akanealw
eec8c28fb3
Some checks are pending
Go Benchmark / Performance Regression Check (push) Waiting to run
Cerberus Integration / Cerberus Security Stack Integration (push) Waiting to run
Upload Coverage to Codecov / Backend Codecov Upload (push) Waiting to run
Upload Coverage to Codecov / Frontend Codecov Upload (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (go) (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Waiting to run
CrowdSec Integration / CrowdSec Bouncer Integration (push) Waiting to run
Docker Build, Publish & Test / build-and-push (push) Waiting to run
Docker Build, Publish & Test / Security Scan PR Image (push) Blocked by required conditions
Quality Checks / Auth Route Protection Contract (push) Waiting to run
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Waiting to run
Quality Checks / Backend (Go) (push) Waiting to run
Quality Checks / Frontend (React) (push) Waiting to run
Rate Limit integration / Rate Limiting Integration (push) Waiting to run
Security Scan (PR) / Trivy Binary Scan (push) Waiting to run
Supply Chain Verification (PR) / Verify Supply Chain (push) Waiting to run
WAF integration / Coraza WAF Integration (push) Waiting to run
35 lines
2.0 KiB
Markdown
Executable File
35 lines
2.0 KiB
Markdown
Executable File
# CrowdSec Integration & UI Overhaul Summary
|
|
|
|
## Overview
|
|
|
|
This update focuses on stabilizing the CrowdSec Hub integration, fixing critical file system issues, and significantly improving the user experience for managing security presets.
|
|
|
|
## Key Improvements
|
|
|
|
### 1. CrowdSec Hub Integration
|
|
|
|
- **Robust Mirror Logic:** The backend now correctly handles `text/plain` content types and parses the "Map of Maps" JSON structure returned by GitHub raw content.
|
|
- **Device Busy Fix:** Fixed a critical issue where Docker volume mounts prevented directory cleaning. The new implementation safely deletes contents without removing the mount point itself.
|
|
- **Fallback Mechanisms:** Improved fallback logic ensures that if the primary Hub is unreachable, the system gracefully degrades to using the bundled mirror or cached presets.
|
|
|
|
### 2. User Interface Overhaul
|
|
|
|
- **Search & Sort:** The "Configuration Packages" page now features a robust search bar and sorting options (Name, Status, Downloads), making it easy to find specific presets.
|
|
- **List View:** Replaced the cumbersome dropdown with a clean, scrollable list view that displays more information about each preset.
|
|
- **Console Enrollment:** Added a dedicated UI for enrolling the embedded CrowdSec agent with the CrowdSec Console.
|
|
|
|
### 3. Documentation
|
|
|
|
- **Features Guide:** Updated `docs/features.md` to reflect the new CrowdSec integration capabilities.
|
|
- **Security Guide:** Updated `docs/security.md` with detailed instructions on using the new Hub Presets UI and Console Enrollment.
|
|
|
|
## Technical Details
|
|
|
|
- **Backend:** `backend/internal/crowdsec/hub_sync.go` was refactored to handle GitHub's raw content quirks and Docker's file system constraints.
|
|
- **Frontend:** `frontend/src/pages/CrowdSecConfig.tsx` was rewritten to support client-side filtering and sorting of the preset catalog.
|
|
|
|
## Next Steps
|
|
|
|
- Monitor the stability of the Hub sync in production environments.
|
|
- Gather user feedback on the new UI to identify further improvements.
|