| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140 | package subimport (	"encoding/base64"	"fmt"	"net"	"net/url"	"strings"	"time"	"github.com/gin-gonic/gin"	"github.com/goccy/go-json"	"x-ui/database"	"x-ui/database/model"	"x-ui/logger"	"x-ui/util/common"	"x-ui/util/random"	"x-ui/web/service"	"x-ui/xray")type SubService struct {	address        string	showInfo       bool	remarkModel    string	datepicker     string	inboundService service.InboundService	settingService service.SettingService}func NewSubService(showInfo bool, remarkModel string) *SubService {	return &SubService{		showInfo:    showInfo,		remarkModel: remarkModel,	}}func (s *SubService) GetSubs(subId string, host string) ([]string, int64, xray.ClientTraffic, error) {	s.address = host	var result []string	var traffic xray.ClientTraffic	var lastOnline int64	var clientTraffics []xray.ClientTraffic	inbounds, err := s.getInboundsBySubId(subId)	if err != nil {		return nil, 0, traffic, err	}	if len(inbounds) == 0 {		return nil, 0, traffic, common.NewError("No inbounds found with ", subId)	}	s.datepicker, err = s.settingService.GetDatepicker()	if err != nil {		s.datepicker = "gregorian"	}	for _, inbound := range inbounds {		clients, err := s.inboundService.GetClients(inbound)		if err != nil {			logger.Error("SubService - GetClients: Unable to get clients from inbound")		}		if clients == nil {			continue		}		if len(inbound.Listen) > 0 && inbound.Listen[0] == '@' {			listen, port, streamSettings, err := s.getFallbackMaster(inbound.Listen, inbound.StreamSettings)			if err == nil {				inbound.Listen = listen				inbound.Port = port				inbound.StreamSettings = streamSettings			}		}		for _, client := range clients {			if client.Enable && client.SubID == subId {				link := s.getLink(inbound, client.Email)				result = append(result, link)				ct := s.getClientTraffics(inbound.ClientStats, client.Email)				clientTraffics = append(clientTraffics, ct)				if ct.LastOnline > lastOnline {					lastOnline = ct.LastOnline				}			}		}	}	// Prepare statistics	for index, clientTraffic := range clientTraffics {		if index == 0 {			traffic.Up = clientTraffic.Up			traffic.Down = clientTraffic.Down			traffic.Total = clientTraffic.Total			if clientTraffic.ExpiryTime > 0 {				traffic.ExpiryTime = clientTraffic.ExpiryTime			}		} else {			traffic.Up += clientTraffic.Up			traffic.Down += clientTraffic.Down			if traffic.Total == 0 || clientTraffic.Total == 0 {				traffic.Total = 0			} else {				traffic.Total += clientTraffic.Total			}			if clientTraffic.ExpiryTime != traffic.ExpiryTime {				traffic.ExpiryTime = 0			}		}	}	return result, lastOnline, traffic, nil}func (s *SubService) getInboundsBySubId(subId string) ([]*model.Inbound, error) {	db := database.GetDB()	var inbounds []*model.Inbound	err := db.Model(model.Inbound{}).Preload("ClientStats").Where(`id in (		SELECT DISTINCT inbounds.id		FROM inbounds,			JSON_EACH(JSON_EXTRACT(inbounds.settings, '$.clients')) AS client 		WHERE			protocol in ('vmess','vless','trojan','shadowsocks')			AND JSON_EXTRACT(client.value, '$.subId') = ? AND enable = ?	)`, subId, true).Find(&inbounds).Error	if err != nil {		return nil, err	}	return inbounds, nil}func (s *SubService) getClientTraffics(traffics []xray.ClientTraffic, email string) xray.ClientTraffic {	for _, traffic := range traffics {		if traffic.Email == email {			return traffic		}	}	return xray.ClientTraffic{}}func (s *SubService) getFallbackMaster(dest string, streamSettings string) (string, int, string, error) {	db := database.GetDB()	var inbound *model.Inbound	err := db.Model(model.Inbound{}).		Where("JSON_TYPE(settings, '$.fallbacks') = 'array'").		Where("EXISTS (SELECT * FROM json_each(settings, '$.fallbacks') WHERE json_extract(value, '$.dest') = ?)", dest).		Find(&inbound).Error	if err != nil {		return "", 0, "", err	}	var stream map[string]any	json.Unmarshal([]byte(streamSettings), &stream)	var masterStream map[string]any	json.Unmarshal([]byte(inbound.StreamSettings), &masterStream)	stream["security"] = masterStream["security"]	stream["tlsSettings"] = masterStream["tlsSettings"]	stream["externalProxy"] = masterStream["externalProxy"]	modifiedStream, _ := json.MarshalIndent(stream, "", "  ")	return inbound.Listen, inbound.Port, string(modifiedStream), nil}func (s *SubService) getLink(inbound *model.Inbound, email string) string {	switch inbound.Protocol {	case "vmess":		return s.genVmessLink(inbound, email)	case "vless":		return s.genVlessLink(inbound, email)	case "trojan":		return s.genTrojanLink(inbound, email)	case "shadowsocks":		return s.genShadowsocksLink(inbound, email)	}	return ""}func (s *SubService) genVmessLink(inbound *model.Inbound, email string) string {	if inbound.Protocol != model.VMESS {		return ""	}	obj := map[string]any{		"v":    "2",		"add":  s.address,		"port": inbound.Port,		"type": "none",	}	var stream map[string]any	json.Unmarshal([]byte(inbound.StreamSettings), &stream)	network, _ := stream["network"].(string)	obj["net"] = network	switch network {	case "tcp":		tcp, _ := stream["tcpSettings"].(map[string]any)		header, _ := tcp["header"].(map[string]any)		typeStr, _ := header["type"].(string)		obj["type"] = typeStr		if typeStr == "http" {			request := header["request"].(map[string]any)			requestPath, _ := request["path"].([]any)			obj["path"] = requestPath[0].(string)			headers, _ := request["headers"].(map[string]any)			obj["host"] = searchHost(headers)		}	case "kcp":		kcp, _ := stream["kcpSettings"].(map[string]any)		header, _ := kcp["header"].(map[string]any)		obj["type"], _ = header["type"].(string)		obj["path"], _ = kcp["seed"].(string)	case "ws":		ws, _ := stream["wsSettings"].(map[string]any)		obj["path"] = ws["path"].(string)		if host, ok := ws["host"].(string); ok && len(host) > 0 {			obj["host"] = host		} else {			headers, _ := ws["headers"].(map[string]any)			obj["host"] = searchHost(headers)		}	case "grpc":		grpc, _ := stream["grpcSettings"].(map[string]any)		obj["path"] = grpc["serviceName"].(string)		obj["authority"] = grpc["authority"].(string)		if grpc["multiMode"].(bool) {			obj["type"] = "multi"		}	case "httpupgrade":		httpupgrade, _ := stream["httpupgradeSettings"].(map[string]any)		obj["path"] = httpupgrade["path"].(string)		if host, ok := httpupgrade["host"].(string); ok && len(host) > 0 {			obj["host"] = host		} else {			headers, _ := httpupgrade["headers"].(map[string]any)			obj["host"] = searchHost(headers)		}	case "xhttp":		xhttp, _ := stream["xhttpSettings"].(map[string]any)		obj["path"] = xhttp["path"].(string)		if host, ok := xhttp["host"].(string); ok && len(host) > 0 {			obj["host"] = host		} else {			headers, _ := xhttp["headers"].(map[string]any)			obj["host"] = searchHost(headers)		}		obj["mode"] = xhttp["mode"].(string)	}	security, _ := stream["security"].(string)	obj["tls"] = security	if security == "tls" {		tlsSetting, _ := stream["tlsSettings"].(map[string]any)		alpns, _ := tlsSetting["alpn"].([]any)		if len(alpns) > 0 {			var alpn []string			for _, a := range alpns {				alpn = append(alpn, a.(string))			}			obj["alpn"] = strings.Join(alpn, ",")		}		if sniValue, ok := searchKey(tlsSetting, "serverName"); ok {			obj["sni"], _ = sniValue.(string)		}		tlsSettings, _ := searchKey(tlsSetting, "settings")		if tlsSetting != nil {			if fpValue, ok := searchKey(tlsSettings, "fingerprint"); ok {				obj["fp"], _ = fpValue.(string)			}			if insecure, ok := searchKey(tlsSettings, "allowInsecure"); ok {				obj["allowInsecure"], _ = insecure.(bool)			}		}	}	clients, _ := s.inboundService.GetClients(inbound)	clientIndex := -1	for i, client := range clients {		if client.Email == email {			clientIndex = i			break		}	}	obj["id"] = clients[clientIndex].ID	obj["scy"] = clients[clientIndex].Security	externalProxies, _ := stream["externalProxy"].([]any)	if len(externalProxies) > 0 {		links := ""		for index, externalProxy := range externalProxies {			ep, _ := externalProxy.(map[string]any)			newSecurity, _ := ep["forceTls"].(string)			newObj := map[string]any{}			for key, value := range obj {				if !(newSecurity == "none" && (key == "alpn" || key == "sni" || key == "fp" || key == "allowInsecure")) {					newObj[key] = value				}			}			newObj["ps"] = s.genRemark(inbound, email, ep["remark"].(string))			newObj["add"] = ep["dest"].(string)			newObj["port"] = int(ep["port"].(float64))			if newSecurity != "same" {				newObj["tls"] = newSecurity			}			if index > 0 {				links += "\n"			}			jsonStr, _ := json.MarshalIndent(newObj, "", "  ")			links += "vmess://" + base64.StdEncoding.EncodeToString(jsonStr)		}		return links	}	obj["ps"] = s.genRemark(inbound, email, "")	jsonStr, _ := json.MarshalIndent(obj, "", "  ")	return "vmess://" + base64.StdEncoding.EncodeToString(jsonStr)}func (s *SubService) genVlessLink(inbound *model.Inbound, email string) string {	address := s.address	if inbound.Protocol != model.VLESS {		return ""	}	var vlessSettings model.VLESSSettings	_ = json.Unmarshal([]byte(inbound.Settings), &vlessSettings)	var stream map[string]any	json.Unmarshal([]byte(inbound.StreamSettings), &stream)	clients, _ := s.inboundService.GetClients(inbound)	clientIndex := -1	for i, client := range clients {		if client.Email == email {			clientIndex = i			break		}	}	uuid := clients[clientIndex].ID	port := inbound.Port	streamNetwork := stream["network"].(string)	params := make(map[string]string)	if vlessSettings.Encryption != "" {		params["encryption"] = vlessSettings.Encryption	}	params["type"] = streamNetwork	switch streamNetwork {	case "tcp":		tcp, _ := stream["tcpSettings"].(map[string]any)		header, _ := tcp["header"].(map[string]any)		typeStr, _ := header["type"].(string)		if typeStr == "http" {			request := header["request"].(map[string]any)			requestPath, _ := request["path"].([]any)			params["path"] = requestPath[0].(string)			headers, _ := request["headers"].(map[string]any)			params["host"] = searchHost(headers)			params["headerType"] = "http"		}	case "kcp":		kcp, _ := stream["kcpSettings"].(map[string]any)		header, _ := kcp["header"].(map[string]any)		params["headerType"] = header["type"].(string)		params["seed"] = kcp["seed"].(string)	case "ws":		ws, _ := stream["wsSettings"].(map[string]any)		params["path"] = ws["path"].(string)		if host, ok := ws["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := ws["headers"].(map[string]any)			params["host"] = searchHost(headers)		}	case "grpc":		grpc, _ := stream["grpcSettings"].(map[string]any)		params["serviceName"] = grpc["serviceName"].(string)		params["authority"], _ = grpc["authority"].(string)		if grpc["multiMode"].(bool) {			params["mode"] = "multi"		}	case "httpupgrade":		httpupgrade, _ := stream["httpupgradeSettings"].(map[string]any)		params["path"] = httpupgrade["path"].(string)		if host, ok := httpupgrade["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := httpupgrade["headers"].(map[string]any)			params["host"] = searchHost(headers)		}	case "xhttp":		xhttp, _ := stream["xhttpSettings"].(map[string]any)		params["path"] = xhttp["path"].(string)		if host, ok := xhttp["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := xhttp["headers"].(map[string]any)			params["host"] = searchHost(headers)		}		params["mode"] = xhttp["mode"].(string)	}	security, _ := stream["security"].(string)	if security == "tls" {		params["security"] = "tls"		tlsSetting, _ := stream["tlsSettings"].(map[string]any)		alpns, _ := tlsSetting["alpn"].([]any)		var alpn []string		for _, a := range alpns {			alpn = append(alpn, a.(string))		}		if len(alpn) > 0 {			params["alpn"] = strings.Join(alpn, ",")		}		if sniValue, ok := searchKey(tlsSetting, "serverName"); ok {			params["sni"], _ = sniValue.(string)		}		tlsSettings, _ := searchKey(tlsSetting, "settings")		if tlsSetting != nil {			if fpValue, ok := searchKey(tlsSettings, "fingerprint"); ok {				params["fp"], _ = fpValue.(string)			}			if insecure, ok := searchKey(tlsSettings, "allowInsecure"); ok {				if insecure.(bool) {					params["allowInsecure"] = "1"				}			}		}		if streamNetwork == "tcp" && len(clients[clientIndex].Flow) > 0 {			params["flow"] = clients[clientIndex].Flow		}	}	if security == "reality" {		params["security"] = "reality"		realitySetting, _ := stream["realitySettings"].(map[string]any)		realitySettings, _ := searchKey(realitySetting, "settings")		if realitySetting != nil {			if sniValue, ok := searchKey(realitySetting, "serverNames"); ok {				sNames, _ := sniValue.([]any)				params["sni"] = sNames[random.Num(len(sNames))].(string)			}			if pbkValue, ok := searchKey(realitySettings, "publicKey"); ok {				params["pbk"], _ = pbkValue.(string)			}			if sidValue, ok := searchKey(realitySetting, "shortIds"); ok {				shortIds, _ := sidValue.([]any)				params["sid"] = shortIds[random.Num(len(shortIds))].(string)			}			if fpValue, ok := searchKey(realitySettings, "fingerprint"); ok {				if fp, ok := fpValue.(string); ok && len(fp) > 0 {					params["fp"] = fp				}			}			if pqvValue, ok := searchKey(realitySettings, "mldsa65Verify"); ok {				if pqv, ok := pqvValue.(string); ok && len(pqv) > 0 {					params["pqv"] = pqv				}			}			params["spx"] = "/" + random.Seq(15)		}		if streamNetwork == "tcp" && len(clients[clientIndex].Flow) > 0 {			params["flow"] = clients[clientIndex].Flow		}	}	if security != "tls" && security != "reality" {		params["security"] = "none"	}	externalProxies, _ := stream["externalProxy"].([]any)	if len(externalProxies) > 0 {		links := ""		for index, externalProxy := range externalProxies {			ep, _ := externalProxy.(map[string]any)			newSecurity, _ := ep["forceTls"].(string)			dest, _ := ep["dest"].(string)			port := int(ep["port"].(float64))			link := fmt.Sprintf("vless://%s@%s:%d", uuid, dest, port)			if newSecurity != "same" {				params["security"] = newSecurity			} else {				params["security"] = security			}			url, _ := url.Parse(link)			q := url.Query()			for k, v := range params {				if !(newSecurity == "none" && (k == "alpn" || k == "sni" || k == "fp" || k == "allowInsecure")) {					q.Add(k, v)				}			}			// Set the new query values on the URL			url.RawQuery = q.Encode()			url.Fragment = s.genRemark(inbound, email, ep["remark"].(string))			if index > 0 {				links += "\n"			}			links += url.String()		}		return links	}	link := fmt.Sprintf("vless://%s@%s:%d", uuid, address, port)	url, _ := url.Parse(link)	q := url.Query()	for k, v := range params {		q.Add(k, v)	}	// Set the new query values on the URL	url.RawQuery = q.Encode()	url.Fragment = s.genRemark(inbound, email, "")	return url.String()}func (s *SubService) genTrojanLink(inbound *model.Inbound, email string) string {	address := s.address	if inbound.Protocol != model.Trojan {		return ""	}	var stream map[string]any	json.Unmarshal([]byte(inbound.StreamSettings), &stream)	clients, _ := s.inboundService.GetClients(inbound)	clientIndex := -1	for i, client := range clients {		if client.Email == email {			clientIndex = i			break		}	}	password := clients[clientIndex].Password	port := inbound.Port	streamNetwork := stream["network"].(string)	params := make(map[string]string)	params["type"] = streamNetwork	switch streamNetwork {	case "tcp":		tcp, _ := stream["tcpSettings"].(map[string]any)		header, _ := tcp["header"].(map[string]any)		typeStr, _ := header["type"].(string)		if typeStr == "http" {			request := header["request"].(map[string]any)			requestPath, _ := request["path"].([]any)			params["path"] = requestPath[0].(string)			headers, _ := request["headers"].(map[string]any)			params["host"] = searchHost(headers)			params["headerType"] = "http"		}	case "kcp":		kcp, _ := stream["kcpSettings"].(map[string]any)		header, _ := kcp["header"].(map[string]any)		params["headerType"] = header["type"].(string)		params["seed"] = kcp["seed"].(string)	case "ws":		ws, _ := stream["wsSettings"].(map[string]any)		params["path"] = ws["path"].(string)		if host, ok := ws["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := ws["headers"].(map[string]any)			params["host"] = searchHost(headers)		}	case "grpc":		grpc, _ := stream["grpcSettings"].(map[string]any)		params["serviceName"] = grpc["serviceName"].(string)		params["authority"], _ = grpc["authority"].(string)		if grpc["multiMode"].(bool) {			params["mode"] = "multi"		}	case "httpupgrade":		httpupgrade, _ := stream["httpupgradeSettings"].(map[string]any)		params["path"] = httpupgrade["path"].(string)		if host, ok := httpupgrade["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := httpupgrade["headers"].(map[string]any)			params["host"] = searchHost(headers)		}	case "xhttp":		xhttp, _ := stream["xhttpSettings"].(map[string]any)		params["path"] = xhttp["path"].(string)		if host, ok := xhttp["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := xhttp["headers"].(map[string]any)			params["host"] = searchHost(headers)		}		params["mode"] = xhttp["mode"].(string)	}	security, _ := stream["security"].(string)	if security == "tls" {		params["security"] = "tls"		tlsSetting, _ := stream["tlsSettings"].(map[string]any)		alpns, _ := tlsSetting["alpn"].([]any)		var alpn []string		for _, a := range alpns {			alpn = append(alpn, a.(string))		}		if len(alpn) > 0 {			params["alpn"] = strings.Join(alpn, ",")		}		if sniValue, ok := searchKey(tlsSetting, "serverName"); ok {			params["sni"], _ = sniValue.(string)		}		tlsSettings, _ := searchKey(tlsSetting, "settings")		if tlsSetting != nil {			if fpValue, ok := searchKey(tlsSettings, "fingerprint"); ok {				params["fp"], _ = fpValue.(string)			}			if insecure, ok := searchKey(tlsSettings, "allowInsecure"); ok {				if insecure.(bool) {					params["allowInsecure"] = "1"				}			}		}	}	if security == "reality" {		params["security"] = "reality"		realitySetting, _ := stream["realitySettings"].(map[string]any)		realitySettings, _ := searchKey(realitySetting, "settings")		if realitySetting != nil {			if sniValue, ok := searchKey(realitySetting, "serverNames"); ok {				sNames, _ := sniValue.([]any)				params["sni"] = sNames[random.Num(len(sNames))].(string)			}			if pbkValue, ok := searchKey(realitySettings, "publicKey"); ok {				params["pbk"], _ = pbkValue.(string)			}			if sidValue, ok := searchKey(realitySetting, "shortIds"); ok {				shortIds, _ := sidValue.([]any)				params["sid"] = shortIds[random.Num(len(shortIds))].(string)			}			if fpValue, ok := searchKey(realitySettings, "fingerprint"); ok {				if fp, ok := fpValue.(string); ok && len(fp) > 0 {					params["fp"] = fp				}			}			if pqvValue, ok := searchKey(realitySettings, "mldsa65Verify"); ok {				if pqv, ok := pqvValue.(string); ok && len(pqv) > 0 {					params["pqv"] = pqv				}			}			params["spx"] = "/" + random.Seq(15)		}		if streamNetwork == "tcp" && len(clients[clientIndex].Flow) > 0 {			params["flow"] = clients[clientIndex].Flow		}	}	if security != "tls" && security != "reality" {		params["security"] = "none"	}	externalProxies, _ := stream["externalProxy"].([]any)	if len(externalProxies) > 0 {		links := ""		for index, externalProxy := range externalProxies {			ep, _ := externalProxy.(map[string]any)			newSecurity, _ := ep["forceTls"].(string)			dest, _ := ep["dest"].(string)			port := int(ep["port"].(float64))			link := fmt.Sprintf("trojan://%s@%s:%d", password, dest, port)			if newSecurity != "same" {				params["security"] = newSecurity			} else {				params["security"] = security			}			url, _ := url.Parse(link)			q := url.Query()			for k, v := range params {				if !(newSecurity == "none" && (k == "alpn" || k == "sni" || k == "fp" || k == "allowInsecure")) {					q.Add(k, v)				}			}			// Set the new query values on the URL			url.RawQuery = q.Encode()			url.Fragment = s.genRemark(inbound, email, ep["remark"].(string))			if index > 0 {				links += "\n"			}			links += url.String()		}		return links	}	link := fmt.Sprintf("trojan://%s@%s:%d", password, address, port)	url, _ := url.Parse(link)	q := url.Query()	for k, v := range params {		q.Add(k, v)	}	// Set the new query values on the URL	url.RawQuery = q.Encode()	url.Fragment = s.genRemark(inbound, email, "")	return url.String()}func (s *SubService) genShadowsocksLink(inbound *model.Inbound, email string) string {	address := s.address	if inbound.Protocol != model.Shadowsocks {		return ""	}	var stream map[string]any	json.Unmarshal([]byte(inbound.StreamSettings), &stream)	clients, _ := s.inboundService.GetClients(inbound)	var settings map[string]any	json.Unmarshal([]byte(inbound.Settings), &settings)	inboundPassword := settings["password"].(string)	method := settings["method"].(string)	clientIndex := -1	for i, client := range clients {		if client.Email == email {			clientIndex = i			break		}	}	streamNetwork := stream["network"].(string)	params := make(map[string]string)	params["type"] = streamNetwork	switch streamNetwork {	case "tcp":		tcp, _ := stream["tcpSettings"].(map[string]any)		header, _ := tcp["header"].(map[string]any)		typeStr, _ := header["type"].(string)		if typeStr == "http" {			request := header["request"].(map[string]any)			requestPath, _ := request["path"].([]any)			params["path"] = requestPath[0].(string)			headers, _ := request["headers"].(map[string]any)			params["host"] = searchHost(headers)			params["headerType"] = "http"		}	case "kcp":		kcp, _ := stream["kcpSettings"].(map[string]any)		header, _ := kcp["header"].(map[string]any)		params["headerType"] = header["type"].(string)		params["seed"] = kcp["seed"].(string)	case "ws":		ws, _ := stream["wsSettings"].(map[string]any)		params["path"] = ws["path"].(string)		if host, ok := ws["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := ws["headers"].(map[string]any)			params["host"] = searchHost(headers)		}	case "grpc":		grpc, _ := stream["grpcSettings"].(map[string]any)		params["serviceName"] = grpc["serviceName"].(string)		params["authority"], _ = grpc["authority"].(string)		if grpc["multiMode"].(bool) {			params["mode"] = "multi"		}	case "httpupgrade":		httpupgrade, _ := stream["httpupgradeSettings"].(map[string]any)		params["path"] = httpupgrade["path"].(string)		if host, ok := httpupgrade["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := httpupgrade["headers"].(map[string]any)			params["host"] = searchHost(headers)		}	case "xhttp":		xhttp, _ := stream["xhttpSettings"].(map[string]any)		params["path"] = xhttp["path"].(string)		if host, ok := xhttp["host"].(string); ok && len(host) > 0 {			params["host"] = host		} else {			headers, _ := xhttp["headers"].(map[string]any)			params["host"] = searchHost(headers)		}		params["mode"] = xhttp["mode"].(string)	}	security, _ := stream["security"].(string)	if security == "tls" {		params["security"] = "tls"		tlsSetting, _ := stream["tlsSettings"].(map[string]any)		alpns, _ := tlsSetting["alpn"].([]any)		var alpn []string		for _, a := range alpns {			alpn = append(alpn, a.(string))		}		if len(alpn) > 0 {			params["alpn"] = strings.Join(alpn, ",")		}		if sniValue, ok := searchKey(tlsSetting, "serverName"); ok {			params["sni"], _ = sniValue.(string)		}		tlsSettings, _ := searchKey(tlsSetting, "settings")		if tlsSetting != nil {			if fpValue, ok := searchKey(tlsSettings, "fingerprint"); ok {				params["fp"], _ = fpValue.(string)			}			if insecure, ok := searchKey(tlsSettings, "allowInsecure"); ok {				if insecure.(bool) {					params["allowInsecure"] = "1"				}			}		}	}	encPart := fmt.Sprintf("%s:%s", method, clients[clientIndex].Password)	if method[0] == '2' {		encPart = fmt.Sprintf("%s:%s:%s", method, inboundPassword, clients[clientIndex].Password)	}	externalProxies, _ := stream["externalProxy"].([]any)	if len(externalProxies) > 0 {		links := ""		for index, externalProxy := range externalProxies {			ep, _ := externalProxy.(map[string]any)			newSecurity, _ := ep["forceTls"].(string)			dest, _ := ep["dest"].(string)			port := int(ep["port"].(float64))			link := fmt.Sprintf("ss://%s@%s:%d", base64.StdEncoding.EncodeToString([]byte(encPart)), dest, port)			if newSecurity != "same" {				params["security"] = newSecurity			} else {				params["security"] = security			}			url, _ := url.Parse(link)			q := url.Query()			for k, v := range params {				if !(newSecurity == "none" && (k == "alpn" || k == "sni" || k == "fp" || k == "allowInsecure")) {					q.Add(k, v)				}			}			// Set the new query values on the URL			url.RawQuery = q.Encode()			url.Fragment = s.genRemark(inbound, email, ep["remark"].(string))			if index > 0 {				links += "\n"			}			links += url.String()		}		return links	}	link := fmt.Sprintf("ss://%s@%s:%d", base64.StdEncoding.EncodeToString([]byte(encPart)), address, inbound.Port)	url, _ := url.Parse(link)	q := url.Query()	for k, v := range params {		q.Add(k, v)	}	// Set the new query values on the URL	url.RawQuery = q.Encode()	url.Fragment = s.genRemark(inbound, email, "")	return url.String()}func (s *SubService) genRemark(inbound *model.Inbound, email string, extra string) string {	separationChar := string(s.remarkModel[0])	orderChars := s.remarkModel[1:]	orders := map[byte]string{		'i': "",		'e': "",		'o': "",	}	if len(email) > 0 {		orders['e'] = email	}	if len(inbound.Remark) > 0 {		orders['i'] = inbound.Remark	}	if len(extra) > 0 {		orders['o'] = extra	}	var remark []string	for i := 0; i < len(orderChars); i++ {		char := orderChars[i]		order, exists := orders[char]		if exists && order != "" {			remark = append(remark, order)		}	}	if s.showInfo {		statsExist := false		var stats xray.ClientTraffic		for _, clientStat := range inbound.ClientStats {			if clientStat.Email == email {				stats = clientStat				statsExist = true				break			}		}		// Get remained days		if statsExist {			if !stats.Enable {				return fmt.Sprintf("⛔️N/A%s%s", separationChar, strings.Join(remark, separationChar))			}			if vol := stats.Total - (stats.Up + stats.Down); vol > 0 {				remark = append(remark, fmt.Sprintf("%s%s", common.FormatTraffic(vol), "📊"))			}			now := time.Now().Unix()			switch exp := stats.ExpiryTime / 1000; {			case exp > 0:				remainingSeconds := exp - now				days := remainingSeconds / 86400				hours := (remainingSeconds % 86400) / 3600				minutes := (remainingSeconds % 3600) / 60				if days > 0 {					if hours > 0 {						remark = append(remark, fmt.Sprintf("%dD,%dH⏳", days, hours))					} else {						remark = append(remark, fmt.Sprintf("%dD⏳", days))					}				} else if hours > 0 {					remark = append(remark, fmt.Sprintf("%dH⏳", hours))				} else {					remark = append(remark, fmt.Sprintf("%dM⏳", minutes))				}			case exp < 0:				days := exp / -86400				hours := (exp % -86400) / 3600				minutes := (exp % -3600) / 60				if days > 0 {					if hours > 0 {						remark = append(remark, fmt.Sprintf("%dD,%dH⏳", days, hours))					} else {						remark = append(remark, fmt.Sprintf("%dD⏳", days))					}				} else if hours > 0 {					remark = append(remark, fmt.Sprintf("%dH⏳", hours))				} else {					remark = append(remark, fmt.Sprintf("%dM⏳", minutes))				}			}		}	}	return strings.Join(remark, separationChar)}func searchKey(data any, key string) (any, bool) {	switch val := data.(type) {	case map[string]any:		for k, v := range val {			if k == key {				return v, true			}			if result, ok := searchKey(v, key); ok {				return result, true			}		}	case []any:		for _, v := range val {			if result, ok := searchKey(v, key); ok {				return result, true			}		}	}	return nil, false}func searchHost(headers any) string {	data, _ := headers.(map[string]any)	for k, v := range data {		if strings.EqualFold(k, "host") {			switch v.(type) {			case []any:				hosts, _ := v.([]any)				if len(hosts) > 0 {					return hosts[0].(string)				} else {					return ""				}			case any:				return v.(string)			}		}	}	return ""}// PageData is a view model for subscription.htmltype PageData struct {	Host         string	BasePath     string	SId          string	Download     string	Upload       string	Total        string	Used         string	Remained     string	Expire       int64	LastOnline   int64	Datepicker   string	DownloadByte int64	UploadByte   int64	TotalByte    int64	SubUrl       string	SubJsonUrl   string	Result       []string}// ResolveRequest extracts scheme and host info from request/headers consistently.func (s *SubService) ResolveRequest(c *gin.Context) (scheme string, host string, hostWithPort string, hostHeader string) {	// scheme	scheme = "http"	if c.Request.TLS != nil || strings.EqualFold(c.GetHeader("X-Forwarded-Proto"), "https") {		scheme = "https"	}	// base host (no port)	if h, err := getHostFromXFH(c.GetHeader("X-Forwarded-Host")); err == nil && h != "" {		host = h	}	if host == "" {		host = c.GetHeader("X-Real-IP")	}	if host == "" {		var err error		host, _, err = net.SplitHostPort(c.Request.Host)		if err != nil {			host = c.Request.Host		}	}	// host:port for URLs	hostWithPort = c.GetHeader("X-Forwarded-Host")	if hostWithPort == "" {		hostWithPort = c.Request.Host	}	if hostWithPort == "" {		hostWithPort = host	}	// header display host	hostHeader = c.GetHeader("X-Forwarded-Host")	if hostHeader == "" {		hostHeader = c.GetHeader("X-Real-IP")	}	if hostHeader == "" {		hostHeader = host	}	return}// BuildURLs constructs absolute subscription and json URLs.func (s *SubService) BuildURLs(scheme, hostWithPort, subPath, subJsonPath, subId string) (subURL, subJsonURL string) {	if strings.HasSuffix(subPath, "/") {		subURL = scheme + "://" + hostWithPort + subPath + subId	} else {		subURL = scheme + "://" + hostWithPort + strings.TrimRight(subPath, "/") + "/" + subId	}	if strings.HasSuffix(subJsonPath, "/") {		subJsonURL = scheme + "://" + hostWithPort + subJsonPath + subId	} else {		subJsonURL = scheme + "://" + hostWithPort + strings.TrimRight(subJsonPath, "/") + "/" + subId	}	return}// BuildPageData parses header and prepares the template view model.func (s *SubService) BuildPageData(subId string, hostHeader string, traffic xray.ClientTraffic, lastOnline int64, subs []string, subURL, subJsonURL string) PageData {	download := common.FormatTraffic(traffic.Down)	upload := common.FormatTraffic(traffic.Up)	total := "∞"	used := common.FormatTraffic(traffic.Up + traffic.Down)	remained := ""	if traffic.Total > 0 {		total = common.FormatTraffic(traffic.Total)		left := traffic.Total - (traffic.Up + traffic.Down)		if left < 0 {			left = 0		}		remained = common.FormatTraffic(left)	}	datepicker := s.datepicker	if datepicker == "" {		datepicker = "gregorian"	}	return PageData{		Host:         hostHeader,		BasePath:     "/", // kept as "/"; templates now use context base_path injected from router		SId:          subId,		Download:     download,		Upload:       upload,		Total:        total,		Used:         used,		Remained:     remained,		Expire:       traffic.ExpiryTime / 1000,		LastOnline:   lastOnline,		Datepicker:   datepicker,		DownloadByte: traffic.Down,		UploadByte:   traffic.Up,		TotalByte:    traffic.Total,		SubUrl:       subURL,		SubJsonUrl:   subJsonURL,		Result:       subs,	}}func getHostFromXFH(s string) (string, error) {	if strings.Contains(s, ":") {		realHost, _, err := net.SplitHostPort(s)		if err != nil {			return "", err		}		return realHost, nil	}	return s, nil}
 |