mirror of
https://github.com/aljazceru/addons.git
synced 2026-02-06 05:34:21 +01:00
d291f564ce
* config option for mosquitto log_type * change log_type to be based on LOGGING * remove extra whitespace * use bashio::log.<level> for logging * set run.sh and auth_srv.sh bashio logging level to match supervisor level * lint fixes * Update mosquitto/data/auth_srv.sh Co-authored-by: Pascal Vizeli <pascal.vizeli@syshack.ch> * HomeMatic: s6-overlay & tempio (#1713) * HomeMatic: s6-overlay & tempio * Use tempio * fix line end * Fix dev version * Fix bugs * S6-overlay cleanup for HM & deCONZ (#1717) * HomeMatic: take container down on ReGaHss (#1719) * HomeMatic: Fix ingress (#1720) * HomeMatic: Fix ingress * Fix count * Fix template HM * set run.sh and auth_srv.sh bashio logging level to match supervisor level * lint fixes * Update mosquitto/data/auth_srv.sh Co-authored-by: Pascal Vizeli <pascal.vizeli@syshack.ch> Co-authored-by: Pascal Vizeli <pascal.vizeli@syshack.ch> Co-authored-by: Pascal Vizeli <pvizeli@syshack.ch>
121 lines
2.7 KiB
Bash
Executable File
121 lines
2.7 KiB
Bash
Executable File
#!/usr/bin/env bashio
|
|
# shellcheck disable=SC2244,SC1117
|
|
set +u
|
|
set -e
|
|
|
|
CONFIG_PATH=/data/options.json
|
|
SYSTEM_USER=/data/system_user.json
|
|
REQUEST=()
|
|
REQUEST_BODY=""
|
|
LOGGING=$(bashio::info.logging)
|
|
|
|
declare -A LOCAL_DB
|
|
|
|
## Functions
|
|
|
|
function http_ok() {
|
|
echo -e "HTTP/1.1 200 OK\n"
|
|
exit 0
|
|
}
|
|
|
|
function http_error() {
|
|
echo -e "HTTP/1.1 400 Bad Request\n"
|
|
exit 0
|
|
}
|
|
|
|
|
|
function create_userdb() {
|
|
local logins=0
|
|
local username=""
|
|
local password=""
|
|
local hass_pw=""
|
|
local addons_pw=""
|
|
|
|
logins=$(jq --raw-output '.logins | length' $CONFIG_PATH)
|
|
for (( i=0; i < "$logins"; i++ )); do
|
|
username="$(jq --raw-output ".logins[$i].username" $CONFIG_PATH)"
|
|
password="$(jq --raw-output ".logins[$i].password" $CONFIG_PATH)"
|
|
|
|
LOCAL_DB["${username}"]="${password}"
|
|
done
|
|
|
|
# Add system user to DB
|
|
hass_pw=$(jq --raw-output '.homeassistant.password' $SYSTEM_USER)
|
|
addons_pw=$(jq --raw-output '.addons.password' $SYSTEM_USER)
|
|
|
|
LOCAL_DB['homeassistant']="${hass_pw}"
|
|
LOCAL_DB['addons']="${addons_pw}"
|
|
}
|
|
|
|
|
|
function read_request() {
|
|
local content_length=0
|
|
|
|
while read -r line; do
|
|
line="${line%%[[:cntrl:]]}"
|
|
|
|
if [[ "${line}" =~ Content-Length ]]; then
|
|
content_length="${line//[!0-9]/}"
|
|
fi
|
|
|
|
if [ -z "$line" ]; then
|
|
if [ "${content_length}" -gt 0 ]; then
|
|
read -r -n "${content_length}" REQUEST_BODY
|
|
fi
|
|
break
|
|
fi
|
|
|
|
REQUEST+=("$line")
|
|
done
|
|
}
|
|
|
|
|
|
|
|
function get_var() {
|
|
local variable=$1
|
|
local value=""
|
|
urldecode() { : "${*//+/ }"; echo -e "${_//%/\\x}"; }
|
|
|
|
# shellcheck disable=SC2001
|
|
value="$(echo "$REQUEST_BODY" | sed "s/.*$variable=\([^&]*\).*/\1/g")"
|
|
urldecode "${value}"
|
|
}
|
|
|
|
|
|
## MAIN ##
|
|
bashio::log.level "${LOGGING}"
|
|
|
|
read_request
|
|
|
|
# This feature currently not implemented, we response with 200
|
|
if [[ "${REQUEST[0]}" =~ /superuser ]] || [[ "${REQUEST[0]}" =~ /acl ]]; then
|
|
http_ok
|
|
fi
|
|
|
|
# We read now the user data
|
|
create_userdb
|
|
|
|
username="$(get_var username)"
|
|
password="$(get_var password)"
|
|
|
|
# If local user
|
|
if [ "${LOCAL_DB["${username}"]}" == "${password}" ]; then
|
|
bashio::log.info "[INFO] found ${username} on local database"
|
|
http_ok
|
|
elif [ ${LOCAL_DB["${username}"]+_} ]; then
|
|
bashio::log.warning "[WARN] Not found ${username} on local database"
|
|
http_error
|
|
fi
|
|
|
|
# Ask HomeAssistant Auth
|
|
auth_header="X-Hassio-Key: ${HASSIO_TOKEN}"
|
|
content_type="Content-Type: application/x-www-form-urlencoded"
|
|
|
|
if curl -s -f -X POST -d "${REQUEST_BODY}" -H "${content_type}" -H "${auth_header}" http://hassio/auth > /dev/null; then
|
|
bashio::log.info "[INFO] found ${username} on Home Assistant"
|
|
http_ok
|
|
fi
|
|
|
|
bashio::log.error "[ERROR] Auth error with ${username}"
|
|
http_error
|