节点注册
23 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 138 | 139 | -------------------------------------------------------------------------------- /blueprints/forms.py: -------------------------------------------------------------------------------- 1 | import sqlite3 2 | import wtforms 3 | from flask import session 4 | from flask_login import current_user 5 | from werkzeug.security import check_password_hash 6 | from wtforms.validators import length, DataRequired, Regexp, Length, EqualTo, Email 7 | from exts import SqliteDB 8 | from models import User 9 | 10 | 11 | class RegisterForm(wtforms.Form): 12 | username = wtforms.StringField( 13 | validators=[ 14 | DataRequired(message='用户名不能为空'), 15 | Length(min=3, max=20, message='用户名长度需在3 - 20位之间'), 16 | Regexp( 17 | regex=r'^[a-zA-Z][a-zA-Z0-9]*$', 18 | message='用户名必须以字母开头,且只能包含字母和数字' 19 | ) 20 | ] 21 | ) 22 | password = wtforms.StringField(validators=[DataRequired(),Length(min=3,max=20,message='密码格式错误')]) 23 | confirmPassword = wtforms.StringField(validators=[EqualTo('password',message='密码输入不一致')]) 24 | phone = wtforms.StringField(validators=[DataRequired(),length(11, 11),Regexp(r'(13[0-9]|14[01456879]|15[0-35-9]|16[2567]|17[0-8]|18[0-9]|19[0-35-9])\d{8}', 0, '手机号码不合法')]) 25 | email = wtforms.StringField(validators=[Email(message='请输入有效的电子邮件地址')]) 26 | vercode = wtforms.StringField(validators=[Length(min=4, max=4, message='验证码格式错误')]) 27 | captcha_uuid = wtforms.StringField(validators=[Length(min=36, max=36, message='UUID错误')]) 28 | 29 | 30 | 31 | 32 | def validate_vercode(self,field): 33 | code = session['code'] 34 | if code != field.data: 35 | raise wtforms.ValidationError("验证码错误!") 36 | 37 | 38 | def validate_password(self,field): 39 | if ' ' in field.data: 40 | raise wtforms.ValidationError('密码不能包含空格') 41 | 42 | 43 | def validate_username(self,field): 44 | if ' ' in field.data: 45 | raise wtforms.ValidationError('用户名不能包含空格') 46 | else: 47 | with SqliteDB() as cursor: 48 | cursor.execute("SELECT name FROM users WHERE name =?", (field.data,)) 49 | cursor.row_factory = sqlite3.Row 50 | user_name = cursor.fetchone() 51 | if user_name: 52 | raise wtforms.ValidationError(f"{user_name['name']} 用户已注册!") 53 | 54 | 55 | def validate_email(self,field): 56 | with SqliteDB() as cursor: 57 | cursor.row_factory = sqlite3.Row 58 | cursor.execute("SELECT email FROM users WHERE email =?", (field.data,)) 59 | email = cursor.fetchone() 60 | if email: 61 | raise wtforms.ValidationError(f"{email['email']} 邮箱已被注册!") 62 | 63 | 64 | 65 | class LoginForm(wtforms.Form): 66 | username = wtforms.StringField(validators=[DataRequired(),Length(min=3,max=20,message='用户名格式错误')]) 67 | password = wtforms.StringField(validators=[DataRequired(),Length(min=3,max=20,message='密码格式错误')]) 68 | vercode = wtforms.StringField(validators=[Length(min=4, max=4, message='验证码格式错误')]) 69 | captcha_uuid = wtforms.StringField(validators=[Length(min=36, max=36, message='UUID错误')]) 70 | 71 | 72 | #user = None # 用于存储查询到的用户对象 73 | def validate_vercode(self, field): 74 | code = session['code'] 75 | if code != field.data: 76 | raise wtforms.ValidationError("验证码错误!") 77 | 78 | 79 | def validate_username(self, field): 80 | try: 81 | with SqliteDB() as cursor: 82 | query = """ 83 | SELECT id, name, created_at, updated_at,email, password,expire, cellphone, role, node, route, enable 84 | FROM users 85 | WHERE name =? 86 | """ 87 | cursor.execute(query, (field.data,)) 88 | user_data = cursor.fetchone() 89 | if user_data: 90 | user = User(*user_data) 91 | self.user = user 92 | input_password = self.password.data 93 | if check_password_hash(user.password, input_password): 94 | if user.enable == 0: 95 | raise wtforms.ValidationError("用户已被禁用!") 96 | else: 97 | raise wtforms.ValidationError("密码错误!") 98 | else: 99 | raise wtforms.ValidationError("用户不存在!") 100 | return True 101 | except sqlite3.Error as e: 102 | print(f"查询失败: {e}") 103 | return False 104 | 105 | 106 | 107 | 108 | class PasswdForm(wtforms.Form): 109 | password = wtforms.StringField(validators=[DataRequired(),Length(min=3,max=20,message='密码格式错误')]) 110 | new_password = wtforms.StringField(validators=[DataRequired(),Length(min=3,max=20,message='密码格式错误')]) 111 | confirmPassword = wtforms.StringField(validators=[EqualTo('new_password', message='密码输入不一致')]) 112 | 113 | def validate_password(self,field): 114 | if not (check_password_hash(current_user.password, field.data)): 115 | raise wtforms.ValidationError("当前密码输入错误!") -------------------------------------------------------------------------------- /templates/auth/login.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 |异地组网
23 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 151 | 152 | -------------------------------------------------------------------------------- /templates/admin/preauthkey.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 |
18 |
45 |
46 |
47 |
162 |
163 |
164 |
--------------------------------------------------------------------------------
/templates/admin/deploy.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
19 |
44 |
20 |
43 |
21 |
42 | 预共享密钥中心
22 |
23 |
24 |
25 |
31 |
32 |
33 |
34 |
38 |
39 |
40 |
41 |
13 |
76 |
77 |
78 |
79 |
171 |
172 |
173 |
174 |
--------------------------------------------------------------------------------
/templates/admin/acl.html:
--------------------------------------------------------------------------------
1 | {% raw %}
2 |
3 |
4 |
5 |
6 |
14 |
75 |
15 |
74 |
16 |
73 | 指令中心
17 |
18 |
19 |
20 |
21 |
22 | 71 |
72 | 22 | 71 |
18 |
39 |
40 |
41 |
183 |
184 |
185 |
186 | {% endraw %}
--------------------------------------------------------------------------------
/blueprints/user.py:
--------------------------------------------------------------------------------
1 | from flask_login import current_user, login_required
2 | from exts import SqliteDB
3 | from login_setup import role_required
4 | from flask import Blueprint, request
5 | from utils import res, table_res
6 |
7 | bp = Blueprint("user", __name__, url_prefix='/api/user')
8 |
9 |
10 | @bp.route('/getUsers')
11 | @login_required
12 | @role_required("manager")
13 | def getUsers():
14 | # 获取分页参数,默认第1页,每页10条
15 | page = request.args.get('page', default=1, type=int)
16 | per_page = request.args.get('limit', default=10, type=int)
17 |
18 | with SqliteDB() as cursor:
19 | # 查询总记录数和当前页用户数据
20 | query = """
21 | SELECT COUNT(*) OVER() as total_count, id, name,
22 | strftime('%Y-%m-%d %H:%M:%S', created_at) as created_at,
23 | cellphone,
24 | strftime('%Y-%m-%d %H:%M:%S', expire) as expire, role, node, route, enable ,email
25 | FROM users
26 | LIMIT? OFFSET?
27 | """
28 | cursor.execute(query, (per_page, (page - 1) * per_page))
29 | rows = cursor.fetchall()
30 |
31 | total_count = rows[0]['total_count'] if rows else 0
32 |
33 | # 创建用户字典列表
34 | users_list = [
35 | {
36 | 'id': row['id'],
37 | 'userName': row['name'],
38 | 'createTime': str(row['created_at']),
39 | 'cellphone': row['cellphone'],
40 | 'expire': str(row['expire']),
41 | 'role': row['role'],
42 | 'node': row['node'],
43 | 'route': row['route'],
44 | 'enable': row['enable'],
45 | 'email': row['email']
46 | }
47 | for row in rows
48 | ]
49 |
50 | return table_res('0', '获取成功', users_list, total_count, len(users_list))
51 |
52 |
53 | @bp.route('/re_expire',methods=['GET','POST'])
54 | @login_required
55 | @role_required("manager")
56 | def re_expire():
57 |
58 | user_id = request.form.get('user_id')
59 | new_expire = request.form.get('new_expire')
60 |
61 | with SqliteDB() as cursor:
62 | # 更新用户的过期时间
63 | update_query = "UPDATE users SET expire =? WHERE id =?;"
64 | cursor.execute(update_query, (new_expire, user_id))
65 |
66 | return res('0', '更新成功','')
67 |
68 |
69 | @bp.route('/re_node',methods=['GET','POST'])
70 | @login_required
71 | @role_required("manager")
72 | def re_node():
73 | user_id = request.form.get('user_id')
74 | new_node = request.form.get('new_node')
75 |
76 | with SqliteDB() as cursor:
77 | # 更新用户的节点信息
78 | update_query = "UPDATE users SET node =? WHERE id =?;"
79 | cursor.execute(update_query, (new_node, user_id))
80 |
81 | return res('0', '更新成功')
82 |
83 |
84 | @bp.route('/user_enable',methods=['GET','POST'])
85 | @login_required
86 | @role_required("manager")
87 | def user_enable():
88 | user_id = request.form.get('user_id')
89 | enable = request.form.get('enable')
90 |
91 | with SqliteDB() as cursor:
92 | # 查询用户
93 | query = "SELECT * FROM users WHERE id =?;"
94 | cursor.execute(query, (user_id,))
95 | user = cursor.fetchone()
96 |
97 | if enable == "true":
98 | update_query = "UPDATE users SET enable = 1 WHERE id =?;"
99 | msg = '启用成功'
100 | else:
101 | if user['name'] == 'admin':
102 | return res('1', '停用失败,无法停用admin用户')
103 | update_query = "UPDATE users SET enable = 0 WHERE id =?;"
104 | msg = '停用成功'
105 |
106 | cursor.execute(update_query, (user_id,))
107 |
108 | return res('0', msg)
109 |
110 |
111 | @bp.route('/route_enable',methods=['GET','POST'])
112 | @login_required
113 | @role_required("manager")
114 | def route_enable():
115 | user_id = request.form.get('user_id')
116 | enable = request.form.get('enable')
117 |
118 | with SqliteDB() as cursor:
119 | if enable == "true":
120 | update_query = "UPDATE users SET route = 1 WHERE id =?;"
121 | msg = '启用成功'
122 | else:
123 | update_query = "UPDATE users SET route = 0 WHERE id =?;"
124 | msg = '停用成功'
125 | cursor.execute(update_query, (user_id,))
126 |
127 | return res('0', msg)
128 |
129 |
130 | @bp.route('/delUser',methods=['GET','POST'])
131 | @login_required
132 | @role_required("manager")
133 | def delUser():
134 | user_id = request.form.get('user_id')
135 |
136 | with SqliteDB() as cursor:
137 | # 删除用户
138 | delete_query = "DELETE FROM users WHERE id =?;"
139 | cursor.execute(delete_query, (user_id,))
140 |
141 | return res('0', '删除成功')
142 |
143 |
144 | @bp.route('/init_data',methods=['GET'])
145 | @login_required
146 | def init_data():
147 | with SqliteDB() as cursor:
148 | # 查询当前用户的创建时间和过期时间
149 | current_user_id = current_user.id # 假设 current_user 有 id 属性
150 | user_query = """
151 | SELECT
152 | strftime('%Y-%m-%d %H:%M:%S', created_at) as created_at,
153 | strftime('%Y-%m-%d %H:%M:%S', expire) as expire
154 | FROM users WHERE id =?
155 | """
156 | cursor.execute(user_query, (current_user_id,))
157 | user_info = cursor.fetchone()
158 |
159 |
160 | created_at = str(user_info['created_at'])
161 | expire = str(user_info['expire'])
162 |
163 | # 查询节点数量
164 | node_count = cursor.execute("SELECT COUNT(*) as count FROM nodes").fetchone()[0]
165 | # 查询路由数量
166 | route_count = cursor.execute("SELECT COUNT(*) as count FROM nodes where approved_routes IS NOT NULL").fetchone()[0]
167 |
168 |
169 | data = {
170 | "created_at": created_at,
171 | "expire": expire,
172 | "node_count": node_count,
173 | "route_count": route_count
174 | }
175 |
176 | return res('0', '查询成功', data)
177 |
178 |
--------------------------------------------------------------------------------
/blueprints/admin.py:
--------------------------------------------------------------------------------
1 | from flask_login import login_required, current_user
2 | from login_setup import role_required
3 | from flask import Blueprint, render_template, current_app, request, json
4 | from utils import get_server_net, get_headscale_pid, get_headscale_version
5 |
6 |
7 |
8 | bp = Blueprint("admin", __name__, url_prefix='/admin')
9 |
10 |
11 |
12 |
13 | @bp.route('/')
14 | @login_required
15 | def admin():
16 | # 定义每个菜单项及其对应的可访问角色
17 |
18 | menu_items = {
19 | 'console': {'html': '
19 |
38 |
20 |
37 |
21 |
36 | 访问控制中心
22 |
23 |
24 |
25 |
32 |
33 |
34 |
35 | 新增用户:{c}" 103 | }, 104 | xAxis : [{ //X轴 105 | type : 'category', 106 | data : ['11-07', '11-08', '11-09', '11-10', '11-11', '11-12', '11-13'] 107 | }], 108 | yAxis : [{ //Y轴 109 | type : 'value' 110 | }], 111 | series : [{ //内容 112 | type: 'line', 113 | data:[200, 300, 400, 610, 150, 270, 380], 114 | }] 115 | } 116 | ] 117 | ,elemDataView = $('#LAY-index-dataview').children('div') 118 | ,renderDataView = function(index){ 119 | echartsApp[index] = echarts.init(elemDataView[index], layui.echartsTheme); 120 | echartsApp[index].setOption(options[index]); 121 | // window.onresize = echartsApp[index].resize; 122 | admin.resize(function(){ 123 | echartsApp[index].resize(); 124 | }); 125 | }; 126 | 127 | 128 | 129 | //没找到DOM,终止执行 130 | if(!elemDataView[0]) return; 131 | 132 | 133 | 134 | //renderDataView(0); 135 | 136 | //触发数据概览轮播 137 | var carouselIndex = 0; 138 | carousel.on('change(LAY-index-dataview)', function(obj){ 139 | renderDataView(carouselIndex = obj.index); 140 | }); 141 | 142 | //触发侧边伸缩 143 | layui.admin.on('side', function(){ 144 | setTimeout(function(){ 145 | renderDataView(carouselIndex); 146 | }, 300); 147 | }); 148 | 149 | //触发路由 150 | layui.admin.on('hash(tab)', function(){ 151 | layui.router().path.join('') || renderDataView(carouselIndex); 152 | }); 153 | 154 | 155 | 156 | function generateLast24Hours() { 157 | let result = []; 158 | for (let i = 23; i >= 0; i--) { 159 | let date = new Date(); 160 | date.setHours(date.getHours() - i); 161 | result.push(date.getHours()); 162 | } 163 | return result; 164 | } 165 | 166 | 167 | 168 | function reloadData(){ 169 | // 添加 jQuery 的 ajax 请求来获取新数据并更新今日流量趋势的数据 170 | $.ajax({ 171 | url:'/api/system/data_usage', 172 | type: 'get', 173 | dataType: 'json', 174 | success: function(res) { 175 | options[0].series[0].data = Object.values(res.sent); // 更新 sent 数据 176 | options[0].series[1].data = Object.values(res.recv); // 更新 recv 数据 177 | options[0].xAxis[0].data = Object.values(generateLast24Hours()); // 更新 recv 数据 178 | 179 | renderDataView(0); // 重新渲染图表 180 | }, 181 | error: function(error) { 182 | console.error('获取数据出错:', error); 183 | } 184 | }); 185 | } 186 | //加载数据 187 | reloadData() 188 | 189 | 190 | }); 191 | 192 | 193 | //最新订单 194 | layui.use('table', function(){ 195 | var $ = layui.$ 196 | ,table = layui.table; 197 | 198 | 199 | layui.use(['table', 'jquery', 'layer'], function(){ 200 | var table = layui.table; 201 | var $ = layui.jquery; 202 | 203 | // 今日热贴 - 前端分页实现 204 | // 1. 手动发起AJAX请求,获取全部数据 205 | $.get('/api/node/topNodes', function(res) { 206 | // 2. 检查数据是否获取成功 207 | if (res && res.code === '0' && res.data && res.data.length > 0) { 208 | // 3. 渲染表格,直接将获取到的数据传给 data 参数 209 | table.render({ 210 | elem: '#LAY-index-topCard', 211 | data: res.data, // 核心:使用已获取的完整数据 212 | page: true, // 开启分页 213 | limit: 10, // 每页显示10条 214 | limits: [10, 20, 30, 50], // 可选的每页数量 215 | cellMinWidth: 120, 216 | cols: [[ 217 | {type: 'numbers', fixed: 'left'}, 218 | {field: 'name', title: '用户名', minWidth: 200, sort: true}, 219 | {field: 'online', title: '在线节点', sort: true}, 220 | {field: 'nodes', title: '累计节点', sort: true}, 221 | {field: 'routes', title: '路由数量', sort: true} 222 | ]], 223 | skin: 'line', 224 | // 注意:这里不需要 url 参数了 225 | }); 226 | } else { 227 | // 数据为空或请求失败 228 | table.render({ 229 | elem: '#LAY-index-topCard', 230 | data: [], 231 | page: false, 232 | cols: [[ 233 | {type: 'numbers', fixed: 'left'}, 234 | {field: 'name', title: '用户名', minWidth: 200}, 235 | {field: 'online', title: '在线节点'}, 236 | {field: 'nodes', title: '累计节点'}, 237 | {field: 'routes', title: '路由数量'} 238 | ]], 239 | skin: 'line' 240 | }); 241 | // layer.msg(res.msg || '暂无数据', {icon: 7}); 242 | } 243 | }).fail(function() { 244 | layer.msg('网络错误,无法获取数据', {icon: 5}); 245 | }); 246 | }); 247 | 248 | 249 | 250 | }); 251 | 252 | 253 | 254 | 255 | exports('console', {}) 256 | }); -------------------------------------------------------------------------------- /templates/admin/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 |
17 |
149 |
150 |
151 |
156 |
157 |
158 |
159 |
160 |
161 |
162 |
163 |
--------------------------------------------------------------------------------
/templates/auth/reg.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
18 |
148 |
19 |
20 |
40 |
90 |
91 |
92 |
112 |
113 |
114 | -
41 |
42 |
43 |
48 |
53 |
58 |
-
59 |
62 |
63 |
64 | {# {{ user.name }}#}
65 |
66 |
67 |
68 | {% if current_user.is_authenticated %}
69 | Hi {{ current_user.name }}!
70 | {% endif %}
71 |
72 |
73 |
74 |
80 |
81 |
82 |
85 |
88 |
115 |
116 |
117 |
130 |
136 |
137 |
138 |
139 |
131 |
135 | -
132 |
- 133 |
140 |
144 |
145 |
146 |
147 |
141 |
142 |
143 |
22 |
24 |
108 |
109 |
110 |
111 |
198 |
199 |
200 |
--------------------------------------------------------------------------------
/templates/admin/set.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | 账户注册
23 |
15 |
118 |
119 |
120 |
121 |
122 |
123 |
124 |
125 |
126 |
210 |
211 |
212 |
213 |
--------------------------------------------------------------------------------
/blueprints/auth.py:
--------------------------------------------------------------------------------
1 | from datetime import datetime, timedelta
2 | import json
3 | from utils import record_log, reload_headscale, to_rewrite_acl, to_request
4 | from flask_login import login_user, logout_user, current_user, login_required
5 | from flask import Blueprint, render_template, request, session, redirect, url_for, current_app, json
6 | from exts import SqliteDB
7 | from utils import res
8 | from .forms import RegisterForm, LoginForm, PasswdForm
9 | from werkzeug.security import generate_password_hash
10 | from .get_captcha import get_captcha_code_and_content
11 |
12 |
13 |
14 |
15 | bp = Blueprint("auth", __name__, url_prefix='/')
16 |
17 |
18 |
19 |
20 | @bp.route('/')
21 | def index():
22 | return render_template('index.html')
23 |
24 |
25 | @bp.route('/get_captcha')
26 | def get_captcha():
27 |
28 | code,content = get_captcha_code_and_content()
29 | session['code'] = code
30 | return content
31 |
32 | def register_node(registrationID):
33 | url_path = f'/api/v1/node/register?user={current_user.name}&key={registrationID}'
34 |
35 | with SqliteDB() as cursor:
36 | # 查询当前用户的节点数量
37 | query = "SELECT COUNT(*) as count FROM nodes WHERE user_id =?;"
38 | cursor.execute(query, (current_user.id,))
39 | result = cursor.fetchone()
40 | node_count = result['count'] if result else 0
41 |
42 | # 查询当前用户允许的节点数
43 | user_query = "SELECT node FROM users WHERE id =?;"
44 | cursor.execute(user_query, (current_user.id,))
45 | user_result = cursor.fetchone()
46 | user_node_limit = user_result['node'] if user_result else 0
47 |
48 | if int(node_count) >= int(user_node_limit):
49 | return res('2', '超过此用户节点限制', '')
50 | else:
51 |
52 | result_post = to_request('POST',url_path)
53 | if result_post['code'] == '0':
54 | record_log(current_user.id,"节点添加成功")
55 | return res('0', '节点添加成功', result_post['data'])
56 | else:
57 | return res(result_post['code'], result_post['msg'])
58 |
59 | @bp.route('/register/
16 |
103 |
104 |
105 |
17 |
102 | 系统设置
18 |
19 |
20 |
101 |
21 |
22 |
23 |
100 |
24 |
25 |
26 |
35 |
36 |
37 |
27 |
28 |
29 |
30 |
31 |
32 | apikey是与headscale通信的凭证
33 |
34 |
38 |
39 |
45 |
46 |
47 |
40 |
41 |
42 |
43 | headscale对外提供服务的URL
44 |
48 |
49 |
54 |
55 |
50 |
51 |
52 | 新用户注册默认到期天数,0代表默认禁用
53 |
56 |
57 |
62 |
63 |
58 |
59 |
60 | 新用户注册默认节点数量限制
61 |
64 |
65 |
71 |
72 |
66 |
68 |
69 | 关闭
是否允许新用户注册
70 |
73 |
74 |
75 | {# #}
76 |
88 |
89 |
90 |
91 |
92 |
93 |
94 |
77 |
83 |
84 |
85 |
86 | 流量统计使用
87 |
95 |
99 |
96 |
97 |
98 |
106 |
115 |
116 |
117 |
107 |
114 | headscale 进程管理
108 |
109 |
113 |
110 |
111 |
112 | 关闭
当前服务器已关闭对外注册
' 102 | if request.method == 'GET': 103 | # 如果用户已经登录,重定向到 admin 页面 104 | if current_user.is_authenticated: 105 | return redirect(url_for('admin.admin')) 106 | else: 107 | return render_template('auth/reg.html') 108 | else: 109 | 110 | form = RegisterForm(request.form) 111 | if form.validate(): 112 | username = form.username.data 113 | password = generate_password_hash(form.password.data) 114 | phone_number = form.phone.data 115 | email = form.email.data 116 | default_reg_days = current_app.config['DEFAULT_REG_DAYS'] 117 | 118 | create_time = datetime.now() 119 | 120 | 121 | if (username == "admin"): 122 | role = "manager" 123 | expire = create_time + timedelta(1000) 124 | else: 125 | role = "user" 126 | expire = create_time + timedelta(days=int(default_reg_days)) # 新用户注册默认?天后到期 127 | 128 | default_reg_days = 1 if default_reg_days != 0 else default_reg_days # 若用户注册默认天数不为0,代表该用户启用 129 | 130 | 131 | # headscale用户注册请求参数构建 132 | json_data = { 133 | "name": username, 134 | "displayName": username, 135 | "email": email, 136 | "pictureUrl": "NULL" 137 | } 138 | 139 | result_reg = to_request('POST','/api/v1/user',data = json_data) # 直接使用数据库创建用户会出现ACL失效,所有使用api创建 140 | 141 | if result_reg['code'] == '0': 142 | try: 143 | user_id = json.loads(result_reg['data'])['user']['id'] # 获取 user_id 144 | except Exception as e: 145 | print(f"发生错误: {e}") 146 | return res('1','注册失败',result_reg['data']) 147 | else: 148 | return res('1', result_reg['msg']) 149 | 150 | 151 | with SqliteDB() as cursor: 152 | update_query = """ 153 | UPDATE users 154 | SET password = ?,created_at = ?,updated_at = ?,expire = ?,role = ?,cellphone = ?,node = ?,route = ?,enable = ? 155 | WHERE name = ? 156 | """ 157 | values = ( 158 | password, create_time, create_time, expire, role, phone_number, current_app.config['DEFAULT_NODE_COUNT'], '0', 159 | default_reg_days, username 160 | ) 161 | cursor.execute(update_query, values) 162 | 163 | # 初始化用户ACL规则 164 | init_acl = f'{{"action": "accept","src": ["{username}@"],"dst": ["{username}@:*"]}}' 165 | insert_query = "INSERT INTO acl (acl, user_id) VALUES (?,?);" 166 | cursor.execute(insert_query, (init_acl, user_id)) 167 | 168 | # 用户初始化 169 | to_rewrite_acl() 170 | reload_headscale() 171 | 172 | return res('0','注册成功','') 173 | 174 | else: 175 | # return form.errors 176 | first_key = next(iter(form.errors.keys())) 177 | first_value = form.errors[first_key] 178 | return res('1', str(first_value[0]),'') 179 | 180 | 181 | @bp.route('/login', methods=['GET','POST']) 182 | def login(): 183 | 184 | if request.method == 'GET': 185 | # 如果用户已经登录,重定向到 admin 页面 186 | if current_user.is_authenticated: 187 | return redirect(url_for('admin.admin')) 188 | else: 189 | return render_template('auth/login.html') 190 | else: 191 | form = LoginForm(request.form) 192 | 193 | if form.validate(): 194 | user = form.user # 获取表单中查询到的用户对象 195 | login_user(user) 196 | res_code,res_msg,res_data = '0', '登录成功','' 197 | 198 | record_log(user.id,"登录成功") 199 | 200 | else: 201 | # return form.errors 202 | first_key = next(iter(form.errors.keys())) 203 | first_value = form.errors[first_key] 204 | res_code,res_msg,res_data ='1',str(first_value[0]),'' 205 | return res(res_code,res_msg,res_data) 206 | # 207 | # 208 | # 209 | 210 | @bp.route('/logout', methods=['POST']) 211 | @login_required 212 | def logout(): 213 | # session.clear() 214 | logout_user() 215 | res_code,res_msg,res_data = '0', 'logout success','' 216 | return res(res_code,res_msg,res_data) 217 | 218 | 219 | @bp.route('/password', methods=['GET','POST']) 220 | @login_required 221 | def password(): 222 | form = PasswdForm(request.form) 223 | if form.validate(): 224 | new_password = form.new_password.data 225 | with SqliteDB() as cursor: 226 | hashed_password = generate_password_hash(new_password) 227 | # 更新用户密码 228 | update_query = "UPDATE users SET password =? WHERE id =?;" 229 | cursor.execute(update_query, (hashed_password, current_user.id)) 230 | res_code, res_msg, res_data = '0', '修改成功', '' 231 | logout_user() 232 | else: 233 | first_key = next(iter(form.errors.keys())) 234 | first_value = form.errors[first_key] 235 | res_code, res_msg, res_data = '1', str(first_value[0]), '' 236 | 237 | return res(res_code, res_msg, res_data) 238 | 239 | 240 | 241 | @bp.route('/error') 242 | @login_required 243 | def error(): 244 | return render_template('auth/error.html') 245 | 246 | -------------------------------------------------------------------------------- /blueprints/node.py: -------------------------------------------------------------------------------- 1 | import datetime 2 | import json 3 | import requests 4 | from flask_login import current_user, login_required 5 | from blueprints.auth import register_node 6 | from exts import SqliteDB 7 | from login_setup import role_required 8 | from flask import Blueprint, request 9 | from utils import res, table_res, to_request 10 | 11 | bp = Blueprint("node", __name__, url_prefix='/api/node') 12 | 13 | 14 | @bp.route('/register', methods=['GET','POST']) 15 | @login_required 16 | def register(): 17 | nodekey = request.form.get('nodekey') 18 | register_node_response = register_node(nodekey) 19 | 20 | print(register_node_response) 21 | if register_node_response['code'] == '0': 22 | try: 23 | # 获取 ipAddresses 的值 24 | ip_address = json.loads(register_node_response['data'])["node"]["ipAddresses"][0] 25 | code,msg,data = '0',ip_address,'' 26 | except Exception as e: 27 | print(f"发生错误: {e}") 28 | headscale_error_msg = json.loads(register_node_response['data']).get('message') 29 | code, msg, data = '1', headscale_error_msg, '' 30 | else: 31 | error_msg = register_node_response['msg'] 32 | code, msg, data = '1', error_msg, '' 33 | return res(code,msg,data) 34 | 35 | 36 | 37 | 38 | @bp.route('/getNodes') 39 | @login_required 40 | def getNodes(): 41 | search_name= request.args.get('search_name',default='') 42 | print(search_name) 43 | 44 | if current_user.name == 'admin': 45 | if search_name != "": 46 | user_name = search_name 47 | else: 48 | user_name = "" 49 | else: 50 | user_name = current_user.name 51 | 52 | 53 | 54 | 55 | url = f'/api/v1/node?user={user_name}' 56 | response = to_request('GET', url) 57 | 58 | if response['code'] == '0': 59 | # 解析返回的节点数据 60 | data = json.loads(response['data']) 61 | nodes = data.get('nodes', []) 62 | total_count = len(nodes) 63 | 64 | # 数据格式化 65 | nodes_list = [] 66 | for node in nodes: 67 | nodes_list.append({ 68 | 'id': node['id'], 69 | 'userName': node['user']['name'], # 从user对象中获取用户名 70 | 'name': node['givenName'], 71 | 'ip': ', '.join(node['ipAddresses']), # 拼接IPv4和IPv6地址 72 | 'lastTime': node['lastSeen'], 73 | 'createTime': node['createdAt'], 74 | 'OS': '', # 原数据中未包含host_info,暂时留空 75 | 'Client': '', # 原数据中未包含IPNVersion,暂时留空 76 | 'online': node['online'], 77 | 'approvedRoutes': ', '.join(node['approvedRoutes']), 78 | 'availableRoutes': ', '.join(node['availableRoutes']) 79 | }) 80 | 81 | return table_res('0', '获取成功', nodes_list, total_count, len(nodes_list)) 82 | else: 83 | return res(response['code'], response['msg']) 84 | 85 | 86 | 87 | 88 | @bp.route('/topNodes') 89 | @login_required 90 | @role_required("manager") 91 | def topNodes(): 92 | url = f'/api/v1/node' 93 | response = to_request('GET', url) 94 | 95 | if response['code'] == '0': 96 | # 解析返回的节点数据 97 | data = json.loads(response['data']) 98 | nodes = data.get('nodes', []) 99 | 100 | # 使用字典来按用户名分组统计 101 | # 字典的键是用户名,值是一个包含统计信息的字典 102 | user_stats = {} 103 | 104 | for node in nodes: 105 | # 安全地获取用户名,如果用户信息不存在则使用'未知用户' 106 | user_name = node.get('user', {}).get('name', '未知用户') 107 | 108 | # 如果该用户是第一次出现,则初始化其统计信息 109 | if user_name not in user_stats: 110 | user_stats[user_name] = { 111 | 'name': user_name, 112 | 'online': 0, 113 | 'nodes': 0, 114 | 'routes': 0 115 | } 116 | 117 | # 更新该用户的统计数据 118 | user_stats[user_name]['nodes'] += 1 # 累计节点数加1 119 | 120 | # 如果节点在线,在线节点数加1 121 | if node.get('online', False): 122 | user_stats[user_name]['online'] += 1 123 | 124 | # 累加该节点的路由数量 125 | # 路由列表可能不存在,所以要做安全检查 126 | approved_routes = node.get('approvedRoutes', []) 127 | user_stats[user_name]['routes'] += len(approved_routes) 128 | 129 | # 将字典的值(统计信息)转换为列表,以便前端表格展示 130 | # 并按累计节点数降序排序 131 | result_list = sorted(user_stats.values(), key=lambda x: x['nodes'], reverse=True) 132 | 133 | # 计算总节点数,用于表格分页等功能 134 | total_nodes_count = len(nodes) 135 | 136 | # 返回数据给前端 137 | return table_res('0', '获取成功', result_list, total_nodes_count, len(result_list)) 138 | else: 139 | return res(response['code'], response['msg']) 140 | 141 | 142 | @bp.route('/delete', methods=['POST']) 143 | @login_required 144 | def delete(): 145 | node_id = request.form.get('NodeId') 146 | 147 | url = f'/api/v1/node/{node_id}' 148 | 149 | with SqliteDB() as cursor: 150 | user_id = cursor.execute("SELECT user_id FROM nodes WHERE id =? ", (node_id,)).fetchone()[0] 151 | if user_id == current_user.id or current_user.role == 'manager': 152 | response = to_request('DELETE', url) 153 | if response['code'] == '0': 154 | return res('0', '删除成功', response['data']) 155 | else: 156 | return res(response['code'], response['msg']) 157 | else: 158 | return res('1', '非法请求') 159 | 160 | 161 | 162 | 163 | @bp.route('/new_owner', methods=['GET','POST']) 164 | @login_required 165 | @role_required("manager") 166 | def new_owner(): 167 | 168 | node_id = request.form.get('nodeId') 169 | user_name = request.form.get('userName') 170 | 171 | url = f'/api/v1/node/{node_id}/user' # 替换为实际的目标 URL 172 | 173 | data = {"user": user_name} 174 | 175 | with SqliteDB() as cursor: 176 | user_id = cursor.execute("SELECT user_id FROM nodes WHERE id =? ", (node_id,)).fetchone()[0] 177 | if user_id == current_user.id or current_user.role == 'manager': 178 | response = to_request('POST', url, data) 179 | if response['code'] == '0': 180 | return res('0', '更新成功', response['data']) 181 | else: 182 | return res(response['code'], response['msg']) 183 | else: 184 | return res('1', '非法请求') 185 | 186 | 187 | 188 | 189 | @bp.route('/rename', methods=['POST']) 190 | @login_required 191 | def rename(): 192 | 193 | node_id = request.form.get('nodeId') 194 | node_name = request.form.get('nodeName') 195 | 196 | url = f'/api/v1/node/{node_id}/rename/{node_name}' # 替换为实际的目标 URL 197 | 198 | with SqliteDB() as cursor: 199 | user_id = cursor.execute("SELECT user_id FROM nodes WHERE id =? ",(node_id,)).fetchone()[0] 200 | if user_id == current_user.id or current_user.role == 'manager': 201 | response = to_request('POST',url) 202 | if response['code'] == '0': 203 | return res('0', '更新成功', response['data']) 204 | else: 205 | return res(response['code'], response['msg']) 206 | else: 207 | return res('1', '非法请求') 208 | 209 | @bp.route('/node_info', methods=['GET', 'POST']) 210 | @login_required 211 | def node_info(): 212 | """ 213 | 通过节点ID从本地SQLite数据库获取节点详细信息 214 | (使用封装的 SqliteDB,并严格参考 getNodes 函数中的字段) 215 | """ 216 | # 1. 获取请求中的 NodeId 217 | node_id = request.args.get('NodeId') or request.form.get('NodeId') 218 | 219 | if not node_id: 220 | return res("1", "缺少参数: NodeId", []) 221 | 222 | try: 223 | node_id = int(node_id) 224 | except ValueError: 225 | return res("1", "NodeId 必须是整数", []) 226 | 227 | # 2. 构建查询SQL语句和参数 228 | # 严格参考 getNodes 函数中的字段 229 | base_query = """ 230 | SELECT 231 | nodes.host_info 232 | FROM 233 | nodes 234 | JOIN 235 | users ON nodes.user_id = users.id 236 | """ 237 | 238 | conditions = [] 239 | params = [] 240 | 241 | # 根据角色添加用户ID过滤 242 | if current_user.role != 'manager': 243 | conditions.append("nodes.user_id = ?") 244 | params.append(current_user.id) 245 | 246 | # 添加节点ID过滤 247 | conditions.append("nodes.id = ?") 248 | params.append(node_id) 249 | 250 | # 拼接 WHERE 子句 251 | if conditions: 252 | base_query += " WHERE " + " AND ".join(conditions) 253 | 254 | # 3. 使用封装的 SqliteDB 执行查询 255 | with SqliteDB() as cursor: 256 | cursor.execute(base_query, params) 257 | node = cursor.fetchone() 258 | 259 | # 4. 检查查询结果 260 | if not node: 261 | return res("1", f"未找到ID为 {node_id} 的节点,或您没有权限查看。", []) 262 | 263 | # 5. 数据格式化 264 | # 这里的格式化逻辑也参考了 getNodes 函数 265 | host_info = json.loads(node['host_info']) if node['host_info'] else {} 266 | 267 | formatted_item = { 268 | "OS": (host_info.get("OS") or "") + (host_info.get("OSVersion") or ""), 269 | "Client": host_info.get("IPNVersion") or "", 270 | # 你可以根据需要,从 host_info 中提取更多字段 271 | } 272 | 273 | # 6. 返回格式化后的结果 274 | return res("0", "获取成功", [formatted_item]) 275 | 276 | 277 | 278 | 279 | 280 | @bp.route('/node_route_info', methods=['GET', 'POST']) 281 | @login_required 282 | def node_route_info(): 283 | node_id = request.form.get('NodeId') 284 | url = f'/api/v1/node/{node_id}' 285 | 286 | response = to_request('GET', url) 287 | 288 | if response['code'] == '0': 289 | try: 290 | # 解析原始响应数据 291 | raw_data = json.loads(response['data']) 292 | node_data = raw_data['node'] # 提取node对象 293 | except (json.JSONDecodeError, KeyError) as e: 294 | return res("1", f"数据解析错误: {str(e)}", []) 295 | 296 | # 时间格式化:仅替换T为空格,去除Z 297 | def format_time(utc_time_str): 298 | if not utc_time_str: 299 | return "" 300 | return utc_time_str.replace('T', ' ').replace('Z', '') 301 | 302 | # 提取并保留一级路由字段(approvedRoutes和availableRoutes) 303 | formatted_item = { 304 | # 关键路由字段(一级主要字段,突出显示) 305 | "approvedRoutes": node_data.get('approvedRoutes', []), # 已批准路由 306 | "availableRoutes": node_data.get('availableRoutes', []), # 可用路由 307 | 308 | } 309 | 310 | data_list = [formatted_item] 311 | return res("0", "获取成功", data_list) 312 | 313 | else: 314 | return res("1", "请求失败", []) 315 | 316 | @bp.route('/approve_routes', methods=['GET','POST']) 317 | @login_required 318 | def approve_routes(): 319 | 320 | node_id = request.form.get('nodeId') 321 | routes = request.form.get('routes') 322 | 323 | url = f'/api/v1/node/' + str(node_id)+'/approve_routes' 324 | data = {"routes": [routes]} 325 | 326 | 327 | with SqliteDB() as cursor: 328 | route = cursor.execute("SELECT route FROM users WHERE id =? ",(current_user.id,)).fetchone()[0] 329 | 330 | 331 | if route == "0": 332 | return res('1', '你当前无此权限!请联系管理员') 333 | else: 334 | response = to_request('POST',url,data) 335 | 336 | if response['code'] == '0': 337 | return res('0', '提交成功', response['data']) 338 | else: 339 | return res(response['code'], response['msg']) 340 | 341 | 342 | 343 | -------------------------------------------------------------------------------- /templates/admin/user.html: -------------------------------------------------------------------------------- 1 | {% raw %} 2 | 3 | 4 | 5 | 6 | 7 |
18 |
95 |
96 |
97 |
344 |
345 |
346 |
347 |
348 |
349 | {% endraw %}
--------------------------------------------------------------------------------
/templates/admin/console.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
19 |
94 |
20 |
93 |
21 |
92 | 用户中心
22 |
23 |
24 |
25 |
39 |
40 |
41 |
42 |
43 |
44 |
49 |
50 |
54 |
55 |
59 |
60 |
61 |
62 |
63 |
88 |
89 |
90 |
91 |
14 |
246 |
247 |
248 |
334 |
335 |
336 |
337 |
--------------------------------------------------------------------------------
/templates/admin/node.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
15 |
245 |
16 |
167 |
168 |
169 |
170 |
17 |
166 |
18 |
88 |
19 |
87 | 快捷方式
20 |
21 |
22 |
86 |
23 |
84 |
85 |
24 |
83 | -
25 |
- 26 | 27 | 28 | 入门 29 | 30 | 31 | 32 |
- 33 | 34 | 35 | 用户 36 | 37 | 38 | 39 |
- 40 | 41 | 42 | 节点 43 | 44 | 45 |
- 46 | 47 | 48 | 路由 49 | 50 | 51 |
- 52 | 53 | 54 | 指令 55 | 56 | 57 | 58 |
- 59 | 60 | 61 | ACL 62 | 63 | 64 | 65 |
- 66 | 67 | 68 | 密钥 69 | 70 | 71 | 72 | 73 |
- 74 | 75 | 76 | 设置 77 | 78 | 79 | 80 |
89 |
128 |
90 |
127 | 数据统计
91 |
92 |
93 |
126 |
94 |
125 |
95 |
124 | -
96 |
-
97 |
98 |
节点数量
99 |0
100 | 101 |
102 | -
103 |
104 |
路由数量
105 |0
106 | 107 |
108 |
109 | -
110 |
111 |
累计上行
112 |0
113 | 114 |
115 | -
116 |
117 |
累计下行
118 |0
119 | 120 |
121 |
122 |
129 |
130 |
131 |
132 |
133 |
134 |
135 |
165 |
136 |
146 |
147 |
148 | 数据概览
137 |
138 |
139 |
145 |
140 |
144 |
141 |
143 |
142 |
149 |
162 |
163 |
164 |
150 |
161 | -
151 |
- 使用情况 152 | 153 |
155 |
160 |
156 |
157 |
158 |
159 |
171 |
243 |
244 |
172 |
205 |
206 |
207 |
208 | 账户信息
173 |
174 |
175 |
203 |
204 | | 注册时间 | 182 |183 | |
| 距离到期 | 186 |187 | 188 | | 189 |
| 项目地址 | 192 |193 | https://github.com/arounyf/Headscale-Admin-Pro 194 | | 195 |
| 公告中心 | 198 |欢迎使用Headscale-Admin-Pro | 199 |
209 |
222 |
223 |
224 |
225 | 进度占用
210 |
211 |
220 |
221 |
212 |
215 | CPU 使用率
213 | 214 |
216 |
219 | 内存占用率
217 | 218 |
226 |
237 |
238 |
239 |
240 |
241 |
242 | 产品动态
227 |
228 |
236 |
229 |
234 |
235 |
15 |
72 |
73 |
74 |
75 |
316 |
317 |
--------------------------------------------------------------------------------
16 |
71 |
17 |
70 |
18 |
69 | 节点中心
19 |
20 |
21 | {% if current_user.role == 'manager' %}
22 |
23 |
37 |
38 |
39 |
48 |
49 |
50 | {% raw %}
51 |
60 | {% endraw %}
61 |
62 |
63 |
67 |
68 |
24 |
32 | {% endif %}
33 |
34 |
35 |
36 |
25 |
26 |
27 |
28 |
31 |