149 lines
4.8 KiB
Python
149 lines
4.8 KiB
Python
import logging
|
|
import os
|
|
from flask import Blueprint, request
|
|
from flask import redirect, url_for
|
|
from app import auth
|
|
|
|
from ..lib import login_name, username
|
|
|
|
from flask import jsonify
|
|
|
|
from hsapi_client import Node, User, Route, PreAuthKey
|
|
from hsapi_client.preauthkeys import (v1CreatePreAuthKeyRequest,
|
|
v1ExpirePreAuthKeyRequest)
|
|
|
|
|
|
log = logging.getLogger()
|
|
# REST calls
|
|
|
|
rest_blueprint = Blueprint(
|
|
'rest', __name__, url_prefix=os.getenv('APPLICATION_ROOT', '/'))
|
|
|
|
|
|
@rest_blueprint.route('/routeToggle/<int:routeId>', methods=['GET'])
|
|
@auth.authorize_admins('default')
|
|
def routeToggle(routeId: int):
|
|
routes = Route().list()
|
|
route = [r for r in routes.routes if r.id == routeId]
|
|
if route:
|
|
route = route[0]
|
|
if route.enabled:
|
|
action = 'disabled'
|
|
Route().disable(routeId)
|
|
else:
|
|
Route().enable(routeId)
|
|
action = 'enabled'
|
|
log.info(
|
|
f"route '{route.prefix}' via '{route.node.givenName}'"
|
|
f"{action} by '{username()}'")
|
|
return redirect(url_for("main.routes"))
|
|
|
|
|
|
@rest_blueprint.route('/node/<int:nodeId>/expire', methods=['GET'])
|
|
@auth.authorize_admins('default')
|
|
def expireNode(nodeId: int):
|
|
"""
|
|
This expires a node from the node page.
|
|
The difference from above is that it returns to the /node/nodeId page
|
|
"""
|
|
Node().expire(nodeId)
|
|
log.info(f"node '{nodeId}' expired by '{username()}'")
|
|
return redirect(url_for("main.node", nodeId=nodeId))
|
|
|
|
|
|
@rest_blueprint.route('/node/<int:nodeId>/user-expire', methods=['GET'])
|
|
@auth.authorize_admins('default')
|
|
def expireNodeUser(nodeId: int):
|
|
"""
|
|
This expires a node from the node page.
|
|
The difference from above is that it returns to the /node/nodeId page
|
|
"""
|
|
node = Node().get(nodeId)
|
|
userName = node.user.name
|
|
Node().expire(nodeId)
|
|
log.info(f"node '{nodeId}' expired by '{username()}'")
|
|
return redirect(url_for("main.user", userName=userName))
|
|
|
|
|
|
@rest_blueprint.route('/node/<int:nodeId>/list-expire', methods=['GET'])
|
|
@auth.authorize_admins('default')
|
|
def expireNodeList(nodeId: int):
|
|
"""
|
|
This expires a node from the node list.
|
|
The difference from above is that it returns to the /nodes page
|
|
"""
|
|
Node().expire(nodeId)
|
|
log.info(f"node '{nodeId}' expired by '{username()}'")
|
|
return redirect(url_for("main.nodes"))
|
|
|
|
|
|
@ rest_blueprint.route('/node/<int:nodeId>/delete', methods=['GET'])
|
|
@ auth.authorize_admins('default')
|
|
def deleteNode(nodeId: int):
|
|
Node().delete(nodeId)
|
|
log.info(f"node '{nodeId}' deleted by '{username()}'")
|
|
return redirect(url_for("main.nodes"))
|
|
|
|
|
|
@rest_blueprint.route('/node/<int:nodeId>/delete-own', methods=['GET'])
|
|
@auth.access_control('default')
|
|
def deleteOwnNode(nodeId: int):
|
|
node = Node().get(nodeId)
|
|
if node.user.name != username():
|
|
response = jsonify({'message': 'not authorized'})
|
|
return response, 401
|
|
Node().delete(nodeId)
|
|
log.info(f"'{username()}' delete their own node '{nodeId}'")
|
|
return redirect(url_for("main.index"))
|
|
|
|
|
|
@rest_blueprint.route('/node/<int:nodeId>/delete-user', methods=['GET'])
|
|
@auth.access_control('default')
|
|
def deleteNodeUser(nodeId: int):
|
|
node = Node().get(nodeId)
|
|
Node().delete(nodeId)
|
|
log.info(f"'{username()}' delete their own node '{nodeId}'")
|
|
return redirect(url_for("main.user", userName=node.user.name))
|
|
|
|
|
|
@ rest_blueprint.route('/node/<int:nodeId>/rename/<newName>', methods=['GET'])
|
|
@ auth.authorize_admins('default')
|
|
def renameNode(nodeId: int, newName: str):
|
|
Node().rename(nodeId, newName)
|
|
return jsonify(dict(newName=newName))
|
|
|
|
|
|
@ rest_blueprint.route('/user/<userName>/delete', methods=['GET'])
|
|
@ auth.authorize_admins('default')
|
|
def deleteUser(userName: str):
|
|
nodes = Node().byUser(userName)
|
|
for node in nodes.nodes:
|
|
Node().expire(node.id)
|
|
Node().delete(node.id)
|
|
User().delete(userName)
|
|
return redirect(url_for("main.users"))
|
|
|
|
|
|
@ rest_blueprint.route('/user/<userName>/pakcreate', methods=['POST'])
|
|
@ auth.authorize_admins('default')
|
|
def createPKA(userName: str):
|
|
data = request.json
|
|
log.debug(data)
|
|
expiration = f"{data['expiration']}:00Z"
|
|
req = v1CreatePreAuthKeyRequest(user=userName,
|
|
reusable=data['reusable'],
|
|
ephemeral=data['ephemeral'],
|
|
expiration=expiration)
|
|
pak = PreAuthKey().create((req))
|
|
return jsonify(dict(key=pak.preAuthKey.key))
|
|
|
|
|
|
@ rest_blueprint.route('/user/<userName>/expire/<key>', methods=['GET'])
|
|
@ auth.authorize_admins('default')
|
|
def expirePKA(userName: str, key: str):
|
|
log.debug(key)
|
|
req = v1ExpirePreAuthKeyRequest(user=userName, key=key)
|
|
|
|
PreAuthKey().expire(req)
|
|
return redirect(url_for('main.user', userName=userName))
|