| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392 |
- <!-- Proxy Create Form-->
- <style>
- .rulesInstructions{
- background: var(--theme_background) !important;
- color: var(--theme_lgrey);
- border-radius: 1em !important;
- }
- </style>
- <div class="standardContainer">
- <div class="ui stackable grid">
- <div class="ten wide column">
- <div class="ui basic segment" style="border-radius: 1em; padding: 1em !important;">
- <h2>New Proxy Rule</h2>
- <p>You can add more proxy rules to support more site via domain / subdomains</p>
- <div class="ui form">
- <div class="field">
- <label>Matching Keyword / Domain</label>
- <input type="text" id="rootname" placeholder="mydomain.com">
- <small>Support subdomain and wildcard, e.g. s1.mydomain.com or *.test.mydomain.com</small>
- </div>
- <div class="field">
- <label>Target IP Address or Domain Name with port</label>
- <input type="text" id="proxyDomain" onchange="autoCheckTls(this.value);">
- <small>E.g. 192.168.0.101:8000 or example.com</small>
- </div>
- <div class="field">
- <div class="ui checkbox">
- <input type="checkbox" id="reqTls">
- <label>Proxy Target require TLS Connection <br><small>(i.e. Your proxy target starts with https://)</small></label>
- </div>
- </div>
- <!-- Advance configs -->
- <div class="ui basic segment" style="background-color: #f7f7f7; border-radius: 1em;">
- <div id="advanceProxyRules" class="ui fluid accordion">
- <div class="title">
- <i class="dropdown icon"></i>
- Advance Settings
- </div>
- <div class="content">
- <p></p>
- <div class="field">
- <div class="ui checkbox">
- <input type="checkbox" id="skipTLSValidation">
- <label>Ignore TLS/SSL Verification Error<br><small>For targets that is using self-signed, expired certificate (Not Recommended)</small></label>
- </div>
- </div>
- <div class="field">
- <div class="ui checkbox">
- <input type="checkbox" id="bypassGlobalTLS">
- <label>Allow plain HTTP access<br><small>Allow this subdomain to be connected without TLS (Require HTTP server enabled on port 80)</small></label>
- </div>
- </div>
- <div class="field">
- <div class="ui checkbox">
- <input type="checkbox" id="requireBasicAuth">
- <label>Require Basic Auth<br><small>Require client to login in order to view the page</small></label>
- </div>
- </div>
- <div id="basicAuthCredentials" class="field">
- <p>Enter the username and password for allowing them to access this proxy endpoint</p>
- <table class="ui very basic celled table">
- <thead>
- <tr>
- <th>Username</th>
- <th>Password</th>
- <th>Remove</th>
- </tr></thead>
- <tbody id="basicAuthCredentialTable">
- <tr>
- <td colspan="3"><i class="ui green circle check icon"></i> No Entered Credential</td>
- </tr>
- </tbody>
- </table>
- <div class="three small fields credentialEntry">
- <div class="field">
- <input id="basicAuthCredUsername" type="text" placeholder="Username" autocomplete="off">
- </div>
- <div class="field">
- <input id="basicAuthCredPassword" type="password" placeholder="Password" autocomplete="off">
- </div>
- <div class="field">
- <button class="ui basic button" onclick="addCredentials();"><i class="blue add icon"></i> Add Credential</button>
- </div>
- </div>
- </div>
- </div>
- </div>
- </div>
- <br>
- <button class="ui basic button" onclick="newProxyEndpoint();"><i class="green add icon"></i> Create Endpoint</button>
- <br><br>
- </div>
- </div>
- </div>
- <div class="six wide column">
- <div class="ui basic segment rulesInstructions">
- <span style="font-size: 1.2em; font-weight: 300;"><i class="ui yellow star icon"></i> Domain</span><br>
- Example of domain matching keyword:<br>
- <code>arozos.com</code> <br>Any acess requesting arozos.com will be proxy to the IP address below<br>
- <div class="ui divider"></div>
- <span style="font-size: 1.2em; font-weight: 300;"><i class="ui yellow star icon"></i> Subdomain</span><br>
- Example of subdomain matching keyword:<br>
- <code>s1.arozos.com</code> <br>Any request starting with s1.arozos.com will be proxy to the IP address below<br>
- <div class="ui divider"></div>
- <span style="font-size: 1.2em; font-weight: 300;"><i class="ui yellow star icon"></i> Wildcard</span><br>
- Example of wildcard matching keyword:<br>
- <code>*.arozos.com</code> <br>Any request with a host name matching *.arozos.com will be proxy to the IP address below. Here are some examples.<br>
- <div class="ui list">
- <div class="item"><code>www.arozos.com</code></div>
- <div class="item"><code>foo.bar.arozos.com</code></div>
- </div>
- <br>
- </div>
- </div>
- </div>
- </div>
- <script>
- $("#advanceProxyRules").accordion();
-
- //New Proxy Endpoint
- function newProxyEndpoint(){
- var rootname = $("#rootname").val();
- var proxyDomain = $("#proxyDomain").val();
- var useTLS = $("#reqTls")[0].checked;
- var skipTLSValidation = $("#skipTLSValidation")[0].checked;
- var bypassGlobalTLS = $("#bypassGlobalTLS")[0].checked;
- var requireBasicAuth = $("#requireBasicAuth")[0].checked;
- if (rootname.trim() == ""){
- $("#rootname").parent().addClass("error");
- return
- }else{
- $("#rootname").parent().removeClass("error");
- }
- if (proxyDomain.trim() == ""){
- $("#proxyDomain").parent().addClass("error");
- return
- }else{
- $("#proxyDomain").parent().removeClass("error");
- }
- //Create the endpoint by calling add
- $.ajax({
- url: "/api/proxy/add",
- data: {
- type: "host",
- rootname: rootname,
- tls: useTLS,
- ep: proxyDomain,
- tlsval: skipTLSValidation,
- bypassGlobalTLS: bypassGlobalTLS,
- bauth: requireBasicAuth,
- cred: JSON.stringify(credentials),
- },
- success: function(data){
- if (data.error != undefined){
- msgbox(data.error, false, 5000);
- }else{
- //Clear old data
- $("#rootname").val("");
- $("#proxyDomain").val("");
- credentials = [];
- updateTable();
- //Check if it is a new subdomain and TLS enabled
- if ($("#tls").checkbox("is checked")){
- confirmBox("Request new SSL Cert for this subdomain?", function(choice){
- if (choice == true){
- //Load the prefer CA from TLS page
- let defaultCA = $("#defaultCA").dropdown("get value");
- if (defaultCA.trim() == ""){
- defaultCA = "Let's Encrypt";
- }
- //Get a new cert using ACME
- msgbox("Requesting certificate via " + defaultCA +"...");
- console.log("Trying to get a new certificate via ACME");
- obtainCertificate(rootname, defaultCA.trim());
- }else{
- msgbox("Proxy Endpoint Added");
- }
- });
- }else{
- msgbox("Proxy Endpoint Added");
- }
- }
- }
- });
-
- }
- //Generic functions for delete rp endpoints
- function deleteEndpoint(epoint){
- epoint = decodeURIComponent(epoint);
- if (confirm("Confirm remove proxy for :" + epoint + "?")){
- $.ajax({
- url: "/api/proxy/del",
- data: {ep: epoint, },
- success: function(){
- listProxyEndpoints();
- msgbox("Proxy Rule Deleted", true);
- }
- })
- }
- }
- function autoCheckTls(targetDomain){
- $.ajax({
- url: "/api/proxy/tlscheck",
- data: {url: targetDomain},
- success: function(data){
- if (data.error != undefined){
- }else if (data == "https"){
- $("#reqTls").parent().checkbox("set checked");
- }else if (data == "http"){
- $("#reqTls").parent().checkbox("set unchecked");
- }
- }
- })
- }
- function toggleBasicAuth() {
- var basicAuthDiv = document.getElementById('basicAuthOnly');
- if ($("#requireBasicAuth").parent().checkbox("is checked")) {
- $("#basicAuthCredentials").removeClass("disabled");
- } else {
- $("#basicAuthCredentials").addClass("disabled");
- }
- }
- $("#requireBasicAuth").on('change', toggleBasicAuth);
- toggleBasicAuth();
- /*
- Credential Managements
- */
- let credentials = []; // Global variable to store credentials
- function addCredentials() {
- // Retrieve the username and password input values
- var username = $('#basicAuthCredUsername').val();
- var password = $('#basicAuthCredPassword').val();
-
- if(username == "" || password == ""){
- msgbox("Username or password cannot be empty", false, 5000);
- return;
- }
-
- // Create a new credential object
- var credential = {
- username: username,
- password: password
- };
- // Add the credential to the global credentials array
- credentials.push(credential);
- // Clear the input fields
- $('#basicAuthCredUsername').val('');
- $('#basicAuthCredPassword').val('');
- // Update the table body with the credentials
- updateTable();
- }
- function updateTable() {
- var tableBody = $('#basicAuthCredentialTable');
- tableBody.empty();
- if (credentials.length === 0) {
- tableBody.append('<tr><td colspan="3"><i class="ui green circle check icon"></i> No Entered Credential</td></tr>');
- } else {
- for (var i = 0; i < credentials.length; i++) {
- var credential = credentials[i];
- var username = credential.username;
- var password = credential.password.replace(/./g, '*'); // Replace each character with '*'
- var row = '<tr>' +
- '<td>' + username + '</td>' +
- '<td>' + password + '</td>' +
- '<td><button class="ui basic button" onclick="removeCredential(' + i + ');"><i class="red remove icon"></i> Remove</button></td>' +
- '</tr>';
- tableBody.append(row);
- }
- }
- }
- function removeCredential(index) {
- // Remove the credential from the credentials array
- credentials.splice(index, 1);
- // Update the table body
- updateTable();
- }
- /*
- Obtain Certificate via ACME
- */
- //Load the ACME email from server side
- let acmeEmail = "";
- $.get("/api/acme/autoRenew/email", function(data){
- if (data != "" && data != undefined && data != null){
- acmeEmail = data;
- }
- });
- // Obtain certificate from API, only support one domain
- function obtainCertificate(domains, usingCa = "Let's Encrypt") {
- let filename = "";
- let email = acmeEmail;
- if (acmeEmail == ""){
- let rootDomain = domains.split(".").pop();
- email = "admin@" + rootDomain;
- }
- if (filename.trim() == "" && !domains.includes(",")){
- //Zoraxy filename are the matching name for domains.
- //Use the same as domains
- filename = domains;
- }else if (filename != "" && !domains.includes(",")){
- //Invalid settings. Force the filename to be same as domain
- //if there are only 1 domain
- filename = domains;
- }else{
- parent.msgbox("Filename cannot be empty for certs containing multiple domains.")
- return;
- }
- $.ajax({
- url: "/api/acme/obtainCert",
- method: "GET",
- data: {
- domains: domains,
- filename: filename,
- email: email,
- ca: usingCa,
- },
- success: function(response) {
- if (response.error) {
- console.log("Error:", response.error);
- // Show error message
- msgbox(response.error, false, 12000);
- } else {
- console.log("Certificate installed successfully");
- // Show success message
- msgbox("Certificate installed successfully");
-
- // Renew the parent certificate list
- initManagedDomainCertificateList();
- }
- },
- error: function(error) {
- console.log("Failed to install certificate:", error);
- }
- });
- }
- //Update v3.0.0
- //Since some proxy rules now contains wildcard characters
- //all uuid are converted to hex code before use in DOM selector
- String.prototype.hexEncode = function(){
- var hex, i;
- var result = "";
- for (i=0; i<this.length; i++) {
- hex = this.charCodeAt(i).toString(16);
- result += ("000"+hex).slice(-4);
- }
- return result
- }
- String.prototype.hexDecode = function(){
- var j;
- var hexes = this.match(/.{1,4}/g) || [];
- var back = "";
- for(j = 0; j<hexes.length; j++) {
- back += String.fromCharCode(parseInt(hexes[j], 16));
- }
- return back;
- }
- </script>
|
