internal/fail2ban/connector_local.go

package fail2ban

import (
	"context"
	"errors"
	"fmt"
	"os"
	"os/exec"
	"strings"

	"github.com/swissmakers/fail2ban-ui/internal/config"
)

// Connector for a local Fail2ban instance via fail2ban-client CLI.
type LocalConnector struct {
	server config.Fail2banServer
}

// =========================================================================
//  Constructor
// =========================================================================

// Create a new LocalConnector for the given server config.
func NewLocalConnector(server config.Fail2banServer) *LocalConnector {
	return &LocalConnector{server: server}
}

func (lc *LocalConnector) ID() string {
	return lc.server.ID
}

func (lc *LocalConnector) Server() config.Fail2banServer {
	return lc.server
}

// Collects jail status for every active local jail.
func (lc *LocalConnector) GetJailInfos(ctx context.Context) ([]JailInfo, error) {
	jails, err := lc.getJails(ctx)
	if err != nil {
		return nil, err
	}
	return collectJailInfos(ctx, jails, lc.GetBannedIPs)
}

// Get banned IPs for a given jail.
func (lc *LocalConnector) GetBannedIPs(ctx context.Context, jail string) ([]string, error) {
	args := []string{"status", jail}
	out, err := lc.runFail2banClient(ctx, args...)
	if err != nil {
		return nil, fmt.Errorf("fail2ban-client status %s failed: %w", jail, err)
	}
	var bannedIPs []string
	lines := strings.Split(out, "\n")
	for _, line := range lines {
		if strings.Contains(line, "IP list:") {
			parts := strings.SplitN(line, ":", 2)
			if len(parts) > 1 {
				ips := strings.Fields(strings.TrimSpace(parts[1]))
				bannedIPs = append(bannedIPs, ips...)
			}
			break
		}
	}
	return bannedIPs, nil
}

// Unban an IP from a given jail.
func (lc *LocalConnector) UnbanIP(ctx context.Context, jail, ip string) error {
	args := []string{"set", jail, "unbanip", ip}
	if _, err := lc.runFail2banClient(ctx, args...); err != nil {
		return fmt.Errorf("error unbanning IP %s from jail %s: %w", ip, jail, err)
	}
	return nil
}

// Ban an IP in a given jail.
func (lc *LocalConnector) BanIP(ctx context.Context, jail, ip string) error {
	args := []string{"set", jail, "banip", ip}
	if _, err := lc.runFail2banClient(ctx, args...); err != nil {
		return fmt.Errorf("error banning IP %s in jail %s: %w", ip, jail, err)
	}
	return nil
}

// Reload the Fail2ban service.
func (lc *LocalConnector) Reload(ctx context.Context) error {
	out, err := lc.runFail2banClient(ctx, "reload")
	if err != nil {
		return fmt.Errorf("fail2ban reload error: %w (output: %s)", err, strings.TrimSpace(out))
	}
	// Check if fail2ban-client returns "OK"
	outputTrimmed := strings.TrimSpace(out)
	if outputTrimmed != "OK" && outputTrimmed != "" {
		config.DebugLog("fail2ban reload output: %s", out)
		if strings.Contains(out, "Errors in jail") || strings.Contains(out, "Unable to read the filter") {
			return fmt.Errorf("fail2ban reload completed but with errors (output: %s)", strings.TrimSpace(out))
		}
	}
	return nil
}

// Restart or reload the local Fail2ban instance; returns "restart" or "reload".
func (lc *LocalConnector) RestartWithMode(ctx context.Context) (string, error) {
	if _, err := exec.LookPath("systemctl"); err == nil {
		cmd := "systemctl restart fail2ban"
		out, err := executeShellCommand(ctx, cmd)
		if err != nil {
			return "restart", fmt.Errorf("failed to restart fail2ban via systemd: %w - output: %s",
				err, strings.TrimSpace(out))
		}
		if err := lc.checkFail2banHealthy(ctx); err != nil {
			return "restart", fmt.Errorf("fail2ban health check after systemd restart failed: %w", err)
		}
		return "restart", nil
	}
	if err := lc.Reload(ctx); err != nil {
		return "reload", fmt.Errorf("failed to reload fail2ban via fail2ban-client (systemctl not available): %w", err)
	}
	if err := lc.checkFail2banHealthy(ctx); err != nil {
		return "reload", fmt.Errorf("fail2ban health check after reload failed: %w", err)
	}
	return "reload", nil
}

func (lc *LocalConnector) Restart(ctx context.Context) error {
	_, err := lc.RestartWithMode(ctx)
	return err
}

func (lc *LocalConnector) GetFilterConfig(ctx context.Context, jail string) (string, string, error) {
	return GetFilterConfigLocal(jail)
}

func (lc *LocalConnector) SetFilterConfig(ctx context.Context, jail, content string) error {
	return SetFilterConfigLocal(jail, content)
}

// Get all jails.
func (lc *LocalConnector) getJails(ctx context.Context) ([]string, error) {
	out, err := lc.runFail2banClient(ctx, "status")
	if err != nil {
		return nil, fmt.Errorf("error: unable to retrieve jail information. is your fail2ban service running? details: %w", err)
	}
	var jails []string
	lines := strings.Split(out, "\n")
	for _, line := range lines {
		if strings.Contains(line, "Jail list:") {
			parts := strings.SplitN(line, ":", 2)
			if len(parts) > 1 {
				raw := strings.TrimSpace(parts[1])
				jails = strings.Split(raw, ",")
				for i := range jails {
					jails[i] = strings.TrimSpace(jails[i])
				}
			}
		}
	}
	return jails, nil
}

// =========================================================================
//  CLI Helpers
// =========================================================================

func (lc *LocalConnector) runFail2banClient(ctx context.Context, args ...string) (string, error) {
	cmdArgs := lc.buildFail2banArgs(args...)
	cmd := exec.CommandContext(ctx, "fail2ban-client", cmdArgs...)
	out, err := cmd.CombinedOutput()
	return string(out), err
}

func (lc *LocalConnector) buildFail2banArgs(args ...string) []string {
	if lc.server.SocketPath == "" {
		return args
	}
	base := []string{"-s", lc.server.SocketPath}
	return append(base, args...)
}

func (lc *LocalConnector) checkFail2banHealthy(ctx context.Context) error {
	out, err := lc.runFail2banClient(ctx, "ping")
	trimmed := strings.TrimSpace(out)
	if err != nil {
		return fmt.Errorf("fail2ban ping error: %w (output: %s)", err, trimmed)
	}
	if !strings.Contains(strings.ToLower(trimmed), "pong") {
		return fmt.Errorf("unexpected fail2ban ping output: %s", trimmed)
	}
	return nil
}

// =========================================================================
//  Delegated Operations
// =========================================================================

func (lc *LocalConnector) GetAllJails(ctx context.Context) ([]JailInfo, error) {
	return GetAllJails()
}

func (lc *LocalConnector) UpdateJailEnabledStates(ctx context.Context, updates map[string]bool) error {
	return UpdateJailEnabledStates(updates)
}

func (lc *LocalConnector) GetFilters(ctx context.Context) ([]string, error) {
	return GetFiltersLocal()
}

func (lc *LocalConnector) TestFilter(ctx context.Context, filterName string, logLines []string, filterContent string) (string, string, error) {
	return TestFilterLocal(filterName, logLines, filterContent)
}

func (lc *LocalConnector) GetJailConfig(ctx context.Context, jail string) (string, string, error) {
	return GetJailConfig(jail)
}

func (lc *LocalConnector) SetJailConfig(ctx context.Context, jail, content string) error {
	return SetJailConfig(jail, content)
}

func (lc *LocalConnector) TestLogpath(ctx context.Context, logpath string) ([]string, error) {
	return TestLogpath(logpath)
}

func (lc *LocalConnector) TestLogpathWithResolution(ctx context.Context, logpath string) (originalPath, resolvedPath string, files []string, err error) {
	return TestLogpathWithResolution(logpath)
}

func (lc *LocalConnector) UpdateDefaultSettings(ctx context.Context, settings config.AppSettings) error {
	return UpdateDefaultSettingsLocal(settings)
}

func (lc *LocalConnector) EnsureJailLocalStructure(ctx context.Context) error {
	return config.EnsureJailLocalStructure()
}

func (lc *LocalConnector) CreateJail(ctx context.Context, jailName, content string) error {
	return CreateJail(jailName, content)
}

func (lc *LocalConnector) DeleteJail(ctx context.Context, jailName string) error {
	return DeleteJail(jailName)
}

func (lc *LocalConnector) CreateFilter(ctx context.Context, filterName, content string) error {
	return CreateFilter(filterName, content)
}

func (lc *LocalConnector) DeleteFilter(ctx context.Context, filterName string) error {
	return DeleteFilter(filterName)
}

func (lc *LocalConnector) CheckJailLocalIntegrity(ctx context.Context) (bool, bool, error) {
	const jailLocalPath = "/etc/fail2ban/jail.local"
	content, err := os.ReadFile(jailLocalPath)
	if err != nil {
		if os.IsNotExist(err) {
			return false, false, nil
		}
		return false, false, fmt.Errorf("failed to read jail.local: %w", err)
	}
	hasUIAction := strings.Contains(string(content), "ui-custom-action")
	return true, hasUIAction, nil
}

// =========================================================================
//  Shell Execution
// =========================================================================

func executeShellCommand(ctx context.Context, command string) (string, error) {
	parts := strings.Fields(command)
	if len(parts) == 0 {
		return "", errors.New("no command provided")
	}
	cmd := exec.CommandContext(ctx, parts[0], parts[1:]...)
	out, err := cmd.CombinedOutput()
	return string(out), err
}
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`package fail2ban`

			`import (`
			`"context"`
			`"errors"`
			`"fmt"`
Check jail.local state and warn user if it is not fail2ban-UI managed, disable automatic jail.local migration because it is only testing 2026-02-09 19:56:43 +01:00			`"os"`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`"os/exec"`
			`"strings"`

			`"github.com/swissmakers/fail2ban-ui/internal/config"`
			`)`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Connector for a local Fail2ban instance via fail2ban-client CLI.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`type LocalConnector struct {`
			`server config.Fail2banServer`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// =========================================================================`
			`// Constructor`
			`// =========================================================================`

			`// Create a new LocalConnector for the given server config.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func NewLocalConnector(server config.Fail2banServer) *LocalConnector {`
			`return &LocalConnector{server: server}`
			`}`

			`func (lc *LocalConnector) ID() string {`
			`return lc.server.ID`
			`}`

			`func (lc *LocalConnector) Server() config.Fail2banServer {`
			`return lc.server`
			`}`

Consolidate JailInfo function to own connector_global.go and also remove old FetchBanEvents function 2026-02-20 00:02:06 +01:00			`// Collects jail status for every active local jail.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func (lc *LocalConnector) GetJailInfos(ctx context.Context) ([]JailInfo, error) {`
			`jails, err := lc.getJails(ctx)`
			`if err != nil {`
			`return nil, err`
			`}`
Consolidate JailInfo function to own connector_global.go and also remove old FetchBanEvents function 2026-02-20 00:02:06 +01:00			`return collectJailInfos(ctx, jails, lc.GetBannedIPs)`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Get banned IPs for a given jail.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func (lc *LocalConnector) GetBannedIPs(ctx context.Context, jail string) ([]string, error) {`
			`args := []string{"status", jail}`
			`out, err := lc.runFail2banClient(ctx, args...)`
			`if err != nil {`
			`return nil, fmt.Errorf("fail2ban-client status %s failed: %w", jail, err)`
			`}`
			`var bannedIPs []string`
			`lines := strings.Split(out, "\n")`
			`for _, line := range lines {`
			`if strings.Contains(line, "IP list:") {`
use SplitN to only split on the first colon to preserving IPv6 addresses 2025-12-30 16:40:57 +01:00			`parts := strings.SplitN(line, ":", 2)`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`if len(parts) > 1 {`
			`ips := strings.Fields(strings.TrimSpace(parts[1]))`
			`bannedIPs = append(bannedIPs, ips...)`
			`}`
			`break`
			`}`
			`}`
			`return bannedIPs, nil`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Unban an IP from a given jail.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func (lc *LocalConnector) UnbanIP(ctx context.Context, jail, ip string) error {`
			`args := []string{"set", jail, "unbanip", ip}`
			`if _, err := lc.runFail2banClient(ctx, args...); err != nil {`
			`return fmt.Errorf("error unbanning IP %s from jail %s: %w", ip, jail, err)`
			`}`
			`return nil`
Added manual block section and BanIP method to for all connectors, like the UnbanIP functionallity 2026-01-07 16:14:48 +01:00			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Ban an IP in a given jail.`
Added manual block section and BanIP method to for all connectors, like the UnbanIP functionallity 2026-01-07 16:14:48 +01:00			`func (lc *LocalConnector) BanIP(ctx context.Context, jail, ip string) error {`
			`args := []string{"set", jail, "banip", ip}`
			`if _, err := lc.runFail2banClient(ctx, args...); err != nil {`
			`return fmt.Errorf("error banning IP %s in jail %s: %w", ip, jail, err)`
			`}`
			`return nil`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Reload the Fail2ban service.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func (lc *LocalConnector) Reload(ctx context.Context) error {`
restructure jail.local default config functions, make banactions configurable 2025-12-04 19:42:43 +01:00			`out, err := lc.runFail2banClient(ctx, "reload")`
			`if err != nil {`
			`return fmt.Errorf("fail2ban reload error: %w (output: %s)", err, strings.TrimSpace(out))`
			`}`
Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Check if fail2ban-client returns "OK"`
Implement jails migration if there are old jails in the jail.local file, before adding the f2b server to f2b-UI 2025-12-06 15:32:28 +01:00			`outputTrimmed := strings.TrimSpace(out)`
			`if outputTrimmed != "OK" && outputTrimmed != "" {`
restructure jail.local default config functions, make banactions configurable 2025-12-04 19:42:43 +01:00			`config.DebugLog("fail2ban reload output: %s", out)`
Implement jails migration if there are old jails in the jail.local file, before adding the f2b server to f2b-UI 2025-12-06 15:32:28 +01:00			`if strings.Contains(out, "Errors in jail") \|\| strings.Contains(out, "Unable to read the filter") {`
			`return fmt.Errorf("fail2ban reload completed but with errors (output: %s)", strings.TrimSpace(out))`
			`}`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`}`
			`return nil`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Restart or reload the local Fail2ban instance; returns "restart" or "reload".`
Cleanup the fal2ban restart trigger functions, and improove error handling 2025-12-17 19:16:20 +01:00			`func (lc *LocalConnector) RestartWithMode(ctx context.Context) (string, error) {`
			`if _, err := exec.LookPath("systemctl"); err == nil {`
			`cmd := "systemctl restart fail2ban"`
			`out, err := executeShellCommand(ctx, cmd)`
			`if err != nil {`
			`return "restart", fmt.Errorf("failed to restart fail2ban via systemd: %w - output: %s",`
			`err, strings.TrimSpace(out))`
			`}`
			`if err := lc.checkFail2banHealthy(ctx); err != nil {`
			`return "restart", fmt.Errorf("fail2ban health check after systemd restart failed: %w", err)`
			`}`
			`return "restart", nil`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`}`
Cleanup the fal2ban restart trigger functions, and improove error handling 2025-12-17 19:16:20 +01:00			`if err := lc.Reload(ctx); err != nil {`
			`return "reload", fmt.Errorf("failed to reload fail2ban via fail2ban-client (systemctl not available): %w", err)`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`}`
Cleanup the fal2ban restart trigger functions, and improove error handling 2025-12-17 19:16:20 +01:00			`if err := lc.checkFail2banHealthy(ctx); err != nil {`
			`return "reload", fmt.Errorf("fail2ban health check after reload failed: %w", err)`
			`}`
			`return "reload", nil`
			`}`

			`func (lc *LocalConnector) Restart(ctx context.Context) error {`
			`_, err := lc.RestartWithMode(ctx)`
			`return err`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`}`

Fix loading wrong filter problem, implement creation and deletion of filters and jails, fix some css mismatches, update the handlers and routes 2025-12-30 01:10:49 +01:00			`func (lc *LocalConnector) GetFilterConfig(ctx context.Context, jail string) (string, string, error) {`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`return GetFilterConfigLocal(jail)`
			`}`

			`func (lc *LocalConnector) SetFilterConfig(ctx context.Context, jail, content string) error {`
			`return SetFilterConfigLocal(jail, content)`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// Get all jails.`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func (lc *LocalConnector) getJails(ctx context.Context) ([]string, error) {`
			`out, err := lc.runFail2banClient(ctx, "status")`
			`if err != nil {`
			`return nil, fmt.Errorf("error: unable to retrieve jail information. is your fail2ban service running? details: %w", err)`
			`}`
			`var jails []string`
			`lines := strings.Split(out, "\n")`
			`for _, line := range lines {`
			`if strings.Contains(line, "Jail list:") {`
use SplitN to only split on the first colon to preserving IPv6 addresses 2025-12-30 16:40:57 +01:00			`parts := strings.SplitN(line, ":", 2)`
Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`if len(parts) > 1 {`
			`raw := strings.TrimSpace(parts[1])`
			`jails = strings.Split(raw, ",")`
			`for i := range jails {`
			`jails[i] = strings.TrimSpace(jails[i])`
			`}`
			`}`
			`}`
			`}`
			`return jails, nil`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// =========================================================================`
			`// CLI Helpers`
			`// =========================================================================`

Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func (lc *LocalConnector) runFail2banClient(ctx context.Context, args ...string) (string, error) {`
			`cmdArgs := lc.buildFail2banArgs(args...)`
			`cmd := exec.CommandContext(ctx, "fail2ban-client", cmdArgs...)`
			`out, err := cmd.CombinedOutput()`
			`return string(out), err`
			`}`

			`func (lc *LocalConnector) buildFail2banArgs(args ...string) []string {`
			`if lc.server.SocketPath == "" {`
			`return args`
			`}`
			`base := []string{"-s", lc.server.SocketPath}`
			`return append(base, args...)`
			`}`

Cleanup the fal2ban restart trigger functions, and improove error handling 2025-12-17 19:16:20 +01:00			`func (lc *LocalConnector) checkFail2banHealthy(ctx context.Context) error {`
			`out, err := lc.runFail2banClient(ctx, "ping")`
			`trimmed := strings.TrimSpace(out)`
			`if err != nil {`
			`return fmt.Errorf("fail2ban ping error: %w (output: %s)", err, trimmed)`
			`}`
			`if !strings.Contains(strings.ToLower(trimmed), "pong") {`
			`return fmt.Errorf("unexpected fail2ban ping output: %s", trimmed)`
			`}`
			`return nil`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// =========================================================================`
			`// Delegated Operations`
			`// =========================================================================`

Fix the manage jails functions over ssh, also improve the speed or remote connections 2025-11-12 16:25:16 +01:00			`func (lc *LocalConnector) GetAllJails(ctx context.Context) ([]JailInfo, error) {`
			`return GetAllJails()`
			`}`

			`func (lc *LocalConnector) UpdateJailEnabledStates(ctx context.Context, updates map[string]bool) error {`
			`return UpdateJailEnabledStates(updates)`
			`}`

			`func (lc *LocalConnector) GetFilters(ctx context.Context) ([]string, error) {`
			`return GetFiltersLocal()`
			`}`

Enhanced Filter Debug page with inline editing and improved SSH filter testing 2026-01-16 11:39:51 +01:00			`func (lc *LocalConnector) TestFilter(ctx context.Context, filterName string, logLines []string, filterContent string) (string, string, error) {`
			`return TestFilterLocal(filterName, logLines, filterContent)`
Fix the manage jails functions over ssh, also improve the speed or remote connections 2025-11-12 16:25:16 +01:00			`}`

Fix loading wrong filter problem, implement creation and deletion of filters and jails, fix some css mismatches, update the handlers and routes 2025-12-30 01:10:49 +01:00			`func (lc *LocalConnector) GetJailConfig(ctx context.Context, jail string) (string, string, error) {`
Refactor jail.local and jail.d management 2025-12-03 20:43:44 +01:00			`return GetJailConfig(jail)`
			`}`

			`func (lc *LocalConnector) SetJailConfig(ctx context.Context, jail, content string) error {`
			`return SetJailConfig(jail, content)`
			`}`

			`func (lc *LocalConnector) TestLogpath(ctx context.Context, logpath string) ([]string, error) {`
			`return TestLogpath(logpath)`
			`}`

Reimplement Logpath Tester with fail2ban variable resolution and real-path joining 2025-12-05 23:21:08 +01:00			`func (lc *LocalConnector) TestLogpathWithResolution(ctx context.Context, logpath string) (originalPath, resolvedPath string, files []string, err error) {`
			`return TestLogpathWithResolution(logpath)`
			`}`

restructure jail.local default config functions, make banactions configurable 2025-12-04 19:42:43 +01:00			`func (lc *LocalConnector) UpdateDefaultSettings(ctx context.Context, settings config.AppSettings) error {`
			`return UpdateDefaultSettingsLocal(settings)`
			`}`

			`func (lc *LocalConnector) EnsureJailLocalStructure(ctx context.Context) error {`
			`return config.EnsureJailLocalStructure()`
			`}`

Fix loading wrong filter problem, implement creation and deletion of filters and jails, fix some css mismatches, update the handlers and routes 2025-12-30 01:10:49 +01:00			`func (lc *LocalConnector) CreateJail(ctx context.Context, jailName, content string) error {`
			`return CreateJail(jailName, content)`
			`}`

			`func (lc *LocalConnector) DeleteJail(ctx context.Context, jailName string) error {`
			`return DeleteJail(jailName)`
			`}`

			`func (lc *LocalConnector) CreateFilter(ctx context.Context, filterName, content string) error {`
			`return CreateFilter(filterName, content)`
			`}`

			`func (lc *LocalConnector) DeleteFilter(ctx context.Context, filterName string) error {`
			`return DeleteFilter(filterName)`
			`}`

Check jail.local state and warn user if it is not fail2ban-UI managed, disable automatic jail.local migration because it is only testing 2026-02-09 19:56:43 +01:00			`func (lc *LocalConnector) CheckJailLocalIntegrity(ctx context.Context) (bool, bool, error) {`
			`const jailLocalPath = "/etc/fail2ban/jail.local"`
			`content, err := os.ReadFile(jailLocalPath)`
			`if err != nil {`
			`if os.IsNotExist(err) {`
Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`return false, false, nil`
Check jail.local state and warn user if it is not fail2ban-UI managed, disable automatic jail.local migration because it is only testing 2026-02-09 19:56:43 +01:00			`}`
			`return false, false, fmt.Errorf("failed to read jail.local: %w", err)`
			`}`
			`hasUIAction := strings.Contains(string(content), "ui-custom-action")`
			`return true, hasUIAction, nil`
			`}`

Restructure an adding basic sections 2/2 2026-02-19 19:24:18 +01:00			`// =========================================================================`
			`// Shell Execution`
			`// =========================================================================`

Refactor the whole backend to support remote-fail2ban machines over ssh or over a agent-api(needs to be build) 2025-11-12 15:52:34 +01:00			`func executeShellCommand(ctx context.Context, command string) (string, error) {`
			`parts := strings.Fields(command)`
			`if len(parts) == 0 {`
			`return "", errors.New("no command provided")`
			`}`
			`cmd := exec.CommandContext(ctx, parts[0], parts[1:]...)`
			`out, err := cmd.CombinedOutput()`
			`return string(out), err`
			`}`