harry/keystone
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e15a80163b772f25fefd904ea33259ecff2f03ca
keystone/routes/web.php
Harry (hjbdev) e15a80163b ran pint
2025-04-07 12:16:11 +01:00

107 lines
3.7 KiB
PHP
Raw Blame History

<?php
use App\Enums\ServerStatus;
use App\Http\Controllers\ApplicationController;
use App\Http\Controllers\EnvironmentController;
use App\Http\Controllers\OrganisationController;
use App\Http\Controllers\ServerController;
use App\Http\Controllers\ServiceController;
use App\Models\Server;
use App\Support\Ip;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Route;
use Inertia\Inertia;
Route::get('/', function () {
return Inertia::render('Welcome');
})->name('home');
Route::middleware(['auth', 'verified'])->group(function () {
Route::inertia('dashboard', 'Dashboard')->name('dashboard');
Route::prefix('organisations/{organisation}')->group(function () {
Route::get('/', [OrganisationController::class, 'show'])->name('organisations.show');
Route::resource('servers', ServerController::class)
->only('index', 'show', 'create', 'store')
->name('index', 'servers.index')
->name('show', 'servers.show')
->name('create', 'servers.create')
->name('store', 'servers.store');
Route::prefix('servers/{server}')->group(function () {
Route::resource('services', ServiceController::class)
->only('create', 'store')
->name('create', 'services.create')
->name('store', 'services.store');
});
Route::resource('applications', ApplicationController::class)
->only('show')
->name('show', 'applications.show');
Route::prefix('applications/{application}')->group(function () {
Route::resource('environments', EnvironmentController::class)
->only('show')
->name('show', 'environments.show');
});
});
});
Route::get('/provision-script', function (Request $request) {
$validated = $request->validate([
'sudo_password' => ['required', 'string'],
'hostname' => ['required', 'string'],
'server_id' => ['required', 'integer', 'exists:servers,id'],
]);
$script = file_get_contents(base_path('provision.sh'));
$keystonePublicKey = file_get_contents(storage_path('app/private/ssh/id_ed25519.pub'));
$script = str_replace('[!hostname!]', $validated['hostname'], $script);
$script = str_replace('[!sudo_password!]', $validated['sudo_password'], $script);
$script = str_replace('[!server_id!]', $validated['server_id'], $script);
$script = str_replace('[!keystonepublickey!]', $keystonePublicKey, $script);
$script = str_replace('[!callback!]', route('provision.callback'), $script);
return response($script)
->header('Content-Type', 'text/plain');
})->name('provision-script');
Route::post('/provision-callback', function (Request $request) {
$validated = $request->validate([
'server_id' => ['required', 'integer', 'exists:servers,id'],
]);
$server = Server::find($validated['server_id']);
// Check against ipv4 and ipv6
$isValidIp = false;
if ($server->ipv4 && Ip::inNetwork($request->ip(), $server->ipv4)) {
$isValidIp = true;
}
if ($server->ipv6 && Ip::inNetwork($request->ip(), $server->ipv6)) {
$isValidIp = true;
}
if (! $isValidIp) {
logger('someone tried to callback from an invalid IP');
logger(' server ip: '.$server->ipv4);
logger(' server ipv6: '.$server->ipv6);
logger(' callback ip: '.$request->ip());
logger(' server id: '.$server->id);
return response('Unauthorized', 401);
}
$server->update([
'status' => ServerStatus::ACTIVE,
]);
return response('OK', 200);
})->name('provision.callback');
require __DIR__.'/settings.php';
require __DIR__.'/auth.php';
Reference in New Issue View Git Blame Copy Permalink