zishuo/oneterm
1
0
Fork 0
mirror of https://github.com/veops/oneterm.git synced 2025-10-04 06:56:25 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
b5a505a37a67ea763870215b574ce999cfb08e02
oneterm/backend/pkg/server/controller/gateway.go
ttk b5a505a37a api server
2024-02-01 21:03:43 +08:00

174 lines
5.5 KiB
Go
Raw Blame History

package controller
import (
"errors"
"net/http"
"strings"
"github.com/gin-gonic/gin"
"github.com/samber/lo"
"github.com/spf13/cast"
"golang.org/x/crypto/ssh"
"gorm.io/gorm"
"github.com/veops/oneterm/pkg/conf"
"github.com/veops/oneterm/pkg/server/auth/acl"
"github.com/veops/oneterm/pkg/server/model"
"github.com/veops/oneterm/pkg/server/storage/db/mysql"
"github.com/veops/oneterm/pkg/util"
)
var (
gatewayPreHooks = []preHook[*model.Gateway]{
func(ctx *gin.Context, data *model.Gateway) {
if data.AccountType == model.AUTHMETHOD_PUBLICKEY {
if data.Phrase == "" {
_, err := ssh.ParsePrivateKey([]byte(data.Pk))
if err != nil {
ctx.AbortWithError(http.StatusBadRequest, &ApiError{Code: ErrWrongPk, Data: nil})
return
}
} else {
_, err := ssh.ParsePrivateKeyWithPassphrase([]byte(data.Pk), []byte(data.Phrase))
if err != nil {
ctx.AbortWithError(http.StatusBadRequest, &ApiError{Code: ErrWrongPk, Data: nil})
return
}
}
}
},
func(ctx *gin.Context, data *model.Gateway) {
data.Password = util.EncryptAES(data.Password)
data.Pk = util.EncryptAES(data.Pk)
data.Phrase = util.EncryptAES(data.Phrase)
},
}
gatewayPostHooks = []postHook[*model.Gateway]{
func(ctx *gin.Context, data []*model.Gateway) {
post := make([]*model.GatewayCount, 0)
if err := mysql.DB.
Model(&model.Asset{}).
Select("gateway_id AS id, COUNT(*) AS count").
Where("gateway_id IN ?", lo.Map(data, func(d *model.Gateway, _ int) int { return d.Id })).
Group("gateway_id").
Find(&post).
Error; err != nil {
return
}
m := lo.SliceToMap(post, func(p *model.GatewayCount) (int, int64) { return p.Id, p.Count })
for _, d := range data {
d.AssetCount = m[d.Id]
}
},
func(ctx *gin.Context, data []*model.Gateway) {
for _, d := range data {
d.Password = lo.Ternary(!cast.ToBool(ctx.Query("info")) || ctx.GetHeader("X-Token") == conf.Cfg.SshServer.Xtoken, util.DecryptAES(d.Password), "")
d.Pk = lo.Ternary(!cast.ToBool(ctx.Query("info")) || ctx.GetHeader("X-Token") == conf.Cfg.SshServer.Xtoken, util.DecryptAES(d.Pk), "")
d.Phrase = lo.Ternary(!cast.ToBool(ctx.Query("info")) || ctx.GetHeader("X-Token") == conf.Cfg.SshServer.Xtoken, util.DecryptAES(d.Phrase), "")
}
},
}
gatewayDcs = []deleteCheck{
func(ctx *gin.Context, id int) {
assetName := ""
err := mysql.DB.
Model(&model.Asset{}).
Select("name").
Where("gateway_id = ?", id).
First(&assetName).
Error
if errors.Is(err, gorm.ErrRecordNotFound) {
return
}
code := lo.Ternary(err == nil, http.StatusBadRequest, http.StatusInternalServerError)
err = lo.Ternary[error](err == nil, &ApiError{Code: ErrHasDepency, Data: map[string]any{"name": assetName}}, err)
ctx.AbortWithError(code, err)
},
}
)
// CreateGateway godoc
//
// @Tags gateway
// @Param gateway body model.Gateway true "gateway"
// @Success 200 {object} HttpResponse
// @Router /gateway [post]
func (c *Controller) CreateGateway(ctx *gin.Context) {
doCreate(ctx, true, &model.Gateway{}, conf.RESOURCE_GATEWAY, gatewayPreHooks...)
}
// DeleteGateway godoc
//
// @Tags gateway
// @Param id path int true "gateway id"
// @Success 200 {object} HttpResponse
// @Router /gateway/:id [delete]
func (c *Controller) DeleteGateway(ctx *gin.Context) {
doDelete(ctx, true, &model.Gateway{}, gatewayDcs...)
}
// UpdateGateway godoc
//
// @Tags gateway
// @Param id path int true "gateway id"
// @Param gateway body model.Gateway true "gateway"
// @Success 200 {object} HttpResponse
// @Router /gateway/:id [put]
func (c *Controller) UpdateGateway(ctx *gin.Context) {
doUpdate(ctx, true, &model.Gateway{}, gatewayPreHooks...)
}
// GetGateways godoc
//
// @Tags gateway
// @Param page_index query int true "gateway id"
// @Param page_size query int true "gateway id"
// @Param search query string false "name or host or account or port"
// @Param id query int false "gateway id"
// @Param ids query string false "gateway ids"
// @Param name query string false "gateway name"
// @Param info query bool false "is info mode"
// @Param type query int false "account type"
// @Success 200 {object} HttpResponse{data=ListData{list=[]model.Gateway}}
// @Router /gateway [get]
func (c *Controller) GetGateways(ctx *gin.Context) {
currentUser, _ := acl.GetSessionFromCtx(ctx)
info := cast.ToBool(ctx.Query("info"))
db := mysql.DB.Model(&model.Gateway{})
db = filterEqual(ctx, db, "id","type")
db = filterLike(ctx, db, "name")
db = filterSearch(ctx, db, "name", "host", "account","port")
if q, ok := ctx.GetQuery("ids"); ok {
db = db.Where("id IN ?", lo.Map(strings.Split(q, ","), func(s string, _ int) int { return cast.ToInt(s) }))
}
if info && !acl.IsAdmin(currentUser) {
rs := make([]*acl.Resource, 0)
rs, err := acl.GetRoleResources(ctx, currentUser.Acl.Rid, acl.GetResourceTypeName(conf.RESOURCE_AUTHORIZATION))
if err != nil {
handleRemoteErr(ctx, err)
return
}
sub := mysql.DB.
Model(&model.Authorization{}).
Select("DISTINCT asset_id").
Where("resource_id IN ?", lo.Map(rs, func(r *acl.Resource, _ int) int { return r.ResourceId }))
ids := make([]int, 0)
if err = mysql.DB.
Model(&model.Asset{}).
Where("id IN (?)", sub).
Distinct().
Pluck("gateway_id", &ids).
Error; err != nil {
ctx.AbortWithError(http.StatusInternalServerError, &ApiError{Code: ErrInternal, Data: map[string]any{"err": err}})
}
db = db.Where("id IN ?", ids)
}
db = db.Order("name")
doGet[*model.Gateway](ctx, !info, db, acl.GetResourceTypeName(conf.RESOURCE_GATEWAY), gatewayPostHooks...)
}
Reference in New Issue View Git Blame Copy Permalink