selfprivacy-rest-api/selfprivacy_api/resources/services/ocserv.py

#!/usr/bin/env python3
"""OpenConnect VPN server management module"""
import json
import portalocker
from flask_restful import Resource

from selfprivacy_api.resources.services import api


class EnableOcserv(Resource):
    """Enable OpenConnect VPN server"""

    def post(self):
        """
        Enable OCserv
        ---
        tags:
            - OCserv
        security:
            - bearerAuth: []
        responses:
            200:
                description: OCserv enabled
            401:
                description: Unauthorized
        """
        with open(
            "/etc/nixos/userdata/userdata.json", "r+", encoding="utf-8"
        ) as userdata_file:
            portalocker.lock(userdata_file, portalocker.LOCK_EX)
            try:
                data = json.load(userdata_file)
                if "ocserv" not in data:
                    data["ocserv"] = {}
                data["ocserv"]["enable"] = True
                userdata_file.seek(0)
                json.dump(data, userdata_file, indent=4)
                userdata_file.truncate()
            finally:
                portalocker.unlock(userdata_file)

        return {
            "status": 0,
            "message": "OpenConnect VPN server enabled",
        }


class DisableOcserv(Resource):
    """Disable OpenConnect VPN server"""

    def post(self):
        """
        Disable OCserv
        ---
        tags:
            - OCserv
        security:
            - bearerAuth: []
        responses:
            200:
                description: OCserv disabled
            401:
                description: Unauthorized
        """
        with open(
            "/etc/nixos/userdata/userdata.json", "r+", encoding="utf-8"
        ) as userdata_file:
            portalocker.lock(userdata_file, portalocker.LOCK_EX)
            try:
                data = json.load(userdata_file)
                if "ocserv" not in data:
                    data["ocserv"] = {}
                data["ocserv"]["enable"] = False
                userdata_file.seek(0)
                json.dump(data, userdata_file, indent=4)
                userdata_file.truncate()
            finally:
                portalocker.unlock(userdata_file)

        return {
            "status": 0,
            "message": "OpenConnect VPN server disabled",
        }


api.add_resource(EnableOcserv, "/ocserv/enable")
api.add_resource(DisableOcserv, "/ocserv/disable")
Decomposition 2021-11-11 20:31:28 +02:00			`#!/usr/bin/env python3`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""OpenConnect VPN server management module"""`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`import json`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`import portalocker`
			`from flask_restful import Resource`
Decomposition 2021-11-11 20:31:28 +02:00
			`from selfprivacy_api.resources.services import api`

Input sanitization, added swagger 2021-11-16 18:14:01 +02:00
Decomposition 2021-11-11 20:31:28 +02:00			`class EnableOcserv(Resource):`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""Enable OpenConnect VPN server"""`

Decomposition 2021-11-11 20:31:28 +02:00			`def post(self):`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""`
			`Enable OCserv`
			`---`
			`tags:`
			`- OCserv`
			`security:`
			`- bearerAuth: []`
			`responses:`
			`200:`
			`description: OCserv enabled`
			`401:`
			`description: Unauthorized`
			`"""`
			`with open(`
			`"/etc/nixos/userdata/userdata.json", "r+", encoding="utf-8"`
			`) as userdata_file:`
			`portalocker.lock(userdata_file, portalocker.LOCK_EX)`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`try:`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`data = json.load(userdata_file)`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`if "ocserv" not in data:`
			`data["ocserv"] = {}`
			`data["ocserv"]["enable"] = True`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`userdata_file.seek(0)`
			`json.dump(data, userdata_file, indent=4)`
			`userdata_file.truncate()`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`finally:`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`portalocker.unlock(userdata_file)`
Decomposition 2021-11-11 20:31:28 +02:00
			`return {`
			`"status": 0,`
			`"message": "OpenConnect VPN server enabled",`
			`}`


			`class DisableOcserv(Resource):`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""Disable OpenConnect VPN server"""`

Decomposition 2021-11-11 20:31:28 +02:00			`def post(self):`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""`
			`Disable OCserv`
			`---`
			`tags:`
			`- OCserv`
			`security:`
			`- bearerAuth: []`
			`responses:`
			`200:`
			`description: OCserv disabled`
			`401:`
			`description: Unauthorized`
			`"""`
			`with open(`
			`"/etc/nixos/userdata/userdata.json", "r+", encoding="utf-8"`
			`) as userdata_file:`
			`portalocker.lock(userdata_file, portalocker.LOCK_EX)`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`try:`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`data = json.load(userdata_file)`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`if "ocserv" not in data:`
			`data["ocserv"] = {}`
			`data["ocserv"]["enable"] = False`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`userdata_file.seek(0)`
			`json.dump(data, userdata_file, indent=4)`
			`userdata_file.truncate()`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`finally:`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`portalocker.unlock(userdata_file)`
Decomposition 2021-11-11 20:31:28 +02:00
			`return {`
			`"status": 0,`
			`"message": "OpenConnect VPN server disabled",`
			`}`


			`api.add_resource(EnableOcserv, "/ocserv/enable")`
			`api.add_resource(DisableOcserv, "/ocserv/disable")`