CRUD and newt mode http mostly working

2026-04-13 13:26:36 +00:00 · 2026-04-12 12:15:29 -07:00
parent 83ecf53776
commit 0cf385b718
8 changed files with 38 additions and 27 deletions
--- a/server/routers/badger/logRequestAudit.ts
+++ b/server/routers/badger/logRequestAudit.ts
@@ -18,6 +18,7 @@ Reasons:
 105 - Valid Password
 106 - Valid email
 107 - Valid SSO
+108 - Connected Client

 201 - Resource Not Found
 202 - Resource Blocked
--- a/server/routers/newt/handleGetConfigMessage.ts
+++ b/server/routers/newt/handleGetConfigMessage.ts
@@ -56,7 +56,7 @@ export const handleGetConfigMessage: MessageHandler = async (context) => {

    if (existingSite.lastHolePunch && now - existingSite.lastHolePunch > 5) {
        logger.warn(
-            `Site last hole punch is too old; skipping this register. The site is failing to hole punch and identify its network address with the server. Can the client reach the server on UDP port ${config.getRawConfig().gerbil.clients_start_port}?`
+            `Site last hole punch is too old; skipping this register. The site is failing to hole punch and identify its network address with the server. Can the site reach the server on UDP port ${config.getRawConfig().gerbil.clients_start_port}?`
        );
        return;
    }
--- a/server/routers/siteResource/createSiteResource.ts
+++ b/server/routers/siteResource/createSiteResource.ts
@@ -262,7 +262,7 @@ export async function createSiteResource(

        let fullDomain: string | null = null;
        let finalSubdomain: string | null = null;
-        if (domainId && subdomain) {
+        if (domainId) {
            // Validate domain and construct full domain
            const domainResult = await validateAndConstructDomain(
                domainId,
--- a/server/routers/siteResource/updateSiteResource.ts
+++ b/server/routers/siteResource/updateSiteResource.ts
@@ -80,18 +80,15 @@ const updateSiteResourceSchema = z
    .strict()
    .refine(
        (data) => {
-            if (
-                data.mode === "host" &&
-                data.destination
-            ) {
-                    const isValidIP = z
-                        // .union([z.ipv4(), z.ipv6()])
-                        .union([z.ipv4()]) // for now lets just do ipv4 until we verify ipv6 works everywhere
-                        .safeParse(data.destination).success;
+            if (data.mode === "host" && data.destination) {
+                const isValidIP = z
+                    // .union([z.ipv4(), z.ipv6()])
+                    .union([z.ipv4()]) // for now lets just do ipv4 until we verify ipv6 works everywhere
+                    .safeParse(data.destination).success;

-                    if (isValidIP) {
-                        return true;
-                    }
+                if (isValidIP) {
+                    return true;
+                }

                // Check if it's a valid domain (hostname pattern, TLD not required)
                const domainRegex =
@@ -306,7 +303,7 @@ export async function updateSiteResource(

        let fullDomain: string | null = null;
        let finalSubdomain: string | null = null;
-        if (domainId && subdomain) {
+        if (domainId) {
            // Validate domain and construct full domain
            const domainResult = await validateAndConstructDomain(
                domainId,
@@ -324,12 +321,16 @@ export async function updateSiteResource(
            finalSubdomain = domainResult.subdomain;

            // make sure the full domain is unique
-            const existingResource = await db
+            const [existingDomain] = await db
                .select()
                .from(siteResources)
                .where(eq(siteResources.fullDomain, fullDomain));

-            if (existingResource.length > 0) {
+            if (
+                existingDomain &&
+                existingDomain.siteResourceId !==
+                    existingSiteResource.siteResourceId
+            ) {
                return next(
                    createHttpError(
                        HttpCode.CONFLICT,
@@ -666,9 +667,14 @@ export async function handleMessagingForUpdatedSiteResource(
    const destinationChanged =
        existingSiteResource &&
        existingSiteResource.destination !== updatedSiteResource.destination;
+    const destinationPortChanged =
+        existingSiteResource &&
+        existingSiteResource.destinationPort !==
+            updatedSiteResource.destinationPort;
    const aliasChanged =
        existingSiteResource &&
-        existingSiteResource.alias !== updatedSiteResource.alias;
+        (existingSiteResource.alias !== updatedSiteResource.alias ||
+            existingSiteResource.fullDomain !== updatedSiteResource.fullDomain); // because the full domain gets sent down to the stuff as an alias
    const portRangesChanged =
        existingSiteResource &&
        (existingSiteResource.tcpPortRangeString !==
@@ -680,7 +686,7 @@ export async function handleMessagingForUpdatedSiteResource(

    // if the existingSiteResource is undefined (new resource) we don't need to do anything here, the rebuild above handled it all

-    if (destinationChanged || aliasChanged || portRangesChanged) {
+    if (destinationChanged || aliasChanged || portRangesChanged || destinationPortChanged) {
        const [newt] = await trx
            .select()
            .from(newts)
@@ -694,7 +700,7 @@ export async function handleMessagingForUpdatedSiteResource(
        }

        // Only update targets on newt if destination changed
-        if (destinationChanged || portRangesChanged) {
+        if (destinationChanged || portRangesChanged || destinationPortChanged) {
            const oldTarget = await generateSubnetProxyTargetV2(
                existingSiteResource,
                mergedAllClients