Página inicial Explorar Ajuda
Entrar
txlyre
/
3x-ui
mirror de https://github.com/MHSanaei/3x-ui
1
0
Fork 0
Arquivos Issues 0 Wiki
Tree: 7f703f927e
Branches Tags
3x-ui
/
web
/
controller
/
websocket.go

websocket.go 2.4 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. package controller
    2. 

  2. 

  3. import (
    4. 

  4. 	"net"
    5. 

  5. 	"net/http"
    6. 

  6. 	"net/url"
    7. 

  7. 	"strings"
    8. 

  8. 

  9. 	"github.com/mhsanaei/3x-ui/v2/logger"
    10. 

  10. 	"github.com/mhsanaei/3x-ui/v2/web/service"
    11. 

  11. 	"github.com/mhsanaei/3x-ui/v2/web/session"
    12. 

  12. 

  13. 	"github.com/gin-gonic/gin"
    14. 

  14. 	ws "github.com/gorilla/websocket"
    15. 

  15. )
    16. 

  16. 

  17. var upgrader = ws.Upgrader{
    18. 

  18. 	ReadBufferSize:    32768,
    19. 

  19. 	WriteBufferSize:   32768,
    20. 

  20. 	EnableCompression: true,
    21. 

  21. 	CheckOrigin:       checkSameOrigin,
    22. 

  22. }
    23. 

  23. 

  24. // checkSameOrigin allows requests with no Origin header (same-origin or non-browser
    25. 

  25. // clients) and otherwise requires the Origin hostname to match the request hostname.
    26. 

  26. // Comparison is case-insensitive (RFC 7230 §2.7.3) and ignores port differences
    27. 

  27. // (the panel often sits behind a reverse proxy on a different port).
    28. 

  28. func checkSameOrigin(r *http.Request) bool {
    29. 

  29. 	origin := r.Header.Get("Origin")
    30. 

  30. 	if origin == "" {
    31. 

  31. 		return true
    32. 

  32. 	}
    33. 

  33. 	u, err := url.Parse(origin)
    34. 

  34. 	if err != nil || u.Hostname() == "" {
    35. 

  35. 		return false
    36. 

  36. 	}
    37. 

  37. 	host, _, err := net.SplitHostPort(r.Host)
    38. 

  38. 	if err != nil {
    39. 

  39. 		// IPv6 literals without a port arrive as "[::1]"; net.SplitHostPort
    40. 

  40. 		// fails in that case while url.Hostname() returns the address without
    41. 

  41. 		// brackets. Strip them so same-origin checks pass for bare IPv6 hosts.
    42. 

  42. 		host = r.Host
    43. 

  43. 		if len(host) >= 2 && host[0] == '[' && host[len(host)-1] == ']' {
    44. 

  44. 			host = host[1 : len(host)-1]
    45. 

  45. 		}
    46. 

  46. 	}
    47. 

  47. 	return strings.EqualFold(u.Hostname(), host)
    48. 

  48. }
    49. 

  49. 

  50. // WebSocketController handles the HTTP→WebSocket upgrade for real-time updates.
    51. 

  51. // All per-connection lifecycle (pumps, hub registration) lives in
    52. 

  52. // service.WebSocketService — this controller is HTTP-layer only.
    53. 

  53. type WebSocketController struct {
    54. 

  54. 	BaseController
    55. 

  55. 	service *service.WebSocketService
    56. 

  56. }
    57. 

  57. 

  58. // NewWebSocketController creates a controller wired to the given service.
    59. 

  59. func NewWebSocketController(svc *service.WebSocketService) *WebSocketController {
    60. 

  60. 	return &WebSocketController{service: svc}
    61. 

  61. }
    62. 

  62. 

  63. // HandleWebSocket authenticates the request, upgrades the HTTP connection, and
    64. 

  64. // hands ownership of the connection off to the service.
    65. 

  65. func (w *WebSocketController) HandleWebSocket(c *gin.Context) {
    66. 

  66. 	if !session.IsLogin(c) {
    67. 

  67. 		logger.Warningf("Unauthorized WebSocket connection attempt from %s", getRemoteIp(c))
    68. 

  68. 		c.AbortWithStatus(http.StatusUnauthorized)
    69. 

  69. 		return
    70. 

  70. 	}
    71. 

  71. 

  72. 	conn, err := upgrader.Upgrade(c.Writer, c.Request, nil)
    73. 

  73. 	if err != nil {
    74. 

  74. 		logger.Error("Failed to upgrade WebSocket connection:", err)
    75. 

  75. 		return
    76. 

  76. 	}
    77. 

  77. 

  78. 	w.service.HandleConnection(conn, getRemoteIp(c))
    79. 

  79. }
    80.