service/http.go

package service

import (
	"io/ioutil"
	"log"
	"net/http"
	"strings"
)

type Status int

const (
	OK Status = iota
	WAITING
	ERROR
)

type HttpServer struct {
	manager *Manager
	status  Status
}

type CreateCSRRequest struct {
	*BaseMessage
	Hostname string
}

type CreateCSRResponse struct {
	*BaseMessage
	CSR string `json:"csr"`
}

type UpdateOpenVPNConfigRequest struct {
	*BaseMessage
	Config string
}

type DeliverCertificateRequest struct {
	*BaseMessage
	Certificate string
}

func NewHttpServer(manager *Manager) *HttpServer {
	return &HttpServer{manager, WAITING}
}

func (it *HttpServer) Start() {
	http.HandleFunc("/", func(writer http.ResponseWriter, request *http.Request) {
		log.Printf("%s /", strings.ToUpper(request.Method))
		writer.WriteHeader(200)
		writer.Write([]byte("Don't"))
	})

	http.HandleFunc("/create-csr", func(writer http.ResponseWriter, request *http.Request) {
		log.Printf("%s /create-csr", strings.ToUpper(request.Method))
		req := &CreateCSRRequest{
			BaseMessage: &BaseMessage{""},
		}
		err := it.verifyRequest(request, req)

		if err != nil {
			log.Printf("Error on %s %s: %s", request.Method, request.URL.Path, err)
			writer.WriteHeader(400)
			return
		}

		csr, err := it.manager.CreateCSR(req.Hostname)
		if err != nil {
			writer.WriteHeader(500)
			return
		}

		log.Printf("Sending CSR: %s", csr)

		it.writeResponse(writer, CreateCSRResponse{
			BaseMessage: &BaseMessage{""},
			CSR:         string(csr),
		})
	})

	http.HandleFunc("/deliver-crt", func(writer http.ResponseWriter, request *http.Request) {
		log.Printf("%s /deliver-crt", strings.ToUpper(request.Method))
		req := &DeliverCertificateRequest{
			BaseMessage: &BaseMessage{""},
		}
		err := it.verifyRequest(request, req)
		if err != nil {
			log.Printf("Error on %s %s: %s", request.Method, request.URL.Path, err)
			writer.WriteHeader(400)
			return
		}

		err = it.manager.UpdateCertificate(req.Certificate)
		if err != nil {
			writer.WriteHeader(500)
			return
		}

		it.manager.openVPN.Start()
	})

	http.HandleFunc("/update-openvpn-config", func(writer http.ResponseWriter, request *http.Request) {
		log.Printf("%s /update-openvpn-config", strings.ToUpper(request.Method))
		req := &UpdateOpenVPNConfigRequest{
			BaseMessage: &BaseMessage{""},
		}
		err := it.verifyRequest(request, req)
		if err != nil {
			log.Printf("Error on %s %s: %s", request.Method, request.URL.Path, err)
			writer.WriteHeader(400)
			return
		}

		err = it.manager.openVPN.UpdateConfig(req.Config)
		if err != nil {
			writer.WriteHeader(500)
			return
		}

		it.manager.openVPN.Restart()
	})

	http.ListenAndServe(":7864", nil)
}

func (it *HttpServer) writeResponse(writer http.ResponseWriter, v Message) error {
	return EncryptAndSign(v, it.manager.privateKey, it.manager.CAPublicKey(), it.manager.GetServerFingerprint(), writer)
}

func (it *HttpServer) verifyRequest(r *http.Request, v Message) (error) {
	hexBody, err := ioutil.ReadAll(r.Body)
	if err != nil {
		return err
	}

	return DecryptAndVerify(hexBody, it.manager.privateKey, it.manager.CAPublicKey(), it.manager.GetServerFingerprint(), v)
}
Initial commit 5 years ago			`package service`

			`import (`
			`"io/ioutil"`
Add minimal logging 5 years ago			`"log"`
Initial commit 5 years ago			`"net/http"`
Add minimal logging 5 years ago			`"strings"`
Initial commit 5 years ago			`)`

			`type Status int`

			`const (`
			`OK Status = iota`
			`WAITING`
			`ERROR`
			`)`

Fix crypto 5 years ago			`type HttpServer struct {`
Initial commit 5 years ago			`manager *Manager`
			`status Status`
			`}`

			`type CreateCSRRequest struct {`
Interface fuckery 5 years ago			`*BaseMessage`
Initial commit 5 years ago			`Hostname string`
			`}`

			`type CreateCSRResponse struct {`
Interface fuckery 5 years ago			`*BaseMessage`
Initial commit 5 years ago			CSR string `json:"csr"`
			`}`

			`type UpdateOpenVPNConfigRequest struct {`
Interface fuckery 5 years ago			`*BaseMessage`
Initial commit 5 years ago			`Config string`
			`}`

			`type DeliverCertificateRequest struct {`
Interface fuckery 5 years ago			`*BaseMessage`
Initial commit 5 years ago			`Certificate string`
			`}`

Fix crypto 5 years ago			`func NewHttpServer(manager Manager) HttpServer {`
			`return &HttpServer{manager, WAITING}`
Initial commit 5 years ago			`}`

Fix crypto 5 years ago			`func (it *HttpServer) Start() {`
Initial commit 5 years ago			`http.HandleFunc("/", func(writer http.ResponseWriter, request *http.Request) {`
Add minimal logging 5 years ago			`log.Printf("%s /", strings.ToUpper(request.Method))`
Initial commit 5 years ago			`writer.WriteHeader(200)`
			`writer.Write([]byte("Don't"))`
			`})`

			`http.HandleFunc("/create-csr", func(writer http.ResponseWriter, request *http.Request) {`
Add minimal logging 5 years ago			`log.Printf("%s /create-csr", strings.ToUpper(request.Method))`
Interface fuckery 5 years ago			`req := &CreateCSRRequest{`
			`BaseMessage: &BaseMessage{""},`
			`}`
Initial commit 5 years ago			`err := it.verifyRequest(request, req)`

			`if err != nil {`
Add more logging 5 years ago			`log.Printf("Error on %s %s: %s", request.Method, request.URL.Path, err)`
Initial commit 5 years ago			`writer.WriteHeader(400)`
			`return`
			`}`

			`csr, err := it.manager.CreateCSR(req.Hostname)`
			`if err != nil {`
			`writer.WriteHeader(500)`
			`return`
			`}`

Add logging 5 years ago			`log.Printf("Sending CSR: %s", csr)`

Initial commit 5 years ago			`it.writeResponse(writer, CreateCSRResponse{`
Interface fuckery 5 years ago			`BaseMessage: &BaseMessage{""},`
			`CSR: string(csr),`
Initial commit 5 years ago			`})`
			`})`

			`http.HandleFunc("/deliver-crt", func(writer http.ResponseWriter, request *http.Request) {`
Add minimal logging 5 years ago			`log.Printf("%s /deliver-crt", strings.ToUpper(request.Method))`
Interface fuckery 5 years ago			`req := &DeliverCertificateRequest{`
			`BaseMessage: &BaseMessage{""},`
			`}`
Initial commit 5 years ago			`err := it.verifyRequest(request, req)`
			`if err != nil {`
Add more logging 5 years ago			`log.Printf("Error on %s %s: %s", request.Method, request.URL.Path, err)`
Initial commit 5 years ago			`writer.WriteHeader(400)`
			`return`
			`}`

			`err = it.manager.UpdateCertificate(req.Certificate)`
			`if err != nil {`
			`writer.WriteHeader(500)`
			`return`
			`}`

			`it.manager.openVPN.Start()`
			`})`

			`http.HandleFunc("/update-openvpn-config", func(writer http.ResponseWriter, request *http.Request) {`
Add minimal logging 5 years ago			`log.Printf("%s /update-openvpn-config", strings.ToUpper(request.Method))`
Interface fuckery 5 years ago			`req := &UpdateOpenVPNConfigRequest{`
			`BaseMessage: &BaseMessage{""},`
			`}`
Initial commit 5 years ago			`err := it.verifyRequest(request, req)`
			`if err != nil {`
Add more logging 5 years ago			`log.Printf("Error on %s %s: %s", request.Method, request.URL.Path, err)`
Initial commit 5 years ago			`writer.WriteHeader(400)`
			`return`
			`}`

			`err = it.manager.openVPN.UpdateConfig(req.Config)`
			`if err != nil {`
			`writer.WriteHeader(500)`
			`return`
			`}`

			`it.manager.openVPN.Restart()`
			`})`

			`http.ListenAndServe(":7864", nil)`
			`}`

Interface fuckery 5 years ago			`func (it *HttpServer) writeResponse(writer http.ResponseWriter, v Message) error {`
Fix crypto 5 years ago			`return EncryptAndSign(v, it.manager.privateKey, it.manager.CAPublicKey(), it.manager.GetServerFingerprint(), writer)`
Initial commit 5 years ago			`}`

Interface fuckery 5 years ago			`func (it HttpServer) verifyRequest(r http.Request, v Message) (error) {`
bugs... 5 years ago			`hexBody, err := ioutil.ReadAll(r.Body)`
Initial commit 5 years ago			`if err != nil {`
			`return err`
			`}`

Fix crypto 5 years ago			`return DecryptAndVerify(hexBody, it.manager.privateKey, it.manager.CAPublicKey(), it.manager.GetServerFingerprint(), v)`
Initial commit 5 years ago			`}`