123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 |
- -- Copyright 2008 Steven Barth <steven@midlink.org>
- -- Copyright 2008 Jo-Philipp Wich <jow@openwrt.org>
- -- Licensed to the public under the Apache License 2.0.
- local require = require
- local pairs = pairs
- local print = print
- local pcall = pcall
- local table = table
- module "luci.controller.rpc"
- function index()
- local function authenticator(validator, accs)
- local auth = luci.http.formvalue("auth", true)
- if auth then -- if authentication token was given
- local sdat = (luci.util.ubus("session", "get", { ubus_rpc_session = auth }) or { }).values
- if sdat then -- if given token is valid
- if sdat.user and luci.util.contains(accs, sdat.user) then
- return sdat.user, auth
- end
- end
- end
- luci.http.status(403, "Forbidden")
- end
- local rpc = node("rpc")
- rpc.sysauth = "root"
- rpc.sysauth_authenticator = authenticator
- rpc.notemplate = true
- entry({"rpc", "uci"}, call("rpc_uci"))
- entry({"rpc", "fs"}, call("rpc_fs"))
- entry({"rpc", "sys"}, call("rpc_sys"))
- entry({"rpc", "ipkg"}, call("rpc_ipkg"))
- entry({"rpc", "auth"}, call("rpc_auth")).sysauth = false
- end
- function rpc_auth()
- local jsonrpc = require "luci.jsonrpc"
- local http = require "luci.http"
- local sys = require "luci.sys"
- local ltn12 = require "luci.ltn12"
- local util = require "luci.util"
- local loginstat
- local server = {}
- server.challenge = function(user, pass)
- local sid, token, secret
- require "luci.config"
- if sys.user.checkpasswd(user, pass) then
- local sdat = util.ubus("session", "create", { timeout = luci.config.sauth.sessiontime })
- if sdat then
- sid = sdat.ubus_rpc_session
- token = sys.uniqueid(16)
- secret = sys.uniqueid(16)
- http.header("Set-Cookie", "sysauth="..sid.."; path=/")
- util.ubus("session", "set", {
- ubus_rpc_session = sid,
- values = {
- user = user,
- token = token,
- secret = secret
- }
- })
- end
- end
- return sid and {sid=sid, token=token, secret=secret}
- end
- server.login = function(...)
- local challenge = server.challenge(...)
- return challenge and challenge.sid
- end
- http.prepare_content("application/json")
- ltn12.pump.all(jsonrpc.handle(server, http.source()), http.write)
- end
- function rpc_uci()
- if not pcall(require, "luci.model.uci") then
- luci.http.status(404, "Not Found")
- return nil
- end
- local uci = require "luci.jsonrpcbind.uci"
- local jsonrpc = require "luci.jsonrpc"
- local http = require "luci.http"
- local ltn12 = require "luci.ltn12"
- http.prepare_content("application/json")
- ltn12.pump.all(jsonrpc.handle(uci, http.source()), http.write)
- end
- function rpc_fs()
- local util = require "luci.util"
- local io = require "io"
- local fs2 = util.clone(require "nixio.fs")
- local jsonrpc = require "luci.jsonrpc"
- local http = require "luci.http"
- local ltn12 = require "luci.ltn12"
- function fs2.readfile(filename)
- local stat, mime = pcall(require, "mime")
- if not stat then
- error("Base64 support not available. Please install LuaSocket.")
- end
- local fp = io.open(filename)
- if not fp then
- return nil
- end
- local output = {}
- local sink = ltn12.sink.table(output)
- local source = ltn12.source.chain(ltn12.source.file(fp), mime.encode("base64"))
- return ltn12.pump.all(source, sink) and table.concat(output)
- end
- function fs2.writefile(filename, data)
- local stat, mime = pcall(require, "mime")
- if not stat then
- error("Base64 support not available. Please install LuaSocket.")
- end
- local file = io.open(filename, "w")
- local sink = file and ltn12.sink.chain(mime.decode("base64"), ltn12.sink.file(file))
- return sink and ltn12.pump.all(ltn12.source.string(data), sink) or false
- end
- http.prepare_content("application/json")
- ltn12.pump.all(jsonrpc.handle(fs2, http.source()), http.write)
- end
- function rpc_sys()
- local sys = require "luci.sys"
- local jsonrpc = require "luci.jsonrpc"
- local http = require "luci.http"
- local ltn12 = require "luci.ltn12"
- http.prepare_content("application/json")
- ltn12.pump.all(jsonrpc.handle(sys, http.source()), http.write)
- end
- function rpc_ipkg()
- if not pcall(require, "luci.model.ipkg") then
- luci.http.status(404, "Not Found")
- return nil
- end
- local ipkg = require "luci.model.ipkg"
- local jsonrpc = require "luci.jsonrpc"
- local http = require "luci.http"
- local ltn12 = require "luci.ltn12"
- http.prepare_content("application/json")
- ltn12.pump.all(jsonrpc.handle(ipkg, http.source()), http.write)
- end
|