package service import ( "context" "crypto/x509" "encoding/json" "encoding/pem" "fmt" "github.com/1Panel-dev/1Panel/backend/app/request" "github.com/1Panel-dev/1Panel/backend/buserr" "os" "path" "reflect" "strings" "time" "github.com/1Panel-dev/1Panel/backend/app/dto" "github.com/1Panel-dev/1Panel/backend/app/model" "github.com/1Panel-dev/1Panel/backend/constant" "github.com/1Panel-dev/1Panel/backend/utils/files" "github.com/pkg/errors" "gorm.io/gorm" ) type WebsiteService struct { } type IWebsiteService interface { PageWebSite(req dto.WebSiteReq) (int64, []dto.WebSiteDTO, error) CreateWebsite(create dto.WebSiteCreate) error GetWebsiteOptions() ([]string, error) Backup(domain string) error Recover(req dto.WebSiteRecover) error RecoverByUpload(req dto.WebSiteRecoverByFile) error UpdateWebsite(req dto.WebSiteUpdate) error DeleteWebSite(req dto.WebSiteDel) error GetWebsite(id uint) (dto.WebsiteDTO, error) CreateWebsiteDomain(create dto.WebSiteDomainCreate) (model.WebSiteDomain, error) GetWebsiteDomain(websiteId uint) ([]model.WebSiteDomain, error) DeleteWebsiteDomain(domainId uint) error GetNginxConfigByScope(req dto.NginxConfigReq) (*dto.WebsiteNginxConfig, error) UpdateNginxConfigByScope(req dto.NginxConfigReq) error GetWebsiteNginxConfig(websiteId uint) (dto.FileInfo, error) GetWebsiteHTTPS(websiteId uint) (dto.WebsiteHTTPS, error) OpWebsiteHTTPS(req dto.WebsiteHTTPSOp) (dto.WebsiteHTTPS, error) PreInstallCheck(req dto.WebsiteInstallCheckReq) ([]dto.WebsitePreInstallCheck, error) GetWafConfig(req request.WebsiteWafReq) (dto.WebsiteWafConfig, error) UpdateWafConfig(req request.WebsiteWafUpdate) error } func NewWebsiteService() IWebsiteService { return &WebsiteService{} } func (w WebsiteService) PageWebSite(req dto.WebSiteReq) (int64, []dto.WebSiteDTO, error) { var websiteDTOs []dto.WebSiteDTO total, websites, err := websiteRepo.Page(req.Page, req.PageSize) if err != nil { return 0, nil, err } for _, web := range websites { websiteDTOs = append(websiteDTOs, dto.WebSiteDTO{ WebSite: web, }) } return total, websiteDTOs, nil } func (w WebsiteService) CreateWebsite(create dto.WebSiteCreate) error { if exist, _ := websiteRepo.GetBy(websiteRepo.WithDomain(create.PrimaryDomain)); len(exist) > 0 { return buserr.New(constant.ErrNameIsExist) } if exist, _ := websiteRepo.GetBy(websiteRepo.WithAlias(create.Alias)); len(exist) > 0 { return buserr.New(constant.ErrAliasIsExist) } if exist, _ := websiteDomainRepo.GetBy(websiteDomainRepo.WithDomain(create.PrimaryDomain)); len(exist) > 0 { return buserr.New(constant.ErrDomainIsExist) } defaultDate, _ := time.Parse(constant.DateLayout, constant.DefaultDate) website := &model.WebSite{ PrimaryDomain: create.PrimaryDomain, Type: create.Type, Alias: create.Alias, Remark: create.Remark, Status: constant.WebRunning, ExpireDate: defaultDate, AppInstallID: create.AppInstallID, WebSiteGroupID: create.WebSiteGroupID, Protocol: constant.ProtocolHTTP, } if create.Type == "deployment" { if create.AppType == dto.NewApp { install, err := ServiceGroupApp.Install(create.AppInstall.Name, create.AppInstall.AppDetailId, create.AppInstall.Params) if err != nil { return err } website.AppInstallID = install.ID } } else { if err := createStaticHtml(website); err != nil { return err } } tx, ctx := getTxAndContext() if err := websiteRepo.Create(ctx, website); err != nil { return err } var domains []model.WebSiteDomain domains = append(domains, model.WebSiteDomain{Domain: website.PrimaryDomain, WebSiteID: website.ID, Port: 80}) otherDomainArray := strings.Split(create.OtherDomains, "\n") for _, domain := range otherDomainArray { if domain == "" { continue } domainModel, err := getDomain(domain, website.ID) if err != nil { tx.Rollback() return err } if reflect.DeepEqual(domainModel, model.WebSiteDomain{}) { continue } domains = append(domains, domainModel) } if len(domains) > 0 { if err := websiteDomainRepo.BatchCreate(ctx, domains); err != nil { tx.Rollback() return err } } if err := configDefaultNginx(website, domains); err != nil { tx.Rollback() return err } tx.Commit() return nil } func (w WebsiteService) GetWebsiteOptions() ([]string, error) { webs, err := websiteRepo.GetBy() if err != nil { return nil, err } var datas []string for _, web := range webs { datas = append(datas, web.PrimaryDomain) } return datas, nil } func (w WebsiteService) Backup(domain string) error { localDir, err := loadLocalDir() if err != nil { return err } fileName := fmt.Sprintf("%s_%s", domain, time.Now().Format("20060102150405")) backupDir := fmt.Sprintf("website/%s", domain) if err := handleWebsiteBackup("LOCAL", localDir, backupDir, domain, fileName); err != nil { return err } return nil } func (w WebsiteService) RecoverByUpload(req dto.WebSiteRecoverByFile) error { if err := handleUnTar(fmt.Sprintf("%s/%s", req.FileDir, req.FileName), req.FileDir); err != nil { return err } tmpDir := fmt.Sprintf("%s/%s", req.FileDir, strings.ReplaceAll(req.FileName, ".tar.gz", "")) webJson, err := os.ReadFile(fmt.Sprintf("%s/website.json", tmpDir)) if err != nil { return err } var websiteInfo WebSiteInfo if err := json.Unmarshal(webJson, &websiteInfo); err != nil { return err } if websiteInfo.WebsiteName != req.WebsiteName || websiteInfo.WebsiteType != req.Type { return errors.New("上传文件与选中网站不匹配,无法恢复") } website, err := websiteRepo.GetFirst(websiteRepo.WithDomain(req.WebsiteName)) if err != nil { return err } if err := handleWebsiteRecover(&website, tmpDir); err != nil { return err } return nil } func (w WebsiteService) Recover(req dto.WebSiteRecover) error { website, err := websiteRepo.GetFirst(websiteRepo.WithDomain(req.WebsiteName)) if err != nil { return err } if !strings.Contains(req.BackupName, "/") { return errors.New("error path of request") } fileDir := req.BackupName[:strings.LastIndex(req.BackupName, "/")] fileName := strings.ReplaceAll(req.BackupName[strings.LastIndex(req.BackupName, "/"):], ".tar.gz", "") if err := handleUnTar(req.BackupName, fileDir); err != nil { return err } fileDir = fileDir + "/" + fileName if err := handleWebsiteRecover(&website, fileDir); err != nil { return err } return nil } func (w WebsiteService) UpdateWebsite(req dto.WebSiteUpdate) error { website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.ID)) if err != nil { return err } website.PrimaryDomain = req.PrimaryDomain website.WebSiteGroupID = req.WebSiteGroupID website.Remark = req.Remark return websiteRepo.Save(context.TODO(), &website) } func (w WebsiteService) GetWebsite(id uint) (dto.WebsiteDTO, error) { var res dto.WebsiteDTO website, err := websiteRepo.GetFirst(commonRepo.WithByID(id)) if err != nil { return res, err } res.WebSite = website return res, nil } func (w WebsiteService) DeleteWebSite(req dto.WebSiteDel) error { website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.ID)) if err != nil { return err } if err := delNginxConfig(website); err != nil { return err } tx, ctx := getTxAndContext() if req.DeleteApp { websites, _ := websiteRepo.GetBy(websiteRepo.WithAppInstallId(website.AppInstallID)) if len(websites) > 1 { return errors.New("other website use this app") } appInstall, err := appInstallRepo.GetFirst(commonRepo.WithByID(website.AppInstallID)) if err != nil && !errors.Is(err, gorm.ErrRecordNotFound) { return err } if !reflect.DeepEqual(model.AppInstall{}, appInstall) { if err := deleteAppInstall(ctx, appInstall); err != nil { return err } } } //TODO 删除备份 if err := websiteRepo.DeleteBy(ctx, commonRepo.WithByID(req.ID)); err != nil { tx.Rollback() return err } if err := websiteDomainRepo.DeleteBy(ctx, websiteDomainRepo.WithWebSiteId(req.ID)); err != nil { tx.Rollback() return err } tx.Commit() return nil } func (w WebsiteService) CreateWebsiteDomain(create dto.WebSiteDomainCreate) (model.WebSiteDomain, error) { var domainModel model.WebSiteDomain var ports []int var domains []string website, err := websiteRepo.GetFirst(commonRepo.WithByID(create.WebSiteID)) if err != nil { return domainModel, err } if oldDomains, _ := websiteDomainRepo.GetBy(websiteDomainRepo.WithWebSiteId(create.WebSiteID), websiteDomainRepo.WithPort(create.Port)); len(oldDomains) == 0 { ports = append(ports, create.Port) } domains = append(domains, create.Domain) if err := addListenAndServerName(website, ports, domains); err != nil { return domainModel, err } domainModel = model.WebSiteDomain{ Domain: create.Domain, Port: create.Port, WebSiteID: create.WebSiteID, } return domainModel, websiteDomainRepo.Create(context.TODO(), &domainModel) } func (w WebsiteService) GetWebsiteDomain(websiteId uint) ([]model.WebSiteDomain, error) { return websiteDomainRepo.GetBy(websiteDomainRepo.WithWebSiteId(websiteId)) } func (w WebsiteService) DeleteWebsiteDomain(domainId uint) error { webSiteDomain, err := websiteDomainRepo.GetFirst(commonRepo.WithByID(domainId)) if err != nil { return err } if websiteDomains, _ := websiteDomainRepo.GetBy(websiteDomainRepo.WithWebSiteId(webSiteDomain.WebSiteID)); len(websiteDomains) == 1 { return fmt.Errorf("can not delete last domain") } website, err := websiteRepo.GetFirst(commonRepo.WithByID(webSiteDomain.WebSiteID)) if err != nil { return err } var ports []int if oldDomains, _ := websiteDomainRepo.GetBy(websiteDomainRepo.WithWebSiteId(webSiteDomain.WebSiteID), websiteDomainRepo.WithPort(webSiteDomain.Port)); len(oldDomains) == 1 { ports = append(ports, webSiteDomain.Port) } var domains []string if oldDomains, _ := websiteDomainRepo.GetBy(websiteDomainRepo.WithWebSiteId(webSiteDomain.WebSiteID), websiteDomainRepo.WithDomain(webSiteDomain.Domain)); len(oldDomains) == 1 { domains = append(domains, webSiteDomain.Domain) } if len(ports) > 0 || len(domains) > 0 { if err := deleteListenAndServerName(website, ports, domains); err != nil { return err } } return websiteDomainRepo.DeleteBy(context.TODO(), commonRepo.WithByID(domainId)) } func (w WebsiteService) GetNginxConfigByScope(req dto.NginxConfigReq) (*dto.WebsiteNginxConfig, error) { keys, ok := dto.ScopeKeyMap[req.Scope] if !ok || len(keys) == 0 { return nil, nil } website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.WebSiteID)) if err != nil { return nil, err } var config dto.WebsiteNginxConfig params, err := getNginxParamsByKeys(constant.NginxScopeServer, keys, &website) if err != nil { return nil, err } config.Params = params config.Enable = len(params[0].Params) > 0 return &config, nil } func (w WebsiteService) UpdateNginxConfigByScope(req dto.NginxConfigReq) error { keys, ok := dto.ScopeKeyMap[req.Scope] if !ok || len(keys) == 0 { return nil } website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.WebSiteID)) if err != nil { return err } if req.Operate == dto.ConfigDel { return deleteNginxConfig(constant.NginxScopeServer, keys, &website) } params := getNginxParams(req.Params, keys) if req.Operate == dto.ConfigNew { if _, ok := dto.StaticFileKeyMap[req.Scope]; ok { params = getNginxParamsFromStaticFile(req.Scope, params) } } return updateNginxConfig(constant.NginxScopeServer, params, &website) } func (w WebsiteService) GetWebsiteNginxConfig(websiteId uint) (dto.FileInfo, error) { website, err := websiteRepo.GetFirst(commonRepo.WithByID(websiteId)) if err != nil { return dto.FileInfo{}, err } nginxApp, err := appRepo.GetFirst(appRepo.WithKey("nginx")) if err != nil { return dto.FileInfo{}, err } nginxInstall, err := appInstallRepo.GetFirst(appInstallRepo.WithAppId(nginxApp.ID)) if err != nil { return dto.FileInfo{}, err } configPath := path.Join(constant.AppInstallDir, "nginx", nginxInstall.Name, "conf", "conf.d", website.Alias+".conf") info, err := files.NewFileInfo(files.FileOption{ Path: configPath, Expand: true, }) if err != nil { return dto.FileInfo{}, err } return dto.FileInfo{FileInfo: *info}, nil } func (w WebsiteService) GetWebsiteHTTPS(websiteId uint) (dto.WebsiteHTTPS, error) { website, err := websiteRepo.GetFirst(commonRepo.WithByID(websiteId)) if err != nil { return dto.WebsiteHTTPS{}, err } var res dto.WebsiteHTTPS if website.WebSiteSSLID == 0 { res.Enable = false return res, nil } websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(website.WebSiteSSLID)) if err != nil { return dto.WebsiteHTTPS{}, err } res.SSL = websiteSSL res.Enable = true return res, nil } func (w WebsiteService) OpWebsiteHTTPS(req dto.WebsiteHTTPSOp) (dto.WebsiteHTTPS, error) { website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.WebsiteID)) if err != nil { return dto.WebsiteHTTPS{}, err } var ( res dto.WebsiteHTTPS websiteSSL model.WebSiteSSL ) res.Enable = req.Enable if req.Type == dto.SSLExisted { websiteSSL, err = websiteSSLRepo.GetFirst(commonRepo.WithByID(req.WebsiteSSLID)) if err != nil { return dto.WebsiteHTTPS{}, err } website.WebSiteSSLID = websiteSSL.ID if err := websiteRepo.Save(context.TODO(), &website); err != nil { return dto.WebsiteHTTPS{}, err } res.SSL = websiteSSL } if req.Type == dto.Manual { certBlock, _ := pem.Decode([]byte(req.Certificate)) cert, err := x509.ParseCertificate(certBlock.Bytes) if err != nil { return dto.WebsiteHTTPS{}, err } websiteSSL.ExpireDate = cert.NotAfter websiteSSL.StartDate = cert.NotBefore websiteSSL.Type = cert.Issuer.CommonName websiteSSL.Organization = cert.Issuer.Organization[0] websiteSSL.PrimaryDomain = cert.Subject.CommonName if len(cert.Subject.Names) > 0 { var domains []string for _, name := range cert.Subject.Names { if v, ok := name.Value.(string); ok { if v != cert.Subject.CommonName { domains = append(domains, v) } } } if len(domains) > 0 { websiteSSL.Domains = strings.Join(domains, "") } } websiteSSL.Provider = dto.Manual websiteSSL.PrivateKey = req.PrivateKey websiteSSL.Pem = req.Certificate res.SSL = websiteSSL } if req.Enable { website.Protocol = constant.ProtocolHTTPS if err := applySSL(website, websiteSSL); err != nil { return dto.WebsiteHTTPS{}, err } } else { website.Protocol = constant.ProtocolHTTP website.WebSiteSSLID = 0 if err := deleteListenAndServerName(website, []int{443}, []string{}); err != nil { return dto.WebsiteHTTPS{}, err } if err := deleteNginxConfig(constant.NginxScopeServer, getKeysFromStaticFile(dto.SSL), &website); err != nil { return dto.WebsiteHTTPS{}, err } } tx, ctx := getTxAndContext() if websiteSSL.ID == 0 { if err := websiteSSLRepo.Create(ctx, &websiteSSL); err != nil { return dto.WebsiteHTTPS{}, err } website.WebSiteSSLID = websiteSSL.ID } if err := websiteRepo.Save(ctx, &website); err != nil { return dto.WebsiteHTTPS{}, err } tx.Commit() return res, nil } func (w WebsiteService) PreInstallCheck(req dto.WebsiteInstallCheckReq) ([]dto.WebsitePreInstallCheck, error) { var ( res []dto.WebsitePreInstallCheck checkIds []uint showErr = false ) app, err := appRepo.GetFirst(appRepo.WithKey("nginx")) if err != nil { return nil, err } appInstall, _ := appInstallRepo.GetFirst(appInstallRepo.WithAppId(app.ID)) if reflect.DeepEqual(appInstall, model.AppInstall{}) { res = append(res, dto.WebsitePreInstallCheck{ Name: appInstall.Name, AppName: app.Name, Status: buserr.WithMessage(constant.ErrNotInstall, app.Name, nil).Error(), Version: appInstall.Version, }) showErr = true } else { checkIds = append(req.InstallIds, appInstall.ID) } for _, id := range checkIds { if err := syncById(id); err != nil { return nil, err } } if len(checkIds) > 0 { installList, _ := appInstallRepo.GetBy(commonRepo.WithIdsIn(checkIds)) for _, install := range installList { res = append(res, dto.WebsitePreInstallCheck{ Name: install.Name, Status: install.Status, Version: install.Version, AppName: install.App.Name, }) if install.Status != constant.StatusRunning { showErr = true } } } if showErr { return res, nil } else { return nil, nil } } func (w WebsiteService) GetWafConfig(req request.WebsiteWafReq) (dto.WebsiteWafConfig, error) { var res dto.WebsiteWafConfig website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.WebsiteID)) if err != nil { return res, nil } res.Enable = true if req.Key != "" { params, err := getNginxParamsByKeys(constant.NginxScopeServer, []string{"set"}, &website) if err != nil { return res, nil } for _, param := range params { if param.Params[0] == req.Key { res.Enable = len(param.Params) > 1 && param.Params[1] == "on" break } } } nginxFull, err := getNginxFull(&website) if err != nil { return res, nil } filePath := path.Join(nginxFull.SiteDir, "sites", website.Alias, "waf", "rules", req.Rule) content, err := os.ReadFile(filePath) if err != nil { return res, nil } res.FilePath = filePath res.Content = string(content) return res, nil } func (w WebsiteService) UpdateWafConfig(req request.WebsiteWafUpdate) error { website, err := websiteRepo.GetFirst(commonRepo.WithByID(req.WebsiteID)) if err != nil { return nil } updateValue := "on" if !req.Enable { updateValue = "off" } return updateNginxConfig(constant.NginxScopeServer, []dto.NginxParam{ {Name: "set", Params: []string{req.Key, updateValue}}, }, &website) }