2022-11-11 20:17:37 +01:00
|
|
|
#! /usr/bin/env python3
|
|
|
|
|
|
|
|
|
|
from flask import Flask, Response, redirect, render_template, request, session, abort
|
2022-11-12 17:36:11 +01:00
|
|
|
import json, os, base64
|
2022-11-12 14:50:18 +01:00
|
|
|
from functools import wraps
|
2022-11-18 10:25:58 +01:00
|
|
|
from ipaddress import ip_address, ip_network
|
2022-11-12 17:36:11 +01:00
|
|
|
import kioubit_verify
|
|
|
|
|
|
2022-11-11 20:17:37 +01:00
|
|
|
app = Flask(__name__)
|
|
|
|
|
|
|
|
|
|
class Config (dict):
|
|
|
|
|
def __init__(self, configfile:str = None):
|
|
|
|
|
if configfile:
|
|
|
|
|
self.configfile = configfile
|
|
|
|
|
else:
|
|
|
|
|
if os.path.exists("./config.json"): self.configfile = "./config.json"
|
|
|
|
|
elif os.path.exists("/etc/dn42-autopeer/config.json"): self.configfile = "/etc/dn42-autopeer/config,json"
|
|
|
|
|
else: raise FileNotFoundError("no config file found in ./config.json or /etc/dn42-autopeer/config.json")
|
|
|
|
|
self.load_config()
|
|
|
|
|
self.keys = self._config.keys
|
|
|
|
|
#self.__getitem__ = self._config.__getitem__
|
|
|
|
|
super().__init__(self)
|
|
|
|
|
|
2022-11-19 18:12:01 +01:00
|
|
|
def __contains__(self, o):
|
|
|
|
|
return self._config.__contains__(o)
|
|
|
|
|
|
2022-11-11 20:17:37 +01:00
|
|
|
def __delitem__(self, v):
|
|
|
|
|
raise NotImplementedError()
|
|
|
|
|
super().__delitem__(self,v)
|
|
|
|
|
def __getitem__(self, k):
|
|
|
|
|
return self._config[k]
|
|
|
|
|
def load_config(self):
|
|
|
|
|
with open(self.configfile) as cf:
|
|
|
|
|
try:
|
|
|
|
|
self._config = json.load(cf)
|
|
|
|
|
except json.decoder.JSONDecodeError:
|
|
|
|
|
raise SyntaxError(f"no valid JSON found in '{cf.name}'")
|
|
|
|
|
|
|
|
|
|
if not "flask-template-dir" in self._config:
|
|
|
|
|
self._config["flask-template-dir"] = "../frontend"
|
|
|
|
|
|
2022-11-17 07:20:03 +01:00
|
|
|
if not "debug-mode" in self._config:
|
|
|
|
|
self._config["debug-mode"] = False
|
|
|
|
|
if not "base-dir" in self._config:
|
|
|
|
|
self._config["base-dir"] = "/"
|
2022-11-11 20:17:37 +01:00
|
|
|
print(self._config)
|
|
|
|
|
|
|
|
|
|
config = Config()
|
2022-11-12 17:36:11 +01:00
|
|
|
|
2022-11-12 14:50:18 +01:00
|
|
|
def auth_required():
|
|
|
|
|
def wrapper(f):
|
|
|
|
|
@wraps(f)
|
|
|
|
|
def decorated(*args, **kwargs):
|
2022-11-17 06:43:43 +01:00
|
|
|
if not "login" in session:
|
2022-11-18 10:25:58 +01:00
|
|
|
return redirect(f"{config['base-dir']}login?return={request.url}")
|
2022-11-12 14:50:18 +01:00
|
|
|
else:
|
|
|
|
|
return f(*args, **kwargs)
|
|
|
|
|
return decorated
|
|
|
|
|
return wrapper
|
|
|
|
|
|
|
|
|
|
|
2022-11-12 17:36:11 +01:00
|
|
|
kverifyer = kioubit_verify.AuthVerifyer(config["domain"])
|
|
|
|
|
@app.route("/api/auth/kverify", methods=["GET", "POST"])
|
|
|
|
|
def kioubit_auth():
|
2022-11-17 06:43:43 +01:00
|
|
|
try:
|
|
|
|
|
params = request.args["params"]
|
|
|
|
|
signature = request.args["signature"]
|
|
|
|
|
except KeyError:
|
|
|
|
|
return render_template("login.html", session=session,config=config,return_addr=session["return_url"], msg='"params" or "signature" missing')
|
2022-11-12 17:36:11 +01:00
|
|
|
|
2022-11-17 06:43:43 +01:00
|
|
|
|
|
|
|
|
success, msg = kverifyer.verify(params, signature)
|
|
|
|
|
try: print(base64.b64decode(params))
|
|
|
|
|
except: print("invalid Base64 data provided")
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
if success:
|
|
|
|
|
session["user-data"] = msg
|
|
|
|
|
session["login"] = msg['mnt']
|
|
|
|
|
return redirect(session["return_url"])
|
|
|
|
|
else:
|
|
|
|
|
return render_template("login.html", session=session,config=config,return_addr=session["return_url"], msg=msg)
|
|
|
|
|
|
|
|
|
|
@app.route("/logout")
|
|
|
|
|
def logout():
|
|
|
|
|
session.clear()
|
|
|
|
|
return redirect("/")
|
2022-11-12 17:36:11 +01:00
|
|
|
|
2022-11-12 14:50:18 +01:00
|
|
|
@app.route("/login",methods=["GET","POST"])
|
|
|
|
|
def login():
|
|
|
|
|
if request.method == "GET":
|
2022-11-17 06:43:43 +01:00
|
|
|
session["return_url"] = request.args["return"] if "return" in request.args else ""
|
|
|
|
|
|
|
|
|
|
return render_template("login.html", session=session, config=config, return_addr=session["return_url"])
|
2022-11-18 10:25:58 +01:00
|
|
|
elif request.method == "POST" and config["debug-mode"]:
|
|
|
|
|
try:
|
|
|
|
|
mnt = request.form["mnt"]
|
|
|
|
|
asn = request.form["asn"]
|
|
|
|
|
asn = asn[2:] if asn[:1].lower() == "as" else asn
|
|
|
|
|
if "allowed4" in request.form:
|
|
|
|
|
allowed4 = request.form["allowed4"]
|
2022-11-19 18:12:01 +01:00
|
|
|
allowed4 = allowed4.split(",") if "," in allowed4 else allowed4
|
2022-11-18 10:25:58 +01:00
|
|
|
else:
|
|
|
|
|
allowed4 = None
|
|
|
|
|
if "allowed6" in request.form:
|
|
|
|
|
allowed6 = request.form["allowed6"]
|
2022-11-19 18:12:01 +01:00
|
|
|
allowed6 = allowed6.split(",") if "," in allowed6 else allowed6
|
2022-11-18 10:25:58 +01:00
|
|
|
else:
|
|
|
|
|
allowed6 = None
|
|
|
|
|
session["user-data"] = {'asn':asn,'allowed4': allowed4, 'allowed6': allowed6,'mnt':mnt, 'authtype': "debug"}
|
|
|
|
|
session["login"] = mnt
|
|
|
|
|
return redirect(session["return_url"])
|
|
|
|
|
except KeyError:
|
|
|
|
|
msg = "not all required field were specified"
|
|
|
|
|
return render_template("login.html", session=session,config=config,return_addr=session["return_url"], msg=msg)
|
|
|
|
|
elif request.method == "POST" and not config["debug-mode"]:
|
|
|
|
|
abort(405)
|
|
|
|
|
return redirect(request.args["return"])
|
2022-11-12 14:50:18 +01:00
|
|
|
|
|
|
|
|
|
2022-11-18 10:25:58 +01:00
|
|
|
@app.route("/peerings/delete", methods=["GET","DELETE"])
|
2022-11-12 14:50:18 +01:00
|
|
|
@auth_required()
|
2022-11-18 10:25:58 +01:00
|
|
|
def peerings_delete():
|
|
|
|
|
|
|
|
|
|
return f"{request.method} /peerings/delete?{str(request.args)}{str(request.form)}"
|
|
|
|
|
@app.route("/peerings/new", methods=["GET","POST"])
|
|
|
|
|
@auth_required()
|
|
|
|
|
def peerings_new():
|
|
|
|
|
return render_template("peerings-new.html", session=session,config=config)
|
|
|
|
|
|
|
|
|
|
return f"{request.method} /peerings/new {str(request.args)}{str(request.form)}"
|
|
|
|
|
@app.route("/peerings", methods=["GET","POST","DELETE"])
|
|
|
|
|
@auth_required()
|
|
|
|
|
def peerings():
|
2022-11-17 06:43:43 +01:00
|
|
|
if request.method == "GET":
|
|
|
|
|
if "node" in request.args and request.args["node"] in config["nodes"]:
|
2022-11-18 10:25:58 +01:00
|
|
|
return render_template("peerings.html", config=config, selected_node=request.args["node"])
|
|
|
|
|
else:
|
|
|
|
|
return render_template("peerings.html", session=session,config=config)
|
2022-11-17 06:43:43 +01:00
|
|
|
elif request.method == "POST":
|
2022-11-18 10:25:58 +01:00
|
|
|
return peerings_new()
|
|
|
|
|
elif request.method == "DELETE":
|
|
|
|
|
return peerings_delete()
|
2022-11-17 06:43:43 +01:00
|
|
|
else:
|
2022-11-18 10:25:58 +01:00
|
|
|
abort(405)
|
2022-11-17 06:43:43 +01:00
|
|
|
|
2022-11-11 20:17:37 +01:00
|
|
|
@app.route("/")
|
|
|
|
|
def index():
|
2022-11-12 14:50:18 +01:00
|
|
|
# print(config._config["nodes"])
|
|
|
|
|
# for node in config["nodes"].values():
|
|
|
|
|
# print (node)
|
2022-11-17 06:43:43 +01:00
|
|
|
return render_template("index.html", session=session, config=config._config)
|
2022-11-11 20:17:37 +01:00
|
|
|
|
|
|
|
|
def main():
|
|
|
|
|
app.static_folder= config["flask-template-dir"]+"/static/"
|
|
|
|
|
app.template_folder=config["flask-template-dir"]
|
2022-11-12 14:50:18 +01:00
|
|
|
app.secret_key = config["flask-secret-key"]
|
2022-11-19 18:12:01 +01:00
|
|
|
if "production" in config and config["production"] == False:
|
|
|
|
|
app.run(host=config["listen"], port=config["port"], debug=config["debug-mode"], threaded=True)
|
|
|
|
|
else:
|
|
|
|
|
from waitress import serve
|
|
|
|
|
serve(app, host=config["listen"], port=config["port"])
|
|
|
|
|
|
2022-11-11 20:17:37 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
if __name__ == "__main__":
|
|
|
|
|
main()
|
