Home Explore Help
Sign In
aeth
/
yosai
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 21b49fbb3b
Branches Tags
yosai
/
pkg
/
daemon
/
routes.go

routes.go 4.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148 
  1. package daemon
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"os"
    6. 

  6. 	"path"
    7. 

  7. 

  8. 	daemonproto "git.aetherial.dev/aeth/yosai/pkg/daemon-proto"
    9. 

  9. 	wg "git.aetherial.dev/aeth/yosai/pkg/wireguard/centos"
    10. 

  10. )
    11. 

  11. 

  12. type AddServerRequest struct {
    13. 

  13. 	Name   string `json:"name"`
    14. 

  14. 	Image  string `json:"image"`
    15. 

  15. 	Region string `json:"region"`
    16. 

  16. 	Type   string `json:"type"`
    17. 

  17. }
    18. 

  18. 

  19. type AddServerResponse struct {
    20. 

  20. 	Id      int      `json:"id"`
    21. 

  21. 	Ipv4    []string `json:"ipv4"`
    22. 

  22. 	Label   string   `json:"label"`
    23. 

  23. 	Created string   `json:"created"`
    24. 

  24. 	Region  string   `json:"region"`
    25. 

  25. 	Status  string   `json:"status"`
    26. 

  26. }
    27. 

  27. 

  28. type StartWireguardRequest struct {
    29. 

  29. 	InterfaceName string `json:"interface_name"`
    30. 

  30. }
    31. 

  31. 

  32. type AddHostRequest struct {
    33. 

  33. 	Target string `json:"target"`
    34. 

  34. }
    35. 

  35. 

  36. type ConfigRenderRequest struct {
    37. 

  37. 	Client       string `json:"client"`
    38. 

  38. 	Server       string `json:"server"`
    39. 

  39. 	OutputToFile bool   `json:"output_to_file"`
    40. 

  40. }
    41. 

  41. 

  42. // Client for building internal Daemon route requests
    43. 

  43. 

  44. func (c *Context) CreateServer(msg daemonproto.SockMessage) daemonproto.SockMessage {
    45. 

  45. 	return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_OK, []byte("Server provisioned and indexed into Semaphore."))
    46. 

  46. 

  47. }
    48. 

  48. 

  49. /*
    50. 

  50. Render the wireguard configuration seed to be used when templating into the config file
    51. 

  51. 

  52. 	:param req: the struct containing the target client/server pair for the configuration
    53. 

  53. */
    54. 

  54. func (c *Context) configSeed(req ConfigRenderRequest) (wg.WireguardTemplateSeed, error) {
    55. 

  55. 	var seed wg.WireguardTemplateSeed
    56. 

  56. 	serverKeypair, err := c.keyring.GetKey(req.Server + "_" + c.Keytags.WgKeypairKeyname())
    57. 

  57. 	if err != nil {
    58. 

  58. 		return seed, err
    59. 

  59. 	}
    60. 

  60. 	clientKeypair, err := c.keyring.GetKey(req.Client + "_" + c.Keytags.WgKeypairKeyname())
    61. 

  61. 	if err != nil {
    62. 

  62. 		return seed, err
    63. 

  63. 	}
    64. 

  64. 	server, err := c.Config.GetServer(req.Server)
    65. 

  65. 	if err != nil {
    66. 

  66. 		return seed, err
    67. 

  67. 	}
    68. 

  68. 	client, err := c.Config.GetClient(req.Client)
    69. 

  69. 	if err != nil {
    70. 

  70. 		return seed, err
    71. 

  71. 	}
    72. 

  72. 	seed = wg.WireguardTemplateSeed{
    73. 

  73. 		VpnClientPrivateKey: clientKeypair.GetSecret(),
    74. 

  74. 		VpnClientAddress:    client.VpnIpv4.String() + "/32",
    75. 

  75. 		Peers: []wg.WireguardTemplatePeer{
    76. 

  76. 			{
    77. 

  77. 				Pubkey:  serverKeypair.GetPublic(),
    78. 

  78. 				Address: server.WanIpv4,
    79. 

  79. 				Port:    c.Config.Service.VpnServerPort,
    80. 

  80. 			},
    81. 

  81. 		}}
    82. 

  82. 	return seed, nil
    83. 

  83. }
    84. 

  84. 

  85. /*
    86. 

  86. wrapping the VPN show configuration function in a route friendly interface
    87. 

  87. 

  88. 	:param msg: a message to parse from the daemon socket
    89. 

  89. */
    90. 

  90. func (c *Context) VpnShowHandler(msg daemonproto.SockMessage) daemonproto.SockMessage {
    91. 

  91. 	var req ConfigRenderRequest
    92. 

  92. 	err := json.Unmarshal(msg.Body, &req)
    93. 

  93. 	if err != nil {
    94. 

  94. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    95. 

  95. 	}
    96. 

  96. 	seed, err := c.configSeed(req)
    97. 

  97. 	if err != nil {
    98. 

  98. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    99. 

  99. 	}
    100. 

  100. 	cfg, err := wg.RenderClientConfiguration(seed)
    101. 

  101. 	if err != nil {
    102. 

  102. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    103. 

  103. 	}
    104. 

  104. 	return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_OK, cfg)
    105. 

  105. }
    106. 

  106. 

  107. /*
    108. 

  108. wrapping the VPN save configuration function in a route friendly interface
    109. 

  109. 

  110. 	:param msg: a message to parse from the daemon socket
    111. 

  111. */
    112. 

  112. func (c *Context) VpnSaveHandler(msg daemonproto.SockMessage) daemonproto.SockMessage {
    113. 

  113. 	var req ConfigRenderRequest
    114. 

  114. 	err := json.Unmarshal(msg.Body, &req)
    115. 

  115. 	if err != nil {
    116. 

  116. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    117. 

  117. 	}
    118. 

  118. 	seed, err := c.configSeed(req)
    119. 

  119. 	if err != nil {
    120. 

  120. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    121. 

  121. 	}
    122. 

  122. 	cfg, err := wg.RenderClientConfiguration(seed)
    123. 

  123. 	if err != nil {
    124. 

  124. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    125. 

  125. 	}
    126. 

  126. 	fpath := path.Join(c.Config.HostInfo.WireguardSavePath, req.Server+".conf")
    127. 

  127. 	err = os.WriteFile(fpath, cfg, 0666)
    128. 

  128. 	if err != nil {
    129. 

  129. 		return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_FAILED, []byte(err.Error()))
    130. 

  130. 	}
    131. 

  131. 	return *daemonproto.NewSockMessage(daemonproto.MsgResponse, daemonproto.REQUEST_OK, []byte("Configuration saved to: "+fpath))
    132. 

  132. }
    133. 

  133. 

  134. type VpnRouter struct {
    135. 

  135. 	routes map[daemonproto.Method]func(daemonproto.SockMessage) daemonproto.SockMessage
    136. 

  136. }
    137. 

  137. 

  138. func (v *VpnRouter) Register(method daemonproto.Method, callable func(daemonproto.SockMessage) daemonproto.SockMessage) {
    139. 

  139. 	v.routes[method] = callable
    140. 

  140. }
    141. 

  141. 

  142. func (v *VpnRouter) Routes() map[daemonproto.Method]func(daemonproto.SockMessage) daemonproto.SockMessage {
    143. 

  143. 	return v.routes
    144. 

  144. }
    145. 

  145. 

  146. func NewVpnRouter() *VpnRouter {
    147. 

  147. 	return &VpnRouter{routes: map[daemonproto.Method]func(daemonproto.SockMessage) daemonproto.SockMessage{}}
    148. 

  148. }
    149.