mirror of
https://github.com/0xJacky/nginx-ui.git
synced 2026-05-07 14:32:42 +08:00
413dc631ee
- Introduced `WebSocketTrustedOrigins` setting in `app.example.ini` and corresponding documentation. - Refactored WebSocket origin checks across multiple API endpoints to utilize the new middleware for improved security. - Added tests for the new origin validation logic to ensure proper handling of trusted origins and node secret requests.
276 lines
6.6 KiB
Go
276 lines
6.6 KiB
Go
package event
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/0xJacky/Nginx-UI/internal/event"
|
|
"github.com/0xJacky/Nginx-UI/internal/helper"
|
|
"github.com/0xJacky/Nginx-UI/internal/kernel"
|
|
"github.com/0xJacky/Nginx-UI/internal/middleware"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/gorilla/websocket"
|
|
"github.com/uozi-tech/cosy/logger"
|
|
)
|
|
|
|
// WebSocketMessage represents the structure of messages sent to the client
|
|
type WebSocketMessage struct {
|
|
Event string `json:"event"`
|
|
Data interface{} `json:"data"`
|
|
}
|
|
|
|
// Client represents a WebSocket client connection
|
|
type Client struct {
|
|
conn *websocket.Conn
|
|
send chan WebSocketMessage
|
|
ctx context.Context
|
|
cancel context.CancelFunc
|
|
}
|
|
|
|
// Hub maintains the set of active clients and broadcasts messages to them
|
|
type Hub struct {
|
|
clients map[*Client]bool
|
|
broadcast chan WebSocketMessage
|
|
register chan *Client
|
|
unregister chan *Client
|
|
mutex sync.RWMutex
|
|
ctx context.Context
|
|
}
|
|
|
|
var (
|
|
hub *Hub
|
|
hubOnce sync.Once
|
|
)
|
|
|
|
// GetHub returns the singleton hub instance
|
|
func GetHub() *Hub {
|
|
hubOnce.Do(func() {
|
|
hub = &Hub{
|
|
clients: make(map[*Client]bool),
|
|
broadcast: make(chan WebSocketMessage, 1024), // Increased buffer size
|
|
register: make(chan *Client),
|
|
unregister: make(chan *Client),
|
|
ctx: event.GetWebSocketContext(),
|
|
}
|
|
go hub.run()
|
|
|
|
// Register this hub directly with the event bus
|
|
event.SetWebSocketHub(hub)
|
|
})
|
|
return hub
|
|
}
|
|
|
|
// BroadcastMessage implements the WebSocketHub interface
|
|
func (h *Hub) BroadcastMessage(event string, data interface{}) {
|
|
message := WebSocketMessage{
|
|
Event: event,
|
|
Data: data,
|
|
}
|
|
select {
|
|
case h.broadcast <- message:
|
|
case <-time.After(1 * time.Second):
|
|
logger.Warn("Broadcast channel full, message dropped after timeout", "event", event)
|
|
default:
|
|
logger.Warn("Broadcast channel full, message dropped immediately", "event", event)
|
|
}
|
|
}
|
|
|
|
// run handles the main hub loop
|
|
func (h *Hub) run() {
|
|
for {
|
|
select {
|
|
case client := <-h.register:
|
|
h.mutex.Lock()
|
|
h.clients[client] = true
|
|
h.mutex.Unlock()
|
|
logger.Debug("Client connected, total clients:", len(h.clients))
|
|
|
|
case client := <-h.unregister:
|
|
h.mutex.Lock()
|
|
if _, ok := h.clients[client]; ok {
|
|
delete(h.clients, client)
|
|
close(client.send)
|
|
}
|
|
h.mutex.Unlock()
|
|
logger.Debug("Client disconnected, total clients:", len(h.clients))
|
|
|
|
case message := <-h.broadcast:
|
|
h.mutex.RLock()
|
|
for client := range h.clients {
|
|
select {
|
|
case client.send <- message:
|
|
default:
|
|
close(client.send)
|
|
delete(h.clients, client)
|
|
}
|
|
}
|
|
h.mutex.RUnlock()
|
|
|
|
case <-h.ctx.Done():
|
|
logger.Info("Hub context cancelled, shutting down WebSocket hub")
|
|
h.mutex.Lock()
|
|
for client := range h.clients {
|
|
close(client.send)
|
|
delete(h.clients, client)
|
|
}
|
|
h.mutex.Unlock()
|
|
return
|
|
|
|
case <-kernel.Context.Done():
|
|
logger.Debug("Kernel context cancelled, closing WebSocket hub")
|
|
h.mutex.Lock()
|
|
for client := range h.clients {
|
|
close(client.send)
|
|
delete(h.clients, client)
|
|
}
|
|
h.mutex.Unlock()
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
// WebSocket upgrader configuration
|
|
var upgrader = websocket.Upgrader{
|
|
CheckOrigin: middleware.CheckWebSocketOrigin,
|
|
ReadBufferSize: 1024,
|
|
WriteBufferSize: 1024,
|
|
}
|
|
|
|
// Bus handles the main WebSocket connection for the event bus
|
|
func Bus(c *gin.Context) {
|
|
ws, err := upgrader.Upgrade(c.Writer, c.Request, nil)
|
|
if err != nil {
|
|
logger.Error("Failed to upgrade connection:", err)
|
|
return
|
|
}
|
|
defer ws.Close()
|
|
|
|
ctx, cancel := context.WithCancel(context.Background())
|
|
defer cancel()
|
|
|
|
client := &Client{
|
|
conn: ws,
|
|
send: make(chan WebSocketMessage, 1024), // Increased buffer size
|
|
ctx: ctx,
|
|
cancel: cancel,
|
|
}
|
|
|
|
hub := GetHub()
|
|
|
|
// Safely register the client with timeout to prevent blocking
|
|
select {
|
|
case hub.register <- client:
|
|
// Successfully registered
|
|
case <-time.After(1 * time.Second):
|
|
// Timeout - hub might be shutting down
|
|
logger.Warn("Failed to register client - hub may be shutting down")
|
|
return
|
|
case <-kernel.Context.Done():
|
|
// Kernel context cancelled
|
|
logger.Debug("Kernel context cancelled during client registration")
|
|
return
|
|
}
|
|
|
|
// Broadcast current processing status to the new client
|
|
go func() {
|
|
processingManager := event.GetProcessingStatusManager()
|
|
processingManager.BroadcastCurrentStatus()
|
|
}()
|
|
|
|
// Start write and read pumps - no manual event subscriptions needed
|
|
go client.writePump()
|
|
client.readPump()
|
|
}
|
|
|
|
// writePump pumps messages from the hub to the websocket connection
|
|
func (c *Client) writePump() {
|
|
ticker := time.NewTicker(30 * time.Second)
|
|
defer func() {
|
|
ticker.Stop()
|
|
c.conn.Close()
|
|
}()
|
|
|
|
for {
|
|
select {
|
|
case message, ok := <-c.send:
|
|
c.conn.SetWriteDeadline(time.Now().Add(10 * time.Second))
|
|
if !ok {
|
|
c.conn.WriteMessage(websocket.CloseMessage, []byte{})
|
|
return
|
|
}
|
|
|
|
if err := c.conn.WriteJSON(message); err != nil {
|
|
logger.Error("Failed to write message:", err)
|
|
if helper.IsUnexpectedWebsocketError(err) {
|
|
return
|
|
}
|
|
}
|
|
|
|
case <-ticker.C:
|
|
c.conn.SetWriteDeadline(time.Now().Add(10 * time.Second))
|
|
if err := c.conn.WriteMessage(websocket.PingMessage, nil); err != nil {
|
|
logger.Error("Failed to write ping:", err)
|
|
return
|
|
}
|
|
|
|
case <-c.ctx.Done():
|
|
return
|
|
|
|
case <-kernel.Context.Done():
|
|
logger.Debug("Bus: Context cancelled, closing WebSocket")
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
// readPump pumps messages from the websocket connection to the hub
|
|
func (c *Client) readPump() {
|
|
defer func() {
|
|
// Safely unregister the client with timeout to prevent blocking
|
|
hub := GetHub()
|
|
select {
|
|
case hub.unregister <- c:
|
|
// Successfully unregistered
|
|
case <-time.After(1 * time.Second):
|
|
// Timeout - hub might be shutting down
|
|
logger.Warn("Failed to unregister client - hub may be shutting down")
|
|
}
|
|
|
|
// Always close the connection and cancel context
|
|
c.conn.Close()
|
|
c.cancel()
|
|
}()
|
|
|
|
c.conn.SetReadLimit(512)
|
|
c.conn.SetReadDeadline(time.Now().Add(60 * time.Second))
|
|
c.conn.SetPongHandler(func(string) error {
|
|
c.conn.SetReadDeadline(time.Now().Add(60 * time.Second))
|
|
return nil
|
|
})
|
|
|
|
// Launch a goroutine to handle context cancellation. When the context is done,
|
|
// it closes the connection, which in turn causes the ReadJSON call below to error out and
|
|
// allow the readPump to exit gracefully.
|
|
go func() {
|
|
select {
|
|
case <-c.ctx.Done():
|
|
case <-kernel.Context.Done():
|
|
}
|
|
c.conn.Close()
|
|
}()
|
|
|
|
for {
|
|
var msg json.RawMessage
|
|
if err := c.conn.ReadJSON(&msg); err != nil {
|
|
if helper.IsUnexpectedWebsocketError(err) {
|
|
logger.Error("Unexpected WebSocket error:", err)
|
|
}
|
|
return
|
|
}
|
|
// Handle incoming messages if needed
|
|
// For now, this is a one-way communication (server to client)
|
|
}
|
|
}
|