package service import ( "bytes" "errors" "fmt" "github.com/IceWhaleTech/CasaOS/pkg/config" command2 "github.com/IceWhaleTech/CasaOS/pkg/utils/command" httper2 "github.com/IceWhaleTech/CasaOS/pkg/utils/httper" "github.com/IceWhaleTech/CasaOS/pkg/zerotier" "github.com/PuerkitoBio/goquery" "github.com/tidwall/gjson" "io/ioutil" "math/rand" "net/http" "strconv" "strings" "time" ) type ZeroTierService interface { GetToken(username, pwd string) string ZeroTierRegister(email, lastName, firstName, password string) string ZeroTierNetworkList(token string) (interface{}, []string) ZeroTierJoinNetwork(networkId string) ZeroTierLeaveNetwork(networkId string) ZeroTierGetInfo(token, id string) (interface{}, []string) ZeroTierGetStatus(token string) interface{} EditNetwork(token string, data string, id string) interface{} CreateNetwork(token string) interface{} MemberList(token string, id string) interface{} EditNetworkMember(token string, data string, id, mId string) interface{} DeleteMember(token string, id, mId string) interface{} DeleteNetwork(token, id string) interface{} GetJoinNetworks() string } type zerotierStruct struct { } var client http.Client func (c *zerotierStruct) ZeroTierJoinNetwork(networkId string) { command2.OnlyExec(`zerotier-cli join ` + networkId) } func (c *zerotierStruct) ZeroTierLeaveNetwork(networkId string) { command2.OnlyExec(`zerotier-cli leave ` + networkId) } //登录并获取token func (c *zerotierStruct) GetToken(username, pwd string) string { if len(config.ZeroTierInfo.Token) > 0 { return config.ZeroTierInfo.Token } else { return LoginGetToken(username, pwd) } } func (c *zerotierStruct) ZeroTierRegister(email, lastName, firstName, password string) string { url := "https://accounts.zerotier.com/auth/realms/zerotier/protocol/openid-connect/registrations?client_id=zt-central&redirect_uri=https%3A%2F%2Fmy.zerotier.com%2Fapi%2F_auth%2Foidc%2Fcallback&response_type=code&scope=openid+profile+email+offline_access&state=state" action, cookies, _ := ZeroTierGet(url, nil, 4) var buff bytes.Buffer buff.WriteString("email=") buff.WriteString(email) buff.WriteString("&password=") buff.WriteString(password) buff.WriteString("&password-confirm=") buff.WriteString(password) buff.WriteString("&user.attributes.marketingOptIn=true") buff.WriteString("&firstName") buff.WriteString(firstName) buff.WriteString("&lastName") buff.WriteString(lastName) action, errInfo, _ := ZeroTierPost(buff, action, cookies, false) if len(errInfo) > 0 { return errInfo } action, _, _ = ZeroTierGet(action, cookies, 5) return "" } //固定请求head func GetHead() map[string]string { var head = make(map[string]string, 4) head["Accept"] = "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8" head["Accept-Language"] = "zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3" head["Connection"] = "keep-alive" head["User-Agent"] = "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" return head } //登录并获取token,会出现账号密码错误,和邮箱未验证情况,目前未出现其他情况 func LoginGetToken(username, pwd string) string { //拿到登录的action var loginUrl = "https://accounts.zerotier.com/auth/realms/zerotier/protocol/openid-connect/auth?client_id=zt-central&redirect_uri=https%3A%2F%2Fmy.zerotier.com%2Fapi%2F_auth%2Foidc%2Fcallback&response_type=code&scope=openid+profile+email+offline_access&state=states" action, cookies, _ := ZeroTierGet(loginUrl, nil, 1) if len(action) == 0 { //没有拿到action,页面结构变了 return "" } //登录 var str bytes.Buffer str.WriteString("username=") str.WriteString(username) str.WriteString("&password=") str.WriteString(pwd) str.WriteString("&credentialId=&login=Log+In") url, logingErrInfo, _ := ZeroTierPost(str, action, cookies, true) action, cookies, isLoginOk := ZeroTierGet(url, cookies, 2) if isLoginOk { //登录成功,可以继续调用api randomTokenUrl := "https://my.zerotier.com/api/randomToken" json, _, _ := ZeroTierGet(randomTokenUrl, cookies, 3) //获取一个随机token token := gjson.Get(json, "token") userInfoUrl := "https://my.zerotier.com/api/status" json, _, _ = ZeroTierGet(userInfoUrl, cookies, 3) //拿到用户id userId := gjson.Get(json, "user.id") //设置新token addTokenUrl := "https://my.zerotier.com/api/user/" + userId.String() + "/token" data := make(map[string]string) rand.Seed(time.Now().UnixNano()) data["tokenName"] = "oasis-token-" + strconv.Itoa(rand.Intn(1000)) data["token"] = token.String() head := make(map[string]string) head["Content-Type"] = "application/json" _, statusCode := httper2.ZeroTierPost(addTokenUrl, data, head, cookies) if statusCode == http.StatusOK { config.Cfg.Section("zerotier").Key("Token").SetValue(token.String()) config.Cfg.SaveTo("conf/conf.ini") config.ZeroTierInfo.Token = token.String() } } else { //登录错误信息 if len(logingErrInfo) > 0 { return logingErrInfo } else { //验证邮箱 action, _, _ = ZeroTierGet(url, cookies, 5) return "You need to verify your email address to activate your account." } } return "" } // t 1:获取action,2:登录成功后拿session(可能需要验证有了或登录失败) 3:随机生成token 4:注册页面拿action 5:注册成功后拿验证邮箱的地址 func ZeroTierGet(url string, cookies []*http.Cookie, t uint8) (action string, c []*http.Cookie, isExistSession bool) { isExistSession = false action = "" c = []*http.Cookie{} request, _ := http.NewRequest(http.MethodGet, url, nil) for k, v := range GetHead() { request.Header.Add(k, v) } for _, cookie := range cookies { request.AddCookie(cookie) } resp, err := client.Do(request) if err != nil { return } defer resp.Body.Close() c = resp.Cookies() if t == 1 { doc, err := goquery.NewDocumentFromReader(resp.Body) if err != nil { return } action, _ = doc.Find("#kc-form-login").Attr("action") return } else if t == 2 { for _, cookie := range resp.Cookies() { if cookie.Name == "pgx-session" { isExistSession = true break } } //判断是否登录成功,如果需要验证邮箱,则返回验证邮箱的地址。 if resp.StatusCode == http.StatusFound && len(resp.Header.Get("Location")) > 0 { action = resp.Header.Get("Location") } return } else if t == 3 { //返回获取到的字符串 byteArr, _ := ioutil.ReadAll(resp.Body) action = string(byteArr) } else if t == 4 { doc, err := goquery.NewDocumentFromReader(resp.Body) if err != nil { return } action, _ = doc.Find("#kc-register-form").Attr("action") return } else if t == 5 { doc, _ := goquery.NewDocumentFromReader(resp.Body) fmt.Println(doc.Html()) action, _ = doc.Find("#kc-info-wrapper a").Attr("href") return } return } //模拟提交表单 func ZeroTierPost(str bytes.Buffer, action string, cookies []*http.Cookie, isLogin bool) (url, errInfo string, err error) { req, err := http.NewRequest(http.MethodPost, action, strings.NewReader(str.String())) if err != nil { return "", "", errors.New("newrequest error") } for k, v := range GetHead() { req.Header.Set(k, v) } req.Header.Set("Content-Type", "application/x-www-form-urlencoded") for _, cookie := range cookies { req.AddCookie(cookie) } res, err := client.Do(req) defer res.Body.Close() if err != nil { return "", "", errors.New("request error") } if !isLogin { //注册成功 if res.StatusCode == http.StatusFound && len(res.Header.Get("Location")) > 0 { return res.Header.Get("Location"), "", nil } else { register, _ := goquery.NewDocumentFromReader(res.Body) firstErr := strings.TrimSpace(register.Find("#input-error-firstname").Text()) lastErr := strings.TrimSpace(register.Find("#input-error-lastname").Text()) emailErr := strings.TrimSpace(register.Find("#input-error-email").Text()) pwdErr := strings.TrimSpace(register.Find("#input-error-password").Text()) var errD strings.Builder if len(firstErr) > 0 { errD.WriteString(firstErr + ",") } if len(lastErr) > 0 { errD.WriteString(lastErr + ",") } if len(emailErr) > 0 { errD.WriteString(emailErr + ",") } if len(pwdErr) > 0 { errD.WriteString(pwdErr + ",") } return "", errD.String(), nil } } else { if res.StatusCode == http.StatusFound && len(res.Header.Get("Location")) > 0 { return res.Header.Get("Location"), "", nil } doc, err := goquery.NewDocumentFromReader(res.Body) if err != nil { return "", "", errors.New("request error") } errDesc := doc.Find("#input-error").Text() if len(errDesc) > 0 { return "", strings.TrimSpace(errDesc), nil } } return "", "", nil } //获取zerotile网络列表和本地用户已加入的网络 func (c *zerotierStruct) ZeroTierNetworkList(token string) (interface{}, []string) { url := "https://my.zerotier.com/api/network" return zerotier.GetData(url, token), command2.ExecResultStrArray(`zerotier-cli listnetworks | awk 'NR>1 {print $3} {line=$0}'`) } // get network info func (c *zerotierStruct) ZeroTierGetInfo(token, id string) (interface{}, []string) { url := "https://my.zerotier.com/api/network/" + id info := zerotier.GetData(url, token) return info, command2.ExecResultStrArray(`zerotier-cli listnetworks | awk 'NR>1 {print $3} {line=$0}'`) } //get status func (c *zerotierStruct) ZeroTierGetStatus(token string) interface{} { url := "https://my.zerotier.com/api/v1/status" info := zerotier.GetData(url, token) return info } func (c *zerotierStruct) EditNetwork(token string, data string, id string) interface{} { url := "https://my.zerotier.com/api/v1/network/" + id info := zerotier.PostData(url, token, data) return info } func (c *zerotierStruct) EditNetworkMember(token string, data string, id, mId string) interface{} { url := "https://my.zerotier.com/api/v1/network/" + id + "/member/" + mId info := zerotier.PostData(url, token, data) return info } func (c *zerotierStruct) MemberList(token string, id string) interface{} { url := "https://my.zerotier.com/api/v1/network/" + id + "/member" info := zerotier.GetData(url, token) return info } func (c *zerotierStruct) DeleteMember(token string, id, mId string) interface{} { url := "https://my.zerotier.com/api/v1/network/" + id + "/member/" + mId info := zerotier.DeleteMember(url, token) return info } func (c *zerotierStruct) DeleteNetwork(token, id string) interface{} { url := "https://my.zerotier.com/api/v1/network/" + id info := zerotier.DeleteMember(url, token) return info } func (c *zerotierStruct) CreateNetwork(token string) interface{} { url := "https://my.zerotier.com/api/v1/network" info := zerotier.PostData(url, token, "{}") return info } func (c *zerotierStruct) GetJoinNetworks() string { json := command2.ExecResultStr("source " + config.AppInfo.ProjectPath + "/shell/helper.sh ;GetLocalJoinNetworks") return json } func NewZeroTierService() ZeroTierService { //初始化client client = http.Client{Timeout: 30 * time.Second, CheckRedirect: func(req *http.Request, via []*http.Request) error { return http.ErrUseLastResponse //禁止重定向 }, } return &zerotierStruct{} }