Pull request 2065: 6369-ratelimit-settings-ui

Closes #6369. Co-authored-by: IldarKamalov <ik@adguard.com> Squashed commit of the following: commit efc824667a88765d5a16984fd17ecda2559f2b1e Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Wed Nov 15 19:10:47 2023 +0300 all: imp docs commit 9ec59b59000f005006ea231071329a586d9889ac Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Wed Nov 15 17:21:03 2023 +0300 dnsforward: imp err msg commit d9710dfc1dcf74d5ee8386b053d7180316f21bce Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Wed Nov 15 15:33:59 2023 +0300 all: upd chlog commit 29e868b93b15cfce5faed4d0c07b16decbce52f9 Merge: 1c3aec9f1 ebb06a583 Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Wed Nov 15 15:26:32 2023 +0300 Merge branch 'master' into 6369-ratelimit-settings-ui commit 1c3aec9f1478f71afa4d0aa9ba1c454e9d98b8db Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Tue Nov 14 21:21:22 2023 +0300 dnsforward: imp docs commit 486bf86e5a2b51b6014a231386337a2d1e945c23 Author: Ildar Kamalov <ik@adguard.com> Date: Mon Nov 13 09:57:21 2023 +0300 fix linter commit aec088f233737fdfa0e7086148ceb79df0d2e39a Author: Ildar Kamalov <ik@adguard.com> Date: Sun Nov 12 16:13:46 2023 +0300 client: validate rate limit subnets commit d4ca4d3a604295cdfaae54e6e461981233eabf3e Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Fri Nov 10 20:08:44 2023 +0300 dnsforward: imp code commit 5c11a1ef5c6fcc786d8496b14b9b16d1de1708cd Author: Stanislav Chzhen <s.chzhen@adguard.com> Date: Fri Nov 10 15:07:56 2023 +0300 all: ratelimit settings
2023-11-15 19:27:13 +03:00
parent ebb06a5831
commit 94bceaa84d
14 changed files with 500 additions and 43 deletions
--- a/client/src/__locales/en.json
+++ b/client/src/__locales/en.json
@@ -310,6 +310,16 @@
    "edns_use_custom_ip": "Use custom IP for EDNS",
    "edns_use_custom_ip_desc": "Allow to use custom IP for EDNS",
    "rate_limit_desc": "The number of requests per second allowed per client. Setting it to 0 means no limit.",
+    "rate_limit_subnet_len_ipv4": "Subnet prefix length for IPv4 addresses",
+    "rate_limit_subnet_len_ipv4_desc": "Subnet prefix length for IPv4 addresses used for rate limiting. The default is 24",
+    "rate_limit_subnet_len_ipv4_error": "The IPv4 subnet prefix length should be between 0 and 32",
+    "rate_limit_subnet_len_ipv6": "Subnet prefix length for IPv6 addresses",
+    "rate_limit_subnet_len_ipv6_desc": "Subnet prefix length for IPv6 addresses used for rate limiting. The default is 56",
+    "rate_limit_subnet_len_ipv6_error": "The IPv6 subnet prefix length should be between 0 and 128",
+    "form_enter_rate_limit_subnet_len": "Enter subnet prefix length for rate limiting",
+    "rate_limit_whitelist": "Rate limiting allowlist",
+    "rate_limit_whitelist_desc": "IP addresses excluded from rate limiting",
+    "rate_limit_whitelist_placeholder": "Enter one IP address per line",
    "blocking_ipv4_desc": "IP address to be returned for a blocked A request",
    "blocking_ipv6_desc": "IP address to be returned for a blocked AAAA request",
    "blocking_mode_default": "Default: Respond with zero IP address (0.0.0.0 for A; :: for AAAA) when blocked by Adblock-style rule; respond with the IP address specified in the rule when blocked by /etc/hosts-style rule",
--- a/client/src/actions/dnsConfig.js
+++ b/client/src/actions/dnsConfig.js
@@ -62,6 +62,10 @@ export const setDnsConfig = (config) => async (dispatch) => {
            data.upstream_dns = splitByNewLine(config.upstream_dns);
            hasDnsSettings = true;
        }
+        if (Object.prototype.hasOwnProperty.call(data, 'ratelimit_whitelist')) {
+            data.ratelimit_whitelist = splitByNewLine(config.ratelimit_whitelist);
+            hasDnsSettings = true;
+        }

        await apiClient.setDnsConfig(data);

--- a/client/src/components/Settings/Dns/Config/Form.js
+++ b/client/src/components/Settings/Dns/Config/Form.js
@@ -6,6 +6,7 @@ import { Trans, useTranslation } from 'react-i18next';
 import {
    renderInputField,
    renderRadioField,
+    renderTextareaField,
    CheckboxField,
    toNumber,
 } from '../../../../helpers/form';
@@ -14,7 +15,10 @@ import {
    validateIpv6,
    validateRequiredValue,
    validateIp,
+    validateIPv4Subnet,
+    validateIPv6Subnet,
 } from '../../../../helpers/validators';
+import { removeEmptyLines } from '../../../../helpers/helpers';
 import { BLOCKING_MODES, FORM_NAME, UINT32_RANGE } from '../../../../helpers/constants';

 const checkboxes = [
@@ -90,6 +94,69 @@ const Form = ({
                    />
                </div>
            </div>
+            <div className="col-12 col-md-7">
+                <div className="form__group form__group--settings">
+                    <label htmlFor="ratelimit_subnet_len_ipv4"
+                        className="form__label form__label--with-desc">
+                        <Trans>rate_limit_subnet_len_ipv4</Trans>
+                    </label>
+                    <div className="form__desc form__desc--top">
+                        <Trans>rate_limit_subnet_len_ipv4_desc</Trans>
+                    </div>
+                    <Field
+                        name="ratelimit_subnet_len_ipv4"
+                        type="number"
+                        component={renderInputField}
+                        className="form-control"
+                        placeholder={t('form_enter_rate_limit_subnet_len')}
+                        normalize={toNumber}
+                        validate={[validateRequiredValue, validateIPv4Subnet]}
+                        min={0}
+                        max={32}
+                    />
+                </div>
+            </div>
+            <div className="col-12 col-md-7">
+                <div className="form__group form__group--settings">
+                    <label htmlFor="ratelimit_subnet_len_ipv6"
+                        className="form__label form__label--with-desc">
+                        <Trans>rate_limit_subnet_len_ipv6</Trans>
+                    </label>
+                    <div className="form__desc form__desc--top">
+                        <Trans>rate_limit_subnet_len_ipv6_desc</Trans>
+                    </div>
+                    <Field
+                        name="ratelimit_subnet_len_ipv6"
+                        type="number"
+                        component={renderInputField}
+                        className="form-control"
+                        placeholder={t('form_enter_rate_limit_subnet_len')}
+                        normalize={toNumber}
+                        validate={[validateRequiredValue, validateIPv6Subnet]}
+                        min={0}
+                        max={128}
+                    />
+                </div>
+            </div>
+            <div className="col-12 col-md-7">
+                <div className="form__group form__group--settings">
+                    <label htmlFor="ratelimit_whitelist"
+                        className="form__label form__label--with-desc">
+                        <Trans>rate_limit_whitelist</Trans>
+                    </label>
+                    <div className="form__desc form__desc--top">
+                        <Trans>rate_limit_whitelist_desc</Trans>
+                    </div>
+                    <Field
+                        name="ratelimit_whitelist"
+                        component={renderTextareaField}
+                        type="text"
+                        className="form-control"
+                        placeholder={t('rate_limit_whitelist_placeholder')}
+                        normalizeOnBlur={removeEmptyLines}
+                    />
+                </div>
+            </div>
            <div className="col-12">
                <div className="form__group form__group--settings">
                    <Field
--- a/client/src/components/Settings/Dns/Config/index.js
+++ b/client/src/components/Settings/Dns/Config/index.js
@@ -11,6 +11,9 @@ const Config = () => {
    const {
        blocking_mode,
        ratelimit,
+        ratelimit_subnet_len_ipv4,
+        ratelimit_subnet_len_ipv6,
+        ratelimit_whitelist,
        blocking_ipv4,
        blocking_ipv6,
        blocked_response_ttl,
@@ -36,6 +39,9 @@ const Config = () => {
                <Form
                    initialValues={{
                        ratelimit,
+                        ratelimit_subnet_len_ipv4,
+                        ratelimit_subnet_len_ipv6,
+                        ratelimit_whitelist,
                        blocking_mode,
                        blocking_ipv4,
                        blocking_ipv6,
--- a/client/src/helpers/constants.js
+++ b/client/src/helpers/constants.js
@@ -26,6 +26,10 @@ export const R_WIN_ABSOLUTE_PATH = /^([a-zA-Z]:)?(\\|\/)(?:[^\\/:*?"<>|\x00]+\\)

 export const R_CLIENT_ID = /^[a-z0-9-]{1,63}$/;

+export const R_IPV4_SUBNET = /^([0-9]|[1-2][0-9]|3[0-2])?$/;
+
+export const R_IPV6_SUBNET = /^([0-9]|[1-9][0-9]|1[0-1][0-9]|12[0-8])?$/;
+
 export const MIN_PASSWORD_LENGTH = 8;
 export const MAX_PASSWORD_LENGTH = 72;

--- a/client/src/helpers/validators.js
+++ b/client/src/helpers/validators.js
@@ -15,6 +15,8 @@ import {
    R_DOMAIN,
    MAX_PASSWORD_LENGTH,
    MIN_PASSWORD_LENGTH,
+    R_IPV4_SUBNET,
+    R_IPV6_SUBNET,
 } from './constants';
 import { ip4ToInt, isValidAbsolutePath } from './form';
 import { isIpInCidr, parseSubnetMask } from './helpers';
@@ -365,3 +367,25 @@ export const validateIpGateway = (value, allValues) => {
    }
    return undefined;
 };
+
+/**
+ * @param value {string}
+ * @returns {Function}
+ */
+export const validateIPv4Subnet = (value) => {
+    if (!R_IPV4_SUBNET.test(value)) {
+        return i18next.t('rate_limit_subnet_len_ipv4_error');
+    }
+    return undefined;
+};
+
+/**
+ * @param value {string}
+ * @returns {Function}
+ */
+export const validateIPv6Subnet = (value) => {
+    if (!R_IPV6_SUBNET.test(value)) {
+        return i18next.t('rate_limit_subnet_len_ipv6_error');
+    }
+    return undefined;
+};
--- a/client/src/reducers/dnsConfig.js
+++ b/client/src/reducers/dnsConfig.js
@@ -18,6 +18,7 @@ const dnsConfig = handleActions(
                fallback_dns,
                bootstrap_dns,
                local_ptr_upstreams,
+                ratelimit_whitelist,
                ...values
            } = payload;

@@ -30,6 +31,7 @@ const dnsConfig = handleActions(
                fallback_dns: (fallback_dns && fallback_dns.join('\n')) || '',
                bootstrap_dns: (bootstrap_dns && bootstrap_dns.join('\n')) || '',
                local_ptr_upstreams: (local_ptr_upstreams && local_ptr_upstreams.join('\n')) || '',
+                ratelimit_whitelist: (ratelimit_whitelist && ratelimit_whitelist.join('\n')) || '',
                processingGetConfig: false,
            };
        },