134 lines
5.8 KiB
C#
134 lines
5.8 KiB
C#
using System;
|
|
using System.Collections.Generic;
|
|
using System.IO;
|
|
using System.Net;
|
|
using System.Text;
|
|
using BlubbFish.Utils;
|
|
using BlubbFish.Utils.IoT.Bots;
|
|
using LitJson;
|
|
|
|
namespace Fraunhofer.Fit.IoT.LoraMap.Model.Admin {
|
|
class AdminModel {
|
|
public delegate void AdminEvent(Object sender, EventArgs e);
|
|
public event AdminEvent NamesUpdate;
|
|
public event AdminEvent GeoUpdate;
|
|
public event AdminEvent SettingsUpdate;
|
|
|
|
private readonly Dictionary<Int64, AdminSession> session = new Dictionary<Int64, AdminSession>();
|
|
private readonly Dictionary<String, String> settings;
|
|
|
|
public AdminModel(Dictionary<String, String> settings) {
|
|
this.settings = settings;
|
|
if(!settings.ContainsKey("admin_user") || !settings.ContainsKey("admin_pass")) {
|
|
Helper.WriteError("Kann die Einstellungen [webserver] admin_user und admin_pass nicht laden!");
|
|
throw new FileNotFoundException("Kann die Einstellungen [webserver] admin_user und admin_pass nicht laden!");
|
|
}
|
|
}
|
|
|
|
public Boolean ParseReuqest(HttpListenerContext cont) =>
|
|
cont.Request.Url.PathAndQuery == "/admin/login" ? this.Login(cont) :
|
|
!this.CheckAuth(cont) ? false :
|
|
cont.Request.Url.PathAndQuery.StartsWith("/admin/get_json_") ? this.GetJsonFiles(cont) :
|
|
cont.Request.Url.PathAndQuery.StartsWith("/admin/set_json_") ? this.SetJsonFiles(cont) :
|
|
Webserver.SendFileResponse(cont);
|
|
|
|
private Boolean SetJsonFiles(HttpListenerContext cont) =>
|
|
cont.Request.Url.PathAndQuery == "/admin/set_json_names" ? this.SetJsonFile(cont, "names.json", this.NamesUpdate) :
|
|
cont.Request.Url.PathAndQuery == "/admin/set_json_geo" ? this.SetJsonFile(cont, "geo.json", this.GeoUpdate) :
|
|
cont.Request.Url.PathAndQuery == "/admin/set_json_settings" ? this.SetJsonFile(cont, "settings.json", this.SettingsUpdate) :
|
|
false;
|
|
|
|
private Boolean SetJsonFile(HttpListenerContext cont, String filename, AdminEvent updatenotifier) {
|
|
StreamReader reader = new StreamReader(cont.Request.InputStream, cont.Request.ContentEncoding);
|
|
String rawData = reader.ReadToEnd();
|
|
cont.Request.InputStream.Close();
|
|
reader.Close();
|
|
try {
|
|
_ = JsonMapper.ToObject(rawData);
|
|
} catch (Exception) {
|
|
Helper.WriteError("501 - Error recieving " + filename + ", no valid json " + cont.Request.Url.PathAndQuery);
|
|
cont.Response.StatusCode = 501;
|
|
return false;
|
|
}
|
|
File.WriteAllText("json/"+ filename, rawData);
|
|
Console.WriteLine("200 - Post " + filename + " " + cont.Request.Url.PathAndQuery);
|
|
updatenotifier?.Invoke(this, new EventArgs());
|
|
return true;
|
|
}
|
|
|
|
private Boolean GetJsonFiles(HttpListenerContext cont) =>
|
|
cont.Request.Url.PathAndQuery == "/admin/get_json_names" ? this.GetJsonFile(cont, "names.json") :
|
|
cont.Request.Url.PathAndQuery == "/admin/get_json_geo" ? this.GetJsonFile(cont, "geo.json") :
|
|
cont.Request.Url.PathAndQuery == "/admin/get_json_settings" ? this.GetJsonFile(cont, "settings.json") :
|
|
false;
|
|
|
|
private Boolean GetJsonFile(HttpListenerContext cont, String filename) {
|
|
String file = File.ReadAllText("json/" + filename);
|
|
Byte[] buf = Encoding.UTF8.GetBytes(file);
|
|
cont.Response.ContentLength64 = buf.Length;
|
|
cont.Response.OutputStream.Write(buf, 0, buf.Length);
|
|
Console.WriteLine("200 - Send names.json " + cont.Request.Url.PathAndQuery);
|
|
return true;
|
|
}
|
|
|
|
private Boolean Login(HttpListenerContext cont) {
|
|
Dictionary<String, String> POST = Webserver.GetPostParams(cont.Request);
|
|
if(POST.ContainsKey("user") && POST["user"] == this.settings["admin_user"] && POST.ContainsKey("pass") && POST["pass"] == this.settings["admin_pass"]) {
|
|
Int64 sessionid;
|
|
while(true) {
|
|
sessionid = AdminSession.GetRandomSessionid();
|
|
if(!this.session.ContainsKey(sessionid)) {
|
|
break;
|
|
}
|
|
}
|
|
if(cont.Request.Cookies["loramapsession"] != null) {
|
|
if(Int64.TryParse(cont.Request.Cookies["loramapsession"].Value, out Int64 cookiesessionid)) {
|
|
if(this.session.ContainsKey(cookiesessionid)) {
|
|
if(!this.session[sessionid].IsLoggedin) {
|
|
sessionid = cookiesessionid;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
if(!this.session.ContainsKey(sessionid)) {
|
|
this.session.Add(sessionid, new AdminSession());
|
|
}
|
|
this.session[sessionid].IsLoggedin = true;
|
|
cont.Response.AppendCookie(new Cookie("loramapsession", sessionid.ToString()) {
|
|
Expires = DateTime.Now.AddYears(1)
|
|
});
|
|
cont.Response.AddHeader("Location", "/admin");
|
|
cont.Response.StatusCode = 307;
|
|
Console.WriteLine("200 - Login OK! " + cont.Request.Url.PathAndQuery);
|
|
return true;
|
|
}
|
|
cont.Response.AddHeader("Location", "/admin/login.html");
|
|
cont.Response.StatusCode = 307;
|
|
Helper.WriteError("307 - Login WRONG! " + cont.Request.Url.PathAndQuery);
|
|
return false;
|
|
}
|
|
|
|
private Boolean CheckAuth(HttpListenerContext cont) {
|
|
#if DEBUG
|
|
Helper.WriteError("200 - AUTH-Bypassed!");
|
|
return true;
|
|
#else
|
|
if(cont.Request.Url.PathAndQuery.StartsWith("/admin/login.html")) {
|
|
return true;
|
|
} else {
|
|
if(cont.Request.Cookies["loramapsession"] != null) {
|
|
if(Int64.TryParse(cont.Request.Cookies["loramapsession"].Value, out Int64 sessionid)) {
|
|
if(this.session.ContainsKey(sessionid)) {
|
|
return this.session[sessionid].IsLoggedin;
|
|
}
|
|
}
|
|
}
|
|
cont.Response.StatusCode = 403;
|
|
Helper.WriteError("403 - " + cont.Request.Url.PathAndQuery);
|
|
}
|
|
return false;
|
|
#endif
|
|
}
|
|
}
|
|
}
|