forked from engineering/cloudservices
various additions
parent
f42dac6432
commit
22d194ea08
|
@ -4,6 +4,7 @@ import mongoose from 'mongoose';
|
||||||
import signale from 'signale';
|
import signale from 'signale';
|
||||||
import fs from 'fs-extra';
|
import fs from 'fs-extra';
|
||||||
import config from './config.json';
|
import config from './config.json';
|
||||||
|
import CSCLI from './cscli/main';
|
||||||
import { Server } from './api';
|
import { Server } from './api';
|
||||||
import { Account, AccountInterface, Moderation, ModerationInterface, Domain, DomainInterface, Tier, TierInterface } from './models';
|
import { Account, AccountInterface, Moderation, ModerationInterface, Domain, DomainInterface, Tier, TierInterface } from './models';
|
||||||
import { emojis } from './stores';
|
import { emojis } from './stores';
|
||||||
|
@ -122,6 +123,8 @@ export default class Client extends Eris.Client {
|
||||||
this.signale.complete(`Loaded interval ${interval.split('.')[0]}`);
|
this.signale.complete(`Loaded interval ${interval.split('.')[0]}`);
|
||||||
});
|
});
|
||||||
this.server = new Server(this, { port: this.config.port });
|
this.server = new Server(this, { port: this.config.port });
|
||||||
|
// eslint-disable-next-line no-new
|
||||||
|
new CSCLI(this);
|
||||||
|
|
||||||
const corepath = '/opt/CloudServices/dist';
|
const corepath = '/opt/CloudServices/dist';
|
||||||
const cmdFiles = await fs.readdir('/opt/CloudServices/dist/commands');
|
const cmdFiles = await fs.readdir('/opt/CloudServices/dist/commands');
|
||||||
|
|
|
@ -1,3 +1,4 @@
|
||||||
|
import moment from 'moment';
|
||||||
import { randomBytes } from 'crypto';
|
import { randomBytes } from 'crypto';
|
||||||
import { AccountInterface } from '../models';
|
import { AccountInterface } from '../models';
|
||||||
import { Client } from '..';
|
import { Client } from '..';
|
||||||
|
@ -75,4 +76,30 @@ export default class AccountUtil {
|
||||||
+ `Your support key is \`${code}\`. Pin this message, you may need this key to contact Library of Code in the future.`).catch();
|
+ `Your support key is \`${code}\`. Pin this message, you may need this key to contact Library of Code in the future.`).catch();
|
||||||
return { account: accountInterface, tempPass };
|
return { account: accountInterface, tempPass };
|
||||||
}
|
}
|
||||||
|
|
||||||
|
public async lock(username: string, moderatorID: string, data?: { reason?: string, time?: number}) {
|
||||||
|
const account = await this.client.db.Account.findOne({ username });
|
||||||
|
if (!account) throw new Error('Account does not exist.');
|
||||||
|
if (account.locked) throw new Error('Account is already locked.');
|
||||||
|
if (account.username === 'matthew' || account.root) throw new Error('Permission denied.');
|
||||||
|
await this.client.util.exec(`lock ${account.username}`);
|
||||||
|
await account.updateOne({ locked: true });
|
||||||
|
|
||||||
|
await this.client.util.createModerationLog(account.userID, this.client.users.get(moderatorID), 2, data?.reason, data?.time);
|
||||||
|
|
||||||
|
this.client.util.transport.sendMail({
|
||||||
|
to: account.emailAddress,
|
||||||
|
from: 'Library of Code sp-us | Cloud Services <help@libraryofcode.org>',
|
||||||
|
subject: 'Your account has been locked',
|
||||||
|
html: `
|
||||||
|
<h1>Library of Code | Cloud Services</h1>
|
||||||
|
<p>Your Cloud Account has been locked until ${data?.time ? moment(data?.time).calendar() : 'indefinitely'} under the EULA.</p>
|
||||||
|
<p><b>Reason:</b> ${data?.reason ? data.reason : 'none provided'}</p>
|
||||||
|
<p><b>Technician:</b> ${moderatorID !== this.client.user.id ? this.client.users.get(moderatorID).username : 'SYSTEM'}</p>
|
||||||
|
<p><b>Expiration:</b> ${data?.time ? moment(data?.time).format('dddd, MMMM Do YYYY, h:mm:ss A') : 'N/A'}</p>
|
||||||
|
|
||||||
|
<b><i>Library of Code sp-us | Support Team</i></b>
|
||||||
|
`,
|
||||||
|
});
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
|
@ -0,0 +1,81 @@
|
||||||
|
/* eslint-disable no-case-declarations */
|
||||||
|
/* eslint-disable consistent-return */
|
||||||
|
import net from 'net';
|
||||||
|
import crypto from 'crypto';
|
||||||
|
import { promises as fs } from 'fs';
|
||||||
|
import Client from '../Client';
|
||||||
|
|
||||||
|
export default class CSCLI {
|
||||||
|
public client: Client;
|
||||||
|
|
||||||
|
public server: net.Server;
|
||||||
|
|
||||||
|
#hmac: string;
|
||||||
|
|
||||||
|
constructor(client: Client) {
|
||||||
|
this.client = client;
|
||||||
|
this.loadKeys();
|
||||||
|
this.server = net.createServer((socket) => {
|
||||||
|
socket.on('data', async (data) => {
|
||||||
|
try {
|
||||||
|
await this.handle(socket, data);
|
||||||
|
} catch (err) {
|
||||||
|
await this.client.util.handleError(err);
|
||||||
|
socket.destroy();
|
||||||
|
}
|
||||||
|
});
|
||||||
|
});
|
||||||
|
this.init();
|
||||||
|
}
|
||||||
|
|
||||||
|
public async handle(socket: net.Socket, data: Buffer) {
|
||||||
|
const parsed: { Username: string, Type: string, Message?: string, HMAC: string } = JSON.parse(data.toString().trim());
|
||||||
|
let verificationParsed: any = parsed;
|
||||||
|
delete verificationParsed.HMAC;
|
||||||
|
verificationParsed = JSON.stringify(verificationParsed);
|
||||||
|
const verification = this.verifyConnection(parsed.HMAC, verificationParsed);
|
||||||
|
if (!verification) return socket.destroy();
|
||||||
|
// FINISH VERIFICATION CHECKS
|
||||||
|
switch (parsed.Type) {
|
||||||
|
case 'lock':
|
||||||
|
await this.client.util.accounts.lock(parsed.Username, this.client.user.id, { reason: 'Failed to accept Terms of Service.' });
|
||||||
|
break;
|
||||||
|
case 'ram':
|
||||||
|
const mem = Number(await this.client.util.exec(`memory ${parsed.Username}`)) * 1000;
|
||||||
|
const memoryConversion = mem / 1024 / 1024;
|
||||||
|
socket.write(`${memoryConversion}\n`);
|
||||||
|
socket.destroy();
|
||||||
|
break;
|
||||||
|
case 'storage':
|
||||||
|
const res = await this.client.redis.get(`storage-${parsed.Username}`) ? Number(await this.client.redis.get(`storage-${parsed.Username}`)) : '0';
|
||||||
|
socket.write(`${res}\n`);
|
||||||
|
socket.destroy();
|
||||||
|
break;
|
||||||
|
default:
|
||||||
|
socket.destroy();
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
public verifyConnection(key: string, data: any): boolean {
|
||||||
|
const hmac = crypto.createHmac('sha256', this.#hmac);
|
||||||
|
hmac.update(data);
|
||||||
|
const computed = hmac.digest('hex');
|
||||||
|
if (computed === key) return true;
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
public async loadKeys() {
|
||||||
|
const key = await fs.readFile('/etc/cscli.conf', { encoding: 'utf8' });
|
||||||
|
this.#hmac = key.toString().trim();
|
||||||
|
}
|
||||||
|
|
||||||
|
public init() {
|
||||||
|
this.server.on('error', (err) => {
|
||||||
|
this.client.util.handleError(err);
|
||||||
|
});
|
||||||
|
this.server.listen(8124, () => {
|
||||||
|
this.client.signale.success('TCP socket is now listening for connections.');
|
||||||
|
});
|
||||||
|
}
|
||||||
|
}
|
Loading…
Reference in New Issue