AWAF documentation
Practical guides for installing, integrating, tuning filters, and operating AWAF.
Quick start
Install into /antibot/, include AWAF in PHP, and run the first checks.
Requirements
Compatibility, PHP, SQLite, and write permissions.
Configuration
config.ini map: modes, proxy, captcha, logs, and updates.
Materials and videos
YouTube instructions and AWAF resources.
FAQ
Short answers about setup, modes, logs, CMS, and limits.
For developers
AWAF site structure: Markdown docs, components, routes, assets, and Astro build behavior.
CMS integration
Preferred .htaccess auto_prepend_file method and fallback options.
1C-Bitrix
Preferred .htaccess auto_prepend_file method plus entry-point fallback.
MODX
Preferred .htaccess auto_prepend_file; config.core.php as MODX fallback.
WordPress
auto_prepend_file plus wp-admin, AJAX, REST, and callback checks.
Drupal
auto_prepend_file plus admin, cron, update.php, and JSON/API checks.
Joomla
auto_prepend_file plus administrator, component endpoint, and extension checks.
Proxy and CDN
Real IP, protocol, nginx, and Cloudflare.
Lists and exceptions
Allow and block lists for IP, URL, User-Agent, and ASN.
Checks and filters
Fingerprint, ASN, FPS, HTTP checks, and BLOCK/CAPTCHA actions.
Metrika integration
AWAF Tags, fingerprint, and referrer forwarding.
Logs and diagnostics
RayID, blocking reasons, debug, and rotation.
Updates
Update safely without replacing config.ini, lists/, or logs/.
Troubleshooting
Common setup, proxy, captcha, and unblocking issues.
Source code
AWAF GitHub repository: source install, update history, and the dev branch.