107 lines
4.1 KiB
JavaScript
107 lines
4.1 KiB
JavaScript
import express from "express";
|
|
import { Permission } from '../database/models.js';
|
|
export const router = express.Router();
|
|
|
|
// Controllers
|
|
import { Login, submitLogin, Logout } from "../controllers/login.js";
|
|
import { Register, submitRegister } from "../controllers/register.js";
|
|
import { Dashboard, DashboardAction, Stats, Chart, SSE, UpdatePermissions } from "../controllers/dashboard.js";
|
|
import { Apps, appSearch, InstallModal, ImportModal, LearnMore, Upload, removeTemplate } from "../controllers/apps.js";
|
|
import { Users } from "../controllers/users.js";
|
|
import { Images } from "../controllers/images.js";
|
|
import { Networks, removeNetwork } from "../controllers/networks.js";
|
|
import { Volumes, addVolume, removeVolume } from "../controllers/volumes.js";
|
|
import { Account } from "../controllers/account.js";
|
|
import { Variables } from "../controllers/variables.js";
|
|
import { Settings } from "../controllers/settings.js";
|
|
import { Supporters, Thanks } from "../controllers/supporters.js";
|
|
import { Syslogs } from "../controllers/syslogs.js";
|
|
import { Install } from "../utils/install.js"
|
|
import { Uninstall } from "../utils/uninstall.js"
|
|
|
|
// Permission Middleware
|
|
const adminOnly = async (req, res, next) => {
|
|
if (req.session.role == 'admin') { next(); }
|
|
else { res.redirect('/dashboard'); }
|
|
}
|
|
|
|
const sessionCheck = async (req, res, next) => {
|
|
if (req.session.user) { next(); }
|
|
else { res.redirect('/login'); }
|
|
}
|
|
|
|
const permissionCheck = async (req, res, next) => {
|
|
if (req.session.role == 'admin') { next(); return; }
|
|
let user = req.session.user;
|
|
let action = req.path.split("/")[2];
|
|
let trigger = req.header('hx-trigger-name');
|
|
const userAction = ['start', 'stop', 'restart', 'pause', 'uninstall', 'upgrade', 'edit', 'logs', 'view'];
|
|
const userPaths = ['card', 'updates', 'hide', 'reset', 'alert'];
|
|
if (userAction.includes(action)) {
|
|
let permission = await Permission.findOne({ where: { containerName: trigger, user: user }, attributes: [`${action}`] });
|
|
if (permission) {
|
|
if (permission[action] == true) {
|
|
console.log(`User ${user} has permission to ${action} ${trigger}`);
|
|
next();
|
|
return;
|
|
}
|
|
else {
|
|
console.log(`User ${user} does not have permission to ${action} ${trigger}`);
|
|
}
|
|
}
|
|
} else if (userPaths.includes(action)) {
|
|
next();
|
|
return;
|
|
}
|
|
}
|
|
|
|
// Utils
|
|
router.post("/install", adminOnly, Install);
|
|
router.post("/uninstall", adminOnly, Uninstall);
|
|
|
|
// Routes
|
|
router.get("/login", Login);
|
|
router.post("/login", submitLogin);
|
|
router.get("/logout", Logout);
|
|
router.get("/register", Register);
|
|
router.post("/register", submitRegister);
|
|
|
|
router.get("/", sessionCheck, Dashboard);
|
|
router.get("/dashboard", sessionCheck, Dashboard);
|
|
router.post("/dashboard/:action", sessionCheck, permissionCheck, DashboardAction);
|
|
router.get("/sse", sessionCheck, SSE);
|
|
router.post("/updatePermissions", adminOnly, UpdatePermissions);
|
|
router.get("/stats", sessionCheck, Stats);
|
|
router.get("/chart", sessionCheck, Chart);
|
|
|
|
router.get("/images", adminOnly, Images);
|
|
router.post("/images/:action", adminOnly, Images);
|
|
|
|
router.get("/volumes", adminOnly, Volumes);
|
|
router.post("/addVolume", adminOnly, addVolume);
|
|
router.post("/removeVolume", adminOnly, removeVolume);
|
|
|
|
router.get("/networks", adminOnly, Networks);
|
|
router.post("/removeNetwork", adminOnly, removeNetwork);
|
|
|
|
router.get("/apps/:page?/:template?", adminOnly, Apps);
|
|
router.post("/apps", adminOnly, appSearch);
|
|
router.get("/remove_template/:template", adminOnly, removeTemplate);
|
|
|
|
router.get("/install_modal", adminOnly, InstallModal)
|
|
router.get("/import_modal", adminOnly, ImportModal)
|
|
router.get("/learn_more", adminOnly, LearnMore)
|
|
router.post("/upload", adminOnly, Upload);
|
|
|
|
router.get("/users", adminOnly, Users);
|
|
router.get("/syslogs", adminOnly, Syslogs);
|
|
|
|
router.get("/variables", adminOnly, Variables);
|
|
router.get("/settings", adminOnly, Settings);
|
|
|
|
|
|
router.get("/account", sessionCheck, Account);
|
|
router.get("/supporters", sessionCheck, Supporters);
|
|
router.post("/thank", sessionCheck, Thanks);
|
|
|