2020-11-05 13:37:51 -05:00
|
|
|
package server
|
|
|
|
|
|
|
|
|
|
import (
|
2021-02-22 16:25:08 -05:00
|
|
|
"context"
|
2020-11-05 13:37:51 -05:00
|
|
|
"encoding/gob"
|
2020-11-09 14:26:34 -05:00
|
|
|
"html/template"
|
2021-02-24 15:24:45 -05:00
|
|
|
"io/fs"
|
2021-01-13 11:27:01 -05:00
|
|
|
"io/ioutil"
|
2020-11-05 13:37:51 -05:00
|
|
|
"math/rand"
|
2021-02-24 15:24:45 -05:00
|
|
|
"net/http"
|
2020-11-10 16:23:05 -05:00
|
|
|
"net/url"
|
2020-11-05 13:37:51 -05:00
|
|
|
"os"
|
|
|
|
|
"path/filepath"
|
|
|
|
|
"time"
|
|
|
|
|
|
2020-11-09 14:26:34 -05:00
|
|
|
"github.com/gin-contrib/sessions"
|
|
|
|
|
"github.com/gin-contrib/sessions/memstore"
|
2020-11-05 13:37:51 -05:00
|
|
|
"github.com/gin-gonic/gin"
|
2021-02-24 15:24:45 -05:00
|
|
|
wg_portal "github.com/h44z/wg-portal"
|
|
|
|
|
ldapprovider "github.com/h44z/wg-portal/internal/authentication/providers/ldap"
|
|
|
|
|
passwordprovider "github.com/h44z/wg-portal/internal/authentication/providers/password"
|
2021-02-08 16:56:02 -05:00
|
|
|
"github.com/h44z/wg-portal/internal/common"
|
2021-02-24 15:24:45 -05:00
|
|
|
"github.com/h44z/wg-portal/internal/users"
|
2021-02-08 16:56:02 -05:00
|
|
|
"github.com/h44z/wg-portal/internal/wireguard"
|
2021-02-24 15:24:45 -05:00
|
|
|
"github.com/pkg/errors"
|
2021-02-08 16:56:02 -05:00
|
|
|
"github.com/sirupsen/logrus"
|
|
|
|
|
ginlogrus "github.com/toorop/gin-logrus"
|
2020-11-05 13:37:51 -05:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
const SessionIdentifier = "wgPortalSession"
|
|
|
|
|
|
|
|
|
|
func init() {
|
|
|
|
|
gob.Register(SessionData{})
|
2020-11-10 16:23:05 -05:00
|
|
|
gob.Register(FlashData{})
|
2021-02-21 17:23:58 -05:00
|
|
|
gob.Register(Peer{})
|
2020-11-09 05:06:02 -05:00
|
|
|
gob.Register(Device{})
|
|
|
|
|
gob.Register(LdapCreateForm{})
|
2021-02-24 15:24:45 -05:00
|
|
|
gob.Register(users.User{})
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type SessionData struct {
|
2021-02-24 15:24:45 -05:00
|
|
|
LoggedIn bool
|
|
|
|
|
IsAdmin bool
|
|
|
|
|
Firstname string
|
|
|
|
|
Lastname string
|
|
|
|
|
Email string
|
|
|
|
|
|
|
|
|
|
SortedBy map[string]string
|
|
|
|
|
SortDirection map[string]string
|
|
|
|
|
Search map[string]string
|
|
|
|
|
|
|
|
|
|
AlertData string
|
|
|
|
|
AlertType string
|
|
|
|
|
FormData interface{}
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
2020-11-10 16:23:05 -05:00
|
|
|
type FlashData struct {
|
2020-11-05 13:37:51 -05:00
|
|
|
HasAlert bool
|
|
|
|
|
Message string
|
|
|
|
|
Type string
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type StaticData struct {
|
|
|
|
|
WebsiteTitle string
|
|
|
|
|
WebsiteLogo string
|
2020-11-10 03:31:02 -05:00
|
|
|
CompanyName string
|
|
|
|
|
Year int
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Server struct {
|
2021-02-22 16:25:08 -05:00
|
|
|
ctx context.Context
|
2020-11-09 14:26:34 -05:00
|
|
|
config *common.Config
|
|
|
|
|
server *gin.Engine
|
|
|
|
|
mailTpl *template.Template
|
2021-02-24 15:24:45 -05:00
|
|
|
auth *AuthManager
|
2020-11-05 13:37:51 -05:00
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
users *users.Manager
|
|
|
|
|
wg *wireguard.Manager
|
|
|
|
|
peers *PeerManager
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
2021-02-22 16:25:08 -05:00
|
|
|
func (s *Server) Setup(ctx context.Context) error {
|
2021-02-24 15:24:45 -05:00
|
|
|
var err error
|
|
|
|
|
|
2020-11-10 03:57:49 -05:00
|
|
|
dir := s.getExecutableDirectory()
|
|
|
|
|
rDir, _ := filepath.Abs(filepath.Dir(os.Args[0]))
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Infof("real working directory: %s", rDir)
|
|
|
|
|
logrus.Infof("current working directory: %s", dir)
|
2020-11-10 03:57:49 -05:00
|
|
|
|
2020-11-05 13:37:51 -05:00
|
|
|
// Init rand
|
|
|
|
|
rand.Seed(time.Now().UnixNano())
|
|
|
|
|
|
|
|
|
|
s.config = common.NewConfig()
|
2021-02-24 15:24:45 -05:00
|
|
|
s.ctx = ctx
|
2020-11-05 13:37:51 -05:00
|
|
|
|
|
|
|
|
// Setup http server
|
2021-02-24 15:24:45 -05:00
|
|
|
gin.SetMode(gin.DebugMode)
|
2021-01-13 11:27:01 -05:00
|
|
|
gin.DefaultWriter = ioutil.Discard
|
|
|
|
|
s.server = gin.New()
|
2021-02-08 16:56:02 -05:00
|
|
|
s.server.Use(ginlogrus.Logger(logrus.StandardLogger()), gin.Recovery())
|
2020-11-10 16:23:05 -05:00
|
|
|
s.server.SetFuncMap(template.FuncMap{
|
|
|
|
|
"formatBytes": common.ByteCountSI,
|
|
|
|
|
"urlEncode": url.QueryEscape,
|
|
|
|
|
})
|
2020-11-05 13:37:51 -05:00
|
|
|
|
|
|
|
|
// Setup templates
|
2021-02-24 15:24:45 -05:00
|
|
|
templates := template.Must(template.New("").Funcs(s.server.FuncMap).ParseFS(wg_portal.Templates, "assets/tpl/*.html"))
|
|
|
|
|
s.server.SetHTMLTemplate(templates)
|
2020-11-09 14:26:34 -05:00
|
|
|
s.server.Use(sessions.Sessions("authsession", memstore.NewStore([]byte("secret")))) // TODO: change key?
|
2020-11-05 13:37:51 -05:00
|
|
|
|
|
|
|
|
// Serve static files
|
2021-02-24 15:24:45 -05:00
|
|
|
s.server.StaticFS("/css", http.FS(fsMust(fs.Sub(wg_portal.Statics, "assets/css"))))
|
|
|
|
|
s.server.StaticFS("/js", http.FS(fsMust(fs.Sub(wg_portal.Statics, "assets/js"))))
|
|
|
|
|
s.server.StaticFS("/img", http.FS(fsMust(fs.Sub(wg_portal.Statics, "assets/img"))))
|
|
|
|
|
s.server.StaticFS("/fonts", http.FS(fsMust(fs.Sub(wg_portal.Statics, "assets/fonts"))))
|
2020-11-05 13:37:51 -05:00
|
|
|
|
|
|
|
|
// Setup all routes
|
|
|
|
|
SetupRoutes(s)
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
// Setup user database (also needed for database authentication)
|
|
|
|
|
s.users, err = users.NewManager(&s.config.Database)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.WithMessage(err, "user-manager initialization failed")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Setup auth manager
|
|
|
|
|
s.auth = NewAuthManager(s)
|
|
|
|
|
pwProvider, err := passwordprovider.New(&s.config.Database)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.WithMessage(err, "password provider initialization failed")
|
|
|
|
|
}
|
|
|
|
|
if err = pwProvider.InitializeAdmin(s.config.Core.AdminUser, s.config.Core.AdminPassword); err != nil {
|
|
|
|
|
return errors.WithMessage(err, "admin initialization failed")
|
|
|
|
|
}
|
|
|
|
|
s.auth.RegisterProvider(pwProvider)
|
|
|
|
|
|
|
|
|
|
if s.config.Core.LdapEnabled {
|
|
|
|
|
ldapProvider, err := ldapprovider.New(&s.config.LDAP)
|
|
|
|
|
if err != nil {
|
|
|
|
|
s.config.Core.LdapEnabled = false
|
|
|
|
|
logrus.Warnf("failed to setup LDAP connection, LDAP features disabled")
|
|
|
|
|
}
|
|
|
|
|
s.auth.RegisterProviderWithoutError(ldapProvider, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Setup WireGuard stuff
|
|
|
|
|
s.wg = &wireguard.Manager{Cfg: &s.config.WG}
|
|
|
|
|
if err = s.wg.Init(); err != nil {
|
|
|
|
|
return errors.WithMessage(err, "unable to initialize WireGuard manager")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Setup peer manager
|
|
|
|
|
if s.peers, err = NewPeerManager(s.config, s.wg, s.users); err != nil {
|
|
|
|
|
return errors.WithMessage(err, "unable to setup peer manager")
|
|
|
|
|
}
|
|
|
|
|
if err = s.peers.InitFromCurrentInterface(); err != nil {
|
|
|
|
|
return errors.WithMessage(err, "unable to initialize peer manager")
|
|
|
|
|
}
|
|
|
|
|
if err = s.RestoreWireGuardInterface(); err != nil {
|
|
|
|
|
return errors.WithMessage(err, "unable to restore WireGuard state")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Setup mail template
|
|
|
|
|
s.mailTpl, err = template.New("email.html").ParseFS(wg_portal.Templates, "assets/tpl/email.html")
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "unable to pare mail template")
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Infof("setup of service completed!")
|
2020-11-05 13:37:51 -05:00
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *Server) Run() {
|
2021-02-24 15:24:45 -05:00
|
|
|
// Start ldap sync
|
|
|
|
|
if s.config.Core.LdapEnabled {
|
|
|
|
|
go s.SyncLdapWithUserDatabase()
|
2020-11-16 16:39:41 -05:00
|
|
|
}
|
|
|
|
|
|
2020-11-05 13:37:51 -05:00
|
|
|
// Run web service
|
2021-02-24 15:24:45 -05:00
|
|
|
srv := &http.Server{
|
|
|
|
|
Addr: s.config.Core.ListeningAddress,
|
|
|
|
|
Handler: s.server,
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
2021-02-24 15:24:45 -05:00
|
|
|
|
|
|
|
|
go func() {
|
|
|
|
|
if err := srv.ListenAndServe(); err != nil {
|
|
|
|
|
logrus.Debugf("web service on %s exited: %v", s.config.Core.ListeningAddress, err)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
<-s.ctx.Done()
|
|
|
|
|
|
|
|
|
|
logrus.Debug("web service shutting down...")
|
|
|
|
|
|
|
|
|
|
shutdownCtx, cancel := context.WithTimeout(context.Background(), 10*time.Second)
|
|
|
|
|
defer cancel()
|
|
|
|
|
_ = srv.Shutdown(shutdownCtx)
|
|
|
|
|
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *Server) getExecutableDirectory() string {
|
|
|
|
|
dir, err := filepath.Abs(filepath.Dir(os.Args[0]))
|
|
|
|
|
if err != nil {
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Errorf("failed to get executable directory: %v", err)
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if _, err := os.Stat(filepath.Join(dir, "assets")); os.IsNotExist(err) {
|
|
|
|
|
return "." // assets directory not found -> we are developing in goland =)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return dir
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
func (s *Server) getStaticData() StaticData {
|
|
|
|
|
return StaticData{
|
|
|
|
|
WebsiteTitle: s.config.Core.Title,
|
|
|
|
|
WebsiteLogo: "/img/header-logo.png",
|
|
|
|
|
CompanyName: s.config.Core.CompanyName,
|
|
|
|
|
Year: time.Now().Year(),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func GetSessionData(c *gin.Context) SessionData {
|
2020-11-05 13:37:51 -05:00
|
|
|
session := sessions.Default(c)
|
|
|
|
|
rawSessionData := session.Get(SessionIdentifier)
|
|
|
|
|
|
|
|
|
|
var sessionData SessionData
|
|
|
|
|
if rawSessionData != nil {
|
|
|
|
|
sessionData = rawSessionData.(SessionData)
|
|
|
|
|
} else {
|
|
|
|
|
sessionData = SessionData{
|
2021-02-24 15:24:45 -05:00
|
|
|
Search: map[string]string{"peers": "", "userpeers": "", "users": ""},
|
|
|
|
|
SortedBy: map[string]string{"peers": "mail", "userpeers": "mail", "users": "email"},
|
|
|
|
|
SortDirection: map[string]string{"peers": "asc", "userpeers": "asc", "users": "asc"},
|
2020-11-09 17:24:14 -05:00
|
|
|
Email: "",
|
2020-11-05 13:37:51 -05:00
|
|
|
Firstname: "",
|
|
|
|
|
Lastname: "",
|
|
|
|
|
IsAdmin: false,
|
|
|
|
|
LoggedIn: false,
|
|
|
|
|
}
|
|
|
|
|
session.Set(SessionIdentifier, sessionData)
|
|
|
|
|
if err := session.Save(); err != nil {
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Errorf("failed to store session: %v", err)
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return sessionData
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
func GetFlashes(c *gin.Context) []FlashData {
|
2020-11-10 16:23:05 -05:00
|
|
|
session := sessions.Default(c)
|
|
|
|
|
flashes := session.Flashes()
|
|
|
|
|
if err := session.Save(); err != nil {
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Errorf("failed to store session after setting flash: %v", err)
|
2020-11-10 16:23:05 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
flashData := make([]FlashData, len(flashes))
|
|
|
|
|
for i := range flashes {
|
|
|
|
|
flashData[i] = flashes[i].(FlashData)
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
2020-11-10 16:23:05 -05:00
|
|
|
return flashData
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
func UpdateSessionData(c *gin.Context, data SessionData) error {
|
2020-11-05 13:37:51 -05:00
|
|
|
session := sessions.Default(c)
|
|
|
|
|
session.Set(SessionIdentifier, data)
|
|
|
|
|
if err := session.Save(); err != nil {
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Errorf("failed to store session: %v", err)
|
|
|
|
|
return errors.Wrap(err, "failed to store session")
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
func DestroySessionData(c *gin.Context) error {
|
2020-11-05 13:37:51 -05:00
|
|
|
session := sessions.Default(c)
|
|
|
|
|
session.Delete(SessionIdentifier)
|
|
|
|
|
if err := session.Save(); err != nil {
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Errorf("failed to destroy session: %v", err)
|
|
|
|
|
return errors.Wrap(err, "failed to destroy session")
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
func SetFlashMessage(c *gin.Context, message, typ string) {
|
2020-11-10 16:23:05 -05:00
|
|
|
session := sessions.Default(c)
|
|
|
|
|
session.AddFlash(FlashData{
|
|
|
|
|
Message: message,
|
|
|
|
|
Type: typ,
|
|
|
|
|
})
|
|
|
|
|
if err := session.Save(); err != nil {
|
2021-02-26 16:17:04 -05:00
|
|
|
logrus.Errorf("failed to store session after setting flash: %v", err)
|
2020-11-10 16:23:05 -05:00
|
|
|
}
|
2020-11-05 13:37:51 -05:00
|
|
|
}
|
|
|
|
|
|
2021-02-24 15:24:45 -05:00
|
|
|
func (s SessionData) GetSortIcon(table, field string) string {
|
|
|
|
|
if s.SortedBy[table] != field {
|
2020-11-05 13:37:51 -05:00
|
|
|
return "fa-sort"
|
|
|
|
|
}
|
2021-02-24 15:24:45 -05:00
|
|
|
if s.SortDirection[table] == "asc" {
|
2020-11-05 13:37:51 -05:00
|
|
|
return "fa-sort-alpha-down"
|
|
|
|
|
} else {
|
|
|
|
|
return "fa-sort-alpha-up"
|
|
|
|
|
}
|
|
|
|
|
}
|
2021-02-24 15:24:45 -05:00
|
|
|
|
|
|
|
|
func fsMust(f fs.FS, err error) fs.FS {
|
|
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
return f
|
|
|
|
|
}
|
