kiwi-vpn/api/kiwi_vpn_api/routers/install.py

129 lines
2.9 KiB
Python
Raw Normal View History

2022-03-16 13:28:15 +00:00
import json
from pathlib import Path
from secrets import token_hex
2022-03-16 00:23:57 +00:00
2022-03-16 14:10:49 +00:00
from fastapi import APIRouter, Depends, HTTPException, status
from peewee import Database
2022-03-15 17:38:24 +00:00
2022-03-16 14:16:56 +00:00
from ..config import BaseConfig
2022-03-16 16:25:03 +00:00
from ..db import (Certificate, DistinguishedName, ORMBaseModel, User,
UserCapability)
2022-03-15 17:38:24 +00:00
router = APIRouter(prefix="/install")
2022-03-16 13:28:15 +00:00
CONFIG_FILE = "tmp/config.json"
async def has_config() -> bool:
return Path(CONFIG_FILE).is_file()
async def load_config() -> BaseConfig:
try:
with open(CONFIG_FILE, "r") as kv:
return BaseConfig.parse_obj(json.load(kv))
except FileNotFoundError:
return BaseConfig()
2022-03-16 00:23:57 +00:00
2022-03-16 14:54:42 +00:00
async def connect_db(config: BaseConfig = Depends(load_config)) -> Database:
db = await config.db.database
db.connect()
return db
async def has_tables(db: Database = Depends(connect_db)) -> bool:
return db.table_exists(User)
2022-03-16 00:23:57 +00:00
@router.get(
"/config",
2022-03-16 00:23:57 +00:00
response_model=BaseConfig,
responses={
2022-03-16 13:28:15 +00:00
status.HTTP_403_FORBIDDEN: {
"description": "Must be admin",
2022-03-16 00:23:57 +00:00
"content": None,
},
},
)
async def get_config(
2022-03-16 13:28:15 +00:00
config: BaseConfig = Depends(load_config),
has_config: bool = Depends(has_config),
2022-03-16 00:23:57 +00:00
):
2022-03-16 13:28:15 +00:00
if has_config:
2022-03-16 14:10:49 +00:00
raise HTTPException(status_code=status.HTTP_403_FORBIDDEN)
2022-03-16 00:23:57 +00:00
2022-03-16 13:28:15 +00:00
return config
2022-03-16 00:23:57 +00:00
@router.put(
"/config",
2022-03-16 00:23:57 +00:00
responses={
status.HTTP_200_OK: {
"content": None,
},
status.HTTP_403_FORBIDDEN: {
"description": "Must be admin",
"content": None,
},
},
)
async def set_config(
2022-03-16 00:23:57 +00:00
config: BaseConfig,
2022-03-16 13:28:15 +00:00
has_config: bool = Depends(has_config),
2022-03-16 00:23:57 +00:00
):
2022-03-16 13:28:15 +00:00
if has_config:
2022-03-16 14:10:49 +00:00
raise HTTPException(status_code=status.HTTP_403_FORBIDDEN)
2022-03-16 00:23:57 +00:00
if config.jwt.secret is None:
config.jwt.secret = token_hex(32)
2022-03-16 16:25:03 +00:00
ORMBaseModel._meta.database.initialize(await connect_db(config))
2022-03-16 14:54:42 +00:00
2022-03-16 13:28:15 +00:00
with open(CONFIG_FILE, "w") as kv:
kv.write(config.json(indent=2))
2022-03-16 00:23:57 +00:00
2022-03-16 14:10:49 +00:00
@router.get("/db", responses={
status.HTTP_200_OK: {
"model": bool,
},
})
2022-03-16 14:10:49 +00:00
async def check_db(
has_tables: bool = Depends(has_tables),
):
return has_tables
2022-03-16 14:10:49 +00:00
@router.put(
"/db",
2022-03-16 00:23:57 +00:00
responses={
status.HTTP_200_OK: {
"content": None,
},
status.HTTP_400_BAD_REQUEST: {
2022-03-16 14:10:49 +00:00
"description": "Database exists",
2022-03-16 00:23:57 +00:00
"content": None,
},
},
2022-03-16 00:23:57 +00:00
)
2022-03-16 14:10:49 +00:00
async def create_db(
admin_name: str,
admin_password: str,
2022-03-16 14:16:56 +00:00
config: BaseConfig = Depends(load_config),
2022-03-16 14:10:49 +00:00
db: Database = Depends(connect_db),
):
if await has_tables(db):
raise HTTPException(status_code=status.HTTP_400_BAD_REQUEST)
2022-03-15 17:38:24 +00:00
2022-03-16 14:10:49 +00:00
db.create_tables([Certificate, DistinguishedName, User, UserCapability])
2022-03-15 17:38:24 +00:00
2022-03-16 14:16:56 +00:00
cryptContext = await config.crypto.cryptContext
2022-03-16 14:10:49 +00:00
admin = User.create(
name=admin_name,
2022-03-16 14:16:56 +00:00
password=cryptContext.hash(admin_password),
2022-03-16 14:10:49 +00:00
)
2022-03-15 17:38:24 +00:00
UserCapability.create(user=admin, capability="admin")