1
0

setting.go 38 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350
  1. package service
  2. import (
  3. _ "embed"
  4. "encoding/json"
  5. "errors"
  6. "fmt"
  7. "net"
  8. "net/http"
  9. "os"
  10. "reflect"
  11. "strconv"
  12. "strings"
  13. "time"
  14. "github.com/google/uuid"
  15. "github.com/xlzd/gotp"
  16. "gorm.io/gorm"
  17. "github.com/mhsanaei/3x-ui/v3/internal/config"
  18. "github.com/mhsanaei/3x-ui/v3/internal/database"
  19. "github.com/mhsanaei/3x-ui/v3/internal/database/model"
  20. "github.com/mhsanaei/3x-ui/v3/internal/logger"
  21. "github.com/mhsanaei/3x-ui/v3/internal/util/common"
  22. "github.com/mhsanaei/3x-ui/v3/internal/util/netproxy"
  23. "github.com/mhsanaei/3x-ui/v3/internal/util/random"
  24. "github.com/mhsanaei/3x-ui/v3/internal/util/reflect_util"
  25. "github.com/mhsanaei/3x-ui/v3/internal/web/entity"
  26. "github.com/mhsanaei/3x-ui/v3/internal/xray"
  27. )
  28. //go:embed config.json
  29. var xrayTemplateConfig string
  30. var defaultValueMap = map[string]string{
  31. "xrayTemplateConfig": xrayTemplateConfig,
  32. "webListen": "",
  33. "webDomain": "",
  34. "webPort": "2053",
  35. "webCertFile": "",
  36. "webKeyFile": "",
  37. "secret": random.Seq(32),
  38. "panelGuid": uuid.NewString(),
  39. "apiToken": "",
  40. // Node mTLS material (opt-in). All default empty: the CA + master client
  41. // cert are minted lazily on first use, and the node-side trust CA is pasted
  42. // in by the operator. Kept out of entity.AllSetting so private keys never
  43. // reach the settings UI/export.
  44. "nodeMtlsCaCertPem": "",
  45. "nodeMtlsCaKeyPem": "",
  46. "nodeMtlsClientCertPem": "",
  47. "nodeMtlsClientKeyPem": "",
  48. "nodeMtlsClientCAPem": "",
  49. "webBasePath": normalizeBasePath(getEnv("XUI_INIT_WEB_BASE_PATH", "/")),
  50. "sessionMaxAge": "360",
  51. "trustedProxyCIDRs": "127.0.0.1/32,::1/128",
  52. "pageSize": "25",
  53. "expireDiff": "0",
  54. "trafficDiff": "0",
  55. "remarkTemplate": "{{INBOUND}}-{{EMAIL}}|📊{{TRAFFIC_LEFT}}|⏳{{DAYS_LEFT}}D",
  56. "timeLocation": "Local",
  57. "tgBotEnable": "false",
  58. "tgBotToken": "",
  59. "tgBotProxy": "",
  60. "tgBotAPIServer": "",
  61. "tgBotChatId": "",
  62. "tgRunTime": "@daily",
  63. "tgBotBackup": "false",
  64. "tgCpu": "80",
  65. "tgMemory": "80",
  66. "tgLang": "en-US",
  67. "twoFactorEnable": "false",
  68. "twoFactorToken": "",
  69. "subEnable": "true",
  70. "subJsonEnable": "false",
  71. "subTitle": "",
  72. "subSupportUrl": "",
  73. "subProfileUrl": "",
  74. "subAnnounce": "",
  75. "subEnableRouting": "false",
  76. "subRoutingRules": "",
  77. "subHideSettings": "false",
  78. "subIncyEnableRouting": "false",
  79. "subIncyRoutingRules": "",
  80. "subListen": "",
  81. "subPort": "2096",
  82. "subPath": "/sub/",
  83. "subDomain": "",
  84. "subCertFile": "",
  85. "subKeyFile": "",
  86. "subUpdates": "12",
  87. "subEncrypt": "true",
  88. "subURI": "",
  89. "subJsonPath": "/json/",
  90. "subJsonURI": "",
  91. "subClashEnable": "false",
  92. "subClashPath": "/clash/",
  93. "subClashURI": "",
  94. "subClashEnableRouting": "false",
  95. "subClashRules": "",
  96. "subJsonMux": "",
  97. "subJsonRules": "",
  98. "subJsonFinalMask": "",
  99. "subThemeDir": "",
  100. "datepicker": "gregorian",
  101. "warp": "",
  102. "warpUpdateInterval": "0",
  103. "nord": "",
  104. "externalTrafficInformEnable": "false",
  105. "externalTrafficInformURI": "",
  106. "restartXrayOnClientDisable": "true",
  107. "xrayOutboundTestUrl": "https://www.google.com/generate_204",
  108. "panelOutbound": "",
  109. "devChannelEnable": "false",
  110. // LDAP defaults
  111. "ldapEnable": "false",
  112. "ldapHost": "",
  113. "ldapPort": "389",
  114. "ldapUseTLS": "false",
  115. "ldapInsecureSkipVerify": "false",
  116. "ldapBindDN": "",
  117. "ldapPassword": "",
  118. "ldapBaseDN": "",
  119. "ldapUserFilter": "(objectClass=person)",
  120. "ldapUserAttr": "mail",
  121. "ldapVlessField": "vless_enabled",
  122. "ldapSyncCron": "@every 1m",
  123. "ldapFlagField": "",
  124. "ldapTruthyValues": "true,1,yes,on",
  125. "ldapInvertFlag": "false",
  126. "ldapInboundTags": "",
  127. "ldapAutoCreate": "false",
  128. "ldapAutoDelete": "false",
  129. "ldapDefaultTotalGB": "0",
  130. "ldapDefaultExpiryDays": "0",
  131. "ldapDefaultLimitIP": "0",
  132. // Event bus — per-subscriber event filtering (empty = all disabled)
  133. "tgEnabledEvents": "login.attempt,cpu.high",
  134. "smtpEnabledEvents": "login.attempt,cpu.high",
  135. "smtpCpu": "80",
  136. "smtpMemory": "80",
  137. // Email (SMTP) notifications
  138. "smtpEnable": "false",
  139. "smtpHost": "",
  140. "smtpPort": "587",
  141. "smtpUsername": "",
  142. "smtpPassword": "",
  143. "smtpFrom": "",
  144. "smtpFromName": "",
  145. "smtpTo": "",
  146. "smtpEncryptionType": "starttls", // no, starttls, tls
  147. }
  148. // SettingService provides business logic for application settings management.
  149. // It handles configuration storage, retrieval, and validation for all system settings.
  150. type SettingService struct{}
  151. func (s *SettingService) GetDefaultJSONConfig() (any, error) {
  152. var jsonData any
  153. err := json.Unmarshal([]byte(xrayTemplateConfig), &jsonData)
  154. if err != nil {
  155. return nil, err
  156. }
  157. return jsonData, nil
  158. }
  159. func (s *SettingService) GetAllSetting() (*entity.AllSetting, error) {
  160. db := database.GetDB()
  161. settings := make([]*model.Setting, 0)
  162. err := db.Model(model.Setting{}).Not("key = ?", "xrayTemplateConfig").Find(&settings).Error
  163. if err != nil {
  164. return nil, err
  165. }
  166. allSetting := &entity.AllSetting{}
  167. t := reflect.TypeFor[entity.AllSetting]()
  168. v := reflect.ValueOf(allSetting).Elem()
  169. fields := reflect_util.GetFields(t)
  170. setSetting := func(key, value string) (err error) {
  171. defer func() {
  172. panicErr := recover()
  173. if panicErr != nil {
  174. err = errors.New(fmt.Sprint(panicErr))
  175. }
  176. }()
  177. var found bool
  178. var field reflect.StructField
  179. for _, f := range fields {
  180. if f.Tag.Get("json") == key {
  181. field = f
  182. found = true
  183. break
  184. }
  185. }
  186. if !found {
  187. // Some settings are automatically generated, no need to return to the front end to modify the user
  188. return nil
  189. }
  190. fieldV := v.FieldByName(field.Name)
  191. switch t := fieldV.Interface().(type) {
  192. case int:
  193. n, err := strconv.ParseInt(effectiveSettingValue(key, value), 10, 64)
  194. if err != nil {
  195. return err
  196. }
  197. fieldV.SetInt(n)
  198. case string:
  199. fieldV.SetString(value)
  200. case bool:
  201. fieldV.SetBool(effectiveSettingValue(key, value) == "true")
  202. default:
  203. return common.NewErrorf("unknown field %v type %v", key, t)
  204. }
  205. return
  206. }
  207. keyMap := map[string]bool{}
  208. for _, setting := range settings {
  209. err := setSetting(setting.Key, setting.Value)
  210. if err != nil {
  211. return nil, err
  212. }
  213. keyMap[setting.Key] = true
  214. }
  215. for key, value := range defaultValueMap {
  216. if keyMap[key] {
  217. continue
  218. }
  219. err := setSetting(key, value)
  220. if err != nil {
  221. return nil, err
  222. }
  223. }
  224. return allSetting, nil
  225. }
  226. func (s *SettingService) GetAllSettingView() (*entity.AllSettingView, error) {
  227. allSetting, err := s.GetAllSetting()
  228. if err != nil {
  229. return nil, err
  230. }
  231. view := &entity.AllSettingView{AllSetting: *allSetting}
  232. view.HasTgBotToken = secretConfigured(allSetting.TgBotToken)
  233. view.HasTwoFactorToken = secretConfigured(allSetting.TwoFactorToken)
  234. view.HasLdapPassword = secretConfigured(allSetting.LdapPassword)
  235. view.HasWarpSecret = secretConfigured(mustString(s.GetWarp()))
  236. view.HasNordSecret = secretConfigured(mustString(s.GetNord()))
  237. view.HasSmtpPassword = secretConfigured(allSetting.SmtpPassword)
  238. var apiTokenCount int64
  239. if err := database.GetDB().Model(model.ApiToken{}).Where("enabled = ?", true).Count(&apiTokenCount).Error; err == nil {
  240. view.HasApiToken = apiTokenCount > 0
  241. }
  242. view.TgBotToken = ""
  243. view.TwoFactorToken = ""
  244. view.LdapPassword = ""
  245. view.SmtpPassword = ""
  246. return view, nil
  247. }
  248. func secretConfigured(value string) bool {
  249. return strings.TrimSpace(value) != ""
  250. }
  251. func mustString(value string, _ error) string {
  252. return value
  253. }
  254. func getEnv(key, fallback string) string {
  255. val, ok := os.LookupEnv(key)
  256. if !ok {
  257. return fallback
  258. }
  259. val = strings.TrimSpace(val)
  260. if val == "" {
  261. return fallback
  262. }
  263. return val
  264. }
  265. func (s *SettingService) ResetSettings() error {
  266. db := database.GetDB()
  267. err := db.Where("1 = 1").Delete(model.Setting{}).Error
  268. if err != nil {
  269. return err
  270. }
  271. return db.Model(model.User{}).
  272. Where("1 = 1").Error
  273. }
  274. func (s *SettingService) getSetting(key string) (*model.Setting, error) {
  275. db := database.GetDB()
  276. setting := &model.Setting{}
  277. err := db.Model(model.Setting{}).Where("key = ?", key).First(setting).Error
  278. if err != nil {
  279. return nil, err
  280. }
  281. return setting, nil
  282. }
  283. func (s *SettingService) saveSetting(key string, value string) error {
  284. setting, err := s.getSetting(key)
  285. db := database.GetDB()
  286. if database.IsNotFound(err) {
  287. return db.Create(&model.Setting{
  288. Key: key,
  289. Value: value,
  290. }).Error
  291. } else if err != nil {
  292. return err
  293. }
  294. setting.Key = key
  295. setting.Value = value
  296. return db.Save(setting).Error
  297. }
  298. func (s *SettingService) getString(key string) (string, error) {
  299. setting, err := s.getSetting(key)
  300. if database.IsNotFound(err) {
  301. value, ok := defaultValueMap[key]
  302. if !ok {
  303. return "", common.NewErrorf("key <%v> not in defaultValueMap", key)
  304. }
  305. return value, nil
  306. } else if err != nil {
  307. return "", err
  308. }
  309. return setting.Value, nil
  310. }
  311. func (s *SettingService) setString(key string, value string) error {
  312. return s.saveSetting(key, value)
  313. }
  314. func effectiveSettingValue(key, stored string) string {
  315. if stored == "" {
  316. if def, ok := defaultValueMap[key]; ok {
  317. return def
  318. }
  319. }
  320. return stored
  321. }
  322. func (s *SettingService) getBool(key string) (bool, error) {
  323. str, err := s.getString(key)
  324. if err != nil {
  325. return false, err
  326. }
  327. return strconv.ParseBool(effectiveSettingValue(key, str))
  328. }
  329. func (s *SettingService) setBool(key string, value bool) error {
  330. return s.setString(key, strconv.FormatBool(value))
  331. }
  332. func (s *SettingService) getInt(key string) (int, error) {
  333. str, err := s.getString(key)
  334. if err != nil {
  335. return 0, err
  336. }
  337. return strconv.Atoi(effectiveSettingValue(key, str))
  338. }
  339. func (s *SettingService) setInt(key string, value int) error {
  340. return s.setString(key, strconv.Itoa(value))
  341. }
  342. func (s *SettingService) GetWarpLastUpdate() (int64, error) {
  343. val, err := s.getString("warpLastUpdate")
  344. if err != nil || val == "" {
  345. return 0, err
  346. }
  347. return strconv.ParseInt(val, 10, 64)
  348. }
  349. func (s *SettingService) SetWarpLastUpdate(val int64) error {
  350. return s.saveSetting("warpLastUpdate", strconv.FormatInt(val, 10))
  351. }
  352. func (s *SettingService) SetWarpUpdateInterval(val int) error {
  353. return s.setInt("warpUpdateInterval", val)
  354. }
  355. func (s *SettingService) GetXrayConfigTemplate() (string, error) {
  356. return s.getString("xrayTemplateConfig")
  357. }
  358. func (s *SettingService) GetXrayOutboundTestUrl() (string, error) {
  359. return s.getString("xrayOutboundTestUrl")
  360. }
  361. func (s *SettingService) SetXrayOutboundTestUrl(url string) error {
  362. clean, err := SanitizeHTTPURL(url)
  363. if err != nil {
  364. return err
  365. }
  366. return s.setString("xrayOutboundTestUrl", clean)
  367. }
  368. func (s *SettingService) GetListen() (string, error) {
  369. return s.getString("webListen")
  370. }
  371. func (s *SettingService) SetListen(ip string) error {
  372. return s.setString("webListen", ip)
  373. }
  374. func (s *SettingService) GetWebDomain() (string, error) {
  375. return s.getString("webDomain")
  376. }
  377. func (s *SettingService) GetTgBotToken() (string, error) {
  378. return s.getString("tgBotToken")
  379. }
  380. func (s *SettingService) SetTgBotToken(token string) error {
  381. return s.setString("tgBotToken", token)
  382. }
  383. func (s *SettingService) GetTgBotProxy() (string, error) {
  384. return s.getString("tgBotProxy")
  385. }
  386. func (s *SettingService) SetTgBotProxy(token string) error {
  387. return s.setString("tgBotProxy", token)
  388. }
  389. // GetPanelOutbound returns the Xray outbound tag the panel's own outbound
  390. // requests (version checks, Telegram, subscription fetches) are routed through.
  391. func (s *SettingService) GetPanelOutbound() (string, error) {
  392. return s.getString("panelOutbound")
  393. }
  394. func (s *SettingService) SetPanelOutbound(tag string) error {
  395. return s.setString("panelOutbound", tag)
  396. }
  397. // PanelEgressProxyURL resolves the loopback SOCKS bridge that the generated
  398. // config exposes when a panel outbound is configured (see injectPanelEgress).
  399. // It returns "" — meaning a direct connection — when the feature is off or
  400. // the bridge is not present in the running core yet.
  401. func (s *SettingService) PanelEgressProxyURL() string {
  402. tag, err := s.GetPanelOutbound()
  403. if err != nil || tag == "" {
  404. return ""
  405. }
  406. proc := XrayProcess()
  407. if proc == nil || !proc.IsRunning() {
  408. logger.Warning("panel outbound [", tag, "] is set but Xray is not running, using a direct connection")
  409. return ""
  410. }
  411. cfg := proc.GetConfig()
  412. if cfg == nil {
  413. return ""
  414. }
  415. for i := range cfg.InboundConfigs {
  416. if cfg.InboundConfigs[i].Tag == PanelEgressInboundTag {
  417. return fmt.Sprintf("socks5://127.0.0.1:%d", cfg.InboundConfigs[i].Port)
  418. }
  419. }
  420. logger.Warning("panel outbound [", tag, "] is set but the egress bridge is not in the running config, using a direct connection")
  421. return ""
  422. }
  423. func (s *SettingService) NodeEgressProxyURL(nodeID int) string {
  424. tag := NodeEgressInboundTag(nodeID)
  425. proc := XrayProcess()
  426. if proc == nil || !proc.IsRunning() {
  427. logger.Warning("node outbound [", tag, "] is set but Xray is not running, using a direct connection")
  428. return ""
  429. }
  430. cfg := proc.GetConfig()
  431. if cfg == nil {
  432. return ""
  433. }
  434. for i := range cfg.InboundConfigs {
  435. if cfg.InboundConfigs[i].Tag == tag {
  436. return fmt.Sprintf("socks5://127.0.0.1:%d", cfg.InboundConfigs[i].Port)
  437. }
  438. }
  439. logger.Warning("node outbound [", tag, "] is set but the egress bridge is not in the running config, using a direct connection")
  440. return ""
  441. }
  442. // NewProxiedHTTPClient returns an HTTP client that routes the panel's own
  443. // outbound requests through the configured panel outbound (via the loopback
  444. // SOCKS bridge in the running Xray). When the feature is off or the bridge
  445. // is unavailable it falls back to a direct client.
  446. func (s *SettingService) NewProxiedHTTPClient(timeout time.Duration) *http.Client {
  447. proxyUrl := s.PanelEgressProxyURL()
  448. client, err := netproxy.NewHTTPClient(proxyUrl, timeout)
  449. if err != nil {
  450. logger.Warningf("Invalid panel egress proxy %q, using direct connection: %v", proxyUrl, err)
  451. return &http.Client{Timeout: timeout}
  452. }
  453. return client
  454. }
  455. func (s *SettingService) GetTgBotAPIServer() (string, error) {
  456. return s.getString("tgBotAPIServer")
  457. }
  458. func (s *SettingService) SetTgBotAPIServer(token string) error {
  459. return s.setString("tgBotAPIServer", token)
  460. }
  461. func (s *SettingService) GetTgBotChatId() (string, error) {
  462. return s.getString("tgBotChatId")
  463. }
  464. func (s *SettingService) SetTgBotChatId(chatIds string) error {
  465. return s.setString("tgBotChatId", chatIds)
  466. }
  467. func (s *SettingService) GetTgbotEnabled() (bool, error) {
  468. return s.getBool("tgBotEnable")
  469. }
  470. func (s *SettingService) SetTgbotEnabled(value bool) error {
  471. return s.setBool("tgBotEnable", value)
  472. }
  473. func (s *SettingService) GetTgbotRuntime() (string, error) {
  474. return s.getString("tgRunTime")
  475. }
  476. func (s *SettingService) SetTgbotRuntime(time string) error {
  477. return s.setString("tgRunTime", time)
  478. }
  479. func (s *SettingService) GetTgBotBackup() (bool, error) {
  480. return s.getBool("tgBotBackup")
  481. }
  482. func (s *SettingService) GetTgCpu() (int, error) {
  483. return s.getInt("tgCpu")
  484. }
  485. func (s *SettingService) GetTgMemory() (int, error) {
  486. return s.getInt("tgMemory")
  487. }
  488. func (s *SettingService) SetTgMemory(value int) error {
  489. return s.setInt("tgMemory", value)
  490. }
  491. func (s *SettingService) GetTgLang() (string, error) {
  492. return s.getString("tgLang")
  493. }
  494. func (s *SettingService) GetTwoFactorEnable() (bool, error) {
  495. return s.getBool("twoFactorEnable")
  496. }
  497. func (s *SettingService) SetTwoFactorEnable(value bool) error {
  498. return s.setBool("twoFactorEnable", value)
  499. }
  500. func (s *SettingService) GetTwoFactorToken() (string, error) {
  501. return s.getString("twoFactorToken")
  502. }
  503. func (s *SettingService) SetTwoFactorToken(value string) error {
  504. return s.setString("twoFactorToken", value)
  505. }
  506. func (s *SettingService) VerifyTwoFactorCode(code string) error {
  507. enabled, err := s.GetTwoFactorEnable()
  508. if err != nil {
  509. return err
  510. }
  511. if !enabled {
  512. return nil
  513. }
  514. token, err := s.GetTwoFactorToken()
  515. if err != nil {
  516. return err
  517. }
  518. if strings.TrimSpace(token) == "" || !gotp.NewDefaultTOTP(token).Verify(strings.TrimSpace(code), time.Now().Unix()) {
  519. return common.NewError("invalid two factor code")
  520. }
  521. return nil
  522. }
  523. func (s *SettingService) GetPort() (int, error) {
  524. return s.getInt("webPort")
  525. }
  526. func (s *SettingService) SetPort(port int) error {
  527. return s.setInt("webPort", port)
  528. }
  529. func (s *SettingService) SetCertFile(webCertFile string) error {
  530. return s.setString("webCertFile", webCertFile)
  531. }
  532. func (s *SettingService) GetCertFile() (string, error) {
  533. return s.getString("webCertFile")
  534. }
  535. func (s *SettingService) SetKeyFile(webKeyFile string) error {
  536. return s.setString("webKeyFile", webKeyFile)
  537. }
  538. func (s *SettingService) GetKeyFile() (string, error) {
  539. return s.getString("webKeyFile")
  540. }
  541. func (s *SettingService) GetExpireDiff() (int, error) {
  542. return s.getInt("expireDiff")
  543. }
  544. func (s *SettingService) GetTrafficDiff() (int, error) {
  545. return s.getInt("trafficDiff")
  546. }
  547. func (s *SettingService) GetSessionMaxAge() (int, error) {
  548. return s.getInt("sessionMaxAge")
  549. }
  550. func (s *SettingService) GetTrustedProxyCIDRs() (string, error) {
  551. return s.getString("trustedProxyCIDRs")
  552. }
  553. func (s *SettingService) GetRemarkTemplate() (string, error) {
  554. return s.getString("remarkTemplate")
  555. }
  556. func (s *SettingService) GetSecret() ([]byte, error) {
  557. secret, err := s.getString("secret")
  558. if secret == defaultValueMap["secret"] {
  559. err := s.saveSetting("secret", secret)
  560. if err != nil {
  561. logger.Warning("save secret failed:", err)
  562. }
  563. }
  564. return []byte(secret), err
  565. }
  566. // GetPanelGuid returns this panel's stable self-identifier, persisting a
  567. // freshly generated UUID on first read. It is the globally stable node
  568. // identity used to attribute online clients and inbounds to the physical
  569. // node that hosts them across a chain of nodes (#4983), where per-panel
  570. // autoincrement node ids are meaningless one hop away.
  571. func (s *SettingService) GetPanelGuid() (string, error) {
  572. guid, err := s.getString("panelGuid")
  573. if err != nil {
  574. return "", err
  575. }
  576. if guid == defaultValueMap["panelGuid"] {
  577. if saveErr := s.saveSetting("panelGuid", guid); saveErr != nil {
  578. logger.Warning("save panelGuid failed:", saveErr)
  579. }
  580. }
  581. return guid, nil
  582. }
  583. func (s *SettingService) SetBasePath(basePath string) error {
  584. if !strings.HasPrefix(basePath, "/") {
  585. basePath = "/" + basePath
  586. }
  587. if !strings.HasSuffix(basePath, "/") {
  588. basePath += "/"
  589. }
  590. return s.setString("webBasePath", basePath)
  591. }
  592. func (s *SettingService) GetBasePath() (string, error) {
  593. basePath, err := s.getString("webBasePath")
  594. if err != nil {
  595. return "", err
  596. }
  597. return normalizeBasePath(basePath), nil
  598. }
  599. func (s *SettingService) GetTimeLocation() (*time.Location, error) {
  600. l, err := s.getString("timeLocation")
  601. if err != nil {
  602. return nil, err
  603. }
  604. location, err := time.LoadLocation(l)
  605. if err != nil {
  606. defaultLocation := defaultValueMap["timeLocation"]
  607. logger.Errorf("location <%v> not exist, using default location: %v", l, defaultLocation)
  608. location, err = time.LoadLocation(defaultLocation)
  609. if err != nil {
  610. logger.Errorf("failed to load default location, using UTC: %v", err)
  611. return time.UTC, nil
  612. }
  613. return location, nil
  614. }
  615. return location, nil
  616. }
  617. func (s *SettingService) GetSubEnable() (bool, error) {
  618. return s.getBool("subEnable")
  619. }
  620. func (s *SettingService) GetSubJsonEnable() (bool, error) {
  621. return s.getBool("subJsonEnable")
  622. }
  623. func (s *SettingService) GetSubTitle() (string, error) {
  624. return s.getString("subTitle")
  625. }
  626. func (s *SettingService) GetSubSupportUrl() (string, error) {
  627. value, err := s.getString("subSupportUrl")
  628. return common.EnsureURLScheme(value), err
  629. }
  630. func (s *SettingService) GetSubProfileUrl() (string, error) {
  631. value, err := s.getString("subProfileUrl")
  632. return common.EnsureURLScheme(value), err
  633. }
  634. func (s *SettingService) GetSubAnnounce() (string, error) {
  635. return s.getString("subAnnounce")
  636. }
  637. func (s *SettingService) GetSubEnableRouting() (bool, error) {
  638. return s.getBool("subEnableRouting")
  639. }
  640. func (s *SettingService) GetSubRoutingRules() (string, error) {
  641. return s.getString("subRoutingRules")
  642. }
  643. func (s *SettingService) GetSubHideSettings() (bool, error) {
  644. return s.getBool("subHideSettings")
  645. }
  646. func (s *SettingService) GetSubIncyEnableRouting() (bool, error) {
  647. return s.getBool("subIncyEnableRouting")
  648. }
  649. func (s *SettingService) GetSubIncyRoutingRules() (string, error) {
  650. return s.getString("subIncyRoutingRules")
  651. }
  652. func (s *SettingService) GetSubListen() (string, error) {
  653. return s.getString("subListen")
  654. }
  655. func (s *SettingService) GetSubPort() (int, error) {
  656. return s.getInt("subPort")
  657. }
  658. func (s *SettingService) GetSubPath() (string, error) {
  659. return s.getString("subPath")
  660. }
  661. func (s *SettingService) GetSubJsonPath() (string, error) {
  662. return s.getString("subJsonPath")
  663. }
  664. func (s *SettingService) GetSubDomain() (string, error) {
  665. return s.getString("subDomain")
  666. }
  667. func (s *SettingService) SetSubCertFile(subCertFile string) error {
  668. return s.setString("subCertFile", subCertFile)
  669. }
  670. func (s *SettingService) GetSubCertFile() (string, error) {
  671. return s.getString("subCertFile")
  672. }
  673. func (s *SettingService) SetSubKeyFile(subKeyFile string) error {
  674. return s.setString("subKeyFile", subKeyFile)
  675. }
  676. func (s *SettingService) GetSubKeyFile() (string, error) {
  677. return s.getString("subKeyFile")
  678. }
  679. func (s *SettingService) GetSubUpdates() (string, error) {
  680. return s.getString("subUpdates")
  681. }
  682. func (s *SettingService) GetSubEncrypt() (bool, error) {
  683. return s.getBool("subEncrypt")
  684. }
  685. func (s *SettingService) GetPageSize() (int, error) {
  686. return s.getInt("pageSize")
  687. }
  688. func (s *SettingService) GetSubURI() (string, error) {
  689. return s.getString("subURI")
  690. }
  691. func (s *SettingService) GetSubJsonURI() (string, error) {
  692. return s.getString("subJsonURI")
  693. }
  694. func (s *SettingService) GetSubClashEnable() (bool, error) {
  695. return s.getBool("subClashEnable")
  696. }
  697. func (s *SettingService) GetSubClashPath() (string, error) {
  698. return s.getString("subClashPath")
  699. }
  700. func (s *SettingService) GetSubClashURI() (string, error) {
  701. return s.getString("subClashURI")
  702. }
  703. func (s *SettingService) GetSubClashEnableRouting() (bool, error) {
  704. return s.getBool("subClashEnableRouting")
  705. }
  706. func (s *SettingService) GetSubClashRules() (string, error) {
  707. return s.getString("subClashRules")
  708. }
  709. func (s *SettingService) GetSubJsonMux() (string, error) {
  710. return s.getString("subJsonMux")
  711. }
  712. func (s *SettingService) GetSubJsonRules() (string, error) {
  713. return s.getString("subJsonRules")
  714. }
  715. func (s *SettingService) GetSubJsonFinalMask() (string, error) {
  716. return s.getString("subJsonFinalMask")
  717. }
  718. func (s *SettingService) GetSubThemeDir() (string, error) {
  719. return s.getString("subThemeDir")
  720. }
  721. func (s *SettingService) GetDatepicker() (string, error) {
  722. return s.getString("datepicker")
  723. }
  724. func (s *SettingService) GetWarp() (string, error) {
  725. return s.getString("warp")
  726. }
  727. func (s *SettingService) SetWarp(data string) error {
  728. return s.setString("warp", data)
  729. }
  730. func (s *SettingService) GetNord() (string, error) {
  731. return s.getString("nord")
  732. }
  733. func (s *SettingService) SetNord(data string) error {
  734. return s.setString("nord", data)
  735. }
  736. func (s *SettingService) GetExternalTrafficInformEnable() (bool, error) {
  737. return s.getBool("externalTrafficInformEnable")
  738. }
  739. func (s *SettingService) SetExternalTrafficInformEnable(value bool) error {
  740. return s.setBool("externalTrafficInformEnable", value)
  741. }
  742. func (s *SettingService) GetExternalTrafficInformURI() (string, error) {
  743. return s.getString("externalTrafficInformURI")
  744. }
  745. func (s *SettingService) SetExternalTrafficInformURI(InformURI string) error {
  746. return s.setString("externalTrafficInformURI", InformURI)
  747. }
  748. func (s *SettingService) GetRestartXrayOnClientDisable() (bool, error) {
  749. return s.getBool("restartXrayOnClientDisable")
  750. }
  751. func (s *SettingService) SetRestartXrayOnClientDisable(value bool) error {
  752. return s.setBool("restartXrayOnClientDisable", value)
  753. }
  754. // GetDevChannelEnable reports whether the panel self-update tracks the rolling
  755. // per-commit dev release instead of the latest stable tag.
  756. func (s *SettingService) GetDevChannelEnable() (bool, error) {
  757. return s.getBool("devChannelEnable")
  758. }
  759. func (s *SettingService) SetDevChannelEnable(value bool) error {
  760. return s.setBool("devChannelEnable", value)
  761. }
  762. // GetIpLimitEnable reports whether the IP-limit feature is available. Always
  763. // true since the panel enforces limits via the core's online-stats API; on an
  764. // older core the job falls back to access-log parsing and warns there when the
  765. // log is missing, so the UI no longer hides the field behind that condition.
  766. func (s *SettingService) GetIpLimitEnable() (bool, error) {
  767. return true, nil
  768. }
  769. // GetAccessLogEnable reports whether an Xray access log is configured. Used by
  770. // the UI for features that genuinely read the log file (the xray log viewer) —
  771. // distinct from IP limiting, which works without it.
  772. func (s *SettingService) GetAccessLogEnable() (bool, error) {
  773. accessLogPath, err := xray.GetAccessLogPath()
  774. if err != nil {
  775. return false, err
  776. }
  777. return (accessLogPath != "none" && accessLogPath != ""), nil
  778. }
  779. // GetLdapEnable returns whether LDAP is enabled.
  780. func (s *SettingService) GetLdapEnable() (bool, error) {
  781. return s.getBool("ldapEnable")
  782. }
  783. func (s *SettingService) GetLdapHost() (string, error) {
  784. return s.getString("ldapHost")
  785. }
  786. func (s *SettingService) GetLdapPort() (int, error) {
  787. return s.getInt("ldapPort")
  788. }
  789. func (s *SettingService) GetLdapUseTLS() (bool, error) {
  790. return s.getBool("ldapUseTLS")
  791. }
  792. func (s *SettingService) GetLdapInsecureSkipVerify() (bool, error) {
  793. return s.getBool("ldapInsecureSkipVerify")
  794. }
  795. func (s *SettingService) GetLdapBindDN() (string, error) {
  796. return s.getString("ldapBindDN")
  797. }
  798. func (s *SettingService) GetLdapPassword() (string, error) {
  799. return s.getString("ldapPassword")
  800. }
  801. func (s *SettingService) GetLdapBaseDN() (string, error) {
  802. return s.getString("ldapBaseDN")
  803. }
  804. func (s *SettingService) GetLdapUserFilter() (string, error) {
  805. return s.getString("ldapUserFilter")
  806. }
  807. func (s *SettingService) GetLdapUserAttr() (string, error) {
  808. return s.getString("ldapUserAttr")
  809. }
  810. func (s *SettingService) GetLdapVlessField() (string, error) {
  811. return s.getString("ldapVlessField")
  812. }
  813. func (s *SettingService) GetLdapSyncCron() (string, error) {
  814. return s.getString("ldapSyncCron")
  815. }
  816. func (s *SettingService) GetLdapFlagField() (string, error) {
  817. return s.getString("ldapFlagField")
  818. }
  819. func (s *SettingService) GetLdapTruthyValues() (string, error) {
  820. return s.getString("ldapTruthyValues")
  821. }
  822. func (s *SettingService) GetLdapInvertFlag() (bool, error) {
  823. return s.getBool("ldapInvertFlag")
  824. }
  825. func (s *SettingService) GetLdapInboundTags() (string, error) {
  826. return s.getString("ldapInboundTags")
  827. }
  828. func (s *SettingService) GetLdapAutoCreate() (bool, error) {
  829. return s.getBool("ldapAutoCreate")
  830. }
  831. func (s *SettingService) GetLdapAutoDelete() (bool, error) {
  832. return s.getBool("ldapAutoDelete")
  833. }
  834. func (s *SettingService) GetLdapDefaultTotalGB() (int, error) {
  835. return s.getInt("ldapDefaultTotalGB")
  836. }
  837. func (s *SettingService) GetLdapDefaultExpiryDays() (int, error) {
  838. return s.getInt("ldapDefaultExpiryDays")
  839. }
  840. func (s *SettingService) GetLdapDefaultLimitIP() (int, error) {
  841. return s.getInt("ldapDefaultLimitIP")
  842. }
  843. // Event bus — per-subscriber event filtering
  844. func (s *SettingService) GetTgEnabledEvents() (string, error) {
  845. return s.getString("tgEnabledEvents")
  846. }
  847. func (s *SettingService) SetTgEnabledEvents(events string) error {
  848. return s.setString("tgEnabledEvents", events)
  849. }
  850. func (s *SettingService) GetSmtpEnabledEvents() (string, error) {
  851. return s.getString("smtpEnabledEvents")
  852. }
  853. func (s *SettingService) SetSmtpEnabledEvents(events string) error {
  854. return s.setString("smtpEnabledEvents", events)
  855. }
  856. // Email (SMTP) settings
  857. func (s *SettingService) GetSmtpEnable() (bool, error) {
  858. return s.getBool("smtpEnable")
  859. }
  860. func (s *SettingService) SetSmtpEnable(value bool) error {
  861. return s.setBool("smtpEnable", value)
  862. }
  863. func (s *SettingService) GetSmtpHost() (string, error) {
  864. return s.getString("smtpHost")
  865. }
  866. func (s *SettingService) SetSmtpHost(value string) error {
  867. return s.setString("smtpHost", value)
  868. }
  869. func (s *SettingService) GetSmtpPort() (int, error) {
  870. return s.getInt("smtpPort")
  871. }
  872. func (s *SettingService) SetSmtpPort(value int) error {
  873. return s.setInt("smtpPort", value)
  874. }
  875. func (s *SettingService) GetSmtpUsername() (string, error) {
  876. return s.getString("smtpUsername")
  877. }
  878. func (s *SettingService) SetSmtpUsername(value string) error {
  879. return s.setString("smtpUsername", value)
  880. }
  881. func (s *SettingService) GetSmtpFrom() (string, error) {
  882. return s.getString("smtpFrom")
  883. }
  884. func (s *SettingService) SetSmtpFrom(value string) error {
  885. return s.setString("smtpFrom", value)
  886. }
  887. func (s *SettingService) GetSmtpFromName() (string, error) {
  888. return s.getString("smtpFromName")
  889. }
  890. func (s *SettingService) SetSmtpFromName(value string) error {
  891. return s.setString("smtpFromName", value)
  892. }
  893. func (s *SettingService) GetSmtpPassword() (string, error) {
  894. return s.getString("smtpPassword")
  895. }
  896. func (s *SettingService) SetSmtpPassword(value string) error {
  897. return s.setString("smtpPassword", value)
  898. }
  899. func (s *SettingService) GetSmtpTo() (string, error) {
  900. return s.getString("smtpTo")
  901. }
  902. func (s *SettingService) SetSmtpTo(value string) error {
  903. return s.setString("smtpTo", value)
  904. }
  905. func (s *SettingService) GetSmtpEncryptionType() (string, error) {
  906. return s.getString("smtpEncryptionType")
  907. }
  908. func (s *SettingService) SetSmtpEncryptionType(value string) error {
  909. return s.setString("smtpEncryptionType", value)
  910. }
  911. func (s *SettingService) GetSmtpCpu() (int, error) {
  912. return s.getInt("smtpCpu")
  913. }
  914. func (s *SettingService) SetSmtpCpu(value int) error {
  915. return s.setInt("smtpCpu", value)
  916. }
  917. func (s *SettingService) GetSmtpMemory() (int, error) {
  918. return s.getInt("smtpMemory")
  919. }
  920. func (s *SettingService) SetSmtpMemory(value int) error {
  921. return s.setInt("smtpMemory", value)
  922. }
  923. // SecretClears marks redacted secrets the user explicitly emptied. Without a
  924. // flag, a blank submitted secret means "unchanged" (the field is always served
  925. // blank to the browser) and the stored value is preserved.
  926. type SecretClears struct {
  927. TgBotToken bool
  928. LdapPassword bool
  929. SmtpPassword bool
  930. }
  931. func (s *SettingService) UpdateAllSetting(allSetting *entity.AllSetting, clears SecretClears) error {
  932. if err := s.preserveRedactedSecrets(allSetting, clears); err != nil {
  933. return err
  934. }
  935. if err := validateSettingsURLs(allSetting); err != nil {
  936. return err
  937. }
  938. if err := allSetting.CheckValid(); err != nil {
  939. return err
  940. }
  941. v := reflect.ValueOf(allSetting).Elem()
  942. t := reflect.TypeFor[entity.AllSetting]()
  943. fields := reflect_util.GetFields(t)
  944. db := database.GetDB()
  945. return db.Transaction(func(tx *gorm.DB) error {
  946. var existing []*model.Setting
  947. if err := tx.Find(&existing).Error; err != nil {
  948. return err
  949. }
  950. byKey := make(map[string]*model.Setting, len(existing))
  951. for _, st := range existing {
  952. byKey[st.Key] = st
  953. }
  954. for _, field := range fields {
  955. key := field.Tag.Get("json")
  956. fieldV := v.FieldByName(field.Name)
  957. value := fmt.Sprint(fieldV.Interface())
  958. if st, ok := byKey[key]; ok {
  959. if st.Value == value {
  960. continue
  961. }
  962. st.Value = value
  963. if err := tx.Save(st).Error; err != nil {
  964. return err
  965. }
  966. continue
  967. }
  968. if err := tx.Create(&model.Setting{Key: key, Value: value}).Error; err != nil {
  969. return err
  970. }
  971. }
  972. return nil
  973. })
  974. }
  975. func (s *SettingService) preserveRedactedSecrets(allSetting *entity.AllSetting, clears SecretClears) error {
  976. if !clears.TgBotToken && strings.TrimSpace(allSetting.TgBotToken) == "" {
  977. value, err := s.GetTgBotToken()
  978. if err != nil {
  979. return err
  980. }
  981. allSetting.TgBotToken = value
  982. }
  983. if !clears.LdapPassword && strings.TrimSpace(allSetting.LdapPassword) == "" {
  984. value, err := s.GetLdapPassword()
  985. if err != nil {
  986. return err
  987. }
  988. allSetting.LdapPassword = value
  989. }
  990. if allSetting.TwoFactorEnable && strings.TrimSpace(allSetting.TwoFactorToken) == "" {
  991. value, err := s.GetTwoFactorToken()
  992. if err != nil {
  993. return err
  994. }
  995. allSetting.TwoFactorToken = value
  996. }
  997. if !clears.SmtpPassword && strings.TrimSpace(allSetting.SmtpPassword) == "" {
  998. value, err := s.GetSmtpPassword()
  999. if err != nil {
  1000. return err
  1001. }
  1002. allSetting.SmtpPassword = value
  1003. }
  1004. return nil
  1005. }
  1006. func validateSettingsURLs(allSetting *entity.AllSetting) error {
  1007. if allSetting.ExternalTrafficInformURI != "" {
  1008. u, err := SanitizeHTTPURL(allSetting.ExternalTrafficInformURI)
  1009. if err != nil {
  1010. return common.NewError("external traffic inform URI is invalid:", err)
  1011. }
  1012. allSetting.ExternalTrafficInformURI = u
  1013. }
  1014. if allSetting.TgBotAPIServer != "" {
  1015. u, err := SanitizeHTTPURL(allSetting.TgBotAPIServer)
  1016. if err != nil {
  1017. return common.NewError("telegram API server URL is invalid:", err)
  1018. }
  1019. allSetting.TgBotAPIServer = u
  1020. }
  1021. // Support/profile links land in subscription headers and page data, where
  1022. // client apps resolve a scheme-less value against the panel's own domain.
  1023. // Non-http schemes (tg://, mailto:) are legitimate here, so only default
  1024. // the scheme instead of forcing SanitizeHTTPURL's http(s)-only rule.
  1025. allSetting.SubSupportUrl = common.EnsureURLScheme(allSetting.SubSupportUrl)
  1026. allSetting.SubProfileUrl = common.EnsureURLScheme(allSetting.SubProfileUrl)
  1027. return nil
  1028. }
  1029. func (s *SettingService) UpdateSecret(key string, value string) error {
  1030. switch key {
  1031. case "tgBotToken", "ldapPassword", "twoFactorToken":
  1032. return s.saveSetting(key, strings.TrimSpace(value))
  1033. default:
  1034. return common.NewError("secret key is not replaceable:", key)
  1035. }
  1036. }
  1037. func (s *SettingService) GetDefaultXrayConfig() (any, error) {
  1038. var jsonData any
  1039. err := json.Unmarshal([]byte(xrayTemplateConfig), &jsonData)
  1040. if err != nil {
  1041. return nil, err
  1042. }
  1043. return jsonData, nil
  1044. }
  1045. func extractHostname(host string) string {
  1046. h, _, err := net.SplitHostPort(host)
  1047. // Err is not nil means host does not contain port
  1048. if err != nil {
  1049. h = host
  1050. }
  1051. ip := net.ParseIP(h)
  1052. // If it's not an IP, return as is
  1053. if ip == nil {
  1054. return h
  1055. }
  1056. // If it's an IPv4, return as is
  1057. if ip.To4() != nil {
  1058. return h
  1059. }
  1060. // IPv6 needs bracketing
  1061. return "[" + h + "]"
  1062. }
  1063. // BuildSubURIBase is shared by GetDefaultSettings (the panel's Client
  1064. // Information page) and the subscription page so both render subscription
  1065. // URLs identically.
  1066. func (s *SettingService) BuildSubURIBase(host string) string {
  1067. subPort, _ := s.GetSubPort()
  1068. subDomain, _ := s.GetSubDomain()
  1069. subKeyFile, _ := s.GetSubKeyFile()
  1070. subCertFile, _ := s.GetSubCertFile()
  1071. subTLS := subKeyFile != "" && subCertFile != ""
  1072. if subDomain == "" {
  1073. subDomain = extractHostname(host)
  1074. }
  1075. scheme := "http"
  1076. if subTLS {
  1077. scheme = "https"
  1078. }
  1079. if (subPort == 443 && subTLS) || (subPort == 80 && !subTLS) {
  1080. return scheme + "://" + subDomain
  1081. }
  1082. return fmt.Sprintf("%s://%s:%d", scheme, subDomain, subPort)
  1083. }
  1084. func (s *SettingService) GetDefaultSettings(host string) (any, error) {
  1085. type settingFunc func() (any, error)
  1086. settings := map[string]settingFunc{
  1087. "expireDiff": func() (any, error) { return s.GetExpireDiff() },
  1088. "trafficDiff": func() (any, error) { return s.GetTrafficDiff() },
  1089. "pageSize": func() (any, error) { return s.GetPageSize() },
  1090. "defaultCert": func() (any, error) { return s.GetCertFile() },
  1091. "defaultKey": func() (any, error) { return s.GetKeyFile() },
  1092. "tgBotEnable": func() (any, error) { return s.GetTgbotEnabled() },
  1093. "subThemeDir": func() (any, error) { return s.GetSubThemeDir() },
  1094. "subEnable": func() (any, error) { return s.GetSubEnable() },
  1095. "subJsonEnable": func() (any, error) { return s.GetSubJsonEnable() },
  1096. "subClashEnable": func() (any, error) { return s.GetSubClashEnable() },
  1097. "subTitle": func() (any, error) { return s.GetSubTitle() },
  1098. "subURI": func() (any, error) { return s.GetSubURI() },
  1099. "subJsonURI": func() (any, error) { return s.GetSubJsonURI() },
  1100. "subClashURI": func() (any, error) { return s.GetSubClashURI() },
  1101. "datepicker": func() (any, error) { return s.GetDatepicker() },
  1102. "ipLimitEnable": func() (any, error) { return s.GetIpLimitEnable() },
  1103. "accessLogEnable": func() (any, error) { return s.GetAccessLogEnable() },
  1104. "webDomain": func() (any, error) { return s.GetWebDomain() },
  1105. "subDomain": func() (any, error) { return s.GetSubDomain() },
  1106. "devChannelEnable": func() (any, error) { return s.GetDevChannelEnable() },
  1107. "isDevBuild": func() (any, error) { return config.IsDevBuild(), nil },
  1108. }
  1109. result := make(map[string]any)
  1110. for key, fn := range settings {
  1111. value, err := fn()
  1112. if err != nil {
  1113. return "", err
  1114. }
  1115. result[key] = value
  1116. }
  1117. subEnable := result["subEnable"].(bool)
  1118. subJsonEnable := false
  1119. if v, ok := result["subJsonEnable"]; ok {
  1120. if b, ok2 := v.(bool); ok2 {
  1121. subJsonEnable = b
  1122. }
  1123. }
  1124. subClashEnable := false
  1125. if v, ok := result["subClashEnable"]; ok {
  1126. if b, ok2 := v.(bool); ok2 {
  1127. subClashEnable = b
  1128. }
  1129. }
  1130. if (subEnable && result["subURI"].(string) == "") || (subJsonEnable && result["subJsonURI"].(string) == "") || (subClashEnable && result["subClashURI"].(string) == "") {
  1131. subURI := s.BuildSubURIBase(host)
  1132. subTitle, _ := s.GetSubTitle()
  1133. subPath, _ := s.GetSubPath()
  1134. subJsonPath, _ := s.GetSubJsonPath()
  1135. subClashPath, _ := s.GetSubClashPath()
  1136. if subEnable && result["subURI"].(string) == "" {
  1137. result["subURI"] = subURI + subPath
  1138. }
  1139. if result["subTitle"].(string) == "" {
  1140. result["subTitle"] = subTitle
  1141. }
  1142. if subJsonEnable && result["subJsonURI"].(string) == "" {
  1143. result["subJsonURI"] = subURI + subJsonPath
  1144. }
  1145. if subClashEnable && result["subClashURI"].(string) == "" {
  1146. result["subClashURI"] = subURI + subClashPath
  1147. }
  1148. }
  1149. return result, nil
  1150. }