v2.0 Big Update

Author: Seeroy

.gitignore

@@ -5,4 +5,6 @@ servers_old/
 spigots.json
 config.json
 indiftpd*
-logs/
+logs/
+old/
+users.json

app.js

@@ -1,4 +1,53 @@
+var colors = require('colors');
+var fs = require('fs');
+var configManager = require("./config");
+var cfg = configManager.readConfig();
+
 exports.getTimeFormatted = () => {
   date = new Date();
   return "[" + date.getHours().toString().padStart(2, "0") + ":" + date.getMinutes().toString().padStart(2, "0") + ":" + date.getSeconds().toString().padStart(2, "0") + "." + date.getMilliseconds().toString().padStart(2, "0") + "]";
+}
+
+exports.showRequestInLogs = (req, res) => {
+  method = req.method.toString().toUpperCase();
+  ip = req.headers['x-forwarded-for'] || req.socket.remoteAddress;
+  ip = ip.replace("::ffff:", "").replace("::1", "127.0.0.1");
+  url = req.originalUrl;
+  console.log(this.getTimeFormatted(), "[" + colors.yellow(ip) + "]", colors.green(req.method) + " - " + colors.cyan(res.statusCode) + " - " + url);
+  if (cfg['save-logs'] == true) {
+    if (!fs.existsSync("./logs/")) {
+      fs.mkdirSync("./logs");
+    }
+    date = new Date();
+    fname = date.getDate().toString().padStart(2, "0") + "-" + date.getMonth().toString().padStart(2, "0") + "-" + date.getFullYear().toString().padStart(2, "0") + ".log";
+    if (fs.existsSync("./logs/" + fname)) {
+      rf = fs.readFileSync("./logs/" + fname);
+      rf = rf + "\n" + this.getTimeFormatted() + " [" + ip + "] " + req.method + " - " + res.statusCode + " - " + url;
+    } else {
+      rf = this.getTimeFormatted() + " [" + ip + "] " + req.method + " - " + res.statusCode + " - " + url;
+    }
+    fs.writeFileSync("./logs/" + fname, rf);
+  }
+}
+
+exports.showMyMessageInLogs = (req, res, msg) => {
+  method = req.method.toString().toUpperCase();
+  ip = req.headers['x-forwarded-for'] || req.socket.remoteAddress;
+  ip = ip.replace("::ffff:", "").replace("::1", "127.0.0.1");
+  url = req.originalUrl;
+  console.log(this.getTimeFormatted(), "[" + colors.yellow(ip) + "]", msg);
+  if (cfg['save-logs'] == true) {
+    if (!fs.existsSync("./logs/")) {
+      fs.mkdirSync("./logs");
+    }
+    date = new Date();
+    fname = date.getDate().toString().padStart(2, "0") + "-" + date.getMonth().toString().padStart(2, "0") + "-" + date.getFullYear().toString().padStart(2, "0") + ".log";
+    if (fs.existsSync("./logs/" + fname)) {
+      rf = fs.readFileSync("./logs/" + fname);
+      rf = rf + "\n" + this.getTimeFormatted() + " [" + ip + "] " + msg;
+    } else {
+      rf = this.getTimeFormatted() + " [" + ip + "] " + msg;
+    }
+    fs.writeFileSync("./logs/" + fname, rf);
+  }
 }

my_modules/additional.js

@@ -0,0 +1,224 @@
+var config = require('./config');
+var usersConfig = config.readUsersConfig();
+var crypto = require("crypto");
+
+const PASSWORD_REGEX = /^[a-zA-Z0-9_.-]{2,}$/g;
+const LOGIN_REGEX = /^[a-zA-Z0-9_.-]{4,16}$/g;
+const EMAIL_REGEX = /^[\w-\.]+@([\w-]+\.)+[\w-]{2,4}$/g;
+
+exports.authorize = (hash, login) => {
+  var authsucc = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+  if (cfg.auth == false) {
+    authsucc = true;
+  } else {
+    if (typeof (hash) !== "undefined" && hash != "") {
+      if (typeof users[login] !== "undefined" && users[login].username !== "undefined" && users[login].username.length > 0) {
+        if (users[login].hash == hash) {
+          authsucc = true;
+        }
+      }
+    }
+  }
+  return authsucc;
+}
+
+exports.login = (password, login) => {
+  var authsucc = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+  if (cfg.auth == false) {
+    authsucc = true;
+  } else {
+    if (typeof (password) !== "undefined" && password != "") {
+      if (typeof users[login] !== "undefined" && users[login].username !== "undefined" && users[login].username.length > 0) {
+        if (users[login].password == crypto.createHash('sha256').update(password).digest('hex')) {
+          authsucc = true;
+        }
+      }
+    }
+  }
+  return authsucc;
+}
+
+exports.addNewUser = (password, login, permissions, mail) => {
+  success = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+
+  if (login == "kubek") {
+    success = "You can`t use this function on admin account";
+  } else {
+    if (cfg.auth == false) {
+      success = "Auth is disabled";
+    } else {
+      if(Object.keys(users).length >= 6){
+        success = "Users count is limited to 5 users";
+      } else {
+        if (mail == null || typeof mail == "undefined" || mail.match(EMAIL_REGEX)) {
+          if (login.match(LOGIN_REGEX) && password.match(PASSWORD_REGEX)) {
+            if (typeof users[login] == "undefined") {
+              newUserHash = crypto.randomUUID().toString();
+              if (permissions[0] == "") {
+                permissions = [];
+              }
+              users[login] = {
+                username: login,
+                password: crypto.createHash('sha256').update(password).digest('hex'),
+                hash: newUserHash,
+                permissions: permissions,
+                mail: mail
+              }
+              config.writeUsersConfig(users);
+              success = true;
+            } else {
+              success = "User already exists";
+            }
+          } else {
+            success = "Not matching regex";
+          }
+        } else {
+          success = "Not matching regex";
+        }
+      }
+    }
+  }
+  return success;
+}
+
+exports.regenUserHash = (login) => {
+  success = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+
+  if (cfg.auth == false) {
+    success = "Auth is disabled";
+  } else {
+    if (login.match(LOGIN_REGEX)) {
+      if (typeof users[login] !== "undefined") {
+        newUserHash = crypto.randomUUID().toString();
+        users[login]['hash'] = newUserHash;
+        config.writeUsersConfig(users);
+        success = true;
+      } else {
+        success = "User not exists";
+      }
+    } else {
+      success = "Not matching regex";
+    }
+  }
+  return success;
+}
+
+exports.changeAdminPass = (oldPass, newPass) => {
+  success = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+
+  if (cfg.auth == false) {
+    success = "Auth is disabled";
+  } else {
+    op_hash = crypto.createHash('sha256').update(oldPass).digest('hex');
+    np_hash = crypto.createHash('sha256').update(newPass).digest('hex');
+    if (users['kubek']['password'] == op_hash) {
+      users['kubek']['password'] = np_hash;
+      newUserHash = crypto.randomUUID().toString();
+      users['kubek']['hash'] = newUserHash;
+      config.writeUsersConfig(users);
+      success = true;
+    } else {
+      success = "Old password is incorrect";
+    }
+  }
+  return success;
+}
+
+exports.deleteUser = (login) => {
+  success = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+
+  if (login == "kubek") {
+    success = "You can`t use this function on admin account";
+  } else {
+    if (cfg.auth == false) {
+      success = "Auth is disabled";
+    } else {
+      if (login.match(LOGIN_REGEX)) {
+        if (typeof users[login] !== "undefined") {
+          users[login] = "";
+          delete users[login];
+          config.writeUsersConfig(users);
+          success = true;
+        } else {
+          success = "User not exists";
+        }
+      } else {
+        success = "Not matching regex";
+      }
+    }
+  }
+  return success;
+}
+
+exports.editUser = (login, permissions, mail) => {
+  success = false;
+  cfg = config.readConfig();
+  this.reloadUsersConfig();
+  users = usersConfig;
+
+  if (login == "kubek") {
+    success = "You can`t use this function on admin account";
+  } else {
+    if (cfg.auth == false) {
+      success = "Auth is disabled";
+    } else {
+      if (mail == null || mail == "" || typeof mail == "undefined" || mail.match(EMAIL_REGEX)) {
+        if (login.match(LOGIN_REGEX)) {
+          if (typeof users[login] !== "undefined") {
+            users[login]['mail'] = mail;
+            if (permissions[0] == "") {
+              permissions = [];
+            }
+            newUserHash = crypto.randomUUID().toString();
+            users[login]['permissions'] = permissions;
+            users[login]['hash'] = newUserHash;
+            config.writeUsersConfig(users);
+            success = true;
+          } else {
+            success = "User not exists";
+          }
+        } else {
+          success = "Not matching regex";
+        }
+      } else {
+        success = "Not matching regex";
+      }
+    }
+  }
+  return success;
+}
+
+exports.getUserPermissions = (hash, login) => {
+  auth = this.authorize(hash, login);
+  if (auth == true) {
+    if (typeof usersConfig[login] !== "undefined" && typeof usersConfig[login].permissions !== "undefined") {
+      return usersConfig[login].permissions;
+    } else {
+      return false;
+    }
+  } else {
+    return false;
+  }
+}
+
+exports.reloadUsersConfig = () => {
+  usersConfig = config.readUsersConfig();
+}

my_modules/auth_manager.js

@@ -1,5 +1,8 @@
 const fs = require('fs');
-const defaultConfig = '{"lang":"en", "ftpd":false,"ftpd-user":"kubek","ftpd-password":"kubek","auth":false,"owner-user":"kubek","owner-password":"kubek","internet-access":false,"save-logs":true}';
+const CONFIG_VERSION = 1;
+const defaultConfig = '{"lang":"en", "ftpd":false,"ftpd-user":"kubek","ftpd-password":"kubek","auth":false,"internet-access":false,"save-logs":true,"config-version":1}';
+const defaultUsersConfig = '{"kubek": {"username": "kubek","password": "72ba608dbfac8d46d4aaf40f428badf85af1f929fece7480e56602b4452a71fe","mail": "","hash": "","permissions": ["console", "plugins", "filemanager", "server_settings", "kubek_settings"]}}';
+var crypto = require('crypto');
 
 exports.readConfig = () => {
   if (!fs.existsSync("config.json")) {
@@ -9,26 +12,65 @@ exports.readConfig = () => {
   } else {
     parse = JSON.parse(fs.readFileSync("config.json"));
     // FOR BACKWARD COMPABILITY
-    if(typeof parse['internet-access'] === "undefined"){
+    if (typeof parse['internet-access'] === "undefined") {
       parse['internet-access'] = false;
     }
-    if(typeof parse['save-logs'] === "undefined"){
+    if (typeof parse['config-version'] === "undefined") {
+      parse['config-version'] = CONFIG_VERSION;
+    }
+    if (typeof parse['owner-password'] !== "undefined") {
+      users__cfg = this.readUsersConfig();
+      users__cfg['kubek']['password'] = crypto.createHash('sha256').update(parse['owner-password']).digest('hex');
+      this.writeUsersConfig(users__cfg);
+      parse['owner-password'] = "";
+      parse['owner-user'] = "";
+      delete parse['owner-password'];
+      delete parse['owner-user'];
+      this.writeConfig(parse);
+    }
+    if (typeof parse['save-logs'] === "undefined") {
       parse['save-logs'] = false;
     }
     return parse;
   }
 }
 
+exports.readUsersConfig = () => {
+  if (!fs.existsSync("users.json")) {
+    ret = this.writeDefaultUsersConfig();
+    return ret;
+  } else {
+    parsess = JSON.parse(fs.readFileSync("users.json"));
+    return parsess;
+  }
+}
+
 exports.writeConfig = (config) => {
-  fs.writeFileSync("config.json", config)
+  fs.writeFileSync("config.json", JSON.stringify(config, null, "\t"))
+}
+
+exports.writeUsersConfig = (config) => {
+  fs.writeFileSync("users.json", JSON.stringify(config, null, "\t"))
+}
+
+exports.writeServersJSON = (config) => {
+  fs.writeFileSync("./servers/servers.json", JSON.stringify(config, null, "\t"))
 }
 
 exports.writeDefaultConfig = () => {
   fs.writeFileSync("config.json", defaultConfig);
 }
 
+exports.writeDefaultUsersConfig = () => {
+  newHash = crypto.randomUUID().toString();
+  du = JSON.parse(defaultUsersConfig);
+  du['kubek']['hash'] = newHash;
+  fs.writeFileSync("users.json", JSON.stringify(du, null, "\t"));
+  return du;
+}
+
 exports.readServersJSON = () => {
-  if(fs.existsSync("./servers/servers.json")){
+  if (fs.existsSync("./servers/servers.json")) {
     return JSON.parse(fs.readFileSync("./servers/servers.json"));
   } else {
     return false;