chore(v1.100.1a): CLI jail surgical rename — 3 operator-visible items#498
Merged
chore(v1.100.1a): CLI jail surgical rename — 3 operator-visible items#498
Conversation
Add top_filters as deprecation alias alongside existing top_jails in nftban stats --json output (both jq + jq-fallback paths). One-cycle deprecation per V190_JAIL_RENAME_CHALLENGE §5.2 Option B — top_jails will be removed in a later release after operators migrate. Internal variable + function names ($top_jails / nftban_stats_top_jails) stay unchanged in this PR; only the output key surface is widened to include the new name. Surgical scope per locked HLD; no internal struct/type rename. Part of v1.100.1a CLI jail surgical rename train (3 operator-visible items only). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Replace "jails" → "filters" in the file header purpose line. Aligns with the NFTBan native filter naming (per FilterConfig in internal/escalation/config.go) and removes leftover fail2ban-era terminology from a docs-only surface. Comment-only change. No behavior impact. Part of v1.100.1a CLI jail surgical rename train (3 operator-visible items only). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
…tes) Replace "[nftban-XXXX] jail" → "[nftban-XXXX] filter" in the comment header narration of each per-service login-monitor block. Aligns with the NFTBan native FilterConfig naming and removes leftover fail2ban- era terminology from operator-facing config comments. The actual env-var convention (LOGIN_SERVICE_<SERVICE>_<SETTING>) is unchanged. This is a comments-only edit; no env vars renamed, no config keys renamed, no behavior change. 9 sites edited: sshd, dovecot, exim, postfix, roundcube, apache-xmlrpc, apache-wp-login, directadmin, pure-ftpd Verification: $ grep -c 'jail' etc/nftban/conf.d/login/services.conf # → 0 $ grep -c '] filter' etc/nftban/conf.d/login/services.conf # → 9 Part of v1.100.1a CLI jail surgical rename train (3 operator-visible items only). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Document the three operator-visible edits in this surgical pass: top_jails dual-key alias, cmd_search.sh purpose comment, services.conf comment narration at 9 sites. Internal rename remains out of scope. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Contributor
Dependency Review✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.Scanned FilesNone |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
First step of the v1.100.x stabilization train. Surgical CLI jail-terminology rename, scoped to 3 operator-visible items only per
V190_JAIL_RENAME_CHALLENGE §5.2.Scope (locked surgical, NOT a blanket rename)
1.
cli/lib/nftban/cli/cmd_stats.sh— dual-key aliasnftban stats --jsonoutput now emits BOTHtop_jailsANDtop_filterskeys with the same value.top_jailsis deprecated — will be removed in a later releasetop_filtersis the new canonical key$top_jails) and function name (nftban_stats_top_jails) unchanged in this PRThis is Option B per the rename challenge audit: deprecation alias for one cycle, then later rename, instead of silent rename.
2.
cli/lib/nftban/cli/cmd_search.sh:7purpose commentComment-only change. No behavior impact.
3.
etc/nftban/conf.d/login/services.conf— 9 comment sitesSame edit applied to: sshd, dovecot, exim, postfix, roundcube, apache-xmlrpc, apache-wp-login, directadmin, pure-ftpd (9 sites).
Comments only. The env var convention (
LOGIN_SERVICE_<SERVICE>_<SETTING>) is unchanged.Out of scope (deliberately deferred)
escalation.BanEntry.Jailfield,tracker.LogTempBan(...,jail,...)parameters)nftban_stats_top_jails)top_jailsJSON key (only deprecated this release)internal/installer/restore/*orcmd/nftban-installer/uninstall_apply.go(PR-24 validated surfaces)Why this PR is small by design
This is the first stabilization step in the v1.100.x train (locked 2026-04-26). The intent is to validate the train pattern (small focused PRs, one concern per PR) before progressing to larger items like GOTH removal (1.100.1b).
Locked authoritative inputs
V190_UX_CLI_CHECK/V190_JAIL_RENAME_CHALLENGE.md§5.2 (surgical scope: 3 operator-visible items)V190_UX_CLI_CHECK/V190_JAIL_CONCEPT_AUDIT.md(REMOVE verdict onnftban jailCLI; current CLI does not have such a command)V190_UX_CLI_CHECK/V190_V2_0_UX_SPRINT.md§3.2 (surgical-only rule)Verification
Lifecycle completion remains open (per locked plan)
PR-25 (restore execution), PR-26 (verification gate), PR-27-30 (maintenance) are explicitly open lifecycle completion work. Sequenced after stabilization. Not affected by this PR.
Test plan
Build & TestgreenShell Qualitygreen (3 shell files modified)Docs Qualitygreen (CHANGELOG update)nftban stats --jsonregression smoke (manual): bothtop_jailsandtop_filterspresent in output🤖 Generated with Claude Code