From 91a35c9f9fc834ef40b34e1e8fcb5de2299f6f97 Mon Sep 17 00:00:00 2001 From: PopoviciMarian Date: Wed, 11 Feb 2026 10:08:48 +0200 Subject: [PATCH 1/2] Update firewall-tester-action to version 1.0.9 --- .github/workflows/build.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index dfe32fe6..8f7b6620 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -598,7 +598,7 @@ jobs: echo "dpkg -i -E \"/var/www/html/aikido-php-firewall.\$(uname -i).deb\"" > ./zen-demo-php/.fly/scripts/aikido.sh - name: Run Firewall QA Tests - uses: AikidoSec/firewall-tester-action@v1.0.3 + uses: AikidoSec/firewall-tester-action@v1.0.9 with: dockerfile_path: ./zen-demo-php/Dockerfile extra_args: '--env-file=./zen-demo-php/.env.example -e APP_KEY=base64:W2v6u6VR4lURkxuMT9xZ6pdhXSt5rxsmWTbd1HGqlIM=' From f9f68d8ad7f2be40696175fe8947e8cc369e5cec Mon Sep 17 00:00:00 2001 From: PopoviciMarian Date: Wed, 11 Feb 2026 18:05:00 +0200 Subject: [PATCH 2/2] update message (IP not allowed) --- lib/request-processor/handle_blocking_request.go | 2 +- tests/server/test_allowed_ips_lists/test.py | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/lib/request-processor/handle_blocking_request.go b/lib/request-processor/handle_blocking_request.go index b76c21e6..f148a70d 100644 --- a/lib/request-processor/handle_blocking_request.go +++ b/lib/request-processor/handle_blocking_request.go @@ -94,7 +94,7 @@ func OnGetAutoBlockingStatus() string { if !utils.IsIpAllowed(server, ip) { log.Infof("IP \"%s\" is not found in allow lists!", ip) - return GetAction("exit", "blocked", "ip", "not in allow lists", ip, 403) + return GetAction("exit", "blocked", "ip", "not allowed to access this resource", ip, 403) } if ipMonitored, ipMonitoredMatches := utils.IsIpMonitored(server, ip); ipMonitored { diff --git a/tests/server/test_allowed_ips_lists/test.py b/tests/server/test_allowed_ips_lists/test.py index c2ca1f94..5b09ef5d 100755 --- a/tests/server/test_allowed_ips_lists/test.py +++ b/tests/server/test_allowed_ips_lists/test.py @@ -14,7 +14,7 @@ def run_test(): response = php_server_get("/test", headers={"X-Forwarded-For": "2.20.116.1"}) assert_response_code_is(response, 403) assert_response_header_contains(response, "Content-Type", "text") - assert_response_body_contains(response, "Your ip (2.20.116.1) is blocked due to: not in allow lists!") + assert_response_body_contains(response, "Your ip (2.20.116.1) is blocked due to: not allowed to access this resource!") response = php_server_get("/test", headers={"X-Forwarded-For": "2.17.116.2"}) assert_response_code_is(response, 200) @@ -30,7 +30,7 @@ def run_test(): response = php_server_get("/test", headers={"X-Forwarded-For": "2.20.116.1"}) assert_response_code_is(response, 403) assert_response_header_contains(response, "Content-Type", "text") - assert_response_body_contains(response, "Your ip (2.20.116.1) is blocked due to: not in allow lists!") + assert_response_body_contains(response, "Your ip (2.20.116.1) is blocked due to: not allowed to access this resource!") response = php_server_get("/test", headers={"X-Forwarded-For": "2.17.116.2"}) assert_response_code_is(response, 200)