Add Settings - RPC Servers (start of multi-server work).

This also makes $config["unrealircd"] an array now.

diff --git a/api/installation2.php b/api/installation2.php
index e9dde108a6090f01c646e80bbb17dfda86a49fc6..288f4bebb0a2a0ab8643b0dfaffbb3d8c252f61c 100644 (file)
--- a/api/installation2.php
+++ b/api/installation2.php
@@ -2,36 +2,45 @@
 
 require_once "../inc/common.php";
 
-/* only let this happen  */
-if (isset($config['unrealircd']) && empty($config['unrealircd']['host']))
-               die(json_encode(["error" => "Already configured."]));
-
 if (!isset($_POST) || empty($_POST))
                die(json_encode(["error" => "Incorrect parameters"]));
 
-foreach($_POST as $key => $str)
-               ${$key} = $str;
+foreach(array("tls_verify","host","port","user","password","edit_existing") as $k)
+{
+       if (!isset($_POST[$k]))
+               die("MISSING: $k");
+       ${$k} = $_POST[$k];
+}
 
-if ($method == "rpc")
+if ($tls_verify == "false")
+       $tls_verify = false;
+elseif ($tls_verify == "true")
+       $tls_verify = true;
+
+if (($edit_existing) && ($password == "****************"))
 {
-               if (isset($tls_verify))
-               {
-                               if ($tls_verify == "false")
-                                               $tls_verify = false;
-                               elseif ($tls_verify == "true")
-                                               $tls_verify = true;
-               }
-               try {
-                               $rpc = new UnrealIRCd\Connection
-                               (
-                                               "wss://$host:$port",
-                                               "$user:$password",
-                                               ["tls_verify" => $tls_verify]
-                               );
-               }
-               catch (Exception $e)
-               {
-                               die(json_encode(["error" => "Unable to connect to UnrealIRCd: ".$e->getMessage()]));
-               }
-               die(json_encode(["success" => "Successfully connected"]));
+       /* If editing existing and password unchanged,
+        * try to look up existing password.
+        */
+       if (isset($config["unrealircd"][$edit_existing]))
+       {
+               $password = $config["unrealircd"][$edit_existing]["rpc_password"];
+               if (str_starts_with($password, "secret:"))
+                       $password = secret_decrypt($password);
+       }
 }
+
+try {
+               $rpc = new UnrealIRCd\Connection
+               (
+                               "wss://$host:$port",
+                               "$user:$password",
+                               ["tls_verify" => $tls_verify]
+               );
+}
+catch (Exception $e)
+{
+               die(json_encode(["error" => "Unable to connect to UnrealIRCd: ".$e->getMessage()]));
+}
+
+die(json_encode(["success" => "Successfully connected"]));

diff --git a/inc/common.php b/inc/common.php
index d2dab10b305725c1d06ef7e4ec04dc994707c9aa..8a485aeae6f05a99b885491e222ad513630082af 100644 (file)
--- a/inc/common.php
+++ b/inc/common.php
@@ -264,6 +264,14 @@ function upgrade_check()
                        write_config('unrealircd');
                }
        }
+       /* $config["unrealircd"] should be an array now.. */
+       if (isset($config['unrealircd']) && isset($config['unrealircd']['rpc_password']))
+       {
+               $config["unrealircd"]["default"] = true;
+               $config['unrealircd'] = [
+                       "Primary" => $config['unrealircd']];
+               write_config("unrealircd");
+       }
 
        $version = get_version();
        if (!isset($config['webpanel_version']))
@@ -370,6 +378,7 @@ $pages = [
        ],
        "Settings" => [
                "Plugins" => "settings/plugins.php",
+               "RPC Servers" => "settings/rpc-servers.php",
        ],
        
        "News" => "news.php",

diff --git a/inc/connection.php b/inc/connection.php
index 44ec03421d63a515e38910dc26202d9f0ae187a5..fd264b7fb52cd81beb7c759e640f9509bb3c4666 100644 (file)
--- a/inc/connection.php
+++ b/inc/connection.php
@@ -3,24 +3,42 @@
 if (!defined('UPATH'))
                die("Access denied");
 
+function get_active_rpc_server()
+{
+       // TODO: make user able to override this - either in user or in session
+
+       foreach (get_config("unrealircd") as $displayname=>$e)
+       {
+               if (isset($e["default"]) && $e["default"])
+                       return $displayname;
+       }
+       return null;
+}
+
 function connect_to_ircd()
 {
        GLOBAL $rpc;
+       GLOBAL $config;
 
-       $host = get_config("unrealircd::host");
-       $port = get_config("unrealircd::port");
-       $rpc_user = get_config("unrealircd::rpc_user");
-       $rpc_password = get_config("unrealircd::rpc_password");
+       $server = get_active_rpc_server();
+       if (!$server)
+               die("No RPC server configured as primary");
+       $host = $config["unrealircd"][$server]["host"];
+       $port = $config["unrealircd"][$server]["port"];
+       $rpc_user = $config["unrealircd"][$server]["rpc_user"];
+       $rpc_password = $config["unrealircd"][$server]["rpc_password"];
        if (str_starts_with($rpc_password, "secret:"))
                $rpc_password = secret_decrypt($rpc_password);
+       $tls_verify = $config["unrealircd"][$server]["tls_verify_cert"];
 
        if (!$host || !$port || !$rpc_user)
-               die("Unable to find RPC credentials in your config.php");
+               die("RPC Server is missing credentials");
+
        if ($rpc_password === null)
+       {
                die("Your RPC password in the DB was encrypted with a different key than config/config.php contains.<br>\n".
                    "Either restore your previous config/config.php or start with a fresh database.<br>\n");
-
-       $tls_verify = get_config("unrealircd::tls_verify_cert");
+       }
 
        /* Connect now */
        try {

diff --git a/index.php b/index.php
index 219c143c451c18f242153fe6e9de1e42d7f52dc1..b41cdad56e6184a0c2a5c8c1bd8ae01c6ad6344b 100644 (file)
--- a/index.php
+++ b/index.php
@@ -1,6 +1,6 @@
 <?php
 require_once "inc/common.php";
-if (!isset($config['unrealircd']) || empty($config['unrealircd']['host']))
+if (!isset($config['unrealircd']))
 {
        $redirect = get_config("base_url")."settings/install2.php";
        header('Location: ' . $redirect);

diff --git a/login/index.php b/login/index.php
index 56dc0a72612cd979ff29d7cf8c9ab37630a3de7a..0a920f152cb223a346b2fa91a662fc9a97b7f894 100644 (file)
--- a/login/index.php
+++ b/login/index.php
@@ -53,7 +53,7 @@ if (!empty($_POST))
                        Hook::run(HOOKTYPE_USER_LOGIN, $user);
 
                        /* Middle of install? Override redirect: */
-                       if (!isset($config['unrealircd']) || empty($config['unrealircd']['host']))
+                       if (!isset($config['unrealircd']))
                                $redirect = get_config("base_url")."settings/install2.php";
                        header('Location: ' . $redirect);
                        die();

diff --git a/settings/rpc-servers.php b/settings/rpc-servers.php
new file mode 100644 (file)
index 0000000..0840eb0
--- /dev/null
+++ b/settings/rpc-servers.php
@@ -0,0 +1,297 @@
+<?php
+require_once "../inc/common.php";
+require_once "../inc/header.php";
+
+if (isset($_POST['do_add_server']))
+{
+       $opts = (object)$_POST;
+
+       /* TODO: Server-side validation */
+
+       // TODO: syntax of each item
+
+       // TODO: check server already exists with that (new) displayname
+
+       if (isset($config["unrealircd"][$opts->rpc_displayname]) &&
+           !($opts->rpc_displayname == $opts->edit_existing))
+       {
+               die("Server with that name already exists"); // TODO: pretier :D
+       }
+
+       $new_properties = [
+               "rpc_user" => $opts->rpc_user,
+               "rpc_password" => $opts->rpc_password,
+               "host"=>$opts->rpc_iphost,
+               "port"=>$opts->rpc_port,
+               "tls_verify_cert"=>isset($opts->rpc_tls_verify_cert)?true:false,
+               "default"=>isset($opts->rpc_default)?true:false,
+       ];
+
+       if (!empty($opts->edit_existing))
+       {
+               // Change existing server
+               if (!isset($config["unrealircd"][$opts->edit_existing]))
+                       die("Editing a server that does not exist!?"); // not very graceful, isn't it?
+               if ($new_properties["rpc_password"] == "****************")
+                       $new_properties["rpc_password"] = $config["unrealircd"][$opts->edit_existing]["rpc_password"];
+               // we unset because there could be a rename
+               unset($config["unrealircd"][$opts->edit_existing]);
+               $config["unrealircd"][$opts->rpc_displayname] = $new_properties;
+       } else {
+               // Add new server
+               $config["unrealircd"][$opts->rpc_displayname] = $new_properties;
+               // TODO: encrypt pwd ;)
+       }
+
+       if ($new_properties["default"])
+       {
+               /* Mark all other servers as non-default */
+               foreach ($config["unrealircd"] as $name=>$e)
+                       if ($name != $opts->rpc_displayname)
+                               $config["unrealircd"][$name]["default"] = false;
+       } else {
+               /* Ensure at least 1 server is default */
+               $has_default_server = false;
+               foreach ($config["unrealircd"] as $name=>$e)
+                       if ($e["default"])
+                               $has_default_server = true;
+               if (!$has_default_server)
+               {
+                       /* Make first server in the list the default */
+                       foreach ($config["unrealircd"] as $name=>$e)
+                       {
+                               $config["unrealircd"][$name]["default"] = true;
+                               break;
+                       }
+               }
+       }
+
+       /* And write the new config */
+       write_config();
+       // TODO: change this message if it's the first server added? tell them to browse around?
+       Message::Success("RPC Server successfully added.");
+}
+
+?>
+
+<h2>RPC Servers</h2>
+You can configure which JSON-RPC server(s) the panel can connect to.<br><br>
+You normally only need one server, but it can be useful to have multiple servers, so
+you can switch to a secondary server in case the primary server goes down.<br>
+<br>
+
+<!-- Server action buttons (only Add server) -->
+<div id="ServerActions">
+       <div class="row">
+               <?php if (1) /* current_user_can(PERMISSION_MANAGE_RPC_SERVERS)) */ { ?>
+               <div class="col-sm-3">
+                       <form method="post">
+                       <div class="btn btn-primary" onclick="add_rpc_server()">Add Server</div>
+                       </form>
+               </div>
+               <?php } ?>
+       </div>
+<br>
+
+<!-- Add server modal -->
+<div class="modal" id="server_add" tabindex="-1" role="dialog" aria-labelledby="confirmModalCenterTitle" aria-hidden="true">
+       <div class="modal-dialog modal-dialog-centered" role="document">
+               <form method="post">
+                       <input name="edit_existing" type="hidden" id="edit_existing" value="">
+                       <div class="modal-content">
+                               <div class="modal-header">
+                                       <h5 class="modal-title" id="server_add_title">Add RPC Server</h5>
+                                       <button type="button" class="close" data-dismiss="modal" aria-label="Close">
+                                       <span aria-hidden="true">&times;</span></button>                
+                               </div>
+                               <div class="modal-body">
+                                       <div class="form-group">
+                                               <label for="rpc_displayname">Display name</label>
+                                               <input name="rpc_displayname" type="text" class="form-control" id="rpc_displayname" aria-describedby="rpc_displayname_help" value="" required>
+                                               <small id="rpc_displayname_help" class="form-text text-muted">A short display name for in the RPC server list.</small>
+                                       </div>
+                                       <div class="form-group form-check">
+                                               <input name="rpc_default" type="checkbox" class="revalidation-needed-rpc form-check-input" id="rpc_default">
+                                               <label class="form-check-label" for="rpc_default">Default server</label>
+                                               <small id="rpc_default_help" class="form-text text-muted">Make this the default (primary) server that will be used for connections.</code></small>
+                                       </div>
+                                       <div class="form-group">
+                                               <label for="rpc_iphost">Hostname or IP</label>
+                                               <input name="rpc_iphost" type="text" class="revalidation-needed-rpc form-control" id="rpc_iphost" aria-describedby="hostname_help" value="127.0.0.1">
+                                               <small id="hostname_help" class="form-text text-muted">The hostname or IP address of your UnrealIRCd server. You should use <code>127.0.0.1</code> for the same machine.</small>
+                                       </div>
+                                       <div class="form-group">
+                                               <label for="rpc_port">Server Port</label>
+                                               <input name="rpc_port" type="text" class="revalidation-needed-rpc form-control" id="rpc_port" aria-describedby="port_help" value="8600">
+                                               <small id="port_help" class="form-text text-muted">The port which you designated for RPC connections in your <code>unrealircd.conf</code></small>
+                                       </div>
+                                       <div class="form-group form-check">
+                                               <input name="rpc_tls_verify_cert" type="checkbox" class="revalidation-needed-rpc form-check-input" id="rpc_tls_verify_cert">
+                                               <label class="form-check-label" for="rpc_tls_verify_cert">Verify SSL/TLS certificate</label>
+                                               <small id="rpc_tls_verify_cert_help" class="form-text text-muted">Can only be used with hostnames, don't enable this for 127.0.0.1.</code></small>
+                                       </div>
+                                       <div class="form-group">
+                                               <label for="rpc_username">Username</label>
+                                               <input name="rpc_user" type="text" class="revalidation-needed-rpc form-control" id="rpc_user" aria-describedby="username_help" autocomplete="new-password">
+                                               <small id="username_help" class="form-text text-muted">The name of your <code>rpc-user</code> block as defined in your <code>unrealircd.conf</code></small>
+                                       </div>
+                                       <div class="form-group">
+                                               <label for="rpc_password">Password</label>
+                                               <input name="rpc_password" type="password" class="revalidation-needed-rpc form-control" id="rpc_password" autocomplete="new-password">
+                                       </div>
+                               </div>
+                                                               
+                               <div class="modal-footer">
+                                       <button id="CloseButton" type="button" class="btn btn-secondary" data-dismiss="modal">Cancel</button>
+                                       <button type="submit" name="do_add_server" id="do_add_server" class="btn btn-primary">Add Server</button>
+                               </div>
+                       </div>
+               </form>
+       </div>
+</div>
+
+<!-- Server error modal -->
+<div class="modal" id="server_error" tabindex="-1" role="dialog" aria-labelledby="confirmModalCenterTitle" aria-hidden="true">
+       <div class="modal-dialog modal-dialog-centered" role="document">
+               <div class="modal-content">
+                       <div class="modal-header">
+                               <h5 class="modal-title">RPC Server error</h5>
+                               <button type="button" class="close" data-dismiss="modal" aria-label="Close">
+                                       <span aria-hidden="true">&times;</span>
+                               </button>
+                       </div>
+                       <div class="modal-body">
+                               The RPC Server failed to connect. Check your settings and try again.
+                       </div>
+                                                       
+                       <div class="modal-footer">
+                               <button id="CloseButton" type="button" class="btn btn-primary" data-dismiss="modal" onclick="cancel_error()">OK</button>
+                       </div>
+               </div>
+       </div>
+</div>
+
+<!-- Server list -->
+<form method="post">
+<table class="container-xxl table table-sm table-responsive caption-top table-striped">
+       <thead class="table-primary">
+       <th scope="col">Display name</th>
+       <th scope="col">Hostname</th>
+       <th scope="col">Port</th>
+       <th scope="col">RPC User</th>
+       </thead>
+       <tbody>
+       <?php
+               foreach($config['unrealircd'] as $name=>$e)
+               {
+                       $primary = "";
+                       if (isset($e["default"]) && $e["default"])
+                            $primary = " <span class=\"badge rounded-pill badge-success\">Default</span>";
+                        $name = htmlspecialchars($name);
+                        $default_server = $e["default"] ? "true" : "false";
+                        $host = htmlspecialchars($e["host"]);
+                        $port = htmlspecialchars($e["port"]);
+                        $rpc_user = htmlspecialchars($e["rpc_user"]);
+                        $tls_verify_cert = $e["tls_verify_cert"] ? "true" : "false";
+                        $name = "<a href=\"javascript:edit_rpc_server('$name',$default_server,'$host','$port','$rpc_user',$tls_verify_cert)\">$name</a>";
+                       echo "<tr>";
+                       echo "<td scope=\"col\">".$name.$primary."</td>";
+                       echo "<td scope=\"col\"><code>".$host."</code></td>";
+                       echo "<td scope=\"col\"><code>".$port."</code></td>";
+                       echo "<td scope=\"col\"><code>".$rpc_user."</code></td>";
+                       echo "</tr>";
+               }
+               ?>
+       </tbody>
+</table>
+
+<script>
+       let do_add_server = document.getElementById('do_add_server');
+
+       let rpc_host = document.getElementById('rpc_iphost');
+       let rpc_port = document.getElementById('rpc_port');
+       let rpc_user = document.getElementById('rpc_user');
+       let rpc_pass = document.getElementById('rpc_password');
+       let rpc_tls_verify_cert = document.getElementById('rpc_tls_verify_cert');
+       let rpc_server_ok = false;
+       
+       do_add_server.addEventListener('click', e => {
+               if (rpc_server_ok)
+                       return true;
+               e.preventDefault();
+               test_rpc_server();
+               return false;
+       });
+
+       /* The RPC connection tester! */
+       function test_rpc_server()
+       {
+               fetch(<?php echo get_config("base_url"); ?> + 'api/installation2.php', {
+                     method:'POST',
+                     headers: {'Content-Type':'application/x-www-form-urlencoded'},
+                     body: 'method=rpc&'+
+                           'host='+encodeURIComponent(rpc_host.value)+
+                           '&port='+encodeURIComponent(rpc_port.value)+
+                           '&user='+encodeURIComponent(rpc_user.value)+
+                           '&password='+encodeURIComponent(rpc_pass.value)+
+                           '&tls_verify='+rpc_tls_verify_cert.checked+
+                           '&edit_existing='+encodeURIComponent(edit_existing.value)
+                     })
+               .then(response => response.json())
+               .then(data => {
+                       if (data.success)
+                       {
+                               rpc_server_ok = true;
+                               do_add_server.click();
+                       }
+                       else
+                       {
+                               $('#server_add').modal('hide');
+                               $('#server_error').modal();
+                       }
+               })
+               .catch(error => {
+                       test_conn.innerHTML = "Failed!";
+                               $('#server_add').modal('hide');
+                               $('#server_error').modal();
+               });
+       }
+
+       function cancel_error()
+       {
+               $('#server_add').modal('show');
+               return true;
+       }
+
+       function edit_rpc_server(name, default_server, host, port, rpc_user, tls_verify_cert)
+       {
+               $('#edit_existing').val(name);
+               $('#rpc_displayname').val(name);
+               $('#rpc_default').prop('checked', default_server);
+               $('#rpc_host').val(host);
+               $('#rpc_port').val(port);
+               $('#rpc_user').val(rpc_user);
+               $('#rpc_password').val("****************"); // magic value to indicate saved password
+               $('#server_add_title').html("Edit Server");
+               $('#do_add_server').html("Submit");
+               $('#rpc_tls_verify_cert').prop('checked', tls_verify_cert);
+               $('#server_add').modal('show');
+       }
+
+       // This is in a function because a canceled edit_rpc_server otherwise causes a prefilled effect
+       function add_rpc_server()
+       {
+               $('#rpc_displayname').val("");
+               $('#rpc_host').val("127.0.0.1");
+               $('#rpc_port').val("8600");
+               $('#rpc_user').val("");
+               $('#rpc_password').val("");
+               $('#server_add_title').html("Add Server");
+               $('#do_add_server').html("Add Server");
+               $('#rpc_tls_verify_cert').prop('checked', false);
+               $('#server_add').modal('show');
+       }
+</script>
+
+<?php
+require_once "../inc/footer.php";