2024-02-11 23:53:51 -05:00
|
|
|
import itertools
|
2024-01-09 00:25:47 -05:00
|
|
|
import sqlite3
|
|
|
|
|
import configparser
|
|
|
|
|
import hashlib
|
|
|
|
|
import ipaddress
|
|
|
|
|
import json
|
|
|
|
|
# Python Built-in Library
|
|
|
|
|
import os
|
|
|
|
|
import secrets
|
|
|
|
|
import subprocess
|
|
|
|
|
import time
|
|
|
|
|
import re
|
|
|
|
|
import urllib.parse
|
|
|
|
|
import urllib.request
|
|
|
|
|
import urllib.error
|
2024-01-10 01:42:19 -05:00
|
|
|
from dataclasses import dataclass
|
2024-01-09 00:25:47 -05:00
|
|
|
from datetime import datetime, timedelta
|
2024-01-10 01:42:19 -05:00
|
|
|
from json import JSONEncoder
|
2024-01-09 00:25:47 -05:00
|
|
|
from operator import itemgetter
|
2024-01-11 01:10:26 -05:00
|
|
|
from typing import Dict, Any
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-01-23 15:09:44 -05:00
|
|
|
import bcrypt
|
2024-01-09 00:25:47 -05:00
|
|
|
# PIP installed library
|
|
|
|
|
import ifcfg
|
2024-02-11 23:53:51 -05:00
|
|
|
import psutil
|
2024-01-23 15:09:44 -05:00
|
|
|
import pyotp
|
2024-01-09 00:25:47 -05:00
|
|
|
from flask import Flask, request, render_template, redirect, url_for, session, jsonify, g
|
2024-01-10 01:42:19 -05:00
|
|
|
from flask.json.provider import JSONProvider
|
2024-01-09 00:25:47 -05:00
|
|
|
from flask_qrcode import QRcode
|
|
|
|
|
from icmplib import ping, traceroute
|
|
|
|
|
|
|
|
|
|
# Import other python files
|
|
|
|
|
import threading
|
|
|
|
|
|
|
|
|
|
from sqlalchemy.orm import mapped_column, declarative_base, Session
|
2024-01-10 01:42:19 -05:00
|
|
|
from sqlalchemy import FLOAT, INT, VARCHAR, select, MetaData, DATETIME
|
|
|
|
|
from sqlalchemy import create_engine, inspect
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
DASHBOARD_VERSION = 'v3.1'
|
|
|
|
|
CONFIGURATION_PATH = os.getenv('CONFIGURATION_PATH', '.')
|
|
|
|
|
DB_PATH = os.path.join(CONFIGURATION_PATH, 'db')
|
|
|
|
|
if not os.path.isdir(DB_PATH):
|
|
|
|
|
os.mkdir(DB_PATH)
|
|
|
|
|
DASHBOARD_CONF = os.path.join(CONFIGURATION_PATH, 'wg-dashboard.ini')
|
|
|
|
|
|
|
|
|
|
# WireGuard's configuration path
|
|
|
|
|
WG_CONF_PATH = None
|
|
|
|
|
# Dashboard Config Name
|
|
|
|
|
# Upgrade Required
|
|
|
|
|
UPDATE = None
|
|
|
|
|
# Flask App Configuration
|
|
|
|
|
app = Flask("WGDashboard")
|
|
|
|
|
app.config['SEND_FILE_MAX_AGE_DEFAULT'] = 5206928
|
|
|
|
|
app.secret_key = secrets.token_urlsafe(32)
|
|
|
|
|
# Enable QR Code Generator
|
|
|
|
|
QRcode(app)
|
|
|
|
|
|
|
|
|
|
'''
|
|
|
|
|
Classes
|
|
|
|
|
'''
|
2024-02-11 23:53:51 -05:00
|
|
|
# Base = declarative_base(class_registry=dict())
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
class CustomJsonEncoder(JSONProvider):
|
|
|
|
|
def dumps(self, obj, **kwargs):
|
|
|
|
|
if type(obj) == WireguardConfiguration:
|
|
|
|
|
return obj.toJSON()
|
|
|
|
|
return json.dumps(obj)
|
|
|
|
|
|
|
|
|
|
def loads(self, obj, **kwargs):
|
|
|
|
|
return json.loads(obj, **kwargs)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
app.json = CustomJsonEncoder(app)
|
|
|
|
|
|
|
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
class Peer:
|
|
|
|
|
def __init__(self, tableData):
|
|
|
|
|
# for i in range(0, len(table)):
|
|
|
|
|
# tableData[table.description[i][0]] = table[i]
|
|
|
|
|
|
|
|
|
|
self.id = tableData["id"]
|
|
|
|
|
self.private_key = tableData["private_key"]
|
|
|
|
|
self.DNS = tableData["DNS"]
|
|
|
|
|
self.endpoint_allowed_ip = tableData["endpoint_allowed_ip"]
|
|
|
|
|
self.name = tableData["name"]
|
|
|
|
|
self.total_receive = tableData["total_receive"]
|
|
|
|
|
self.total_sent = tableData["total_sent"]
|
|
|
|
|
self.total_data = tableData["total_data"]
|
|
|
|
|
self.endpoint = tableData["endpoint"]
|
|
|
|
|
self.status = tableData["status"]
|
|
|
|
|
self.latest_handshake = tableData["latest_handshake"]
|
|
|
|
|
self.allowed_ip = tableData["allowed_ip"]
|
|
|
|
|
self.cumu_receive = tableData["cumu_receive"]
|
|
|
|
|
self.cumu_sent = tableData["cumu_sent"]
|
|
|
|
|
self.cumu_data = tableData["cumu_data"]
|
|
|
|
|
self.mtu = tableData["mtu"]
|
|
|
|
|
self.keepalive = tableData["keepalive"]
|
|
|
|
|
self.remote_endpoint = tableData["remote_endpoint"]
|
|
|
|
|
self.preshared_key = tableData["preshared_key"]
|
|
|
|
|
|
|
|
|
|
def toJson(self):
|
|
|
|
|
return json.dumps(self, default=lambda o: o.__dict__,
|
|
|
|
|
sort_keys=True, indent=4)
|
|
|
|
|
|
|
|
|
|
def __repr__(self):
|
|
|
|
|
return self.toJson()
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
class WireguardConfiguration:
|
2024-01-10 01:42:19 -05:00
|
|
|
class InvalidConfigurationFileException(Exception):
|
|
|
|
|
def __init__(self, m):
|
|
|
|
|
self.message = m
|
|
|
|
|
|
|
|
|
|
def __str__(self):
|
|
|
|
|
return self.message
|
|
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
def __init__(self, name: str = None, data: dict = None):
|
|
|
|
|
self.__parser: configparser.ConfigParser = configparser.ConfigParser(strict=False)
|
|
|
|
|
self.__parser.optionxform = str
|
|
|
|
|
|
|
|
|
|
self.Status: bool = False
|
|
|
|
|
self.Name: str = ""
|
|
|
|
|
self.PrivateKey: str = ""
|
|
|
|
|
self.PublicKey: str = ""
|
|
|
|
|
self.ListenPort: str = ""
|
|
|
|
|
self.Address: str = ""
|
|
|
|
|
self.DNS: str = ""
|
|
|
|
|
self.Table: str = ""
|
|
|
|
|
self.MTU: str = ""
|
|
|
|
|
self.PreUp: str = ""
|
|
|
|
|
self.PostUp: str = ""
|
|
|
|
|
self.PreDown: str = ""
|
|
|
|
|
self.PostDown: str = ""
|
|
|
|
|
self.SaveConfig: bool = True
|
|
|
|
|
|
2024-01-31 12:06:44 -05:00
|
|
|
if name is not None:
|
|
|
|
|
self.Name = name
|
2024-02-11 23:53:51 -05:00
|
|
|
self.__parser.read_file(open(os.path.join(WG_CONF_PATH, f'{self.Name}.conf')))
|
2024-01-31 12:06:44 -05:00
|
|
|
sections = self.__parser.sections()
|
|
|
|
|
if "Interface" not in sections:
|
|
|
|
|
raise self.InvalidConfigurationFileException(
|
|
|
|
|
"[Interface] section not found in " + os.path.join(WG_CONF_PATH, f'{self.Name}.conf'))
|
|
|
|
|
interfaceConfig = dict(self.__parser.items("Interface", True))
|
|
|
|
|
for i in dir(self):
|
|
|
|
|
if str(i) in interfaceConfig.keys():
|
|
|
|
|
if isinstance(getattr(self, i), bool):
|
|
|
|
|
setattr(self, i, _strToBool(interfaceConfig[i]))
|
|
|
|
|
else:
|
|
|
|
|
setattr(self, i, interfaceConfig[i])
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-01-31 12:06:44 -05:00
|
|
|
if self.PrivateKey:
|
|
|
|
|
self.PublicKey = self.__getPublicKey()
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
self.Status = self.getStatus()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
else:
|
|
|
|
|
self.Name = data["ConfigurationName"]
|
|
|
|
|
for i in dir(self):
|
|
|
|
|
if str(i) in data.keys():
|
|
|
|
|
if isinstance(getattr(self, i), bool):
|
|
|
|
|
setattr(self, i, _strToBool(data[i]))
|
|
|
|
|
else:
|
|
|
|
|
setattr(self, i, str(data[i]))
|
|
|
|
|
|
|
|
|
|
# self.__createDatabase()
|
|
|
|
|
self.__parser["Interface"] = {
|
|
|
|
|
"PrivateKey": self.PrivateKey,
|
|
|
|
|
"Address": self.Address,
|
|
|
|
|
"ListenPort": self.ListenPort,
|
|
|
|
|
"PreUp": self.PreUp,
|
|
|
|
|
"PreDown": self.PreDown,
|
|
|
|
|
"PostUp": self.PostUp,
|
|
|
|
|
"PostDown": self.PostDown,
|
|
|
|
|
"SaveConfig": "true"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
with open(os.path.join(DashboardConfig.GetConfig("Server", "wg_conf_path")[1],
|
|
|
|
|
f"{self.Name}.conf"), "w+") as configFile:
|
|
|
|
|
print(self.__parser.sections())
|
|
|
|
|
self.__parser.write(configFile)
|
|
|
|
|
|
|
|
|
|
self.Peers = []
|
2024-01-11 01:10:26 -05:00
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
# Create tables in database
|
|
|
|
|
self.__createDatabase()
|
|
|
|
|
self.__getPeers()
|
2024-01-31 12:06:44 -05:00
|
|
|
|
|
|
|
|
def __createDatabase(self):
|
2024-02-11 23:53:51 -05:00
|
|
|
existingTables = cursor.execute("SELECT name FROM sqlite_master WHERE type='table'").fetchall()
|
|
|
|
|
existingTables = itertools.chain(*existingTables)
|
|
|
|
|
if self.Name not in existingTables:
|
|
|
|
|
cursor.execute(
|
|
|
|
|
"""
|
|
|
|
|
CREATE TABLE %s (
|
|
|
|
|
id VARCHAR NOT NULL, private_key VARCHAR NULL, DNS VARCHAR NULL,
|
|
|
|
|
endpoint_allowed_ip VARCHAR NULL, name VARCHAR NULL, total_receive FLOAT NULL,
|
|
|
|
|
total_sent FLOAT NULL, total_data FLOAT NULL, endpoint VARCHAR NULL,
|
|
|
|
|
status VARCHAR NULL, latest_handshake VARCHAR NULL, allowed_ip VARCHAR NULL,
|
|
|
|
|
cumu_receive FLOAT NULL, cumu_sent FLOAT NULL, cumu_data FLOAT NULL, mtu INT NULL,
|
|
|
|
|
keepalive INT NULL, remote_endpoint VARCHAR NULL, preshared_key VARCHAR NULL,
|
|
|
|
|
PRIMARY KEY (id)
|
|
|
|
|
)
|
|
|
|
|
""" % self.Name
|
|
|
|
|
)
|
|
|
|
|
sqldb.commit()
|
|
|
|
|
|
|
|
|
|
if f'{self.Name}_restrict_access' not in existingTables:
|
|
|
|
|
cursor.execute(
|
|
|
|
|
"""
|
|
|
|
|
CREATE TABLE %s_restrict_access (
|
|
|
|
|
id VARCHAR NOT NULL, private_key VARCHAR NULL, DNS VARCHAR NULL,
|
|
|
|
|
endpoint_allowed_ip VARCHAR NULL, name VARCHAR NULL, total_receive FLOAT NULL,
|
|
|
|
|
total_sent FLOAT NULL, total_data FLOAT NULL, endpoint VARCHAR NULL,
|
|
|
|
|
status VARCHAR NULL, latest_handshake VARCHAR NULL, allowed_ip VARCHAR NULL,
|
|
|
|
|
cumu_receive FLOAT NULL, cumu_sent FLOAT NULL, cumu_data FLOAT NULL, mtu INT NULL,
|
|
|
|
|
keepalive INT NULL, remote_endpoint VARCHAR NULL, preshared_key VARCHAR NULL,
|
|
|
|
|
PRIMARY KEY (id)
|
|
|
|
|
)
|
|
|
|
|
""" % self.Name
|
|
|
|
|
)
|
|
|
|
|
sqldb.commit()
|
|
|
|
|
|
|
|
|
|
if f'{self.Name}_transfer' not in existingTables:
|
|
|
|
|
cursor.execute(
|
|
|
|
|
"""
|
|
|
|
|
CREATE TABLE %s_transfer (
|
|
|
|
|
id VARCHAR NOT NULL, total_receive FLOAT NULL,
|
|
|
|
|
total_sent FLOAT NULL, total_data FLOAT NULL,
|
|
|
|
|
cumu_receive FLOAT NULL, cumu_sent FLOAT NULL, cumu_data FLOAT NULL, time DATETIME
|
|
|
|
|
)
|
|
|
|
|
""" % self.Name
|
|
|
|
|
)
|
|
|
|
|
sqldb.commit()
|
2024-01-10 01:42:19 -05:00
|
|
|
|
|
|
|
|
def __getPublicKey(self) -> str:
|
|
|
|
|
return subprocess.check_output(['wg', 'pubkey'], input=self.PrivateKey.encode()).decode().strip('\n')
|
|
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
def getStatus(self) -> bool:
|
|
|
|
|
self.Status = self.Name in psutil.net_if_addrs().keys()
|
|
|
|
|
return self.Status
|
|
|
|
|
|
|
|
|
|
def __getPeers(self):
|
|
|
|
|
with open(os.path.join(WG_CONF_PATH, f'{self.Name}.conf'), 'r') as configFile:
|
|
|
|
|
p = []
|
|
|
|
|
pCounter = -1
|
|
|
|
|
content = configFile.read().split('\n')
|
|
|
|
|
try:
|
|
|
|
|
peerStarts = content.index("[Peer]")
|
|
|
|
|
content = content[peerStarts:]
|
|
|
|
|
for i in content:
|
|
|
|
|
if not regex_match("#(.*)", i) and not regex_match(";(.*)", i):
|
|
|
|
|
if i == "[Peer]":
|
|
|
|
|
pCounter += 1
|
|
|
|
|
p.append({})
|
|
|
|
|
else:
|
|
|
|
|
if len(i) > 0:
|
|
|
|
|
split = re.split(r'\s*=\s*', i, 1)
|
|
|
|
|
if len(split) == 2:
|
|
|
|
|
p[pCounter][split[0]] = split[1]
|
|
|
|
|
for i in p:
|
|
|
|
|
if "PublicKey" in i.keys():
|
|
|
|
|
checkIfExist = cursor.execute("SELECT * FROM %s WHERE id = ?" % self.Name,
|
|
|
|
|
((i['PublicKey']),)).fetchone()
|
|
|
|
|
if checkIfExist is None:
|
|
|
|
|
newPeer = {
|
|
|
|
|
"id": i['PublicKey'],
|
|
|
|
|
"private_key": "",
|
|
|
|
|
"DNS": DashboardConfig.GetConfig("Peers", "peer_global_DNS")[1],
|
|
|
|
|
"endpoint_allowed_ip": DashboardConfig.GetConfig("Peers", "peer_endpoint_allowed_ip")[
|
|
|
|
|
1],
|
|
|
|
|
"name": "",
|
|
|
|
|
"total_receive": 0,
|
|
|
|
|
"total_sent": 0,
|
|
|
|
|
"total_data": 0,
|
|
|
|
|
"endpoint": "N/A",
|
|
|
|
|
"status": "stopped",
|
|
|
|
|
"latest_handshake": "N/A",
|
|
|
|
|
"allowed_ip": "N/A",
|
|
|
|
|
"cumu_receive": 0,
|
|
|
|
|
"cumu_sent": 0,
|
|
|
|
|
"cumu_data": 0,
|
|
|
|
|
"traffic": [],
|
|
|
|
|
"mtu": DashboardConfig.GetConfig("Peers", "peer_mtu")[1],
|
|
|
|
|
"keepalive": DashboardConfig.GetConfig("Peers", "peer_keep_alive")[1],
|
|
|
|
|
"remote_endpoint": DashboardConfig.GetConfig("Peers", "remote_endpoint")[1],
|
|
|
|
|
"preshared_key": i["PresharedKey"] if "PresharedKey" in i.keys() else ""
|
|
|
|
|
}
|
|
|
|
|
cursor.execute(
|
|
|
|
|
"""
|
|
|
|
|
INSERT INTO %s
|
|
|
|
|
VALUES (:id, :private_key, :DNS, :endpoint_allowed_ip, :name, :total_receive, :total_sent,
|
|
|
|
|
:total_data, :endpoint, :status, :latest_handshake, :allowed_ip, :cumu_receive, :cumu_sent,
|
|
|
|
|
:cumu_data, :mtu, :keepalive, :remote_endpoint, :preshared_key);
|
|
|
|
|
""" % self.Name
|
|
|
|
|
, newPeer)
|
|
|
|
|
sqldb.commit()
|
|
|
|
|
else:
|
|
|
|
|
self.Peers.append(Peer(checkIfExist))
|
|
|
|
|
except ValueError:
|
|
|
|
|
pass
|
|
|
|
|
print(self.Peers)
|
|
|
|
|
|
|
|
|
|
def toggleConfiguration(self) -> [bool, str]:
|
|
|
|
|
self.getStatus()
|
|
|
|
|
print("Status: ", self.getStatus())
|
|
|
|
|
if self.Status:
|
|
|
|
|
try:
|
|
|
|
|
check = subprocess.check_output(f"wg-quick down {self.Name}",
|
|
|
|
|
shell=True, stderr=subprocess.STDOUT)
|
|
|
|
|
except subprocess.CalledProcessError as exc:
|
|
|
|
|
return False, str(exc.output.strip().decode("utf-8"))
|
|
|
|
|
else:
|
|
|
|
|
try:
|
|
|
|
|
check = subprocess.check_output(f"wg-quick up {self.Name}",
|
|
|
|
|
shell=True, stderr=subprocess.STDOUT)
|
|
|
|
|
except subprocess.CalledProcessError as exc:
|
|
|
|
|
return False, str(exc.output.strip().decode("utf-8"))
|
|
|
|
|
self.getStatus()
|
|
|
|
|
return True, None
|
2024-01-11 01:10:26 -05:00
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
def toJSON(self):
|
2024-02-11 23:53:51 -05:00
|
|
|
self.Status = self.getStatus()
|
|
|
|
|
return {
|
|
|
|
|
"Status": self.Status,
|
|
|
|
|
"Name": self.Name,
|
|
|
|
|
"PrivateKey": self.PrivateKey,
|
|
|
|
|
"PublicKey": self.PublicKey,
|
|
|
|
|
"Address": self.Address,
|
|
|
|
|
"ListenPort": self.ListenPort,
|
|
|
|
|
"PreUp": self.PreUp,
|
|
|
|
|
"PreDown": self.PreDown,
|
|
|
|
|
"PostUp": self.PostUp,
|
|
|
|
|
"PostDown": self.PostDown,
|
|
|
|
|
"SaveConfig": self.SaveConfig
|
|
|
|
|
}
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
# Regex Match
|
|
|
|
|
def regex_match(regex, text):
|
|
|
|
|
pattern = re.compile(regex)
|
|
|
|
|
return pattern.search(text) is not None
|
2024-01-31 12:06:44 -05:00
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-01-23 15:09:44 -05:00
|
|
|
def iPv46RegexCheck(ip):
|
|
|
|
|
return re.match(
|
|
|
|
|
'((^\s*((([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5]))\s*$)|(^\s*((([0-9a-f]{1,4}:){7}([0-9a-f]{1,4}|:))|(([0-9a-f]{1,4}:){6}(:[0-9a-f]{1,4}|((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3})|:))|(([0-9a-f]{1,4}:){5}(((:[0-9a-f]{1,4}){1,2})|:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3})|:))|(([0-9a-f]{1,4}:){4}(((:[0-9a-f]{1,4}){1,3})|((:[0-9a-f]{1,4})?:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(([0-9a-f]{1,4}:){3}(((:[0-9a-f]{1,4}){1,4})|((:[0-9a-f]{1,4}){0,2}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(([0-9a-f]{1,4}:){2}(((:[0-9a-f]{1,4}){1,5})|((:[0-9a-f]{1,4}){0,3}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(([0-9a-f]{1,4}:){1}(((:[0-9a-f]{1,4}){1,6})|((:[0-9a-f]{1,4}){0,4}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(:(((:[0-9a-f]{1,4}){1,7})|((:[0-9a-f]{1,4}){0,5}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:)))(%.+)?\s*$))',
|
|
|
|
|
ip)
|
|
|
|
|
|
|
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
class DashboardConfig:
|
|
|
|
|
|
|
|
|
|
def __init__(self):
|
|
|
|
|
self.__config = configparser.ConfigParser(strict=False)
|
2024-02-11 23:53:51 -05:00
|
|
|
self.__config.read_file(open(DASHBOARD_CONF))
|
2024-01-23 15:09:44 -05:00
|
|
|
self.hiddenAttribute = ["totp_key"]
|
2024-01-09 00:25:47 -05:00
|
|
|
self.__default = {
|
|
|
|
|
"Account": {
|
|
|
|
|
"username": "admin",
|
2024-01-23 15:09:44 -05:00
|
|
|
"password": "admin",
|
|
|
|
|
"enable_totp": "false",
|
|
|
|
|
"totp_key": pyotp.random_base32()
|
2024-01-09 00:25:47 -05:00
|
|
|
},
|
|
|
|
|
"Server": {
|
|
|
|
|
"wg_conf_path": "/etc/wireguard",
|
|
|
|
|
"app_ip": "0.0.0.0",
|
|
|
|
|
"app_port": "10086",
|
|
|
|
|
"auth_req": "true",
|
|
|
|
|
"version": DASHBOARD_VERSION,
|
|
|
|
|
"dashboard_refresh_interval": "60000",
|
|
|
|
|
"dashboard_sort": "status",
|
2024-01-23 15:09:44 -05:00
|
|
|
"dashboard_theme": "dark"
|
2024-01-09 00:25:47 -05:00
|
|
|
},
|
|
|
|
|
"Peers": {
|
|
|
|
|
"peer_global_DNS": "1.1.1.1",
|
|
|
|
|
"peer_endpoint_allowed_ip": "0.0.0.0/0",
|
|
|
|
|
"peer_display_mode": "grid",
|
|
|
|
|
"remote_endpoint": ifcfg.default_interface()['inet'],
|
|
|
|
|
"peer_MTU": "1420",
|
|
|
|
|
"peer_keep_alive": "21"
|
2024-01-23 15:09:44 -05:00
|
|
|
},
|
|
|
|
|
"Other": {
|
|
|
|
|
"welcome_session": "true"
|
2024-01-09 00:25:47 -05:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for section, keys in self.__default.items():
|
|
|
|
|
for key, value in keys.items():
|
|
|
|
|
exist, currentData = self.GetConfig(section, key)
|
|
|
|
|
if not exist:
|
2024-01-23 15:09:44 -05:00
|
|
|
self.SetConfig(section, key, value, True)
|
|
|
|
|
|
|
|
|
|
def __configValidation(self, key, value: Any) -> [bool, str]:
|
|
|
|
|
if type(value) is str and len(value) == 0:
|
|
|
|
|
return False, "Field cannot be empty!"
|
|
|
|
|
if key == "peer_global_dns":
|
|
|
|
|
value = value.split(",")
|
|
|
|
|
for i in value:
|
|
|
|
|
try:
|
|
|
|
|
ipaddress.ip_address(i)
|
|
|
|
|
except ValueError as e:
|
|
|
|
|
return False, str(e)
|
|
|
|
|
if key == "peer_endpoint_allowed_ip":
|
|
|
|
|
value = value.split(",")
|
|
|
|
|
for i in value:
|
|
|
|
|
try:
|
|
|
|
|
ipaddress.ip_network(i, strict=False)
|
|
|
|
|
except Exception as e:
|
|
|
|
|
return False, str(e)
|
|
|
|
|
if key == "wg_conf_path":
|
|
|
|
|
if not os.path.exists(value):
|
|
|
|
|
return False, f"{value} is not a valid path"
|
|
|
|
|
if key == "password":
|
|
|
|
|
if self.GetConfig("Account", "password")[0]:
|
|
|
|
|
if not self.__checkPassword(
|
|
|
|
|
value["currentPassword"], self.GetConfig("Account", "password")[1].encode("utf-8")):
|
|
|
|
|
return False, "Current password does not match."
|
|
|
|
|
if value["newPassword"] != value["repeatNewPassword"]:
|
|
|
|
|
return False, "New passwords does not match"
|
|
|
|
|
return True, ""
|
|
|
|
|
|
|
|
|
|
def generatePassword(self, plainTextPassword: str):
|
|
|
|
|
return bcrypt.hashpw(plainTextPassword.encode("utf-8"), bcrypt.gensalt(rounds=12))
|
|
|
|
|
|
|
|
|
|
def __checkPassword(self, plainTextPassword: str, hashedPassword: bytes):
|
|
|
|
|
return bcrypt.checkpw(plainTextPassword.encode("utf-8"), hashedPassword)
|
|
|
|
|
|
|
|
|
|
def SetConfig(self, section: str, key: str, value: any, init: bool = False) -> [bool, str]:
|
|
|
|
|
if key in self.hiddenAttribute and not init:
|
|
|
|
|
return False, None
|
|
|
|
|
|
|
|
|
|
if not init:
|
|
|
|
|
valid, msg = self.__configValidation(key, value)
|
|
|
|
|
if not valid:
|
|
|
|
|
return False, msg
|
|
|
|
|
|
|
|
|
|
if section == "Account" and key == "password":
|
|
|
|
|
if not init:
|
|
|
|
|
value = self.generatePassword(value["newPassword"]).decode("utf-8")
|
|
|
|
|
else:
|
|
|
|
|
value = self.generatePassword(value).decode("utf-8")
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
if section not in self.__config:
|
|
|
|
|
self.__config[section] = {}
|
2024-01-23 15:09:44 -05:00
|
|
|
|
|
|
|
|
if key not in self.__config[section].keys() or value != self.__config[section][key]:
|
|
|
|
|
if type(value) is bool:
|
|
|
|
|
if value:
|
|
|
|
|
self.__config[section][key] = "true"
|
|
|
|
|
else:
|
|
|
|
|
self.__config[section][key] = "false"
|
|
|
|
|
else:
|
|
|
|
|
self.__config[section][key] = value
|
|
|
|
|
return self.SaveConfig(), ""
|
|
|
|
|
return True, ""
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
def SaveConfig(self) -> bool:
|
|
|
|
|
try:
|
|
|
|
|
with open(DASHBOARD_CONF, "w+", encoding='utf-8') as configFile:
|
|
|
|
|
self.__config.write(configFile)
|
|
|
|
|
return True
|
|
|
|
|
except Exception as e:
|
|
|
|
|
return False
|
|
|
|
|
|
|
|
|
|
def GetConfig(self, section, key) -> [any, bool]:
|
|
|
|
|
if section not in self.__config:
|
|
|
|
|
return False, None
|
|
|
|
|
|
|
|
|
|
if key not in self.__config[section]:
|
|
|
|
|
return False, None
|
|
|
|
|
|
2024-01-23 15:09:44 -05:00
|
|
|
if self.__config[section][key] in ["1", "yes", "true", "on"]:
|
|
|
|
|
return True, True
|
|
|
|
|
|
|
|
|
|
if self.__config[section][key] in ["0", "no", "false", "off"]:
|
|
|
|
|
return True, False
|
|
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
return True, self.__config[section][key]
|
|
|
|
|
|
2024-01-11 01:10:26 -05:00
|
|
|
def toJSON(self) -> dict[str, dict[Any, Any]]:
|
|
|
|
|
the_dict = {}
|
2024-01-23 15:09:44 -05:00
|
|
|
|
2024-01-11 01:10:26 -05:00
|
|
|
for section in self.__config.sections():
|
|
|
|
|
the_dict[section] = {}
|
|
|
|
|
for key, val in self.__config.items(section):
|
2024-01-23 15:09:44 -05:00
|
|
|
if key not in self.hiddenAttribute:
|
|
|
|
|
if val in ["1", "yes", "true", "on"]:
|
|
|
|
|
the_dict[section][key] = True
|
|
|
|
|
elif val in ["0", "no", "false", "off"]:
|
|
|
|
|
the_dict[section][key] = False
|
|
|
|
|
else:
|
|
|
|
|
the_dict[section][key] = val
|
2024-01-11 01:10:26 -05:00
|
|
|
return the_dict
|
|
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
def ResponseObject(status=True, message=None, data=None) -> Flask.response_class:
|
|
|
|
|
response = Flask.make_response(app, {
|
2024-01-09 00:25:47 -05:00
|
|
|
"status": status,
|
|
|
|
|
"message": message,
|
|
|
|
|
"data": data
|
2024-01-10 01:42:19 -05:00
|
|
|
})
|
|
|
|
|
response.content_type = "application/json"
|
|
|
|
|
return response
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
|
|
|
|
|
DashboardConfig = DashboardConfig()
|
2024-02-11 23:53:51 -05:00
|
|
|
WireguardConfigurations: {str: WireguardConfiguration} = {}
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
'''
|
|
|
|
|
Private Functions
|
|
|
|
|
'''
|
|
|
|
|
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
def _strToBool(value: str) -> bool:
|
|
|
|
|
return value.lower() in ("yes", "true", "t", "1", 1)
|
|
|
|
|
|
|
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
# def _createPeerModel(wgConfigName):
|
|
|
|
|
# return type(wgConfigName, (Base,), {
|
|
|
|
|
# "id": mapped_column(VARCHAR, primary_key=True),
|
|
|
|
|
# "private_key": mapped_column(VARCHAR),
|
|
|
|
|
# "DNS": mapped_column(VARCHAR),
|
|
|
|
|
# "endpoint_allowed_ip": mapped_column(VARCHAR),
|
|
|
|
|
# "name": mapped_column(VARCHAR),
|
|
|
|
|
# "total_receive": mapped_column(FLOAT),
|
|
|
|
|
# "total_sent": mapped_column(FLOAT),
|
|
|
|
|
# "total_data": mapped_column(FLOAT),
|
|
|
|
|
# "endpoint": mapped_column(VARCHAR),
|
|
|
|
|
# "status": mapped_column(VARCHAR),
|
|
|
|
|
# "latest_handshake": mapped_column(VARCHAR),
|
|
|
|
|
# "allowed_ip": mapped_column(VARCHAR),
|
|
|
|
|
# "cumu_receive": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_sent": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_data": mapped_column(FLOAT),
|
|
|
|
|
# "mtu": mapped_column(INT),
|
|
|
|
|
# "keepalive": mapped_column(INT),
|
|
|
|
|
# "remote_endpoint": mapped_column(VARCHAR),
|
|
|
|
|
# "preshared_key": mapped_column(VARCHAR),
|
|
|
|
|
# "__tablename__": wgConfigName,
|
|
|
|
|
# "__table_args__": {'extend_existing': True}
|
|
|
|
|
# })
|
|
|
|
|
#
|
|
|
|
|
#
|
|
|
|
|
# def _createRestrictedPeerModel(wgConfigName):
|
|
|
|
|
# return type(wgConfigName + "_restrict_access", (Base,), {
|
|
|
|
|
# "id": mapped_column(VARCHAR, primary_key=True),
|
|
|
|
|
# "private_key": mapped_column(VARCHAR),
|
|
|
|
|
# "DNS": mapped_column(VARCHAR),
|
|
|
|
|
# "endpoint_allowed_ip": mapped_column(VARCHAR),
|
|
|
|
|
# "name": mapped_column(VARCHAR),
|
|
|
|
|
# "total_receive": mapped_column(FLOAT),
|
|
|
|
|
# "total_sent": mapped_column(FLOAT),
|
|
|
|
|
# "total_data": mapped_column(FLOAT),
|
|
|
|
|
# "endpoint": mapped_column(VARCHAR),
|
|
|
|
|
# "status": mapped_column(VARCHAR),
|
|
|
|
|
# "latest_handshake": mapped_column(VARCHAR),
|
|
|
|
|
# "allowed_ip": mapped_column(VARCHAR),
|
|
|
|
|
# "cumu_receive": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_sent": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_data": mapped_column(FLOAT),
|
|
|
|
|
# "mtu": mapped_column(INT),
|
|
|
|
|
# "keepalive": mapped_column(INT),
|
|
|
|
|
# "remote_endpoint": mapped_column(VARCHAR),
|
|
|
|
|
# "preshared_key": mapped_column(VARCHAR),
|
|
|
|
|
# "__tablename__": wgConfigName,
|
|
|
|
|
# "__table_args__": {'extend_existing': True}
|
|
|
|
|
# })
|
|
|
|
|
#
|
|
|
|
|
#
|
|
|
|
|
# def _createPeerTransferModel(wgConfigName):
|
|
|
|
|
# return type(wgConfigName + "_transfer", (Base,), {
|
|
|
|
|
# "id": mapped_column(VARCHAR, primary_key=True),
|
|
|
|
|
# "total_receive": mapped_column(FLOAT),
|
|
|
|
|
# "total_sent": mapped_column(FLOAT),
|
|
|
|
|
# "total_data": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_receive": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_sent": mapped_column(FLOAT),
|
|
|
|
|
# "cumu_data": mapped_column(FLOAT),
|
|
|
|
|
# "time": mapped_column(DATETIME),
|
|
|
|
|
# "__tablename__": wgConfigName + "_transfer",
|
|
|
|
|
# "__table_args__": {'extend_existing': True},
|
|
|
|
|
# })
|
2024-01-10 01:42:19 -05:00
|
|
|
|
|
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
def _regexMatch(regex, text):
|
|
|
|
|
pattern = re.compile(regex)
|
|
|
|
|
return pattern.search(text) is not None
|
|
|
|
|
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
def _getConfigurationList() -> [WireguardConfiguration]:
|
2024-02-11 23:53:51 -05:00
|
|
|
configurations = {}
|
2024-01-09 00:25:47 -05:00
|
|
|
for i in os.listdir(WG_CONF_PATH):
|
|
|
|
|
if _regexMatch("^(.{1,}).(conf)$", i):
|
|
|
|
|
i = i.replace('.conf', '')
|
2024-01-10 01:42:19 -05:00
|
|
|
try:
|
2024-02-11 23:53:51 -05:00
|
|
|
configurations[i] = WireguardConfiguration(i)
|
2024-01-10 01:42:19 -05:00
|
|
|
except WireguardConfiguration.InvalidConfigurationFileException as e:
|
|
|
|
|
print(f"{i} have an invalid configuration file.")
|
|
|
|
|
return configurations
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
|
|
|
|
|
'''
|
|
|
|
|
API Routes
|
|
|
|
|
'''
|
|
|
|
|
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
@app.before_request
|
|
|
|
|
def auth_req():
|
2024-01-23 15:09:44 -05:00
|
|
|
authenticationRequired = DashboardConfig.GetConfig("Server", "auth_req")[1]
|
2024-01-10 01:42:19 -05:00
|
|
|
if authenticationRequired:
|
2024-01-23 15:09:44 -05:00
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
if ('/static/' not in request.path and "username" not in session and "/" != request.path
|
2024-01-23 15:09:44 -05:00
|
|
|
and "validateAuthentication" not in request.path and "authenticate" not in request.path
|
|
|
|
|
and "getDashboardConfiguration" not in request.path and "getDashboardTheme" not in request.path
|
|
|
|
|
and "isTotpEnabled" not in request.path
|
|
|
|
|
):
|
2024-01-10 01:42:19 -05:00
|
|
|
resp = Flask.make_response(app, "Not Authorized" + request.path)
|
|
|
|
|
resp.status_code = 401
|
|
|
|
|
return resp
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/validateAuthentication', methods=["GET"])
|
|
|
|
|
def API_ValidateAuthentication():
|
|
|
|
|
token = request.cookies.get("authToken") + ""
|
|
|
|
|
if token == "" or "username" not in session or session["username"] != token:
|
|
|
|
|
return ResponseObject(False, "Invalid authentication")
|
|
|
|
|
|
|
|
|
|
return ResponseObject(True)
|
|
|
|
|
|
|
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
@app.route('/api/authenticate', methods=['POST'])
|
|
|
|
|
def API_AuthenticateLogin():
|
|
|
|
|
data = request.get_json()
|
2024-01-23 15:09:44 -05:00
|
|
|
valid = bcrypt.checkpw(data['password'].encode("utf-8"),
|
|
|
|
|
DashboardConfig.GetConfig("Account", "password")[1].encode("utf-8"))
|
|
|
|
|
totpEnabled = DashboardConfig.GetConfig("Account", "enable_totp")[1]
|
|
|
|
|
totpValid = False
|
|
|
|
|
|
|
|
|
|
if totpEnabled:
|
|
|
|
|
totpValid = pyotp.TOTP(DashboardConfig.GetConfig("Account", "totp_key")[1]).now() == data['totp']
|
|
|
|
|
|
|
|
|
|
if (valid
|
|
|
|
|
and data['username'] == DashboardConfig.GetConfig("Account", "username")[1]
|
|
|
|
|
and ((totpEnabled and totpValid) or not totpEnabled)
|
|
|
|
|
):
|
2024-01-10 01:42:19 -05:00
|
|
|
authToken = hashlib.sha256(f"{data['username']}{datetime.now()}".encode()).hexdigest()
|
|
|
|
|
session['username'] = authToken
|
2024-01-23 15:09:44 -05:00
|
|
|
resp = ResponseObject(True, DashboardConfig.GetConfig("Other", "welcome_session")[1])
|
2024-01-10 01:42:19 -05:00
|
|
|
resp.set_cookie("authToken", authToken)
|
2024-01-09 00:25:47 -05:00
|
|
|
session.permanent = True
|
|
|
|
|
return resp
|
2024-01-31 12:06:44 -05:00
|
|
|
|
|
|
|
|
if totpEnabled:
|
|
|
|
|
return ResponseObject(False, "Sorry, your username, password or OTP is incorrect.")
|
|
|
|
|
else:
|
|
|
|
|
return ResponseObject(False, "Sorry, your username or password is incorrect.")
|
2024-01-23 15:09:44 -05:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/signout')
|
|
|
|
|
def API_SignOut():
|
|
|
|
|
resp = ResponseObject(True, "")
|
|
|
|
|
resp.delete_cookie("authToken")
|
|
|
|
|
return resp
|
2024-01-10 01:42:19 -05:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/getWireguardConfigurations', methods=["GET"])
|
|
|
|
|
def API_getWireguardConfigurations():
|
2024-01-11 01:10:26 -05:00
|
|
|
WireguardConfigurations = _getConfigurationList()
|
2024-02-11 23:53:51 -05:00
|
|
|
return ResponseObject(data=[wc.toJSON() for wc in WireguardConfigurations.values()])
|
2024-01-10 01:42:19 -05:00
|
|
|
|
|
|
|
|
|
2024-01-31 12:06:44 -05:00
|
|
|
@app.route('/api/addWireguardConfiguration', methods=["POST"])
|
|
|
|
|
def API_addWireguardConfiguration():
|
|
|
|
|
data = request.get_json()
|
|
|
|
|
keys = [
|
|
|
|
|
"ConfigurationName",
|
|
|
|
|
"Address",
|
|
|
|
|
"ListenPort",
|
|
|
|
|
"PrivateKey",
|
|
|
|
|
"PublicKey",
|
|
|
|
|
"PresharedKey",
|
|
|
|
|
"PreUp",
|
|
|
|
|
"PreDown",
|
|
|
|
|
"PostUp",
|
|
|
|
|
"PostDown",
|
|
|
|
|
]
|
|
|
|
|
requiredKeys = [
|
|
|
|
|
"ConfigurationName", "Address", "ListenPort", "PrivateKey"
|
|
|
|
|
]
|
2024-02-11 23:53:51 -05:00
|
|
|
for i in keys:
|
|
|
|
|
if i not in data.keys() or (i in requiredKeys and len(str(data[i])) == 0):
|
|
|
|
|
return ResponseObject(False, "Please provide all required parameters.")
|
|
|
|
|
|
|
|
|
|
# Check duplicate names, ports, address
|
|
|
|
|
for i in WireguardConfigurations.values():
|
|
|
|
|
if i.Name == data['ConfigurationName']:
|
|
|
|
|
return ResponseObject(False,
|
|
|
|
|
f"Already have a configuration with the name \"{data['ConfigurationName']}\"",
|
|
|
|
|
"ConfigurationName")
|
|
|
|
|
|
|
|
|
|
if str(i.ListenPort) == str(data["ListenPort"]):
|
|
|
|
|
return ResponseObject(False,
|
|
|
|
|
f"Already have a configuration with the port \"{data['ListenPort']}\"",
|
|
|
|
|
"ListenPort")
|
|
|
|
|
|
|
|
|
|
if i.Address == data["Address"]:
|
|
|
|
|
return ResponseObject(False,
|
|
|
|
|
f"Already have a configuration with the address \"{data['Address']}\"",
|
|
|
|
|
"Address")
|
|
|
|
|
|
|
|
|
|
WireguardConfigurations[data['ConfigurationName']] = WireguardConfiguration(data=data)
|
|
|
|
|
return ResponseObject()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/toggleWireguardConfiguration/')
|
|
|
|
|
def API_toggleWireguardConfiguration():
|
|
|
|
|
configurationName = request.args.get('configurationName')
|
|
|
|
|
|
|
|
|
|
if configurationName is None or len(
|
|
|
|
|
configurationName) == 0 or configurationName not in WireguardConfigurations.keys():
|
|
|
|
|
return ResponseObject(False, "Please provide a valid configuration name")
|
|
|
|
|
|
|
|
|
|
toggleStatus, msg = WireguardConfigurations[configurationName].toggleConfiguration()
|
|
|
|
|
|
|
|
|
|
return ResponseObject(toggleStatus, msg, WireguardConfigurations[configurationName].Status)
|
2024-01-31 12:06:44 -05:00
|
|
|
|
|
|
|
|
|
2024-01-10 01:42:19 -05:00
|
|
|
@app.route('/api/getDashboardConfiguration', methods=["GET"])
|
|
|
|
|
def API_getDashboardConfiguration():
|
2024-01-11 01:10:26 -05:00
|
|
|
return ResponseObject(data=DashboardConfig.toJSON())
|
2024-01-09 00:25:47 -05:00
|
|
|
|
|
|
|
|
|
2024-01-23 15:09:44 -05:00
|
|
|
@app.route('/api/updateDashboardConfiguration', methods=["POST"])
|
|
|
|
|
def API_updateDashboardConfiguration():
|
|
|
|
|
data = request.get_json()
|
|
|
|
|
for section in data['DashboardConfiguration'].keys():
|
|
|
|
|
for key in data['DashboardConfiguration'][section].keys():
|
|
|
|
|
if not DashboardConfig.SetConfig(section, key, data['DashboardConfiguration'][section][key])[0]:
|
|
|
|
|
return ResponseObject(False, "Section or value is invalid.")
|
|
|
|
|
return ResponseObject()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/updateDashboardConfigurationItem', methods=["POST"])
|
|
|
|
|
def API_updateDashboardConfigurationItem():
|
|
|
|
|
data = request.get_json()
|
|
|
|
|
if "section" not in data.keys() or "key" not in data.keys() or "value" not in data.keys():
|
|
|
|
|
return ResponseObject(False, "Invalid request.")
|
|
|
|
|
|
|
|
|
|
valid, msg = DashboardConfig.SetConfig(
|
|
|
|
|
data["section"], data["key"], data['value'])
|
|
|
|
|
|
|
|
|
|
if not valid:
|
|
|
|
|
return ResponseObject(False, msg)
|
|
|
|
|
|
|
|
|
|
return ResponseObject()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/getDashboardTheme')
|
|
|
|
|
def API_getDashboardTheme():
|
|
|
|
|
return ResponseObject(data=DashboardConfig.GetConfig("Server", "dashboard_theme")[1])
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/isTotpEnabled')
|
|
|
|
|
def API_isTotpEnabled():
|
|
|
|
|
return ResponseObject(data=DashboardConfig.GetConfig("Account", "enable_totp")[1])
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/Welcome_GetTotpLink')
|
|
|
|
|
def API_Welcome_GetTotpLink():
|
|
|
|
|
if DashboardConfig.GetConfig("Other", "welcome_session")[1]:
|
|
|
|
|
return ResponseObject(
|
|
|
|
|
data=pyotp.totp.TOTP(DashboardConfig.GetConfig("Account", "totp_key")[1]).provisioning_uri(
|
|
|
|
|
issuer_name="WGDashboard"))
|
|
|
|
|
return ResponseObject(False)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/Welcome_VerifyTotpLink', methods=["POST"])
|
|
|
|
|
def API_Welcome_VerifyTotpLink():
|
|
|
|
|
data = request.get_json()
|
|
|
|
|
if DashboardConfig.GetConfig("Other", "welcome_session")[1]:
|
|
|
|
|
return ResponseObject(pyotp.TOTP(DashboardConfig.GetConfig("Account", "totp_key")[1]).now() == data['totp'])
|
|
|
|
|
return ResponseObject(False)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/api/Welcome_Finish', methods=["POST"])
|
|
|
|
|
def API_Welcome_Finish():
|
|
|
|
|
data = request.get_json()
|
|
|
|
|
if DashboardConfig.GetConfig("Other", "welcome_session")[1]:
|
|
|
|
|
if data["username"] == "":
|
|
|
|
|
return ResponseObject(False, "Username cannot be blank.")
|
|
|
|
|
|
|
|
|
|
if data["newPassword"] == "" or len(data["newPassword"]) < 8:
|
|
|
|
|
return ResponseObject(False, "Password must be at least 8 characters")
|
|
|
|
|
|
|
|
|
|
updateUsername, updateUsernameErr = DashboardConfig.SetConfig("Account", "username", data["username"])
|
|
|
|
|
updatePassword, updatePasswordErr = DashboardConfig.SetConfig("Account", "password",
|
|
|
|
|
{
|
|
|
|
|
"newPassword": data["newPassword"],
|
|
|
|
|
"repeatNewPassword": data[
|
|
|
|
|
"repeatNewPassword"],
|
|
|
|
|
"currentPassword": "admin"
|
|
|
|
|
})
|
|
|
|
|
updateEnableTotp, updateEnableTotpErr = DashboardConfig.SetConfig("Account", "enable_totp", data["enable_totp"])
|
|
|
|
|
|
|
|
|
|
if not updateUsername or not updatePassword or not updateEnableTotp:
|
|
|
|
|
return ResponseObject(False, f"{updateUsernameErr},{updatePasswordErr},{updateEnableTotpErr}".strip(","))
|
|
|
|
|
|
|
|
|
|
DashboardConfig.SetConfig("Other", "welcome_session", False)
|
|
|
|
|
|
|
|
|
|
return ResponseObject()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/', methods=['GET'])
|
|
|
|
|
def index():
|
|
|
|
|
"""
|
|
|
|
|
Index page related
|
|
|
|
|
@return: Template
|
|
|
|
|
"""
|
|
|
|
|
return render_template('index_new.html')
|
|
|
|
|
|
|
|
|
|
|
2024-02-11 23:53:51 -05:00
|
|
|
def backGroundThread():
|
|
|
|
|
print("Waiting 5 sec")
|
|
|
|
|
time.sleep(5)
|
|
|
|
|
while True:
|
|
|
|
|
for c in WireguardConfigurations.values():
|
|
|
|
|
if c.getStatus():
|
|
|
|
|
try:
|
|
|
|
|
data_usage = subprocess.check_output(f"wg show {c.Name} transfer",
|
|
|
|
|
shell=True, stderr=subprocess.STDOUT)
|
|
|
|
|
data_usage = data_usage.decode("UTF-8").split("\n")
|
|
|
|
|
data_usage = [p.split("\t") for p in data_usage]
|
|
|
|
|
for i in range(len(data_usage)):
|
|
|
|
|
if len(data_usage[i]) == 3:
|
|
|
|
|
cur_i = cursor.execute(
|
|
|
|
|
"SELECT total_receive, total_sent, cumu_receive, cumu_sent, status FROM %s WHERE id= ? "
|
|
|
|
|
% c.Name, (data_usage[i][0], )).fetchone()
|
|
|
|
|
if cur_i is not None:
|
|
|
|
|
total_sent = cur_i['total_sent']
|
|
|
|
|
total_receive = cur_i['total_receive']
|
|
|
|
|
cur_total_sent = round(int(data_usage[i][2]) / (1024 ** 3), 4)
|
|
|
|
|
cur_total_receive = round(int(data_usage[i][1]) / (1024 ** 3), 4)
|
|
|
|
|
cumulative_receive = cur_i['cumu_receive'] + total_receive
|
|
|
|
|
cumulative_sent = cur_i['cumu_sent'] + total_sent
|
|
|
|
|
if total_sent <= cur_total_sent and total_receive <= cur_total_receive:
|
|
|
|
|
total_sent = cur_total_sent
|
|
|
|
|
total_receive = cur_total_receive
|
|
|
|
|
else:
|
|
|
|
|
cursor.execute(
|
|
|
|
|
"UPDATE %s SET cumu_receive = ?, cumu_sent = ?, cumu_data = ? WHERE id = ?" %
|
|
|
|
|
c.Name, (round(cumulative_receive, 4), round(cumulative_sent, 4),
|
|
|
|
|
round(cumulative_sent + cumulative_receive, 4),
|
|
|
|
|
data_usage[i][0], ))
|
|
|
|
|
total_sent = 0
|
|
|
|
|
total_receive = 0
|
|
|
|
|
cursor.execute(
|
|
|
|
|
"UPDATE %s SET total_receive = ?, total_sent = ?, total_data = ? WHERE id = ?"
|
|
|
|
|
% c.Name, (round(total_receive, 4), round(total_sent, 4),
|
|
|
|
|
round(total_receive + total_sent, 4), data_usage[i][0], ))
|
|
|
|
|
now = datetime.now()
|
|
|
|
|
now_string = now.strftime("%d/%m/%Y %H:%M:%S")
|
|
|
|
|
cursor.execute(f'''
|
|
|
|
|
INSERT INTO %s_transfer
|
|
|
|
|
(id, total_receive, total_sent, total_data,
|
|
|
|
|
cumu_receive, cumu_sent, cumu_data, time)
|
|
|
|
|
VALUES (?, ?, ?, ?, ?, ?, ?, ?)
|
|
|
|
|
''' % c.Name, (data_usage[i][0], round(total_receive, 4), round(total_sent, 4),
|
|
|
|
|
round(total_receive + total_sent, 4), round(cumulative_receive, 4),
|
|
|
|
|
round(cumulative_sent, 4),
|
|
|
|
|
round(cumulative_sent + cumulative_receive, 4), now_string, ))
|
|
|
|
|
sqldb.commit()
|
|
|
|
|
print(data_usage)
|
|
|
|
|
pass
|
|
|
|
|
except Exception as e:
|
|
|
|
|
print(str(e))
|
|
|
|
|
time.sleep(30)
|
|
|
|
|
|
|
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
if __name__ == "__main__":
|
|
|
|
|
engine = create_engine("sqlite:///" + os.path.join(CONFIGURATION_PATH, 'db', 'wgdashboard.db'))
|
2024-02-11 23:53:51 -05:00
|
|
|
sqldb = sqlite3.connect(os.path.join(CONFIGURATION_PATH, 'db', 'wgdashboard.db'), check_same_thread=False)
|
|
|
|
|
sqldb.row_factory = sqlite3.Row
|
|
|
|
|
cursor = sqldb.cursor()
|
2024-01-10 01:42:19 -05:00
|
|
|
|
2024-01-09 00:25:47 -05:00
|
|
|
_, app_ip = DashboardConfig.GetConfig("Server", "app_ip")
|
|
|
|
|
_, app_port = DashboardConfig.GetConfig("Server", "app_port")
|
2024-01-10 01:42:19 -05:00
|
|
|
_, WG_CONF_PATH = DashboardConfig.GetConfig("Server", "wg_conf_path")
|
|
|
|
|
WireguardConfigurations = _getConfigurationList()
|
2024-02-11 23:53:51 -05:00
|
|
|
bgThread = threading.Thread(target=backGroundThread)
|
|
|
|
|
bgThread.daemon = True
|
|
|
|
|
bgThread.start()
|
|
|
|
|
|
|
|
|
|
app.run(host=app_ip, debug=False, port=app_port)
|
