114 lines
2.8 KiB
JavaScript
114 lines
2.8 KiB
JavaScript
const express = require("express");
|
|
const bodyParser = require("body-parser");
|
|
const cookieParser = require("cookie-parser")
|
|
const cors = require("cors");
|
|
const helmet = require("helmet");
|
|
const morgan = require("morgan");
|
|
const https = require("https");
|
|
var package = require("./package.json");
|
|
const { request } = require("http");
|
|
|
|
const app = express();
|
|
app.use(helmet());
|
|
app.use(bodyParser.json());
|
|
app.use(cookieParser())
|
|
app.use(cors());
|
|
app.use(morgan("combined"));
|
|
|
|
|
|
app.get("/api/version", (req, res) => {
|
|
res.send({version: package.version});
|
|
});
|
|
|
|
app.get("/api/echo", (req, res) => {
|
|
res.send({body: req.body, cookies: req.cookies});
|
|
});
|
|
|
|
app.get("/api/auth", (req, res) => {
|
|
checkAuth(req.cookies, (result) => {
|
|
res.send({auth: result});
|
|
}, req.body.vmpath);
|
|
});
|
|
|
|
function checkAuth (cookies, callback, vmpath = null) {
|
|
if (vmpath) {
|
|
requestPVE(vmpath, "GET", cookies, (result) => {
|
|
if(result.status === 200){
|
|
callback(true);
|
|
}
|
|
else {
|
|
callback(false);
|
|
}
|
|
})
|
|
}
|
|
else { // if no path is specified, then do a simple authentication
|
|
requestPVE("/version", "GET", cookies, (result) => {
|
|
if(result.status === 200){
|
|
callback(true);
|
|
}
|
|
else {
|
|
callback(false);
|
|
}
|
|
});
|
|
}
|
|
}
|
|
|
|
function requestPVE (path, method, cookies, callback, body = null, token = null) {
|
|
let prms = new URLSearchParams(body);
|
|
let content = {
|
|
hostname: "pve.tronnet.net",
|
|
port: 443,
|
|
path: `/api2/json${path}`,
|
|
method: method,
|
|
mode: "cors",
|
|
credentials: "include",
|
|
headers: {
|
|
"Content-Type": "application/x-www-form-urlencoded"
|
|
}
|
|
}
|
|
if (method === "POST") {
|
|
content.body = prms.toString();
|
|
content.headers.CSRFPreventionToken = cookies.CSRFPreventionToken;
|
|
}
|
|
if(token) {
|
|
content.headers.Authorization = `PVEAPIToken=${token.user}@${token.realm}!${TOKENID}=${token.uuid}`;
|
|
}
|
|
else {
|
|
content.headers.Cookie = `PVEAuthCookie=${cookies.PVEAuthCookie}; CSRFPreventionToken=${cookies.CSRFPreventionToken}`;
|
|
}
|
|
|
|
const promiseResponse = new Promise((resolve, reject) => {
|
|
const fullResponse = {
|
|
status: '',
|
|
body: '',
|
|
headers: ''
|
|
};
|
|
|
|
const request = https.request(content);
|
|
|
|
request.on('error', reject);
|
|
request.on('response', response => {
|
|
response.setEncoding('utf8');
|
|
fullResponse.status = response.statusCode;
|
|
fullResponse.headers = response.headers;
|
|
response.on('data', chunk => { fullResponse.body += chunk; });
|
|
response.on('end', () => {
|
|
if(fullResponse.body){
|
|
fullResponse.body = JSON.parse(fullResponse.body);
|
|
}
|
|
resolve(fullResponse);
|
|
});
|
|
});
|
|
|
|
request.end();
|
|
});
|
|
|
|
promiseResponse.then(
|
|
response => {callback(response);},
|
|
error => {callback(error);}
|
|
);
|
|
}
|
|
|
|
app.listen(80, () => {
|
|
console.log("listening on port 80");
|
|
}); |