del: 删除获取防火墙相关代码

2023-10-26 18:23:29 +08:00
parent 0643bc3df8
commit 1bb322a5a8
9 changed files with 0 additions and 1006 deletions
--- a/features/firewall/api_firewall.go
+++ b/features/firewall/api_firewall.go
@@ -1,88 +0,0 @@
-package firewall
-
-import (
-	"net/http"
-
-	"ems.agt/features/firewall/model"
-	"ems.agt/features/firewall/service"
-	"ems.agt/lib/core/utils/ctx"
-	"ems.agt/lib/core/vo/result"
-	"ems.agt/lib/services"
-	"ems.agt/restagent/config"
-)
-
-// 防火墙管理接口添加到路由
-func Routers() []services.RouterItem {
-	// 实例化控制层 FirewallApi 结构体
-	var apis = &FirewallApi{
-		firewallService: *service.NewServiceFirewall,
-	}
-
-	rs := [...]services.RouterItem{
-		{
-			Method:     "GET",
-			Pattern:    "/base",
-			Handler:    apis.BaseInfo,
-			Middleware: nil, //midware.Authorize(nil),
-		},
-		{
-			Method:     "POST",
-			Pattern:    "/rule",
-			Handler:    apis.Rule,
-			Middleware: nil, //midware.Authorize(nil),
-		},
-		// 添加更多的 Router 对象...
-	}
-
-	// 生成两组前缀路由
-	rsPrefix := []services.RouterItem{}
-	for _, v := range rs {
-		path := "/firewallManage/{apiVersion}" + v.Pattern
-		// 固定前缀
-		v.Pattern = config.DefaultUriPrefix + path
-		rsPrefix = append(rsPrefix, v)
-		// 可配置
-		v.Pattern = config.UriPrefix + path
-		rsPrefix = append(rsPrefix, v)
-	}
-	return rsPrefix
-}
-
-// 防火墙管理
-//
-// PATH /firewallManage
-type FirewallApi struct {
-	firewallService service.ServiceFirewall
-}
-
-// 获取防火墙基础信息
-//
-// GET /base
-func (s *FirewallApi) BaseInfo(w http.ResponseWriter, r *http.Request) {
-	data, err := s.firewallService.LoadBaseInfo()
-	if err != nil {
-		ctx.JSON(w, 200, result.ErrMsg(err.Error()))
-		return
-	}
-
-	ctx.JSON(w, 200, result.OkData(data))
-}
-
-// 获取防火墙规则列表分页
-//
-// GET /rule
-func (s *FirewallApi) Rule(w http.ResponseWriter, r *http.Request) {
-	var body model.RuleQuerys
-	err := ctx.ShouldBindJSON(r, &body)
-	if err != nil || body.Type == "" {
-		ctx.JSON(w, 400, result.CodeMsg(400, "parameter error"))
-		return
-	}
-	data, err := s.firewallService.RulePage(body)
-	if err != nil {
-		ctx.JSON(w, 400, result.ErrMsg(err.Error()))
-		return
-	}
-
-	ctx.JSON(w, 200, result.OkData(data))
-}
--- a/features/firewall/model/firewall.go
+++ b/features/firewall/model/firewall.go
@@ -1,13 +0,0 @@
-package model
-
-type Firewall struct {
-	ID          int64  `json:"id" xorm:"id"`
-	CreatedAt   int64  `json:"createdAt"  xorm:"created_at"`
-	UpdatedAt   int64  `json:"updatedAt"  xorm:"updated_at"`
-	Type        string `json:"type" xorm:"type"`
-	Port        string `json:"port" xorm:"port"`
-	Protocol    string `json:"protocol" xorm:"protocol"`
-	Address     string `json:"address" xorm:"address"`
-	Strategy    string `json:"strategy" xorm:"strategy"`
-	Description string `json:"description" xorm:"description"`
-}
--- a/features/firewall/model/firewall_vo.go
+++ b/features/firewall/model/firewall_vo.go
@@ -1,64 +0,0 @@
-package model
-
-type FirewallBaseInfo struct {
-	Name       string `json:"name"`
-	Status     string `json:"status"`
-	Version    string `json:"version"`
-	PingStatus string `json:"pingStatus"`
-}
-
-type RuleQuerys struct {
-	PageNum  int    `json:"pageNum" validate:"required,number"`
-	PageSize int    `json:"pageSize" validate:"required,number"`
-	Info     string `json:"info"`
-	Status   string `json:"status"`
-	Strategy string `json:"strategy"`
-	Type     string `json:"type" validate:"required"`
-}
-
-type FirewallOperation struct {
-	Operation string `json:"operation" validate:"required,oneof=start stop disablePing enablePing"`
-}
-
-type PortRuleOperate struct {
-	Operation string `json:"operation" validate:"required,oneof=add remove"`
-	Address   string `json:"address"`
-	Port      string `json:"port" validate:"required"`
-	Protocol  string `json:"protocol" validate:"required,oneof=tcp udp tcp/udp"`
-	Strategy  string `json:"strategy" validate:"required,oneof=accept drop"`
-
-	Description string `json:"description"`
-}
-
-type UpdateFirewallDescription struct {
-	Type     string `json:"type"`
-	Address  string `json:"address"`
-	Port     string `json:"port"`
-	Protocol string `json:"protocol"`
-	Strategy string `json:"strategy" validate:"required,oneof=accept drop"`
-
-	Description string `json:"description"`
-}
-
-type AddrRuleOperate struct {
-	Operation string `json:"operation" validate:"required,oneof=add remove"`
-	Address   string `json:"address"  validate:"required"`
-	Strategy  string `json:"strategy" validate:"required,oneof=accept drop"`
-
-	Description string `json:"description"`
-}
-
-type PortRuleUpdate struct {
-	OldRule PortRuleOperate `json:"oldRule"`
-	NewRule PortRuleOperate `json:"newRule"`
-}
-
-type AddrRuleUpdate struct {
-	OldRule AddrRuleOperate `json:"oldRule"`
-	NewRule AddrRuleOperate `json:"newRule"`
-}
-
-type BatchRuleOperate struct {
-	Type  string            `json:"type" validate:"required"`
-	Rules []PortRuleOperate `json:"rules"`
-}
--- a/features/firewall/repo/repo_firewall.go
+++ b/features/firewall/repo/repo_firewall.go
@@ -1,133 +0,0 @@
-package repo
-
-import (
-	"strings"
-
-	"ems.agt/features/firewall/model"
-	"ems.agt/lib/core/datasource"
-	"ems.agt/lib/log"
-)
-
-// 实例化数据层 RepoFirewall 结构体
-var NewRepoFirewall = &RepoFirewall{
-	selectSql: `select 
-	id, created_at, updated_at, type, port, protocol, address, strategy, description 
-	from monitor_firewall`,
-
-	resultMap: map[string]string{
-		"id":          "ID",
-		"created_at":  "CreatedAt",
-		"updated_at":  "UpdatedAt",
-		"type":        "Type",
-		"port":        "Port",
-		"protocol":    "Protocol",
-		"address":     "Address",
-		"strategy":    "Strategy",
-		"description": "Description",
-	},
-}
-
-// RepoFirewall 防火墙 数据层处理
-type RepoFirewall struct {
-	// 查询视图对象SQL
-	selectSql string
-	// 结果字段与实体映射
-	resultMap map[string]string
-}
-
-// convertResultRows 将结果记录转实体结果组
-func (r *RepoFirewall) convertResultRows(rows []map[string]any) []model.Firewall {
-	arr := make([]model.Firewall, 0)
-	for _, row := range rows {
-		UdmUser := model.Firewall{}
-		for key, value := range row {
-			if keyMapper, ok := r.resultMap[key]; ok {
-				datasource.SetFieldValue(&UdmUser, keyMapper, value)
-			}
-		}
-		arr = append(arr, UdmUser)
-	}
-	return arr
-}
-
-// List 根据实体查询
-func (r *RepoFirewall) List(f model.Firewall) []model.Firewall {
-	// 查询条件拼接
-	var conditions []string
-	var params []any
-	if f.Type != "" {
-		conditions = append(conditions, "type = ?")
-		params = append(params, f.Type)
-	}
-	if f.Protocol != "" {
-		conditions = append(conditions, "protocol = ?")
-		params = append(params, f.Protocol)
-	}
-
-	// 构建查询条件语句
-	whereSql := ""
-	if len(conditions) > 0 {
-		whereSql += " where " + strings.Join(conditions, " and ")
-	}
-
-	// 查询数据
-	querySql := r.selectSql + whereSql
-	results, err := datasource.RawDB("", querySql, params)
-	if err != nil {
-		log.Errorf("query err => %v", err)
-	}
-
-	// 转换实体
-	return r.convertResultRows(results)
-}
-
-// Insert 新增实体
-func (r *RepoFirewall) Insert(f model.Firewall) int64 {
-	results, err := datasource.DefaultDB().Table("monitor_firewall").Insert(f)
-	if err != nil {
-		return results
-	}
-	return results
-}
-
-// Update 修改更新
-func (r *RepoFirewall) Update(f model.Firewall) int64 {
-	// 查询先
-	var fd model.Firewall
-	if f.Type == "port" {
-		has, err := datasource.DefaultDB().Table("monitor_firewall").Where("type = ? AND port = ? AND protocol = ? AND address = ? AND strategy = ?", "port", f.Port, f.Protocol, f.Address, f.Strategy).Get(&fd)
-		if !has || err != nil {
-			return 0
-		}
-	} else {
-		has, err := datasource.DefaultDB().Table("monitor_firewall").Where("type = ? AND address = ? AND strategy = ?", "address", f.Address, f.Strategy).Get(&fd)
-		if !has || err != nil {
-			return 0
-		}
-	}
-	f.ID = fd.ID
-
-	results, err := datasource.DefaultDB().Table("monitor_firewall").Where("id = ?", f.ID).Update(f)
-	if err != nil {
-		return 0
-	}
-	return results
-}
-
-// Delete 删除实体
-func (r *RepoFirewall) Delete(id int64) int64 {
-	results, err := datasource.DefaultDB().Table("u_sub_user").Where("id = ?", id).Delete()
-	if err != nil {
-		return results
-	}
-	return results
-}
-
-// DeleteFirewallRecord 删除实体
-func (r *RepoFirewall) DeleteFirewallRecord(fType, port, protocol, address, strategy string) int64 {
-	results, err := datasource.DefaultDB().Table("u_sub_user").Where("type = ? AND port = ? AND protocol = ? AND address = ? AND strategy = ?", fType, port, protocol, address, strategy).Delete()
-	if err != nil {
-		return results
-	}
-	return results
-}
--- a/features/firewall/service/service_firewall.go
+++ b/features/firewall/service/service_firewall.go
@@ -1,207 +0,0 @@
-package service
-
-import (
-	"fmt"
-	"os"
-	"strconv"
-	"strings"
-
-	"ems.agt/features/firewall/model"
-	"ems.agt/features/firewall/repo"
-	"ems.agt/lib/core/cmd"
-	"ems.agt/lib/core/utils/firewall"
-	fireClient "ems.agt/lib/core/utils/firewall/client"
-	"ems.agt/lib/core/utils/scan"
-)
-
-// 实例化服务层 ServiceFirewall 结构体
-var NewServiceFirewall = &ServiceFirewall{
-	repoFirewall: *repo.NewRepoFirewall,
-}
-
-// ServiceFirewall 防火墙 服务层处理
-type ServiceFirewall struct {
-	repoFirewall repo.RepoFirewall
-}
-
-// LoadBaseInfo 获取防火墙基础信息
-func (s *ServiceFirewall) LoadBaseInfo() (model.FirewallBaseInfo, error) {
-	var baseInfo model.FirewallBaseInfo
-	baseInfo.PingStatus = s.pingStatus()
-	baseInfo.Status = "not running"
-	baseInfo.Version = "-"
-	baseInfo.Name = "-"
-	client, err := firewall.NewFirewallClient()
-	if err != nil {
-		if err.Error() == "no such type" {
-			return baseInfo, nil
-		}
-		return baseInfo, err
-	}
-	baseInfo.Name = client.Name()
-	baseInfo.Status, err = client.Status()
-	if err != nil {
-		return baseInfo, err
-	}
-	if baseInfo.Status == "not running" {
-		return baseInfo, err
-	}
-	baseInfo.Version, err = client.Version()
-	if err != nil {
-		return baseInfo, err
-	}
-	return baseInfo, nil
-}
-
-// LoadBaseInfo 获取防火墙基础信息
-func (s *ServiceFirewall) RulePage(querys model.RuleQuerys) (map[string]any, error) {
-	var (
-		datas     []fireClient.FireInfo
-		backDatas []fireClient.FireInfo
-	)
-
-	data := map[string]any{
-		"total": 0,
-		"rows":  backDatas,
-	}
-
-	client, err := firewall.NewFirewallClient()
-	if err != nil {
-		return data, err
-	}
-	if querys.Type == "port" {
-		ports, err := client.ListPort()
-		if err != nil {
-			return data, err
-		}
-		if len(querys.Info) != 0 {
-			for _, port := range ports {
-				if strings.Contains(port.Port, querys.Info) {
-					datas = append(datas, port)
-				}
-			}
-		} else {
-			datas = ports
-		}
-	} else {
-		addrs, err := client.ListAddress()
-		if err != nil {
-			return data, err
-		}
-		if len(querys.Info) != 0 {
-			for _, addr := range addrs {
-				if strings.Contains(addr.Address, querys.Info) {
-					datas = append(datas, addr)
-				}
-			}
-		} else {
-			datas = addrs
-		}
-	}
-
-	var datasFilterStatus []fireClient.FireInfo
-	if len(querys.Status) != 0 {
-		for _, data := range datas {
-			portItem, _ := strconv.Atoi(data.Port)
-			if querys.Status == "free" && !scan.ScanPortWithProto(portItem, data.Protocol) {
-				datasFilterStatus = append(datasFilterStatus, data)
-			}
-			if querys.Status == "used" && scan.ScanPortWithProto(portItem, data.Protocol) {
-				datasFilterStatus = append(datasFilterStatus, data)
-			}
-		}
-	} else {
-		datasFilterStatus = datas
-	}
-	var datasFilterStrategy []fireClient.FireInfo
-	if len(querys.Strategy) != 0 {
-		for _, data := range datasFilterStatus {
-			if querys.Strategy == data.Strategy {
-				datasFilterStrategy = append(datasFilterStrategy, data)
-			}
-		}
-	} else {
-		datasFilterStrategy = datasFilterStatus
-	}
-
-	total, start, end := len(datasFilterStrategy), (querys.PageNum-1)*querys.PageSize, querys.PageNum*querys.PageSize
-	if start > total {
-		backDatas = make([]fireClient.FireInfo, 0)
-	} else {
-		if end >= total {
-			end = total
-		}
-		backDatas = datasFilterStrategy[start:end]
-	}
-
-	datasFromDB := s.repoFirewall.List(model.Firewall{})
-	for i := 0; i < len(backDatas); i++ {
-		for _, des := range datasFromDB {
-			if querys.Type != des.Type {
-				continue
-			}
-			if backDatas[i].Port == des.Port && querys.Type == "port" &&
-				backDatas[i].Protocol == des.Protocol &&
-				backDatas[i].Strategy == des.Strategy &&
-				backDatas[i].Address == des.Address {
-				backDatas[i].Description = des.Description
-				break
-			}
-			if querys.Type == "address" && backDatas[i].Strategy == des.Strategy && backDatas[i].Address == des.Address {
-				backDatas[i].Description = des.Description
-				break
-			}
-		}
-	}
-
-	if querys.Type == "port" {
-		for i := 0; i < len(backDatas); i++ {
-			port, _ := strconv.Atoi(backDatas[i].Port)
-			backDatas[i].IsUsed = scan.ScanPort(port)
-			if backDatas[i].Protocol == "udp" {
-				backDatas[i].IsUsed = scan.ScanUDPPort(port)
-				continue
-			}
-		}
-	}
-	go s.cleanUnUsedData(client)
-
-	return data, nil
-}
-
-func (s *ServiceFirewall) pingStatus() string {
-	if _, err := os.Stat("/etc/sysctl.conf"); err != nil {
-		return "None"
-	}
-	sudo := cmd.SudoHandleCmd()
-	command := fmt.Sprintf("%s cat /etc/sysctl.conf | grep net/ipv4/icmp_echo_ignore_all= ", sudo)
-	stdout, _ := cmd.Exec(command)
-	if stdout == "net/ipv4/icmp_echo_ignore_all=1\n" {
-		return "Enable"
-	}
-	return "Disable"
-}
-
-func (s *ServiceFirewall) cleanUnUsedData(client firewall.FirewallClient) {
-	list, _ := client.ListPort()
-	addressList, _ := client.ListAddress()
-	list = append(list, addressList...)
-	if len(list) == 0 {
-		return
-	}
-	records := s.repoFirewall.List(model.Firewall{})
-	if len(records) == 0 {
-		return
-	}
-	for _, item := range list {
-		for i := 0; i < len(records); i++ {
-			if records[i].Port == item.Port && records[i].Protocol == item.Protocol && records[i].Strategy == item.Strategy && records[i].Address == item.Address {
-				records = append(records[:i], records[i+1:]...)
-			}
-		}
-	}
-
-	for _, record := range records {
-		_ = s.repoFirewall.Delete(record.ID)
-	}
-}