if waf for a host is not configured, suppressing a rule for a host should automatically set it to "merge with global" and enabled.

2026-03-04 21:27:15 +01:00
parent 7341070c0d
commit d959fdf836
3 changed files with 7 additions and 7 deletions
--- a/src/components/proxy-hosts/WafFields.tsx
+++ b/src/components/proxy-hosts/WafFields.tsx
@@ -20,7 +20,7 @@ import { type WafHostConfig } from "@/src/lib/models/proxy-hosts";
 import { WafRuleExclusions } from "./WafRuleExclusions";

 type WafMode = "merge" | "override";
-type EngineMode = "Off" | "DetectionOnly" | "On";
+type EngineMode = "Off" | "DetectionOnly" | "On" | "inherit";

 const QUICK_TEMPLATES = [
  { label: "Allow IP", snippet: `SecRule REMOTE_ADDR "@ipMatch 1.2.3.4" "id:9000,phase:1,allow,nolog,msg:'Allow IP'"` },
@@ -37,7 +37,7 @@ type Props = {
 export function WafFields({ value, showModeSelector = true }: Props) {
  const [enabled, setEnabled] = useState(value?.enabled ?? false);
  const [wafMode, setWafMode] = useState<WafMode>(value?.waf_mode ?? "merge");
-  const [engineMode, setEngineMode] = useState<EngineMode>(value?.mode ?? "DetectionOnly");
+  const [engineMode, setEngineMode] = useState<EngineMode>(value?.mode ?? "inherit");
  const [loadCrs, setLoadCrs] = useState(value?.load_owasp_crs ?? true);
  const [customDirectives, setCustomDirectives] = useState(value?.custom_directives ?? "");
  const [showTemplates, setShowTemplates] = useState(false);
@@ -154,7 +154,7 @@ export function WafFields({ value, showModeSelector = true }: Props) {
            Engine Mode
          </Typography>
          <Stack direction="row" spacing={1} mt={0.75}>
-            {(["Off", "DetectionOnly", "On"] as EngineMode[]).map((v) => (
+            {(["inherit", "Off", "DetectionOnly", "On"] as EngineMode[]).map((v) => (
              <Box
                key={v}
                onClick={() => setEngineMode(v)}
@@ -187,7 +187,7 @@ export function WafFields({ value, showModeSelector = true }: Props) {
                  color={engineMode === v ? "error.main" : "text.secondary"}
                  sx={{ transition: "all 0.15s ease", fontSize: "0.8rem" }}
                >
-                  {v === "DetectionOnly" ? "Detect only" : v}
+                  {v === "DetectionOnly" ? "Detect only" : v === "inherit" ? "Global default" : v}
                </Typography>
              </Box>
            ))}