banquise/pelican-panel-mirror
3
0
Fork 1
mirror of https://github.com/pelican-dev/panel.git synced 2025-05-20 00:34:44 +02:00
Code Issues Packages Projects Releases Wiki Activity

replace encrypt/ decrypt with encrypted casting

Browse Source
This commit is contained in:
Boy132 2024-05-28 15:24:20 +02:00
parent 15caac51fb
commit 82fd547484
40 changed files with 45 additions and 79 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/Extensions/DynamicDatabaseConnection.php
View File

@ -25,7 +25,7 @@ class DynamicDatabaseConnection
'port' => $host->port, 'port' => $host->port,
'database' => $database, 'database' => $database,
'username' => $host->username, 'username' => $host->username,
'password' => decrypt($host->password), 'password' => $host->password,
'charset' => self::DB_CHARSET, 'charset' => self::DB_CHARSET,
'collation' => self::DB_COLLATION, 'collation' => self::DB_COLLATION,
]); ]);

2
app/Filament/Resources/ApiKeyResource/Pages/CreateApiKey.php
View File

@ -19,7 +19,7 @@ class CreateApiKey extends CreateRecord
return $form return $form
->schema([ ->schema([
Forms\Components\Hidden::make('identifier')->default(ApiKey::generateTokenIdentifier(ApiKey::TYPE_APPLICATION)), Forms\Components\Hidden::make('identifier')->default(ApiKey::generateTokenIdentifier(ApiKey::TYPE_APPLICATION)),
Forms\Components\Hidden::make('token')->default(encrypt(str_random(ApiKey::KEY_LENGTH))), Forms\Components\Hidden::make('token')->default(str_random(ApiKey::KEY_LENGTH)),
Forms\Components\Hidden::make('user_id') Forms\Components\Hidden::make('user_id')
->default(auth()->user()->id) ->default(auth()->user()->id)

2
app/Filament/Resources/ApiKeyResource/Pages/ListApiKeys.php
View File

@ -28,7 +28,7 @@ class ListApiKeys extends ListRecords
Tables\Columns\TextColumn::make('key') Tables\Columns\TextColumn::make('key')
->copyable() ->copyable()
->icon('tabler-clipboard-text') ->icon('tabler-clipboard-text')
->state(fn (ApiKey $key) => $key->identifier . decrypt($key->token)), ->state(fn (ApiKey $key) => $key->identifier . $key->token),
Tables\Columns\TextColumn::make('memo') Tables\Columns\TextColumn::make('memo')
->label('Description') ->label('Description')

9
app/Filament/Resources/DatabaseHostResource/Pages/CreateDatabaseHost.php
View File

@ -74,15 +74,6 @@ class CreateDatabaseHost extends CreateRecord
]); ]);
} }
protected function mutateFormDataBeforeCreate(array $data): array
{
if (isset($data['password'])) {
$data['password'] = encrypt($data['password']);
}
return $data;
}
protected function getHeaderActions(): array protected function getHeaderActions(): array
{ {
return [ return [

9
app/Filament/Resources/DatabaseHostResource/Pages/EditDatabaseHost.php
View File

@ -76,15 +76,6 @@ class EditDatabaseHost extends EditRecord
]; ];
} }
protected function mutateFormDataBeforeSave(array $data): array
{
if (isset($data['password'])) {
$data['password'] = encrypt($data['password']);
}
return $data;
}
protected function getFormActions(): array protected function getFormActions(): array
{ {
return []; return [];

4
app/Filament/Resources/DatabaseHostResource/RelationManagers/DatabasesRelationManager.php
View File

@ -28,13 +28,13 @@ class DatabasesRelationManager extends RelationManager
->requiresConfirmation() ->requiresConfirmation()
->action(fn (DatabasePasswordService $service, Database $database, $set, $get) => $this->rotatePassword($service, $database, $set, $get)) ->action(fn (DatabasePasswordService $service, Database $database, $set, $get) => $this->rotatePassword($service, $database, $set, $get))
) )
->formatStateUsing(fn (Database $database) => decrypt($database->password)), ->formatStateUsing(fn (Database $database) => $database->password),
Forms\Components\TextInput::make('remote')->label('Connections From'), Forms\Components\TextInput::make('remote')->label('Connections From'),
Forms\Components\TextInput::make('max_connections'), Forms\Components\TextInput::make('max_connections'),
Forms\Components\TextInput::make('JDBC') Forms\Components\TextInput::make('JDBC')
->label('JDBC Connection String') ->label('JDBC Connection String')
->columnSpanFull() ->columnSpanFull()
->formatStateUsing(fn (Forms\Get $get, Database $database) => 'jdbc:mysql://' . $get('username') . ':' . urlencode(decrypt($database->password)) . '@' . $database->host->host . ':' . $database->host->port . '/' . $get('database')), ->formatStateUsing(fn (Forms\Get $get, Database $database) => 'jdbc:mysql://' . $get('username') . ':' . urlencode($database->password) . '@' . $database->host->host . ':' . $database->host->port . '/' . $get('database')),
]); ]);
} }
public function table(Table $table): Table public function table(Table $table): Table

2
app/Http/Controllers/Admin/NodeAutoDeployController.php
View File

@ -56,7 +56,7 @@ class NodeAutoDeployController extends Controller
return new JsonResponse([ return new JsonResponse([
'node' => $node->id, 'node' => $node->id,
'token' => $key->identifier . decrypt($key->token), 'token' => $key->identifier . $key->token,
]); ]);
} }
} }

4
app/Http/Controllers/Auth/LoginCheckpointController.php
View File

@ -65,9 +65,7 @@ class LoginCheckpointController extends AbstractLoginController
return $this->sendLoginResponse($user, $request); return $this->sendLoginResponse($user, $request);
} }
} else { } else {
$decrypted = decrypt($user->totp_secret); if ($this->google2FA->verifyKey($user->totp_secret, (string) $request->input('authentication_code'), config('panel.auth.2fa.window'))) {
if ($this->google2FA->verifyKey($decrypted, (string) $request->input('authentication_code'), config('panel.auth.2fa.window'))) {
Event::dispatch(new ProvidedAuthenticationToken($user)); Event::dispatch(new ProvidedAuthenticationToken($user));
return $this->sendLoginResponse($user, $request); return $this->sendLoginResponse($user, $request);

2
app/Http/Middleware/Api/Daemon/DaemonAuthenticate.php
View File

@ -41,7 +41,7 @@ class DaemonAuthenticate
/** @var Node $node */ /** @var Node $node */
$node = Node::query()->where('daemon_token_id', $parts[0])->firstOrFail(); $node = Node::query()->where('daemon_token_id', $parts[0])->firstOrFail();
if (hash_equals((string) decrypt($node->daemon_token), $parts[1])) { if (hash_equals((string) $node->daemon_token, $parts[1])) {
$request->attributes->set('node', $node); $request->attributes->set('node', $node);
return $next($request); return $next($request);

3
app/Models/ApiKey.php
View File

@ -149,6 +149,7 @@ class ApiKey extends Model
'user_id' => 'int', 'user_id' => 'int',
'last_used_at' => 'datetime', 'last_used_at' => 'datetime',
'expires_at' => 'datetime', 'expires_at' => 'datetime',
'token' => 'encrypted',
self::CREATED_AT => 'datetime', self::CREATED_AT => 'datetime',
self::UPDATED_AT => 'datetime', self::UPDATED_AT => 'datetime',
'r_' . AdminAcl::RESOURCE_USERS => 'int', 'r_' . AdminAcl::RESOURCE_USERS => 'int',
@ -188,7 +189,7 @@ class ApiKey extends Model
$identifier = substr($token, 0, self::IDENTIFIER_LENGTH); $identifier = substr($token, 0, self::IDENTIFIER_LENGTH);
$model = static::where('identifier', $identifier)->first(); $model = static::where('identifier', $identifier)->first();
if (!is_null($model) && decrypt($model->token) === substr($token, strlen($identifier))) { if (!is_null($model) && $model->token === substr($token, strlen($identifier))) {
return $model; return $model;
} }

1
app/Models/Database.php
View File

@ -64,6 +64,7 @@ class Database extends Model
'server_id' => 'integer', 'server_id' => 'integer',
'database_host_id' => 'integer', 'database_host_id' => 'integer',
'max_connections' => 'integer', 'max_connections' => 'integer',
'password' => 'encrypted'
]; ];
} }

1
app/Models/DatabaseHost.php
View File

@ -60,6 +60,7 @@ class DatabaseHost extends Model
'id' => 'integer', 'id' => 'integer',
'max_databases' => 'integer', 'max_databases' => 'integer',
'node_id' => 'integer', 'node_id' => 'integer',
'password' => 'encrypted',
'created_at' => 'immutable_datetime', 'created_at' => 'immutable_datetime',
'updated_at' => 'immutable_datetime', 'updated_at' => 'immutable_datetime',
]; ];

15
app/Models/Node.php
View File

@ -127,6 +127,7 @@ class Node extends Model
'cpu' => 'integer', 'cpu' => 'integer',
'daemon_listen' => 'integer', 'daemon_listen' => 'integer',
'daemon_sftp' => 'integer', 'daemon_sftp' => 'integer',
'daemon_token' => 'encrypted',
'behind_proxy' => 'boolean', 'behind_proxy' => 'boolean',
'public' => 'boolean', 'public' => 'boolean',
'maintenance_mode' => 'boolean', 'maintenance_mode' => 'boolean',
@ -143,7 +144,7 @@ class Node extends Model
{ {
static::creating(function (self $node) { static::creating(function (self $node) {
$node->uuid = Str::uuid(); $node->uuid = Str::uuid();
$node->daemon_token = encrypt(Str::random(self::DAEMON_TOKEN_LENGTH)); $node->daemon_token = Str::random(self::DAEMON_TOKEN_LENGTH);
$node->daemon_token_id = Str::random(self::DAEMON_TOKEN_ID_LENGTH); $node->daemon_token_id = Str::random(self::DAEMON_TOKEN_ID_LENGTH);
return true; return true;
@ -171,7 +172,7 @@ class Node extends Model
'debug' => false, 'debug' => false,
'uuid' => $this->uuid, 'uuid' => $this->uuid,
'token_id' => $this->daemon_token_id, 'token_id' => $this->daemon_token_id,
'token' => decrypt($this->daemon_token), 'token' => $this->daemon_token,
'api' => [ 'api' => [
'host' => '0.0.0.0', 'host' => '0.0.0.0',
'port' => $this->daemon_listen, 'port' => $this->daemon_listen,
@ -209,16 +210,6 @@ class Node extends Model
return json_encode($this->getConfiguration(), $pretty ? JSON_UNESCAPED_SLASHES | JSON_PRETTY_PRINT : JSON_UNESCAPED_SLASHES); return json_encode($this->getConfiguration(), $pretty ? JSON_UNESCAPED_SLASHES | JSON_PRETTY_PRINT : JSON_UNESCAPED_SLASHES);
} }
/**
* Helper function to return the decrypted key for a node.
*/
public function getDecryptedKey(): string
{
return (string) decrypt(
$this->daemon_token
);
}
public function isUnderMaintenance(): bool public function isUnderMaintenance(): bool
{ {
return $this->maintenance_mode; return $this->maintenance_mode;

2
app/Models/Traits/HasAccessTokens.php
View File

@ -31,7 +31,7 @@ trait HasAccessTokens
'user_id' => $this->id, 'user_id' => $this->id,
'key_type' => ApiKey::TYPE_ACCOUNT, 'key_type' => ApiKey::TYPE_ACCOUNT,
'identifier' => ApiKey::generateTokenIdentifier(ApiKey::TYPE_ACCOUNT), 'identifier' => ApiKey::generateTokenIdentifier(ApiKey::TYPE_ACCOUNT),
'token' => encrypt($plain = Str::random(ApiKey::KEY_LENGTH)), 'token' => $plain = Str::random(ApiKey::KEY_LENGTH),
'memo' => $memo ?? '', 'memo' => $memo ?? '',
'allowed_ips' => $ips ?? [], 'allowed_ips' => $ips ?? [],
]); ]);

1
app/Models/User.php
View File

@ -171,6 +171,7 @@ class User extends Model implements AuthenticatableContract, AuthorizableContrac
'use_totp' => 'boolean', 'use_totp' => 'boolean',
'gravatar' => 'boolean', 'gravatar' => 'boolean',
'totp_authenticated_at' => 'datetime', 'totp_authenticated_at' => 'datetime',
'totp_secret' => 'encrypted',
]; ];
} }

2
app/Providers/AppServiceProvider.php
View File

@ -60,7 +60,7 @@ class AppServiceProvider extends ServiceProvider
'daemon', 'daemon',
fn (Node $node, array $headers = []) => Http::acceptJson() fn (Node $node, array $headers = []) => Http::acceptJson()
->asJson() ->asJson()
->withToken($node->getDecryptedKey()) ->withToken($node->daemon_token)
->withHeaders($headers) ->withHeaders($headers)
->withOptions(['verify' => (bool) app()->environment('production')]) ->withOptions(['verify' => (bool) app()->environment('production')])
->timeout(config('panel.guzzle.timeout')) ->timeout(config('panel.guzzle.timeout'))

2
app/Services/Api/KeyCreationService.php
View File

@ -31,7 +31,7 @@ class KeyCreationService
$data = array_merge($data, [ $data = array_merge($data, [
'key_type' => $this->keyType, 'key_type' => $this->keyType,
'identifier' => ApiKey::generateTokenIdentifier($this->keyType), 'identifier' => ApiKey::generateTokenIdentifier($this->keyType),
'token' => encrypt(str_random(ApiKey::KEY_LENGTH)), 'token' => str_random(ApiKey::KEY_LENGTH),
]); ]);
if ($this->keyType === ApiKey::TYPE_APPLICATION) { if ($this->keyType === ApiKey::TYPE_APPLICATION) {

6
app/Services/Databases/DatabaseManagementService.php
View File

@ -86,9 +86,7 @@ class DatabaseManagementService
$data = array_merge($data, [ $data = array_merge($data, [
'server_id' => $server->id, 'server_id' => $server->id,
'username' => sprintf('u%d_%s', $server->id, str_random(10)), 'username' => sprintf('u%d_%s', $server->id, str_random(10)),
'password' => encrypt( 'password' => Utilities::randomStringWithSpecialCharacters(24),
Utilities::randomStringWithSpecialCharacters(24)
),
]); ]);
return $this->connection->transaction(function () use ($data, &$database) { return $this->connection->transaction(function () use ($data, &$database) {
@ -100,7 +98,7 @@ class DatabaseManagementService
$database->createUser( $database->createUser(
$database->username, $database->username,
$database->remote, $database->remote,
decrypt($database->password), $database->password,
$database->max_connections $database->max_connections
); );
$database->assignUserToDatabase($database->database, $database->username, $database->remote); $database->assignUserToDatabase($database->database, $database->username, $database->remote);

2
app/Services/Databases/DatabasePasswordService.php
View File

@ -33,7 +33,7 @@ class DatabasePasswordService
$this->dynamic->set('dynamic', $database->database_host_id); $this->dynamic->set('dynamic', $database->database_host_id);
$database->update([ $database->update([
'password' => encrypt($password), 'password' => $password,
]); ]);
$database->dropUser($database->username, $database->remote); $database->dropUser($database->username, $database->remote);

2
app/Services/Databases/Hosts/HostCreationService.php
View File

@ -28,7 +28,7 @@ class HostCreationService
{ {
return $this->connection->transaction(function () use ($data) { return $this->connection->transaction(function () use ($data) {
$host = DatabaseHost::query()->create([ $host = DatabaseHost::query()->create([
'password' => encrypt(array_get($data, 'password')), 'password' => array_get($data, 'password'),
'name' => array_get($data, 'name'), 'name' => array_get($data, 'name'),
'host' => array_get($data, 'host'), 'host' => array_get($data, 'host'),
'port' => array_get($data, 'port'), 'port' => array_get($data, 'port'),

4
app/Services/Databases/Hosts/HostUpdateService.php
View File

@ -26,9 +26,7 @@ class HostUpdateService
*/ */
public function handle(int $hostId, array $data): DatabaseHost public function handle(int $hostId, array $data): DatabaseHost
{ {
if (!empty(array_get($data, 'password'))) { if (empty(array_get($data, 'password'))) {
$data['password'] = encrypt($data['password']);
} else {
unset($data['password']); unset($data['password']);
} }

2
app/Services/Nodes/NodeCreationService.php
View File

@ -16,7 +16,7 @@ class NodeCreationService
public function handle(array $data): Node public function handle(array $data): Node
{ {
$data['uuid'] = Uuid::uuid4()->toString(); $data['uuid'] = Uuid::uuid4()->toString();
$data['daemon_token'] = encrypt(Str::random(Node::DAEMON_TOKEN_LENGTH)); $data['daemon_token'] = Str::random(Node::DAEMON_TOKEN_LENGTH);
$data['daemon_token_id'] = Str::random(Node::DAEMON_TOKEN_ID_LENGTH); $data['daemon_token_id'] = Str::random(Node::DAEMON_TOKEN_ID_LENGTH);
return Node::query()->create($data); return Node::query()->create($data);

2
app/Services/Nodes/NodeJWTService.php
View File

@ -63,7 +63,7 @@ class NodeJWTService
public function handle(Node $node, ?string $identifiedBy, string $algo = 'md5'): Plain public function handle(Node $node, ?string $identifiedBy, string $algo = 'md5'): Plain
{ {
$identifier = hash($algo, $identifiedBy); $identifier = hash($algo, $identifiedBy);
$config = Configuration::forSymmetricSigner(new Sha256(), InMemory::plainText($node->getDecryptedKey())); $config = Configuration::forSymmetricSigner(new Sha256(), InMemory::plainText($node->daemon_token));
$builder = $config->builder(new TimestampDates()) $builder = $config->builder(new TimestampDates())
->issuedBy(config('app.url')) ->issuedBy(config('app.url'))

2
app/Services/Nodes/NodeUpdateService.php
View File

@ -28,7 +28,7 @@ class NodeUpdateService
public function handle(Node $node, array $data, bool $resetToken = false): Node public function handle(Node $node, array $data, bool $resetToken = false): Node
{ {
if ($resetToken) { if ($resetToken) {
$data['daemon_token'] = encrypt(Str::random(Node::DAEMON_TOKEN_LENGTH)); $data['daemon_token'] = Str::random(Node::DAEMON_TOKEN_LENGTH);
$data['daemon_token_id'] = Str::random(Node::DAEMON_TOKEN_ID_LENGTH); $data['daemon_token_id'] = Str::random(Node::DAEMON_TOKEN_ID_LENGTH);
} }

4
app/Services/Users/ToggleTwoFactorService.php
View File

@ -32,9 +32,7 @@ class ToggleTwoFactorService
*/ */
public function handle(User $user, string $token, bool $toggleState = null): array public function handle(User $user, string $token, bool $toggleState = null): array
{ {
$secret = decrypt($user->totp_secret); $isValidToken = $this->google2FA->verifyKey($user->totp_secret, $token, config()->get('panel.auth.2fa.window'));
$isValidToken = $this->google2FA->verifyKey($secret, $token, config()->get('panel.auth.2fa.window'));
if (!$isValidToken) { if (!$isValidToken) {
throw new TwoFactorAuthenticationTokenInvalid(); throw new TwoFactorAuthenticationTokenInvalid();

2
app/Services/Users/TwoFactorSetupService.php
View File

@ -26,7 +26,7 @@ class TwoFactorSetupService
throw new \RuntimeException($exception->getMessage(), 0, $exception); throw new \RuntimeException($exception->getMessage(), 0, $exception);
} }
$user->totp_secret = encrypt($secret); $user->totp_secret = $secret;
$user->save(); $user->save();
$company = urlencode(preg_replace('/\s/', '', config('app.name'))); $company = urlencode(preg_replace('/\s/', '', config('app.name')));

2
app/Transformers/Api/Application/ServerDatabaseTransformer.php
View File

@ -45,7 +45,7 @@ class ServerDatabaseTransformer extends BaseTransformer
{ {
return $this->item($model, function (Database $model) { return $this->item($model, function (Database $model) {
return [ return [
'password' => decrypt($model->password), 'password' => $model->password,
]; ];
}, 'database_password'); }, 'database_password');
} }

2
app/Transformers/Api/Client/DatabaseTransformer.php
View File

@ -55,7 +55,7 @@ class DatabaseTransformer extends BaseClientTransformer
return $this->item($database, function (Database $model) { return $this->item($database, function (Database $model) {
return [ return [
'password' => decrypt($model->password), 'password' => $model->password,
]; ];
}, 'database_password'); }, 'database_password');
} }

2
database/Factories/ApiKeyFactory.php
View File

@ -26,7 +26,7 @@ class ApiKeyFactory extends Factory
return [ return [
'key_type' => ApiKey::TYPE_APPLICATION, 'key_type' => ApiKey::TYPE_APPLICATION,
'identifier' => ApiKey::generateTokenIdentifier(ApiKey::TYPE_APPLICATION), 'identifier' => ApiKey::generateTokenIdentifier(ApiKey::TYPE_APPLICATION),
'token' => $token ?: $token = encrypt(Str::random(ApiKey::KEY_LENGTH)), 'token' => $token ?: $token = Str::random(ApiKey::KEY_LENGTH),
'allowed_ips' => null, 'allowed_ips' => null,
'memo' => 'Test Function Key', 'memo' => 'Test Function Key',
'created_at' => Carbon::now(), 'created_at' => Carbon::now(),

2
database/Factories/DatabaseFactory.php
View File

@ -27,7 +27,7 @@ class DatabaseFactory extends Factory
'database' => Str::random(10), 'database' => Str::random(10),
'username' => Str::random(10), 'username' => Str::random(10),
'remote' => '%', 'remote' => '%',
'password' => $password ?: encrypt('test123'), 'password' => $password ?: 'test123',
'created_at' => Carbon::now(), 'created_at' => Carbon::now(),
'updated_at' => Carbon::now(), 'updated_at' => Carbon::now(),
]; ];

3
database/Factories/DatabaseHostFactory.php
View File

@ -3,7 +3,6 @@
namespace Database\Factories; namespace Database\Factories;
use App\Models\DatabaseHost; use App\Models\DatabaseHost;
use Illuminate\Support\Facades\Crypt;
use Illuminate\Database\Eloquent\Factories\Factory; use Illuminate\Database\Eloquent\Factories\Factory;
class DatabaseHostFactory extends Factory class DatabaseHostFactory extends Factory
@ -25,7 +24,7 @@ class DatabaseHostFactory extends Factory
'host' => $this->faker->unique()->ipv4(), 'host' => $this->faker->unique()->ipv4(),
'port' => 3306, 'port' => 3306,
'username' => $this->faker->colorName(), 'username' => $this->faker->colorName(),
'password' => Crypt::encrypt($this->faker->word()), 'password' => $this->faker->word(),
]; ];
} }
} }

3
database/Factories/NodeFactory.php
View File

@ -5,7 +5,6 @@ namespace Database\Factories;
use Ramsey\Uuid\Uuid; use Ramsey\Uuid\Uuid;
use Illuminate\Support\Str; use Illuminate\Support\Str;
use App\Models\Node; use App\Models\Node;
use Illuminate\Support\Facades\Crypt;
use Illuminate\Database\Eloquent\Factories\Factory; use Illuminate\Database\Eloquent\Factories\Factory;
class NodeFactory extends Factory class NodeFactory extends Factory
@ -37,7 +36,7 @@ class NodeFactory extends Factory
'cpu_overallocate' => 0, 'cpu_overallocate' => 0,
'upload_size' => 100, 'upload_size' => 100,
'daemon_token_id' => Str::random(Node::DAEMON_TOKEN_ID_LENGTH), 'daemon_token_id' => Str::random(Node::DAEMON_TOKEN_ID_LENGTH),
'daemon_token' => Crypt::encrypt(Str::random(Node::DAEMON_TOKEN_LENGTH)), 'daemon_token' => Str::random(Node::DAEMON_TOKEN_LENGTH),
'daemon_listen' => 8080, 'daemon_listen' => 8080,
'daemon_sftp' => 2022, 'daemon_sftp' => 2022,
'daemon_base' => '/var/lib/panel/volumes', 'daemon_base' => '/var/lib/panel/volumes',

2
resources/views/admin/api/index.blade.php
View File

@ -33,7 +33,7 @@
</tr> </tr>
@foreach($keys as $key) @foreach($keys as $key)
<tr> <tr>
<td><code>{{ $key->identifier }}{{ decrypt($key->token) }}</code></td> <td><code>{{ $key->identifier }}{{ $key->token }}</code></td>
<td>{{ $key->memo }}</td> <td>{{ $key->memo }}</td>
<td> <td>
@if(!is_null($key->last_used_at)) @if(!is_null($key->last_used_at))

2
resources/views/admin/nodes/index.blade.php
View File

@ -49,7 +49,7 @@
</tr> </tr>
@foreach ($nodes as $node) @foreach ($nodes as $node)
<tr> <tr>
<td class="text-center text-muted left-icon" data-action="ping" data-secret="{{ $node->getDecryptedKey() }}" data-location="{{ $node->scheme }}://{{ $node->fqdn }}:{{ $node->daemon_listen }}/api/system"><i class="fa fa-fw fa-refresh fa-spin"></i></td> <td class="text-center text-muted left-icon" data-action="ping" data-secret="{{ $node->daemon_token }}" data-location="{{ $node->scheme }}://{{ $node->fqdn }}:{{ $node->daemon_listen }}/api/system"><i class="fa fa-fw fa-refresh fa-spin"></i></td>
<td>{!! $node->maintenance_mode ? '<span class="label label-warning"><i class="fa fa-wrench"></i></span> ' : '' !!}<a href="{{ route('admin.nodes.view', $node->id) }}">{{ $node->name }}</a></td> <td>{!! $node->maintenance_mode ? '<span class="label label-warning"><i class="fa fa-wrench"></i></span> ' : '' !!}<a href="{{ route('admin.nodes.view', $node->id) }}">{{ $node->name }}</a></td>
<td>{{ $node->memory }} MiB</td> <td>{{ $node->memory }} MiB</td>
<td>{{ $node->disk }} MiB</td> <td>{{ $node->disk }} MiB</td>

4
tests/Integration/Api/Application/ApplicationApiIntegrationTestCase.php
View File

@ -37,7 +37,7 @@ abstract class ApplicationApiIntegrationTestCase extends IntegrationTestCase
$this $this
->withHeader('Accept', 'application/vnd.panel.v1+json') ->withHeader('Accept', 'application/vnd.panel.v1+json')
->withHeader('Authorization', 'Bearer ' . $this->key->identifier . decrypt($this->key->token)); ->withHeader('Authorization', 'Bearer ' . $this->key->identifier . $this->key->token);
} }
public function getApiUser(): User public function getApiUser(): User
@ -57,7 +57,7 @@ abstract class ApplicationApiIntegrationTestCase extends IntegrationTestCase
{ {
$this->key = $this->createApiKey($user, $permissions); $this->key = $this->createApiKey($user, $permissions);
$this->withHeader('Authorization', 'Bearer ' . $this->key->identifier . decrypt($this->key->token)); $this->withHeader('Authorization', 'Bearer ' . $this->key->identifier . $this->key->token);
return $this->key; return $this->key;
} }

2
tests/Integration/Api/Client/ApiKeyControllerTest.php
View File

@ -71,7 +71,7 @@ class ApiKeyControllerTest extends ClientApiIntegrationTestCase
$key = ApiKey::query()->where('identifier', $response->json('attributes.identifier'))->firstOrFail(); $key = ApiKey::query()->where('identifier', $response->json('attributes.identifier'))->firstOrFail();
$this->assertJsonTransformedWith($response->json('attributes'), $key); $this->assertJsonTransformedWith($response->json('attributes'), $key);
$response->assertJsonPath('meta.secret_token', decrypt($key->token)); $response->assertJsonPath('meta.secret_token', $key->token);
$this->assertActivityFor('user:api-key.create', $user, [$key, $user]); $this->assertActivityFor('user:api-key.create', $user, [$key, $user]);
} }

4
tests/Integration/Api/Client/Server/WebsocketControllerTest.php
View File

@ -62,7 +62,7 @@ class WebsocketControllerTest extends ClientApiIntegrationTestCase
$this->assertStringStartsWith('wss://', $connection, 'Failed asserting that websocket connection address has expected "wss://" prefix.'); $this->assertStringStartsWith('wss://', $connection, 'Failed asserting that websocket connection address has expected "wss://" prefix.');
$this->assertStringEndsWith("/api/servers/$server->uuid/ws", $connection, 'Failed asserting that websocket connection address uses expected Daemon endpoint.'); $this->assertStringEndsWith("/api/servers/$server->uuid/ws", $connection, 'Failed asserting that websocket connection address uses expected Daemon endpoint.');
$config = Configuration::forSymmetricSigner(new Sha256(), $key = InMemory::plainText($server->node->getDecryptedKey())); $config = Configuration::forSymmetricSigner(new Sha256(), $key = InMemory::plainText($server->node->daemon_token));
$config->setValidationConstraints(new SignedWith(new Sha256(), $key)); $config->setValidationConstraints(new SignedWith(new Sha256(), $key));
/** @var \Lcobucci\JWT\Token\Plain $token */ /** @var \Lcobucci\JWT\Token\Plain $token */
$token = $config->parser()->parse($response->json('data.token')); $token = $config->parser()->parse($response->json('data.token'));
@ -107,7 +107,7 @@ class WebsocketControllerTest extends ClientApiIntegrationTestCase
$response->assertOk(); $response->assertOk();
$response->assertJsonStructure(['data' => ['token', 'socket']]); $response->assertJsonStructure(['data' => ['token', 'socket']]);
$config = Configuration::forSymmetricSigner(new Sha256(), $key = InMemory::plainText($server->node->getDecryptedKey())); $config = Configuration::forSymmetricSigner(new Sha256(), $key = InMemory::plainText($server->node->daemon_token));
$config->setValidationConstraints(new SignedWith(new Sha256(), $key)); $config->setValidationConstraints(new SignedWith(new Sha256(), $key));
/** @var \Lcobucci\JWT\Token\Plain $token */ /** @var \Lcobucci\JWT\Token\Plain $token */
$token = $config->parser()->parse($response->json('data.token')); $token = $config->parser()->parse($response->json('data.token'));

3
tests/Integration/Api/Client/TwoFactorControllerTest.php
View File

@ -85,8 +85,7 @@ class TwoFactorControllerTest extends ClientApiIntegrationTestCase
/** @var \PragmaRX\Google2FA\Google2FA $service */ /** @var \PragmaRX\Google2FA\Google2FA $service */
$service = $this->app->make(Google2FA::class); $service = $this->app->make(Google2FA::class);
$secret = decrypt($user->totp_secret); $token = $service->getCurrentOtp($user->totp_secret);
$token = $service->getCurrentOtp($secret);
$response = $this->actingAs($user)->postJson('/api/client/account/two-factor', [ $response = $this->actingAs($user)->postJson('/api/client/account/two-factor', [
'code' => $token, 'code' => $token,

2
tests/Integration/Api/Daemon/DaemonAuthenticateTest.php
View File

@ -94,7 +94,7 @@ class DaemonAuthenticateTest extends MiddlewareTestCase
public function testSuccessfulMiddlewareProcess(): void public function testSuccessfulMiddlewareProcess(): void
{ {
$node = Node::factory()->create(); $node = Node::factory()->create();
$node->daemon_token = encrypt('the_same'); $node->daemon_token = 'the_same';
$node->save(); $node->save();
$this->request->expects('route->getName')->withNoArgs()->andReturn('random.route'); $this->request->expects('route->getName')->withNoArgs()->andReturn('random.route');

2
tests/Integration/Api/Remote/SftpAuthenticationControllerTest.php
View File

@ -229,6 +229,6 @@ class SftpAuthenticationControllerTest extends IntegrationTestCase
{ {
$node = $node ?? $this->server->node; $node = $node ?? $this->server->node;
$this->withHeader('Authorization', 'Bearer ' . $node->daemon_token_id . '.' . decrypt($node->daemon_token)); $this->withHeader('Authorization', 'Bearer ' . $node->daemon_token_id . '.' . $node->daemon_token);
} }
} }