forked from jakobant/wasy-openvpn
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.py
155 lines (126 loc) · 3.81 KB
/
server.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
#!flask/bin/python
from flask import Flask, jsonify
from flask.ext.httpauth import HTTPBasicAuth
from flask import render_template
from flask import make_response
from flask import request
import os
from wasy import Wasy
from time import sleep
import json
import threading
auth = HTTPBasicAuth()
wpath = os.getenv('WASY_PATH', '/tmp/kobbi')
api_key = os.getenv('WASY_API', 'admin')
wasy = Wasy(wpath)
try:
wasy.create()
except:
None
app = Flask(__name__)
@app.errorhandler(404)
def not_found(error):
return make_response(jsonify({'error': 'Not found'}), 404)
@auth.get_password
def get_password(username):
if username == api_key:
return 'pi'
return None
@auth.error_handler
def unauthorized():
return make_response(jsonify({'error': 'Unauthorized access'}), 401)
@app.route('/')
@auth.login_required
def index():
return render_template("index.html",
title='Home')
@app.route('/view_clients')
@auth.login_required
def get_clients():
clients = wasy.get_index_txt()
return make_response(jsonify(clients), 200)
@app.route('/get_ca')
@auth.login_required
def get_ca():
if request.method == 'GET':
b64 = request.args.get('b64')
if b64 == None:
b64=True
ca = wasy.get_ca(b64)
return make_response(ca, 200)
@app.route('/get_server_key')
@auth.login_required
def get_server_key():
if request.method == 'GET':
b64 = request.args.get('b64')
if b64 == None:
b64=True
key = wasy.get_server_key(b64)
return make_response(key, 200)
@app.route('/get_server_crt')
@auth.login_required
def get_server_crt():
if request.method == 'GET':
b64 = request.args.get('b64')
if b64 == None:
b64=True
crt = wasy.get_server_crt(b64)
return make_response(crt, 200)
@app.route('/get_ta')
@auth.login_required
def get_ta():
if request.method == 'GET':
b64 = request.args.get('b64')
if b64 == None:
b64=True
ta = wasy.get_ta(b64)
return make_response(ta, 200)
@app.route('/get_dh')
@auth.login_required
def get_dh():
if request.method == 'GET':
b64 = request.args.get('b64')
if b64 == None:
b64=True
dh = wasy.get_dh(b64)
return make_response(dh, 200)
@app.route('/get_crl')
#@auth.login_required
def get_crl():
if request.method == 'GET':
b64 = request.args.get('b64')
if b64 == None:
b64=True
crl = wasy.get_crl(b64)
return make_response(crl, 200)
@app.route('/get_client')
@auth.login_required
def gget_client():
if request.method == 'GET' and request.args.get('cn') != None and request.args.get('cn') != '':
cn = request.args.get('cn')
ovpn = wasy.make_ovpn(cn)
return make_response(ovpn, 200)
else:
return make_response(jsonify({'result': 'Error missing data'}), 200)
@app.route('/add_client', methods=['POST', 'GET'])
@auth.login_required
def add_client():
if request.method == 'GET' and request.args.get('cn') != None and request.args.get('cn') != '':
cn = request.args.get('cn')
client = wasy.create_cert_client(cn)
print (cn)
return make_response(jsonify({'result': client}), 200)
else:
return make_response(jsonify({'result': 'Error missing data'}), 200)
@app.route('/revoke_client', methods=['POST', 'GET'])
@auth.login_required
def revoke_client():
if request.method == 'GET' and request.args.get('cn') != None and request.args.get('cn') != '':
cn = request.args.get('cn')
client = wasy.revokce_cert_client(cn)
print (cn)
return make_response(jsonify({'result': client}), 200)
else:
return make_response(jsonify({'result': 'Error missing data'}), 200)
if __name__ == '__main__':
app.run(host='0.0.0.0', port='5000')