xuthus/LittlePaimon
1
0
Fork 0
mirror of https://github.com/xuthus83/LittlePaimon.git synced 2024-12-16 13:40:53 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Web UI日志和命令增加验证

Browse Source
This commit is contained in:
CMHopeSunshine 2022-11-17 17:34:43 +08:00
parent 360f359ea8
commit 8acf79ac1c
2 changed files with 25 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
LittlePaimon/web/api/status.py
View File

@ -1,9 +1,10 @@
import asyncio import asyncio
from typing import Union from typing import Union
from fastapi import APIRouter from fastapi import APIRouter, Request
from fastapi.responses import JSONResponse, StreamingResponse from fastapi.responses import JSONResponse, StreamingResponse
from nonebot.log import logger, default_filter, default_format from nonebot.log import logger, default_filter, default_format
from LittlePaimon.config import config
from LittlePaimon.utils.status import get_status from LittlePaimon.utils.status import get_status
from .utils import authentication from .utils import authentication
@ -31,8 +32,10 @@ logger.add(record_debug_log, level='DEBUG', colorize=True, filter=default_filter
route = APIRouter() route = APIRouter()
@route.get('/log', response_class=StreamingResponse) @route.get('/log')
async def get_log(level: str = 'info', num: Union[int, str] = 100): async def get_log(request: Request, level: str = 'info', num: Union[int, str] = 100):
if request.headers.get('secret_key') != config.secret_key[:10]:
return '非法请求'
show_logs = info_logs[-(num or 1):] if level == 'info' else debug_logs[-(num or 1):] show_logs = info_logs[-(num or 1):] if level == 'info' else debug_logs[-(num or 1):]
async def streaming_logs(): async def streaming_logs():
@ -43,8 +46,10 @@ async def get_log(level: str = 'info', num: Union[int, str] = 100):
return StreamingResponse(streaming_logs()) return StreamingResponse(streaming_logs())
@route.get('/run_cmd', response_class=StreamingResponse) @route.get('/run_cmd')
async def run_cmd(cmd: str): async def run_cmd(request: Request, cmd: str):
if request.headers.get('secret_key') != config.secret_key[:10]:
return '非法请求'
p = await asyncio.create_subprocess_shell(cmd, stdout=asyncio.subprocess.PIPE, stderr=asyncio.subprocess.PIPE) p = await asyncio.create_subprocess_shell(cmd, stdout=asyncio.subprocess.PIPE, stderr=asyncio.subprocess.PIPE)
return StreamingResponse(p.stdout or p.stderr) return StreamingResponse(p.stdout or p.stderr)

17
LittlePaimon/web/pages/home_page.py
View File

@ -1,4 +1,5 @@
from LittlePaimon.utils import __version__ from LittlePaimon.utils import __version__
from LittlePaimon.config import config
from amis import Page, PageSchema, Html, Property, Service, Flex, ActionType, LevelEnum, Divider, ButtonGroupSelect, \ from amis import Page, PageSchema, Html, Property, Service, Flex, ActionType, LevelEnum, Divider, ButtonGroupSelect, \
Log, Alert, Form, Dialog, Select, Group, InputText, DisplayModeEnum, Horizontal Log, Alert, Form, Dialog, Select, Group, InputText, DisplayModeEnum, Horizontal
@ -68,7 +69,13 @@ log_page = Log(
autoScroll=True, autoScroll=True,
placeholder='暂无日志数据...', placeholder='暂无日志数据...',
operation=['stop', 'showLineNumber', 'filter'], operation=['stop', 'showLineNumber', 'filter'],
source='/LittlePaimon/api/log?level=${log_level | raw}&num=${log_num | raw}' source={
'method': 'get',
'url': '/LittlePaimon/api/log?level=${log_level | raw}&num=${log_num | raw}',
'headers': {
'secret_key': config.secret_key[:10]
}
}
) )
cmd_input = Form( cmd_input = Form(
@ -86,7 +93,13 @@ cmd_input = Form(
autoScroll=True, autoScroll=True,
placeholder='执行命令中,请稍候...', placeholder='执行命令中,请稍候...',
operation=['stop', 'showLineNumber', 'filter'], operation=['stop', 'showLineNumber', 'filter'],
source='/LittlePaimon/api/run_cmd?cmd=${command | raw}'), source={
'method': 'get',
'url': '/LittlePaimon/api/run_cmd?cmd=${command | raw}',
'headers': {
'secret_key': config.secret_key[:10]
}
}),
) )
)) ))
] ]