Enhancement: more reliable wg-easy widget by custom proxy, use password header (#3966)
shamoon
2 months ago
committed by
GitHub
parent
133d2d6e02
commit
2d0beabe9a
@ -1,85 +0,0 @@
|
||||
import cache from "memory-cache";
|
||||
|
||||
import getServiceWidget from "utils/config/service-helpers";
|
||||
import { formatApiCall } from "utils/proxy/api-helpers";
|
||||
import { httpProxy } from "utils/proxy/http";
|
||||
import widgets from "widgets/widgets";
|
||||
import createLogger from "utils/logger";
|
||||
|
||||
const proxyName = "wgeasyProxyHandler";
|
||||
const logger = createLogger(proxyName);
|
||||
const sessionSIDCacheKey = `${proxyName}__sessionSID`;
|
||||
|
||||
async function login(widget, service) {
|
||||
const url = formatApiCall(widgets[widget.type].api, { ...widget, endpoint: "session" });
|
||||
const [, , , responseHeaders] = await httpProxy(url, {
|
||||
method: "POST",
|
||||
body: JSON.stringify({ password: widget.password }),
|
||||
headers: {
|
||||
"Content-Type": "application/json",
|
||||
},
|
||||
});
|
||||
|
||||
try {
|
||||
let connectSidCookie = responseHeaders["set-cookie"];
|
||||
if (!connectSidCookie) {
|
||||
const sid = cache.get(`${sessionSIDCacheKey}.${service}`);
|
||||
if (sid) {
|
||||
return sid;
|
||||
}
|
||||
}
|
||||
connectSidCookie = connectSidCookie
|
||||
.find((cookie) => cookie.startsWith("connect.sid="))
|
||||
.split(";")[0]
|
||||
.replace("connect.sid=", "");
|
||||
cache.put(`${sessionSIDCacheKey}.${service}`, connectSidCookie);
|
||||
return connectSidCookie;
|
||||
} catch (e) {
|
||||
logger.error(`Error logging into wg-easy, error: ${e}`);
|
||||
cache.del(`${sessionSIDCacheKey}.${service}`);
|
||||
return null;
|
||||
}
|
||||
}
|
||||
|
||||
export default async function wgeasyProxyHandler(req, res) {
|
||||
const { group, service } = req.query;
|
||||
|
||||
if (group && service) {
|
||||
const widget = await getServiceWidget(group, service);
|
||||
|
||||
if (!widgets?.[widget.type]?.api) {
|
||||
return res.status(403).json({ error: "Service does not support API calls" });
|
||||
}
|
||||
|
||||
if (widget) {
|
||||
let sid = cache.get(`${sessionSIDCacheKey}.${service}`);
|
||||
if (!sid) {
|
||||
sid = await login(widget, service);
|
||||
if (!sid) {
|
||||
return res.status(500).json({ error: "Failed to authenticate with Wg-Easy" });
|
||||
}
|
||||
}
|
||||
const [, , data] = await httpProxy(
|
||||
formatApiCall(widgets[widget.type].api, { ...widget, endpoint: "wireguard/client" }),
|
||||
{
|
||||
headers: {
|
||||
"Content-Type": "application/json",
|
||||
Cookie: `connect.sid=${sid}`,
|
||||
},
|
||||
},
|
||||
);
|
||||
|
||||
const parsedData = JSON.parse(data);
|
||||
|
||||
if (parsedData.statusCode > 400) {
|
||||
return res
|
||||
.status(parsedData.statusCode)
|
||||
.json({ error: { message: "Error communicating with Wg-Easy", data: parsedData } });
|
||||
}
|
||||
|
||||
return res.json(parsedData);
|
||||
}
|
||||
}
|
||||
|
||||
return res.status(400).json({ error: "Invalid proxy service type" });
|
||||
}
|
||||
@ -1,8 +1,14 @@
|
||||
import wgeasyProxyHandler from "./proxy";
|
||||
import credentialedProxyHandler from "utils/proxy/handlers/credentialed";
|
||||
|
||||
const widget = {
|
||||
api: "{url}/api/{endpoint}",
|
||||
proxyHandler: wgeasyProxyHandler,
|
||||
proxyHandler: credentialedProxyHandler,
|
||||
|
||||
mappings: {
|
||||
client: {
|
||||
endpoint: "wireguard/client",
|
||||
},
|
||||
},
|
||||
};
|
||||
|
||||
export default widget;
|
||||
|
||||
Loading…
Reference in new issue