alpha 0.81 - enforcing SSL

Author: mikeNickaloff

WPDaemon.pro

@@ -37,7 +37,8 @@ SOURCES += main.cpp \
     src_base/submodulecommand.cpp \
     src_base/commandparameter.cpp \
     src_base/website.cpp \
-    src_interfaces/websitecontroller.cpp
+    src_interfaces/websitecontroller.cpp \
+    src_interfaces/configcontroller.cpp
 
 HEADERS += \
     src_interfaces/clicontroller.h \
@@ -57,7 +58,8 @@ HEADERS += \
     src_base/submodulecommand.h \
     src_base/commandparameter.h \
     src_base/website.h \
-    src_interfaces/websitecontroller.h
+    src_interfaces/websitecontroller.h \
+    src_interfaces/configcontroller.h
 
 RESOURCES += \
     resources.qrc \

res_html/index.html

@@ -160,8 +160,8 @@ <h4><a class="w3-button" href="javascript: display_all_submodules()" ><span id="
 
 <div class="w3-card-2 w3-animate-left" id="parameter-container">
   <h5><a class="w3-button" href="javascript: display_all_commands()" ><span id="command_name">Feeds</span></a></h5>
-  <table class="w3-table w3-striped w3-white w3-animate-left" id="parameter_selector" >
-  <tr w3-repeat="parameters" class="w3-animate-left"><td><a href="javascript: set_command('{{name}}');" class="w3-label w3-padding"><i class="fa fa-angle-right"></i>&nbsp; {{name}}</a></td><td>{{html}}</tr>
+  <table class="w3-table w3-white w3-animate-left" id="parameter_selector" >
+  <tr w3-repeat="parameters" class="w3-animate-left"><td><i class="fa fa-angle-right"></i>&nbsp; {{name}}</td><td>{{html}}</tr>
 </table>
 </div>
     </div>

res_html/sockets.js

@@ -1,5 +1,5 @@
 'use strict'
-var wsUri = "ws://localhost:65300"
+var wsUri = "wss://localhost:65300"
 window.loggedin = false
 
 window.onload = function () {

res_python/simple_https_server.py

@@ -1,3 +1,5 @@
+#!/usr/bin/python
+
 #taken from http://www.piware.de/2011/01/creating-an-https-server-in-python/
 # generate certificates with the following command:
 #    export [email protected]
@@ -17,5 +19,5 @@
 
 os.chdir('../public')
 httpd = BaseHTTPServer.HTTPServer(('127.0.0.1', 65531), SimpleHTTPServer.SimpleHTTPRequestHandler)
-#httpd.socket = ssl.wrap_socket(httpd.socket, certfile='../fullchain.cert', keyfile='../fullchain.key', server_side=True, ssl_version=ssl.PROTOCOL_TLSv1_2)
+httpd.socket = ssl.wrap_socket(httpd.socket, certfile='../cert.pem', keyfile='../key.pem', server_side=True, ssl_version=ssl.PROTOCOL_TLSv1_2)
 httpd.serve_forever() 

src_base/commandparameter.cpp

@@ -35,6 +35,27 @@ QString CommandParameter::html()
     if (isOptional) {
         rv = QString("<input type='text' name='%1' class='w3-input w3-rest w3-border-blue'>").arg(parameterIndex);
     }
+    if (isSwitch) {
+        rv = QString("<input type='checkbox' name='%1' class='w3-checkbox w3-input w3-rest w3-large'>").arg(parameterIndex);
+    }
+    if (isLong) {
+        flagValue.remove("&");
+        flagValue.remove(">");
+        flagValue.remove("<");
+        flagValue.remove("--");
+        flagValue.remove("\"");
+        flagValue.remove("[");
+        flagValue.remove("]");
+        flagValue.remove("}");
+        flagValue.remove("{");
+        flagValue.remove("\\n");
+        flagValue.remove(" ");
+        flagValue.remove(QChar(QChar::LineFeed));
+        flagValue.remove(QChar(QChar::CarriageReturn));
+        flagValue.remove(QChar(QChar::LineSeparator));
+
+        rv = QString("<input type='text' name='%1' class=' w3-input w3-rest w3-large' placeholder='%2'>").arg(parameterIndex).arg(flagValue);
+    }
 
     return rv;
 
@@ -53,21 +74,34 @@ void CommandParameter::parse()
             optional << this->find_captures("(\\[\\[^\\>\\<]+\\]\\B)");
             if (optional.count() == 0) {
                  // qDebug() << "Switch" << m_string;
+
                 isSwitch = true;
+                flagProperty = m_string;
+                if (flagProperty.length() > 2) {
+                    flagProperty.remove(0, 3);
+                }
+
 
             } else {
                  // qDebug() << "optional" << optional.first();
                 isOptional = true;
                 m_string = optional.first();
+                flagProperty = "";
             }
         } else {
              // qDebug() << "requiured" << required.first();
             isRequired = true;
             m_string = required.first();
+            flagProperty = "";
         }
     } else {
          // qDebug() << "optional flag" << optionalFlags.first();
         m_string = optionalFlags.first();
+        flagProperty = m_string.split("=").first();
+         if (flagProperty.length() > 3) {
+             flagProperty.remove(0, 3);
+         }
+        flagValue = m_string.split("=").last();
         isLong = true;
     }
 

src_base/commandparameter.h

@@ -19,6 +19,8 @@ class CommandParameter : public QObject
     QStringList find_captures(QString regexString);
 
     QString html();
+    QString flagProperty;
+    QString flagValue;
 signals:
 
 public slots:

src_interfaces/clientinteraction.cpp

@@ -153,16 +153,41 @@ QVariant ClientInteraction::set_current_command(QString i_command)
                 param->m_string.remove("&");
                 param->m_string.remove(">");
                 param->m_string.remove("<");
+                param->m_string.remove("--");
                 param->m_string.remove("\"");
                 param->m_string.remove("[");
                 param->m_string.remove("]");
+                param->m_string.remove("}");
+                param->m_string.remove("{");
                 param->m_string.remove("\\n");
                 param->m_string.remove(QChar(QChar::LineFeed));
                 param->m_string.remove(QChar(QChar::CarriageReturn));
-
-                QString newStr = QString("{\"name\":\"%1\",\"type\":\"%2\",\"html\":\"%3\"}").arg(param->m_string).arg(paramType).arg(param->html());
-                rv.append(newStr);
-
+                param->m_string.remove(QChar(QChar::LineSeparator));
+                if ((param->isRequired) || (param->isOptional)) {
+                    QString newStr = QString("{\"name\":\"%1\",\"type\":\"%2\",\"html\":\"%3\"}").arg(param->m_string).arg(paramType).arg(param->html());
+                    rv.append(newStr);
+                }
+                if ((param->isSwitch) || (param->isLong)) {
+
+                    param->flagProperty.remove("&");
+                    param->flagProperty.remove(">");
+                    param->flagProperty.remove("<");
+                    param->flagProperty.remove("--");
+                    param->flagProperty.remove("\"");
+                    param->flagProperty.remove("[");
+                    param->flagProperty.remove("]");
+                    param->flagProperty.remove("}");
+                    param->flagProperty.remove("{");
+                    param->flagProperty.remove("\\n");
+                    param->flagProperty.remove(" ");
+                    param->flagProperty.remove(QChar(QChar::LineFeed));
+                    param->flagProperty.remove(QChar(QChar::CarriageReturn));
+                    param->flagProperty.remove(QChar(QChar::LineSeparator));
+
+
+                    QString newStr = QString("{\"name\":\"%1\",\"type\":\"%2\",\"html\":\"%3\"}").arg(param->flagProperty).arg(paramType).arg(param->html());
+                    rv.append(newStr);
+                }
                 if (i < (this->currentSubmodule->currentCommand->parameters.values().count() - 1)) {
                   rv.append(",");
                 }

src_interfaces/configcontroller.cpp

@@ -0,0 +1,18 @@
+#include "configcontroller.h"
+#include <QCoreApplication>
+#include <QSettings>
+#include <QDir>
+
+ConfigController::ConfigController(QObject *parent) : QObject(parent)
+{
+
+}
+
+QSettings* ConfigController::settings()
+{
+ QSettings* _settings = new QSettings(qApp->applicationDirPath().append(QDir::separator()).append("config").append(QDir::separator()).append("wpdaemon.conf"), QSettings::IniFormat);
+// _settings->setValue("enable_ssl", "true");
+// _settings->setValue("ssl_certificate_file", qApp->applicationDirPath().append(QDir::separator()).append("cert.pem"));
+// _settings->setValue("ssl_key_file", qApp->applicationDirPath().append(QDir::separator()).append("key.pem"));
+ return _settings;
+}

src_interfaces/configcontroller.h

@@ -0,0 +1,17 @@
+#ifndef CONFIGCONTROLLER_H
+#define CONFIGCONTROLLER_H
+
+#include <QObject>
+#include <QSettings>
+class ConfigController : public QObject
+{
+    Q_OBJECT
+public:
+    explicit ConfigController(QObject *parent = nullptr);
+    QSettings* settings();
+signals:
+
+public slots:
+};
+
+#endif // CONFIGCONTROLLER_H

src_interfaces/websocketcontroller.cpp

@@ -8,24 +8,33 @@
 #include "../src_websocket/websocketclient.h"
 #include "../src_interfaces/databasecontroller.h"
 #include "../src_interfaces/firewallcontroller.h"
+#include "../src_interfaces/configcontroller.h"
 #include <QtCore/QFile>
 #include <QtNetwork/QSslCertificate>
 #include <QtNetwork/QSslKey>
 #include <QCoreApplication>
 #include <QDir>
+#include <QSettings>
 WebSocketController::WebSocketController(QObject *parent, DatabaseController* i_db) : QObject(parent), m_db(i_db)
 {
 
-    server = new QWebSocketServer(QStringLiteral("WP Daemon Websocket Listener"), QWebSocketServer::NonSecureMode, this);
+    m_settings = new ConfigController(this);
+    bool enable_ssl = m_settings->settings()->value("enable_ssl", "false").toBool();
+
+    if (!enable_ssl) {
+        server = new QWebSocketServer(QStringLiteral("WP Daemon Websocket Listener"), QWebSocketServer::NonSecureMode, this);
+    } else {
+        qDebug() << "Running in Secure Mode";
+     server = new QWebSocketServer(QStringLiteral("WP Daemon Websocket Listener"), QWebSocketServer::SecureMode, this);
 
 
     QSslConfiguration sslConfiguration;
-    /*  QFile certFile(QStringLiteral(":/localhost.cert"));
-QFile keyFile(QStringLiteral(":/localhost.key"));
+  /*    QFile certFile(QStringLiteral(":/localhost.cert"));
+QFile keyFile(QStringLiteral(":/localhost.key")); */
+
 
-*/
-  /*  QFile certFile(qApp->applicationDirPath().append(QDir::separator()).append(QStringLiteral("fullchain.cert")));
-    QFile keyFile(qApp->applicationDirPath().append(QDir::separator()).append(QStringLiteral("fullchain.key")));
+    QFile certFile(m_settings->settings()->value("ssl_certificate_file", qApp->applicationDirPath().append(QDir::separator()).append(QStringLiteral("fullchain.cert"))).toString());
+    QFile keyFile(m_settings->settings()->value("ssl_key_file", qApp->applicationDirPath().append(QDir::separator()).append(QStringLiteral("fullchain.key"))).toString());
     certFile.open(QIODevice::ReadOnly);
     keyFile.open(QIODevice::ReadOnly);
     QSslCertificate certificate(&certFile, QSsl::Pem);
@@ -36,8 +45,9 @@ QFile keyFile(QStringLiteral(":/localhost.key"));
     sslConfiguration.setLocalCertificate(certificate);
     sslConfiguration.setPrivateKey(sslKey);
     sslConfiguration.setProtocol(QSsl::TlsV1SslV3);
+    server->setMaxPendingConnections(3);
     server->setSslConfiguration(sslConfiguration);
- */
+ }
     if (!server->listen(QHostAddress::LocalHost, 65300)) {
         qFatal("Failed to open web socket server.");
         //return 1;

src_interfaces/websocketcontroller.h

@@ -14,6 +14,7 @@ class LoginController;
 class WebSocketClient;
 class DatabaseController;
 class FirewallController;
+class ConfigController;
 class WebSocketController : public QObject
 {
     Q_OBJECT
@@ -26,6 +27,7 @@ class WebSocketController : public QObject
     WebSocketClient* new_client;
     DatabaseController* m_db;
     FirewallController* m_firewall;
+    ConfigController* m_settings;
 
 
 signals: