azure functions project

util/Function/BlockIp.cs

@@ -0,0 +1,70 @@
+using System;
+using System.Configuration;
+using System.Linq;
+using System.Net.Http;
+using System.Threading.Tasks;
+using Bit.Function.Models;
+using Microsoft.Azure.WebJobs;
+using Microsoft.Azure.WebJobs.Host;
+using Newtonsoft.Json;
+
+namespace Bit.Function
+{
+    public static class BlockIp
+    {
+        [FunctionName("BlockIp")]
+        public static void Run(
+            [QueueTrigger("blockip", Connection = "")]string myQueueItem,
+            out string outputQueueItem,
+            TraceWriter log)
+        {
+            outputQueueItem = BlockIpAsync(myQueueItem).GetAwaiter().GetResult();
+            log.Info($"C# Queue trigger function processed: {myQueueItem}, outputted: {outputQueueItem}");
+        }
+
+        private static async Task<string> BlockIpAsync(string ipAddress)
+        {
+            var ipWhitelist = ConfigurationManager.AppSettings["WhitelistedIps"];
+            if(ipWhitelist != null && ipWhitelist.Split(',').Contains(ipAddress))
+            {
+                return null;
+            }
+
+            var xAuthEmail = ConfigurationManager.AppSettings["X-Auth-Email"];
+            var xAuthKey = ConfigurationManager.AppSettings["X-Auth-Key"];
+            var zoneId = ConfigurationManager.AppSettings["ZoneId"];
+
+            using(var client = new HttpClient())
+            {
+                client.BaseAddress = new Uri("https://api.cloudflare.com");
+                client.DefaultRequestHeaders.Accept.Clear();
+                client.DefaultRequestHeaders.Add("X-Auth-Email", xAuthEmail);
+                client.DefaultRequestHeaders.Add("X-Auth-Key", xAuthKey);
+
+                var response = await client.PostAsJsonAsync(
+                    $"/client/v4/zones/{zoneId}/firewall/access_rules/rules",
+                    new
+                    {
+                        mode = "block",
+                        configuration = new
+                        {
+                            target = "ip",
+                            value = ipAddress
+                        },
+                        notes = $"Rate limit abuse on {DateTime.UtcNow.ToString()}."
+                    });
+
+                var responseString = await response.Content.ReadAsStringAsync();
+                var responseJson = JsonConvert.DeserializeObject<AccessRuleResponse>(responseString);
+
+                if(!responseJson.Success)
+                {
+                    return null;
+                }
+
+                // Uncomment whenever we can delay the returned message. Functions do not support that at this time.
+                return null; //responseJson.Result?.Id;
+            }
+        }
+    }
+}