CyberMind-FR
82d1aa37aa
Added missing RPCD ACL permissions for the new firewall bouncer management methods to resolve "Access denied" errors. ACL Changes: - Added read permissions: * firewall_bouncer_status - Get service and nftables status * firewall_bouncer_config - Read UCI configuration * nftables_stats - Get blocked IPs and rules statistics - Added write permissions: * control_firewall_bouncer - Start/stop/restart/enable/disable service * update_firewall_bouncer_config - Modify UCI settings These permissions allow the bouncers page to fully manage the firewall bouncer service through the LuCI web interface. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
47 lines
924 B
JSON
47 lines
924 B
JSON
{
|
|
"luci-app-crowdsec-dashboard": {
|
|
"description": "Grant access to LuCI CrowdSec Dashboard",
|
|
"read": {
|
|
"ubus": {
|
|
"luci.crowdsec-dashboard": [
|
|
"decisions",
|
|
"alerts",
|
|
"metrics",
|
|
"bouncers",
|
|
"machines",
|
|
"hub",
|
|
"status",
|
|
"stats",
|
|
"seccubox_logs",
|
|
"waf_status",
|
|
"metrics_config",
|
|
"collections",
|
|
"firewall_bouncer_status",
|
|
"firewall_bouncer_config",
|
|
"nftables_stats"
|
|
],
|
|
"file": [ "read", "stat" ]
|
|
},
|
|
"uci": [ "crowdsec", "crowdsec-dashboard" ]
|
|
},
|
|
"write": {
|
|
"ubus": {
|
|
"luci.crowdsec-dashboard": [
|
|
"ban",
|
|
"unban",
|
|
"collect_debug",
|
|
"configure_metrics",
|
|
"install_collection",
|
|
"remove_collection",
|
|
"update_hub",
|
|
"register_bouncer",
|
|
"delete_bouncer",
|
|
"control_firewall_bouncer",
|
|
"update_firewall_bouncer_config"
|
|
]
|
|
},
|
|
"uci": [ "crowdsec-dashboard" ]
|
|
}
|
|
}
|
|
}
|