DweebUI/router/index.js

import express from "express";
import { Permission } from '../database/models.js';
export const router = express.Router();

// Controllers
import { Login, submitLogin, Logout } from "../controllers/login.js";
import { Register, submitRegister } from "../controllers/register.js";
import { Dashboard, DashboardAction, Stats, Chart, SSE, UpdatePermissions } from "../controllers/dashboard.js";
import { Apps, appSearch, InstallModal, ImportModal, LearnMore, Upload, removeTemplate } from "../controllers/apps.js";
import { Users } from "../controllers/users.js";
import { Images } from "../controllers/images.js";
import { Networks, removeNetwork } from "../controllers/networks.js";
import { Volumes, addVolume, removeVolume } from "../controllers/volumes.js";
import { Account } from "../controllers/account.js";
import { Variables } from "../controllers/variables.js";
import { Settings } from "../controllers/settings.js";
import { Supporters, Thanks } from "../controllers/supporters.js";
import { Syslogs } from "../controllers/syslogs.js";
import { Install } from "../utils/install.js"
import { Uninstall } from "../utils/uninstall.js"

// Permission Middleware
const adminOnly = async (req, res, next) => {
    if (req.session.role == 'admin') { next(); } 
    else { res.redirect('/dashboard'); }
}

const sessionCheck = async (req, res, next) => {
    if (req.session.user) { next(); }
    else { res.redirect('/login'); }
}

const permissionCheck = async (req, res, next) => {
    if (req.session.role == 'admin') { next(); return; }
    let user = req.session.user;
    let action = req.path.split("/")[2];
    let trigger = req.header('hx-trigger-name');
    const userAction = ['start', 'stop', 'restart', 'pause', 'uninstall', 'upgrade', 'edit', 'logs', 'view'];
    const userPaths = ['card', 'updates', 'hide', 'reset', 'alert'];
    if (userAction.includes(action)) {
        let permission = await Permission.findOne({ where: { containerName: trigger, user: user }, attributes: [`${action}`] });
        if (permission) { 
            if (permission[action] == true) {
                console.log(`User ${user} has permission to ${action} ${trigger}`);
                next();
                return;
            }
            else {
                console.log(`User ${user} does not have permission to ${action} ${trigger}`);
            }
        }
    } else if (userPaths.includes(action)) {
        next();
        return;
    }
}

// Utils
router.post("/install", adminOnly, Install);
router.post("/uninstall", adminOnly, Uninstall);

// Routes
router.get("/login", Login);
router.post("/login", submitLogin);
router.get("/logout", Logout);
router.get("/register", Register);
router.post("/register", submitRegister);  

router.get("/", sessionCheck, Dashboard);
router.get("/dashboard", sessionCheck, Dashboard);
router.post("/dashboard/:action", sessionCheck, permissionCheck, DashboardAction);
router.get("/sse", sessionCheck, SSE);
router.post("/updatePermissions", adminOnly, UpdatePermissions);
router.get("/stats", sessionCheck, Stats);
router.get("/chart", sessionCheck, Chart);

router.get("/images", adminOnly, Images);
router.post("/images/:action", adminOnly, Images);

router.get("/volumes", adminOnly, Volumes);
router.post("/addVolume", adminOnly, addVolume);
router.post("/removeVolume", adminOnly, removeVolume);

router.get("/networks", adminOnly, Networks);
router.post("/removeNetwork", adminOnly, removeNetwork);

router.get("/apps/:page?/:template?", adminOnly, Apps);
router.post("/apps", adminOnly, appSearch);
router.get("/remove_template/:template", adminOnly, removeTemplate);

router.get("/install_modal", adminOnly, InstallModal)
router.get("/import_modal", adminOnly, ImportModal)
router.get("/learn_more", adminOnly, LearnMore)
router.post("/upload", adminOnly, Upload);

router.get("/users", adminOnly, Users);
router.get("/syslogs", adminOnly, Syslogs);

router.get("/variables", adminOnly, Variables);
router.get("/settings", adminOnly, Settings);


router.get("/account", sessionCheck, Account);
router.get("/supporters", sessionCheck, Supporters);
router.post("/thank", sessionCheck, Thanks);
The rewrite. v0.20 2024-01-08 02:29:56 +00:00			`import express from "express";`
mostly working permission system. 2024-03-27 03:38:57 +00:00			`import { Permission } from '../database/models.js';`
re-implemented the install and uninstall functions 2024-01-12 07:43:58 +00:00			`export const router = express.Router();`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00
Portal page for regular users. Fix apps.js submit. 2024-01-11 05:31:13 +00:00			`// Controllers`
merged logout with login.js. Fixed app search. 2024-01-12 01:51:26 +00:00			`import { Login, submitLogin, Logout } from "../controllers/login.js";`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00			`import { Register, submitRegister } from "../controllers/register.js";`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`import { Dashboard, DashboardAction, Stats, Chart, SSE, UpdatePermissions } from "../controllers/dashboard.js";`
added option to remove template 2024-05-19 09:31:21 +00:00			`import { Apps, appSearch, InstallModal, ImportModal, LearnMore, Upload, removeTemplate } from "../controllers/apps.js";`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00			`import { Users } from "../controllers/users.js";`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`import { Images } from "../controllers/images.js";`
working 'remove' on images and networks pages 2024-02-07 09:42:20 +00:00			`import { Networks, removeNetwork } from "../controllers/networks.js";`
functioning 'new volume' modal 2024-05-30 07:58:19 +00:00			`import { Volumes, addVolume, removeVolume } from "../controllers/volumes.js";`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00			`import { Account } from "../controllers/account.js";`
localized htmx. fixed images/volumes/networks added hidden checkbox so forms always return an array 2024-02-08 02:13:44 +00:00			`import { Variables } from "../controllers/variables.js";`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00			`import { Settings } from "../controllers/settings.js";`
moved routes into dashboard.js 2024-02-14 09:45:29 +00:00			`import { Supporters, Thanks } from "../controllers/supporters.js";`
Portal page for regular users. Fix apps.js submit. 2024-01-11 05:31:13 +00:00			`import { Syslogs } from "../controllers/syslogs.js";`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`import { Install } from "../utils/install.js"`
			`import { Uninstall } from "../utils/uninstall.js"`
mostly working permission system. 2024-03-27 03:38:57 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`// Permission Middleware`
			`const adminOnly = async (req, res, next) => {`
			`if (req.session.role == 'admin') { next(); }`
			`else { res.redirect('/dashboard'); }`
			`}`
updated router. email no longer case sensitive. 2024-04-01 22:08:02 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`const sessionCheck = async (req, res, next) => {`
			`if (req.session.user) { next(); }`
			`else { res.redirect('/login'); }`
			`}`
updated router. email no longer case sensitive. 2024-04-01 22:08:02 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`const permissionCheck = async (req, res, next) => {`
Multi-user dashboard 2024-05-03 08:13:24 +00:00			`if (req.session.role == 'admin') { next(); return; }`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`let user = req.session.user;`
Improved UI for apps.js and new template import 2024-04-14 21:56:01 +00:00			`let action = req.path.split("/")[2];`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`let trigger = req.header('hx-trigger-name');`
Multi-user dashboard 2024-05-03 08:13:24 +00:00			`const userAction = ['start', 'stop', 'restart', 'pause', 'uninstall', 'upgrade', 'edit', 'logs', 'view'];`
Added Install Alerts 2024-05-04 08:18:51 +00:00			`const userPaths = ['card', 'updates', 'hide', 'reset', 'alert'];`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`if (userAction.includes(action)) {`
Improved UI for apps.js and new template import 2024-04-14 21:56:01 +00:00			let permission = await Permission.findOne({ where: { containerName: trigger, user: user }, attributes: [`${action}`] });
First draft of permissions system 2024-04-23 02:20:13 +00:00			`if (permission) {`
Improved UI for apps.js and new template import 2024-04-14 21:56:01 +00:00			`if (permission[action] == true) {`
			console.log(`User ${user} has permission to ${action} ${trigger}`);
			`next();`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`return;`
Improved UI for apps.js and new template import 2024-04-14 21:56:01 +00:00			`}`
			`else {`
			console.log(`User ${user} does not have permission to ${action} ${trigger}`);
			`}`
			`}`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`} else if (userPaths.includes(action)) {`
			`next();`
			`return;`
Improved UI for apps.js and new template import 2024-04-14 21:56:01 +00:00			`}`
mostly working permission system. 2024-03-27 03:38:57 +00:00			`}`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`// Utils`
			`router.post("/install", adminOnly, Install);`
			`router.post("/uninstall", adminOnly, Uninstall);`
updated dependencies and updated router auth 2024-03-31 21:37:00 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`// Routes`
			`router.get("/login", Login);`
			`router.post("/login", submitLogin);`
			`router.get("/logout", Logout);`
			`router.get("/register", Register);`
			`router.post("/register", submitRegister);`
updated dependencies and updated router auth 2024-03-31 21:37:00 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/", sessionCheck, Dashboard);`
			`router.get("/dashboard", sessionCheck, Dashboard);`
Multi-user dashboard 2024-05-03 08:13:24 +00:00			`router.post("/dashboard/:action", sessionCheck, permissionCheck, DashboardAction);`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/sse", sessionCheck, SSE);`
			`router.post("/updatePermissions", adminOnly, UpdatePermissions);`
			`router.get("/stats", sessionCheck, Stats);`
			`router.get("/chart", sessionCheck, Chart);`
updated dependencies and updated router auth 2024-03-31 21:37:00 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/images", adminOnly, Images);`
			`router.post("/images/:action", adminOnly, Images);`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/volumes", adminOnly, Volumes);`
functioning 'new volume' modal 2024-05-30 07:58:19 +00:00			`router.post("/addVolume", adminOnly, addVolume);`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.post("/removeVolume", adminOnly, removeVolume);`
The rewrite. v0.20 2024-01-08 02:29:56 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/networks", adminOnly, Networks);`
			`router.post("/removeNetwork", adminOnly, removeNetwork);`
moved routes into dashboard.js 2024-02-14 09:45:29 +00:00
Multi-user dashboard 2024-05-03 08:13:24 +00:00			`router.get("/apps/:page?/:template?", adminOnly, Apps);`
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.post("/apps", adminOnly, appSearch);`
added option to remove template 2024-05-19 09:31:21 +00:00			`router.get("/remove_template/:template", adminOnly, removeTemplate);`
Multi-user dashboard 2024-05-03 08:13:24 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/install_modal", adminOnly, InstallModal)`
			`router.get("/import_modal", adminOnly, ImportModal)`
			`router.get("/learn_more", adminOnly, LearnMore)`
			`router.post("/upload", adminOnly, Upload);`
Portal page for regular users. Fix apps.js submit. 2024-01-11 05:31:13 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/users", adminOnly, Users);`
			`router.get("/syslogs", adminOnly, Syslogs);`
Improved dashboard controller and router. removed console.log()s. 2024-02-19 02:23:20 +00:00
First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/variables", adminOnly, Variables);`
			`router.get("/settings", adminOnly, Settings);`
working 'remove' on images and networks pages 2024-02-07 09:42:20 +00:00

First draft of permissions system 2024-04-23 02:20:13 +00:00			`router.get("/account", sessionCheck, Account);`
			`router.get("/supporters", sessionCheck, Supporters);`
			`router.post("/thank", sessionCheck, Thanks);`
Updates to permissions modal 2024-03-24 21:09:53 +00:00