Add documentation for callback-URL, move css for fail2ban-ui into seperate file. Fix some settings-options

2026-04-17 05:53:15 +02:00 · 2025-12-01 18:11:08 +01:00
parent ac0f634236
commit 35937c47ed
11 changed files with 258 additions and 164 deletions
--- a/internal/config/settings.go
+++ b/internal/config/settings.go
@@ -495,8 +495,15 @@ func setDefaultsLocked() {
 	} else if currentSettings.Port == 0 {
 		currentSettings.Port = 8080
 	}
+	// Auto-update callback URL if it's empty or still using the old default localhost pattern
 	if currentSettings.CallbackURL == "" {
 		currentSettings.CallbackURL = fmt.Sprintf("http://127.0.0.1:%d", currentSettings.Port)
+	} else {
+		// If callback URL matches the old default pattern, update it to match the current port
+		oldPattern := regexp.MustCompile(`^http://127\.0\.0\.1:\d+$`)
+		if oldPattern.MatchString(currentSettings.CallbackURL) {
+			currentSettings.CallbackURL = fmt.Sprintf("http://127.0.0.1:%d", currentSettings.Port)
+		}
 	}
 	if currentSettings.AlertCountries == nil {
 		currentSettings.AlertCountries = []string{"ALL"}
@@ -1190,6 +1197,18 @@ func UpdateSettings(new AppSettings) (AppSettings, error) {
 	}

 	new.CallbackURL = strings.TrimSpace(new.CallbackURL)
+
+	// Auto-update callback URL if port changed and callback URL is still using default localhost pattern
+	oldPort := currentSettings.Port
+	if new.Port != oldPort && new.Port > 0 {
+		// Check if callback URL matches the default localhost pattern
+		oldPattern := regexp.MustCompile(`^http://127\.0\.0\.1:\d+$`)
+		if oldPattern.MatchString(new.CallbackURL) || new.CallbackURL == "" {
+			// Update to match new port
+			new.CallbackURL = fmt.Sprintf("http://127.0.0.1:%d", new.Port)
+		}
+	}
+
 	if len(new.Servers) == 0 && len(currentSettings.Servers) > 0 {
 		new.Servers = make([]Fail2banServer, len(currentSettings.Servers))
 		for i, srv := range currentSettings.Servers {
--- a/internal/locales/de.json
+++ b/internal/locales/de.json
@@ -102,6 +102,7 @@
    "settings.alert": "Alarm-Einstellungen",
    "settings.callback_url": "Fail2ban Callback-URL",
    "settings.callback_url_placeholder": "http://127.0.0.1:8080",
+    "settings.callback_url_hint": "Diese URL wird von allen Fail2Ban-Instanzen verwendet, um die Ban-Payloads an Fail2Ban UI zu senden. Für lokale Installationen verwenden Sie denselben Port wie Fail2Ban UI (z.B. http://127.0.0.1:8080). Für Reverse-Proxy-Setups verwenden Sie falls möglich den TLS-verschlüsselten Endpunkt (z.B. https://fail2ban.example.com).",
    "settings.destination_email": "Ziel-E-Mail (Alarmempfänger)",
    "settings.destination_email_placeholder": "alerts@swissmakers.ch",
    "settings.alert_countries": "Alarm-Länder",
--- a/internal/locales/de_ch.json
+++ b/internal/locales/de_ch.json
@@ -102,6 +102,7 @@
    "settings.alert": "Alarm-Istellige",
    "settings.callback_url": "Fail2ban Callback-URL",
    "settings.callback_url_placeholder": "http://127.0.0.1:8080",
+    "settings.callback_url_hint": "Diä URL wird vo aune Fail2Ban-Instanze brucht, zum Ban-Payloads a Fail2Ban UI z sende. Für lokali Installatione bruchts de gliich Port wie z Fail2Ban UI (z.B. http://127.0.0.1:8080). Für Reverse-Proxy-Setups sött dr TLS-verschlüssleti Endpunkt wenn müglech brücht wärde (auso z.B. https://fail2ban.example.com).",
    "settings.destination_email": "Ziiu-Email (Alarmempfänger)",
    "settings.destination_email_placeholder": "alerts@swissmakers.ch",
    "settings.alert_countries": "Alarm-Länder",
--- a/internal/locales/en.json
+++ b/internal/locales/en.json
@@ -102,6 +102,7 @@
    "settings.alert": "Alert Settings",
    "settings.callback_url": "Fail2ban Callback URL",
    "settings.callback_url_placeholder": "http://127.0.0.1:8080",
+    "settings.callback_url_hint": "This URL is used by all Fail2Ban instances to send ban alerts back to Fail2Ban UI. For local deployments, use the same port as Fail2Ban UI (e.g., http://127.0.0.1:8080). For reverse proxy setups, use your TLS-encrypted endpoint (e.g., https://fail2ban.example.com).",
    "settings.destination_email": "Destination Email (Alerts Receiver)",
    "settings.destination_email_placeholder": "alerts@swissmakers.ch",
    "settings.alert_countries": "Alert Countries",
--- a/internal/locales/es.json
+++ b/internal/locales/es.json
@@ -102,6 +102,7 @@
  "settings.alert": "Configuración de alertas",
  "settings.callback_url": "URL de retorno de Fail2ban",
  "settings.callback_url_placeholder": "http://127.0.0.1:8080",
+  "settings.callback_url_hint": "Esta URL es utilizada por todas las instancias de Fail2Ban para enviar alertas de bloqueo a Fail2Ban UI. Para implementaciones locales, use el mismo puerto que Fail2Ban UI (ej. http://127.0.0.1:8080). Para configuraciones de proxy inverso, use su endpoint cifrado TLS (ej. https://fail2ban.example.com).",
  "settings.destination_email": "Correo electrónico de destino (receptor de alertas)",
  "settings.destination_email_placeholder": "alerts@swissmakers.ch",
  "settings.alert_countries": "Países para alerta",
--- a/internal/locales/fr.json
+++ b/internal/locales/fr.json
@@ -102,6 +102,7 @@
  "settings.alert": "Paramètres d'alerte",
  "settings.callback_url": "URL de rappel Fail2ban",
  "settings.callback_url_placeholder": "http://127.0.0.1:8080",
+  "settings.callback_url_hint": "Cette URL est utilisée par toutes les instances Fail2Ban pour envoyer les alertes de bannissement à Fail2Ban UI. Pour les déploiements locaux, utilisez le même port que Fail2Ban UI (p. ex. http://127.0.0.1:8080). Pour les configurations de reverse proxy, utilisez votre point de terminaison chiffré TLS (p. ex. https://fail2ban.example.com).",
  "settings.destination_email": "Email de destination (récepteur des alertes)",
  "settings.destination_email_placeholder": "alerts@swissmakers.ch",
  "settings.alert_countries": "Pays d'alerte",
--- a/internal/locales/it.json
+++ b/internal/locales/it.json
@@ -102,6 +102,7 @@
  "settings.alert": "Impostazioni di allarme",
  "settings.callback_url": "URL di callback Fail2ban",
  "settings.callback_url_placeholder": "http://127.0.0.1:8080",
+  "settings.callback_url_hint": "Questo URL viene utilizzato da tutte le istanze Fail2Ban per inviare gli avvisi di ban a Fail2Ban UI. Per le distribuzioni locali, utilizzare la stessa porta di Fail2Ban UI (es. http://127.0.0.1:8080). Per le configurazioni di reverse proxy, utilizzare il proprio endpoint crittografato TLS (es. https://fail2ban.example.com).",
  "settings.destination_email": "Email di destinazione (ricevente allarmi)",
  "settings.destination_email_placeholder": "alerts@swissmakers.ch",
  "settings.alert_countries": "Paesi per allarme",