mirror of
https://github.com/Start9Labs/start-os.git
synced 2026-03-26 18:31:52 +00:00
add01ebc68
* add support for inbound proxies * backend changes * fix file type * proxy -> tunnel, implement backend apis * wip start-tunneld * add domains and gateways, remove routers, fix docs links * dont show hidden actions * show and test dns * edit instead of chnage acme and change gateway * refactor: domains page * refactor: gateways page * domains and acme refactor * certificate authorities * refactor public/private gateways * fix fe types * domains mostly finished * refactor: add file control to form service * add ip util to sdk * domains api + migration * start service interface page, WIP * different options for clearnet domains * refactor: styles for interfaces page * minor * better placeholder for no addresses * start sorting addresses * best address logic * comments * fix unnecessary export * MVP of service interface page * domains preferred * fix: address comments * only translations left * wip: start-tunnel & fix build * forms for adding domain, rework things based on new ideas * fix: dns testing * public domain, max width, descriptions for dns * nix StartOS domains, implement public and private domains at interface scope * restart tor instead of reset * better icon for restart tor * dns * fix sort functions for public and private domains * with todos * update types * clean up tech debt, bump dependencies * revert to ts-rs v9 * fix all types * fix dns form * add missing translations * it builds * fix: comments (#3009) * fix: comments * undo default --------- Co-authored-by: Matt Hill <mattnine@protonmail.com> * fix: refactor legacy components (#3010) * fix: comments * fix: refactor legacy components * remove default again --------- Co-authored-by: Matt Hill <mattnine@protonmail.com> * more translations * wip * fix deadlock * coukd work * simple renaming * placeholder for empty service interfaces table * honor hidden form values * remove logs * reason instead of description * fix dns * misc fixes * implement toggling gateways for service interface * fix showing dns records * move status column in service list * remove unnecessary truthy check * refactor: refactor forms components and remove legacy Taiga UI package (#3012) * handle wh file uploads * wip: debugging tor * socks5 proxy working * refactor: fix multiple comments (#3013) * refactor: fix multiple comments * styling changes, add documentation to sidebar * translations for dns page * refactor: subtle colors * rearrange service page --------- Co-authored-by: Matt Hill <mattnine@protonmail.com> * fix file_stream and remove non-terminating test * clean up logs * support for sccache * fix gha sccache * more marketplace translations * install wizard clarity * stub hostnameInfo in migration * fix address info after setup, fix styling on SI page, new 040 release notes * remove tor logs from os * misc fixes * reset tor still not functioning... * update ts * minor styling and wording * chore: some fixes (#3015) * fix gateway renames * different handling for public domains * styling fixes * whole navbar should not be clickable on service show page * timeout getState request * remove links from changelog * misc fixes from pairing * use custom name for gateway in more places * fix dns parsing * closes #3003 * closes #2999 * chore: some fixes (#3017) * small copy change * revert hardcoded error for testing * dont require port forward if gateway is public * use old wan ip when not available * fix .const hanging on undefined * fix test * fix doc test * fix renames * update deps * allow specifying dependency metadata directly * temporarily make dependencies not cliackable in marketplace listings * fix socks bind * fix test --------- Co-authored-by: Aiden McClelland <me@drbonez.dev> Co-authored-by: waterplea <alexander@inkin.ru>
71 lines
2.3 KiB
Rust
71 lines
2.3 KiB
Rust
use std::path::{Path, PathBuf};
|
|
|
|
use ed25519::PublicKeyBytes;
|
|
use ed25519::pkcs8::EncodePrivateKey;
|
|
use ed25519_dalek::{SigningKey, VerifyingKey};
|
|
use tokio::io::AsyncWriteExt;
|
|
use tracing::instrument;
|
|
|
|
use crate::context::CliContext;
|
|
use crate::context::config::local_config_path;
|
|
use crate::prelude::*;
|
|
use crate::util::io::create_file_mod;
|
|
use crate::util::serde::Pem;
|
|
|
|
pub const OS_DEVELOPER_KEY_PATH: &str = "/run/startos/developer.key.pem";
|
|
|
|
pub fn default_developer_key_path() -> PathBuf {
|
|
local_config_path()
|
|
.as_deref()
|
|
.unwrap_or_else(|| Path::new(crate::context::config::CONFIG_PATH))
|
|
.parent()
|
|
.unwrap_or(Path::new("/"))
|
|
.join("developer.key.pem")
|
|
}
|
|
|
|
pub async fn write_developer_key(
|
|
secret: &ed25519_dalek::SigningKey,
|
|
path: impl AsRef<Path>,
|
|
) -> Result<(), Error> {
|
|
let keypair_bytes = ed25519::KeypairBytes {
|
|
secret_key: secret.to_bytes(),
|
|
public_key: Some(PublicKeyBytes(VerifyingKey::from(secret).to_bytes())),
|
|
};
|
|
let mut file = create_file_mod(path, 0o046).await?;
|
|
file.write_all(
|
|
keypair_bytes
|
|
.to_pkcs8_pem(base64ct::LineEnding::default())
|
|
.with_kind(crate::ErrorKind::Pem)?
|
|
.as_bytes(),
|
|
)
|
|
.await?;
|
|
file.sync_all().await?;
|
|
Ok(())
|
|
}
|
|
|
|
#[instrument(skip_all)]
|
|
pub async fn init(ctx: CliContext) -> Result<(), Error> {
|
|
if tokio::fs::metadata(OS_DEVELOPER_KEY_PATH).await.is_ok() {
|
|
println!("Developer key already exists at {}", OS_DEVELOPER_KEY_PATH);
|
|
} else if tokio::fs::metadata(&ctx.developer_key_path).await.is_err() {
|
|
tracing::info!("Generating new developer key...");
|
|
let secret = SigningKey::generate(&mut ssh_key::rand_core::OsRng::default());
|
|
tracing::info!("Writing key to {}", ctx.developer_key_path.display());
|
|
write_developer_key(&secret, &ctx.developer_key_path).await?;
|
|
println!(
|
|
"New developer key generated at {}",
|
|
ctx.developer_key_path.display()
|
|
);
|
|
} else {
|
|
println!(
|
|
"Developer key already exists at {}",
|
|
ctx.developer_key_path.display()
|
|
);
|
|
}
|
|
Ok(())
|
|
}
|
|
|
|
pub fn pubkey(ctx: CliContext) -> Result<Pem<ed25519_dalek::VerifyingKey>, Error> {
|
|
Ok(Pem(ctx.developer_key()?.verifying_key()))
|
|
}
|