kennyh
/
emqx4.3


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234
							%%--------------------------------------------------------------------
%% Copyright (c) 2013-2018 EMQ Enterprise, Inc. (http://emqtt.io)
%%
%% Licensed under the Apache License, Version 2.0 (the "License");
%% you may not use this file except in compliance with the License.
%% You may obtain a copy of the License at
%%
%%     http://www.apache.org/licenses/LICENSE-2.0
%%
%% Unless required by applicable law or agreed to in writing, software
%% distributed under the License is distributed on an "AS IS" BASIS,
%% WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
%% See the License for the specific language governing permissions and
%% limitations under the License.
%%--------------------------------------------------------------------

%% @doc HTTP publish API and websocket client.

-module(emqttd_http).

-author("Feng Lee <feng@emqtt.io>").

-include("emqttd.hrl").

-include("emqttd_protocol.hrl").

-import(proplists, [get_value/2, get_value/3]).

-export([http_handler/0, handle_request/2, http_api/0, inner_handle_request/2]).

-include("emqttd_internal.hrl").

-record(state, {dispatch}).

http_handler() ->
    APIs = http_api(),
    State = #state{dispatch = dispatcher(APIs)},
    {?MODULE, handle_request, [State]}.

http_api() ->
    Attr = emqttd_rest_api:module_info(attributes),
    [{Regexp, Method, Function, Args} || {http_api, [{Regexp, Method, Function, Args}]} <- Attr].

%%--------------------------------------------------------------------
%% Handle HTTP Request
%%--------------------------------------------------------------------
handle_request(Req, State) ->
    Path = Req:get(path),
    case Path of
        "/status" ->
            handle_request("/status", Req, Req:get(method));
        "/" ->
            handle_request("/", Req, Req:get(method));
        "/api/v2/auth" ->
            handle_request(Path, Req, State);
        _ ->
            if_authorized(Req, fun() -> handle_request(Path, Req, State) end)
    end.

inner_handle_request(Req, State) ->
    Path = Req:get(path),
    case Path of
        "/api/v2/auth" -> handle_request(Path, Req, State);
        _ -> if_authorized(Req, fun() -> handle_request(Path, Req, State) end)
    end.

handle_request("/api/v2/" ++ Url, Req, #state{dispatch = Dispatch}) ->
    Dispatch(Req, Url);

handle_request("/status", Req, Method) when Method =:= 'HEAD'; Method =:= 'GET' ->
    {InternalStatus, _ProvidedStatus} = init:get_status(),
    AppStatus = case lists:keysearch(emqttd, 1, application:which_applications()) of
        false         -> not_running;
        {value, _Val} -> running
    end,
    Status = io_lib:format("Node ~s is ~s~nemqttd is ~s",
                            [node(), InternalStatus, AppStatus]),
    Req:ok({"text/plain", iolist_to_binary(Status)});

handle_request("/", Req, Method) when Method =:= 'HEAD'; Method =:= 'GET' ->
    respond(Req, 200, api_list());

handle_request(_, Req, #state{}) ->
    respond(Req, 404, []).

dispatcher(APIs) ->
    fun(Req, Url) ->
        Method = Req:get(method),
        case filter(APIs, Url, Method) of
            [{Regexp, _Method, Function, FilterArgs}] ->
                case params(Req) of
                    {error, Error1} ->
                        respond(Req, 200, Error1);
                    Params ->
                        case {check_params(Params, FilterArgs),
                              check_params_type(Params, FilterArgs)} of
                            {true, true} ->
                                {match, [MatchList]} = re:run(Url, Regexp, [global, {capture, all_but_first, list}]),
                                Args = lists:append([[Method, Params], MatchList]),
                                lager:debug("Mod:~p, Fun:~p, Args:~p", [emqttd_rest_api, Function, Args]),
                                case catch apply(emqttd_rest_api, Function, Args) of
                                    {ok, Data} ->
                                        respond(Req, 200, [{code, ?SUCCESS}, {result, Data}]);
                                    {error, Error} ->
                                        respond(Req, 200, Error);
                                    {'EXIT', Reason} ->
                                        lager:error("Execute API '~s' Error: ~p", [Url, Reason]),
                                        respond(Req, 404, [])
                                end;
                            {false, _} ->
                                respond(Req, 200, [{code, ?ERROR7}, {message, <<"params error">>}]);
                            {_, false} ->
                                respond(Req, 200, [{code, ?ERROR8}, {message, <<"params type error">>}])
                        end
                end;
            _ ->
                lager:error("No match Url:~p", [Url]),
                respond(Req, 404, [])
        end
    end.

% %%--------------------------------------------------------------------
% %% Basic Authorization
% %%--------------------------------------------------------------------
if_authorized(Req, Fun) ->
    case authorized(Req) of
        true  -> Fun();
        false -> respond(Req, 401,  [])
    end.

authorized(Req) ->
    case Req:get_header_value("Authorization") of
        undefined ->
            false;
        "Basic " ++ BasicAuth ->
            {Username, Password} = user_passwd(BasicAuth),
            case emqttd_mgmt:check_user(Username, Password) of
                ok ->
                    true;
                {error, Reason} ->
                    lager:error("HTTP Auth failure: username=~s, reason=~p", [Username, Reason]),
                    false
            end
    end.

user_passwd(BasicAuth) ->
    list_to_tuple(binary:split(base64:decode(BasicAuth), <<":">>)).

respond(Req, 401, Data) ->
    Req:respond({401, [{"WWW-Authenticate", "Basic Realm=\"emqx control center\""}], Data});
respond(Req, 404, Data) ->
    Req:respond({404, [{"Content-Type", "text/plain"}], Data});
respond(Req, 200, Data) ->
    Req:respond({200, [{"Content-Type", "application/json"}], to_json(Data)});
respond(Req, Code, Data) ->
    Req:respond({Code, [{"Content-Type", "text/plain"}], Data}).

filter(APIs, Url, Method) ->
    lists:filter(fun({Regexp, Method1, _Function, _Args}) ->
        case re:run(Url, Regexp, [global, {capture, all_but_first, list}]) of
            {match, _} -> Method =:= Method1;
            _ -> false
        end
    end, APIs).

params(Req) ->
    Method = Req:get(method),
    case Method of
        'GET' ->
            mochiweb_request:parse_qs(Req);
        _ ->
            case Req:recv_body() of
                <<>> -> [];
                undefined -> [];
                Body ->
                    case jsx:is_json(Body) of
                        true -> jsx:decode(Body);
                        false ->
                            lager:error("Body:~p", [Body]),
                            {error, [{code, ?ERROR9}, {message, <<"Body not json">>}]}
                    end
            end
    end.

check_params(_Params, Args) when Args =:= [] ->
    true;
check_params(Params, Args)->
    not lists:any(fun({Item, _Type}) -> undefined =:= proplists:get_value(Item, Params) end, Args).

check_params_type(_Params, Args) when Args =:= [] ->
    true;
check_params_type(Params, Args) ->
    not lists:any(fun({Item, Type}) ->
        Val = proplists:get_value(Item, Params),
        case Type of
            int -> not is_integer(Val);
            binary -> not is_binary(Val);
            bool -> not is_boolean(Val)
        end
    end, Args).

to_json([])   -> <<"[]">>;
to_json(Data) -> iolist_to_binary(mochijson2:encode(Data)).

api_list() ->
    [{paths, [<<"api/v2/management/nodes">>,
              <<"api/v2/management/nodes/{node_name}">>,
              <<"api/v2/monitoring/nodes">>,
              <<"api/v2/monitoring/nodes/{node_name}">>,
              <<"api/v2/monitoring/listeners">>,
              <<"api/v2/monitoring/listeners/{node_name}">>,
              <<"api/v2/monitoring/metrics/">>,
              <<"api/v2/monitoring/metrics/{node_name}">>,
              <<"api/v2/monitoring/stats">>,
              <<"api/v2/monitoring/stats/{node_name}">>,
              <<"api/v2/nodes/{node_name}/clients">>,
              <<"api/v2/nodes/{node_name}/clients/{clientid}">>,
              <<"api/v2/clients/{clientid}">>,
              <<"api/v2/clients/{clientid}/clean_acl_cache">>,
              <<"api/v2/nodes/{node_name}/sessions">>,
              <<"api/v2/nodes/{node_name}/sessions/{clientid}">>,
              <<"api/v2/sessions/{clientid}">>,
              <<"api/v2/nodes/{node_name}/subscriptions">>,
              <<"api/v2/nodes/{node_name}/subscriptions/{clientid}">>,
              <<"api/v2/subscriptions/{clientid}">>,
              <<"api/v2/routes">>,
              <<"api/v2/routes/{topic}">>,
              <<"api/v2/mqtt/publish">>,
              <<"api/v2/mqtt/subscribe">>,
              <<"api/v2/mqtt/unsubscribe">>,
              <<"api/v2/nodes/{node_name}/plugins">>,
              <<"api/v2/nodes/{node_name}/plugins/{plugin_name}">>,
              <<"api/v2/configs/{app}">>,
              <<"api/v2/nodes/{node_name}/configs/{app}">>]}].