vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
ntopng/scripts/lua/rest/v2/set/pool/members.lua

122 lines
4.1 KiB
Lua
Raw Blame History

--
-- (C) 2013-24 - ntop.org
--
local dirs = ntop.getDirs()
package.path = dirs.installdir .. "/scripts/lua/modules/?.lua;" .. package.path
package.path = dirs.installdir .. "/scripts/lua/modules/pools/?.lua;" .. package.path
require "lua_utils"
local host_pools = require "host_pools"
local json = require "dkjson"
local rest_utils = require("rest_utils")
local radius_handler = require "radius_handler"
sendHTTPContentTypeHeader('application/json')
--[[
Request example:
curl -u admin:admin -H "Content-Type: application/json" -d '{"associations" : {"DE:AD:BE:EE:FF:FF" : {"group" : "staff", "connectivity" : "pass", "username" : "gio", "password" : "XXX"},"AB:AB:AB:AB:AB:AB" : {"group" : "guest", "connectivity" : "reject", "username" : "john", "password" : "XXX"},"192.168.2.221/32@0" : {"group" : "staff", "connectivity" : "pass", "username" : "joseph", "password" : "XXX"}}}' http://192.168.1.1:3000/lua/rest/v2/set/pool/members.lua
Data example:
local res = {
associations = {
["DE:AD:BE:EE:FF:FF"] = {
group = "staff",
connectivity = "pass",
username: "905395124062",
password: "XXX",
},
["AB:AB:AB:AB:AB:AB"] = {
group = "guest",
connectivity = "reject"
username: "905395124063",
password: "XXX",
terminateCause: "1"
},
["192.168.2.221/32@0"] = {
group = "staff",
connectivity = "reject"
username: "905395124064",
password: "XXX",
}
}
}
--]]
local rc = rest_utils.consts.success.ok
local host_pools_changed = false
-- Instantiate host pools
local s = host_pools:create()
local r = {}
local pools_list = {}
-- Table with pool names as keys
for _, pool in pairs(s:get_all_pools()) do
pools_list[pool["name"]] = pool
end
local res = {
associations = _POST["associations"]
}
for member, info in pairs(_POST["associations"] or {}) do
if member == nil then
res["associations"][member]["status"] = "ERROR"
res["associations"][member]["status_msg"] = "Bad member format"
goto continue
end
local pool = info["group"]
if pools_list[pool] == nil then
res["associations"][member]["status"] = "ERROR"
res["associations"][member]["status_msg"] = "Unable to find a group with the specified name"
goto continue
end
local pool_id = pools_list[pool]["pool_id"]
local connectivity = info["connectivity"]
local username = info["username"]
local password = info["password"]
if connectivity == "pass" then
if s:bind_member(member, pool_id) == true then
host_pools_changed = true
local current_interface = interface.getId() or -1 -- System Interface
res["associations"][member]["status"] = "OK"
interface.select(tostring(interface.getFirstInterfaceId()))
radius_handler.accountingStart(member, username, password)
interface.select(current_interface)
else
res["associations"][member]["status"] = "ERROR"
res["associations"][member]["status_msg"] = "Failure adding member, maybe bad member MAC or IP"
end
elseif info["connectivity"] == "reject" then
-- To check radius termination cause see https://datatracker.ietf.org/doc/html/rfc2866#section-5.10
local terminate_cause = info["terminateCause"] or 3 -- Lost service
local current_interface = interface.getId() or -1 -- System Interface
s:bind_member(member, host_pools.DEFAULT_POOL_ID)
host_pools_changed = true
res["associations"][member]["status"] = "OK"
interface.select(tostring(interface.getFirstInterfaceId()))
local mac_info = interface.getMacInfo(member)
radius_handler.accountingStop(member, terminate_cause, mac_info)
interface.select(current_interface)
else
res["associations"][member]["status"] = "ERROR"
res["associations"][member]["status_msg"] = "Unknown association: allowed associations are 'pass' and 'reject'"
end
::continue::
end
if host_pools_changed then
ntop.reloadHostPools()
end
rest_utils.answer(rc, res)
Reference in a new issue View git blame Copy permalink