Allow IP whitelist to be an array

ivanvermeyen · ivanvermeyen · commit d5659ca49974 · 2020-01-03T00:03:20.000+01:00
diff --git a/config/stagefront.php b/config/stagefront.php
@@ -79,8 +79,8 @@
 
     /**
      * Allow access from whitelisted IP's.
-     * Enter a string of comma separated IP's or null to allow all IP's.
-     * For example: '1.2.3.4,1.2.3.4'
+     * Enter an array or string of comma separated IP's or null to allow all IP's.
+     * For example: ['1.2.3.4', '1.2.3.4'] or '1.2.3.4,1.2.3.4'
      * If empty, all IP's are allowed.
      *
      * Default: null
diff --git a/src/Shield.php b/src/Shield.php
@@ -77,8 +77,7 @@ protected function currentUrlIsIgnored()
     protected function clientIpIsWhitelisted()
     {
         $clientIp = Request::ip();
-        $whitelist = explode(',', $this->getIpWhitelist());
-        $ips = array_map('trim', $whitelist);
+        $ips = array_map('trim', $this->getIpWhitelist());
 
         return in_array($clientIp, $ips);
     }
@@ -90,17 +89,23 @@ protected function clientIpIsWhitelisted()
      */
     protected function hasIpWhitelist()
     {
-        return ! empty(trim($this->getIpWhitelist()));
+        return ! empty($this->getIpWhitelist());
     }
 
     /**
      * Get the IP whitelist from the config file.
      *
-     * @return string
+     * @return array
      */
     protected function getIpWhitelist()
     {
-        return Config::get('stagefront.ip_whitelist', '');
+        $whitelist = Config::get('stagefront.ip_whitelist', []);
+
+        if (is_array($whitelist)) {
+            return $whitelist;
+        }
+
+        return explode(',', $whitelist);
     }
 
     /**
diff --git a/tests/StageFrontTest.php b/tests/StageFrontTest.php
@@ -270,6 +270,26 @@ public function it_allows_access_to_whitelisted_ips_only()
             ->assertOk();
     }
 
+    /** @test */
+    public function you_can_add_a_whitelist_as_an_array()
+    {
+        $this->url = Config::get('stagefront.url');
+        $this->registerRoute('/page', 'Some Page');
+
+        $this->enableStageFront();
+        $this->setIntendedUrl('/page');
+
+        Config::set('stagefront.ip_whitelist', ['0.0.0.0', '1.1.1.1']);
+        Config::set('stagefront.ip_whitelist_only', true);
+        Config::set('stagefront.ip_whitelist_require_login', false);
+
+        $this->get('/page', ['REMOTE_ADDR' => '1.2.3.4'])
+            ->assertStatus(403);
+
+        $this->get('/page', ['REMOTE_ADDR' => '1.1.1.1'])
+            ->assertOk();
+    }
+
     /** @test */
     public function it_allows_access_to_whitelisted_ips_only_with_required_login()
     {

Original file line number	Diff line number	Diff line change
`@@ -77,8 +77,7 @@ protected function currentUrlIsIgnored()`
`77`	`77`	`protected function clientIpIsWhitelisted()`
`78`	`78`	`{`
`79`	`79`	`$clientIp = Request::ip();`
`80`		`- $whitelist = explode(',', $this->getIpWhitelist());`
`81`		`- $ips = array_map('trim', $whitelist);`
	`80`	`+ $ips = array_map('trim', $this->getIpWhitelist());`
`82`	`81`
`83`	`82`	`return in_array($clientIp, $ips);`
`84`	`83`	`}`
`@@ -90,17 +89,23 @@ protected function clientIpIsWhitelisted()`
`90`	`89`	`*/`
`91`	`90`	`protected function hasIpWhitelist()`
`92`	`91`	`{`
`93`		`- return ! empty(trim($this->getIpWhitelist()));`
	`92`	`+ return ! empty($this->getIpWhitelist());`
`94`	`93`	`}`
`95`	`94`
`96`	`95`	`/**`
`97`	`96`	`* Get the IP whitelist from the config file.`
`98`	`97`	`*`
`99`		`- * @return string`
	`98`	`+ * @return array`
`100`	`99`	`*/`
`101`	`100`	`protected function getIpWhitelist()`
`102`	`101`	`{`
`103`		`- return Config::get('stagefront.ip_whitelist', '');`
	`102`	`+ $whitelist = Config::get('stagefront.ip_whitelist', []);`
	`103`	`+`
	`104`	`+ if (is_array($whitelist)) {`
	`105`	`+ return $whitelist;`
	`106`	`+ }`
	`107`	`+`
	`108`	`+ return explode(',', $whitelist);`
`104`	`109`	`}`
`105`	`110`
`106`	`111`	`/**`