Fuel

FuelPHP is a simple, flexible, community-driven PHP web framework.

Firewall in Fuel Framework

Installation

Use PHP Composer:

composer require shieldon/shieldon

This will also install dependencies required for Shieldon:

shieldon/psr-http The PSR-7, 15, 17 Implementation with full documentation and extensive testing.
shieldon/event-dispatcher The simplest event dispatcher.
shieldon/web-security A collection of functions related to web security.
shieldon/messenger A collection of modules for sending messages to third-party APIs or services, such as Telegram, Line, RocketChat, Slack, SendGrid, MailGun, and more.

Implementing

Steps

1. Before Initializing Core

In your fuel/app/bootstrap.php file, after this line:

require COREPATH.'bootstrap.php';

Add the following code:

Example:

/*
|--------------------------------------------------------------------------
| Run The Shieldon Firewall
|--------------------------------------------------------------------------
|
| Shieldon Firewall will watch all HTTP requests coming to your website.
|
*/
if (isset($_SERVER['REQUEST_URI'])) {

    // This directory must be writable.
    // We put it in the `fuel/app/tmp` directory.
    $storage = __DIR__ . '/tmp/shieldon_firewall';

    $firewall = new \Shieldon\Firewall\Firewall();
    $firewall->configure($storage);
    $firewall->controlPanel('/firewall/panel');

    $response = $firewall->run();

    if ($response->getStatusCode() !== 200) {
        $httpResolver = new \Shieldon\Firewall\HttpResolver();
        $httpResolver($response);
    }
}

Please ensure that $storage directory exists and is writable.

2. Define a Route for the Firewall Panel

Now, modify your fuel/app/config/routes.php file and add the following code:

Example:

'firewall/panel(:everything)' => function () {
    $panel = new \Shieldon\Firewall\Panel();
    $panel->entry();
},

The full example might look like this:

Example:

return array(
    '_root_'  => 'welcome/index',  // The default route
    '_404_'   => 'welcome/404',    // The main 404 route

    'hello(/:name)?' => array('welcome/hello', 'name' => 'hello'),

    'firewall/panel(:everything)' => function () {
        $panel = new \Shieldon\Firewall\Panel();
        $panel->entry();
    },
);

That's it.

Control Panel

You can access the Firewall Panel at /firewall/panel. To view the page, go to this URL in your browser:

https://yoursite.com/firewall/panel

The default login is shieldon_user, and the password is shieldon_pass. After logging into the Firewall Panel, the first thing you should do is change the login and password.

If Shieldon Firewall is enabled in the Daemon setting section, it will start monitoring your website. Make sure you have correctly set up the settings.