Home Explore Help
Sign In
txlyre
/
3x-ui
mirror of https://github.com/MHSanaei/3x-ui
1
0
Fork 0
Files Issues 0 Wiki
Tree: 1284756f8a
Branches Tags
3x-ui
/
web
/
controller
/
api.go

api.go 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. package controller
    2. 

  2. 

  3. import (
    4. 

  4. 	"net/http"
    5. 

  5. 	"strings"
    6. 

  6. 

  7. 	"github.com/mhsanaei/3x-ui/v3/web/middleware"
    8. 

  8. 	"github.com/mhsanaei/3x-ui/v3/web/service"
    9. 

  9. 	"github.com/mhsanaei/3x-ui/v3/web/session"
    10. 

  10. 

  11. 	"github.com/gin-gonic/gin"
    12. 

  12. )
    13. 

  13. 

  14. // APIController handles the main API routes for the 3x-ui panel, including inbounds and server management.
    15. 

  15. type APIController struct {
    16. 

  16. 	BaseController
    17. 

  17. 	inboundController *InboundController
    18. 

  18. 	serverController  *ServerController
    19. 

  19. 	nodeController    *NodeController
    20. 

  20. 	settingService    service.SettingService
    21. 

  21. 	userService       service.UserService
    22. 

  22. 	apiTokenService   service.ApiTokenService
    23. 

  23. 	Tgbot             service.Tgbot
    24. 

  24. }
    25. 

  25. 

  26. // NewAPIController creates a new APIController instance and initializes its routes.
    27. 

  27. func NewAPIController(g *gin.RouterGroup, customGeo *service.CustomGeoService) *APIController {
    28. 

  28. 	a := &APIController{}
    29. 

  29. 	a.initRouter(g, customGeo)
    30. 

  30. 	return a
    31. 

  31. }
    32. 

  32. 

  33. func (a *APIController) checkAPIAuth(c *gin.Context) {
    34. 

  34. 	auth := c.GetHeader("Authorization")
    35. 

  35. 	if strings.HasPrefix(auth, "Bearer ") {
    36. 

  36. 		tok := strings.TrimPrefix(auth, "Bearer ")
    37. 

  37. 		if a.apiTokenService.Match(tok) {
    38. 

  38. 			if u, err := a.userService.GetFirstUser(); err == nil {
    39. 

  39. 				session.SetAPIAuthUser(c, u)
    40. 

  40. 			}
    41. 

  41. 			c.Set("api_authed", true)
    42. 

  42. 			c.Next()
    43. 

  43. 			return
    44. 

  44. 		}
    45. 

  45. 	}
    46. 

  46. 	if !session.IsLogin(c) {
    47. 

  47. 		if c.GetHeader("X-Requested-With") == "XMLHttpRequest" {
    48. 

  48. 			c.AbortWithStatus(http.StatusUnauthorized)
    49. 

  49. 		} else {
    50. 

  50. 			c.AbortWithStatus(http.StatusNotFound)
    51. 

  51. 		}
    52. 

  52. 		return
    53. 

  53. 	}
    54. 

  54. 	c.Next()
    55. 

  55. }
    56. 

  56. 

  57. // initRouter sets up the API routes for inbounds, server, and other endpoints.
    58. 

  58. func (a *APIController) initRouter(g *gin.RouterGroup, customGeo *service.CustomGeoService) {
    59. 

  59. 	// Main API group
    60. 

  60. 	api := g.Group("/panel/api")
    61. 

  61. 	api.Use(a.checkAPIAuth)
    62. 

  62. 	api.Use(middleware.CSRFMiddleware())
    63. 

  63. 

  64. 	// Inbounds API
    65. 

  65. 	inbounds := api.Group("/inbounds")
    66. 

  66. 	a.inboundController = NewInboundController(inbounds)
    67. 

  67. 

  68. 	// Server API
    69. 

  69. 	server := api.Group("/server")
    70. 

  70. 	a.serverController = NewServerController(server)
    71. 

  71. 

  72. 	// Nodes API — multi-panel management
    73. 

  73. 	nodes := api.Group("/nodes")
    74. 

  74. 	a.nodeController = NewNodeController(nodes)
    75. 

  75. 

  76. 	NewCustomGeoController(api.Group("/custom-geo"), customGeo)
    77. 

  77. 

  78. 	// Extra routes
    79. 

  79. 	api.POST("/backuptotgbot", a.BackuptoTgbot)
    80. 

  80. }
    81. 

  81. 

  82. // BackuptoTgbot sends a backup of the panel data to Telegram bot admins.
    83. 

  83. func (a *APIController) BackuptoTgbot(c *gin.Context) {
    84. 

  84. 	a.Tgbot.SendBackupToAdmins()
    85. 

  85. }
    86.