void auth_token(Mongoose::Request &request, Mongoose::StreamResponse &response) { if (password.empty() || password != request.get("password")) { response.setCode(HTTP_FORBIDDEN); response << "403 Invalid password"; } else { std::string token = tokens.generate(); response.setHeader("__TOKEN", token); response << "{ \"status\" : \"ok\", \"auth token\": \"" << token << "\" }"; } }
void registry_inventory(Mongoose::Request &request, Mongoose::StreamResponse &response) { if (!is_loggedin(request, response, password)) return; Plugin::RegistryRequestMessage rrm; nscapi::protobuf::functions::create_simple_header(rrm.mutable_header()); Plugin::RegistryRequestMessage::Request *payload = rrm.add_payload(); if (request.get("all", "true") == "true") payload->mutable_inventory()->set_fetch_all(true); std::string type = request.get("type", "query"); if (type == "query") payload->mutable_inventory()->add_type(Plugin::Registry_ItemType_QUERY); else if (type == "command") payload->mutable_inventory()->add_type(Plugin::Registry_ItemType_COMMAND); else if (type == "module") payload->mutable_inventory()->add_type(Plugin::Registry_ItemType_MODULE); else if (type == "query-alias") payload->mutable_inventory()->add_type(Plugin::Registry_ItemType_QUERY_ALIAS); else if (type == "all") payload->mutable_inventory()->add_type(Plugin::Registry_ItemType_ALL); else { response.setCode(HTTP_SERVER_ERROR); response << "500 Invalid type. Possible types are: query, command, plugin, query-alias, all"; return; } std::string pb_response, json_response; core->registry_query(rrm.SerializeAsString(), pb_response); core->protobuf_to_json("RegistryResponseMessage", pb_response, json_response); response << json_response; }
void settings_controller::get_key(Mongoose::Request &request, boost::smatch &what, Mongoose::StreamResponse &response) { if (!session->is_loggedin("settings", request, response)) return; if (!validate_arguments(2, what, response)) { return; } std::string path = what.str(1); std::string key = what.str(2); if (!session->can("settings.get", request, response)) return; Plugin::SettingsRequestMessage rm; Plugin::SettingsRequestMessage::Request *payload = rm.add_payload(); payload->mutable_query()->mutable_node()->set_path(path); payload->mutable_query()->mutable_node()->set_key(key); payload->mutable_query()->set_recursive(false); payload->set_plugin_id(plugin_id); std::string str_response; core->settings_query(rm.SerializeAsString(), str_response); Plugin::SettingsResponseMessage pb_response; pb_response.ParseFromString(str_response); json_spirit::Object node; BOOST_FOREACH(const Plugin::SettingsResponseMessage::Response r, pb_response.payload()) { if (!r.has_query()) { response.setCode(HTTP_NOT_FOUND); response.append("Key not found: " + path + "/" + key); return; } const Plugin::SettingsResponseMessage::Response::Query &i = r.query(); node["path"] = i.node().path(); node["key"] = i.node().key(); if (i.value().has_string_data()) { node["value"] = i.value().string_data(); } else if (i.value().has_int_data()) { node["value"] = i.value().int_data(); } else if (i.value().has_bool_data()) { node["value"] = i.value().bool_data(); } } response.append(json_spirit::write(node)); }
bool is_loggedin(Mongoose::Request &request, Mongoose::StreamResponse &response, std::string gpassword, bool respond = true) { std::string token = request.readHeader("TOKEN"); if (token.empty()) token = request.get("__TOKEN", ""); bool auth = false; if (token.empty()) { std::string password = request.readHeader("password"); if (password.empty()) password = request.get("password", ""); auth = !password.empty() && password == gpassword; } else { auth = tokens.validate(token); } if (!auth) { if (respond) { response.setCode(HTTP_FORBIDDEN); response << "403 Please login first"; } return false; } return true; }
void settings_controller::get_section(Mongoose::Request &request, boost::smatch &what, Mongoose::StreamResponse &response) { if (!session->is_loggedin("settings.list", request, response)) return; if (!validate_arguments(1, what, response)) { return; } std::string path = what.str(1); Plugin::SettingsRequestMessage rm; Plugin::SettingsRequestMessage::Request *payload = rm.add_payload(); payload->mutable_query()->mutable_node()->set_path(path); payload->mutable_query()->set_recursive(false); payload->set_plugin_id(plugin_id); payload = rm.add_payload(); payload->mutable_query()->mutable_node()->set_path(path); payload->mutable_query()->set_recursive(true); payload->set_plugin_id(plugin_id); std::string str_response; core->settings_query(rm.SerializeAsString(), str_response); Plugin::SettingsResponseMessage pb_response; pb_response.ParseFromString(str_response); json_spirit::Object node; node["path"] = path; if (pb_response.payload_size() != 2) { response.setCode(HTTP_SERVER_ERROR); response.append("Failed to fetch keys"); return; } const Plugin::SettingsResponseMessage::Response rKeys = pb_response.payload(0); if (!rKeys.has_query()) { response.setCode(HTTP_NOT_FOUND); response.append("Key not found: " + path); return; } json_spirit::Array keys; BOOST_FOREACH(const std::string &s, rKeys.query().value().list_data()) { keys.push_back(s); } node["keys"] = keys; const Plugin::SettingsResponseMessage::Response rPath = pb_response.payload(1); if (!rPath.has_query()) { response.setCode(HTTP_NOT_FOUND); response.append("Key not found: " + path); return; } json_spirit::Array paths; BOOST_FOREACH(const std::string &s, rPath.query().value().list_data()) { paths.push_back(s); } node["paths"] = paths; response.append(json_spirit::write(node)); }
void redirect_index(Mongoose::Request&, Mongoose::StreamResponse &response) { response.setCode(302); response.setHeader("Location", "/index.html"); }
void auth_logout(Mongoose::Request &request, Mongoose::StreamResponse &response) { std::string token = request.get("token"); tokens.revoke(token); response.setHeader("__TOKEN", ""); response << "{ \"status\" : \"ok\", \"auth token\": \"\" }"; }