wg-portal/internal/app/app.go

package app

import (
	"context"
	"errors"
	"fmt"
	"time"

	"github.com/h44z/wg-portal/internal/config"
	"github.com/h44z/wg-portal/internal/domain"
	"github.com/sirupsen/logrus"
	evbus "github.com/vardius/message-bus"
)

type App struct {
	Config *config.Config
	bus    evbus.MessageBus

	Authenticator
	UserManager
	WireGuardManager
	StatisticsCollector
	ConfigFileManager
	MailManager
	ApiV1Manager
}

func New(
	cfg *config.Config,
	bus evbus.MessageBus,
	authenticator Authenticator,
	users UserManager,
	wireGuard WireGuardManager,
	stats StatisticsCollector,
	cfgFiles ConfigFileManager,
	mailer MailManager,
) (*App, error) {

	a := &App{
		Config: cfg,
		bus:    bus,

		Authenticator:       authenticator,
		UserManager:         users,
		WireGuardManager:    wireGuard,
		StatisticsCollector: stats,
		ConfigFileManager:   cfgFiles,
		MailManager:         mailer,
	}

	startupContext, cancel := context.WithTimeout(context.Background(), 30*time.Second)
	defer cancel()

	// Switch to admin user context
	startupContext = domain.SetUserInfo(startupContext, domain.SystemAdminContextUserInfo())

	if err := a.createDefaultUser(startupContext); err != nil {
		return nil, fmt.Errorf("failed to create default user: %w", err)
	}

	if err := a.importNewInterfaces(startupContext); err != nil {
		return nil, fmt.Errorf("failed to import new interfaces: %w", err)
	}

	if err := a.restoreInterfaceState(startupContext); err != nil {
		return nil, fmt.Errorf("failed to restore interface state: %w", err)
	}

	return a, nil
}

func (a *App) Startup(ctx context.Context) error {

	a.UserManager.StartBackgroundJobs(ctx)
	a.StatisticsCollector.StartBackgroundJobs(ctx)
	a.WireGuardManager.StartBackgroundJobs(ctx)

	return nil
}

func (a *App) importNewInterfaces(ctx context.Context) error {
	if !a.Config.Core.ImportExisting {
		logrus.Trace("skipping interface import - feature disabled")
		return nil // feature disabled
	}

	importedCount, err := a.ImportNewInterfaces(ctx)
	if err != nil {
		return err
	}

	if importedCount > 0 {
		logrus.Infof("%d new interfaces imported", importedCount)
	}
	return nil
}

func (a *App) restoreInterfaceState(ctx context.Context) error {
	if !a.Config.Core.RestoreState {
		logrus.Trace("skipping interface state restore - feature disabled")
		return nil // feature disabled
	}

	err := a.RestoreInterfaceState(ctx, true)
	if err != nil {
		return err
	}

	logrus.Info("interface state restored")
	return nil
}

func (a *App) createDefaultUser(ctx context.Context) error {
	adminUserId := domain.UserIdentifier(a.Config.Core.AdminUser)
	if adminUserId == "" {
		logrus.Trace("skipping default user creation - admin user is blank")
		return nil // empty admin user - do not create
	}

	_, err := a.GetUser(ctx, adminUserId)
	if err != nil && !errors.Is(err, domain.ErrNotFound) {
		return err
	}
	if err == nil {
		logrus.Trace("skipping default user creation - admin user already exists")
		return nil // admin user already exists
	}

	now := time.Now()
	defaultAdmin := &domain.User{
		BaseModel: domain.BaseModel{
			CreatedBy: domain.CtxSystemAdminId,
			UpdatedBy: domain.CtxSystemAdminId,
			CreatedAt: now,
			UpdatedAt: now,
		},
		Identifier:      adminUserId,
		Email:           "admin@wgportal.local",
		Source:          domain.UserSourceDatabase,
		ProviderName:    "",
		IsAdmin:         true,
		Firstname:       "WireGuard Portal",
		Lastname:        "Admin",
		Phone:           "",
		Department:      "",
		Notes:           "default administrator user",
		Password:        domain.PrivateString(a.Config.Core.AdminPassword),
		Disabled:        nil,
		DisabledReason:  "",
		Locked:          nil,
		LockedReason:    "",
		LinkedPeerCount: 0,
	}
	if a.Config.Core.AdminApiToken != "" {
		if len(a.Config.Core.AdminApiToken) < 18 {
			logrus.Warnf("[SECURITY WARNING] admin API token is too short, should be at least 18 characters long")
		}
		defaultAdmin.ApiToken = a.Config.Core.AdminApiToken
		defaultAdmin.ApiTokenCreated = &now
	}

	admin, err := a.CreateUser(ctx, defaultAdmin)
	if err != nil {
		return err
	}

	logrus.Infof("admin user %s created", admin.Identifier)

	return nil
}
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`package app`

			`import (`
			`"context"`
			`"errors"`
			`"fmt"`
Brought into working condition for LDAP authentication. 2024-02-29 04:17:17 +00:00			`"time"`

V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`"github.com/h44z/wg-portal/internal/config"`
			`"github.com/h44z/wg-portal/internal/domain"`
			`"github.com/sirupsen/logrus"`
			`evbus "github.com/vardius/message-bus"`
			`)`

			`type App struct {`
			`Config *config.Config`
			`bus evbus.MessageBus`

			`Authenticator`
			`UserManager`
			`WireGuardManager`
			`StatisticsCollector`
			`ConfigFileManager`
			`MailManager`
API - CRUD for peers, interfaces and users (#340) Public REST API implementation to handle peers, interfaces and users. It also includes some simple provisioning endpoints. The Swagger API documentation is available under /api/v1/doc.html 2025-01-11 17:44:55 +00:00			`ApiV1Manager`
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`}`

API - CRUD for peers, interfaces and users (#340) Public REST API implementation to handle peers, interfaces and users. It also includes some simple provisioning endpoints. The Swagger API documentation is available under /api/v1/doc.html 2025-01-11 17:44:55 +00:00			`func New(`
			`cfg *config.Config,`
			`bus evbus.MessageBus,`
			`authenticator Authenticator,`
			`users UserManager,`
			`wireGuard WireGuardManager,`
			`stats StatisticsCollector,`
			`cfgFiles ConfigFileManager,`
			`mailer MailManager,`
			`) (*App, error) {`
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00
			`a := &App{`
			`Config: cfg,`
			`bus: bus,`

			`Authenticator: authenticator,`
			`UserManager: users,`
			`WireGuardManager: wireGuard,`
			`StatisticsCollector: stats,`
			`ConfigFileManager: cfgFiles,`
			`MailManager: mailer,`
			`}`

			`startupContext, cancel := context.WithTimeout(context.Background(), 30*time.Second)`
			`defer cancel()`

			`// Switch to admin user context`
			`startupContext = domain.SetUserInfo(startupContext, domain.SystemAdminContextUserInfo())`

			`if err := a.createDefaultUser(startupContext); err != nil {`
			`return nil, fmt.Errorf("failed to create default user: %w", err)`
			`}`

			`if err := a.importNewInterfaces(startupContext); err != nil {`
			`return nil, fmt.Errorf("failed to import new interfaces: %w", err)`
			`}`

			`if err := a.restoreInterfaceState(startupContext); err != nil {`
			`return nil, fmt.Errorf("failed to restore interface state: %w", err)`
			`}`

			`return a, nil`
			`}`

			`func (a *App) Startup(ctx context.Context) error {`
API - CRUD for peers, interfaces and users (#340) Public REST API implementation to handle peers, interfaces and users. It also includes some simple provisioning endpoints. The Swagger API documentation is available under /api/v1/doc.html 2025-01-11 17:44:55 +00:00
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`a.UserManager.StartBackgroundJobs(ctx)`
			`a.StatisticsCollector.StartBackgroundJobs(ctx)`
			`a.WireGuardManager.StartBackgroundJobs(ctx)`

			`return nil`
			`}`

			`func (a *App) importNewInterfaces(ctx context.Context) error {`
			`if !a.Config.Core.ImportExisting {`
			`logrus.Trace("skipping interface import - feature disabled")`
			`return nil // feature disabled`
			`}`

			`importedCount, err := a.ImportNewInterfaces(ctx)`
			`if err != nil {`
			`return err`
			`}`

			`if importedCount > 0 {`
			`logrus.Infof("%d new interfaces imported", importedCount)`
			`}`
			`return nil`
			`}`

			`func (a *App) restoreInterfaceState(ctx context.Context) error {`
			`if !a.Config.Core.RestoreState {`
			`logrus.Trace("skipping interface state restore - feature disabled")`
			`return nil // feature disabled`
			`}`

			`err := a.RestoreInterfaceState(ctx, true)`
			`if err != nil {`
			`return err`
			`}`

			`logrus.Info("interface state restored")`
			`return nil`
			`}`

			`func (a *App) createDefaultUser(ctx context.Context) error {`
			`adminUserId := domain.UserIdentifier(a.Config.Core.AdminUser)`
			`if adminUserId == "" {`
			`logrus.Trace("skipping default user creation - admin user is blank")`
			`return nil // empty admin user - do not create`
			`}`

			`_, err := a.GetUser(ctx, adminUserId)`
			`if err != nil && !errors.Is(err, domain.ErrNotFound) {`
			`return err`
			`}`
			`if err == nil {`
			`logrus.Trace("skipping default user creation - admin user already exists")`
			`return nil // admin user already exists`
			`}`

			`now := time.Now()`
automatic API access for default admin (#357) 2025-02-07 21:42:48 +00:00			`defaultAdmin := &domain.User{`
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`BaseModel: domain.BaseModel{`
code cleanup 2025-01-11 21:56:25 +00:00			`CreatedBy: domain.CtxSystemAdminId,`
			`UpdatedBy: domain.CtxSystemAdminId,`
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`CreatedAt: now,`
			`UpdatedAt: now,`
			`},`
			`Identifier: adminUserId,`
			`Email: "admin@wgportal.local",`
			`Source: domain.UserSourceDatabase,`
			`ProviderName: "",`
			`IsAdmin: true,`
			`Firstname: "WireGuard Portal",`
			`Lastname: "Admin",`
			`Phone: "",`
			`Department: "",`
			`Notes: "default administrator user",`
			`Password: domain.PrivateString(a.Config.Core.AdminPassword),`
			`Disabled: nil,`
			`DisabledReason: "",`
			`Locked: nil,`
			`LockedReason: "",`
			`LinkedPeerCount: 0,`
automatic API access for default admin (#357) 2025-02-07 21:42:48 +00:00			`}`
			`if a.Config.Core.AdminApiToken != "" {`
			`if len(a.Config.Core.AdminApiToken) < 18 {`
			`logrus.Warnf("[SECURITY WARNING] admin API token is too short, should be at least 18 characters long")`
			`}`
			`defaultAdmin.ApiToken = a.Config.Core.AdminApiToken`
			`defaultAdmin.ApiTokenCreated = &now`
			`}`

			`admin, err := a.CreateUser(ctx, defaultAdmin)`
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`if err != nil {`
			`return err`
			`}`

			`logrus.Infof("admin user %s created", admin.Identifier)`

			`return nil`
			`}`