mirror of
https://github.com/langhuihui/monibuca.git
synced 2025-09-27 03:25:56 +08:00
766 lines
21 KiB
Go
766 lines
21 KiB
Go
package m7s
|
|
|
|
import (
|
|
"archive/zip"
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"log/slog"
|
|
"net/http"
|
|
"net/url"
|
|
"os"
|
|
"path/filepath"
|
|
"runtime/debug"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/shirou/gopsutil/v4/cpu"
|
|
"google.golang.org/protobuf/proto"
|
|
|
|
"m7s.live/v5/pkg"
|
|
"m7s.live/v5/pkg/config"
|
|
"m7s.live/v5/pkg/task"
|
|
|
|
sysruntime "runtime"
|
|
|
|
"github.com/grpc-ecosystem/grpc-gateway/v2/runtime"
|
|
|
|
"github.com/phsym/console-slog"
|
|
"github.com/prometheus/client_golang/prometheus"
|
|
"github.com/prometheus/client_golang/prometheus/promhttp"
|
|
"google.golang.org/grpc"
|
|
"google.golang.org/grpc/credentials/insecure"
|
|
"google.golang.org/grpc/metadata"
|
|
"gopkg.in/yaml.v3"
|
|
"gorm.io/gorm"
|
|
"m7s.live/v5/pb"
|
|
. "m7s.live/v5/pkg"
|
|
"m7s.live/v5/pkg/auth"
|
|
"m7s.live/v5/pkg/db"
|
|
"m7s.live/v5/pkg/util"
|
|
)
|
|
|
|
var (
|
|
Version = "v5.0.0"
|
|
MergeConfigs = [...]string{"Publish", "Subscribe", "HTTP", "PublicIP", "PublicIPv6", "LogLevel", "EnableAuth", "DB"}
|
|
ExecPath = os.Args[0]
|
|
ExecDir = filepath.Dir(ExecPath)
|
|
ServerMeta = PluginMeta{
|
|
Name: "Global",
|
|
Version: Version,
|
|
}
|
|
Servers task.RootManager[uint32, *Server]
|
|
defaultLogHandler = console.NewHandler(os.Stdout, &console.HandlerOptions{TimeFormat: "15:04:05.000000"})
|
|
)
|
|
|
|
type (
|
|
ServerConfig struct {
|
|
SettingDir string `default:".m7s" desc:""`
|
|
FatalDir string `default:"fatal" desc:""`
|
|
PulseInterval time.Duration `default:"5s" desc:"心跳事件间隔"` //心跳事件间隔
|
|
DisableAll bool `default:"false" desc:"禁用所有插件"` //禁用所有插件
|
|
StreamAlias map[config.Regexp]string `desc:"流别名"`
|
|
Location map[config.Regexp]string `desc:"HTTP路由转发规则,key为正则表达式,value为目标地址"`
|
|
PullProxy []*PullProxy
|
|
PushProxy []*PushProxy
|
|
Admin struct {
|
|
EnableLogin bool `default:"false" desc:"启用登录机制"` //启用登录机制
|
|
FilePath string `default:"admin.zip" desc:"管理员界面文件路径"`
|
|
HomePage string `default:"home" desc:"管理员界面首页"`
|
|
Users []struct {
|
|
Username string `desc:"用户名"`
|
|
Password string `desc:"密码"`
|
|
Role string `default:"user" desc:"角色,可选值:admin,user"`
|
|
} `desc:"用户列表,仅在启用登录机制时生效"`
|
|
} `desc:"管理员界面配置"`
|
|
}
|
|
WaitStream struct {
|
|
StreamPath string
|
|
SubscriberCollection
|
|
}
|
|
Server struct {
|
|
pb.UnimplementedApiServer
|
|
pb.UnimplementedAuthServer
|
|
Plugin
|
|
|
|
ServerConfig
|
|
Plugins util.Collection[string, *Plugin]
|
|
Streams task.Manager[string, *Publisher]
|
|
AliasStreams util.Collection[string, *AliasStream]
|
|
Waiting WaitManager
|
|
Pulls task.Manager[string, *PullJob]
|
|
Pushs task.Manager[string, *PushJob]
|
|
Records task.Manager[string, *RecordJob]
|
|
Transforms Transforms
|
|
PullProxies PullProxyManager
|
|
PushProxies PushProxyManager
|
|
Subscribers SubscriberCollection
|
|
LogHandler MultiLogHandler
|
|
apiList []string
|
|
grpcServer *grpc.Server
|
|
grpcClientConn *grpc.ClientConn
|
|
lastSummaryTime time.Time
|
|
lastSummary *pb.SummaryResponse
|
|
conf any
|
|
configFileContent []byte
|
|
disabledPlugins []*Plugin
|
|
prometheusDesc prometheusDesc
|
|
}
|
|
CheckSubWaitTimeout struct {
|
|
task.TickTask
|
|
s *Server
|
|
}
|
|
GRPCServer struct {
|
|
task.Task
|
|
s *Server
|
|
tcpTask *config.ListenTCPWork
|
|
}
|
|
RawConfig = map[string]map[string]any
|
|
)
|
|
|
|
func (w *WaitStream) GetKey() string {
|
|
return w.StreamPath
|
|
}
|
|
|
|
func NewServer(conf any) (s *Server) {
|
|
s = &Server{
|
|
conf: conf,
|
|
disabledPlugins: make([]*Plugin, 0),
|
|
}
|
|
s.ID = task.GetNextTaskID()
|
|
s.Meta = &ServerMeta
|
|
s.SetDescriptions(task.Description{
|
|
"version": Version,
|
|
"goVersion": sysruntime.Version(),
|
|
"os": sysruntime.GOOS,
|
|
"arch": sysruntime.GOARCH,
|
|
"cpus": int32(sysruntime.NumCPU()),
|
|
})
|
|
//s.Transforms.PublishEvent = make(chan *Publisher, 10)
|
|
s.prometheusDesc.init()
|
|
return
|
|
}
|
|
|
|
func Run(ctx context.Context, conf any) (err error) {
|
|
for err = ErrRestart; errors.Is(err, ErrRestart); err = Servers.Add(NewServer(conf), ctx).WaitStopped() {
|
|
}
|
|
return
|
|
}
|
|
|
|
func exit() {
|
|
for _, meta := range plugins {
|
|
if meta.OnExit != nil {
|
|
meta.OnExit()
|
|
}
|
|
}
|
|
if ServerMeta.OnExit != nil {
|
|
ServerMeta.OnExit()
|
|
}
|
|
os.Exit(0)
|
|
}
|
|
|
|
var zipReader *zip.ReadCloser
|
|
var adminZipLastModTime time.Time
|
|
var lastCheckTime time.Time
|
|
var checkInterval = time.Second * 3 // 检查间隔为3秒
|
|
|
|
func init() {
|
|
Servers.Init()
|
|
Servers.OnBeforeDispose(func() {
|
|
time.AfterFunc(3*time.Second, exit)
|
|
})
|
|
Servers.OnDispose(exit)
|
|
loadAdminZip()
|
|
}
|
|
|
|
func loadAdminZip() {
|
|
if zipReader != nil {
|
|
zipReader.Close()
|
|
zipReader = nil
|
|
}
|
|
if info, err := os.Stat("admin.zip"); err == nil {
|
|
adminZipLastModTime = info.ModTime()
|
|
zipReader, _ = zip.OpenReader("admin.zip")
|
|
}
|
|
}
|
|
|
|
func (s *Server) GetKey() uint32 {
|
|
return s.ID
|
|
}
|
|
|
|
type errLogger struct {
|
|
*slog.Logger
|
|
}
|
|
|
|
func (l errLogger) Println(v ...interface{}) {
|
|
l.Error("Exporter promhttp err: ", v...)
|
|
}
|
|
|
|
func (s *Server) Start() (err error) {
|
|
if err = util.CreateShutdownScript(); err != nil {
|
|
s.Error("create shutdown script error:", err)
|
|
}
|
|
s.Server = s
|
|
s.handler = s
|
|
httpConf, tcpConf := &s.config.HTTP, &s.config.TCP
|
|
httpConf.ListenAddr = ":8080"
|
|
tcpConf.ListenAddr = ":50051"
|
|
s.LogHandler.SetLevel(slog.LevelDebug)
|
|
s.LogHandler.Add(defaultLogHandler)
|
|
s.Logger = slog.New(&s.LogHandler).With("server", s.ID)
|
|
s.Waiting.Logger = s.Logger
|
|
|
|
var httpMux http.Handler = httpConf.CreateHttpMux()
|
|
mux := runtime.NewServeMux(
|
|
runtime.WithMarshalerOption("text/plain", &pb.TextPlain{}),
|
|
runtime.WithForwardResponseOption(func(ctx context.Context, w http.ResponseWriter, m proto.Message) error {
|
|
header := w.Header()
|
|
header.Set("Access-Control-Allow-Credentials", "true")
|
|
header.Set("Cross-Origin-Resource-Policy", "cross-origin")
|
|
header.Set("Access-Control-Allow-Headers", "Content-Type,Access-Token,Authorization")
|
|
header.Set("Access-Control-Allow-Methods", "GET,POST,PUT,DELETE,OPTIONS")
|
|
header.Set("Access-Control-Allow-Private-Network", "true")
|
|
header.Set("Access-Control-Allow-Origin", "*")
|
|
return nil
|
|
}),
|
|
runtime.WithRoutingErrorHandler(func(_ context.Context, _ *runtime.ServeMux, _ runtime.Marshaler, w http.ResponseWriter, r *http.Request, _ int) {
|
|
httpMux.ServeHTTP(w, r)
|
|
}),
|
|
)
|
|
httpConf.SetMux(mux)
|
|
|
|
var cg RawConfig
|
|
var configYaml []byte
|
|
switch v := s.conf.(type) {
|
|
case string:
|
|
if _, err = os.Stat(v); err != nil {
|
|
v = filepath.Join(ExecDir, v)
|
|
}
|
|
if configYaml, err = os.ReadFile(v); err != nil {
|
|
s.Warn("read config file failed", "error", err.Error())
|
|
} else {
|
|
s.configFileContent = configYaml
|
|
}
|
|
case []byte:
|
|
configYaml = v
|
|
case RawConfig:
|
|
cg = v
|
|
}
|
|
if configYaml != nil {
|
|
if err = yaml.Unmarshal(configYaml, &cg); err != nil {
|
|
s.Error("parsing yml", "error", err)
|
|
}
|
|
}
|
|
s.Config.Parse(&s.config, "GLOBAL")
|
|
s.Config.Parse(&s.ServerConfig, "GLOBAL")
|
|
if cg != nil {
|
|
s.Config.ParseUserFile(cg["global"])
|
|
}
|
|
s.LogHandler.SetLevel(ParseLevel(s.config.LogLevel))
|
|
err = debug.SetCrashOutput(util.InitFatalLog(s.FatalDir), debug.CrashOptions{})
|
|
if err != nil {
|
|
s.Error("SetCrashOutput", "error", err)
|
|
return
|
|
}
|
|
|
|
s.registerHandler(map[string]http.HandlerFunc{
|
|
"/api/config/json/{name}": s.api_Config_JSON_,
|
|
"/api/stream/annexb/{streamPath...}": s.api_Stream_AnnexB_,
|
|
"/api/videotrack/sse/{streamPath...}": s.api_VideoTrack_SSE,
|
|
"/api/audiotrack/sse/{streamPath...}": s.api_AudioTrack_SSE,
|
|
})
|
|
|
|
if s.config.DSN != "" {
|
|
if factory, ok := db.Factory[s.config.DBType]; ok {
|
|
s.DB, err = gorm.Open(factory(s.config.DSN), &gorm.Config{})
|
|
if err != nil {
|
|
s.Error("failed to connect database", "error", err, "dsn", s.config.DSN, "type", s.config.DBType)
|
|
return
|
|
}
|
|
// Auto-migrate models
|
|
if err = s.DB.AutoMigrate(&db.User{}, &PullProxy{}, &PushProxy{}, &StreamAliasDB{}); err != nil {
|
|
s.Error("failed to auto-migrate models", "error", err)
|
|
return
|
|
}
|
|
// Create users from configuration if EnableLogin is true
|
|
if s.ServerConfig.Admin.EnableLogin {
|
|
for _, userConfig := range s.ServerConfig.Admin.Users {
|
|
var user db.User
|
|
// Check if user exists
|
|
if err = s.DB.Where("username = ?", userConfig.Username).First(&user).Error; err != nil {
|
|
// Create user if not exists
|
|
user = db.User{
|
|
Username: userConfig.Username,
|
|
Password: userConfig.Password,
|
|
Role: userConfig.Role,
|
|
}
|
|
if err = s.DB.Create(&user).Error; err != nil {
|
|
s.Error("failed to create user", "error", err, "username", userConfig.Username)
|
|
continue
|
|
}
|
|
s.Info("created user from config", "username", userConfig.Username)
|
|
} else {
|
|
// Update existing user with config values
|
|
user.Password = userConfig.Password
|
|
user.Role = userConfig.Role
|
|
if err = s.DB.Save(&user).Error; err != nil {
|
|
s.Error("failed to update user", "error", err, "username", userConfig.Username)
|
|
continue
|
|
}
|
|
s.Info("updated user from config", "username", userConfig.Username)
|
|
}
|
|
}
|
|
}
|
|
// Create default admin user if no users exist
|
|
var count int64
|
|
s.DB.Model(&db.User{}).Count(&count)
|
|
if count == 0 {
|
|
adminUser := &db.User{
|
|
Username: "admin",
|
|
Password: "admin",
|
|
Role: "admin",
|
|
}
|
|
if err = s.DB.Create(adminUser).Error; err != nil {
|
|
s.Error("failed to create default admin user", "error", err)
|
|
return
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if httpConf.ListenAddrTLS != "" {
|
|
s.AddDependTask(httpConf.CreateHTTPSWork(s.Logger))
|
|
}
|
|
if httpConf.ListenAddr != "" {
|
|
s.AddDependTask(httpConf.CreateHTTPWork(s.Logger))
|
|
}
|
|
|
|
var grpcServer *GRPCServer
|
|
if tcpConf.ListenAddr != "" {
|
|
var opts []grpc.ServerOption
|
|
// Add the auth interceptor
|
|
opts = append(opts, grpc.UnaryInterceptor(s.AuthInterceptor()))
|
|
s.grpcServer = grpc.NewServer(opts...)
|
|
pb.RegisterApiServer(s.grpcServer, s)
|
|
pb.RegisterAuthServer(s.grpcServer, s)
|
|
|
|
s.grpcClientConn, err = grpc.DialContext(s.Context, tcpConf.ListenAddr, grpc.WithTransportCredentials(insecure.NewCredentials()))
|
|
if err != nil {
|
|
s.Error("failed to dial", "error", err)
|
|
return
|
|
}
|
|
if err = pb.RegisterApiHandler(s.Context, mux, s.grpcClientConn); err != nil {
|
|
s.Error("register handler failed", "error", err)
|
|
return
|
|
}
|
|
if err = pb.RegisterAuthHandler(s.Context, mux, s.grpcClientConn); err != nil {
|
|
s.Error("register auth handler failed", "error", err)
|
|
return
|
|
}
|
|
grpcServer = &GRPCServer{s: s, tcpTask: tcpConf.CreateTCPWork(s.Logger, nil)}
|
|
if err = s.AddTask(grpcServer.tcpTask).WaitStarted(); err != nil {
|
|
s.Error("failed to listen", "error", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
s.AddTask(&s.Records)
|
|
s.AddTask(&s.Streams)
|
|
s.AddTask(&s.Pulls)
|
|
s.AddTask(&s.Pushs)
|
|
s.AddTask(&s.Transforms)
|
|
s.AddTask(&s.PullProxies)
|
|
s.AddTask(&s.PushProxies)
|
|
promReg := prometheus.NewPedanticRegistry()
|
|
promReg.MustRegister(s)
|
|
for _, plugin := range plugins {
|
|
p := plugin.Init(s, cg[strings.ToLower(plugin.Name)])
|
|
if !p.Disabled {
|
|
if collector, ok := p.handler.(prometheus.Collector); ok {
|
|
promReg.MustRegister(collector)
|
|
}
|
|
}
|
|
}
|
|
promhttpHandler := promhttp.HandlerFor(prometheus.Gatherers{
|
|
prometheus.DefaultGatherer,
|
|
promReg,
|
|
},
|
|
promhttp.HandlerOpts{
|
|
ErrorLog: errLogger{s.Logger},
|
|
ErrorHandling: promhttp.ContinueOnError,
|
|
})
|
|
s.handle("/api/metrics", promhttpHandler)
|
|
if grpcServer != nil {
|
|
s.AddTask(grpcServer, s.Logger)
|
|
}
|
|
s.Streams.OnStart(func() {
|
|
s.Streams.AddTask(&CheckSubWaitTimeout{s: s})
|
|
})
|
|
// s.Transforms.AddTask(&TransformsPublishEvent{Transforms: &s.Transforms})
|
|
s.Info("server started")
|
|
s.Post(func() error {
|
|
for plugin := range s.Plugins.Range {
|
|
if plugin.Meta.Puller != nil {
|
|
for streamPath, conf := range plugin.config.Pull {
|
|
plugin.handler.Pull(streamPath, conf, nil)
|
|
}
|
|
}
|
|
if plugin.Meta.Transformer != nil {
|
|
for streamPath, conf := range plugin.config.Transform {
|
|
transformer := plugin.Meta.Transformer()
|
|
transformer.GetTransformJob().Init(transformer, plugin, streamPath, conf)
|
|
}
|
|
}
|
|
}
|
|
s.initDB()
|
|
return nil
|
|
}, "serverStart")
|
|
return
|
|
}
|
|
|
|
func (s *Server) initPullProxies() {
|
|
// 1. First read all pull proxies from database
|
|
var pullProxies []*PullProxy
|
|
s.DB.Find(&pullProxies)
|
|
|
|
// Create a map for quick lookup of existing proxies
|
|
existingPullProxies := make(map[uint]*PullProxy)
|
|
for _, proxy := range pullProxies {
|
|
existingPullProxies[proxy.ID] = proxy
|
|
proxy.InitializeWithServer(s)
|
|
proxy.ChangeStatus(PullProxyStatusOffline)
|
|
}
|
|
|
|
// 2. Process and override with config data
|
|
for _, configProxy := range s.PullProxy {
|
|
if configProxy.ID != 0 {
|
|
configProxy.InitializeWithServer(s)
|
|
// Update or insert into database
|
|
s.DB.Save(configProxy)
|
|
|
|
// Override existing proxy or add to list
|
|
if existing, ok := existingPullProxies[configProxy.ID]; ok {
|
|
// Update existing proxy with config values
|
|
existing.URL = configProxy.URL
|
|
existing.Type = configProxy.Type
|
|
existing.Name = configProxy.Name
|
|
existing.PullOnStart = configProxy.PullOnStart
|
|
} else {
|
|
pullProxies = append(pullProxies, configProxy)
|
|
}
|
|
}
|
|
}
|
|
|
|
// 3. Finally add all proxies to collections
|
|
for _, proxy := range pullProxies {
|
|
s.PullProxies.Add(proxy)
|
|
}
|
|
}
|
|
|
|
func (s *Server) initPushProxies() {
|
|
// 1. Read all push proxies from database
|
|
var pushProxies []*PushProxy
|
|
s.DB.Find(&pushProxies)
|
|
|
|
// Create a map for quick lookup of existing proxies
|
|
existingPushProxies := make(map[uint]*PushProxy)
|
|
for _, proxy := range pushProxies {
|
|
existingPushProxies[proxy.ID] = proxy
|
|
proxy.InitializeWithServer(s)
|
|
proxy.ChangeStatus(PushProxyStatusOffline)
|
|
}
|
|
|
|
// 2. Process and override with config data
|
|
for _, configProxy := range s.PushProxy {
|
|
if configProxy.ID != 0 {
|
|
configProxy.InitializeWithServer(s)
|
|
// Update or insert into database
|
|
s.DB.Save(configProxy)
|
|
|
|
// Override existing proxy or add to list
|
|
if existing, ok := existingPushProxies[configProxy.ID]; ok {
|
|
// Update existing proxy with config values
|
|
existing.URL = configProxy.URL
|
|
existing.Type = configProxy.Type
|
|
existing.Name = configProxy.Name
|
|
existing.PushOnStart = configProxy.PushOnStart
|
|
existing.Audio = configProxy.Audio
|
|
} else {
|
|
pushProxies = append(pushProxies, configProxy)
|
|
}
|
|
}
|
|
}
|
|
|
|
// 3. Finally add all proxies to collections
|
|
for _, proxy := range pushProxies {
|
|
s.PushProxies.Add(proxy)
|
|
}
|
|
}
|
|
|
|
func (s *Server) initPullProxiesWithoutDB() {
|
|
// Process config proxies without database
|
|
for _, proxy := range s.PullProxy {
|
|
if proxy.ID != 0 {
|
|
proxy.InitializeWithServer(s)
|
|
s.PullProxies.Add(proxy, proxy.Logger)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (s *Server) initPushProxiesWithoutDB() {
|
|
// Process config proxies without database
|
|
for _, proxy := range s.PushProxy {
|
|
if proxy.ID != 0 {
|
|
proxy.InitializeWithServer(s)
|
|
s.PushProxies.Add(proxy, proxy.Logger)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (s *Server) initDB() {
|
|
if s.DB != nil {
|
|
|
|
s.initPullProxies()
|
|
s.initPushProxies()
|
|
s.initStreamAlias()
|
|
} else {
|
|
s.initPullProxiesWithoutDB()
|
|
s.initPushProxiesWithoutDB()
|
|
}
|
|
}
|
|
|
|
func (c *CheckSubWaitTimeout) GetTickInterval() time.Duration {
|
|
return c.s.PulseInterval
|
|
}
|
|
|
|
func (c *CheckSubWaitTimeout) Tick(any) {
|
|
percents, err := cpu.Percent(time.Second, false)
|
|
if err == nil {
|
|
for _, cpu := range percents {
|
|
c.Info("tick", "cpu", cpu, "streams", c.s.Streams.Length, "subscribers", c.s.Subscribers.Length, "waits", c.s.Waiting.Length)
|
|
}
|
|
}
|
|
c.s.Waiting.checkTimeout()
|
|
}
|
|
|
|
func (gRPC *GRPCServer) Dispose() {
|
|
gRPC.s.Stop(gRPC.StopReason())
|
|
}
|
|
|
|
func (gRPC *GRPCServer) Go() (err error) {
|
|
return gRPC.s.grpcServer.Serve(gRPC.tcpTask.Listener)
|
|
}
|
|
|
|
func (s *Server) CallOnStreamTask(callback func() error) {
|
|
s.Streams.Call(callback)
|
|
}
|
|
|
|
func (s *Server) Dispose() {
|
|
_ = s.grpcClientConn.Close()
|
|
if s.DB != nil {
|
|
db, err := s.DB.DB()
|
|
if err == nil {
|
|
err = db.Close()
|
|
}
|
|
}
|
|
}
|
|
|
|
func (s *Server) OnSubscribe(streamPath string, args url.Values) {
|
|
for plugin := range s.Plugins.Range {
|
|
plugin.OnSubscribe(streamPath, args)
|
|
}
|
|
for pullProxy := range s.PullProxies.Range {
|
|
if pullProxy.Status == PullProxyStatusOnline && pullProxy.GetStreamPath() == streamPath && !pullProxy.PullOnStart {
|
|
pullProxy.Handler.Pull()
|
|
}
|
|
}
|
|
}
|
|
|
|
func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
// Check for location-based forwarding first
|
|
if s.Location != nil {
|
|
for pattern, target := range s.Location {
|
|
if pattern.MatchString(r.URL.Path) {
|
|
// Rewrite the URL path and handle locally
|
|
r.URL.Path = pattern.ReplaceAllString(r.URL.Path, target)
|
|
// Forward to local handler
|
|
s.config.HTTP.GetHandler().ServeHTTP(w, r)
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
// 检查 admin.zip 是否需要重新加载
|
|
now := time.Now()
|
|
if now.Sub(lastCheckTime) > checkInterval {
|
|
if info, err := os.Stat("admin.zip"); err == nil && info.ModTime() != adminZipLastModTime {
|
|
s.Info("admin.zip changed, reloading...")
|
|
loadAdminZip()
|
|
}
|
|
lastCheckTime = now
|
|
}
|
|
|
|
if zipReader != nil {
|
|
http.ServeFileFS(w, r, zipReader, strings.TrimPrefix(r.URL.Path, "/admin"))
|
|
return
|
|
}
|
|
if r.URL.Path == "/favicon.ico" {
|
|
http.ServeFile(w, r, "favicon.ico")
|
|
return
|
|
}
|
|
_, _ = fmt.Fprintf(w, "visit:%s\nMonibuca Engine %s StartTime:%s\n", r.URL.Path, Version, s.StartTime)
|
|
for plugin := range s.Plugins.Range {
|
|
_, _ = fmt.Fprintf(w, "Plugin %s Version:%s\n", plugin.Meta.Name, plugin.Meta.Version)
|
|
}
|
|
for _, api := range s.apiList {
|
|
_, _ = fmt.Fprintf(w, "%s\n", api)
|
|
}
|
|
}
|
|
|
|
// ValidateToken implements auth.TokenValidator
|
|
func (s *Server) ValidateToken(tokenString string) (*auth.JWTClaims, error) {
|
|
if !s.ServerConfig.Admin.EnableLogin {
|
|
return &auth.JWTClaims{Username: "anonymous"}, nil
|
|
}
|
|
return auth.ValidateJWT(tokenString)
|
|
}
|
|
|
|
// Login implements the Login RPC method
|
|
func (s *Server) Login(ctx context.Context, req *pb.LoginRequest) (res *pb.LoginResponse, err error) {
|
|
res = &pb.LoginResponse{}
|
|
if !s.ServerConfig.Admin.EnableLogin {
|
|
res.Data = &pb.LoginSuccess{
|
|
Token: "monibuca",
|
|
UserInfo: &pb.UserInfo{
|
|
Username: "anonymous",
|
|
ExpiresAt: time.Now().Add(24 * time.Hour).Unix(),
|
|
},
|
|
}
|
|
return
|
|
}
|
|
if s.DB == nil {
|
|
err = pkg.ErrNoDB
|
|
return
|
|
}
|
|
var user db.User
|
|
if err = s.DB.Where("username = ?", req.Username).First(&user).Error; err != nil {
|
|
return
|
|
}
|
|
|
|
if !user.CheckPassword(req.Password) {
|
|
err = pkg.ErrInvalidCredentials
|
|
return
|
|
}
|
|
|
|
// Generate JWT token
|
|
var tokenString string
|
|
tokenString, err = auth.GenerateToken(user.Username)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
// Update last login time
|
|
s.DB.Model(&user).Update("last_login", time.Now())
|
|
res.Data = &pb.LoginSuccess{
|
|
Token: tokenString,
|
|
UserInfo: &pb.UserInfo{
|
|
Username: user.Username,
|
|
ExpiresAt: time.Now().Add(24 * time.Hour).Unix(),
|
|
},
|
|
}
|
|
return
|
|
}
|
|
|
|
// Logout implements the Logout RPC method
|
|
func (s *Server) Logout(ctx context.Context, req *pb.LogoutRequest) (res *pb.LogoutResponse, err error) {
|
|
// In a more complex system, you might want to maintain a blacklist of logged-out tokens
|
|
// For now, we'll just return success as JWT tokens are stateless
|
|
res = &pb.LogoutResponse{Code: 0, Message: "success"}
|
|
return
|
|
}
|
|
|
|
// GetUserInfo implements the GetUserInfo RPC method
|
|
func (s *Server) GetUserInfo(ctx context.Context, req *pb.UserInfoRequest) (res *pb.UserInfoResponse, err error) {
|
|
if !s.ServerConfig.Admin.EnableLogin {
|
|
res = &pb.UserInfoResponse{
|
|
Code: 0,
|
|
Message: "success",
|
|
Data: &pb.UserInfo{
|
|
Username: "anonymous",
|
|
ExpiresAt: time.Now().Add(24 * time.Hour).Unix(),
|
|
},
|
|
}
|
|
return
|
|
}
|
|
res = &pb.UserInfoResponse{}
|
|
claims, err := s.ValidateToken(req.Token)
|
|
if err != nil {
|
|
err = pkg.ErrInvalidCredentials
|
|
return
|
|
}
|
|
|
|
var user db.User
|
|
if err = s.DB.Where("username = ?", claims.Username).First(&user).Error; err != nil {
|
|
return
|
|
}
|
|
|
|
// Token is valid for 24 hours from now
|
|
expiresAt := time.Now().Add(24 * time.Hour).Unix()
|
|
|
|
return &pb.UserInfoResponse{
|
|
Code: 0,
|
|
Message: "success",
|
|
Data: &pb.UserInfo{
|
|
Username: user.Username,
|
|
ExpiresAt: expiresAt,
|
|
},
|
|
}, nil
|
|
}
|
|
|
|
// AuthInterceptor creates a new unary interceptor for authentication
|
|
func (s *Server) AuthInterceptor() grpc.UnaryServerInterceptor {
|
|
return func(ctx context.Context, req interface{}, info *grpc.UnaryServerInfo, handler grpc.UnaryHandler) (interface{}, error) {
|
|
if !s.ServerConfig.Admin.EnableLogin {
|
|
return handler(ctx, req)
|
|
}
|
|
|
|
// Skip auth for login endpoint
|
|
if info.FullMethod == "/pb.Auth/Login" {
|
|
return handler(ctx, req)
|
|
}
|
|
|
|
md, ok := metadata.FromIncomingContext(ctx)
|
|
if !ok {
|
|
return nil, errors.New("missing metadata")
|
|
}
|
|
|
|
authHeader := md.Get("authorization")
|
|
if len(authHeader) == 0 {
|
|
return nil, errors.New("missing authorization header")
|
|
}
|
|
|
|
tokenString := strings.TrimPrefix(authHeader[0], "Bearer ")
|
|
claims, err := s.ValidateToken(tokenString)
|
|
if err != nil {
|
|
return nil, errors.New("invalid token")
|
|
}
|
|
|
|
// Check if token needs refresh
|
|
shouldRefresh, err := auth.ShouldRefreshToken(tokenString)
|
|
if err == nil && shouldRefresh {
|
|
newToken, err := auth.RefreshToken(tokenString)
|
|
if err == nil {
|
|
// Add new token to response headers
|
|
header := metadata.New(map[string]string{
|
|
"new-token": newToken,
|
|
})
|
|
grpc.SetHeader(ctx, header)
|
|
}
|
|
}
|
|
|
|
// Add claims to context
|
|
newCtx := context.WithValue(ctx, "claims", claims)
|
|
return handler(newCtx, req)
|
|
}
|
|
}
|