301 lines
7.4 KiB
Go
301 lines
7.4 KiB
Go
package home
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net/http"
|
|
)
|
|
|
|
type clientJSON struct {
|
|
IDs []string `json:"ids"`
|
|
Tags []string `json:"tags"`
|
|
Name string `json:"name"`
|
|
UseGlobalSettings bool `json:"use_global_settings"`
|
|
FilteringEnabled bool `json:"filtering_enabled"`
|
|
ParentalEnabled bool `json:"parental_enabled"`
|
|
SafeSearchEnabled bool `json:"safesearch_enabled"`
|
|
SafeBrowsingEnabled bool `json:"safebrowsing_enabled"`
|
|
|
|
UseGlobalBlockedServices bool `json:"use_global_blocked_services"`
|
|
BlockedServices []string `json:"blocked_services"`
|
|
|
|
Upstreams []string `json:"upstreams"`
|
|
|
|
WhoisInfo map[string]interface{} `json:"whois_info"`
|
|
|
|
// * "": IP is allowed
|
|
// * not "", e.g. "127.0.0.0/24" - IP is disallowed by "disallowed IP list", and the string contains the matched rule (IP or CIDR)
|
|
// * "not-in-allowed-list" - IP is disallowed by "allowed IP list"
|
|
Disallowed string `json:"disallowed"`
|
|
}
|
|
|
|
type clientHostJSON struct {
|
|
IP string `json:"ip"`
|
|
Name string `json:"name"`
|
|
Source string `json:"source"`
|
|
|
|
WhoisInfo map[string]interface{} `json:"whois_info"`
|
|
}
|
|
|
|
type clientListJSON struct {
|
|
Clients []clientJSON `json:"clients"`
|
|
AutoClients []clientHostJSON `json:"auto_clients"`
|
|
Tags []string `json:"supported_tags"`
|
|
}
|
|
|
|
// respond with information about configured clients
|
|
func (clients *clientsContainer) handleGetClients(w http.ResponseWriter, r *http.Request) {
|
|
data := clientListJSON{}
|
|
|
|
clients.lock.Lock()
|
|
for _, c := range clients.list {
|
|
cj := clientToJSON(c)
|
|
data.Clients = append(data.Clients, cj)
|
|
}
|
|
for ip, ch := range clients.ipHost {
|
|
cj := clientHostJSON{
|
|
IP: ip,
|
|
Name: ch.Host,
|
|
}
|
|
|
|
cj.Source = "etc/hosts"
|
|
switch ch.Source {
|
|
case ClientSourceDHCP:
|
|
cj.Source = "DHCP"
|
|
case ClientSourceRDNS:
|
|
cj.Source = "rDNS"
|
|
case ClientSourceARP:
|
|
cj.Source = "ARP"
|
|
case ClientSourceWHOIS:
|
|
cj.Source = "WHOIS"
|
|
}
|
|
|
|
cj.WhoisInfo = make(map[string]interface{})
|
|
for _, wi := range ch.WhoisInfo {
|
|
cj.WhoisInfo[wi[0]] = wi[1]
|
|
}
|
|
|
|
data.AutoClients = append(data.AutoClients, cj)
|
|
}
|
|
clients.lock.Unlock()
|
|
|
|
data.Tags = clientTags
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
e := json.NewEncoder(w).Encode(data)
|
|
if e != nil {
|
|
httpError(w, http.StatusInternalServerError, "Failed to encode to json: %v", e)
|
|
return
|
|
}
|
|
}
|
|
|
|
// Convert JSON object to Client object
|
|
func jsonToClient(cj clientJSON) (*Client, error) {
|
|
c := Client{
|
|
Name: cj.Name,
|
|
IDs: cj.IDs,
|
|
Tags: cj.Tags,
|
|
UseOwnSettings: !cj.UseGlobalSettings,
|
|
FilteringEnabled: cj.FilteringEnabled,
|
|
ParentalEnabled: cj.ParentalEnabled,
|
|
SafeSearchEnabled: cj.SafeSearchEnabled,
|
|
SafeBrowsingEnabled: cj.SafeBrowsingEnabled,
|
|
|
|
UseOwnBlockedServices: !cj.UseGlobalBlockedServices,
|
|
BlockedServices: cj.BlockedServices,
|
|
|
|
Upstreams: cj.Upstreams,
|
|
}
|
|
return &c, nil
|
|
}
|
|
|
|
// Convert Client object to JSON
|
|
func clientToJSON(c *Client) clientJSON {
|
|
cj := clientJSON{
|
|
Name: c.Name,
|
|
IDs: c.IDs,
|
|
Tags: c.Tags,
|
|
UseGlobalSettings: !c.UseOwnSettings,
|
|
FilteringEnabled: c.FilteringEnabled,
|
|
ParentalEnabled: c.ParentalEnabled,
|
|
SafeSearchEnabled: c.SafeSearchEnabled,
|
|
SafeBrowsingEnabled: c.SafeBrowsingEnabled,
|
|
|
|
UseGlobalBlockedServices: !c.UseOwnBlockedServices,
|
|
BlockedServices: c.BlockedServices,
|
|
|
|
Upstreams: c.Upstreams,
|
|
}
|
|
return cj
|
|
}
|
|
|
|
// Convert ClientHost object to JSON
|
|
func clientHostToJSON(ip string, ch ClientHost) clientJSON {
|
|
cj := clientJSON{
|
|
Name: ch.Host,
|
|
IDs: []string{ip},
|
|
}
|
|
|
|
cj.WhoisInfo = make(map[string]interface{})
|
|
for _, wi := range ch.WhoisInfo {
|
|
cj.WhoisInfo[wi[0]] = wi[1]
|
|
}
|
|
return cj
|
|
}
|
|
|
|
// Add a new client
|
|
func (clients *clientsContainer) handleAddClient(w http.ResponseWriter, r *http.Request) {
|
|
body, err := ioutil.ReadAll(r.Body)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "failed to read request body: %s", err)
|
|
return
|
|
}
|
|
|
|
cj := clientJSON{}
|
|
err = json.Unmarshal(body, &cj)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "JSON parse: %s", err)
|
|
return
|
|
}
|
|
|
|
c, err := jsonToClient(cj)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "%s", err)
|
|
return
|
|
}
|
|
ok, err := clients.Add(*c)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "%s", err)
|
|
return
|
|
}
|
|
if !ok {
|
|
httpError(w, http.StatusBadRequest, "Client already exists")
|
|
return
|
|
}
|
|
|
|
onConfigModified()
|
|
}
|
|
|
|
// Remove client
|
|
func (clients *clientsContainer) handleDelClient(w http.ResponseWriter, r *http.Request) {
|
|
body, err := ioutil.ReadAll(r.Body)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "failed to read request body: %s", err)
|
|
return
|
|
}
|
|
|
|
cj := clientJSON{}
|
|
err = json.Unmarshal(body, &cj)
|
|
if err != nil || len(cj.Name) == 0 {
|
|
httpError(w, http.StatusBadRequest, "JSON parse: %s", err)
|
|
return
|
|
}
|
|
|
|
if !clients.Del(cj.Name) {
|
|
httpError(w, http.StatusBadRequest, "Client not found")
|
|
return
|
|
}
|
|
|
|
onConfigModified()
|
|
}
|
|
|
|
type updateJSON struct {
|
|
Name string `json:"name"`
|
|
Data clientJSON `json:"data"`
|
|
}
|
|
|
|
// Update client's properties
|
|
func (clients *clientsContainer) handleUpdateClient(w http.ResponseWriter, r *http.Request) {
|
|
body, err := ioutil.ReadAll(r.Body)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "failed to read request body: %s", err)
|
|
return
|
|
}
|
|
|
|
var dj updateJSON
|
|
err = json.Unmarshal(body, &dj)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "JSON parse: %s", err)
|
|
return
|
|
}
|
|
if len(dj.Name) == 0 {
|
|
httpError(w, http.StatusBadRequest, "Invalid request")
|
|
return
|
|
}
|
|
|
|
c, err := jsonToClient(dj.Data)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "%s", err)
|
|
return
|
|
}
|
|
|
|
err = clients.Update(dj.Name, *c)
|
|
if err != nil {
|
|
httpError(w, http.StatusBadRequest, "%s", err)
|
|
return
|
|
}
|
|
|
|
onConfigModified()
|
|
}
|
|
|
|
// Get the list of clients by IP address list
|
|
func (clients *clientsContainer) handleFindClient(w http.ResponseWriter, r *http.Request) {
|
|
q := r.URL.Query()
|
|
data := []map[string]interface{}{}
|
|
for i := 0; ; i++ {
|
|
ip := q.Get(fmt.Sprintf("ip%d", i))
|
|
if len(ip) == 0 {
|
|
break
|
|
}
|
|
el := map[string]interface{}{}
|
|
c, ok := clients.Find(ip)
|
|
if !ok {
|
|
ch, ok := clients.FindAutoClient(ip)
|
|
if !ok {
|
|
continue // a client with this IP isn't found
|
|
}
|
|
cj := clientHostToJSON(ip, ch)
|
|
|
|
disallowed, disallowedRule := clients.DNSServer.IsBlockedIP(ip)
|
|
if disallowed {
|
|
cj.Disallowed = disallowedRule
|
|
}
|
|
|
|
el[ip] = cj
|
|
} else {
|
|
cj := clientToJSON(&c)
|
|
|
|
disallowed, disallowedRule := clients.DNSServer.IsBlockedIP(ip)
|
|
if disallowed {
|
|
cj.Disallowed = disallowedRule
|
|
}
|
|
|
|
el[ip] = cj
|
|
}
|
|
|
|
data = append(data, el)
|
|
}
|
|
|
|
js, err := json.Marshal(data)
|
|
if err != nil {
|
|
httpError(w, http.StatusInternalServerError, "json.Marshal: %s", err)
|
|
return
|
|
}
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
_, err = w.Write(js)
|
|
if err != nil {
|
|
httpError(w, http.StatusInternalServerError, "Couldn't write response: %s", err)
|
|
}
|
|
}
|
|
|
|
// RegisterClientsHandlers registers HTTP handlers
|
|
func (clients *clientsContainer) registerWebHandlers() {
|
|
httpRegister("GET", "/control/clients", clients.handleGetClients)
|
|
httpRegister("POST", "/control/clients/add", clients.handleAddClient)
|
|
httpRegister("POST", "/control/clients/delete", clients.handleDelClient)
|
|
httpRegister("POST", "/control/clients/update", clients.handleUpdateClient)
|
|
httpRegister("GET", "/control/clients/find", clients.handleFindClient)
|
|
}
|