pangolin_mirror/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-03-07 03:06:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update the remote subnets

Browse Source
This commit is contained in:
Owen
2025-11-20 15:17:48 -05:00
parent 3750c36aa7
commit 9420b41e39
4 changed files with 113 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

60
server/routers/client/targets.ts
View File

@@ -1,5 +1,7 @@
import { sendToClient } from "#dynamic/routers/ws";
import { db, olms } from "@server/db";
import { SubnetProxyTarget } from "@server/lib/ip";
import { eq } from "drizzle-orm";
export async function addTargets(newtId: string, targets: SubnetProxyTarget[]) {
await sendToClient(newtId, {
@@ -21,8 +23,8 @@ export async function removeTargets(
export async function updateTargets(
newtId: string,
targets: {
oldTargets: SubnetProxyTarget[],
newTargets: SubnetProxyTarget[]
oldTargets: SubnetProxyTarget[];
newTargets: SubnetProxyTarget[];
}
) {
await sendToClient(newtId, {
@@ -30,3 +32,57 @@ export async function updateTargets(
data: targets
});
}
export async function addRemoteSubnets(
clientId: number,
siteId: number,
remoteSubnets: string[],
olmId?: string
) {
if (!olmId) {
const [olm] = await db
.select()
.from(olms)
.where(eq(olms.clientId, clientId))
.limit(1);
if (!olm) {
throw new Error(`Olm with ID ${clientId} not found`);
}
olmId = olm.olmId;
}
await sendToClient(olmId, {
type: `olm/wg/peer/add-remote-subnets`,
data: {
siteId: siteId,
remoteSubnets: remoteSubnets
}
});
}
export async function removeRemoteSubnets(
clientId: number,
siteId: number,
remoteSubnets: string[],
olmId?: string
) {
if (!olmId) {
const [olm] = await db
.select()
.from(olms)
.where(eq(olms.clientId, clientId))
.limit(1);
if (!olm) {
throw new Error(`Olm with ID ${clientId} not found`);
}
olmId = olm.olmId;
}
await sendToClient(olmId, {
type: `olm/wg/peer/remove-remote-subnets`,
data: {
siteId: siteId,
remoteSubnets: remoteSubnets
}
});
}

34
server/routers/siteResource/updateSiteResource.ts
View File

@@ -17,8 +17,12 @@ import { eq, and, ne } from "drizzle-orm";
import { fromError } from "zod-validation-error";
import logger from "@server/logger";
import { OpenAPITags, registry } from "@server/openApi";
import { updateTargets } from "@server/routers/client/targets";
import { generateSubnetProxyTargets } from "@server/lib/ip";
import {
addRemoteSubnets,
removeRemoteSubnets,
updateTargets
} from "@server/routers/client/targets";
import { generateRemoteSubnets, generateSubnetProxyTargets } from "@server/lib/ip";
import {
getClientSiteResourceAccess,
rebuildClientAssociations
@@ -221,11 +225,11 @@ export async function updateSiteResource(
}
const { mergedAllClients } = await rebuildClientAssociations(
updatedSiteResource,
existingSiteResource, // we want to rebuild based on the existing resource then we will apply the change to the destination below
trx
); // we need to call this because we added to the admin role
);
// after everything is rebuilt above we still need to update the targets if the destination changed
// after everything is rebuilt above we still need to update the targets and remote subnets if the destination changed
if (
existingSiteResource.destination !==
updatedSiteResource.destination
@@ -255,6 +259,26 @@ export async function updateSiteResource(
oldTargets: oldTargets,
newTargets: newTargets
});
let olmJobs: Promise<void>[] = [];
for (const client of mergedAllClients) { // we also need to update the remote subnets on the olms for each client that has access to this site
olmJobs.push(
removeRemoteSubnets(
client.clientId,
updatedSiteResource.siteId,
generateRemoteSubnets([existingSiteResource])
)
);
olmJobs.push(
addRemoteSubnets(
client.clientId,
updatedSiteResource.siteId,
generateRemoteSubnets([updatedSiteResource])
)
);
}
await Promise.all(olmJobs);
}
logger.info(