7x31
/
anylink
mirror of https://github.com/bjdgyc/anylink.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ports保存为map 

兼容老的配置数据
This commit is contained in:
huweishan 2024-04-08 19:34:11 +08:00
parent e55b2b6f0a
commit 4f56ea49c3
No known key found for this signature in database
GPG Key ID: 955238B53F458D37
3 changed files with 49 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

54
server/dbdata/group.go
View File

@ -8,6 +8,7 @@ import (
"strings" "strings"
"strconv" "strconv"
"time" "time"
"reflect"
"github.com/bjdgyc/anylink/base" "github.com/bjdgyc/anylink/base"
"golang.org/x/text/language" "golang.org/x/text/language"
@ -25,12 +26,12 @@ const DsMaxLen = 20000
type GroupLinkAcl struct { type GroupLinkAcl struct {
// 自上而下匹配 默认 allow * * // 自上而下匹配 默认 allow * *
Action string `json:"action"` // allow、deny Action string `json:"action"` // allow、deny
Val string `json:"val"` Val string `json:"val"`
PortStr string `json:"port_str"` Port interface{} `json:"port"`
Ports []PortData `json:"ports"` Ports map[uint16]int8 `json:"ports"`
IpNet *net.IPNet `json:"ip_net"` IpNet *net.IPNet `json:"ip_net"`
Note string `json:"note"` Note string `json:"note"`
} }
type ValData struct { type ValData struct {
@ -170,13 +171,21 @@ func SetGroup(g *Group) error {
return errors.New("GroupLinkAcl 错误" + err.Error()) return errors.New("GroupLinkAcl 错误" + err.Error())
} }
v.IpNet = ipNet v.IpNet = ipNet
if regexp.MustCompile(`^\d{1,5}(-\d{1,5})?(,\d{1,5}(-\d{1,5})?)*$`).MatchString(v.PortStr) {
ports := []PortData{} port:="";
for _, p := range strings.Split(v.PortStr, ",") { //base.Debug("v.port:",v.Port,v.Ports,reflect.TypeOf(v.Port).Name())
switch v := v.Port.(type) {
case float64:
port = strconv.Itoa(int(v))
case string:
port = v
}
if regexp.MustCompile(`^\d{1,5}(-\d{1,5})?(,\d{1,5}(-\d{1,5})?)*$`).MatchString(port) {
ports := map[uint16]int8{}
for _, p := range strings.Split(port, ",") {
if p == "" { if p == "" {
continue continue
} }
portData :=PortData{PortFrom: 0, PortTo: 0}
if regexp.MustCompile(`^\d{1,5}-\d{1,5}$`).MatchString(p) { if regexp.MustCompile(`^\d{1,5}-\d{1,5}$`).MatchString(p) {
rp := strings.Split(p, "-"); rp := strings.Split(p, "-");
portfrom, err := strconv.Atoi(rp[0]) portfrom, err := strconv.Atoi(rp[0])
@ -187,23 +196,22 @@ func SetGroup(g *Group) error {
if err != nil { if err != nil {
return errors.New("端口:"+rp[1]+" 格式错误, " + err.Error()) return errors.New("端口:"+rp[1]+" 格式错误, " + err.Error())
} }
portData.PortFrom=uint16(portfrom) for i := portfrom; i <= portto; i++ {
portData.PortTo=uint16(portto) ports[uint16(i)] = 1
}
} else { } else {
port, err := strconv.Atoi(p) port, err := strconv.Atoi(p)
if err != nil { if err != nil {
return errors.New("端口:"+p+" 格式错误, " + err.Error()) return errors.New("端口:"+p+" 格式错误, " + err.Error())
} }
portData.PortFrom=uint16(port) ports[uint16(port)] = 1
portData.PortTo=uint16(port)
} }
ports = append(ports, portData)
} }
v.Ports = ports v.Ports = ports
linkAcl = append(linkAcl, v) linkAcl = append(linkAcl, v)
} else { } else {
return errors.New("端口: "+v.PortStr+" 格式错误,请用逗号分隔的端口,比如: 22,80,443 连续端口用-,比如:1234-5678") return errors.New("端口: "+port+" 格式错误,请用逗号分隔的端口,比如: 22,80,443 连续端口用-,比如:1234-5678")
} }
} }
@ -283,13 +291,13 @@ func SetGroup(g *Group) error {
return err return err
} }
func ContainsInPorts(ports []PortData, port uint16) bool { func ContainsInPorts(ports map[uint16]int8, port uint16) bool {
for _, p := range ports { _, ok := ports[port]
if p.PortFrom<=port && p.PortTo >= port { if ok {
return true return true
} } else {
return false
} }
return false
} }
func GroupAuthLogin(name, pwd string, authData map[string]interface{}) error { func GroupAuthLogin(name, pwd string, authData map[string]interface{}) error {

20
server/handler/payload.go
View File

@ -89,11 +89,21 @@ func checkLinkAcl(group *dbdata.Group, pl *sessdata.Payload) bool {
// 循环判断ip和端口 // 循环判断ip和端口
if v.IpNet.Contains(ipDst) { if v.IpNet.Contains(ipDst) {
// 放行允许ip的ping // 放行允许ip的ping
if dbdata.ContainsInPorts( v.Ports , ipPort) || v.Ports[0].PortFrom == 0 || ipProto == waterutil.ICMP { if(v.Ports==nil || len(v.Ports)==0){
if v.Action == dbdata.Allow { if v.Port==ipPort || v.Port==0 || ipProto == waterutil.ICMP {
return true if v.Action == dbdata.Allow {
} else { return true
return false } else {
return false
}
}
} else {
if dbdata.ContainsInPorts( v.Ports , ipPort) || dbdata.ContainsInPorts( v.Ports , 0) || ipProto == waterutil.ICMP {
if v.Action == dbdata.Allow {
return true
} else {
return false
}
} }
} }
} }

6
web/src/pages/group/List.vue
View File

@ -100,12 +100,12 @@
min-width="180"> min-width="180">
<template slot-scope="scope"> <template slot-scope="scope">
<el-row v-for="(item,inx) in scope.row.link_acl.slice(0, readMinRows)" :key="inx"> <el-row v-for="(item,inx) in scope.row.link_acl.slice(0, readMinRows)" :key="inx">
{{ item.action }} => {{ item.val }} : {{ item.port_str }} {{ item.action }} => {{ item.val }} : {{ item.port }}
</el-row> </el-row>
<div v-if="scope.row.link_acl.length > readMinRows"> <div v-if="scope.row.link_acl.length > readMinRows">
<div v-if="readMore[`la_${ scope.row.id }`]"> <div v-if="readMore[`la_${ scope.row.id }`]">
<el-row v-for="(item,inx) in scope.row.link_acl.slice(readMinRows)" :key="inx"> <el-row v-for="(item,inx) in scope.row.link_acl.slice(readMinRows)" :key="inx">
{{ item.action }} => {{ item.val }} : {{ item.port_str }} {{ item.action }} => {{ item.val }} : {{ item.port }}
</el-row> </el-row>
</div> </div>
<el-button size="mini" type="text" @click="toggleMore(`la_${ scope.row.id }`)">{{ readMore[`la_${ scope.row.id }`] ? "▲ 收起" : "▼ 更多" }}</el-button> <el-button size="mini" type="text" @click="toggleMore(`la_${ scope.row.id }`)">{{ readMore[`la_${ scope.row.id }`] ? "▲ 收起" : "▼ 更多" }}</el-button>
@ -362,7 +362,7 @@
</el-input> </el-input>
</el-col> </el-col>
<el-col :span="6"> <el-col :span="6">
<el-input type="textarea" :autosize="{ minRows: 1, maxRows: 2}" v-model="item.port_str" placeholder="多端口,号分隔"></el-input> <el-input type="textarea" :autosize="{ minRows: 1, maxRows: 2}" v-model="item.port" placeholder="多端口,号分隔"></el-input>
</el-col> </el-col>
<el-col :span="6"> <el-col :span="6">
<el-input v-model="item.note" placeholder="备注"></el-input> <el-input v-model="item.note" placeholder="备注"></el-input>