2021-06-23 13:12:33 +08:00
|
|
|
|
package iplists
|
|
|
|
|
|
|
2024-04-06 10:07:53 +08:00
|
|
|
|
import (
|
2021-06-23 13:12:33 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"
|
2021-08-26 10:28:52 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/configutils"
|
2024-04-06 10:07:53 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/iputils"
|
2023-06-30 18:08:30 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/langs/codes"
|
2021-06-23 13:12:33 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
|
2022-07-14 10:19:45 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
|
2021-06-23 13:12:33 +08:00
|
|
|
|
"github.com/iwind/TeaGo/actions"
|
2021-08-26 10:28:52 +08:00
|
|
|
|
"github.com/iwind/TeaGo/maps"
|
|
|
|
|
|
"github.com/iwind/TeaGo/types"
|
|
|
|
|
|
"net"
|
|
|
|
|
|
"strings"
|
2021-06-23 13:12:33 +08:00
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
type CreateIPPopupAction struct {
|
|
|
|
|
|
actionutils.ParentAction
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func (this *CreateIPPopupAction) Init() {
|
|
|
|
|
|
this.Nav("", "", "")
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func (this *CreateIPPopupAction) RunGet(params struct {
|
|
|
|
|
|
ListId int64
|
|
|
|
|
|
}) {
|
|
|
|
|
|
this.Data["listId"] = params.ListId
|
|
|
|
|
|
|
2021-08-26 10:28:52 +08:00
|
|
|
|
listResp, err := this.RPC().IPListRPC().FindEnabledIPList(this.AdminContext(), &pb.FindEnabledIPListRequest{
|
|
|
|
|
|
IpListId: params.ListId,
|
|
|
|
|
|
})
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
this.ErrorPage(err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
var ipList = listResp.IpList
|
|
|
|
|
|
if ipList == nil {
|
|
|
|
|
|
this.NotFound("ipList", params.ListId)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
this.Data["list"] = maps.Map{
|
|
|
|
|
|
"type": ipList.Type,
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-06-23 13:12:33 +08:00
|
|
|
|
this.Show()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func (this *CreateIPPopupAction) RunPost(params struct {
|
2021-08-26 10:28:52 +08:00
|
|
|
|
ListId int64
|
|
|
|
|
|
Method string
|
|
|
|
|
|
|
|
|
|
|
|
IpFrom string
|
|
|
|
|
|
IpTo string
|
|
|
|
|
|
|
|
|
|
|
|
IpData string
|
|
|
|
|
|
|
2021-06-23 13:12:33 +08:00
|
|
|
|
ExpiredAt int64
|
|
|
|
|
|
Reason string
|
|
|
|
|
|
Type string
|
|
|
|
|
|
EventLevel string
|
|
|
|
|
|
|
|
|
|
|
|
Must *actions.Must
|
|
|
|
|
|
CSRF *actionutils.CSRF
|
|
|
|
|
|
}) {
|
|
|
|
|
|
// 校验IPList
|
2022-07-14 10:19:45 +08:00
|
|
|
|
if params.ListId != firewallconfigs.GlobalListId {
|
|
|
|
|
|
existsResp, err := this.RPC().IPListRPC().ExistsEnabledIPList(this.AdminContext(), &pb.ExistsEnabledIPListRequest{IpListId: params.ListId})
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
this.ErrorPage(err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
if !existsResp.Exists {
|
|
|
|
|
|
this.Fail("IP名单不存在")
|
|
|
|
|
|
}
|
2021-06-23 13:12:33 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-08-26 10:28:52 +08:00
|
|
|
|
type ipData struct {
|
|
|
|
|
|
ipFrom string
|
|
|
|
|
|
ipTo string
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var batchIPs = []*ipData{}
|
2021-06-23 13:12:33 +08:00
|
|
|
|
switch params.Type {
|
|
|
|
|
|
case "ipv4":
|
2021-08-26 10:28:52 +08:00
|
|
|
|
if params.Method == "single" {
|
|
|
|
|
|
// 校验IP格式(ipFrom/ipTo)
|
|
|
|
|
|
params.Must.
|
|
|
|
|
|
Field("ipFrom", params.IpFrom).
|
|
|
|
|
|
Require("请输入开始IP")
|
2021-06-23 13:12:33 +08:00
|
|
|
|
|
2024-04-06 10:07:53 +08:00
|
|
|
|
if !iputils.IsIPv4(params.IpFrom) {
|
2024-04-06 14:55:29 +08:00
|
|
|
|
this.FailField("ipFrom", "请输入正确的开始IP")
|
2021-08-26 10:28:52 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2024-04-06 10:07:53 +08:00
|
|
|
|
if len(params.IpTo) > 0 && !iputils.IsIPv4(params.IpTo) {
|
2024-04-06 14:55:29 +08:00
|
|
|
|
this.FailField("ipTo", "请输入正确的结束IP")
|
2021-08-26 10:28:52 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2024-04-06 14:55:29 +08:00
|
|
|
|
if len(params.IpTo) != 0 && iputils.CompareIP(params.IpFrom, params.IpTo) > 0 {
|
2021-08-26 10:28:52 +08:00
|
|
|
|
params.IpTo, params.IpFrom = params.IpFrom, params.IpTo
|
|
|
|
|
|
}
|
|
|
|
|
|
} else if params.Method == "batch" {
|
|
|
|
|
|
if len(params.IpData) == 0 {
|
|
|
|
|
|
this.FailField("ipData", "请输入IP")
|
|
|
|
|
|
}
|
|
|
|
|
|
var lines = strings.Split(params.IpData, "\n")
|
|
|
|
|
|
for index, line := range lines {
|
|
|
|
|
|
line = strings.TrimSpace(line)
|
|
|
|
|
|
if strings.Contains(line, "/") { // CIDR
|
|
|
|
|
|
if strings.Contains(line, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
|
|
|
|
|
ipFrom, ipTo, err := configutils.ParseCIDR(line)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
ipTo: ipTo,
|
|
|
|
|
|
})
|
|
|
|
|
|
} else if strings.Contains(line, "-") { // IP Range
|
|
|
|
|
|
var pieces = strings.Split(line, "-")
|
|
|
|
|
|
var ipFrom = strings.TrimSpace(pieces[0])
|
|
|
|
|
|
var ipTo = strings.TrimSpace(pieces[1])
|
|
|
|
|
|
|
|
|
|
|
|
if net.ParseIP(ipFrom) == nil || net.ParseIP(ipTo) == nil || strings.Contains(ipFrom, ":") || strings.Contains(ipTo, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
2024-04-06 14:55:29 +08:00
|
|
|
|
if len(ipTo) > 0 && iputils.CompareIP(ipFrom, ipTo) > 0 {
|
2021-08-26 10:28:52 +08:00
|
|
|
|
ipFrom, ipTo = ipTo, ipFrom
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
ipTo: ipTo,
|
|
|
|
|
|
})
|
|
|
|
|
|
} else if strings.Contains(line, ",") { // IP Range
|
|
|
|
|
|
var pieces = strings.Split(line, ",")
|
|
|
|
|
|
var ipFrom = strings.TrimSpace(pieces[0])
|
|
|
|
|
|
var ipTo = strings.TrimSpace(pieces[1])
|
2021-06-23 13:12:33 +08:00
|
|
|
|
|
2021-08-26 10:28:52 +08:00
|
|
|
|
if net.ParseIP(ipFrom) == nil || net.ParseIP(ipTo) == nil || strings.Contains(ipFrom, ":") || strings.Contains(ipTo, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
2024-04-06 14:55:29 +08:00
|
|
|
|
if len(ipTo) > 0 && iputils.CompareIP(ipFrom, ipTo) > 0 {
|
2021-08-26 10:28:52 +08:00
|
|
|
|
ipFrom, ipTo = ipTo, ipFrom
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
ipTo: ipTo,
|
|
|
|
|
|
})
|
|
|
|
|
|
} else if len(line) > 0 {
|
|
|
|
|
|
var ipFrom = line
|
|
|
|
|
|
if net.ParseIP(ipFrom) == nil || strings.Contains(ipFrom, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
})
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2021-06-23 13:12:33 +08:00
|
|
|
|
}
|
|
|
|
|
|
case "ipv6":
|
2021-08-26 10:28:52 +08:00
|
|
|
|
if params.Method == "single" {
|
|
|
|
|
|
params.Must.
|
|
|
|
|
|
Field("ipFrom", params.IpFrom).
|
2024-04-06 14:55:29 +08:00
|
|
|
|
Require("请输入正确的开始IP")
|
2021-06-23 13:12:33 +08:00
|
|
|
|
|
2024-04-06 10:07:53 +08:00
|
|
|
|
if !iputils.IsIPv6(params.IpFrom) {
|
2024-04-06 14:55:29 +08:00
|
|
|
|
this.FailField("ipFrom", "请输入正确的IPv6地址")
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if len(params.IpTo) > 0 && !iputils.IsIPv6(params.IpTo) {
|
|
|
|
|
|
this.FailField("ipTo", "请输入正确的IPv6地址")
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if len(params.IpTo) > 0 && iputils.CompareIP(params.IpFrom, params.IpTo) > 0 {
|
|
|
|
|
|
params.IpTo, params.IpFrom = params.IpFrom, params.IpTo
|
2021-08-26 10:28:52 +08:00
|
|
|
|
}
|
|
|
|
|
|
} else if params.Method == "batch" {
|
|
|
|
|
|
if len(params.IpData) == 0 {
|
|
|
|
|
|
this.FailField("ipData", "请输入IP")
|
|
|
|
|
|
}
|
|
|
|
|
|
var lines = strings.Split(params.IpData, "\n")
|
|
|
|
|
|
for index, line := range lines {
|
|
|
|
|
|
line = strings.TrimSpace(line)
|
|
|
|
|
|
if strings.Contains(line, "/") { // CIDR
|
|
|
|
|
|
if !strings.Contains(line, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
|
|
|
|
|
ipFrom, ipTo, err := configutils.ParseCIDR(line)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
ipTo: ipTo,
|
|
|
|
|
|
})
|
|
|
|
|
|
} else if strings.Contains(line, "-") { // IP Range
|
|
|
|
|
|
var pieces = strings.Split(line, "-")
|
|
|
|
|
|
var ipFrom = strings.TrimSpace(pieces[0])
|
|
|
|
|
|
var ipTo = strings.TrimSpace(pieces[1])
|
|
|
|
|
|
|
|
|
|
|
|
if net.ParseIP(ipFrom) == nil || net.ParseIP(ipTo) == nil || !strings.Contains(ipFrom, ":") || !strings.Contains(ipTo, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
2024-04-06 14:55:29 +08:00
|
|
|
|
if len(ipTo) > 0 && iputils.CompareIP(ipFrom, ipTo) > 0 {
|
2021-08-26 10:28:52 +08:00
|
|
|
|
ipFrom, ipTo = ipTo, ipFrom
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
ipTo: ipTo,
|
|
|
|
|
|
})
|
|
|
|
|
|
} else if strings.Contains(line, ",") { // IP Range
|
|
|
|
|
|
var pieces = strings.Split(line, ",")
|
|
|
|
|
|
var ipFrom = strings.TrimSpace(pieces[0])
|
|
|
|
|
|
var ipTo = strings.TrimSpace(pieces[1])
|
|
|
|
|
|
|
|
|
|
|
|
if net.ParseIP(ipFrom) == nil || net.ParseIP(ipTo) == nil || !strings.Contains(ipFrom, ":") || !strings.Contains(ipTo, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
2024-04-06 14:55:29 +08:00
|
|
|
|
if len(ipTo) > 0 && iputils.CompareIP(ipFrom, ipTo) > 0 {
|
2021-08-26 10:28:52 +08:00
|
|
|
|
ipFrom, ipTo = ipTo, ipFrom
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
ipTo: ipTo,
|
|
|
|
|
|
})
|
|
|
|
|
|
} else if len(line) > 0 {
|
|
|
|
|
|
var ipFrom = line
|
|
|
|
|
|
if net.ParseIP(ipFrom) == nil || !strings.Contains(ipFrom, ":") {
|
|
|
|
|
|
this.FailField("ipData", "第"+types.String(index+1)+"行IP格式错误:"+line)
|
|
|
|
|
|
}
|
|
|
|
|
|
batchIPs = append(batchIPs, &ipData{
|
|
|
|
|
|
ipFrom: ipFrom,
|
|
|
|
|
|
})
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2021-06-23 13:12:33 +08:00
|
|
|
|
}
|
|
|
|
|
|
case "all":
|
|
|
|
|
|
params.IpFrom = "0.0.0.0"
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-08-26 10:28:52 +08:00
|
|
|
|
if len(batchIPs) > 0 {
|
|
|
|
|
|
for _, ip := range batchIPs {
|
|
|
|
|
|
_, err := this.RPC().IPItemRPC().CreateIPItem(this.AdminContext(), &pb.CreateIPItemRequest{
|
|
|
|
|
|
IpListId: params.ListId,
|
|
|
|
|
|
IpFrom: ip.ipFrom,
|
|
|
|
|
|
IpTo: ip.ipTo,
|
|
|
|
|
|
ExpiredAt: params.ExpiredAt,
|
|
|
|
|
|
Reason: params.Reason,
|
|
|
|
|
|
Type: params.Type,
|
|
|
|
|
|
EventLevel: params.EventLevel,
|
|
|
|
|
|
})
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
this.ErrorPage(err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2021-06-23 13:12:33 +08:00
|
|
|
|
|
2021-08-26 10:28:52 +08:00
|
|
|
|
// 日志
|
2023-06-30 18:08:30 +08:00
|
|
|
|
defer this.CreateLogInfo(codes.IPList_LogCreateIPItemsBatch, params.ListId)
|
2021-08-26 10:28:52 +08:00
|
|
|
|
} else {
|
|
|
|
|
|
createResp, err := this.RPC().IPItemRPC().CreateIPItem(this.AdminContext(), &pb.CreateIPItemRequest{
|
|
|
|
|
|
IpListId: params.ListId,
|
|
|
|
|
|
IpFrom: params.IpFrom,
|
|
|
|
|
|
IpTo: params.IpTo,
|
|
|
|
|
|
ExpiredAt: params.ExpiredAt,
|
|
|
|
|
|
Reason: params.Reason,
|
|
|
|
|
|
Type: params.Type,
|
|
|
|
|
|
EventLevel: params.EventLevel,
|
|
|
|
|
|
})
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
this.ErrorPage(err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
itemId := createResp.IpItemId
|
|
|
|
|
|
|
|
|
|
|
|
// 日志
|
2023-06-30 18:08:30 +08:00
|
|
|
|
defer this.CreateLogInfo(codes.IPItem_LogCreateIPItem, params.ListId, itemId)
|
2021-08-26 10:28:52 +08:00
|
|
|
|
}
|
2021-06-23 13:12:33 +08:00
|
|
|
|
|
|
|
|
|
|
this.Success()
|
|
|
|
|
|
}
|
