haproxy-wi/app/modules/roxywi/common.py

import os
import glob
import logging as logger
from typing import Any, Union

from flask import request, g
from flask_jwt_extended import get_jwt
from flask_jwt_extended import verify_jwt_in_request

import app.modules.db.udp as udp_sql
import app.modules.db.roxy as roxy_sql
import app.modules.db.user as user_sql
import app.modules.db.group as group_sql
import app.modules.db.server as server_sql
import app.modules.db.history as history_sql
import app.modules.db.ha_cluster as ha_sql
import app.modules.roxy_wi_tools as roxy_wi_tools
from app.modules.roxywi.class_models import ErrorResponse
from app.modules.roxywi.exception import RoxywiResourceNotFound, RoxywiGroupMismatch, RoxywiGroupNotFound, \
	RoxywiPermissionError, RoxywiConflictError

get_config_var = roxy_wi_tools.GetConfigVar()


def get_user_group(**kwargs) -> int:
	try:
		verify_jwt_in_request()
		claims = get_jwt()
		user_group_id = claims['group']
		group = group_sql.get_group(user_group_id)
		if group.group_id == int(user_group_id):
			if kwargs.get('id'):
				user_group = group.group_id
			else:
				user_group = group.name
		else:
			user_group = ''
	except Exception as e:
		raise Exception(f'error: {e}')
	return user_group


def check_user_group_for_flask(api_token: bool = False):
	if api_token:
		return True
	verify_jwt_in_request()
	claims = get_jwt()
	user_id = claims['user_id']
	group_id = claims['group']

	if user_sql.check_user_group(user_id, group_id):
		return True
	else:
		logging('Roxy-WI server', 'warning: has tried to actions in not his group')
		return False


def check_user_group_for_socket(user_id: int, group_id: int) -> bool:
	if user_sql.check_user_group(user_id, group_id):
		return True
	else:
		logging('Roxy-WI server', 'warning: has tried to actions in not his group')
		return False


def check_is_server_in_group(server_ip: str) -> bool:
	group_id = get_user_group(id=1)
	server = server_sql.get_server_by_ip(server_ip)
	if (server.ip == server_ip and int(server.group_id) == int(group_id)) or group_id == 1:
		return True
	else:
		logging('Roxy-WI server', 'warning: has tried to actions in not his group server')
		return False


def get_files(folder, file_format, server_ip=None) -> list:
	if file_format == 'log':
		file = []
	else:
		file = set()
	return_files = set()
	i = 0
	for files in sorted(glob.glob(os.path.join(folder, f'*.{file_format}*'))):
		if file_format == 'log':
			try:
				file += [(i, files.split('/')[4])]
			except Exception as e:
				print(e)
		else:
			file.add(files.split('/')[-1])
		i += 1
	files = file
	if file_format == 'cfg' or file_format == 'conf':
		for file in files:
			ip = file.split("-")
			if server_ip == ip[0]:
				return_files.add(file)
		return sorted(return_files, reverse=True)
	else:
		return file


def logging(server_ip: Union[str, int], action: str, **kwargs) -> None:
	def setup_logger(log_file: str) -> None:
		"""Helper function to set up the logger configuration."""
		logger.basicConfig(
			filename=log_file,
			format='%(asctime)s %(levelname)s: %(message)s',
			level=logger.INFO,
			datefmt='%b %d %H:%M:%S'
		)
		logger.getLogger("paramiko").setLevel(logger.WARNING)

	# Extracted log path and file configuration
	log_path = get_config_var.get_config_var('main', 'log_path')
	log_file = f"{log_path}/roxy-wi.log"
	setup_logger(log_file)

	# JWT validation and extracting user's information
	verify_jwt_in_request()
	claims = get_jwt()
	user_id = claims['user_id']
	user = user_sql.get_user_id(user_id=user_id)
	user_group = get_user_group()
	ip = request.remote_addr

	if 'error' in action:
		log_level = logger.error
		action = action.replace('error: : ', '')
		action = action.replace('error: ', '')
	elif 'warning' in action:
		log_level = logger.warning
		action = action.replace('warning: ', '')
	else:
		log_level = logger.info

	log_message = f"from {ip} user: {user.username}, group: {user_group}, message: {action} on: {server_ip}"
	log_level(log_message)

	if kwargs.get('keep_history'):
		try:
			keep_action_history(kwargs.get('service'), action, server_ip, user.user_id, ip)
		except Exception as e:
			logger.error(f'Cannot save history: {e}')


def keep_action_history(service: str, action: str, server_ip: str, user_id: int, user_ip: str):
	if user_ip == '':
		user_ip = 'localhost'

	if service == 'HA cluster':
		try:
			server_id = server_ip
			hostname = ha_sql.select_cluster_name(int(server_id))
		except Exception as e:
			logging('Roxy-WI server', f'error: cannot get info about cluster {server_ip} for history: {e}')
			return
	elif service == 'UDP listener':
		try:
			server_id = int(server_ip)
			listener = udp_sql.get_listener(server_id)
			hostname = listener.name
		except Exception as e:
			logging('Roxy-WI server', f'error: cannot get info about Listener {server_ip} for history: {e}')
			return
	else:
		try:
			server = server_sql.get_server_by_ip(server_ip)
			server_id = server.server_id
			hostname = server.hostname
		except Exception as e:
			logging('Roxy-WI server', f'error: cannot get info about {server_ip} for history: {e}')
			return

	try:
		history_sql.insert_action_history(service, action, server_id, user_id, user_ip, server_ip, hostname)
	except Exception as e:
		logging('Roxy-WI server', f'error: cannot save a history: {e}')


def get_dick_permit(**kwargs):
	api_token = kwargs.get('token')
	if not kwargs.get('group_id'):
		try:
			group_id = get_user_group(id=1)
		except Exception as e:
			return str(e)
	else:
		group_id = kwargs.pop('group_id')

	if check_user_group_for_flask(api_token=api_token):
		try:
			servers = server_sql.get_dick_permit(group_id, **kwargs)
		except Exception as e:
			raise Exception(e)
		else:
			return servers
	else:
		print('Atata!')


def get_users_params(**kwargs):
	verify_jwt_in_request()
	user_data = get_jwt()

	try:
		user_id = user_data['user_id']
		user = user_sql.get_user_id(user_id)
	except Exception:
		raise Exception('error: Cannot get user id')

	if int(user_data['group']) != int(user.group_id):
		raise Exception('error: Wrong active group')

	try:
		role = user_sql.get_role_id(user_id, user.group_id)
	except Exception as e:
		raise Exception(f'error: Cannot get user role {e}')

	try:
		user_services = user_sql.select_user_services(user_id)
	except Exception as e:
		raise Exception(f'error: Cannot get user services {e}')

	if kwargs.get('virt') and kwargs.get('service') == 'haproxy':
		servers = get_dick_permit(virt=1, haproxy=1)
	elif kwargs.get('virt'):
		servers = get_dick_permit(virt=1)
	elif kwargs.get('disable'):
		servers = get_dick_permit(disable=0)
	elif kwargs.get('service'):
		servers = get_dick_permit(service=kwargs.get('service'))
	else:
		servers = get_dick_permit()

	user_lang = get_user_lang_for_flask()

	user_params = {
		'user': user.username,
		'role': role,
		'servers': servers,
		'user_services': user_services,
		'lang': user_lang,
		'user_id': user_id,
		'group_id': user.group_id
	}

	return user_params


def get_user_lang_for_flask() -> str:
	try:
		user_lang = request.cookies.get('lang')
	except Exception:
		return 'en'

	if user_lang is None:
		user_lang = 'en'

	return user_lang


def return_user_status() -> dict:
	user_subscription = {}
	user_subscription.setdefault('user_status', roxy_sql.get_user().Status)
	user_subscription.setdefault('user_plan', roxy_sql.get_user().Plan)

	return user_subscription


def return_unsubscribed_user_status() -> dict:
	user_subscription = {'user_status': 0, 'user_plan': 0}

	return user_subscription


def return_user_subscription():
	try:
		user_subscription = return_user_status()
	except Exception as e:
		user_subscription = return_unsubscribed_user_status()
		logging('Roxy-WI server', f'Cannot get a user plan: {e}')

	return user_subscription


def handle_exceptions(ex: Exception, server_ip: str, message: str, **kwargs: Any) -> None:
	"""
	:param server_ip:
	:param ex: The exception that was caught
	:param message: The error message to be logged and raised
	:param kwargs: Additional keyword arguments to be passed to the logging function
	:return: None

	"""
	logging(server_ip, f'error: {message}: {ex}', **kwargs)
	raise Exception(f'{message}: {ex}')


def is_user_has_access_to_its_group(user_id: int) -> None:
	if not user_sql.check_user_group(user_id, g.user_params['group_id']) and g.user_params['role'] != 1:
		raise RoxywiGroupMismatch


def is_user_has_access_to_group(user_id: int, group_id: int) -> None:
	if not user_sql.check_user_group(user_id, group_id) and g.user_params['role'] != 1:
		raise RoxywiGroupMismatch


def handle_json_exceptions(ex: Exception, message: str, server_ip='Roxy-WI server') -> dict:
	logging(server_ip, f'{message}: {ex}')
	return ErrorResponse(error=f'{message}: {ex}').model_dump(mode='json')


def handler_exceptions_for_json_data(ex: Exception, main_ex_mes: str = '') -> tuple[dict, int]:
	if isinstance(ex, KeyError):
		return handle_json_exceptions(ex, 'Missing key in JSON data'), 500
	elif isinstance(ex, ValueError):
		return handle_json_exceptions(ex, 'Wrong type or missing value in JSON data'), 500
	elif isinstance(ex, RoxywiResourceNotFound):
		return handle_json_exceptions(ex, 'Resource not found'), 404
	elif isinstance(ex, RoxywiGroupNotFound):
		return handle_json_exceptions(ex, 'Group not found'), 404
	elif isinstance(ex, RoxywiGroupMismatch):
		return handle_json_exceptions(ex, 'Resource not found in group'), 404
	elif isinstance(ex, RoxywiPermissionError):
		return handle_json_exceptions(ex, 'You cannot edit this resource'), 403
	elif isinstance(ex, RoxywiConflictError):
		return handle_json_exceptions(ex, 'Conflict'), 429
	else:
		return handle_json_exceptions(ex, main_ex_mes), 500