CFC-Servers/cfc_cl_http_whitelist
1
0
Fork 0
mirror of https://github.com/CFC-Servers/cfc_cl_http_whitelist.git synced 2025-03-04 03:03:18 -05:00
Code Issues Projects Releases Activity
74 Commits 24 Branches 0 Tags 480 KiB
Lua 100%
bc46b35654
Go to file
Pierce Lally bc46b35654
Patch methods used to bypass whitelist (#24) 
* add code to handle pls files

* add PlayURL file data inspecting before playing

* add filetypes.lua

* fix bugs with file url fetching

* naming changes

* allow non recognized filetypes

* update config

* change function names

* dont redefine locals

* hot fix html wrapping

* wrap RunJavascript and apply html url checks

* Remove debug print

* dont log javascript when no urls are found

---------

Co-authored-by: Brandon Sturgeon <brandon@brandonsturgeon.com>
2023-08-11 17:26:05 -04:00
.github/workflows Add workflow and fix style (#16) 2022-09-07 03:06:34 +02:00
lua Patch methods used to bypass whitelist (#24) 2023-08-11 17:26:05 -04:00
LICENSE Initial commit 2020-10-13 18:03:32 -04:00
README.md Update README.md 2022-09-01 19:53:39 -04:00

README.md

cfc_cl_http_whitelist

Attempts to block any http request on clients that are not in the defined whitelist

Configuring

You can create a file in lua/cfc_http_restrictions/configs to add your own default domains to your server. e.g. lua/cfc_http_restrictions/config/myserver_config.lua. See CFC's Whitelist config addon for an exmaple

Configuration is loaded from lua files and a data file on in the clients data folder Each config thats loaded will overwrite values in the previous config, unless permanent=true is set on that config option

Configuration load order on client

  • lua/cfc_http_retrictions/default_config.lua
  • lua/cfc_http_restrictions/configs/*.lua
  • data/cfc_cl_http_whitelist_config.json

Configuration options

name type description
noisy bool mark the domain as noisy, hiding it from logs, this can be used for internal domains that will be called frequently on the client
allowed bool Is the domain allowed, if false block the domain, if true allow the domain
permanent bool Is the domain permanent, if true the domain can not be removed by the users own config
_edited bool DO NOT SET, internal field used to track if a config option has been edited by the client

Clientside Convars

name default description
cfc_http_restrictions_log_allows 1 Should log allowed HTTP requests?
cfc_http_restrictions_log_blocks 1 Should log blocked HTTP requests
cfc_http_restrictions_log_verbose 0 Should the logs include verbose messages? noisy domains and full urls.