#!/bin/bash

# load some functions
. /opt/bunkerized-nginx/entrypoint/utils.sh

if [ "$(grep "^SWARM_MODE=yes$" /etc/nginx/global.env)" != "" ] && [ -f /usr/sbin/nginx ] ; then
	exit 0
fi

if [ "$(has_value BLOCK_PROXIES yes)" = "" ] ; then
	exit 0
fi

# copy old conf to cache
cp /etc/nginx/proxies.list /tmp/proxies.list.bak

# generate the new conf
curl -s "https://iplists.firehol.org/files/firehol_proxies.netset" | \
	grep -E "^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}/?[0-9]*$" > /tmp/proxies.list

# if we are running nginx
if [ -f /tmp/nginx.pid ] ; then
	RELOAD="/usr/sbin/nginx -s reload"
# if we are in autoconf
elif [ -S /tmp/autoconf.sock ] && [ -f "/etc/nginx/autoconf" ] ; then
	RELOAD="/opt/entrypoint/reload.py"
fi

# check if we have at least 1 line
lines="$(wc -l /tmp/proxies.list | cut -d ' ' -f 1)"
if [ "$lines" -gt 1 ] ; then
	job_log "[BLACKLIST] proxies list updated ($lines entries)"
	# reload nginx with the new config
	cp /tmp/proxies.list /etc/nginx/proxies.list
	if [ "$RELOAD" != "" ] ; then
		$RELOAD > /dev/null 2>&1
		# new config is ok : save it in the cache
		if [ "$?" -eq 0 ] ; then
			cp /tmp/proxies.list /opt/bunkerized-nginx/cache
			job_log "[NGINX] successfull nginx reload after proxies list update"
		else
			job_log "[NGINX] failed nginx reload after proxies list update fallback to old list"
			#cp /tmp/proxies.list.bak /etc/nginx
			$RELOAD > /dev/null 2>&1
		fi
	else
		cp /tmp/proxies.list /opt/bunkerized-nginx/cache
	fi
else
	job_log "[BLACKLIST] can't update proxies list"
fi

rm -f /tmp/proxies.list 2> /dev/null
rm -f /tmp/proxies.list.bak 2> /dev/null