mcp_server/tools/create_ip_custom_rule.py

from pydantic import BaseModel, Field
from utils.request import post_slce_api
from tools import Tool, ABCTool, tools
import ipaddress

@tools.register
class CreateIPCustomRule(BaseModel, ABCTool):
    ip: str = Field(description="request ip to allow or block")
    action: int = Field(min=0, max=1,description="1: block, 0: allow")

    @classmethod
    async def run(self, arguments:dict) -> str:
        try:
            req = CreateIPCustomRule.model_validate(arguments)
            ipaddress.ip_address(req.ip)
        except Exception as e:
            return str(e)

        name = ""
        match req.action:
            case 0:
                name += "allow "
            case 1:
                name += "block "
            case _:
                return "invalid action"

        if not req.ip or req.ip == "":
            return "ip is required"

        name += f"ip: {req.ip}"

        return await post_slce_api("/api/open/policy",{
            "name": name,
            "is_enabled": True,
            "pattern": [
                [
                    {
                        "k": "src_ip",
                        "op": "eq",
                        "v": [req.ip],
                        "sub_k": ""
                    },
                ]
            ],
            "action": req.action
        })
    
    @classmethod
    def tool(self) -> Tool:
        return Tool(
            name="waf_create_ip_custom_rule",
            description="以 客户端 IP 地址为条件，在雷池 WAF 上创建一个黑/白名单",
            inputSchema=self.model_json_schema()
        )
refactor: tools 2025-04-03 16:21:13 +08:00			`from pydantic import BaseModel, Field`
			`from utils.request import post_slce_api`
			`from tools import Tool, ABCTool, tools`
refactor: tools 2025-04-03 17:44:57 +08:00			`import ipaddress`
refactor: tools 2025-04-03 16:21:13 +08:00
			`@tools.register`
			`class CreateIPCustomRule(BaseModel, ABCTool):`
			`ip: str = Field(description="request ip to allow or block")`
refactor: tools 2025-04-03 17:44:57 +08:00			`action: int = Field(min=0, max=1,description="1: block, 0: allow")`
refactor: tools 2025-04-03 16:21:13 +08:00
			`@classmethod`
			`async def run(self, arguments:dict) -> str:`
refactor: tools 2025-04-03 17:44:57 +08:00			`try:`
			`req = CreateIPCustomRule.model_validate(arguments)`
			`ipaddress.ip_address(req.ip)`
			`except Exception as e:`
			`return str(e)`

refactor: tools 2025-04-03 16:21:13 +08:00			`name = ""`
refactor: tools 2025-04-03 17:44:57 +08:00			`match req.action:`
refactor: tools 2025-04-03 16:21:13 +08:00			`case 0:`
			`name += "allow "`
			`case 1:`
			`name += "block "`
			`case _:`
			`return "invalid action"`

refactor: tools 2025-04-03 17:44:57 +08:00			`if not req.ip or req.ip == "":`
refactor: tools 2025-04-03 16:21:13 +08:00			`return "ip is required"`

refactor: tools 2025-04-03 17:44:57 +08:00			`name += f"ip: {req.ip}"`
refactor: tools 2025-04-03 16:21:13 +08:00
			`return await post_slce_api("/api/open/policy",{`
			`"name": name,`
			`"is_enabled": True,`
			`"pattern": [`
			`[`
			`{`
			`"k": "src_ip",`
			`"op": "eq",`
refactor: tools 2025-04-03 17:44:57 +08:00			`"v": [req.ip],`
refactor: tools 2025-04-03 16:21:13 +08:00			`"sub_k": ""`
			`},`
			`]`
			`],`
refactor: tools 2025-04-03 17:44:57 +08:00			`"action": req.action`
refactor: tools 2025-04-03 16:21:13 +08:00			`})`

			`@classmethod`
			`def tool(self) -> Tool:`
			`return Tool(`
add mcp get_attack_event tool 2025-04-07 07:41:42 +00:00			`name="waf_create_ip_custom_rule",`
			`description="以客户端 IP 地址为条件，在雷池 WAF 上创建一个黑/白名单",`
refactor: tools 2025-04-03 16:21:13 +08:00			`inputSchema=self.model_json_schema()`
			`)`