mirror of
https://github.com/TeaOSLab/EdgeAPI.git
synced 2025-11-04 16:00:24 +08:00
220 lines
4.8 KiB
Go
220 lines
4.8 KiB
Go
package models
|
|
|
|
import (
|
|
"github.com/TeaOSLab/EdgeAPI/internal/errors"
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/ipconfigs"
|
|
_ "github.com/go-sql-driver/mysql"
|
|
"github.com/iwind/TeaGo/Tea"
|
|
"github.com/iwind/TeaGo/dbs"
|
|
"github.com/iwind/TeaGo/lists"
|
|
"github.com/iwind/TeaGo/types"
|
|
)
|
|
|
|
const (
|
|
IPListStateEnabled = 1 // 已启用
|
|
IPListStateDisabled = 0 // 已禁用
|
|
)
|
|
|
|
var listTypeCacheMap = map[int64]string{} // listId => type
|
|
|
|
type IPListDAO dbs.DAO
|
|
|
|
func NewIPListDAO() *IPListDAO {
|
|
return dbs.NewDAO(&IPListDAO{
|
|
DAOObject: dbs.DAOObject{
|
|
DB: Tea.Env,
|
|
Table: "edgeIPLists",
|
|
Model: new(IPList),
|
|
PkName: "id",
|
|
},
|
|
}).(*IPListDAO)
|
|
}
|
|
|
|
var SharedIPListDAO *IPListDAO
|
|
|
|
func init() {
|
|
dbs.OnReady(func() {
|
|
SharedIPListDAO = NewIPListDAO()
|
|
})
|
|
}
|
|
|
|
// 启用条目
|
|
func (this *IPListDAO) EnableIPList(tx *dbs.Tx, id int64) error {
|
|
_, err := this.Query(tx).
|
|
Pk(id).
|
|
Set("state", IPListStateEnabled).
|
|
Update()
|
|
return err
|
|
}
|
|
|
|
// 禁用条目
|
|
func (this *IPListDAO) DisableIPList(tx *dbs.Tx, id int64) error {
|
|
_, err := this.Query(tx).
|
|
Pk(id).
|
|
Set("state", IPListStateDisabled).
|
|
Update()
|
|
return err
|
|
}
|
|
|
|
// 查找启用中的条目
|
|
func (this *IPListDAO) FindEnabledIPList(tx *dbs.Tx, id int64) (*IPList, error) {
|
|
result, err := this.Query(tx).
|
|
Pk(id).
|
|
Attr("state", IPListStateEnabled).
|
|
Find()
|
|
if result == nil {
|
|
return nil, err
|
|
}
|
|
return result.(*IPList), err
|
|
}
|
|
|
|
// 根据主键查找名称
|
|
func (this *IPListDAO) FindIPListName(tx *dbs.Tx, id int64) (string, error) {
|
|
return this.Query(tx).
|
|
Pk(id).
|
|
Result("name").
|
|
FindStringCol("")
|
|
}
|
|
|
|
// 获取名单类型
|
|
func (this *IPListDAO) FindIPListTypeCacheable(tx *dbs.Tx, listId int64) (string, error) {
|
|
// 检查缓存
|
|
SharedCacheLocker.RLock()
|
|
listType, ok := listTypeCacheMap[listId]
|
|
SharedCacheLocker.RUnlock()
|
|
if ok {
|
|
return listType, nil
|
|
}
|
|
|
|
listType, err := this.Query(tx).
|
|
Pk(listId).
|
|
Result("type").
|
|
FindStringCol("")
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
if len(listType) == 0 {
|
|
return "", nil
|
|
}
|
|
|
|
// 保存缓存
|
|
SharedCacheLocker.Lock()
|
|
listTypeCacheMap[listId] = listType
|
|
SharedCacheLocker.Unlock()
|
|
|
|
return listType, nil
|
|
}
|
|
|
|
// 创建名单
|
|
func (this *IPListDAO) CreateIPList(tx *dbs.Tx, userId int64, listType ipconfigs.IPListType, name string, code string, timeoutJSON []byte) (int64, error) {
|
|
op := NewIPListOperator()
|
|
op.IsOn = true
|
|
op.UserId = userId
|
|
op.State = IPListStateEnabled
|
|
op.Type = listType
|
|
op.Name = name
|
|
op.Code = code
|
|
if len(timeoutJSON) > 0 {
|
|
op.Timeout = timeoutJSON
|
|
}
|
|
err := this.Save(tx, op)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
return types.Int64(op.Id), nil
|
|
}
|
|
|
|
// 修改名单
|
|
func (this *IPListDAO) UpdateIPList(tx *dbs.Tx, listId int64, name string, code string, timeoutJSON []byte) error {
|
|
if listId <= 0 {
|
|
return errors.New("invalid listId")
|
|
}
|
|
op := NewIPListOperator()
|
|
op.Id = listId
|
|
op.Name = name
|
|
op.Code = code
|
|
if len(timeoutJSON) > 0 {
|
|
op.Timeout = timeoutJSON
|
|
} else {
|
|
op.Timeout = "null"
|
|
}
|
|
err := this.Save(tx, op)
|
|
return err
|
|
}
|
|
|
|
// 增加版本
|
|
func (this *IPListDAO) IncreaseVersion(tx *dbs.Tx) (int64, error) {
|
|
return SharedSysLockerDAO.Increase(tx, "IP_LIST_VERSION", 1000000)
|
|
}
|
|
|
|
// 检查用户权限
|
|
func (this *IPListDAO) CheckUserIPList(tx *dbs.Tx, userId int64, listId int64) error {
|
|
ok, err := this.Query(tx).
|
|
Pk(listId).
|
|
Attr("userId", userId).
|
|
Exist()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if ok {
|
|
return nil
|
|
}
|
|
return ErrNotFound
|
|
}
|
|
|
|
// 通知更新
|
|
func (this *IPListDAO) NotifyUpdate(tx *dbs.Tx, listId int64, taskType NodeTaskType) error {
|
|
httpFirewallPolicyIds, err := SharedHTTPFirewallPolicyDAO.FindEnabledFirewallPolicyIdsWithIPListId(tx, listId)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
resultClusterIds := []int64{}
|
|
for _, policyId := range httpFirewallPolicyIds {
|
|
// 集群
|
|
clusterIds, err := SharedNodeClusterDAO.FindAllEnabledNodeClusterIdsWithHTTPFirewallPolicyId(tx, policyId)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for _, clusterId := range clusterIds {
|
|
if !lists.ContainsInt64(resultClusterIds, clusterId) {
|
|
resultClusterIds = append(resultClusterIds, clusterId)
|
|
}
|
|
}
|
|
|
|
// 服务
|
|
webIds, err := SharedHTTPWebDAO.FindAllWebIdsWithHTTPFirewallPolicyId(tx, policyId)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if len(webIds) > 0 {
|
|
for _, webId := range webIds {
|
|
serverId, err := SharedServerDAO.FindEnabledServerIdWithWebId(tx, webId)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if serverId > 0 {
|
|
clusterId, err := SharedServerDAO.FindServerClusterId(tx, serverId)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if !lists.ContainsInt64(resultClusterIds, clusterId) {
|
|
resultClusterIds = append(resultClusterIds, clusterId)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if len(resultClusterIds) > 0 {
|
|
for _, clusterId := range resultClusterIds {
|
|
err = SharedNodeTaskDAO.CreateClusterTask(tx, clusterId, taskType)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|