHvWCa1UW7vrtY8DJmPYFpj3MEE69CryCvN6