added bot middleware

Author: denisdulici

README.md

@@ -81,6 +81,7 @@ Available middlewares applicable to routes:
 firewall.all
 
 firewall.agent
+firewall.bot
 firewall.geo
 firewall.ip
 firewall.lfi

src/Config/firewall.php

@@ -42,6 +42,7 @@
     'all_middleware' => [
         'firewall.ip',
         'firewall.agent',
+        'firewall.bot',
         'firewall.geo',
         'firewall.lfi',
         'firewall.php',
@@ -94,7 +95,26 @@
                 'block' => [], // i.e. 'AppleWebKit'
             ],
 
-            'allow_robots' => true,
+            'auto_block' => [
+                'attempts' => 5,
+                'frequency' => 1 * 60, // 1 minute
+                'period' => 30 * 60, // 30 minutes
+            ],
+        ],
+
+        'bot' => [
+            'methods' => ['all'],
+
+            'routes' => [
+                'only' => [], // i.e. 'contact'
+                'except' => [], // i.e. 'admin/*'
+            ],
+
+            // https://github.com/JayBizzle/Crawler-Detect/blob/master/raw/Crawlers.txt
+            'crawlers' => [
+                'allow' => [], // i.e. 'GoogleSites', 'GuzzleHttp'
+                'block' => [], // i.e. 'Holmes'
+            ],
 
             'auto_block' => [
                 'attempts' => 5,

src/Middleware/Agent.php

@@ -36,10 +36,6 @@ public function check($patterns)
             $status = true;
         }
 
-        if (!$status && $this->isRobot()) {
-            $status = true;
-        }
-
         if ($status) {
             $log = $this->log();
 
@@ -171,17 +167,4 @@ protected function isProperty()
 
         return false;
     }
-
-    protected function isRobot()
-    {
-        if (config('firewall.middleware.' . $this->middleware . '.allow_robots')) {
-            return false;
-        }
-
-        if ($this->parser->isRobot()) {
-            return true;
-        }
-
-        return false;
-    }
 }

src/Middleware/Bot.php

@@ -0,0 +1,41 @@
+<?php
+
+namespace Akaunting\Firewall\Middleware;
+
+use Akaunting\Firewall\Abstracts\Middleware;
+use Akaunting\Firewall\Events\AttackDetected;
+use Jenssegers\Agent\Agent;
+
+class Bot extends Middleware
+{
+    public function check($patterns)
+    {
+        $agent = new Agent();
+
+        if (!$agent->isRobot()) {
+            return false;
+        }
+
+        if (!$crawlers = config('firewall.middleware.' . $this->middleware . '.crawlers')) {
+            return false;
+        }
+
+        $status = false;
+
+        if (!empty($crawlers['allow']) && !in_array((string) $agent->robot(), (array) $crawlers['allow'])) {
+            $status = true;
+        }
+
+        if (in_array((string) $agent->robot(), (array) $crawlers['block'])) {
+            $status = true;
+        }
+
+        if ($status) {
+            $log = $this->log();
+
+            event(new AttackDetected($log));
+        }
+
+        return $status;
+    }
+}

src/Provider.php

@@ -59,6 +59,7 @@ public function registerMiddleware($router)
     {
         $router->middlewareGroup('firewall.all', config('firewall.all_middleware'));
         $router->aliasMiddleware('firewall.agent', 'Akaunting\Firewall\Middleware\Agent');
+        $router->aliasMiddleware('firewall.bot', 'Akaunting\Firewall\Middleware\Bot');
         $router->aliasMiddleware('firewall.ip', 'Akaunting\Firewall\Middleware\Ip');
         $router->aliasMiddleware('firewall.geo', 'Akaunting\Firewall\Middleware\Geo');
         $router->aliasMiddleware('firewall.lfi', 'Akaunting\Firewall\Middleware\Lfi');