security

Author: Admin9705

frontend/static/css/style.css

@@ -1455,6 +1455,132 @@ label .info-icon ~ text {
     margin-bottom: 15px;
 }
 
+/* Tag input system for malicious file detection */
+.tag-input-container {
+    background: #1f2937;
+    border: 1px solid rgba(90, 109, 137, 0.3);
+    border-radius: 8px;
+    padding: 10px;
+    min-height: 100px;
+    max-height: 200px;
+    overflow-y: auto;
+}
+
+.tag-list {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 8px;
+    margin-bottom: 10px;
+    min-height: 32px;
+}
+
+.tag-item {
+    background: linear-gradient(135deg, #1e3a8a 0%, #3b82f6 100%);
+    border: 1px solid rgba(90, 109, 137, 0.4);
+    border-radius: 6px;
+    padding: 6px 10px;
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    color: #e5e7eb;
+    font-size: 13px;
+    font-weight: 500;
+    box-shadow: 0 2px 4px rgba(0, 0, 0, 0.2);
+    transition: all 0.2s ease;
+}
+
+.tag-item:hover {
+    background: linear-gradient(135deg, #1d4ed8 0%, #2563eb 100%);
+    border-color: rgba(90, 109, 137, 0.6);
+    transform: translateY(-1px);
+    box-shadow: 0 4px 8px rgba(0, 0, 0, 0.3);
+}
+
+.tag-remove {
+    background: none;
+    border: none;
+    color: #ef4444;
+    cursor: pointer;
+    padding: 0;
+    width: 16px;
+    height: 16px;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    border-radius: 50%;
+    font-size: 12px;
+    transition: all 0.2s ease;
+}
+
+.tag-remove:hover {
+    background: rgba(239, 68, 68, 0.2);
+    color: #fca5a5;
+    transform: scale(1.1);
+}
+
+.tag-input-wrapper {
+    display: flex;
+    gap: 8px;
+    align-items: center;
+}
+
+.tag-input {
+    flex: 1;
+    background: #374151;
+    border: 1px solid rgba(90, 109, 137, 0.2);
+    border-radius: 6px;
+    padding: 8px 12px;
+    color: #e5e7eb;
+    font-size: 14px;
+    outline: none;
+    transition: all 0.2s ease;
+}
+
+.tag-input:focus {
+    border-color: rgba(90, 109, 137, 0.5);
+    background: #4b5563;
+    box-shadow: 0 0 0 3px rgba(90, 109, 137, 0.1);
+}
+
+.tag-input::placeholder {
+    color: #9ca3af;
+}
+
+.tag-add-btn {
+    background: linear-gradient(135deg, #065f46 0%, #059669 100%);
+    border: 1px solid rgba(90, 109, 137, 0.3);
+    border-radius: 6px;
+    padding: 8px 12px;
+    color: #d1fae5;
+    cursor: pointer;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    min-width: 40px;
+    transition: all 0.2s ease;
+}
+
+.tag-add-btn:hover {
+    background: linear-gradient(135deg, #047857 0%, #10b981 100%);
+    border-color: rgba(90, 109, 137, 0.5);
+    transform: translateY(-1px);
+    box-shadow: 0 2px 4px rgba(0, 0, 0, 0.2);
+}
+
+.tag-add-btn:active {
+    transform: translateY(0);
+}
+
+/* Empty state for tag lists */
+.tag-list:empty::before {
+    content: "No items added yet";
+    color: #6b7280;
+    font-style: italic;
+    font-size: 13px;
+    padding: 8px 0;
+    display: block;
+}
+
 .instance-header {
     display: flex;
     align-items: center;

frontend/static/js/settings_forms.js

@@ -1172,25 +1172,41 @@ const SettingsForms = {
                 </div>
                 
                 <div class="setting-item">
-                    <label for="swaparr_malicious_extensions">
+                    <label for="swaparr_malicious_extensions_input">
                         <a href="https://plexguide.github.io/Huntarr.io/apps/swaparr.html#malicious-extensions" class="info-icon" title="File extensions to consider malicious" target="_blank" rel="noopener">
                             <i class="fas fa-info-circle"></i>
                         </a>
                         Malicious File Extensions:
                     </label>
-                    <textarea id="swaparr_malicious_extensions" rows="3" placeholder="Enter file extensions separated by commas...">${(settings.malicious_extensions || ['.lnk', '.exe', '.bat', '.cmd', '.scr', '.zipx', '.jar', '.vbs']).join(', ')}</textarea>
-                    <p class="setting-help">File extensions to block (comma-separated). Examples: .lnk, .exe, .bat, .zipx</p>
+                    <div class="tag-input-container">
+                        <div class="tag-list" id="swaparr_malicious_extensions_tags"></div>
+                        <div class="tag-input-wrapper">
+                            <input type="text" id="swaparr_malicious_extensions_input" placeholder="Type extension and press Enter (e.g. .lnk)" class="tag-input">
+                            <button type="button" class="tag-add-btn" onclick="addExtensionTag()">
+                                <i class="fas fa-plus"></i>
+                            </button>
+                        </div>
+                    </div>
+                    <p class="setting-help">File extensions to block. Type extension and press Enter or click +. Examples: .lnk, .exe, .bat, .zipx</p>
                 </div>
                 
                 <div class="setting-item">
-                    <label for="swaparr_suspicious_patterns">
+                    <label for="swaparr_suspicious_patterns_input">
                         <a href="https://plexguide.github.io/Huntarr.io/apps/swaparr.html#suspicious-patterns" class="info-icon" title="Suspicious filename patterns" target="_blank" rel="noopener">
                             <i class="fas fa-info-circle"></i>
                         </a>
                         Suspicious Patterns:
                     </label>
-                    <textarea id="swaparr_suspicious_patterns" rows="3" placeholder="Enter suspicious patterns separated by commas...">${(settings.suspicious_patterns || ['password.txt', 'readme.txt', 'install.exe', 'keygen', 'crack']).join(', ')}</textarea>
-                    <p class="setting-help">Filename patterns to block (comma-separated). Examples: password.txt, keygen, crack</p>
+                    <div class="tag-input-container">
+                        <div class="tag-list" id="swaparr_suspicious_patterns_tags"></div>
+                        <div class="tag-input-wrapper">
+                            <input type="text" id="swaparr_suspicious_patterns_input" placeholder="Type pattern and press Enter (e.g. keygen)" class="tag-input">
+                            <button type="button" class="tag-add-btn" onclick="addPatternTag()">
+                                <i class="fas fa-plus"></i>
+                            </button>
+                        </div>
+                    </div>
+                    <p class="setting-help">Filename patterns to block. Type pattern and press Enter or click +. Examples: password.txt, keygen, crack</p>
                 </div>
             </div>
             
@@ -1213,6 +1229,9 @@ const SettingsForms = {
                 }
             });
         }
+        
+        // Initialize tag systems
+        this.initializeTagSystem(settings);
 
         // Add event listener for global Swaparr enabled toggle to control instance visibility
         const swaparrEnabledToggle = container.querySelector('#swaparr_enabled');
@@ -1230,6 +1249,124 @@ const SettingsForms = {
         }
     },
 
+    // Initialize tag input systems for malicious file detection
+    initializeTagSystem: function(settings) {
+        // Initialize extensions
+        const defaultExtensions = ['.lnk', '.exe', '.bat', '.cmd', '.scr', '.pif', '.com', '.zipx', '.jar', '.vbs', '.js', '.jse', '.wsf', '.wsh'];
+        const extensions = settings.malicious_extensions || defaultExtensions;
+        this.loadTags('swaparr_malicious_extensions_tags', extensions);
+        
+        // Initialize patterns
+        const defaultPatterns = ['password.txt', 'readme.txt', 'install.exe', 'setup.exe', 'keygen', 'crack', 'patch.exe', 'activator'];
+        const patterns = settings.suspicious_patterns || defaultPatterns;
+        this.loadTags('swaparr_suspicious_patterns_tags', patterns);
+        
+        // Add enter key listeners
+        const extensionInput = document.getElementById('swaparr_malicious_extensions_input');
+        const patternInput = document.getElementById('swaparr_suspicious_patterns_input');
+        
+        if (extensionInput) {
+            extensionInput.addEventListener('keypress', (e) => {
+                if (e.key === 'Enter') {
+                    e.preventDefault();
+                    this.addExtensionTag();
+                }
+            });
+        }
+        
+        if (patternInput) {
+            patternInput.addEventListener('keypress', (e) => {
+                if (e.key === 'Enter') {
+                    e.preventDefault();
+                    this.addPatternTag();
+                }
+            });
+        }
+        
+        // Make functions globally accessible
+        window.addExtensionTag = () => this.addExtensionTag();
+        window.addPatternTag = () => this.addPatternTag();
+    },
+    
+    // Load tags into a tag list
+    loadTags: function(containerId, tags) {
+        const container = document.getElementById(containerId);
+        if (!container) return;
+        
+        container.innerHTML = '';
+        tags.forEach(tag => {
+            this.createTagElement(container, tag);
+        });
+    },
+    
+    // Create a tag element
+    createTagElement: function(container, text) {
+        const tagDiv = document.createElement('div');
+        tagDiv.className = 'tag-item';
+        tagDiv.innerHTML = `
+            <span class="tag-text">${text}</span>
+            <button type="button" class="tag-remove" onclick="this.parentElement.remove()">
+                <i class="fas fa-times"></i>
+            </button>
+        `;
+        container.appendChild(tagDiv);
+    },
+    
+    // Add extension tag
+    addExtensionTag: function() {
+        const input = document.getElementById('swaparr_malicious_extensions_input');
+        const container = document.getElementById('swaparr_malicious_extensions_tags');
+        
+        if (!input || !container) return;
+        
+        let value = input.value.trim();
+        if (!value) return;
+        
+        // Auto-add dot if not present for extensions
+        if (!value.startsWith('.')) {
+            value = '.' + value;
+        }
+        
+        // Check for duplicates
+        const existing = Array.from(container.querySelectorAll('.tag-text')).map(el => el.textContent);
+        if (existing.includes(value)) {
+            input.value = '';
+            return;
+        }
+        
+        this.createTagElement(container, value);
+        input.value = '';
+    },
+    
+    // Add pattern tag
+    addPatternTag: function() {
+        const input = document.getElementById('swaparr_suspicious_patterns_input');
+        const container = document.getElementById('swaparr_suspicious_patterns_tags');
+        
+        if (!input || !container) return;
+        
+        const value = input.value.trim();
+        if (!value) return;
+        
+        // Check for duplicates
+        const existing = Array.from(container.querySelectorAll('.tag-text')).map(el => el.textContent);
+        if (existing.includes(value)) {
+            input.value = '';
+            return;
+        }
+        
+        this.createTagElement(container, value);
+        input.value = '';
+    },
+    
+    // Get tags from a container
+    getTagsFromContainer: function(containerId) {
+        const container = document.getElementById(containerId);
+        if (!container) return [];
+        
+        return Array.from(container.querySelectorAll('.tag-text')).map(el => el.textContent);
+    },
+    
     // Generate Hunt Manager placeholder form
     generateHuntingForm: function(container, settings = {}) {
         // Add data-app-type attribute to container
@@ -1611,19 +1748,9 @@ const SettingsForms = {
                 // Malicious file detection settings
                 settings.malicious_file_detection = getInputValue('#swaparr_malicious_detection', false);
 
-                // Parse malicious extensions (comma-separated)
-                const extensionsText = document.getElementById('swaparr_malicious_extensions')?.value || '';
-                settings.malicious_extensions = extensionsText
-                    .split(',')
-                    .map(ext => ext.trim())
-                    .filter(ext => ext.length > 0);
-                
-                // Parse suspicious patterns (comma-separated)
-                const patternsText = document.getElementById('swaparr_suspicious_patterns')?.value || '';
-                settings.suspicious_patterns = patternsText
-                    .split(',')
-                    .map(pattern => pattern.trim())
-                    .filter(pattern => pattern.length > 0);
+                // Get tags from tag containers
+                settings.malicious_extensions = this.getTagsFromContainer('swaparr_malicious_extensions_tags');
+                settings.suspicious_patterns = this.getTagsFromContainer('swaparr_suspicious_patterns_tags');
             }
         }