akanealw
eec8c28fb3
Go Benchmark / Performance Regression Check (push) Has been cancelled
Cerberus Integration / Cerberus Security Stack Integration (push) Has been cancelled
Upload Coverage to Codecov / Backend Codecov Upload (push) Has been cancelled
Upload Coverage to Codecov / Frontend Codecov Upload (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (go) (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Has been cancelled
CrowdSec Integration / CrowdSec Bouncer Integration (push) Has been cancelled
Docker Build, Publish & Test / build-and-push (push) Has been cancelled
Quality Checks / Auth Route Protection Contract (push) Has been cancelled
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Has been cancelled
Quality Checks / Backend (Go) (push) Has been cancelled
Quality Checks / Frontend (React) (push) Has been cancelled
Rate Limit integration / Rate Limiting Integration (push) Has been cancelled
Security Scan (PR) / Trivy Binary Scan (push) Has been cancelled
Supply Chain Verification (PR) / Verify Supply Chain (push) Has been cancelled
WAF integration / Coraza WAF Integration (push) Has been cancelled
Docker Build, Publish & Test / Security Scan PR Image (push) Has been cancelled
Repo Health Check / Repo health (push) Has been cancelled
History Rewrite Dry-Run / Dry-run preview for history rewrite (push) Has been cancelled
Prune Renovate Branches / prune (push) Has been cancelled
Renovate / renovate (push) Has been cancelled
Nightly Build & Package / sync-development-to-nightly (push) Has been cancelled
Nightly Build & Package / Trigger Nightly Validation Workflows (push) Has been cancelled
Nightly Build & Package / build-and-push-nightly (push) Has been cancelled
Nightly Build & Package / test-nightly-image (push) Has been cancelled
Nightly Build & Package / verify-nightly-supply-chain (push) Has been cancelled
Update GeoLite2 Checksum / update-checksum (push) Has been cancelled
Container Registry Prune / prune-ghcr (push) Has been cancelled
Container Registry Prune / prune-dockerhub (push) Has been cancelled
Container Registry Prune / summarize (push) Has been cancelled
Supply Chain Verification / Verify SBOM (push) Has been cancelled
Supply Chain Verification / Verify Release Artifacts (push) Has been cancelled
Supply Chain Verification / Verify Docker Image Supply Chain (push) Has been cancelled
Monitor Caddy Major Release / check-caddy-major (push) Has been cancelled
Weekly Nightly to Main Promotion / Verify Nightly Branch Health (push) Has been cancelled
Weekly Nightly to Main Promotion / Create Promotion PR (push) Has been cancelled
Weekly Nightly to Main Promotion / Trigger Missing Required Checks (push) Has been cancelled
Weekly Nightly to Main Promotion / Notify on Failure (push) Has been cancelled
Weekly Nightly to Main Promotion / Workflow Summary (push) Has been cancelled
Weekly Security Rebuild / Security Rebuild & Scan (push) Has been cancelled
35 lines
2.0 KiB
Markdown
Executable File
35 lines
2.0 KiB
Markdown
Executable File
# CrowdSec Integration & UI Overhaul Summary
|
|
|
|
## Overview
|
|
|
|
This update focuses on stabilizing the CrowdSec Hub integration, fixing critical file system issues, and significantly improving the user experience for managing security presets.
|
|
|
|
## Key Improvements
|
|
|
|
### 1. CrowdSec Hub Integration
|
|
|
|
- **Robust Mirror Logic:** The backend now correctly handles `text/plain` content types and parses the "Map of Maps" JSON structure returned by GitHub raw content.
|
|
- **Device Busy Fix:** Fixed a critical issue where Docker volume mounts prevented directory cleaning. The new implementation safely deletes contents without removing the mount point itself.
|
|
- **Fallback Mechanisms:** Improved fallback logic ensures that if the primary Hub is unreachable, the system gracefully degrades to using the bundled mirror or cached presets.
|
|
|
|
### 2. User Interface Overhaul
|
|
|
|
- **Search & Sort:** The "Configuration Packages" page now features a robust search bar and sorting options (Name, Status, Downloads), making it easy to find specific presets.
|
|
- **List View:** Replaced the cumbersome dropdown with a clean, scrollable list view that displays more information about each preset.
|
|
- **Console Enrollment:** Added a dedicated UI for enrolling the embedded CrowdSec agent with the CrowdSec Console.
|
|
|
|
### 3. Documentation
|
|
|
|
- **Features Guide:** Updated `docs/features.md` to reflect the new CrowdSec integration capabilities.
|
|
- **Security Guide:** Updated `docs/security.md` with detailed instructions on using the new Hub Presets UI and Console Enrollment.
|
|
|
|
## Technical Details
|
|
|
|
- **Backend:** `backend/internal/crowdsec/hub_sync.go` was refactored to handle GitHub's raw content quirks and Docker's file system constraints.
|
|
- **Frontend:** `frontend/src/pages/CrowdSecConfig.tsx` was rewritten to support client-side filtering and sorting of the preset catalog.
|
|
|
|
## Next Steps
|
|
|
|
- Monitor the stability of the Hub sync in production environments.
|
|
- Gather user feedback on the new UI to identify further improvements.
|