haproxy-wi/app/ovw.py

import funct
import os
import cgi
import sql

form = cgi.FieldStorage()

def get_overview():
	import http.cookies
	from jinja2 import Environment, FileSystemLoader
	env = Environment(loader=FileSystemLoader('templates/ajax'))
	template = env.get_template('overview.html')
	haproxy_config_path  = sql.get_setting('haproxy_config_path')
	cookie = http.cookies.SimpleCookie(os.environ.get("HTTP_COOKIE"))
	user_id = cookie.get('uuid')
	haproxy_sock_port = sql.get_setting('haproxy_sock_port')
	
	listhap = sql.get_dick_permit()
	commands = [ "ls -l %s |awk '{ print $6\" \"$7\" \"$8}'" % haproxy_config_path ]
	commands1 = [ "ps ax |grep waf/bin/modsecurity |grep -v grep |wc -l" ]
	servers = []

	for server in listhap:
		server_status = ()
		cmd = 'echo "show info" |nc %s %s |grep -e "Process_num"' % (server[2], haproxy_sock_port)
		server_status = (server[1],server[2], funct.server_status(funct.subprocess_execute(cmd)), funct.ssh_command(server[2], commands), funct.ssh_command(server[2], commands1))
		servers.append(server_status)

	template = template.render(service_status = servers, role = sql.get_user_role_by_uuid(user_id.value))
	print(template)	
	
def get_overviewWaf(url):
	import http.cookies
	from jinja2 import Environment, FileSystemLoader
	env = Environment(loader=FileSystemLoader('templates/ajax'))
	template = env.get_template('overivewWaf.html')
	cookie = http.cookies.SimpleCookie(os.environ.get("HTTP_COOKIE"))
	user_id = cookie.get('uuid')
	haproxy_dir  = sql.get_setting('haproxy_dir')
	haproxy_sock_port = sql.get_setting('haproxy_sock_port')
	
	listhap = sql.get_dick_permit()
	commands = [ "ps ax |grep waf/bin/modsecurity |grep -v grep |wc -l" ]
	commands1 = [ "cat %s/waf/modsecurity.conf  |grep SecRuleEngine |grep -v '#' |awk '{print $2}'" % haproxy_dir ]	
	servers = []

	for server in listhap:
		server_status = ()
		server_status = (server[1],server[2], funct.ssh_command(server[2], commands), funct.ssh_command(server[2], commands1), sql.select_waf_metrics_enable_server(server[2]))
		servers.append(server_status)

	template = template.render(service_status = servers, role = sql.get_user_role_by_uuid(user_id.value), url=url)
	print(template)	
		
def get_overviewServers():
	import http.cookies
	from jinja2 import Environment, FileSystemLoader
	env = Environment(loader=FileSystemLoader('templates/ajax'))
	template = env.get_template('overviewServers.html')
	haproxy_sock_port = sql.get_setting('haproxy_sock_port')
	
	listhap = sql.get_dick_permit()
	commands =  [ "top -u haproxy -b -n 1" ]
	servers = []
	
	for server in sorted(listhap):
		server_status = ()
		cmd = 'echo "show info" |nc %s %s |grep -e "Ver\|CurrConns\|SessRate\|Maxco\|MB\|Uptime:"' % (server[2], haproxy_sock_port)
		out = funct.subprocess_execute(cmd)
		out1 = ""
		for k in out:
			if "Ncat: Connection refused." not in k:
				for r in k:
					out1 += r
					out1 += "<br />"
			else:
				out1 = "Can\'t connect to HAproxy"
				
		server_status = (server[1],server[2], out1, funct.ssh_command(server[2], commands),funct.show_backends(server[2], ret=1))
		servers.append(server_status)
	
	template = template.render(service_status = servers)
	print(template)	
	
def get_map(serv):
	from datetime import datetime
	from pytz import timezone
	import networkx as nx
	import matplotlib
	matplotlib.use('Agg')
	import matplotlib.pyplot as plt
	
	stats_port= sql.get_setting('stats_port')
	haproxy_config_path  = sql.get_setting('haproxy_config_path')
	hap_configs_dir = funct.get_config_var('configs', 'haproxy_save_configs_dir')
	date = funct.get_data('config')
	cfg = hap_configs_dir + serv + "-" + date + ".cfg"
	
	print('<center>')
	print("<h3>Map from %s</h3><br />" % serv)
	
	G = nx.DiGraph()
	
	funct.get_config(serv, cfg)	
	try:
		conf = open(cfg, "r")
	except IOError:
		print('<div class="alert alert-danger">Can\'t read import config file</div>')
	
	node = ""
	line_new2 = [1,""]
	i = 1200
	k = 1200
	j = 0
	m = 0
	for line in conf:
		if "listen" in line or "frontend" in line:
			if "stats" not in line:				
				node = line
				i = i - 500	
		if line.find("backend") == 0: 
			node = line
			i = i - 500	
			G.add_node(node,pos=(k,i),label_pos=(k,i+150))
		
		if "bind" in line:
			try:
				bind = line.split(":")
				if stats_port not in bind[1]:
					bind[1] = bind[1].strip(' ')
					bind = bind[1].split("crt")
					node = node.strip(' \t\n\r')
					node = node + ":" + bind[0]
					G.add_node(node,pos=(k,i),label_pos=(k,i+150))
			except:
				pass

		if "server " in line or "use_backend" in line or "default_backend" in line and "stats" not in line:
			if "timeout" not in line and "default-server" not in line and "#" not in line and "stats" not in line:
				i = i - 300
				j = j + 1				
				if "check" in line:
					line_new = line.split("check")
				else:
					line_new = line.split("if ")
				if "server" in line:
					line_new1 = line_new[0].split("server")
					line_new[0] = line_new1[1]	
					line_new2 = line_new[0].split(":")
					line_new[0] = line_new2[0]					
				
				line_new[0] = line_new[0].strip(' \t\n\r')
				line_new2[1] = line_new2[1].strip(' \t\n\r')

				if j % 2 == 0:
					G.add_node(line_new[0],pos=(k+250,i-350),label_pos=(k+225,i-100))
				else:
					G.add_node(line_new[0],pos=(k-250,i-50),label_pos=(k-225,i+180))

				if line_new2[1] != "":	
					G.add_edge(node, line_new[0], port=line_new2[1])
				else:
					G.add_edge(node,line_new[0])

	os.system("/bin/rm -f " + cfg)	

	pos=nx.get_node_attributes(G,'pos')
	pos_label=nx.get_node_attributes(G,'label_pos')
	edge_labels = nx.get_edge_attributes(G,'port')
	
	try:
		plt.figure(10,figsize=(9.5,15))
		nx.draw(G, pos, with_labels=False, font_weight='bold', width=3, alpha=0.1,linewidths=5)	
		nx.draw_networkx_nodes(G,pos, node_color="skyblue", node_size=100, alpha=0.8, node_shape="p")
		nx.draw_networkx_labels(G,pos=pos_label, alpha=1, font_color="green", font_size=10)
		nx.draw_networkx_edges(G,pos, width=0.5,alpha=0.5, edge_color="#5D9CEB",arrows=False)
		nx.draw_networkx_edge_labels(G, pos,label_pos=0.5,font_color="blue", labels=edge_labels, font_size=8)
		
		plt.savefig("map.png")
		plt.show()
	except Exception as e:
		print('<div class="alert alert-danger">' + str(e) + '</div>')
		
	cmd = "rm -f "+os.path.dirname(os.getcwd())+"/map*.png && mv map.png "+os.path.dirname(os.getcwd())+"/map"+date+".png"
	output, stderr = funct.subprocess_execute(cmd)
	print(stderr)

	print('<img src="/map%s.png" alt="map">' % date)
v1.10.2.1 Ajax for auto-refresh pages, improved design 7 years ago			`import funct`
v1.10.2.3 7 years ago			`import os`
			`import cgi`
v2.0 Meet Haproxy-wi 2.0! Now with DB and Admin web interface! Life has become easier, life has become more cheerful! 7 years ago			`import sql`
v1.10.2.1 Ajax for auto-refresh pages, improved design 7 years ago
v1.10.2.3 7 years ago			`form = cgi.FieldStorage()`
v1.10.2.3 Afax, bugs, design 7 years ago
v1.10.2.1 Ajax for auto-refresh pages, improved design 7 years ago			`def get_overview():`
v2.8 Meet metrics! Now in HAProxy-WI you can see count incomning connections! 6 years ago			`import http.cookies`
v2.7.3 6 years ago			`from jinja2 import Environment, FileSystemLoader`
			`env = Environment(loader=FileSystemLoader('templates/ajax'))`
			`template = env.get_template('overview.html')`
v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`haproxy_config_path = sql.get_setting('haproxy_config_path')`
v2.7.3 6 years ago			`cookie = http.cookies.SimpleCookie(os.environ.get("HTTP_COOKIE"))`
			`user_id = cookie.get('uuid')`
v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`haproxy_sock_port = sql.get_setting('haproxy_sock_port')`
v2.7.3 6 years ago
v2.4 Bugs 7 years ago			`listhap = sql.get_dick_permit()`
v2.6.2 Improved Overview page 6 years ago			`commands = [ "ls -l %s \|awk '{ print $6\" \"$7\" \"$8}'" % haproxy_config_path ]`
v3.1 Meet Web application firewall! 6 years ago			`commands1 = [ "ps ax \|grep waf/bin/modsecurity \|grep -v grep \|wc -l" ]`
v2.7.3 6 years ago			`servers = []`
v1.10.2.1 Ajax for auto-refresh pages, improved design 7 years ago
v2.0 Meet Haproxy-wi 2.0! Now with DB and Admin web interface! Life has become easier, life has become more cheerful! 7 years ago			`for server in listhap:`
v2.7.3 6 years ago			`server_status = ()`
v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`cmd = 'echo "show info" \|nc %s %s \|grep -e "Process_num"' % (server[2], haproxy_sock_port)`
v3.1 Meet Web application firewall! 6 years ago			`server_status = (server[1],server[2], funct.server_status(funct.subprocess_execute(cmd)), funct.ssh_command(server[2], commands), funct.ssh_command(server[2], commands1))`
v2.7.3 6 years ago			`servers.append(server_status)`
v1.10.2.1 Ajax for auto-refresh pages, improved design 7 years ago
v2.7.3 6 years ago			`template = template.render(service_status = servers, role = sql.get_user_role_by_uuid(user_id.value))`
			`print(template)`
v3.1 Meet Web application firewall! 6 years ago
v3.2 WAF page! 6 years ago			`def get_overviewWaf(url):`
v3.1 Meet Web application firewall! 6 years ago			`import http.cookies`
			`from jinja2 import Environment, FileSystemLoader`
			`env = Environment(loader=FileSystemLoader('templates/ajax'))`
			`template = env.get_template('overivewWaf.html')`
			`cookie = http.cookies.SimpleCookie(os.environ.get("HTTP_COOKIE"))`
			`user_id = cookie.get('uuid')`
			`haproxy_dir = sql.get_setting('haproxy_dir')`
			`haproxy_sock_port = sql.get_setting('haproxy_sock_port')`

			`listhap = sql.get_dick_permit()`
			`commands = [ "ps ax \|grep waf/bin/modsecurity \|grep -v grep \|wc -l" ]`
			`commands1 = [ "cat %s/waf/modsecurity.conf \|grep SecRuleEngine \|grep -v '#' \|awk '{print $2}'" % haproxy_dir ]`
			`servers = []`

			`for server in listhap:`
			`server_status = ()`
v3.2 WAF page! 6 years ago			`server_status = (server[1],server[2], funct.ssh_command(server[2], commands), funct.ssh_command(server[2], commands1), sql.select_waf_metrics_enable_server(server[2]))`
v3.1 Meet Web application firewall! 6 years ago			`servers.append(server_status)`

v3.2 WAF page! 6 years ago			`template = template.render(service_status = servers, role = sql.get_user_role_by_uuid(user_id.value), url=url)`
v3.1 Meet Web application firewall! 6 years ago			`print(template)`
v2.8 Meet metrics! Now in HAProxy-WI you can see count incomning connections! 6 years ago
v2.5.4.1 accelerated work page overview 7 years ago			`def get_overviewServers():`
v2.8 Meet metrics! Now in HAProxy-WI you can see count incomning connections! 6 years ago			`import http.cookies`
v2.7.3 6 years ago			`from jinja2 import Environment, FileSystemLoader`
			`env = Environment(loader=FileSystemLoader('templates/ajax'))`
			`template = env.get_template('overviewServers.html')`
v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`haproxy_sock_port = sql.get_setting('haproxy_sock_port')`
v2.7.3 6 years ago
v2.5.4.1 accelerated work page overview 7 years ago			`listhap = sql.get_dick_permit()`
v2.6.2 Improved Overview page 6 years ago			`commands = [ "top -u haproxy -b -n 1" ]`
v2.7.3 6 years ago			`servers = []`
v2.6.2 Improved Overview page 6 years ago
v2.0 Meet Haproxy-wi 2.0! Now with DB and Admin web interface! Life has become easier, life has become more cheerful! 7 years ago			`for server in sorted(listhap):`
v2.7.3 6 years ago			`server_status = ()`
v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`cmd = 'echo "show info" \|nc %s %s \|grep -e "Ver\\|CurrConns\\|SessRate\\|Maxco\\|MB\\|Uptime:"' % (server[2], haproxy_sock_port)`
v2.6.2 Improved Overview page 6 years ago			`out = funct.subprocess_execute(cmd)`
v2.7.3 6 years ago			`out1 = ""`
v2.6.2 Improved Overview page 6 years ago			`for k in out:`
			`if "Ncat: Connection refused." not in k:`
			`for r in k:`
v2.7.3 6 years ago			`out1 += r`
			`out1 += "<br />"`
v2.6.2 Improved Overview page 6 years ago			`else:`
v2.7.3 6 years ago			`out1 = "Can\'t connect to HAproxy"`

			`server_status = (server[1],server[2], out1, funct.ssh_command(server[2], commands),funct.show_backends(server[2], ret=1))`
			`servers.append(server_status)`

v3.1 Meet Web application firewall! 6 years ago			`template = template.render(service_status = servers)`
v2.7.3 6 years ago			`print(template)`
v1.10.2.3 Afax, bugs, design 7 years ago
			`def get_map(serv):`
			`from datetime import datetime`
			`from pytz import timezone`
			`import networkx as nx`
			`import matplotlib`
			`matplotlib.use('Agg')`
			`import matplotlib.pyplot as plt`

v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`stats_port= sql.get_setting('stats_port')`
			`haproxy_config_path = sql.get_setting('haproxy_config_path')`
v2.8 Meet metrics! Now in HAProxy-WI you can see count incomning connections! 6 years ago			`hap_configs_dir = funct.get_config_var('configs', 'haproxy_save_configs_dir')`
v2.0.3 1. Code is optimized. 2. Add new pages: "View users actions logs", "HAproxy-wi view settings" 3. Bugs fixed 4. Some design changes 7 years ago			`date = funct.get_data('config')`
			`cfg = hap_configs_dir + serv + "-" + date + ".cfg"`
v1.10.2.3 Afax, bugs, design 7 years ago
			`print('<center>')`
			`print("<h3>Map from %s</h3><br />" % serv)`

			`G = nx.DiGraph()`

			`funct.get_config(serv, cfg)`
v2.0.6 7 years ago			`try:`
			`conf = open(cfg, "r")`
			`except IOError:`
			`print('<div class="alert alert-danger">Can\'t read import config file</div>')`
v1.10.2.3 Afax, bugs, design 7 years ago
			`node = ""`
			`line_new2 = [1,""]`
			`i = 1200`
			`k = 1200`
			`j = 0`
			`m = 0`
			`for line in conf:`
			`if "listen" in line or "frontend" in line:`
			`if "stats" not in line:`
			`node = line`
			`i = i - 500`
			`if line.find("backend") == 0:`
			`node = line`
			`i = i - 500`
			`G.add_node(node,pos=(k,i),label_pos=(k,i+150))`

			`if "bind" in line:`
v2.5.4 View Apache logs, bugs fix 7 years ago			`try:`
			`bind = line.split(":")`
			`if stats_port not in bind[1]:`
			`bind[1] = bind[1].strip(' ')`
			`bind = bind[1].split("crt")`
			`node = node.strip(' \t\n\r')`
			`node = node + ":" + bind[0]`
			`G.add_node(node,pos=(k,i),label_pos=(k,i+150))`
			`except:`
			`pass`
v1.10.2.3 Afax, bugs, design 7 years ago
			`if "server " in line or "use_backend" in line or "default_backend" in line and "stats" not in line:`
v2.0.6 7 years ago			`if "timeout" not in line and "default-server" not in line and "#" not in line and "stats" not in line:`
v1.10.2.3 Afax, bugs, design 7 years ago			`i = i - 300`
			`j = j + 1`
			`if "check" in line:`
			`line_new = line.split("check")`
			`else:`
			`line_new = line.split("if ")`
			`if "server" in line:`
			`line_new1 = line_new[0].split("server")`
			`line_new[0] = line_new1[1]`
			`line_new2 = line_new[0].split(":")`
			`line_new[0] = line_new2[0]`

			`line_new[0] = line_new[0].strip(' \t\n\r')`
			`line_new2[1] = line_new2[1].strip(' \t\n\r')`

			`if j % 2 == 0:`
			`G.add_node(line_new[0],pos=(k+250,i-350),label_pos=(k+225,i-100))`
			`else:`
			`G.add_node(line_new[0],pos=(k-250,i-50),label_pos=(k-225,i+180))`

			`if line_new2[1] != "":`
			`G.add_edge(node, line_new[0], port=line_new2[1])`
			`else:`
			`G.add_edge(node,line_new[0])`

			`os.system("/bin/rm -f " + cfg)`

			`pos=nx.get_node_attributes(G,'pos')`
			`pos_label=nx.get_node_attributes(G,'label_pos')`
			`edge_labels = nx.get_edge_attributes(G,'port')`

			`try:`
			`plt.figure(10,figsize=(9.5,15))`
			`nx.draw(G, pos, with_labels=False, font_weight='bold', width=3, alpha=0.1,linewidths=5)`
			`nx.draw_networkx_nodes(G,pos, node_color="skyblue", node_size=100, alpha=0.8, node_shape="p")`
			`nx.draw_networkx_labels(G,pos=pos_label, alpha=1, font_color="green", font_size=10)`
			`nx.draw_networkx_edges(G,pos, width=0.5,alpha=0.5, edge_color="#5D9CEB",arrows=False)`
			`nx.draw_networkx_edge_labels(G, pos,label_pos=0.5,font_color="blue", labels=edge_labels, font_size=8)`

			`plt.savefig("map.png")`
			`plt.show()`
			`except Exception as e:`
v2.0.6 7 years ago			`print('<div class="alert alert-danger">' + str(e) + '</div>')`
v1.10.2.3 Afax, bugs, design 7 years ago
v3.0 Most settings migrate into DB, improved install script, and haproxy install script 6 years ago			`cmd = "rm -f "+os.path.dirname(os.getcwd())+"/map*.png && mv map.png "+os.path.dirname(os.getcwd())+"/map"+date+".png"`
v2.6.2 Bugs 6 years ago			`output, stderr = funct.subprocess_execute(cmd)`
			`print(stderr)`

v3.0 Show config and compare page improved 6 years ago			`print('<img src="/map%s.png" alt="map">' % date)`