增加通用的API

Author: Liang2580

api.py

@@ -0,0 +1,58 @@
+# coding: utf-8
+import time
+import hashlib
+import json
+import requests
+
+
+class WafApi:
+    __WAF_KEY = 'op51JCeKAdqa7AUtKae7ONrMeW8FdAWA'
+    __WAF_PANEL = 'https://192.168.10.10:8379'
+
+    def __get_md5(self, s: str) -> str:
+        """计算字符串的 MD5 值"""
+        return hashlib.md5(s.encode('utf-8')).hexdigest()
+
+    def __get_headers(self) -> dict:
+        """生成请求头中的 waf_request_time 和 waf_request_token"""
+        time_now = str(int(time.time()))
+        token = self.__get_md5(time_now + self.__get_md5(self.__WAF_KEY))
+        return {
+            'waf_request_time': time_now,
+            'waf_request_token': token
+        }
+
+    def get_logs(self):
+        """获取站点日志列表"""
+        url = f"{self.__WAF_PANEL}/api/wafmastersite/get_site_list"
+        headers = self.__get_headers()
+        payload = {'p': 1, 'p_size': 20, 'site_name': ""}
+
+        try:
+            response = requests.post(
+                url,
+                headers=headers,
+                data=json.dumps(payload),
+                timeout=10,
+                verify=False
+            )
+
+            if response.status_code == 200:
+                json_data = response.json()
+                if json_data.get('code') == 0:
+                    return json_data
+                else:
+                    print("接口返回失败:", json_data.get('msg', '未知错误'))
+            else:
+                print(f"请求失败，状态码：{response.status_code}")
+
+        except requests.RequestException as e:
+            print(f"网络请求异常: {e}")
+
+        return None
+
+
+if __name__ == '__main__':
+    waf_api = WafApi()
+    logs = waf_api.get_logs()
+    print(logs)

main.go

@@ -39,9 +39,6 @@ var staticFs embed.FS
 func registerMiddlewares(srv *core.Server) {
 	srv.Before(func(w http.ResponseWriter, r *http.Request) bool {
 		// API暂时不开放,等前端对接后开放
-		if true {
-			return true
-		}
 
 		if len(r.URL.Path) < 5 || !strings.EqualFold(r.URL.Path[:5], "/api/") {
 			return true

modules/config.go

@@ -8,16 +8,20 @@ import (
 	"CloudWaf/public"
 	"CloudWaf/public/db"
 	"CloudWaf/public/validate"
+	"encoding/base64"
+	"encoding/json"
 	"fmt"
 	"html"
+	"io"
+	"io/fs"
 	"net/http"
+	"net/url"
 	"os"
 	"os/exec"
 	"regexp"
 	"strconv"
 	"strings"
 	"time"
-	"CloudWaf/providers"
 
 	"github.com/pquerna/otp"
 	"github.com/pquerna/otp/totp"
@@ -100,15 +104,71 @@ func (config *Config) GetConfig(request *http.Request) core.Response {
 	}
 	s := time.Now().String()
 	systemTime := s[:19] + " " + s[30:39]
+	apiinfo, err := public.GetWAFApi()
 	return core.Success(map[string]interface{}{
 		"config":        data,
 		"port":          core.GetServerPort(),
 		"two_step_auth": status,
 		"basic_auth":    basicAuth,
 		"systemdate":    systemTime,
+		"apiinfo":       apiinfo,
 	})
 }
 
+// 开启API
+func (config *Config) SetOpenApi(request *http.Request) core.Response {
+	params := struct {
+		Type      int    `json:"type"`
+		LimitAddr string `json:"limit_addr"`
+	}{}
+	if err := core.GetParamsFromRequestToStruct(request, &params); err != nil {
+		return core.Fail(err)
+	}
+	// t_type 类型 1 重置Token
+	// t_type 类型 2  开启或者关闭API
+	// t_type 类型 3  设置地址
+	//limit_addr  限制地址
+	t_type := params.Type
+	limit_addr := params.LimitAddr
+	if params.Type == 3 {
+		// 判断
+		apiinfo, _ := public.GetWAFApi()
+		limit_addr_arr := strings.Split(limit_addr, "\n")
+		apiinfo.LimitAddr = limit_addr_arr
+		public.SaveWAFApi(apiinfo)
+		return core.Success("设置成功")
+	}
+	if t_type == 2 {
+		apiinfo, _ := public.GetWAFApi()
+		if apiinfo.Open == false && apiinfo.Token == "" {
+			apiinfo.Token = public.RandomStr(32)
+			apiinfo.Open = true
+			public.SaveWAFApi(apiinfo)
+			return core.Success("设置成功")
+		}
+		if apiinfo.Open == true {
+			apiinfo.Open = false
+			apiinfo.Token = ""
+			public.SaveWAFApi(apiinfo)
+			return core.Success("设置成功")
+		} else {
+			apiinfo.Open = true
+			apiinfo.Token = public.RandomStr(32)
+			public.SaveWAFApi(apiinfo)
+			return core.Success("设置成功")
+		}
+	}
+	if t_type == 1 {
+		apiinfo, _ := public.GetWAFApi()
+		apiinfo.Token = public.RandomStr(32)
+		public.SaveWAFApi(apiinfo)
+		return core.Success("设置成功")
+	}
+
+	return core.Success("设置成功")
+
+}
+
 func (config *Config) SetCert(request *http.Request) core.Response {
 	params, err := core.GetParamsFromRequest(request)
 	if err != nil {

public/public.go

@@ -2758,3 +2758,9 @@ func (api *ApiInfo) CheckWafApiAccess(clientIP string) bool {
 	}
 	return false
 }
+
+func SaveWAFApi(ApiInfo ApiInfo) {
+	apiinfoJson, _ := json.Marshal(ApiInfo)
+	WriteFile("/www/cloud_waf/console/data/btwaf_api.json", string(apiinfoJson))
+
+}