1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
|
package eduvpn
import (
"encoding/json"
"errors"
"fmt"
"net/http"
"net/url"
)
// Authenticated wrappers on top of HTTP
func (server *Server) apiAuthenticated(method string, endpoint string, opts *HTTPOptionalParams) (http.Header, []byte, error) {
// Ensure optional is not nil as we will fill it with headers
if opts == nil {
opts = &HTTPOptionalParams{}
}
url := server.Endpoints.API.V3.API + endpoint
// Ensure we have non-expired tokens
oauthErr := server.OAuth.EnsureTokens()
if oauthErr != nil {
return nil, nil, oauthErr
}
headerKey := "Authorization"
headerValue := fmt.Sprintf("Bearer %s", server.OAuth.Token.Access)
if opts.Headers != nil {
opts.Headers.Add(headerKey, headerValue)
} else {
opts.Headers = &http.Header{headerKey: {headerValue}}
}
return HTTPMethodWithOpts(method, url, opts)
}
func (server *Server) apiAuthenticatedRetry(method string, endpoint string, opts *HTTPOptionalParams) (http.Header, []byte, error) {
header, body, bodyErr := server.apiAuthenticated(method, endpoint, opts)
if bodyErr != nil {
var error *HTTPStatusError
if errors.As(bodyErr, &error) {
// Tell the method that the token is expired
server.OAuth.Token.ExpiredTimestamp = GenerateTimeSeconds()
return server.apiAuthenticated(method, endpoint, opts)
}
return header, nil, bodyErr
}
return header, body, bodyErr
}
func (server *Server) APIInfo() error {
_, body, bodyErr := server.apiAuthenticatedRetry(http.MethodGet, "/info", nil)
if bodyErr != nil {
return bodyErr
}
structure := &ServerProfileInfo{}
jsonErr := json.Unmarshal(body, structure)
if jsonErr != nil {
return jsonErr
}
server.Profiles = structure
// FIXME: Implement profile selection callback
server.Profiles.Current = 0
return nil
}
func (server *Server) APIConnectWireguard(profile_id string, pubkey string) (string, string, error) {
headers := &http.Header{
"content-type": {"application/x-www-form-urlencoded"},
"accept": {"application/x-wireguard-profile"},
}
urlForm := url.Values{
"profile_id": {"default"},
"public_key": {pubkey},
}
header, connectBody, connectErr := server.apiAuthenticatedRetry(http.MethodPost, "/connect", &HTTPOptionalParams{Headers: headers, Body: urlForm})
if connectErr != nil {
return "", "", connectErr
}
expires := header.Get("expires")
return string(connectBody), expires, nil
}
func (server *Server) APIConnectOpenVPN(profile_id string) (string, string, error) {
headers := &http.Header{
"content-type": {"application/x-www-form-urlencoded"},
"accept": {"application/x-openvpn-profile"},
}
urlForm := url.Values{
"profile_id": {"default"},
}
header, connectBody, connectErr := server.apiAuthenticatedRetry(http.MethodPost, "/connect", &HTTPOptionalParams{Headers: headers, Body: urlForm})
if connectErr != nil {
return "", "", connectErr
}
expires := header.Get("expires")
return string(connectBody), expires, nil
}
|
