DweebUI/router/index.js

import express from "express";
import { Permission } from '../database/models.js';
export const router = express.Router();

// Controllers
import { Login, submitLogin, Logout } from "../controllers/login.js";
import { Register, submitRegister } from "../controllers/register.js";
import { Dashboard, DashboardAction, Stats, Chart, SSE, UpdatePermissions } from "../controllers/dashboard.js";
import { Apps, appSearch, InstallModal, ImportModal, LearnMore, Upload } from "../controllers/apps.js";
import { Users } from "../controllers/users.js";
import { Images } from "../controllers/images.js";
import { Networks, removeNetwork } from "../controllers/networks.js";
import { Volumes, removeVolume } from "../controllers/volumes.js";
import { Account } from "../controllers/account.js";
import { Variables } from "../controllers/variables.js";
import { Settings } from "../controllers/settings.js";
import { Supporters, Thanks } from "../controllers/supporters.js";
import { Syslogs } from "../controllers/syslogs.js";
import { Install } from "../utils/install.js"
import { Uninstall } from "../utils/uninstall.js"

// Permission Middleware
const adminOnly = async (req, res, next) => {
    if (req.session.role == 'admin') { next(); } 
    else { res.redirect('/dashboard'); }
}

const sessionCheck = async (req, res, next) => {
    if (req.session.user) { next(); }
    else { res.redirect('/login'); }
}

const permissionCheck = async (req, res, next) => {
    if (req.session.role == 'admin') { next(); return; }
    let user = req.session.user;
    let action = req.path.split("/")[2];
    let trigger = req.header('hx-trigger-name');
    const userAction = ['start', 'stop', 'restart', 'pause', 'uninstall', 'upgrade', 'edit', 'logs', 'view'];
    const userPaths = ['card', 'updates', 'hide', 'reset', 'alert'];
    if (userAction.includes(action)) {
        let permission = await Permission.findOne({ where: { containerName: trigger, user: user }, attributes: [`${action}`] });
        if (permission) { 
            if (permission[action] == true) {
                console.log(`User ${user} has permission to ${action} ${trigger}`);
                next();
                return;
            }
            else {
                console.log(`User ${user} does not have permission to ${action} ${trigger}`);
            }
        }
    } else if (userPaths.includes(action)) {
        next();
        return;
    }
}

// Utils
router.post("/install", adminOnly, Install);
router.post("/uninstall", adminOnly, Uninstall);

// Routes
router.get("/login", Login);
router.post("/login", submitLogin);
router.get("/logout", Logout);
router.get("/register", Register);
router.post("/register", submitRegister);  

router.get("/", sessionCheck, Dashboard);
router.get("/dashboard", sessionCheck, Dashboard);
router.post("/dashboard/:action", sessionCheck, permissionCheck, DashboardAction);
router.get("/sse", sessionCheck, SSE);
router.post("/updatePermissions", adminOnly, UpdatePermissions);
router.get("/stats", sessionCheck, Stats);
router.get("/chart", sessionCheck, Chart);

router.get("/images", adminOnly, Images);
router.post("/images/:action", adminOnly, Images);

router.get("/volumes", adminOnly, Volumes);
router.post("/removeVolume", adminOnly, removeVolume);

router.get("/networks", adminOnly, Networks);
router.post("/removeNetwork", adminOnly, removeNetwork);

router.get("/apps/:page?/:template?", adminOnly, Apps);
router.post("/apps", adminOnly, appSearch);

router.get("/install_modal", adminOnly, InstallModal)
router.get("/import_modal", adminOnly, ImportModal)
router.get("/learn_more", adminOnly, LearnMore)
router.post("/upload", adminOnly, Upload);

router.get("/users", adminOnly, Users);
router.get("/syslogs", adminOnly, Syslogs);

router.get("/variables", adminOnly, Variables);
router.get("/settings", adminOnly, Settings);


router.get("/account", sessionCheck, Account);
router.get("/supporters", sessionCheck, Supporters);
router.post("/thank", sessionCheck, Thanks);