mongoose/examples/device-dashboard/net.c

260 lines
10 KiB
C
Raw Normal View History

2023-05-26 22:48:20 +08:00
// Copyright (c) 2023 Cesanta Software Limited
// All rights reserved
2023-05-26 22:48:20 +08:00
#include "net.h"
2023-05-26 22:48:20 +08:00
// Authenticated user.
// A user can be authenticated by:
// - a name:pass pair, passed in a header Authorization: Basic .....
// - an access_token, passed in a header Cookie: access_token=....
// When a user is shown a login screen, she enters a user:pass. If successful,
// a server responds with a http-only access_token cookie set.
struct user {
const char *name, *pass, *access_token;
};
// Settings
struct settings {
bool log_enabled;
int log_level;
long brightness;
char *device_name;
};
static struct settings s_settings = {true, 1, 57, NULL};
static const char *s_json_header =
"Content-Type: application/json\r\n"
"Cache-Control: no-cache\r\n";
2023-06-01 20:48:20 +08:00
2023-06-19 16:43:55 +08:00
int ui_event_next(int no, struct ui_event *e) {
2023-07-25 20:07:28 +08:00
if (no < 0 || no >= MAX_EVENTS_NO) return 0;
2023-06-19 16:43:55 +08:00
srand((unsigned) no);
2023-06-19 16:43:55 +08:00
e->type = (uint8_t) rand() % 4;
e->prio = (uint8_t) rand() % 3;
2023-07-25 20:07:28 +08:00
e->timestamp =
(unsigned long) ((int64_t) mg_now() - 86400 * 1000 /* one day back */ +
2023-07-25 20:07:28 +08:00
no * 300 * 1000 /* 5 mins between alerts */ +
1000 * (rand() % 300) /* randomize event time */) /
1000UL;
2023-07-25 20:07:28 +08:00
mg_snprintf(e->text, MAX_EVENT_TEXT_SIZE, "event#%d", no);
2023-06-19 16:43:55 +08:00
return no + 1;
}
2023-05-26 22:48:20 +08:00
static void timer_sntp_fn(void *param) { // SNTP timer function. Sync up time
2024-06-09 13:52:42 +08:00
mg_sntp_connect(param, "udp://time.google.com:123", NULL, NULL);
}
// Parse HTTP requests, return authenticated user or NULL
2023-05-26 22:48:20 +08:00
static struct user *authenticate(struct mg_http_message *hm) {
// In production, make passwords strong and tokens randomly generated
// In this example, user list is kept in RAM. In production, it can
// be backed by file, database, or some other method.
static struct user users[] = {
2023-05-26 22:48:20 +08:00
{"admin", "admin", "admin_token"},
{"user1", "user1", "user1_token"},
{"user2", "user2", "user2_token"},
{NULL, NULL, NULL},
};
2023-05-26 22:48:20 +08:00
char user[64], pass[64];
struct user *u, *result = NULL;
mg_http_creds(hm, user, sizeof(user), pass, sizeof(pass));
MG_VERBOSE(("user [%s] pass [%s]", user, pass));
2023-05-26 22:48:20 +08:00
if (user[0] != '\0' && pass[0] != '\0') {
// Both user and password is set, search by user/password
2023-05-26 22:48:20 +08:00
for (u = users; result == NULL && u->name != NULL; u++)
if (strcmp(user, u->name) == 0 && strcmp(pass, u->pass) == 0) result = u;
} else if (user[0] == '\0') {
// Only password is set, search by token
2023-05-26 22:48:20 +08:00
for (u = users; result == NULL && u->name != NULL; u++)
if (strcmp(pass, u->access_token) == 0) result = u;
}
2023-05-26 22:48:20 +08:00
return result;
}
2023-05-26 22:48:20 +08:00
static void handle_login(struct mg_connection *c, struct user *u) {
char cookie[256];
const char *cookie_name = c->is_tls ? "secure_access_token" : "access_token";
2023-05-26 22:48:20 +08:00
mg_snprintf(cookie, sizeof(cookie),
"Set-Cookie: %s=%s; Path=/; "
2023-05-30 22:47:07 +08:00
"%sHttpOnly; SameSite=Lax; Max-Age=%d\r\n",
cookie_name, u->access_token,
c->is_tls ? "Secure; " : "", 3600 * 24);
2023-05-26 22:48:20 +08:00
mg_http_reply(c, 200, cookie, "{%m:%m}", MG_ESC("user"), MG_ESC(u->name));
}
2023-05-26 22:48:20 +08:00
static void handle_logout(struct mg_connection *c) {
2023-05-30 22:47:07 +08:00
char cookie[256];
const char *cookie_name = c->is_tls ? "secure_access_token" : "access_token";
2023-05-30 22:47:07 +08:00
mg_snprintf(cookie, sizeof(cookie),
"Set-Cookie: %s=; Path=/; "
2023-05-30 22:47:07 +08:00
"Expires=Thu, 01 Jan 1970 00:00:00 UTC; "
"%sHttpOnly; Max-Age=0; \r\n", cookie_name,
2023-05-30 22:47:07 +08:00
c->is_tls ? "Secure; " : "");
mg_http_reply(c, 200, cookie, "true\n");
2022-05-23 22:27:19 +08:00
}
2023-05-26 22:48:20 +08:00
static void handle_debug(struct mg_connection *c, struct mg_http_message *hm) {
int level = mg_json_get_long(hm->body, "$.level", MG_LL_DEBUG);
mg_log_set(level);
mg_http_reply(c, 200, "", "Debug level set to %d\n", level);
}
2023-05-18 01:26:45 +08:00
2023-05-26 22:48:20 +08:00
static size_t print_int_arr(void (*out)(char, void *), void *ptr, va_list *ap) {
size_t i, len = 0, num = va_arg(*ap, size_t); // Number of items in the array
2023-05-26 22:48:20 +08:00
int *arr = va_arg(*ap, int *); // Array ptr
for (i = 0; i < num; i++) {
2023-05-26 22:48:20 +08:00
len += mg_xprintf(out, ptr, "%s%d", i == 0 ? "" : ",", arr[i]);
2022-06-03 14:13:08 +08:00
}
2023-05-26 22:48:20 +08:00
return len;
2022-06-03 14:13:08 +08:00
}
2023-05-26 22:48:20 +08:00
static void handle_stats_get(struct mg_connection *c) {
int points[] = {21, 22, 22, 19, 18, 20, 23, 23, 22, 22, 22, 23, 22};
2023-11-09 01:02:46 +08:00
mg_http_reply(c, 200, s_json_header, "{%m:%d,%m:%d,%m:[%M]}\n",
2023-05-26 22:48:20 +08:00
MG_ESC("temperature"), 21, //
MG_ESC("humidity"), 67, //
MG_ESC("points"), print_int_arr,
sizeof(points) / sizeof(points[0]), points);
2022-06-03 14:13:08 +08:00
}
2023-05-26 22:48:20 +08:00
static size_t print_events(void (*out)(char, void *), void *ptr, va_list *ap) {
size_t len = 0;
2023-06-19 16:43:55 +08:00
struct ui_event ev;
int pageno = va_arg(*ap, int);
2023-06-19 16:43:55 +08:00
int no = (pageno - 1) * EVENTS_PER_PAGE;
int end = no + EVENTS_PER_PAGE;
2023-06-19 16:43:55 +08:00
while ((no = ui_event_next(no, &ev)) != 0 && no <= end) {
2023-11-09 01:02:46 +08:00
len += mg_xprintf(out, ptr, "%s{%m:%lu,%m:%d,%m:%d,%m:%m}\n", //
len == 0 ? "" : ",", //
MG_ESC("time"), ev.timestamp, //
MG_ESC("type"), ev.type, //
MG_ESC("prio"), ev.prio, //
2023-06-19 16:43:55 +08:00
MG_ESC("text"), MG_ESC(ev.text));
2022-08-20 07:03:15 +08:00
}
2023-05-26 22:48:20 +08:00
return len;
2022-08-20 07:03:15 +08:00
}
2023-07-25 20:07:28 +08:00
static void handle_events_get(struct mg_connection *c,
struct mg_http_message *hm) {
2023-06-23 19:21:24 +08:00
int pageno = mg_json_get_long(hm->body, "$.page", 1);
2023-11-09 01:02:46 +08:00
mg_http_reply(c, 200, s_json_header, "{%m:[%M], %m:%d}\n", MG_ESC("arr"),
2023-06-19 16:43:55 +08:00
print_events, pageno, MG_ESC("totalCount"), MAX_EVENTS_NO);
2022-08-20 07:03:15 +08:00
}
2023-05-26 22:48:20 +08:00
static void handle_settings_set(struct mg_connection *c, struct mg_str body) {
struct settings settings;
char *s = mg_json_get_str(body, "$.device_name");
bool ok = true;
2023-05-26 22:48:20 +08:00
memset(&settings, 0, sizeof(settings));
mg_json_get_bool(body, "$.log_enabled", &settings.log_enabled);
settings.log_level = mg_json_get_long(body, "$.log_level", 0);
settings.brightness = mg_json_get_long(body, "$.brightness", 0);
2023-05-29 00:06:47 +08:00
if (s && strlen(s) < MAX_DEVICE_NAME) {
free(settings.device_name);
settings.device_name = s;
} else {
free(s);
}
s_settings = settings; // Save to the device flash
2023-05-26 22:48:20 +08:00
mg_http_reply(c, 200, s_json_header,
"{%m:%s,%m:%m}", //
MG_ESC("status"), ok ? "true" : "false", //
MG_ESC("message"), MG_ESC(ok ? "Success" : "Failed"));
}
static void handle_settings_get(struct mg_connection *c) {
2023-11-09 01:02:46 +08:00
mg_http_reply(c, 200, s_json_header, "{%m:%s,%m:%hhu,%m:%hhu,%m:%m}\n", //
2023-05-26 22:48:20 +08:00
MG_ESC("log_enabled"),
s_settings.log_enabled ? "true" : "false", //
MG_ESC("log_level"), s_settings.log_level, //
MG_ESC("brightness"), s_settings.brightness, //
MG_ESC("device_name"), MG_ESC(s_settings.device_name));
}
2022-12-28 05:12:55 +08:00
static void handle_firmware_upload(struct mg_connection *c,
struct mg_http_message *hm) {
char name[64], offset[20], total[20];
struct mg_str data = hm->body;
long ofs = -1, tot = -1;
name[0] = offset[0] = '\0';
mg_http_get_var(&hm->query, "name", name, sizeof(name));
mg_http_get_var(&hm->query, "offset", offset, sizeof(offset));
mg_http_get_var(&hm->query, "total", total, sizeof(total));
MG_INFO(("File %s, offset %s, len %lu", name, offset, data.len));
if ((ofs = mg_json_get_long(mg_str(offset), "$", -1)) < 0 ||
(tot = mg_json_get_long(mg_str(total), "$", -1)) < 0) {
mg_http_reply(c, 500, "", "offset and total not set\n");
} else if (ofs == 0 && mg_ota_begin((size_t) tot) == false) {
mg_http_reply(c, 500, "", "mg_ota_begin(%ld) failed\n", tot);
2024-03-15 15:42:24 +08:00
} else if (data.len > 0 && mg_ota_write(data.buf, data.len) == false) {
mg_http_reply(c, 500, "", "mg_ota_write(%lu) @%ld failed\n", data.len, ofs);
mg_ota_end();
} else if (data.len == 0 && mg_ota_end() == false) {
mg_http_reply(c, 500, "", "mg_ota_end() failed\n", tot);
} else {
mg_http_reply(c, 200, s_json_header, "true\n");
}
}
// HTTP request handler function
static void fn(struct mg_connection *c, int ev, void *ev_data) {
if (ev == MG_EV_ACCEPT) {
if (c->fn_data != NULL) { // TLS listener!
struct mg_tls_opts opts = {0};
opts.cert = mg_unpacked("/certs/server_cert.pem");
opts.key = mg_unpacked("/certs/server_key.pem");
mg_tls_init(c, &opts);
}
} else if (ev == MG_EV_HTTP_MSG) {
struct mg_http_message *hm = (struct mg_http_message *) ev_data;
2023-05-26 22:48:20 +08:00
struct user *u = authenticate(hm);
2024-04-18 03:13:10 +08:00
if (mg_match(hm->uri, mg_str("/api/#"), NULL) && u == NULL) {
2023-05-26 22:48:20 +08:00
mg_http_reply(c, 403, "", "Not Authorised\n");
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/login"), NULL)) {
2023-05-26 22:48:20 +08:00
handle_login(c, u);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/logout"), NULL)) {
2023-05-26 22:48:20 +08:00
handle_logout(c);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/debug"), NULL)) {
2023-05-26 22:48:20 +08:00
handle_debug(c, hm);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/stats/get"), NULL)) {
2023-05-26 22:48:20 +08:00
handle_stats_get(c);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/events/get"), NULL)) {
handle_events_get(c, hm);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/settings/get"), NULL)) {
2023-05-26 22:48:20 +08:00
handle_settings_get(c);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/settings/set"), NULL)) {
2023-05-26 22:48:20 +08:00
handle_settings_set(c, hm->body);
2024-04-18 03:13:10 +08:00
} else if (mg_match(hm->uri, mg_str("/api/firmware/upload"), NULL)) {
handle_firmware_upload(c, hm);
} else {
2022-11-08 02:23:47 +08:00
struct mg_http_serve_opts opts;
memset(&opts, 0, sizeof(opts));
#if MG_ARCH == MG_ARCH_UNIX || MG_ARCH == MG_ARCH_WIN32
opts.root_dir = "web_root"; // On workstations, use filesystem
#else
opts.root_dir = "/web_root"; // On embedded, use packed files
opts.fs = &mg_fs_packed;
#endif
mg_http_serve_dir(c, ev_data, &opts);
}
2022-09-09 18:11:53 +08:00
MG_DEBUG(("%lu %.*s %.*s -> %.*s", c->id, (int) hm->method.len,
2024-03-15 15:42:24 +08:00
hm->method.buf, (int) hm->uri.len, hm->uri.buf, (int) 3,
2022-09-09 18:11:53 +08:00
&c->send.buf[9]));
}
}
2023-05-26 22:48:20 +08:00
void web_init(struct mg_mgr *mgr) {
s_settings.device_name = strdup("My Device");
mg_http_listen(mgr, HTTP_URL, fn, NULL);
mg_http_listen(mgr, HTTPS_URL, fn, (void *) 1);
2023-05-26 22:48:20 +08:00
mg_timer_add(mgr, 3600 * 1000, MG_TIMER_RUN_NOW | MG_TIMER_REPEAT,
timer_sntp_fn, mgr);
}