feat:allow ip batch delete

#436
2025-12-06 14:59:18 +08:00 · 2025-08-22 08:53:22 +08:00
parent 9d31355591
commit eb3bd0ea6a
9 changed files with 162 additions and 34 deletions
--- a/api/waf_allow_ip.go
+++ b/api/waf_allow_ip.go
@@ -8,6 +8,7 @@ import (
 	"SamWaf/model/request"
 	"SamWaf/model/spec"
 	"errors"
 	"fmt"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
@@ -115,3 +116,62 @@ func (w *WafAllowIpApi) NotifyWaf(host_code string) {
 	}
 	global.GWAF_CHAN_MSG <- chanInfo
 }
 // BatchDelAllowIpApi 批量删除IP白名单
 func (w *WafAllowIpApi) BatchDelAllowIpApi(c *gin.Context) {
 	var req request.WafAllowIpBatchDelReq
 	err := c.ShouldBindJSON(&req)
 	if err == nil {
 		// 先获取要删除的记录对应的HostCode，用于后续通知WAF引擎
 		hostCodes, err := wafIpAllowService.GetHostCodesByIds(req.Ids)
 		if err != nil {
 			response.FailWithMessage("获取网站信息失败", c)
 			return
 		}
 		// 执行批量删除
 		err = wafIpAllowService.BatchDelApi(req)
 		if err != nil {
 			response.FailWithMessage("批量删除失败: "+err.Error(), c)
 		} else {
 			// 通知所有相关的网站更新配置
 			for _, hostCode := range hostCodes {
 				w.NotifyWaf(hostCode)
 			}
 			response.OkWithMessage(fmt.Sprintf("成功删除 %d 条记录", len(req.Ids)), c)
 		}
 	} else {
 		response.FailWithMessage("解析失败", c)
 	}
 }
 // DelAllAllowIpApi 删除指定网站的所有IP白名单
 func (w *WafAllowIpApi) DelAllAllowIpApi(c *gin.Context) {
 	var req request.WafAllowIpDelAllReq
 	err := c.ShouldBindJSON(&req)
 	if err == nil {
 		// 先获取要删除的记录对应的HostCode，用于后续通知WAF引擎
 		hostCodes, err := wafIpAllowService.GetHostCodes()
 		if err != nil {
 			response.FailWithMessage("获取网站信息失败", c)
 			return
 		}
 		err = wafIpAllowService.DelAllApi(req)
 		if err != nil {
 			response.FailWithMessage("全量删除失败: "+err.Error(), c)
 		} else {
 			// 通知所有相关的网站更新配置
 			for _, hostCode := range hostCodes {
 				w.NotifyWaf(hostCode)
 			}
 			if len(req.HostCode) > 0 {
 				response.OkWithMessage("成功删除该网站的所有IP白名单", c)
 			} else {
 				response.OkWithMessage("成功删除所有IP白名单", c)
 			}
 		}
 	} else {
 		response.FailWithMessage("解析失败", c)
 	}
 }
--- a/model/request/waf_allow_ip_add_req.go
+++ b/model/request/waf_allow_ip_add_req.go
@@ -1,7 +0,0 @@
 package request
 type WafAllowIpAddReq struct {
 	HostCode string `json:"host_code"` //网站唯一码（主要键）
 	Ip       string `json:"ip"`        //白名单ip
 	Remarks  string `json:"remarks"`   //备注
 }
--- a/model/request/waf_allow_ip_del_req.go
+++ b/model/request/waf_allow_ip_del_req.go
@@ -1,5 +0,0 @@
 package request
 type WafAllowIpDelReq struct {
 	Id string `json:"id"  form:"id"` //白名单IP唯一键
 }
--- a/model/request/waf_allow_ip_detail_req.go
+++ b/model/request/waf_allow_ip_detail_req.go
@@ -1,5 +0,0 @@
 package request
 type WafAllowIpDetailReq struct {
 	Id string `json:"id"  form:"id"` //白名单IP唯一键
 }
--- a/model/request/waf_allow_ip_edit_req.go
+++ b/model/request/waf_allow_ip_edit_req.go
@@ -1,8 +0,0 @@
 package request
 type WafAllowIpEditReq struct {
 	Id       string `json:"id"`        //白名单IP唯一键
 	HostCode string `json:"host_code"` //网站唯一码（主要键）
 	Ip       string `json:"ip"`        //白名单ip
 	Remarks  string `json:"remarks"`   //备注
 }
--- a/model/request/waf_allow_ip_req.go
+++ b/model/request/waf_allow_ip_req.go
@@ -0,0 +1,34 @@
 package request
 import "SamWaf/model/common/request"
 type WafAllowIpAddReq struct {
 	HostCode string `json:"host_code"` //网站唯一码（主要键）
 	Ip       string `json:"ip"`        //白名单ip
 	Remarks  string `json:"remarks"`   //备注
 }
 type WafAllowIpDelReq struct {
 	Id string `json:"id"  form:"id"` //白名单IP唯一键
 }
 type WafAllowIpDetailReq struct {
 	Id string `json:"id"  form:"id"` //白名单IP唯一键
 }
 type WafAllowIpEditReq struct {
 	Id       string `json:"id"`        //白名单IP唯一键
 	HostCode string `json:"host_code"` //网站唯一码（主要键）
 	Ip       string `json:"ip"`        //白名单ip
 	Remarks  string `json:"remarks"`   //备注
 }
 type WafAllowIpSearchReq struct {
 	HostCode string `json:"host_code" ` //主机码
 	Ip       string `json:"ip"`         //白名单ip
 	request.PageInfo
 }
 type WafAllowIpBatchDelReq struct {
 	Ids []string `json:"ids" binding:"required"` //白名单IP唯一键数组
 }
 type WafAllowIpDelAllReq struct {
 	HostCode string `json:"host_code" form:"host_code"` //网站唯一码，为空则删除所有
 }
--- a/model/request/waf_allow_ip_search.go
+++ b/model/request/waf_allow_ip_search.go
@@ -1,9 +0,0 @@
 package request
 import "SamWaf/model/common/request"
 type WafAllowIpSearchReq struct {
 	HostCode string `json:"host_code" ` //主机码
 	Ip       string `json:"ip"`         //白名单ip
 	request.PageInfo
 }
--- a/router/waf_allow_ip.go
+++ b/router/waf_allow_ip.go
@@ -16,4 +16,7 @@ func (receiver *AllowIpRouter) InitAllowIpRouter(group *gin.RouterGroup) {
 	allowIpRouter.POST("/samwaf/wafhost/ipwhite/add", AllowIpRouterApi.AddApi)
 	allowIpRouter.GET("/samwaf/wafhost/ipwhite/del", AllowIpRouterApi.DelAllowIpApi)
 	allowIpRouter.POST("/samwaf/wafhost/ipwhite/edit", AllowIpRouterApi.ModifyAllowIpApi)
 	allowIpRouter.POST("/samwaf/wafhost/ipwhite/batchdel", AllowIpRouterApi.BatchDelAllowIpApi)
 	allowIpRouter.POST("/samwaf/wafhost/ipwhite/delall", AllowIpRouterApi.DelAllAllowIpApi)
 }
--- a/service/waf_service/waf_allow_ip.go
+++ b/service/waf_service/waf_allow_ip.go
@@ -110,3 +110,68 @@ func (receiver *WafWhiteIpService) DelApi(req request.WafAllowIpDelReq) error {
 	err = global.GWAF_LOCAL_DB.Where("id = ?", req.Id).Delete(model.IPAllowList{}).Error
 	return err
 }
 // BatchDelApi 批量删除指定ID的IP白名单
 func (receiver *WafWhiteIpService) BatchDelApi(req request.WafAllowIpBatchDelReq) error {
 	if len(req.Ids) == 0 {
 		return errors.New("删除ID列表不能为空")
 	}
 	// 先检查所有ID是否存在
 	var count int64
 	err := global.GWAF_LOCAL_DB.Model(&model.IPAllowList{}).Where("id IN ?", req.Ids).Count(&count).Error
 	if err != nil {
 		return err
 	}
 	if count != int64(len(req.Ids)) {
 		return errors.New("部分ID不存在")
 	}
 	// 执行批量删除
 	err = global.GWAF_LOCAL_DB.Where("id IN ?", req.Ids).Delete(&model.IPAllowList{}).Error
 	return err
 }
 // DelAllApi 删除指定网站的所有IP白名单
 func (receiver *WafWhiteIpService) DelAllApi(req request.WafAllowIpDelAllReq) error {
 	var whereCondition string
 	var whereValues []interface{}
 	if len(req.HostCode) > 0 {
 		whereCondition = "host_code = ? AND user_code = ? AND tenant_id = ?"
 		whereValues = append(whereValues, req.HostCode, global.GWAF_USER_CODE, global.GWAF_TENANT_ID)
 	} else {
 		whereCondition = "user_code = ? AND tenant_id = ?"
 		whereValues = append(whereValues, global.GWAF_USER_CODE, global.GWAF_TENANT_ID)
 	}
 	// 先检查是否存在记录
 	var count int64
 	err := global.GWAF_LOCAL_DB.Model(&model.IPAllowList{}).Where(whereCondition, whereValues...).Count(&count).Error
 	if err != nil {
 		return err
 	}
 	if count == 0 {
 		return errors.New("没有IP白名单记录")
 	}
 	// 执行删除
 	err = global.GWAF_LOCAL_DB.Where(whereCondition, whereValues...).Delete(&model.IPAllowList{}).Error
 	return err
 }
 // GetHostCodesByIds 根据ID数组获取对应的HostCode列表
 func (receiver *WafWhiteIpService) GetHostCodesByIds(ids []string) ([]string, error) {
 	var hostCodes []string
 	err := global.GWAF_LOCAL_DB.Model(&model.IPAllowList{}).Where("id IN ?", ids).Distinct("host_code").Pluck("host_code", &hostCodes).Error
 	return hostCodes, err
 }
 // GetHostCodes 获取所有HostCode列表
 func (receiver *WafWhiteIpService) GetHostCodes() ([]string, error) {
 	var hostCodes []string
 	err := global.GWAF_LOCAL_DB.Model(&model.IPAllowList{}).Where("user_code = ? AND tenant_id = ?", global.GWAF_USER_CODE, global.GWAF_TENANT_ID).Distinct("host_code").Pluck("host_code", &hostCodes).Error
 	return hostCodes, err
 }