# coding: utf-8 # +------------------------------------------------------------------- # | YakPanel x3 # +------------------------------------------------------------------- # | Copyright (c) 2015-2017 YakPanel(www.yakpanel.com) All rights reserved. # +------------------------------------------------------------------- # | Author: hwliang # +------------------------------------------------------------------- import base64 import public,re,os,nginx,apache,json,time,ols import shutil import zipfile try: import pyotp except: public.ExecShell("pip install pyotp &") try: from YakPanel import session,admin_path_checks,g,request,cache import send_mail except:pass class config: _setup_path = "/www/server/panel" _key_file = _setup_path+"/data/two_step_auth.txt" _bk_key_file = _setup_path + "/data/bk_two_step_auth.txt" _username_file = _setup_path + "/data/username.txt" _core_fle_path = _setup_path + '/data/qrcode' __mail_config = _setup_path+'/data/stmp_mail.json' __mail_list_data = _setup_path+'/data/mail_list.json' __dingding_config = _setup_path+'/data/dingding.json' __mail_list = [] __weixin_user = [] def __init__(self): try: self.mail = send_mail.send_mail() if not os.path.exists(self.__mail_list_data): ret = [] public.writeFile(self.__mail_list_data, json.dumps(ret)) else: try: mail_data = json.loads(public.ReadFile(self.__mail_list_data)) self.__mail_list = mail_data except: ret = [] public.writeFile(self.__mail_list_data, json.dumps(ret)) except:pass # 返回配置邮件地址 def return_mail_list(self, get): return public.return_msg_gettext(True, self.__mail_list) # 删除邮件接口 def del_mail_list(self, get): emial = get.email.strip() if emial in self.__mail_list: self.__mail_list.remove(emial) public.writeFile(self.__mail_list_data, json.dumps(self.__mail_list)) return public.return_msg_gettext(True, 'Successfully deleted') else: return public.return_msg_gettext(True, 'Email does not exist') def del_tg_info(self,get): import panel_telegram_bot return panel_telegram_bot.panel_telegram_bot().del_tg_bot(get) def set_tg_bot(self,get): import panel_telegram_bot return panel_telegram_bot.panel_telegram_bot().set_tg_bot(get) #添加接受邮件地址 def add_mail_address(self, get): if not hasattr(get, 'email'): return public.return_msg_gettext(False, 'Please input your email') emailformat = re.compile(r'[a-zA-Z0-9.-_+%]+@[a-zA-Z0-9]+\.[a-zA-Z0-9]+') if not emailformat.search(get.email): return public.return_msg_gettext(False, 'Please enter your vaild email') # 测试发送邮件 if get.email.strip() in self.__mail_list: return public.return_msg_gettext(True, 'Email already exists') self.__mail_list.append(get.email.strip()) public.writeFile(self.__mail_list_data, json.dumps(self.__mail_list)) return public.return_msg_gettext(True, 'Setup successfully!') # 添加自定义邮箱地址 def user_mail_send(self, get): if not (hasattr(get, 'email') or hasattr(get, 'stmp_pwd') or hasattr(get, 'hosts') or hasattr(get, 'port')): return public.return_msg_gettext(False, 'Please complete the information') # 自定义邮件 self.mail.qq_stmp_insert(get.email.strip(), get.stmp_pwd.strip(), get.hosts.strip(),get.port.strip()) # 测试发送 if self.mail.qq_smtp_send(get.email.strip(), public.lang("YakPanel Alert Test Email"), public.lang("YakPanel Alert Test Email")): if not get.email.strip() in self.__mail_list: self.__mail_list.append(get.email.strip()) public.writeFile(self.__mail_list_data, json.dumps(self.__mail_list)) return public.return_msg_gettext(True, 'Setup successfully!') else: ret = [] public.writeFile(self.__mail_config, json.dumps(ret)) return public.return_msg_gettext(False, 'Email sending failed, please check if the STMP password is correct or the hosts are correct') # 查看自定义邮箱配置 def get_user_mail(self, get): qq_mail_info = json.loads(public.ReadFile(self.__mail_config)) if len(qq_mail_info) == 0: return public.return_msg_gettext(False, 'No Data') if not 'port' in qq_mail_info:qq_mail_info['port']=465 return public.return_msg_gettext(True, qq_mail_info) #清空数据 def set_empty(self,get): type=get.type.strip() if type=='dingding': ret = [] public.writeFile(self.__dingding_config, json.dumps(ret)) return public.return_msg_gettext(True, 'Empty successfully') else: ret = [] public.writeFile(self.__mail_config, json.dumps(ret)) return public.return_msg_gettext(True, 'Empty successfully') # 用户自定义邮件发送 def user_stmp_mail_send(self, get): if not (hasattr(get, 'email')): return public.return_msg_gettext(False, 'Please input your email') emailformat = re.compile(r'[a-zA-Z0-9.-_+%]+@[a-zA-Z0-9]+\.[a-zA-Z0-9]+') if not emailformat.search(get.email): return public.return_msg_gettext(False, 'Please enter your vaild email') # 测试发送邮件 if not get.email.strip() in self.__mail_list: return public.return_msg_gettext(True, 'The mailbox does not exist, please add it to the mailbox list') if not (hasattr(get, 'title')): return public.return_msg_gettext(False, 'Please fill in the email title') if not (hasattr(get, 'body')): return public.return_msg_gettext(False, 'Please enter the email content') # 先判断是否存在stmp信息 qq_mail_info = json.loads(public.ReadFile(self.__mail_config)) if len(qq_mail_info) == 0: return public.return_msg_gettext(False, 'STMP information was not found, please re-add custom mail STMP information in the settings') if self.mail.qq_smtp_send(get.email.strip(), get.title.strip(), get.body): # 发送成功 return public.return_msg_gettext(True, 'Sent successfully') else: return public.return_msg_gettext(False, 'Failed to send') # 查看能使用的告警通道 def get_settings(self, get): sm = send_mail.send_mail() return sm.get_settings() def get_settings2(self, get=None): import panel_telegram_bot tg = panel_telegram_bot.panel_telegram_bot() tg = tg.get_tg_conf() conf = self.get_settings(get) conf['telegram'] = tg return conf # 设置钉钉报警 def set_dingding(self, get): if not (hasattr(get, 'url') or hasattr(get, 'atall')): return public.return_msg_gettext(False, 'Please complete the information') if get.atall=='True' or get.atall=='1': get.atall = 'True' else: get.atall = 'False' push_url = get.url.strip() channel = "dingding" if push_url.find("weixin.qq.com") != -1: channel = "weixin" msg = "" try: from panelMessage import panelMessage pm = panelMessage() if hasattr(pm, "init_msg_module"): msg_module = pm.init_msg_module(channel) if msg_module: _res = msg_module.set_config(get) if _res["status"]: return _res except Exception as e: msg = str(e) print("设置钉钉配置异常: {}".format(msg)) if not msg: return public.returnMsg(False, 'Add failed, please check if the URL is correct') else: return public.returnMsg(False, msg) # 查看钉钉 def get_dingding(self, get): sm = send_mail.send_mail() return sm.get_dingding() # 使用钉钉发送消息 def user_dingding_send(self, get): qq_mail_info = json.loads(public.ReadFile(self.__dingding_config)) if len(qq_mail_info) == 0: return public.return_msg_gettext(False, 'The configuration information of the nails you configured was not found, please add in the settings') if not (hasattr(get, 'content')): return public.return_msg_gettext(False, 'Please enter the data you need to send') if self.mail.dingding_send(get.content): return public.return_msg_gettext(True, 'Sent successfully') else: return public.return_msg_gettext(False, 'Failed to send') def getPanelState(self,get): return os.path.exists(self._setup_path+'/data/close.pl') def reload_session(self): userInfo = public.M('users').where("id=?",(1,)).field('username,password').find() token = public.Md5(userInfo['username'] + '/' + userInfo['password']) public.writeFile(self._setup_path+'/data/login_token.pl',token) skey = 'login_token' cache.set(skey,token) sess_path = 'data/sess_files' if not os.path.exists(sess_path): os.makedirs(sess_path,384) self.clean_sess_files(sess_path) sess_key = public.get_sess_key() sess_file = os.path.join(sess_path,sess_key) public.writeFile(sess_file,str(int(time.time()+86400))) public.set_mode(sess_file,'600') session['login_token'] = token def clean_sess_files(self,sess_path): ''' @name 清理过期的sess_file @auther hwliang<2020-07-25> @param sess_path(string) sess_files目录 @return void ''' s_time = time.time() for fname in os.listdir(sess_path): try: if len(fname) != 32: continue sess_file = os.path.join(sess_path,fname) if not os.path.isfile(sess_file): continue sess_tmp = public.ReadFile(sess_file) if not sess_tmp: if os.path.exists(sess_file): os.remove(sess_file) if s_time > int(sess_tmp): os.remove(sess_file) except: pass def get_password_safe_file(self): ''' @name 获取密码复杂度配置文件 @auther hwliang<2021-10-18> @return string ''' return public.get_panel_path() + '/data/check_password_safe.pl' def check_password_safe(self,password): ''' @name 密码复杂度验证 @auther hwliang<2021-10-18> @param password(string) 密码 @return bool ''' # 是否检测密码复杂度 is_check_file = self.get_password_safe_file() if not os.path.exists(is_check_file): return True # 密码长度验证 if len(password) < 8: return False num = 0 # 密码是否包含数字 if re.search(r'[0-9]+',password): num += 1 # 密码是否包含小写字母 if re.search(r'[a-z]+',password): num += 1 # 密码是否包含大写字母 if re.search(r'[A-Z]+',password): num += 1 # 密码是否包含特殊字符 if re.search(r'[^\w\s]+',password): num += 1 # 密码是否包含以上任意3种组合 if num < 3: return False return True def set_password_safe(self,get): ''' @name 设置密码复杂度 @auther hwliang<2021-10-18> @param get(string) 参数 @return dict ''' is_check_file = self.get_password_safe_file() if os.path.exists(is_check_file): os.remove(is_check_file) public.WriteLog('TYPE_PANEL','Disable password complexity verification') return public.returnMsg(True,'Password complexity verification is disabled') else: public.writeFile(is_check_file,'True') public.WriteLog('TYPE_PANEL','Enable password complexity verification') return public.returnMsg(True,'Password complexity verification has been enabled') def get_password_safe(self,get): ''' @name 获取密码复杂度 @auther hwliang<2021-10-18> @param get(string) 参数 @return bool ''' is_check_file = self.get_password_safe_file() return os.path.exists(is_check_file) def get_password_expire_file(self): ''' @name 获取密码过期配置文件 @auther hwliang<2021-10-18> @return string ''' return public.get_panel_path() + '/data/password_expire.pl' def set_password_expire(self,get): ''' @name 设置密码过期时间 @auther hwliang<2021-10-18> @param get{ expire: int<密码过期时间> 单位:天, } @return dict ''' expire = int(get.expire) expire_file = self.get_password_expire_file() if expire <= 0: if os.path.exists(expire_file): os.remove(expire_file) public.WriteLog('TYPE_PANEL','Disable password expiration authentication') return public.returnMsg(True,'Password expiration authentication is disabled') min_expire = 10 max_expire = 365 * 5 if expire < min_expire: return public.returnMsg(False,'The password expiration period cannot be less than {} days'.format(min_expire)) if expire > max_expire: return public.returnMsg(False,'The password expiration period cannot be longer than {} days'.format(max_expire)) public.writeFile(self.get_password_expire_file(),str(expire)) if expire > 0: expire_time_file = public.get_panel_path() + '/data/password_expire_time.pl' public.writeFile(expire_time_file,str(int(time.time()) + (expire * 86400))) public.WriteLog('TYPE_PANEL','Set the password expiration time to [{}] days'.format(expire)) return public.returnMsg(True,'The password expiration time is set to [{}] days'.format(expire)) def setlastPassword(self, get): public.add_security_logs("Change Password", "Successfully used last password!") self.reload_session() # 密码过期时间 expire_time_file = public.get_panel_path() + '/data/password_expire_time.pl' if os.path.exists(expire_time_file): os.remove(expire_time_file) self.get_password_config(None) if session.get('password_expire', False): session['password_expire'] = False return public.returnMsg(True, 'Password changed!') def get_password_config(self,get=None): ''' @name 获取密码配置 @auther hwliang<2021-10-18> @param get 参数 @return dict{expire:int,expire_time:int,password_safe:bool} ''' expire_file = self.get_password_expire_file() expire = 0 expire_time=0 if os.path.exists(expire_file): expire = public.readFile(expire_file) try: expire = int(expire) except: expire = 0 # 检查密码过期时间文件是否存在 expire_time_file = public.get_panel_path() + '/data/password_expire_time.pl' if not os.path.exists(expire_time_file) and expire > 0: public.writeFile(expire_time_file,str(int(time.time()) + (expire * 86400))) expire_time = public.readFile(expire_time_file) if expire_time: expire_time = int(expire_time) else: expire_time = 0 data = {} data['expire'] = expire data['expire_time'] = expire_time data['password_safe'] = self.get_password_safe(get) data['ps'] = 'Password expiration configuration is not enabled. For your panel security, please consider enabling it!' if data['expire_time']: data['expire_day'] = int((expire_time - time.time()) / 86400) if data['expire_day'] < 10: if data['expire_day'] <= 0: data['ps'] = 'Your password has expired. In case you fail to log in next time, please change your password immediately.' else: data['ps'] = "Your panel password will expire in {} days, in order not to affect your normal login, please change the password as soon as possible!".format(data['expire_day']) else: data['ps'] = "Your panel password has {} days left to expire!".format(data['expire_day']) return data def setPassword(self,get): get.password1 = public.url_decode(public.rsa_decrypt(get.password1)) get.password2 = public.url_decode(public.rsa_decrypt(get.password2)) if get.password1 != get.password2: return public.return_msg_gettext(False,'The passwords entered twice are inconsistent, please try again!') if len(get.password1) < 5: return public.return_msg_gettext(False,'Password cannot be less than 5 characters!') if not self.check_password_safe(get.password1): return public.returnMsg(False,'The password must be at least eight characters in length and contain at least three combinations of digits, uppercase letters, lowercase letters, and special characters') public.M('users').where("username=?",(session['username'],)).setField('password',public.password_salt(public.md5(get.password1.strip()),username=session['username'])) public.write_log_gettext('Panel configuration','Successfully modified password for user [{0}]!',(session['username'],)) self.reload_session() # 密码过期时间 expire_time_file = public.get_panel_path() + '/data/password_expire_time.pl' if os.path.exists(expire_time_file): os.remove(expire_time_file) self.get_password_config(None) if session.get('password_expire',False): session['password_expire'] = False return public.return_msg_gettext(True,'Setup successfully!') def setUsername(self,get): get.username1 = public.url_decode(public.rsa_decrypt(get.username1)) get.username2 = public.url_decode(public.rsa_decrypt(get.username2)) if get.username1 != get.username2: return public.return_msg_gettext(False,'The usernames entered twice are inconsistent, plesea try again!') if len(get.username1) < 3: return public.return_msg_gettext(False,'Username cannot be less than 3 characters') public.M('users').where("username=?",(session['username'],)).setField('username',get.username1.strip()) public.write_log_gettext('Panel configuration','Username is modified from [{}] to [{}]',(session['username'],get.username2)) session['username'] = get.username1 self.reload_session() return public.return_msg_gettext(True,'Setup successfully!') #取用户列表 def get_users(self,args): data = public.M('users').field('id,username').select() return data # 创建新用户 def create_user(self,args): args.username = public.url_decode(args.username) args.password = public.url_decode(args.password) if session['uid'] != 1: return public.return_msg_gettext(False,'Permission denied!') if len(args.username) < 2: return public.return_msg_gettext(False,'User name must be at least 2 characters') if len(args.password) < 8: return public.return_msg_gettext(False,'Password must be at least 8 characters') pdata = { "username": args.username.strip(), "password": public.password_salt(public.md5(args.password.strip()),username=args.username.strip()) } if(public.M('users').where('username=?',(pdata['username'],)).count()): return public.return_msg_gettext(False,'The specified username already exists!') if(public.M('users').insert(pdata)): public.write_log_gettext('User Management','Create new user {}',(pdata['username'],)) return public.return_msg_gettext(True,'Create new user {} success!',(pdata['username'],)) return public.return_msg_gettext(False,'Create new user failed!') # 删除用户 def remove_user(self,args): if session['uid'] != 1: return public.return_msg_gettext(False,'Permission denied!') if int(args.id) == 1: return public.return_msg_gettext(False,'Cannot delete initial default user!') username = public.M('users').where('id=?',(args.id,)).getField('username') if not username: return public.return_msg_gettext(False,'The specified username not exists!') if(public.M('users').where('id=?',(args.id,)).delete()): public.write_log_gettext('User Management','Delete users [{}]',(username)) return public.return_msg_gettext(True,'Delete user {} success!',(username,)) return public.return_msg_gettext(False,'User deletion failed!') # 修改用户 def modify_user(self,args): if session['uid'] != 1: return public.return_msg_gettext(False,'Permission denied!') username = public.M('users').where('id=?',(args.id,)).getField('username') pdata = {} if 'username' in args: args.username = public.url_decode(args.username) if len(args.username) < 2: return public.return_msg_gettext(False,'User name must be at least 2 characters') pdata['username'] = args.username.strip() if 'password' in args: if args.password: args.password = public.url_decode(args.password) if len(args.password) < 8: return public.return_msg_gettext(False,'Password must be at least 8 characters') pdata['password'] = public.password_salt(public.md5(args.password.strip()),username=username) if(public.M('users').where('id=?',(args.id,)).update(pdata)): public.write_log_gettext('User Management',"Edit user {}",(username,)) return public.return_msg_gettext(True,'Setup successfully!') return public.return_msg_gettext(False,'No changes submitted') def setPanel(self, get): try: if not public.IsRestart(): return public.return_msg_gettext(False,'Please run the program when all install tasks finished!') if 'limitip' in get: if get.limitip.find('/') != -1: return public.return_msg_gettext(False,'The authorized IP format is incorrect, and the subnet segment writing is not supported') isReWeb = False sess_out_path = 'data/session_timeout.pl' if 'session_timeout' in get: try: session_timeout = int(get.session_timeout) except: return public.returnMsg(False,"Timeout must be an integer!") s_time_tmp = public.readFile(sess_out_path) if not s_time_tmp: s_time_tmp = '0' if int(s_time_tmp) != session_timeout: if session_timeout < 300 or session_timeout > 86400: return public.return_msg_gettext(False,'The timeout time needs to be between 300-86400') public.writeFile(sess_out_path,str(session_timeout)) isReWeb = True # else: # return public.returnMsg(False,'Timeout must be an integer!') workers_p = 'data/workers.pl' if 'workers' in get: workers = int(get.workers) if int(public.readFile(workers_p)) != workers: if workers < 1 or workers > 1024: return public.return_msg_gettext(False,public.lang("The number of panel threads should be between 1-1024")) public.writeFile(workers_p,str(workers)) isReWeb = True if get.domain: if re.match(r"^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$", get.domain): return public.return_msg_gettext(False, 'Domain cannot bind ip address') reg = r"^([\w\-\*]{1,100}\.){1,4}(\w{1,10}|\w{1,10}\.\w{1,10})$" if not re.match(reg, get.domain): return public.return_msg_gettext(False,'Format of primary domain is incorrect') if get.address: from public.regexplib import match_ipv4, match_ipv6 if not match_ipv4.match(get.address) and not match_ipv6.match(get.address): return public.return_msg_gettext(False, 'Please set the correct Server IP') oldPort = public.GetHost(True) if not 'port' in get: get.port = oldPort newPort = get.port if oldPort != get.port: get.port = str(int(get.port)) if self.IsOpen(get.port): return public.return_msg_gettext(False,'Port [{}] is in use!',(get.port,)) if int(get.port) >= 65535 or int(get.port) < 100: return public.return_msg_gettext(False,'Port range is incorrect! should be between 100-65535') public.writeFile('data/port.pl',get.port) import firewalls get.ps = public.lang("New panel port") fw = firewalls.firewalls() fw.AddAcceptPort(get) get.port = oldPort get.id = public.M('firewall').where("port=?",(oldPort,)).getField('id') fw.DelAcceptPort(get) isReWeb = True if get.webname != session['title']: session['title'] = public.xssencode2(get.webname) public.SetConfigValue('title',public.xssencode2(get.webname)) limitip = public.readFile('data/limitip.conf') if get.limitip != limitip: public.writeFile('data/limitip.conf',get.limitip) cache.set('limit_ip',[]) public.writeFile('data/domain.conf',public.xssencode2(get.domain).strip()) public.writeFile('data/iplist.txt',get.address) import files fs = files.files() if not fs.CheckDir(get.backup_path): return public.returnMsg(False,'Cannot use system critical directory as default backup directory') if not fs.CheckDir(get.sites_path): return public.returnMsg(False,'Cannot use system critical directory as default site directory') public.M('config').where("id=?",('1',)).save('backup_path,sites_path',(get.backup_path,get.sites_path)) session['config']['backup_path'] = os.path.join('/',get.backup_path) session['config']['sites_path'] = os.path.join('/',get.sites_path) db_backup = get.backup_path + '/database' if not os.path.exists(db_backup): try: os.makedirs(db_backup,384) except: public.ExecShell('mkdir -p ' + db_backup) site_backup = get.backup_path + '/site' if not os.path.exists(site_backup): try: os.makedirs(site_backup,384) except: public.ExecShell('mkdir -p ' + site_backup) mhost = public.GetHost() if get.domain.strip(): mhost = get.domain data = {'uri':request.path,'host':mhost+':'+newPort,'status':True,'isReWeb':isReWeb,'msg':public.lang("Saved")} public.write_log_gettext('Panel configuration','Set panel port [{}], domain [{}], default backup directory [{}], default site directory [{}], server IP [{}], authorized IP [{}]!',(newPort,get.domain,get.backup_path,get.sites_path,get.address,get.limitip)) if isReWeb: public.restart_panel() return data except: public.print_log(public.get_error_info()) def set_admin_path(self,get): get.admin_path = public.rsa_decrypt(get.admin_path.strip()).strip() if len(get.admin_path) < 6: return public.return_msg_gettext(False,'Security Entrance cannot be less than 6 characters!') if get.admin_path in admin_path_checks: return public.return_msg_gettext(False,'This entrance has been used by the panel, please set another entrances!') if not public.path_safe_check(get.admin_path) or get.admin_path[-1] == '.': return public.returnMsg(False,'Entrance address format is incorrect, e.g. /my_panel') if get.admin_path[0] != '/': return public.return_msg_gettext(False,'Entrance address format is incorrect, e.g. /my_panel') if get.admin_path.find("//") != -1: return public.return_msg_gettext(False, 'Entrance address format is incorrect, e.g. /my_panel') admin_path_file = 'data/admin_path.pl' admin_path = '/' if os.path.exists(admin_path_file): admin_path = public.readFile(admin_path_file).strip() if get.admin_path != admin_path: public.writeFile(admin_path_file,get.admin_path) public.restart_panel() return public.return_msg_gettext(True, 'Setup successfully!') def setPathInfo(self,get): #设置PATH_INFO version = get.version type = get.type if public.get_webserver() == 'nginx': path = public.GetConfigValue('setup_path')+'/nginx/conf/enable-php-'+version+'.conf' conf = public.readFile(path) rep = r"\s+#*include\s+pathinfo.conf;" if type == 'on': conf = re.sub(rep,'\n\t\t\tinclude pathinfo.conf;',conf) else: conf = re.sub(rep,'\n\t\t\t#include pathinfo.conf;',conf) public.writeFile(path,conf) public.serviceReload() path = public.GetConfigValue('setup_path')+'/php/'+version+'/etc/php.ini' conf = public.readFile(path) rep = r"\n*\s*cgi\.fix_pathinfo\s*=\s*([0-9]+)\s*\n" status = '0' if type == 'on':status = '1' conf = re.sub(rep,"\ncgi.fix_pathinfo = "+status+"\n",conf) public.writeFile(path,conf) public.write_log_gettext("PHP configuration", "Set PATH_INFO module to [{}] for PHP-{}!",(version,type)) public.phpReload(version) return public.return_msg_gettext(True,'Setup successfully!') #设置文件上传大小限制 def setPHPMaxSize(self,get): version = get.version max = get.max if int(max) < 2: return public.return_msg_gettext(False,'Limit of upload size cannot be less than 2 MB') #设置PHP path = public.GetConfigValue('setup_path')+'/php/'+version+'/etc/php.ini' ols_php_path = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version, get.version[0],get.version[1]) if os.path.exists('/etc/redhat-release'): ols_php_path = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' for p in [path,ols_php_path]: if not p: continue if not os.path.exists(p): continue conf = public.readFile(p) rep = r"\nupload_max_filesize\s*=\s*[0-9]+M?m?" conf = re.sub(rep,r'\nupload_max_filesize = '+max+'M',conf) rep = r"\npost_max_size\s*=\s*[0-9]+M?m?" conf = re.sub(rep,r'\npost_max_size = '+max+'M',conf) public.writeFile(p,conf) if public.get_webserver() == 'nginx': #设置Nginx path = public.GetConfigValue('setup_path')+'/nginx/conf/nginx.conf' conf = public.readFile(path) rep = r"client_max_body_size\s+([0-9]+)m?M?" tmp = re.search(rep,conf).groups() if int(tmp[0]) < int(max): conf = re.sub(rep,'client_max_body_size '+max+'m',conf) public.writeFile(path,conf) public.serviceReload() public.phpReload(version) public.write_log_gettext("PHP configuration", "Set max upload size to [{} MB] for PHP-{}!",(version,max)) return public.return_msg_gettext(True,'Setup successfully!') #设置禁用函数 def setPHPDisable(self,get): filename = public.GetConfigValue('setup_path') + '/php/' + get.version + '/etc/php.ini' ols_php_path = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version, get.version[0],get.version[1]) if os.path.exists('/etc/redhat-release'): ols_php_path = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' if not os.path.exists(filename): return public.return_msg_gettext(False,'Requested PHP version does NOT exist!') for file in [filename,ols_php_path]: if not os.path.exists(file): continue phpini = public.readFile(file) rep = r"disable_functions\s*=\s*.*\n" phpini = re.sub(rep, 'disable_functions = ' + get.disable_functions + "\n", phpini) public.write_log_gettext('PHP configuration','Modified disabled function to [{}] for PHP-{}',(get.version,get.disable_functions)) public.writeFile(file,phpini) public.phpReload(get.version) public.serviceReload() return public.return_msg_gettext(True,'Setup successfully!') #设置PHP超时时间 def setPHPMaxTime(self,get): time = get.time version = get.version if int(time) < 30 or int(time) > 86400: return public.return_msg_gettext(False,'Please fill in the value between 30 and 86400!') file = public.GetConfigValue('setup_path')+'/php/'+version+'/etc/php-fpm.conf' conf = public.readFile(file) rep = r"request_terminate_timeout\s*=\s*([0-9]+)\n" conf = re.sub(rep,"request_terminate_timeout = "+time+"\n",conf) public.writeFile(file,conf) file = '/www/server/php/'+version+'/etc/php.ini' phpini = public.readFile(file) rep = r"max_execution_time\s*=\s*([0-9]+)\r?\n" phpini = re.sub(rep,"max_execution_time = "+time+"\n",phpini) rep = r"max_input_time\s*=\s*([0-9]+)\r?\n" phpini = re.sub(rep,"max_input_time = "+time+"\n",phpini) public.writeFile(file,phpini) if public.get_webserver() == 'nginx': #设置Nginx path = public.GetConfigValue('setup_path')+'/nginx/conf/nginx.conf' conf = public.readFile(path) rep = r"fastcgi_connect_timeout\s+([0-9]+);" tmp = re.search(rep, conf).groups() if int(tmp[0]) < int(time): conf = re.sub(rep,'fastcgi_connect_timeout '+time+';',conf) rep = r"fastcgi_send_timeout\s+([0-9]+);" conf = re.sub(rep,'fastcgi_send_timeout '+time+';',conf) rep = r"fastcgi_read_timeout\s+([0-9]+);" conf = re.sub(rep,'fastcgi_read_timeout '+time+';',conf) public.writeFile(path,conf) public.write_log_gettext("PHP configuration", "Set maximum time of script to [{} second] for PHP-{}!",(version,time)) public.serviceReload() public.phpReload(version) return public.return_msg_gettext(True, 'Setup successfully!') #取FPM设置 def getFpmConfig(self,get): version = get.version file = public.GetConfigValue('setup_path')+"/php/"+version+"/etc/php-fpm.conf" if not os.path.exists(file): return public.return_msg_gettext(False, "The PHP-FPM configuration file does not exist.") conf = public.readFile(file) if not conf: return public.return_msg_gettext(False, "Failed to read the PHP-FPM configuration file.") data = {} rep = r"\s*pm.max_children\s*=\s*([0-9]+)\s*" tmp = re.search(rep, conf) data['max_children'] = tmp.groups()[0] if tmp else '' rep = r"\s*pm.start_servers\s*=\s*([0-9]+)\s*" tmp = re.search(rep, conf) data['start_servers'] = tmp.groups()[0] if tmp else '' rep = r"\s*pm.min_spare_servers\s*=\s*([0-9]+)\s*" tmp = re.search(rep, conf) data['min_spare_servers'] = tmp.groups()[0] if tmp else '' rep = r"\s*pm.max_spare_servers \s*=\s*([0-9]+)\s*" tmp = re.search(rep, conf) data['max_spare_servers'] = tmp.groups()[0] if tmp else '' rep = r"\s*pm\s*=\s*(\w+)\s*" tmp = re.search(rep, conf) data['pm'] = tmp.groups()[0] if tmp else 'static' rep = r"\s*listen.allowed_clients\s*=\s*([\w\.,/]+)\s*" tmp = re.search(rep, conf) data['allowed'] = tmp.groups()[0] if tmp else '' data['unix'] = 'unix' data['port'] = '' data['bind'] = '/tmp/php-cgi-{}.sock'.format(version) fpm_address = public.get_fpm_address(version,True) if not isinstance(fpm_address,str): data['unix'] = 'tcp' data['port'] = fpm_address[1] data['bind'] = fpm_address[0] return data #设置 def setFpmConfig(self,get): version = get.version max_children = get.max_children start_servers = get.start_servers min_spare_servers = get.min_spare_servers max_spare_servers = get.max_spare_servers pm = get.pm if not pm in ['static','dynamic','ondemand']: return public.return_msg_gettext(False,'Wrong operating mode') file = public.GetConfigValue('setup_path')+"/php/"+version+"/etc/php-fpm.conf" conf = public.readFile(file) rep = r"\s*pm.max_children\s*=\s*([0-9]+)\s*" conf = re.sub(rep, "\npm.max_children = "+max_children, conf) rep = r"\s*pm.start_servers\s*=\s*([0-9]+)\s*" conf = re.sub(rep, "\npm.start_servers = "+start_servers, conf) rep = r"\s*pm.min_spare_servers\s*=\s*([0-9]+)\s*" conf = re.sub(rep, "\npm.min_spare_servers = "+min_spare_servers, conf) rep = r"\s*pm.max_spare_servers \s*=\s*([0-9]+)\s*" conf = re.sub(rep, "\npm.max_spare_servers = "+max_spare_servers+"\n", conf) rep = r"\s*pm\s*=\s*(\w+)\s*" conf = re.sub(rep, "\npm = "+pm+"\n", conf) if pm == 'ondemand': if conf.find('listen.backlog = -1') != -1: rep = r"\s*listen\.backlog\s*=\s*([0-9-]+)\s*" conf = re.sub(rep, "\nlisten.backlog = 8192\n", conf) if get.listen == 'unix': listen = '/tmp/php-cgi-{}.sock'.format(version) else: default_listen = '127.0.0.1:10{}1'.format(version) if 'bind_port' in get: if get.bind_port.find('sock') != -1: listen = default_listen else: listen = get.bind_port else: listen = default_listen rep = r'\s*listen\s*=\s*.+\s*' conf = re.sub(rep, "\nlisten = "+listen+"\n", conf) if 'allowed' in get: if not get.allowed: get.allowed = '127.0.0.1' rep = r"\s*listen.allowed_clients\s*=\s*([\w\.,/]+)\s*" conf = re.sub(rep, "\nlisten.allowed_clients = "+get.allowed+"\n", conf) public.writeFile(file,conf) public.phpReload(version) public.sync_php_address(version) public.write_log_gettext("PHP configuration",'Set concurrency of PHP-{}, max_children={}, start_servers={}, min_spare_servers={}, max_spare_servers={}', (version,max_children,start_servers,min_spare_servers,max_spare_servers)) return public.return_msg_gettext(True, 'Setup successfully!') #同步时间 def syncDate(self,get): """ @name 同步时间 @author hezhihong """ #取国际标准0时时间戳 time_str = public.HttpGet(public.GetConfigValue('home') + '/api/index/get_time') try: new_time = int(time_str)-28800 except: return public.returnMsg(False,'Failed to connect to the time server!') if not new_time: public.returnMsg(False,'Failed to connect to the time server!') #取所在时区偏差秒数 add_time='+0000' try: add_time=public.ExecShell('date +"%Y-%m-%d %H:%M:%S %Z %z"')[0].replace('\n','').strip().split()[-1] print(add_time) except:pass add_1=False if add_time[0]=='+': add_1=True add_v=int(add_time[1:-2])*3600+int(add_time[-2:])*60 if add_1: new_time+=add_v else:new_time-=add_v #设置所在时区时间 date_str = public.format_date(times=new_time) public.ExecShell('date -s "%s"' % date_str) public.write_log_gettext("Panel configuration", 'Update Succeeded!') return public.return_msg_gettext(True,'Setup successfully!') def IsOpen(self,port): #检查端口是否占用 import socket s = socket.socket(socket.AF_INET,socket.SOCK_STREAM) try: s.connect(('127.0.0.1',int(port))) s.shutdown(2) return True except: return False #设置是否开启监控 def SetControl(self,get): try: if hasattr(get,'day'): get.day = int(get.day) get.day = str(get.day) if(get.day < 1): return public.return_msg_gettext(False,'Number of saving days is illegal!') except: pass filename = 'data/control.conf' if get.type == '1': public.writeFile(filename,get.day) public.write_log_gettext("Panel configuration",'Turned on monitory service, save for [{}] day!',(get.day,)) elif get.type == '0': if os.path.exists(filename): os.remove(filename) public.write_log_gettext("Panel configuration", 'Monitor service turned off!') elif get.type == 'del': if not public.IsRestart(): return public.return_msg_gettext(False,'Please run the program when all install tasks finished!') os.remove("data/system.db") import db sql = db.Sql() sql.dbfile('system').create('system') public.write_log_gettext("Panel configuration", 'Monitor service turned off!') return public.return_msg_gettext(True,'Setup successfully!') else: data = {} if os.path.exists(filename): try: data['day'] = int(public.readFile(filename)) except: data['day'] = 30 data['status'] = True else: data['day'] = 30 data['status'] = False return data return public.return_msg_gettext(True,'Successfully set') #关闭面板 def ClosePanel(self,get): filename = 'data/close.pl' if os.path.exists(filename): os.remove(filename) return public.returnMsg(True, 'Setup successfully!') public.writeFile(filename, 'True') public.ExecShell("chmod 600 " + filename) public.ExecShell("chown root.root " + filename) return public.return_msg_gettext(True,'Setup successfully!') #设置自动更新 def AutoUpdatePanel(self,get): #return public.returnMsg(False,'体验服务器,禁止修改!') filename = 'data/autoUpdate.pl' if os.path.exists(filename): os.remove(filename) else: public.writeFile(filename,'True') public.ExecShell("chmod 600 " + filename) public.ExecShell("chown root.root " + filename) return public.return_msg_gettext(True,'Setup successfully!') #设置二级密码 def SetPanelLock(self,get): path = 'data/lock' if not os.path.exists(path): public.ExecShell('mkdir ' + path) public.ExecShell("chmod 600 " + path) public.ExecShell("chown root.root " + path) keys = ['files','tasks','config'] for name in keys: filename = path + '/' + name + '.pl' if hasattr(get,name): public.writeFile(filename,'True') else: if os.path.exists(filename): os.remove(filename); #设置PHP守护程序 def Set502(self,get): filename = 'data/502Task.pl' if os.path.exists(filename): public.ExecShell('rm -f ' + filename) else: public.writeFile(filename,'True') return public.return_msg_gettext(True,'Setup successfully!') #设置模板 def SetTemplates(self,get): public.writeFile('data/templates.pl',get.templates) return public.return_msg_gettext(True,'Setup successfully!') #设置面板SSL def SetPanelSSL(self, get): if not os.path.exists("/www/server/panel/ssl/"): os.makedirs("/www/server/panel/ssl/") if hasattr(get, "cert_type") and str(get.cert_type) == "2": # rep_mail = r"[\w!#$%&'*+/=?^_`{|}~-]+(?:\.[\w!#$%&'*+/=?^_`{|}~-]+)*@(?:[\w](?:[\w-]*[\w])?\.)+[\w](?:[\w-]*[\w])?" # if not re.search(rep_mail,get.email): # return public.return_msg_gettext(False,'The E-Mail format is illegal') import setPanelLets sp = setPanelLets.setPanelLets() sps = sp.set_lets(get) return sps else: sslConf = self._setup_path + '/data/ssl.pl' if os.path.exists(sslConf) and not 'cert_type' in get: public.ExecShell('rm -f ' + sslConf + '&& rm -f /www/server/panel/ssl/*') g.rm_ssl = True return public.return_msg_gettext(True, 'SSL turned off,Please use http protocol to access the panel!') else: public.ExecShell('btpip install cffi') public.ExecShell('btpip install cryptography') public.ExecShell('btpip install pyOpenSSL') if not 'cert_type' in get: return public.returnMsg(False,'Please refresh the page and try again!') if get.cert_type in [0,'0']: result = self.SavePanelSSL(get) if not result['status']: return result public.writeFile(sslConf,'True') public.writeFile('data/reload.pl','True') try: if not self.CreateSSL(): return public.return_msg_gettext(False, 'Error, unable to auto install pyOpenSSL!

Plesea try to manually install: pip install pyOpenSSL

') public.writeFile(sslConf, 'True') except: return public.return_msg_gettext(False, 'Error, unable to auto install pyOpenSSL!

Plesea try to manually install: pip install pyOpenSSL

') return public.return_msg_gettext(True, 'SSL is turned on, plesea use https protocol to access the panel!') #自签证书 # def CreateSSL(self): # if os.path.exists('ssl/input.pl'): return True # import OpenSSL # key = OpenSSL.crypto.PKey() # key.generate_key(OpenSSL.crypto.TYPE_RSA, 2048) # cert = OpenSSL.crypto.X509() # cert.set_serial_number(0) # cert.get_subject().CN = public.GetLocalIp() # cert.set_issuer(cert.get_subject()) # cert.gmtime_adj_notBefore( 0 ) # cert.gmtime_adj_notAfter(86400 * 3650) # cert.set_pubkey( key ) # cert.sign( key, 'md5' ) # cert_ca = OpenSSL.crypto.dump_certificate(OpenSSL.crypto.FILETYPE_PEM, cert) # private_key = OpenSSL.crypto.dump_privatekey(OpenSSL.crypto.FILETYPE_PEM, key) # if len(cert_ca) > 100 and len(private_key) > 100: # public.writeFile('ssl/certificate.pem',cert_ca,'wb+') # public.writeFile('ssl/privateKey.pem',private_key,'wb+') # return True # return False # 自签证书 def CreateSSL(self): import base64 userInfo = public.get_user_info() if not userInfo: userInfo['uid'] = 0 userInfo['access_key'] = 'B' * 32 if not public.is_self_hosted(): domains = self.get_host_all() pdata = { "action": "get_domain_cert", "company": "yakpanel.com", "domain": ','.join(domains), "uid": userInfo['uid'], "access_key": 'B' * 32, "panel": 1 } cert_api = 'https://api.yakpanel.com/yakpanel_cert' result = json.loads(public.httpPost(cert_api, {'data': json.dumps(pdata)})) if 'status' in result: if result['status']: if os.path.exists('ssl/certificate.pem'): os.remove('ssl/certificate.pem') if os.path.exists('ssl/privateKey.pem'): os.remove('ssl/privateKey.pem') for _rpfx in ('ssl/yakpanel_root.pfx', 'ssl/baota_root.pfx'): if os.path.exists(_rpfx): os.remove(_rpfx) if os.path.exists('ssl/root_password.pl'): os.remove('ssl/root_password.pl') public.writeFile('ssl/certificate.pem', result['cert']) public.writeFile('ssl/privateKey.pem', result['key']) public.writeFile('ssl/yakpanel_root.pfx', base64.b64decode(result['pfx']), 'wb+') public.writeFile('ssl/root_password.pl', result['password']) public.writeFile('data/ssl.pl', 'True') # public.ExecShell("/etc/init.d/bt reload") print('1') return True if os.path.exists('ssl/input.pl'): return True import OpenSSL key = OpenSSL.crypto.PKey() key.generate_key(OpenSSL.crypto.TYPE_RSA, 2048) cert = OpenSSL.crypto.X509() cert.set_serial_number(0) cert.get_subject().CN = public.GetLocalIp() cert.set_issuer(cert.get_subject()) cert.gmtime_adj_notBefore( 0 ) cert.gmtime_adj_notAfter(86400 * 3650) cert.set_pubkey( key ) cert.sign( key, 'md5' ) cert_ca = OpenSSL.crypto.dump_certificate(OpenSSL.crypto.FILETYPE_PEM, cert) private_key = OpenSSL.crypto.dump_privatekey(OpenSSL.crypto.FILETYPE_PEM, key) if len(cert_ca) > 100 and len(private_key) > 100: public.writeFile('ssl/certificate.pem',cert_ca,'wb+') public.writeFile('ssl/privateKey.pem',private_key,'wb+') return True return False def get_ipaddress(self): ''' @name 获取本机IP地址 @author hwliang<2020-11-24> @return list ''' ipa_tmp = \ public.ExecShell("ip a |grep inet|grep -v inet6|grep -v 127.0.0.1|awk '{print $2}'|sed 's#/[0-9]*##g'")[ 0].strip() iplist = ipa_tmp.split('\n') return iplist def get_host_all(self): local_ip = ['127.0.0.1', '::1', 'localhost'] ip_list = [] bind_ip = self.get_ipaddress() for ip in bind_ip: ip = ip.strip() if ip in local_ip: continue if ip in ip_list: continue ip_list.append(ip) net_ip = public.httpGet('{}/api/common/getClientIP'.format(public.OfficialApiBase())) if net_ip: net_ip = net_ip.strip() if not net_ip in ip_list: ip_list.append(net_ip) ip_list = [ip_list[-1], ip_list[0]] return ip_list #生成Token def SetToken(self,get): data = {} data[''] = public.GetRandomString(24) #取面板列表 def GetPanelList(self,get): try: data = public.M('panel').field('id,title,url,username,password,click,addtime').order('click desc').select() if type(data) == str: data[111] return data except: sql = '''CREATE TABLE IF NOT EXISTS `panel` ( `id` INTEGER PRIMARY KEY AUTOINCREMENT, `title` TEXT, `url` TEXT, `username` TEXT, `password` TEXT, `click` INTEGER, `addtime` INTEGER );''' public.M('sites').execute(sql,()) return [] #添加面板资料 def AddPanelInfo(self,get): #校验是还是重复 isAdd = public.M('panel').where('title=? OR url=?',(get.title,get.url)).count() if isAdd: return public.return_msg_gettext(False,'Notes or panel address duplicate!') import time,json isRe = public.M('panel').add('title,url,username,password,click,addtime',(public.xssencode2(get.title),public.xssencode2(get.url),public.xssencode2(get.username),get.password,0,int(time.time()))) if isRe: return public.return_msg_gettext(True,'Setup successfully!') return public.return_msg_gettext(False,'Failed to add') #修改面板资料 def SetPanelInfo(self,get): #校验是还是重复 isSave = public.M('panel').where('(title=? OR url=?) AND id!=?',(get.title,get.url,get.id)).count() if isSave: return public.return_msg_gettext(False,'Notes or panel address duplicate!') import time,json #更新到数据库 isRe = public.M('panel').where('id=?',(get.id,)).save('title,url,username,password',(get.title,get.url,get.username,get.password)) if isRe: return public.return_msg_gettext(True,'Setup successfully!') return public.return_msg_gettext(False,'Failed to modify') #删除面板资料 def DelPanelInfo(self,get): isExists = public.M('panel').where('id=?',(get.id,)).count() if not isExists: return public.return_msg_gettext(False,'Requested panel info does NOT exist!') public.M('panel').where('id=?',(get.id,)).delete() return public.return_msg_gettext(True,'Successfully deleted') #点击计数 def ClickPanelInfo(self,get): click = public.M('panel').where('id=?',(get.id,)).getField('click') public.M('panel').where('id=?',(get.id,)).setField('click',click+1) return True #获取PHP配置参数 def GetPHPConf(self,get): gets = [ {'name': 'short_open_tag', 'type': 1, 'ps': public.get_msg_gettext('Short tag support')}, {'name': 'asp_tags', 'type': 1, 'ps': public.get_msg_gettext('ASP tag support')}, {'name': 'max_execution_time', 'type': 2, 'ps': public.get_msg_gettext('Max time of running script')}, {'name': 'max_input_time', 'type': 2, 'ps': public.get_msg_gettext('Max time of input')}, {'name': 'memory_limit', 'type': 2, 'ps': public.get_msg_gettext('Limit of script memory')}, {'name': 'post_max_size', 'type': 2, 'ps': public.get_msg_gettext('Max size of POST data')}, {'name': 'file_uploads', 'type': 1, 'ps': public.get_msg_gettext('Whether to allow upload file')}, {'name': 'upload_max_filesize', 'type': 2, 'ps': public.get_msg_gettext('Max size of upload file')}, {'name': 'max_file_uploads', 'type': 2, 'ps': public.get_msg_gettext('Max value of simultaneously upload file')}, {'name': 'default_socket_timeout', 'type': 2, 'ps': public.get_msg_gettext('Socket over time')}, {'name': 'error_reporting', 'type': 3, 'ps': public.get_msg_gettext('Level of error')}, {'name': 'display_errors', 'type': 1, 'ps': public.get_msg_gettext('Whether to output detailed error info')}, {'name': 'cgi.fix_pathinfo', 'type': 0, 'ps': public.get_msg_gettext('Whether to turn on pathinfo')}, {'name': 'date.timezone', 'type': 3, 'ps': public.get_msg_gettext('Timezone')} ] phpini_file = '/www/server/php/' + get.version + '/etc/php.ini' if public.get_webserver() == 'openlitespeed': phpini_file = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version, get.version[0],get.version[1]) if os.path.exists('/etc/redhat-release'): phpini_file = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' phpini = public.readFile(phpini_file) if not phpini: return public.return_msg_gettext(False,"Error reading PHP configuration file, please try to reinstall this PHP!") result = [] for g in gets: rep = g['name'] + r'\s*=\s*([0-9A-Za-z_&/ ~]+)(\s*;?|\r?\n)' tmp = re.search(rep,phpini) if not tmp: continue g['value'] = tmp.groups()[0] result.append(g) return result def get_php_config(self,get): #取PHP配置 get.version = get.version.replace('.','') file = session['setupPath'] + "/php/"+get.version+"/etc/php.ini" if public.get_webserver() == 'openlitespeed': file = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version, get.version[0],get.version[1]) if os.path.exists('/etc/redhat-release'): file = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' phpini = public.readFile(file) file = session['setupPath'] + "/php/"+get.version+"/etc/php-fpm.conf" phpfpm = public.readFile(file) data = {} try: rep = r"upload_max_filesize\s*=\s*([0-9]+)M" tmp = re.search(rep,phpini).groups() data['max'] = tmp[0] except: data['max'] = '50' try: rep = r"request_terminate_timeout\s*=\s*([0-9]+)\n" tmp = re.search(rep,phpfpm).groups() data['maxTime'] = tmp[0] except: data['maxTime'] = 0 try: rep = r"\n;*\s*cgi\.fix_pathinfo\s*=\s*([0-9]+)\s*\n" tmp = re.search(rep,phpini).groups() if tmp[0] == '1': data['pathinfo'] = True else: data['pathinfo'] = False except: data['pathinfo'] = False return data #提交PHP配置参数 def SetPHPConf(self,get): gets = ['display_errors','cgi.fix_pathinfo','date.timezone','short_open_tag','asp_tags','max_execution_time','max_input_time','memory_limit','post_max_size','file_uploads','upload_max_filesize','max_file_uploads','default_socket_timeout','error_reporting'] filename = '/www/server/php/' + get.version + '/etc/php.ini' reload_str = '/etc/init.d/php-fpm-' + get.version + ' reload' ols_php_path = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version, get.version[0],get.version[1]) if os.path.exists('/etc/redhat-release'): ols_php_path = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' reload_ols_str = '/usr/local/lsws/bin/lswsctrl restart' for p in [filename,ols_php_path]: if not p: continue if not os.path.exists(p): continue phpini = public.readFile(p) for g in gets: try: rep = g + r'\s*=\s*(.+)\r?\n' val = g+' = ' + get[g] + '\n' phpini = re.sub(rep,val,phpini) except: continue public.writeFile(p,phpini) public.ExecShell(reload_str) public.ExecShell(reload_ols_str) return public.return_msg_gettext(True,'Setup successfully!') # 取Session缓存方式 def GetSessionConf(self,get): filename = '/www/server/php/' + get.version + '/etc/php.ini' if public.get_webserver() == 'openlitespeed' and not public.get_multi_webservice_status(): filename = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version,get.version[0],get.version[1]) if os.path.exists('/etc/redhat-release'): filename = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' phpini = public.readFile(filename) if not isinstance(phpini, str): return public.return_msg_gettext(False, 'Failed to read PHP configuration file, it may not exist: {}'.format(filename)) rep = r'session.save_handler\s*=\s*([0-9A-Za-z_& ~]+)(\s*;?|\r?\n)' save_handler = re.search(rep, phpini) if save_handler: save_handler = save_handler.group(1) else: save_handler = "files" reppath = r'\nsession.save_path\s*=\s*"tcp\:\/\/([\w\.]+):(\d+).*\r?\n' passrep = r'\nsession.save_path\s*=\s*"tcp://[\w\.\?\:]+=(.*)"\r?\n' memcached = r'\nsession.save_path\s*=\s*"([\w\.]+):(\d+)"' save_path = re.search(reppath, phpini) if not save_path: save_path = re.search(memcached, phpini) passwd = re.search(passrep, phpini) port = "" if passwd: passwd = passwd.group(1) else: passwd = "" if save_path: port = save_path.group(2) save_path = save_path.group(1) else: save_path = "" return {"save_handler": save_handler, "save_path": save_path, "passwd": passwd, "port": port} # 设置Session缓存方式 def SetSessionConf(self, get): import glob g = get.save_handler ip = get.ip.strip() port = get.port passwd = get.passwd if g != "files": iprep = r"(2(5[0-5]{1}|[0-4]\d{1})|[0-1]?\d{1,2})\.(2(5[0-5]{1}|[0-4]\d{1})|[0-1]?\d{1,2})\.(2(5[0-5]{1}|[0-4]\d{1})|[0-1]?\d{1,2})\.(2(5[0-5]{1}|[0-4]\d{1})|[0-1]?\d{1,2})" rep_domain = r"^(?=^.{3,255}$)[a-zA-Z0-9\_\-][a-zA-Z0-9\_\-]{0,62}(\.[a-zA-Z0-9\_\-][a-zA-Z0-9\_\-]{0,62})+$" if not re.search(iprep, ip) and not re.search(rep_domain, ip): if ip != "localhost": return public.returnMsg(False, 'Please enter the correct [domain or IP]!') try: port = int(port) if port >= 65535 or port < 1: return public.return_msg_gettext(False, 'Port range is incorrect! should be between 100-65535') except: return public.return_msg_gettext(False, 'Port range is incorrect! should be between 100-65535') prep = r"[\~\`\/\=]" if re.search(prep, passwd): return public.return_msg_gettext(False, 'Please do NOT enter the following special characters {}', ('" ~ ` / = "')) filename = '/www/server/php/' + get.version + '/etc/php.ini' filename_ols = None ols_exist = os.path.exists("/usr/local/lsws/bin/lswsctrl") if ols_exist and not public.get_multi_webservice_status(): filename_ols = '/usr/local/lsws/lsphp{}/etc/php/{}.{}/litespeed/php.ini'.format(get.version, get.version[0], get.version[1]) if os.path.exists('/etc/redhat-release'): filename_ols = '/usr/local/lsws/lsphp' + get.version + '/etc/php.ini' try: ols_php_os_path = glob.glob("/usr/local/lsws/lsphp{}/lib/php/20*".format(get.version))[0] except: ols_php_os_path = None if os.path.exists("/etc/redhat-release"): ols_php_os_path = '/usr/local/lsws/lsphp{}/lib64/php/modules/'.format(get.version) ols_so_list = os.listdir(ols_php_os_path) else: ols_so_list = [] for f in [filename,filename_ols]: if not f: continue phpini = public.readFile(f) rep = r'session.save_handler\s*=\s*(.+)\r?\n' val = r'session.save_handler = ' + g + '\n' phpini = re.sub(rep, val, phpini) if not ols_exist or public.get_multi_webservice_status(): if g == "memcached": if not re.search("memcached.so", phpini): return public.return_msg_gettext(False, 'Please install the {} extension first.', (g,)) rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "%s:%s" \n' % (ip,port) if re.search(rep, phpini): phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) if g == "memcache": if not re.search("memcache.so", phpini): return public.return_msg_gettext(False, 'Please install the {} extension first.', (g,)) rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "tcp://%s:%s"\n' % (ip, port) if re.search(rep, phpini): phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) if g == "redis": if not re.search("redis.so", phpini): return public.return_msg_gettext(False, 'Please install the {} extension first.', (g,)) if passwd: passwd = "?auth=" + passwd else: passwd = "" rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "tcp://%s:%s%s"\n' % (ip, port, passwd) res = re.search(rep, phpini) if res: phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) if g == "files": rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "/tmp"\n' if re.search(rep, phpini): phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) else: if g == "memcached": if "memcached.so" not in ols_so_list: return public.return_msg_gettext(False, 'Please install the {} extension first.', (g,)) rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "%s:%s" \n' % (ip,port) if re.search(rep, phpini): phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) if g == "memcache": if "memcache.so" not in ols_so_list: return public.return_msg_gettext(False, 'Please install the {} extension first.', (g,)) rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "tcp://%s:%s"\n' % (ip, port) if re.search(rep, phpini): phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) if g == "redis": if "redis.so" not in ols_so_list: return public.return_msg_gettext(False, 'Please install the {} extension first.', (g,)) if passwd: passwd = "?auth=" + passwd else: passwd = "" rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "tcp://%s:%s%s"\n' % (ip, port, passwd) res = re.search(rep, phpini) if res: phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) if g == "files": rep = r'\nsession.save_path\s*=\s*(.+)\r?\n' val = r'\nsession.save_path = "/tmp"\n' if re.search(rep, phpini): phpini = re.sub(rep, val, phpini) else: phpini = re.sub('\n;session.save_path = "/tmp"', '\n;session.save_path = "/tmp"' + val, phpini) public.writeFile(f, phpini) public.ExecShell('/etc/init.d/php-fpm-' + get.version + ' reload') public.serviceReload() return public.return_msg_gettext(True, 'Setup successfully!') # 获取Session文件数量 def GetSessionCount(self, get): d=["/tmp","/www/php_session"] count = 0 for i in d: if not os.path.exists(i): public.ExecShell('mkdir -p %s'%i) list = os.listdir(i) for l in list: if os.path.isdir(i+"/"+l): l1 = os.listdir(i+"/"+l) for ll in l1: if "sess_" in ll: count += 1 continue if "sess_" in l: count += 1 s = "find /tmp -mtime +1 |grep 'sess_'|wc -l" old_file = int(public.ExecShell(s)[0].split("\n")[0]) s = "find /www/php_session -mtime +1 |grep 'sess_'|wc -l" old_file += int(public.ExecShell(s)[0].split("\n")[0]) return {"total":count,"oldfile":old_file} # 删除老文件 def DelOldSession(self,get): s = "find /tmp -mtime +1 |grep 'sess_'|xargs rm -f" public.ExecShell(s) s = "find /www/php_session -mtime +1 |grep 'sess_'|xargs rm -f" public.ExecShell(s) # s = "find /tmp -mtime +1 |grep 'sess_'|wc -l" # old_file_conf = int(public.ExecShell(s)[0].split("\n")[0]) old_file_conf = self.GetSessionCount(get)["oldfile"] if old_file_conf == 0: return public.return_msg_gettext(True, 'Successfully deleted') else: return public.return_msg_gettext(True, 'Failed to delete') #获取面板证书 def GetPanelSSL(self,get): cert = {} key_file = 'ssl/privateKey.pem' cert_file = 'ssl/certificate.pem' if not os.path.exists(key_file): self.CreateSSL() cert['privateKey'] = public.readFile(key_file) cert['certPem'] = public.readFile(cert_file) cert['download_root'] = False cert['info'] = {} if not cert['privateKey']: cert['privateKey'] = '' cert['certPem'] = '' else: cert['info'] = public.get_cert_data(cert_file) if not cert['info']: self.CreateSSL() cert['info'] = public.get_cert_data(cert_file) if cert['info']: if cert['info']['issuer'] == 'yakpanel.com': if os.path.exists('ssl/yakpanel_root.pfx') or os.path.exists('ssl/baota_root.pfx'): cert['download_root'] = True cert['root_password'] = public.readFile('ssl/root_password.pl') cert['rep'] = os.path.exists('ssl/input.pl') return cert # 保存面板证书 def SavePanelSSL(self, get): keyPath = 'ssl/privateKey.pem' certPath = 'ssl/certificate.pem' checkCert = '/tmp/cert.pl' ssl_pl = 'data/ssl.pl' if not 'certPem' in get: return public.returnMsg(False,public.lang("The certPem parameter is missing!")) if not 'privateKey' in get: return public.returnMsg(False, public.lang("The privateKey parameter is missing!")) get.privateKey = get.privateKey.strip() get.certPem = get.certPem.strip() import ssl_info ssl_info = ssl_info.ssl_info() # #验证格式 # format_status, format_message = ssl_info.verify_format('key',get.privateKey) # if not format_status: # return public.returnMsg(False, format_message) # format_status, format_message = ssl_info.verify_format('cert',get.certPem) # if not format_status: # return public.returnMsg(False, format_message) # 验证证书和密钥是否匹配格式是否为pem # check_flag, check_msg = ssl_info.verify_certificate_and_key_match(get.privateKey, get.certPem) # if not check_flag: return public.returnMsg(False, check_msg) # 验证证书链是否完整 check_chain_flag, check_chain_msg = ssl_info.verify_certificate_chain(get.certPem) if not check_chain_flag: return public.returnMsg(False, check_chain_msg) public.writeFile(checkCert, get.certPem) if not public.CheckCert(checkCert): os.remove(checkCert) return public.returnMsg(False, 'Certificate ERROR, please check!') if get.privateKey: public.writeFile(keyPath, get.privateKey) if get.certPem: public.writeFile(certPath, get.certPem) public.writeFile('ssl/input.pl', 'True') if os.path.exists(ssl_pl): public.writeFile('data/reload.pl', 'True') return public.returnMsg(True, public.lang("Certificate saved!")) # 获取ftp端口 def get_ftp_port(self): # 获取FTP端口 if 'port' in session: return session['port'] import re try: file = public.GetConfigValue('setup_path') + '/pure-ftpd/etc/pure-ftpd.conf' conf = public.readFile(file) rep = r"\n#?\s*Bind\s+[0-9]+\.[0-9]+\.[0-9]+\.+[0-9]+,([0-9]+)" port = re.search(rep, conf).groups()[0] except: port = '21' session['port'] = port return port #获取配置 def get_config(self,get): from panelModelV2.publicModel import main main().get_public_config(public.to_dict_obj({})) data = {} if 'config' in session: session['config']['distribution'] = public.get_linux_distribution() session['webserver'] = public.get_webserver() session['config']['webserver'] = session['webserver'] data = session['config'] if not data: data = public.M('config').where("id=?",('1',)).field('webserver,sites_path,backup_path,status,mysql_root').find() # public.print_log(data) data['webserver'] = public.get_webserver() data['distribution'] = public.get_linux_distribution() data['request_iptype'] = self.get_request_iptype() data['request_type'] = self.get_request_type() lang = self.get_language() data['language'] = lang['default'] data['language_list'] = lang['languages'] return data #取面板错误日志 def get_error_logs(self,get): return public.GetNumLines('logs/error.log',2000) def is_pro(self,get): import panelAuth,json pdata = panelAuth.panelAuth().create_serverid(None) url = public.GetConfigValue('home') + '/api/panel/is_pro' pluginTmp = public.httpPost(url,pdata) pluginInfo = json.loads(pluginTmp) return pluginInfo def get_token(self,get): import panelApi return panelApi.panelApi().get_token(get) def set_token(self,get): import panelApi return panelApi.panelApi().set_token(get) def get_tmp_token(self,get): import panelApi return panelApi.panelApi().get_tmp_token(get) def GetNginxValue(self,get): n = nginx.nginx() return n.GetNginxValue() def SetNginxValue(self,get): n = nginx.nginx() return n.SetNginxValue(get) def GetApacheValue(self,get): a = apache.apache() return a.GetApacheValue() def SetApacheValue(self,get): a = apache.apache() return a.SetApacheValue(get) def get_ols_value(self,get): a = ols.ols() return a.get_value(get) def set_ols_value(self,get): a = ols.ols() return a.set_value(get) def get_ols_private_cache(self,get): a = ols.ols() return a.get_private_cache(get) def get_ols_static_cache(self,get): a = ols.ols() return a.get_static_cache(get) def set_ols_static_cache(self,get): a = ols.ols() return a.set_static_cache(get) def switch_ols_private_cache(self,get): a = ols.ols() return a.switch_private_cache(get) def set_ols_private_cache(self,get): a = ols.ols() return a.set_private_cache(get) def get_ols_private_cache_status(self,get): a = ols.ols() return a.get_private_cache_status(get) def get_ipv6_listen(self,get): return os.path.exists('data/ipv6.pl') def set_ipv6_status(self,get): ipv6_file = 'data/ipv6.pl' if self.get_ipv6_listen(get): os.remove(ipv6_file) public.write_log_gettext('Panel setting', 'Disable IPv6 compatibility of the panel!') else: public.writeFile(ipv6_file, 'True') public.write_log_gettext('Panel setting', 'Enable IPv6 compatibility of the panel!') public.restart_panel() return public.return_msg_gettext(True, 'Setup successfully!') #自动补充CLI模式下的PHP版本 def auto_cli_php_version(self,get): import panelSite php_versions = panelSite.panelSite().GetPHPVersion(get) php_bin_src = "/www/server/php/%s/bin/php" % php_versions[-1]['version'] if not os.path.exists(php_bin_src): return public.return_msg_gettext(False,'PHP is not installed') get.php_version = php_versions[-1]['version'] self.set_cli_php_version(get) return php_versions[-1] #获取CLI模式下的PHP版本 def get_cli_php_version(self,get): php_bin = '/usr/bin/php' if not os.path.exists(php_bin) or not os.path.islink(php_bin): return self.auto_cli_php_version(get) link_re = os.readlink(php_bin) if not os.path.exists(link_re): return self.auto_cli_php_version(get) import panelSite php_versions = panelSite.panelSite().GetPHPVersion(get) if len(php_versions)==0: return public.return_msg_gettext(False,'Failed to get php version!') del(php_versions[0]) for v in php_versions: if link_re.find(v['version']) != -1: return {"select":v,"versions":php_versions} return {"select":self.auto_cli_php_version(get),"versions":php_versions} #设置CLI模式下的PHP版本 def set_cli_php_version(self,get): php_bin = '/usr/bin/php' php_bin_src = "/www/server/php/%s/bin/php" % get.php_version php_ize = '/usr/bin/phpize' php_ize_src = "/www/server/php/%s/bin/phpize" % get.php_version php_fpm = '/usr/bin/php-fpm' php_fpm_src = "/www/server/php/%s/sbin/php-fpm" % get.php_version php_pecl = '/usr/bin/pecl' php_pecl_src = "/www/server/php/%s/bin/pecl" % get.php_version php_pear = '/usr/bin/pear' php_pear_src = "/www/server/php/%s/bin/pear" % get.php_version php_cli_ini = '/etc/php-cli.ini' php_cli_ini_src = "/www/server/php/%s/etc/php-cli.ini" % get.php_version if not os.path.exists(php_bin_src): return public.return_message(False,'Specified PHP version not installed') is_chattr = public.ExecShell('lsattr /usr|grep /usr/bin')[0].find('-i-') if is_chattr != -1: public.ExecShell('chattr -i /usr/bin') public.ExecShell("rm -f " + php_bin + ' '+ php_ize + ' ' + php_fpm + ' ' + php_pecl + ' ' + php_pear + ' ' + php_cli_ini) public.ExecShell("ln -sf %s %s" % (php_bin_src,php_bin)) public.ExecShell("ln -sf %s %s" % (php_ize_src,php_ize)) public.ExecShell("ln -sf %s %s" % (php_fpm_src,php_fpm)) public.ExecShell("ln -sf %s %s" % (php_pecl_src,php_pecl)) public.ExecShell("ln -sf %s %s" % (php_pear_src,php_pear)) public.ExecShell("ln -sf %s %s" % (php_cli_ini_src,php_cli_ini)) import jobs jobs.set_php_cli_env() if is_chattr != -1: public.ExecShell('chattr +i /usr/bin') public.write_log_gettext('Panel settings','Set the PHP-CLI version to: {}',(get.php_version,)) return public.return_msg_gettext(True,'Setup successfully!') #获取BasicAuth状态 def get_basic_auth_stat(self,get): path = 'config/basic_auth.json' is_install = True result = {"basic_user":"","basic_pwd":"","open":False,"is_install":is_install} if not os.path.exists(path): return result try: ba_conf = json.loads(public.readFile(path)) except: os.remove(path) return result ba_conf['is_install'] = is_install return ba_conf #设置BasicAuth def set_basic_auth(self,get): is_open = False if get.open == 'True': is_open = True tips = '_capnis.com' path = 'config/basic_auth.json' ba_conf = None if is_open: if not get.basic_user.strip() or not get.basic_pwd.strip(): return public.returnMsg(False,'BasicAuth authentication username and password cannot be empty!') if os.path.exists(path): try: ba_conf = json.loads(public.readFile(path)) except: os.remove(path) if not ba_conf: ba_conf = {"basic_user":public.md5(get.basic_user.strip() + tips),"basic_pwd":public.md5(get.basic_pwd.strip() + tips),"open":is_open} else: if get.basic_user: ba_conf['basic_user'] = public.md5(get.basic_user.strip() + tips) if get.basic_pwd: ba_conf['basic_pwd'] = public.md5(get.basic_pwd.strip() + tips) ba_conf['open'] = is_open public.writeFile(path,json.dumps(ba_conf)) os.chmod(path,384) public.write_log_gettext('Panel settings','Set the BasicAuth status to: {}', (is_open,)) public.add_security_logs('Panel settings',' Set the BasicAuth status to: %s' % is_open) public.writeFile('data/reload.pl','True') return public.return_msg_gettext(True,'Setup successfully!') # xss 防御 def xsssec(self,text): return text.replace('<', '<').replace('>', '>') #取面板运行日志 def get_panel_error_logs(self,get): filename = 'logs/error.log' if not os.path.exists(filename): return public.return_msg_gettext(False,"Logs emptied") result = public.GetNumLines(filename,2000) return public.returnMsg(True,self.xsssec(result)) #清空面板运行日志 def clean_panel_error_logs(self,get): filename = 'logs/error.log' public.writeFile(filename,'') public.write_log_gettext('Panel settings','Clearing log info') public.add_security_logs('Panel settings', 'Clearing log info') return public.return_msg_gettext(True,'Cleared!') # 获取lets证书 def get_cert_source(self,get): import setPanelLets sp = setPanelLets.setPanelLets() spg = sp.get_cert_source() return spg #设置debug模式 def set_debug(self,get): debug_path = 'data/debug.pl' if os.path.exists(debug_path): t_str = 'Close' os.remove(debug_path) else: t_str = 'Open' public.writeFile(debug_path,'True') public.write_log_gettext('Panel configuration','{} Developer mode(DeBug)',(t_str,)) public.restart_panel() return public.return_msg_gettext(True,'Setup successfully!') #设置离线模式 def set_local(self,get): d_path = 'data/not_network.pl' if os.path.exists(d_path): t_str = 'Close' os.remove(d_path) else: t_str = 'Open' public.writeFile(d_path,'True') public.write_log_gettext('Panel configuration','{} Offline mode',(t_str,)) return public.return_msg_gettext(True,'Setup successfully!') # 修改.user.ini文件 def _edit_user_ini(self,file,s_conf,act,session_path): public.ExecShell("chattr -i {}".format(file)) conf = public.readFile(file) if act == "1": if "session.save_path" in conf: return False conf = conf + ":{}/".format(session_path) conf = conf + "\n" + s_conf else: rep = "\n*session.save_path(.|\n)*files" rep1 = ":{}".format(session_path) conf = re.sub(rep,"",conf) conf = re.sub(rep1,"",conf) public.writeFile(file, conf) public.ExecShell("chattr +i {}".format(file)) # 设置php_session存放到独立文件夹 def set_php_session_path(self,get): ''' get.id site id get.act 0/1 :param get: :return: ''' if public.get_webserver() == 'openlitespeed': return public.return_msg_gettext(False, 'The current web server is openlitespeed. This function is not supported yet.') import panelSite site_info = public.M('sites').where('id=?', (get.id,)).field('name,path').find() session_path = "/www/php_session/{}".format(site_info["name"]) if not os.path.exists(session_path): os.makedirs(session_path) public.ExecShell('chown www.www {}'.format(session_path)) run_path_data = panelSite.panelSite().GetSiteRunPath(get) if not run_path_data: return public.return_msg_gettext(False, 'Failed to get site runtime path!') run_path = run_path_data.get('runPath') user_ini_file = "{site_path}{run_path}/.user.ini".format(site_path=site_info["path"], run_path=run_path) conf = "session.save_path={}/\nsession.save_handler = files".format(session_path) if get.act == "1": if not os.path.exists(user_ini_file): public.writeFile(user_ini_file,conf) public.ExecShell("chattr +i {}".format(user_ini_file)) return public.return_msg_gettext(True,'Setup successfully!') self._edit_user_ini(user_ini_file,conf,get.act,session_path) return public.return_msg_gettext(True, 'Setup successfully!') else: self._edit_user_ini(user_ini_file,conf,get.act,session_path) return public.return_msg_gettext(True, 'Setup successfully!') # 获取php_session是否存放到独立文件夹 def get_php_session_path(self,get): import panelSite site_info = public.M('sites').where('id=?', (get.id,)).field('name,path').find() if site_info: run_path = panelSite.panelSite().GetSiteRunPath(get)["runPath"] user_ini_file = "{site_path}{run_path}/.user.ini".format(site_path=site_info["path"], run_path=run_path) conf = public.readFile(user_ini_file) if conf and "session.save_path" in conf: return True return False def _create_key(self): get_token = pyotp.random_base32() # returns a 16 character base32 secret. Compatible with Google Authenticator public.writeFile(self._key_file,get_token) username = self.get_random() public.writeFile(self._username_file, username) def get_key(self,get): key = public.readFile(self._key_file) username = public.readFile(self._username_file) if not key: return public.return_msg_gettext(False, 'The key does not exist. Please turn on and try again.') if not username: return public.return_msg_gettext(False, 'The username does not exist. Please turn on and try again.') return {"key":key,"username":username} def get_random(self): import random seed = "1234567890abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ" sa = [] for _ in range(8): sa.append(random.choice(seed)) salt = ''.join(sa) return salt def set_two_step_auth(self,get): if not hasattr(get,"act") or not get.act: return public.return_msg_gettext(False, 'Please enter the operation mode') if get.act == "1": if not os.path.exists(self._core_fle_path): os.makedirs(self._core_fle_path) username = public.readFile(self._username_file) if not os.path.exists(self._bk_key_file): secret_key = public.readFile(self._key_file) if not secret_key or not username: self._create_key() else: os.rename(self._bk_key_file,self._key_file) secret_key = public.readFile(self._key_file) username = public.readFile(self._username_file) local_ip = public.GetLocalIp() if not secret_key: return public.return_msg_gettext(False,"Failed to generate key or username. Please check if the hard disk space is insufficient or the directory cannot be written.[ {} ]",(self._setup_path+"/data/",)) try: try: panel_name = json.loads(public.readFile(self._setup_path+'/config/config.json'))['title'] except: panel_name = 'YakPanel' data = pyotp.totp.TOTP(secret_key).provisioning_uri(username, issuer_name='{}--{}'.format(panel_name,local_ip)) public.writeFile(self._core_fle_path+'/qrcode.txt',str(data)) return public.return_msg_gettext(True, 'Setup successfully!') except Exception as e: return public.return_msg_gettext(False, e) else: if os.path.exists(self._key_file): os.rename(self._key_file,self._bk_key_file) return public.return_msg_gettext(True, 'Setup successfully!') # 检测是否开启双因素验证 def check_two_step(self,get): secret_key = public.readFile(self._key_file) if not secret_key: return public.return_msg_gettext(False, 'Did not open Google authentication') return public.return_msg_gettext(True, 'Google authentication has been turned on') # 读取二维码data def get_qrcode_data(self,get): data = public.readFile(self._core_fle_path + '/qrcode.txt') if data: return data return public.return_msg_gettext(True, 'No QR code data, please re-open') # 设置是否云控打开 def set_coll_open(self,get): if not 'coll_show' in get: return public.return_msg_gettext(False,'Parameter ERROR!') if get.coll_show == 'True': session['tmp_login'] = True else: session['tmp_login'] = False return public.return_msg_gettext(True,'Setup successfully!') # 是否显示软件推荐 def show_recommend(self,get): pfile = 'data/not_recommend.pl' if os.path.exists(pfile): os.remove(pfile) else: public.writeFile(pfile,'True') return public.return_msg_gettext(True,'Setup successfully!') # 获取菜单列表 def get_menu_list(self, get): ''' @name 获取菜单列表 @author hwliang<2020-08-31> @param get @return list ''' menu_file = 'config/menu.json' hide_menu_file = 'config/hide_menu.json' data = json.loads(public.ReadFile(menu_file)) if not os.path.exists(hide_menu_file): public.writeFile(hide_menu_file, '[]') hide_menu = public.ReadFile(hide_menu_file) if not hide_menu: hide_menu = [] else: hide_menu = json.loads(hide_menu) result = [] for d in data: tmp = {} tmp['id'] = d['id'] tmp['title'] = d['title'] tmp['show'] = not d['id'] in hide_menu tmp['sort'] = d['sort'] result.append(tmp) menus = sorted(result, key=lambda x: x['sort']) return menus # 设置隐藏菜单列表 def set_hide_menu_list(self, get): ''' @name 设置隐藏菜单列表 @author hwliang<2020-08-31> @param get { hide_list: json 所有不显示的菜单ID } @return dict ''' hide_menu_file = 'config/hide_menu.json' not_hide_id = ["dologin", "memuAconfig", "memuAsoft", "memuA"] # 禁止隐藏的菜单 hide_list = json.loads(get.hide_list) hide_menu = [] for h in hide_list: if h in not_hide_id: continue hide_menu.append(h) public.writeFile(hide_menu_file, json.dumps(hide_menu)) public.write_log_gettext('Panel setting', 'Successfully modify the panel menu display list') return public.return_msg_gettext(True, 'Setup successfully!') # 获取临时登录列表 def get_temp_login(self, args): ''' @name 获取临时登录列表 @author hwliang<2020-09-2> @return dict ''' if 'tmp_login_expire' in session: return public.return_msg_gettext(False, 'Permission denied!') public.M('temp_login').where('state=? and expire @return dict ''' s_time = int(time.time()) expire_time = get.expire_time if "expire_time" in get else s_time + 3600 if 'tmp_login_expire' in session: return public.return_msg_gettext(False, 'Permission denied!') public.M('temp_login').where('state=? and expire>?', (0, s_time)).delete() token = public.GetRandomString(48) salt = public.GetRandomString(12) pdata = { 'token': public.md5(token + salt), 'salt': salt, 'state': 0, 'login_time': 0, 'login_addr': '', 'expire': int(expire_time), 'addtime': s_time } if not public.M('temp_login').count(): pdata['id'] = 101 if public.M('temp_login').insert(pdata): public.write_log_gettext('Panel setting', 'Generate temporary connection, expiration time: {}',(public.format_date(times=pdata['expire']),)) return {'status': True, 'msg': public.lang("Temporary login URL has been generated"), 'token': token, 'expire': pdata['expire']} return public.return_msg_gettext(False, 'Failed to generate temporary login URL') # 删除临时登录 def remove_temp_login(self, args): ''' @name 删除临时登录 @author hwliang<2020-09-2> @param args{ id: int<临时登录ID> } @return dict ''' if 'tmp_login_expire' in session: return public.return_msg_gettext(False, 'Permission denied!') id = int(args.id) if public.M('temp_login').where('id=?', (id,)).delete(): public.write_log_gettext('Panel setting', 'Delete temporary login URL') return public.return_msg_gettext(True, 'Successfully deleted') return public.return_msg_gettext(False, 'Failed to delete') # 强制弹出指定临时登录 def clear_temp_login(self, args): ''' @name 强制登出 @author hwliang<2020-09-2> @param args{ id: int<临时登录ID> } @return dict ''' if 'tmp_login_expire' in session: return public.return_msg_gettext(False, 'Permission denied!') id = int(args.id) s_file = 'data/session/{}'.format(id) if os.path.exists(s_file): os.remove(s_file) public.write_log_gettext('Panel setting', 'Force logout of temporary users:{1}',(str(id),)) return public.return_msg_gettext(True, 'Temporary user has been forcibly logged out:{}',(str(id),)) public.return_msg_gettext(False, 'The specified user is not currently logged in!') # 查看临时授权操作日志 def get_temp_login_logs(self, args): ''' @name 查看临时授权操作日志 @author hwliang<2020-09-2> @param args{ id: int<临时登录ID> } @return dict ''' if 'tmp_login_expire' in session: return public.return_msg_gettext(False, 'Permission denied!') id = int(args.id) data = public.M('logs').where('uid=?', (id,)).order('id desc').select() return data def add_nginx_access_log_format(self,args): n = nginx.nginx() return n.add_nginx_access_log_format(args) def del_nginx_access_log_format(self,args): n = nginx.nginx() return n.del_nginx_access_log_format(args) def get_nginx_access_log_format(self,args): n = nginx.nginx() return n.get_nginx_access_log_format(args) def set_format_log_to_website(self,args): n = nginx.nginx() return n.set_format_log_to_website(args) def get_nginx_access_log_format_parameter(self,args): n = nginx.nginx() return n.get_nginx_access_log_format_parameter(args) def add_httpd_access_log_format(self,args): a = apache.apache() return a.add_httpd_access_log_format(args) def del_httpd_access_log_format(self,args): a = apache.apache() return a.del_httpd_access_log_format(args) def get_httpd_access_log_format(self,args): a = apache.apache() return a.get_httpd_access_log_format(args) def set_httpd_format_log_to_website(self,args): a = apache.apache() return a.set_httpd_format_log_to_website(args) def get_httpd_access_log_format_parameter(self,args): a = apache.apache() return a.get_httpd_access_log_format_parameter(args) def get_file_deny(self,args): import file_execute_deny p = file_execute_deny.FileExecuteDeny() return p.get_file_deny(args) def set_file_deny(self,args): import file_execute_deny p = file_execute_deny.FileExecuteDeny() return p.set_file_deny(args) def del_file_deny(self,args): import file_execute_deny p = file_execute_deny.FileExecuteDeny() return p.del_file_deny(args) #查看告警 def get_login_send(self, get): send_type = "" login_send_type_conf = "/www/server/panel/data/panel_login_send.pl" if os.path.exists(login_send_type_conf): send_type = public.ReadFile(login_send_type_conf).strip() else: if os.path.exists("/www/server/panel/data/login_send_type.pl"): send_type = public.readFile("/www/server/panel/data/login_send_type.pl") else: if os.path.exists('/www/server/panel/data/login_send_mail.pl'): send_type = "mail" if os.path.exists('/www/server/panel/data/login_send_dingding.pl'): send_type = "dingding" return public.returnMsg(True, send_type) #取消告警 def clear_login_send(self,get): type = get.type.strip() if type == 'mail': if os.path.exists("/www/server/panel/data/login_send_mail.pl"): os.remove("/www/server/panel/data/login_send_mail.pl") elif type == 'dingding': if os.path.exists("/www/server/panel/data/login_send_dingding.pl"): os.remove("/www/server/panel/data/login_send_dingding.pl") login_send_type_conf = "/www/server/panel/data/login_send_type.pl" if os.path.exists(login_send_type_conf): os.remove(login_send_type_conf) login_send_type_conf = "/www/server/panel/data/panel_login_send.pl" if os.path.exists(login_send_type_conf): os.remove(login_send_type_conf) return public.returnMsg(True, 'Canceling the login alarm succeeded.!') def get_login_area(self,get): """ @获取面板登录告警 @return login_status 是否开启面板登录告警 login_area 是否开启面板异地登录告警 """ result = {} result['login_status'] = self.get_login_send(get)['msg'] result['login_area'] = '' sfile = '{}/data/panel_login_area.pl'.format(public.get_panel_path()) if os.path.exists(sfile): result['login_area_status'] = public.readFile(sfile) return result def set_login_area(self,get): """ @name 设置异地登录告警 @param get """ sfile = '{}/data/panel_login_area.pl'.format(public.get_panel_path()) set_type=get.type.strip() obj = public.init_msg(set_type) if not obj: return public.returnMsg(False, "The alarm module is not installed.") public.writeFile(sfile, set_type) return public.returnMsg(True, 'successfully set') def get_login_area_list(self,get): """ @name 获取面板常用地区登录 """ data = {} sfile = '{}/data/panel_login_area.json'.format(public.get_panel_path()) try: data = json.loads(public.readFile(sfile)) except:pass result = [] for key in data.keys(): result.append({'area':key,'count':data[key]}) result = sorted(result, key=lambda x: x['count'], reverse=True) return result def clear_login_list(self,get): """ @name 清理常用登录地区 """ sfile = '{}/data/panel_login_area.json'.format(public.get_panel_path()) if os.path.exists(sfile): os.remove(sfile) return public.returnMsg(True,'Successful operation.') # def get_login_send(self,get): # result={} # import time # time.sleep(0.01) # if os.path.exists('/www/server/panel/data/login_send_mail.pl'): # result['mail']=True # else: # result['mail']=False # if os.path.exists('/www/server/panel/data/login_send_dingding.pl'): # result['dingding']=True # else: # result['dingding']=False # if result['mail'] or result['dingding']: # return public.returnMsg(True, result) # return public.returnMsg(False, result) #设置告警 def set_login_send(self,get): login_send_type_conf = "/www/server/panel/data/panel_login_send.pl" set_type=get.type.strip() msg_configs = self.get_msg_configs(get) if set_type not in msg_configs.keys(): return public.returnMsg(False,'This send type is not supported') _conf = msg_configs[set_type] if "data" not in _conf or not _conf["data"]: return public.returnMsg(False, "This channel is not configured, please select again.") from panelMessage import panelMessage pm = panelMessage() obj = pm.init_msg_module(set_type) if not obj: return public.returnMsg(False, "The message channel is not installed.") public.writeFile(login_send_type_conf, set_type) return public.returnMsg(True, 'successfully set') #告警日志 def get_login_log(self,get): public.create_logs() import page page = page.Page() count = public.M('logs2').where('type=?', (u'yakpanel login reminder',)).field('log,addtime').count() limit = 7 info = {} info['count'] = count info['row'] = limit info['p'] = 1 if hasattr(get, 'p'): info['p'] = int(get['p']) info['uri'] = get info['return_js'] = '' if hasattr(get, 'tojs'): info['return_js'] = get.tojs data = {} # 获取分页数据 data['page'] = page.GetPage(info, '1,2,3,4,5,8') data['data'] = public.M('logs2').where('type=?', (u'yakpanel login reminder',)).field('log,addtime').order('id desc').limit( str(page.SHIFT) + ',' + str(page.ROW)).field('log,addtime').select() return data #白名单设置 def login_ipwhite(self,get): type=get.type if type=='get': return self.get_login_ipwhite(get) if type=='add': return self.add_login_ipwhite(get) if type=='del': return self.del_login_ipwhite(get) if type=='clear': return self.clear_login_ipwhite(get) #查看IP白名单 def get_login_ipwhite(self,get): try: path='/www/server/panel/data/send_login_white.json' ip_white=json.loads(public.ReadFile('/www/server/panel/data/send_login_white.json')) if not ip_white:return public.return_msg_gettext(True, []) return public.return_msg_gettext(True, ip_white) except: public.WriteFile(path, '[]') return public.return_msg_gettext(True, []) def add_login_ipwhite(self,get): ip=get.ip.strip() try: path = '/www/server/panel/data/send_login_white.json' ip_white = json.loads(public.ReadFile('/www/server/panel/data/send_login_white.json')) if not ip in ip_white: ip_white.append(ip) public.WriteFile(path, json.dumps(ip_white)) return public.return_msg_gettext(True, "Setup successfully!") except: public.WriteFile(path, json.dumps([ip])) return public.return_msg_gettext(True, "Setup successfully!") def del_login_ipwhite(self,get): ip = get.ip.strip() try: path = '/www/server/panel/data/send_login_white.json' ip_white = json.loads(public.ReadFile('/www/server/panel/data/send_login_white.json')) if ip in ip_white: ip_white.remove(ip) public.WriteFile(path, json.dumps(ip_white)) return public.return_msg_gettext(True, "Successfully deleted!") except: public.WriteFile(path, json.dumps([])) return public.return_msg_gettext(True, "Successfully deleted!") def clear_login_ipwhite(self,get): path = '/www/server/panel/data/send_login_white.json' public.WriteFile(path, json.dumps([])) return public.return_msg_gettext(True, "Successfully created") def get_panel_ssl_status(self,get): import os if os.path.exists(self._setup_path+'/data/ssl.pl'): return public.return_msg_gettext(True,'success') return public.return_msg_gettext(False,'false') def set_ssl_verify(self,get): """ 设置双向认证 """ sslConf = 'data/ssl_verify_data.pl' status = int(get.status) if status: if not os.path.exists('data/ssl.pl'): return public.returnMsg(False,'The panel SSL function needs to be enabled first!') public.writeFile(sslConf,'True') else: if os.path.exists(sslConf): os.remove(sslConf) if 'crl' in get and 'ca' in get: crl = 'ssl/crl.pem' ca = 'ssl/ca.pem' if get.crl: public.writeFile(crl,get.crl.strip()) if get.ca: public.writeFile(ca,get.ca.strip()) return public.returnMsg(True,'The panel two-way authentication certificate has been saved!') else: msg = 'Enable' if not status:msg = 'Disable' return public.returnMsg(True,'Panel two-way authentication {} succeeded!'.format(msg)) def get_ssl_verify(self, get): """ 获取双向认证 """ result = {'status': False, 'ca': '', 'crl': ''} sslConf = 'data/ssl_verify_data.pl' if os.path.exists(sslConf): result['status'] = True ca = 'ssl/ca.pem' crl = 'ssl/crl.pem' if os.path.exists(crl): result['crl'] = public.readFile(crl) if os.path.exists(crl): result['ca'] = public.readFile(ca) return result def set_not_auth_status(self,get): ''' @name 设置未认证时的响应状态 @author hwliang<2021-12-16> @param status_code 状态码 @return dict ''' if not 'status_code' in get: return public.return_msg_gettext(False,'Parameter ERROR!') if re.match(r"^\d+$", get.status_code): status_code = int(get.status_code) if status_code != 0: if status_code < 100 or status_code > 999: return public.return_msg_gettext(False,'Parameter ERROR!') else: return public.return_msg_gettext(False,'Parameter ERROR!') public.save_config('abort',get.status_code) public.write_log_gettext('Panel configuration','Set the unauthorized response status to:{}'.format(get.status_code)) return public.return_msg_gettext(True,'Setup successfully!') def get_not_auth_status(self): ''' @name 获取未认证时的响应状态 @author hwliang<2021-12-16> @return int ''' try: status_code = int(public.read_config('abort')) return status_code except: return 404 def get_request_iptype(self,get = None): ''' @name 获取云端请求线路 @author hwliang<2022-02-09> @return auto/ipv4/ipv6 ''' v4_file = '{}/data/v4.pl'.format(public.get_panel_path()) if not os.path.exists(v4_file): return 'auto' iptype = public.readFile(v4_file).strip() if not iptype: return 'auto' if iptype == '-4': return 'ipv4' return 'ipv6' def get_request_type(self,get= None): ''' @name 获取云端请求方式 @author hwliang<2022-02-09> @return python/curl/php ''' http_type_file = '{}/data/http_type.pl'.format(public.get_panel_path()) if not os.path.exists(http_type_file): return 'python' http_type = public.readFile(http_type_file).strip() if not http_type: os.remove(http_type_file) return 'python' return http_type def get_msg_configs(self,get): """ 获取消息通道配置列表 """ cpath = 'data/msg.json' #cpath = '{}/data/msg.json'.format(public.get_panel_path()) example = 'config/examples/msg.example.json' if not os.path.exists(cpath) and os.path.exists(example): import shutil shutil.copy(example, cpath) try: # 配置文件异常处理 json.loads(public.readFile(cpath)) except: if os.path.exists(cpath): os.remove(cpath) data = {} if os.path.exists(cpath): msgs = json.loads(public.readFile(cpath)) for x in msgs: x['data'] = {} x['setup'] = False x['info'] = False key = x['name'] try: obj = public.init_msg(x['name']) if obj: x['setup'] = True x['data'] = obj.get_config(None) x['info'] = obj.get_version_info(None) except : pass data[key] = x return data def get_module_template(self,get): """ 获取模块模板 """ panelPath = public.get_panel_path() module_name = get.module_name sfile = '{}/class/msg/{}.html'.format(panelPath, module_name) if not os.path.exists(sfile): return public.returnMsg(False, 'The template file does not exist.') if module_name in ["sms"]: obj = public.init_msg(module_name) if obj: args = public.dict_obj() args.reload = True data = obj.get_config(args) from flask import render_template_string shtml = public.readFile(sfile) return public.returnMsg(True, render_template_string(shtml, data=data)) else: shtml = public.readFile(sfile) return public.returnMsg(True, shtml) def set_default_channel(self,get): """ 设置默认消息通道 """ default_channel_pl = "/www/server/panel/data/default_msg_channel.pl" new_channel = get.channel default = False if "default" in get: _default = get.default if not _default or _default in ["false"]: default = False else: default = True ori_default_channel = "" if os.path.exists(default_channel_pl): ori_default_channel = public.readFile(ori_default_channel) if default: # 设置为默认 from panelMessage import panelMessage pm = panelMessage() obj = pm.init_msg_module(new_channel) if not obj: return public.returnMsg(False, 'Setup failed, [{}] is not installed'.format(new_channel)) public.writeFile(default_channel_pl, new_channel) if ori_default_channel: return public.returnMsg(True, 'Successfully changed [{}] to [{}] panel default notification.'.format(ori_default_channel, new_channel)) else: return public.returnMsg(True, '[{}] has been set as the default notification.'.format(new_channel)) else: # 取消默认设置 if os.path.exists(default_channel_pl): os.remove(default_channel_pl) return public.returnMsg(True, "[{}] has been removed as panel default notification.".format(new_channel)) def set_msg_config(self,get): """ 设置消息通道配置 """ from panelMessage import panelMessage pm = panelMessage() obj = pm.init_msg_module(get.name) if not obj: return public.returnMsg(False, 'Setup failed, [{}] is not installed'.format(get.name)) return obj.set_config(get) # def install_msg_module(self,get): # """ # 安装/更新消息通道模块 # @name 需要安装的模块名称 # """ # module_name = "" # try: # module_name = get.name # down_url = public.get_url() # # local_path = '{}/class/msg'.format(public.get_panel_path()) # if not os.path.exists(local_path): os.makedirs(local_path) # # import panelTask # task_obj = panelTask.bt_task() # # sfile1 = '{}/{}_msg.py'.format(local_path,module_name) # down_url1 = '{}/linux/panel/msg/{}_msg.py'.format(down_url,module_name) # # sfile2 = '{}/class/msg/{}.html'.format(public.get_panel_path(),module_name) # down_url2 = '{}/linux/panel/msg/{}.html'.format(down_url,module_name) # # public.WriteLog('Install module', 'Install [{}]'.format(module_name)) # task_obj.create_task('Download file', 1, down_url1, sfile1) # task_obj.create_task('Download file', 1, down_url2, sfile2) # # timeout = 0 # is_install = False # while timeout < 5: # try: # if os.path.exists(sfile1) and os.path.exists(sfile2): # msg_obj = public.init_msg(module_name) # if msg_obj and msg_obj.get_version_info: # is_install = True # break # except: pass # time.sleep(0.1) # is_install = True # # if not is_install: # return public.returnMsg(False, 'Failed to install [{}] module. Please check the network.'.format(module_name)) # # public.set_module_logs('msg_push', 'install_module', 1) # return public.returnMsg(True, '[{}] Module is installed successfully.'.format(module_name)) # except: # pass # return public.returnMsg(False, '[{}] Module installation failed.'.format(module_name)) def install_msg_module(self,get): """ yakpanel 不与面板相同,不删除通道模块 安装/更新消息通道模块 @name 需要安装的模块名称 """ module_name = "" try: module_name = get.name local_path = '{}/class/msg'.format(public.get_panel_path()) if not os.path.exists(local_path): os.makedirs(local_path) sfile1 = '{}/{}_msg.py'.format(local_path,module_name) if os.path.exists(sfile1): return public.returnMsg(True, '[{}] Module is installed successfully.'.format(module_name)) except: return public.returnMsg(False, '[{}] Module installation failed.'.format(module_name)) # def uninstall_msg_module(self,get): # """ # 卸载消息通道模块 # @name 需要卸载的模块名称 # @is_del 是否需要删除配置文件 # """ # module_name = get.name # obj = public.init_msg(module_name) # if 'is_del' in get: # try: # obj.uninstall() # except:pass # # sfile = '{}/class/msg/{}_msg.py'.format(public.get_panel_path(),module_name) # if os.path.exists(sfile): os.remove(sfile) # # # public.print_log(sfile) # default_channel_pl = "{}/data/default_msg_channel.pl".format(public.get_panel_path()) # default_channel = public.readFile(default_channel_pl) # if default_channel and default_channel == module_name: # os.remove(default_channel_pl) # return public.returnMsg(True, '[{}] Module uninstallation succeeds'.format(module_name)) def uninstall_msg_module(self,get): """ yakpanel 不与面板相同,不删除通道模块,只删除配置文件 @module_name 是删除配置文件 """ module_name = get.name # sfile = '{}/class/msg/{}_msg.py'.format(public.get_panel_path(),module_name) # if os.path.exists(sfile): os.remove(sfile) if module_name in ["dingding", "feishu", "weixin"]: msg_conf_file = "{{}}/data/{}.json".format(module_name).format(public.get_panel_path()) if os.path.exists(msg_conf_file): os.remove(msg_conf_file) elif module_name == "mail": for conf_file in ["stmp_mail", "mail_list"]: msg_conf_file = "{}/data/{}.json".format(public.get_panel_path(), conf_file) if os.path.exists(msg_conf_file): os.remove(msg_conf_file) elif module_name == "tg": msg_conf_file = "{}/data/tg_bot.json".format(public.get_panel_path()) if os.path.exists(msg_conf_file): os.remove(msg_conf_file) # public.print_log(sfile) default_channel_pl = "{}/data/default_msg_channel.pl".format(public.get_panel_path()) default_channel = public.readFile(default_channel_pl) if default_channel and default_channel == module_name: os.remove(default_channel_pl) return public.returnMsg(True, '[{}] Module uninstallation succeeds'.format(module_name)) def get_msg_fun(self,get): """ @获取消息模块指定方法 @auther: cjxin @date: 2022-08-16 @param: get.module_name 消息模块名称(如:sms,weixin,dingding) @param: get.fun_name 消息模块方法名称(如:send_sms,push_msg) """ module_name = get.module_name fun_name = get.fun_name m_objs = public.init_msg(module_name) if not m_objs: return public.returnMsg(False, 'Setup failed, [{}] is not installed'.format(module_name)) return getattr(m_objs,fun_name)(get) def get_msg_configs_by(self,get): """ @name 获取单独消息通道配置 @auther: cjxin @date: 2022-08-16 @param: get.name 消息模块名称(如:sms,weixin,dingding) """ name = get.name res = {} res['data'] = {} res['setup'] = False res['info'] = False try: obj = public.init_msg(name) if obj: res['setup'] = True res['data'] = obj.get_config(None) res['info'] = obj.get_version_info(None); except: pass return res def get_msg_push_list(self,get): """ @name 获取消息通道配置列表 @auther: cjxin @date: 2022-08-16 """ cpath = 'data/msg.json' try: if 'force' in get or not os.path.exists(cpath): if not 'download_url' in session: session['download_url'] = public.get_url() public.downloadFile('{}/linux/panel/msg/msg.json'.format(session['download_url']),cpath) except : pass data = {} if os.path.exists(cpath): msgs = json.loads(public.readFile(cpath)) for x in msgs: x['setup'] = False x['info'] = False key = x['name'] try: obj = public.init_msg(x['name']) if obj: x['setup'] = True x['info'] = obj.get_version_info(None) except : print(public.get_error_info()) pass data[key] = x return data # 检查是否提交过问卷 def check_nps(self, get): if 'product_type' not in get: public.returnMsg(False, 'Parameter error') ikey = 'check_nps' result = cache.get(ikey) if result: return result url = '{}/api/panel/nps/check'.format(public.OfficialApiBase()) data = { 'product_type': get.get('product_type', 1), #'server_id': user_info['server_id'], } try: user_info = json.loads(public.ReadFile("{}/data/userInfo.json".format(public.get_panel_path()))) data['server_id'] = user_info['server_id'] except: pass res = public.httpPost(url, data) try: res = json.loads(res) except: pass # 连不上官网时使用默认数据 if not isinstance(res, dict): res = { "nonce": 0, "success": False, "res": False } # 判断运行天数 safe_day = 0 cur_timestamp = int(time.time()) # if os.path.exists("data/%s_nps_time.pl" % software_name): if os.path.exists("/www/server/panel/data/panel_nps_time.pl"): try: # nps_time = float(public.ReadFile("/www/server/panel/data/panel_nps_time.pl")) nps_time = float(public.ReadFile("data/panel_nps_time.pl")) safe_day = int((cur_timestamp - nps_time) / 86400) except: public.WriteFile("data/panel_nps_time.pl", "%s" % cur_timestamp) else: public.WriteFile("data/panel_nps_time.pl", "%s" % cur_timestamp) datas = {'nonce': res.get('nonce', 0), 'success': res.get('success', False), 'res': { 'safe_day': safe_day, 'is_submit': res.get('res', False) }} cache.set(ikey, datas, 3600) # if res['success']: # return public.returnMsg(True, 'Questionnaire has been submitted') # return public.returnMsg(False, 'No questionnaire has been submitted') return datas def get_nps_new(self, get): """ 获取问卷 """ try: # 官网接口 需替换 url = '{}/api/panel/nps/questions'.format(public.OfficialApiBase()) data = { 'product_type': get.get('product_type', 1), # 'action': "list", # 'version': get.get('version', -1) } # request发送post请求并指定form_data参数 res = public.httpPost(url, data) try: res = json.loads(res) except: pass return res except: return public.returnMsg(False, "Failed to obtain questionnaire") def write_nps_new(self, get): ''' @name nps 提交 @param rate 评分 @param feedback 反馈内容 ''' if 'product_type' not in get: public.returnMsg(False, 'Parameter error') # if 'questions' not in get: # public.returnMsg(False, '参数错误') if 'rate' not in get: public.returnMsg(False, 'Parameter error') # try: # if not hasattr(get, 'software_name'): # public.returnMsg(False, '参数错误') # software_name = get['software_name'] # public.WriteFile("data/{}_nps.pl".format(software_name), "1") data = { # 'action': "submit", # 'uid': user_info['uid'], # 用户ID # 'access_key': user_info['access_key'], # 用户密钥 # 'is_paid': get['is_paid'], # 是否付费 # 'phone_back': get['back_phone'], # 是否回访 # 'feedback': get['feedback'] # 反馈内容 # 'reason_tags': get['reason_tags'], # 问题标签 'rate': get.get('rate', 1), # 评分 1~10 'product_type': get.get('product_type', 1), # 产品类型 #'server_id': user_info['server_id'], # 服务器ID 'questions': get['questions'], # 问题列表 'panel_version': public.version(), # 面板版本 } url_headers = { # "authorization": "bt {}".format(user_info['token']) } try: user_info = json.loads(public.ReadFile("{}/data/userInfo.json".format(public.get_panel_path()))) data[ 'server_id']= user_info['server_id'] url_headers = { "authorization": "bt {}".format(user_info['token']) } except: pass url = '{}/api/panel/nps/submit'.format(public.OfficialApiBase()) if not hasattr(get, 'questions'): return public.returnMsg(False, "questions Parameter error") else: try: content = json.loads(get.questions) for _, i in content.items(): if len(i) > 512: # public.ExecShell("rm -f data/{}_nps.pl".format(software_name)) return public.returnMsg(False, "The submitted text is too long, please adjust and resubmit (MAX: 512)") except: return public.returnMsg(False, "questions Parameter error") # if not hasattr(get, 'product_type'): # return public.returnMsg(False, "参数错误") # if not hasattr(get, 'rate'): # return public.returnMsg(False, "参数错误") # if not hasattr(get, 'reason_tags'): # get['reason_tags'] = "1" # if not hasattr(get, 'is_paid'): # get['is_paid'] = 0 # 是否付费 # if not hasattr(get, 'phone_back'): # get.phone_back = 0 # if not hasattr(get, 'phone_back'): # get.feedback = "" res = public.httpPost(url, data=data, headers=url_headers) try: res = json.loads(res) except: pass # 连不上官网时使用默认数据 if not isinstance(res, dict): res = { "nonce": 0, "success": False, "res": "The submission failed, please check to connect to the node" } if res['success']: return public.returnMsg(True, "Submitted successfully") return public.returnMsg(False, res['res'] if 'res' in res else "The submission failed, please check to connect to the node") # -------------------------------------------------------- 语言包相关接口-------------------------------------------------------------------------------------------------- # 获取语言选项 def get_language(self): settings = '{}/YakPanel/languages/settings.json'.format(public.get_panel_path()) custom = '{}/YakPanel/static/vite/lang/my-MY'.format(public.get_panel_path()) default_data = public.default_languages_config() file_content = public.readFile(settings) if not file_content: public.writeFile(settings, json.dumps(default_data)) data = default_data else: try: data = json.loads(file_content) except json.JSONDecodeError: public.writeFile(settings, json.dumps(default_data)) data = default_data setlang = "/www/server/panel/YakPanel/languages/language.pl" if os.path.exists(setlang): olang = public.ReadFile(setlang) if olang: data['default'] = olang if os.path.exists(custom): data['languages'].append({ "name": "my", "google": "my", "title": "Custom", "cn": "自定义" }) return data # 设置语言偏好 def set_language(self, args): # lang_country = args.lang_country # if lang_country.find('-') == -1: # return public.returnMsg(False, 'The parameter format is incorrect') name = args.name public.setLang(name) path = "/www/server/panel/YakPanel/languages/language.pl" public.WriteFile(path, name) public.set_module_logs('language', 'set_language', 1) public.set_module_logs('language-info', name, 1) # 前端目录更改(重启面板) public.restart_panel() return public.returnMsg(True, 'The setup was successful') # 设置语言偏好 # def get_languageinfo(self): # # path = "/www/server/panel/YakPanel/static/language/language_info.json" # if not os.path.exists(path): # return 'en-US' # info = json.loads(public.readFile(path))['lang_country'] # return info def flatten_unzip(self,target_dir): # 查找新解压的顶层目录 subdirs = [d for d in os.listdir(target_dir) if os.path.isdir(os.path.join(target_dir, d))] # 确保只有一个顶层目录 if len(subdirs) == 1: top_level_dir = os.path.join(target_dir, subdirs[0]) # 移动顶层目录下的所有文件和子目录到目标目录 for item in os.listdir(top_level_dir): item_path = os.path.join(top_level_dir, item) if os.path.isdir(item_path): shutil.move(item_path, target_dir) else: shutil.move(item_path, target_dir) # 删除空的顶层目录 os.rmdir(top_level_dir) def del_upload_language(self): # 删除 target_dir = '/www/server/panel/YakPanel/static/upload_language' try: # 删除目标目录及其所有内容 shutil.rmtree(target_dir) except: public.print_log(public.get_error_info()) # 上传语言包 def upload_language(self, args): # 上传个人翻译语言包 language.zip de-DE de.po filename = args.filename # filename = 'language.zip' # 压缩包上传目录 upload_dir = '{}/YakPanel/static/upload_language/{}'.format(public.get_panel_path(), filename) if not os.path.exists(upload_dir): return public.returnMsg(False, 'The uploaded language pack was not found') # /language.zip /templates /temp.po # 解压到 upload_path = '{}/YakPanel/static/upload_language'.format(public.get_panel_path()) a, b = public.ExecShell('unzip -o "' + upload_dir + '" -d ' + upload_path + '/') # public.print_log(b) self.flatten_unzip(upload_path) path_q = upload_path + '/templates' # 前端 # path_h = upload_path + '/temp.po' # 后端 # if not os.path.exists(path_q) or not os.path.exists(path_h): if not os.path.exists(path_q): self.del_upload_language() return public.returnMsg(False, 'The uploaded language pack is incomplete') # 判断文件 # 前端 判断 更改 try: err_file = [] for p_name in os.listdir(path_q): file_path = path_q + '/' + p_name file_data = json.loads(public.readFile(file_path)) is_ok = self._all_keys_have_suffix(file_data) # 有文件无后缀 if not is_ok: err_file.append(file_path) if len(err_file) > 0: # 删除已经上传的 todo self.del_upload_language() return public.returnMsg(False, 'The language pack is not standardized, the key lacks the necessary suffix[_], error file:{}'.format(err_file)) else: # 去掉后缀 更改目录名 放入指定位置 for p_name in os.listdir(path_q): file_path = path_q + '/' + p_name file_data = json.loads(public.readFile(file_path)) del_file_data = self._remove_suffix_from_keys(file_data) del_file_path = path_q + '/' + p_name # 更新本来的文件 public.writeFile(del_file_path, json.dumps(del_file_data)) except Exception as ex: self.del_upload_language() public.print_log(public.get_error_info()) return public.returnMsg(False, ex) # 后端判断(配置) 更改 语言包内 # 读取 path_h 更改 占位符的值 # cmd_h = 'msgcat --no-location --sort-output {} > /dev/null'.format(path_h) # cmd_result, err = public.ExecShell(cmd_h) # # if err: # self.del_upload_language() # return public.returnMsg(False, 'The temp.po file is in the wrong format: {}'.format(err)) # # 读取文件 查看语言标识是否更改 # content = public.readFile(path_h) # content_new = re.sub(r'\n"Language: en\\n"\n', r'\n"Language: my\\n"\n', content) # # public.print_log('----------替换后 ---{}'.format(repr(content_new[:500]))) # # path_h_new = upload_path + '/temp_new.po' # public.writeFile(path_h_new, content_new) # 移动文件 mv_dir_q = '{}/YakPanel/static/vite/lang/my-MY'.format(public.get_panel_path()) # mv_dir_h = '{}/YakPanel/static/language/gettext/my/LC_MESSAGES'.format(public.get_panel_path()) # if not os.path.exists(mv_dir_h): # os.makedirs(mv_dir_h) # else: # for filename in os.listdir(mv_dir_h): # file_path = os.path.join(mv_dir_h, filename) # try: # os.remove(file_path) # except Exception as e: # public.print_log(f"Failed to delete {file_path}. Reason: {e}") if not os.path.exists(mv_dir_q): os.makedirs(mv_dir_q) else: for filename in os.listdir(mv_dir_q): file_path = os.path.join(mv_dir_q, filename) try: os.remove(file_path) except Exception as e: public.print_log(f"Failed to delete {file_path}. Reason: {e}") # 判断存在 看文件 有文件删除 不存在 创建目录 import shutil for p_name in os.listdir(path_q): file_path = path_q + '/' + p_name shutil.move(file_path, mv_dir_q) # # 移后端 生成后端 mo文件 # my_po = os.path.join(mv_dir_h, 'my.po') # my_mo = os.path.join(mv_dir_h, 'my.mo') # # shutil.move(path_h_new, my_po) # # mv_dir_h 目录下生成后端 mo文件 # cmd_mo = 'msgfmt -o {} {}'.format(my_mo,my_po) # cmd_result, err = public.ExecShell(cmd_mo) # if err: # self.del_upload_language() # return public.returnMsg(False, 'temp.po file compilation error: {}'.format(err)) # 使用上传的语言包 args1 = public.dict_obj() args1.name = 'my' self.set_language(args1) self.del_upload_language() return public.returnMsg(True, 'The upload was successful, and the new language is already in use') # 下载语言包 def download_language(self, args): # 前端模版 templates_dir = '{}/YakPanel/static/vite/templates'.format(public.get_panel_path()) self._generate_language_templates() # 后端模版 # temppo = '{}/YakPanel/static/language/temp.po'.format(public.get_panel_path()) # self._generate_language_temppo() # 将文件夹templates_dir和文件temppo复制到新的文件夹 language filename = 'language_' + public.GetRandomString(3) # download_dir = '{}/YakPanel/static/download_language/{}'.format(public.get_panel_path(), filename) os.makedirs(download_dir) download_tmpdir = '{}/templates'.format(download_dir) os.makedirs(download_tmpdir) for file in os.listdir(templates_dir): src_file = os.path.join(templates_dir, file) dst_file = os.path.join(download_tmpdir, file) if os.path.isfile(src_file): shutil.copy2(src_file, dst_file) # 复制单个文件 # dstpo_file = os.path.join(download_dir, 'temp.po') # shutil.copy2(temppo,dstpo_file) # 压缩包 zip_path = '{}/YakPanel/static/download_language/{}'.format(public.get_panel_path(), 'language.zip') # 创建ZIP文件 with zipfile.ZipFile(zip_path, 'w', zipfile.ZIP_DEFLATED) as zipf: # 添加整个文件夹及其内容 for root, dirs, files in os.walk(download_dir): for file in files: full_file_path = os.path.join(root, file) arcname = os.path.relpath(full_file_path, download_dir) zipf.write(full_file_path, os.path.join('language', arcname)) # 清理临时文件夹 shutil.rmtree(download_dir) return {'path': zip_path} def _generate_language_templates(self): """ 生成前端模版文件 :return: (bool, err_info) """ templates_dir = '{}/YakPanel/static/vite/templates'.format(public.get_panel_path()) en_dir = '{}/YakPanel/static/vite/lang/en-US'.format(public.get_panel_path()) if not os.path.exists(templates_dir): os.makedirs(templates_dir) else: # 删除旧模版 for filename in os.listdir(templates_dir): file_path = os.path.join(templates_dir, filename) try: os.remove(file_path) except Exception as e: public.print_log(f"Failed to delete {file_path}. Reason: {e}") # 遍历英文 生成模版文件 try: for p_name in os.listdir(en_dir): file_path = en_dir + '/' + p_name file_data = json.loads(public.readFile(file_path)) temp_file_data = self._add_suffix_to_keys(file_data) # temp_filename = '' temp_file_path = templates_dir + '/' + p_name public.writeFile(temp_file_path, json.dumps(temp_file_data)) return True, None except Exception as ex: public.print_log(public.get_error_info()) return False, ex # 生成文件名() 写入目录 # 判断 当前模版是否是最新的 拿文件名 # 生成后端模版文件 def _generate_language_temppo(self): """ 生成后端模版文件 :return: (bool, err_info) """ dir_h = '{}/YakPanel/static/language/gettext/en/LC_MESSAGES/'.format(public.get_panel_path()) file_name = os.path.join(dir_h, 'en.po') # 模版地址 new_file = '{}/YakPanel/static/language/temp.po'.format(public.get_panel_path()) # 删掉就模版 if os.path.exists(new_file): os.remove(new_file) content = public.readFile(file_name) # public.print_log(repr(content[:1000])) # 替换翻译为空 content = re.sub(r'msgstr ".*"', 'msgstr ""', content) # 更改语言标识符 "Language: en\\n" # content = content.replace('Language: en\\n', 'Language: my\\n') # content = re.sub('Language: en\\n', 'Language: my\\n', content) public.writeFile(new_file, content) # 给任意深度嵌套的字典添加指定后缀 def _add_suffix_to_keys(self, d, suffix='_'): """ 给任意深度嵌套的字典添加指定后缀 :param d: 处理前 json :return: 处理后 json """ result = {} for key, value in d.items(): new_key = key + suffix if isinstance(value, dict): result[new_key] = self._add_suffix_to_keys(value, suffix) else: result[new_key] = value return result # 检测任意深度嵌套的字典是否有指定后缀 def _all_keys_have_suffix(self, d, suffix='_'): """ 检测任意深度嵌套的字典是否有指定后缀 :param d: json :return: bool """ for key, value in d.items(): if not key.endswith(suffix): public.print_log(key) return False if isinstance(value, dict): if not self._all_keys_have_suffix(value, suffix): return False return True # 删除任意深度嵌套的字典指定后缀 def _remove_suffix_from_keys(self, d, suffix='_'): """ 删除任意深度嵌套的字典指定后缀 :param d: 处理前 json :return: 处理后 json """ result = {} for key, value in d.items(): # 如果键名以suffix结尾,去除它 new_key = key[:-len(suffix)] if key.endswith(suffix) else key if isinstance(value, dict): # 如果值也是一个字典,递归处理 result[new_key] = self._remove_suffix_from_keys(value, suffix) else: result[new_key] = value return result def replace_data(self, args): import re file_path = "/www/server/panel/class_v2/projectModelV2/nodejsModel.py" with open(file_path, 'r') as file: file_content = file.read() # 使用正则表达式进行替换 new_content = re.sub(r"public.return_error\((['\"])(.*?)\1\)", r"public.return_error(public.lang(\1\2\1))", file_content) # 写入替换后的内容回文件 with open(file_path, 'w') as file: file.write(new_content) return # # 指定目录下所有py文件 # dir_path = '/www/server/panel/mod' # dir_path = '/www/server/panel/mod/base/msg' # dir_path = '/www/server/panel/mod/project/proxy' # dir_path = '/www/server/panel/mod/project/docker' # dir_path = '/www/server/panel/mod/project/push' dir_path = '/www/server/panel/mod/project/push' py_files = [f for f in os.listdir(dir_path) if f.endswith('.py')] # return public.returnResult(False, "") # 替换public.returnResult patterna = re.compile(r'return public.returnResult\((False|True),\s*["\'](.*?)["\']\)') pattern2a = re.compile(r'return public.returnResult\((False|True),\s*["\']([^\n"]*)["\']\s*\.\s*format\((.*?)\)\)') # for file_name in py_files: # file_path = os.path.join(dir_path, file_name) # # with open(file_path, 'r') as file: # file_content = file.read() # new_content = re.sub(r" msg\s*=\s*['\"](.*?)['\"]", r" msg=public.lang('\1')", file_content) # # new_content = re.sub(r"return\s+['\"](.*?)['\"]", r"return public.lang('\1')", file_content) # # 将替换后的内容写回文件 # with open(file_path, 'w') as file: # file.write(new_content) # 替换public.return_message # pattern3 = re.compile(r'return public.return_message\((-?\d+),\s*0,\s*["\'](.+?)["\']\)') # pattern3a = re.compile( # r'return public.return_message\((-?\d+),\s*0,\s*["\'](.+?)["\']\s*\.\s*format\((.*?)\)\)') for file_name in py_files: file_path = os.path.join(dir_path, file_name) with open(file_path, 'r') as file: new_content = file.read() new_content = re.sub(pattern2a, r'return public.returnResult(\1, public.lang("\2".format(\3)))', new_content) new_content = re.sub(patterna, r'return public.returnResult(\1, public.lang("\2"))', new_content) # 进行替换 # new_content = re.sub(pattern, r'return public.return_msg_gettext(\1, public.lang("\2"))', file_content) # new_content = re.sub(pattern2, r'return public.return_msg_gettext(\1, public.lang("\2".format(\3)))', # new_content) # new_content = re.sub(pattern2a, r'return public.returnMsg(\1, public.lang("\2".format(\3)))', file_content) # new_content = re.sub(patterna, r'return public.returnMsg(\1, public.lang("\2"))', new_content) # new_content = re.sub(pattern3, r'return public.return_message(\1, 0, public.lang("\2"))', new_content) # new_content = re.sub(pattern3a, r'return public.return_message(\1, 0, public.lang("\2".format(\3)))', # new_content) # 将替换后的内容写回文件 with open(file_path, 'w') as file: file.write(new_content) def replace_data99(self, args): import re # # 指定目录下所有py文件 # dir_path = '/www/server/panel/class' dir_path = '/www/server/panel/plugin/btwaf' # dir_path = '/www/server/panel/class_v2/wp_toolkit' # dir_path = '/www/server/panel/class_v2/btdockerModelV2' py_files = [f for f in os.listdir(dir_path) if f.endswith('.py')] # 替换public.return_msg_gettext # pattern = re.compile(r'return public.return_msg_gettext\((False|True),\s*["\'](.*?)["\']\)') # pattern2 = re.compile( # r'return public.return_msg_gettext\((False|True),\s*["\']([^\n"]*)["\']\s*\.\s*format\((.*?)\)\)') # 替换public.returnMsg # patterna = re.compile(r'return public.returnMsg\((False|True),\s*["\'](.*?)["\']\)') # pattern2a = re.compile(r'return public.returnMsg\((False|True),\s*["\']([^\n"]*)["\']\s*\.\s*format\((.*?)\)\)') # 替换public.return_message pattern3 = re.compile(r'return public.return_message\((-?\d+),\s*0,\s*["\'](.+?)["\']\)') pattern3a = re.compile( r'return public.return_message\((-?\d+),\s*0,\s*["\'](.+?)["\']\s*\.\s*format\((.*?)\)\)') for file_name in py_files: file_path = os.path.join(dir_path, file_name) with open(file_path, 'r') as file: file_content = file.read() # 进行替换 # new_content = re.sub(pattern, r'return public.return_msg_gettext(\1, public.lang("\2"))', file_content) # new_content = re.sub(pattern2, r'return public.return_msg_gettext(\1, public.lang("\2".format(\3)))', # new_content) # new_content = re.sub(pattern2a, r'return public.returnMsg(\1, public.lang("\2".format(\3)))', file_content) # new_content = re.sub(patterna, r'return public.returnMsg(\1, public.lang("\2"))', new_content) new_content = re.sub(pattern3, r'return public.return_message(\1, 0, public.lang("\2"))', file_content) new_content = re.sub(pattern3a, r'return public.return_message(\1, 0, public.lang("\2".format(\3)))', new_content) # 将替换后的内容写回文件 with open(file_path, 'w') as file: file.write(new_content) # format 改, def replace_data223(self, args): import re # dir_path = '/www/server/panel/plugin/btwaf' dir_path = '/www/server/panel/mod/project/proxy' py_files = [f for f in os.listdir(dir_path) if f.endswith('.py')] pattern = re.compile(r'public\.lang\(\s*["\'](.+?)["\']\s*\.\s*format\((.*?)\)\s*\)') for file_name in py_files: file_path = os.path.join(dir_path, file_name) with open(file_path, 'r') as file: file_content = file.read() # 进行替换 new_content = pattern.sub(r'public.lang("\1", \2)', file_content) # 将替换后的内容写回文件 with open(file_path, 'w') as file: file.write(new_content) # # nps问卷 # def stop_nps(self, get): # if 'software_name' not in get: # public.returnMsg(False, '参数错误') # if get.software_name == "panel": # self._stop_panel_nps() # else: # public.WriteFile("data/%s_nps.pl" % get.software_name, "") # return public.returnMsg(True, '关闭成功') # def get_nps(self, get): # if 'software_name' not in get: public.returnMsg(False, '参数错误') # software_name = get.software_name # if software_name == "panel": # return self._get_panel_nps() # data = {'safe_day': 0} # # conf = self.get_config(None) # # 判断运行天数 # if os.path.exists("data/%s_nps_time.pl" % software_name): # try: # nps_time = float(public.ReadFile("data/%s_nps_time.pl" % software_name)) # data['safe_day'] = int((time.time() - nps_time) / 86400) # # except: # public.WriteFile("data/%s_nps_time.pl" % software_name, "%s" % time.time()) # else: # public.WriteFile("data/%s_nps_time.pl" % software_name, "%s" % time.time()) # # if not os.path.exists("data/%s_nps.pl" % software_name): # # 如果安全运行天数大于5天 并且没有没有填写过nps的信息 # data['nps'] = False # else: # data['nps'] = True # return data # def write_nps(self, get): # ''' # @name nps 提交 # @param rate 评分 # @param feedback 反馈内容 # # ''' # if 'product_type' not in get: public.returnMsg(False, '参数错误') # if 'software_name' not in get: public.returnMsg(False, '参数错误') # software_name = get.software_name # product_type = get.product_type # import json, requests # api_url = 'https://wafapi2.yakpanel.com/api/v2/contact/nps/submit' # user_info = json.loads(public.ReadFile("{}/data/userInfo.json".format(public.get_panel_path()))) # if 'rate' not in get: # return public.returnMsg(False, "参数错误") # if 'feedback' not in get: # get.feedback = "" # if 'phone_back' not in get: # get.phone_back = 0 # else: # if get.phone_back == 1: # get.phone_back = 1 # else: # get.phone_back = 0 # # if 'questions' not in get: # return public.returnMsg(False, "参数错误") # # try: # get.questions = json.loads(get.questions) # except: # return public.returnMsg(False, "参数错误") # # data = { # "uid": user_info['uid'], # "access_key": user_info['access_key'], # "server_id": user_info['server_id'], # "product_type": product_type, # "rate": get.rate, # "feedback": get.feedback, # "phone_back": get.phone_back, # "questions": json.dumps(get.questions) # } # try: # requests.post(api_url, data=data, timeout=10).json() # if software_name == "panel": # self._stop_panel_nps(is_complete=True) # else: # public.WriteFile("data/{}_nps.pl".format(software_name), "1") # except: # pass # return public.returnMsg(True, "提交成功") # @staticmethod # def _get_panel_nps_data(): # panel_path = public.get_panel_path() # try: # nps_file = "{}/data/yakpanel_nps_data".format(panel_path) # if os.path.exists(nps_file): # with open(nps_file, mode="r") as fp: # nps_data = json.load(fp) # else: # time_file = "{}/data/panel_nps_time.pl".format(panel_path) # post_nps_done = "{}/data/panel_nps.pl".format(panel_path) # if not os.path.exists(time_file): # install_time = time.time() # else: # with open(time_file, mode="r") as fp: # install_time = float(fp.read()) # nps_data = { # "time": install_time, # "status": "complete" if os.path.exists(post_nps_done) else "waiting", # "popup_count": 0 # } # # with open(nps_file, mode="w") as fp: # fp.write(json.dumps(nps_data)) # except: # nps_data = { # "time": time.time(), # "status": "waiting", # "popup_count": 0 # } # # return nps_data # # @staticmethod # def _save_panel_nps_data(nps_data): # panel_path = public.get_panel_path() # nps_file = "{}/data/yakpanel_nps_data".format(panel_path) # with open(nps_file, mode="w") as fp: # fp.write(json.dumps(nps_data)) # # def _get_panel_nps(self): # nps_data = self._get_panel_nps_data() # safe_day = int((time.time() - nps_data["time"]) / 86400) # res = {'safe_day': safe_day} # if nps_data["status"] == "complete": # res["nps"] = False # elif nps_data["status"] == "stopped": # res["nps"] = False # else: # if safe_day >= 10: # res["nps"] = True # return res # # def _stop_panel_nps(self, is_complete: bool = False): # nps_data = self._get_panel_nps_data() # if is_complete: # nps_data["status"] = "complete" # else: # nps_data["status"] = "stopped" # # self._save_panel_nps_data(nps_data) # 错误收集 def err_collection(self, get): # 提交错误登录信息 _form = get.get("form_data", {}) if 'username' in _form: _form['username'] = '******' if 'password' in _form: _form['password'] = '******' if 'phone' in _form: _form['phone'] = '******' error = get.get("errinfo", "") # 获取面板地址 panel_addr = public.get_server_ip() + ":" + str(public.get_panel_port()) if panel_addr in error: error = error.replace(panel_addr, "127.0.0.1:10086") # 错误信息 error_infos = { "REQUEST_DATE": public.getDate(), # 请求时间 "PANEL_VERSION": public.version(), # 面板版本 "OS_VERSION": public.get_os_version(), # 操作系统版本 "REMOTE_ADDR": public.GetClientIp(), # 请求IP "REQUEST_URI": get.get("uri", ""), # 请求URI "REQUEST_FORM": public.xsssec(str(_form)), # 请求表单 "USER_AGENT": public.xsssec(request.headers.get('User-Agent')), # 客户端连接信息 "ERROR_INFO": error, # 错误信息 "PACK_TIME": public.readFile("/www/server/panel/config/update_time.pl") if os.path.exists("/www/server/panel/config/update_time.pl") else public.getDate(), # 打包时间 "TYPE": 101, "ERROR_ID": "{}_{}".format(error.split("\n")[0].strip(),get.get("uri", "")) } pkey = public.Md5(error_infos["ERROR_INFO"]) # 提交 if not public.cache_get(pkey) and not public.is_self_hosted(): try: public.run_thread(public.httpPost("https://geterror.yakpanel.com/bt_error/index.php", error_infos)) public.cache_set(pkey, 1, 1800) except Exception as e: pass return public.returnMsg(True, "OK")