mh
/
mhsw-espurna
1
0
Fork 0
Code Releases 0 Activity
Fork of the espurna firmware for `mhsw` switches
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2956 Commits
18 Branches
212 MiB
Tree: 4d978a46ac
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4d978a46ac'
${ noResults }
mhsw-espurna/code/espurna/web.ino

558 lines
16 KiB
Raw Normal View History

Complete update
8 years ago
[copyright-update] Update for 2019
5 years ago
Complete update
8 years ago
Option to build without web server support
7 years ago
system: move prototypes to a separate header
4 years ago
relay: replace eeprom 8bit with 32bit bitmask stored in settings - mask is defined as (relay# status << number) - transparently handle base-2 and base-10 numbers - if the relay mode requires us to save the mask, it will be saved as base-2
4 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
relay: replace eeprom 8bit with 32bit bitmask stored in settings - mask is defined as (relay# status << number) - transparently handle base-2 and base-10 numbers - if the relay mode requires us to save the mask, it will be saved as base-2
4 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
First power.ino module
7 years ago
Added basic authetication and CSRF check to websocket requests
7 years ago
Complete update
8 years ago
Further renaming
7 years ago
Pre-build the different available WebUI images
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
UI for LightFox
5 years ago
Fix conflicts: 1. Add thermostat to the espurna_modules in progmem.h 2. Add thermostat to webui, gulp, html, js. 3. in general.h MQTT_USE_JSON returned to 0 by default and 1 if thermostat enabled.
5 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Pre-build the different available WebUI images
6 years ago
Option to build without NTP support
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
4 years ago
HTTPS disabled by default
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
4 years ago
Testing web interface over SSL
7 years ago
Option to build without web server support
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
Option to build without web server support
7 years ago
Restore settings & reset via HTTP
6 years ago
Complete update
8 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Option to build without web server support
7 years ago
Split web code into web, ws and api
6 years ago
Option to build without web server support
7 years ago
Restore settings & reset via HTTP
6 years ago
Authenticate /reset endpoint (#1858)
5 years ago
Restore settings & reset via HTTP
6 years ago
Enable CORS
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Enable CORS
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Enable CORS
6 years ago
Backup and restore settings from file
7 years ago
Split web code into web, ws and api
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Backup and restore settings from file
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Backup and restore settings from file
7 years ago
Fix bug using snprintf
7 years ago
Backup and restore settings from file
7 years ago
Added security headers for each HTTP response
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Fix crash on loading malformed settings, option to load partial configuration
6 years ago
Adding /api and /apis to API request callback
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Fix crash on loading malformed settings, option to load partial configuration
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Backup and restore settings from file
7 years ago
Restore settings & reset via HTTP
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Restore settings & reset via HTTP
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Restore settings & reset via HTTP
6 years ago
Web OTA: check authentication result before accepting payload (#1812)
5 years ago
Restore settings & reset via HTTP
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Restore settings & reset via HTTP
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Restore settings & reset via HTTP
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Restore settings & reset via HTTP
6 years ago
Further renaming
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Split web code into web, ws and api
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
4 years ago
Chunked response for SSL requests
7 years ago
WTF - ESP.getFreeHeap crashing the system for an specific light bulb...
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Update web.ino tabs to spaces for consistency
6 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
4 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
Small changes in config variables
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
Add Update error number to error message in web UI
7 years ago
Split web code into web, ws and api
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Simplify and fix web auth code (#284)
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Add Update error number to error message in web UI
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Add Update error number to error message in web UI
7 years ago
Upgrade form and handle code
7 years ago
Web OTA: check authentication result before accepting payload (#1812)
5 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Update EEPROM_Rotate to 0.9.1 and use rotate(false) before OTA
6 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Upgrade form and handle code
7 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Option to build without web server support
7 years ago
Revert WS to ticket-based authentication
6 years ago
Build option to disable password check (USE_PASSWORD). Password check is enabled by default. Use at your own risk (#373)
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Build option to disable password check (USE_PASSWORD). Password check is enabled by default. Use at your own risk (#373)
6 years ago
Split web code into web, ws and api
6 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
SSDP working
6 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
4 years ago
SSDP working
6 years ago
Split web code into web, ws and api
6 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Option to build without web server support
7 years ago
Fix bug using snprintf
7 years ago
Option to build without web server support
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
* Support for ITead's Sonoff Dual * Support for Electrodragon's ESP Relay Board * Support for multi-relay boards * Changed relay MQTT topics * Changed relay API entry points * Removed non-secure api entry points
7 years ago
Further renaming
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Adding /api and /apis to API request callback
6 years ago
Restore settings & reset via HTTP
6 years ago
Backup and restore settings from file
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Web OTA: check authentication result before accepting payload (#1812)
5 years ago
Enable CORS
6 years ago
Bring back HTTP relay entry points
7 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Refactoring build flag names
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Split web code into web, ws and api
6 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Added EEPROM management commands to terminal interface
7 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
4 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
Added password check to telnet
6 years ago
SSDP working
6 years ago
Complete update
8 years ago
Option to build without web server support
7 years ago
 
  1. /*

  2. 

  3. WEBSERVER MODULE
  4. 

  5. Copyright (C) 2016-2019 by Xose Pérez <xose dot perez at gmail dot com>
  6. 

  7. */
  8. 

  9. #if WEB_SUPPORT

  10. 

  11. #include "system.h"

  12. #include "utils.h"

  13. #include "ota.h"

  14. 

  15. #include <ESPAsyncTCP.h>

  16. #include <ESPAsyncWebServer.h>

  17. #include <Hash.h>

  18. #include <FS.h>

  19. #include <AsyncJson.h>

  20. #include <ArduinoJson.h>

  21. 

  22. #if WEB_EMBEDDED

  23. 

  24. #if WEBUI_IMAGE == WEBUI_IMAGE_SMALL

  25.     #include "static/index.small.html.gz.h"

  26. #elif WEBUI_IMAGE == WEBUI_IMAGE_LIGHT

  27.     #include "static/index.light.html.gz.h"

  28. #elif WEBUI_IMAGE == WEBUI_IMAGE_SENSOR

  29.     #include "static/index.sensor.html.gz.h"

  30. #elif WEBUI_IMAGE == WEBUI_IMAGE_RFBRIDGE

  31.     #include "static/index.rfbridge.html.gz.h"

  32. #elif WEBUI_IMAGE == WEBUI_IMAGE_RFM69

  33.     #include "static/index.rfm69.html.gz.h"

  34. #elif WEBUI_IMAGE == WEBUI_IMAGE_LIGHTFOX

  35.     #include "static/index.lightfox.html.gz.h"

  36. #elif WEBUI_IMAGE == WEBUI_IMAGE_THERMOSTAT

  37.     #include "static/index.thermostat.html.gz.h"

  38. #elif WEBUI_IMAGE == WEBUI_IMAGE_FULL

  39.     #include "static/index.all.html.gz.h"

  40. #endif

  41. 

  42. #endif // WEB_EMBEDDED

  43. 

  44. #if WEB_SSL_ENABLED

  45. #include "static/server.cer.h"

  46. #include "static/server.key.h"

  47. #endif // WEB_SSL_ENABLED

  48. 

  49. // -----------------------------------------------------------------------------

  50. 

  51. AsyncWebServer * _server;
  52. char _last_modified[50];
  53. std::vector<uint8_t> * _webConfigBuffer;
  54. bool _webConfigSuccess = false;
  55. 

  56. std::vector<web_request_callback_f> _web_request_callbacks;
  57. std::vector<web_body_callback_f> _web_body_callbacks;
  58. 

  59. constexpr const size_t WEB_CONFIG_BUFFER_MAX = 4096;
  60. 

  61. // -----------------------------------------------------------------------------

  62. // HOOKS

  63. // -----------------------------------------------------------------------------

  64. 

  65. void _onReset(AsyncWebServerRequest *request) {
  66. 

  67.     webLog(request);
  68.     if (!webAuthenticate(request)) {
  69.         return request->requestAuthentication(getSetting("hostname").c_str());
  70.     }
  71. 

  72.     deferredReset(100, CUSTOM_RESET_HTTP);
  73.     request->send(200);
  74. }
  75. 

  76. void _onDiscover(AsyncWebServerRequest *request) {
  77. 

  78.     webLog(request);
  79. 

  80.     const String device = getBoardName();
  81.     const String hostname = getSetting("hostname");
  82. 

  83.     StaticJsonBuffer<JSON_OBJECT_SIZE(4)> jsonBuffer;
  84.     JsonObject &root = jsonBuffer.createObject();
  85.     root["app"] = APP_NAME;
  86.     root["version"] = APP_VERSION;
  87.     root["device"] = device.c_str();
  88.     root["hostname"] = hostname.c_str();
  89. 

  90.     AsyncResponseStream *response = request->beginResponseStream("application/json", root.measureLength() + 1);
  91.     root.printTo(*response);
  92. 

  93.     request->send(response);
  94. 

  95. }
  96. 

  97. void _onGetConfig(AsyncWebServerRequest *request) {
  98. 

  99.     webLog(request);
  100.     if (!webAuthenticate(request)) {
  101.         return request->requestAuthentication(getSetting("hostname").c_str());
  102.     }
  103. 

  104.     AsyncResponseStream *response = request->beginResponseStream("application/json");
  105. 

  106.     char buffer[100];
  107.     snprintf_P(buffer, sizeof(buffer), PSTR("attachment; filename=\"%s-backup.json\""), (char *) getSetting("hostname").c_str());
  108.     response->addHeader("Content-Disposition", buffer);
  109.     response->addHeader("X-XSS-Protection", "1; mode=block");
  110.     response->addHeader("X-Content-Type-Options", "nosniff");
  111.     response->addHeader("X-Frame-Options", "deny");
  112. 

  113.     response->printf("{\n\"app\": \"%s\"", APP_NAME);
  114.     response->printf(",\n\"version\": \"%s\"", APP_VERSION);
  115.     response->printf(",\n\"backup\": \"1\"");
  116.     #if NTP_SUPPORT

  117.         response->printf(",\n\"timestamp\": \"%s\"", ntpDateTime().c_str());
  118.     #endif

  119. 

  120.     // Write the keys line by line (not sorted)

  121.     unsigned long count = settingsKeyCount();
  122.     for (unsigned int i=0; i<count; i++) {
  123.         String key = settingsKeyName(i);
  124.         String value = getSetting(key);
  125.         response->printf(",\n\"%s\": \"%s\"", key.c_str(), value.c_str());
  126.     }
  127.     response->printf("\n}");
  128. 

  129.     request->send(response);
  130. 

  131. }
  132. 

  133. void _onPostConfig(AsyncWebServerRequest *request) {
  134.     webLog(request);
  135.     if (!webAuthenticate(request)) {
  136.         return request->requestAuthentication(getSetting("hostname").c_str());
  137.     }
  138.     request->send(_webConfigSuccess ? 200 : 400);
  139. }
  140. 

  141. void _onPostConfigFile(AsyncWebServerRequest *request, String filename, size_t index, uint8_t *data, size_t len, bool final) {
  142. 

  143.     if (!webAuthenticate(request)) {
  144.         return request->requestAuthentication(getSetting("hostname").c_str());
  145.     }
  146. 

  147.     // No buffer

  148.     if (final && (index == 0)) {
  149.         _webConfigSuccess = settingsRestoreJson((char*) data);
  150.         return;
  151.     }
  152. 

  153.     // Buffer start => reset

  154.     if (index == 0) if (_webConfigBuffer) delete _webConfigBuffer;
  155. 

  156.     // init buffer if it doesn't exist

  157.     if (!_webConfigBuffer) {
  158.         _webConfigBuffer = new std::vector<uint8_t>();
  159.         _webConfigSuccess = false;
  160.     }
  161. 

  162.     // Copy

  163.     if (len > 0) {
  164.         if ((_webConfigBuffer->size() + len) > std::min(WEB_CONFIG_BUFFER_MAX, getFreeHeap() - sizeof(std::vector<uint8_t>))) {
  165.             delete _webConfigBuffer;
  166.             _webConfigBuffer = nullptr;
  167.             request->send(500);
  168.             return;
  169.         }
  170.         _webConfigBuffer->reserve(_webConfigBuffer->size() + len);
  171.         _webConfigBuffer->insert(_webConfigBuffer->end(), data, data + len);
  172.     }
  173. 

  174.     // Ending

  175.     if (final) {
  176. 

  177.         _webConfigBuffer->push_back(0);
  178.         _webConfigSuccess = settingsRestoreJson((char*) _webConfigBuffer->data());
  179.         delete _webConfigBuffer;
  180. 

  181.     }
  182. 

  183. }
  184. 

  185. #if WEB_EMBEDDED

  186. void _onHome(AsyncWebServerRequest *request) {
  187. 

  188.     webLog(request);
  189.     if (!webAuthenticate(request)) {
  190.         return request->requestAuthentication(getSetting("hostname").c_str());
  191.     }
  192. 

  193.     if (request->header("If-Modified-Since").equals(_last_modified)) {
  194. 

  195.         request->send(304);
  196. 

  197.     } else {
  198. 

  199.         #if WEB_SSL_ENABLED

  200. 

  201.             // Chunked response, we calculate the chunks based on free heap (in multiples of 32)

  202.             // This is necessary when a TLS connection is open since it sucks too much memory

  203.             DEBUG_MSG_P(PSTR("[MAIN] Free heap: %d bytes\n"), getFreeHeap());
  204.             size_t max = (getFreeHeap() / 3) & 0xFFE0;
  205. 

  206.             AsyncWebServerResponse *response = request->beginChunkedResponse("text/html", [max](uint8_t *buffer, size_t maxLen, size_t index) -> size_t {
  207. 

  208.                 // Get the chunk based on the index and maxLen

  209.                 size_t len = webui_image_len - index;
  210.                 if (len > maxLen) len = maxLen;
  211.                 if (len > max) len = max;
  212.                 if (len > 0) memcpy_P(buffer, webui_image + index, len);
  213. 

  214.                 DEBUG_MSG_P(PSTR("[WEB] Sending %d%%%% (max chunk size: %4d)\r"), int(100 * index / webui_image_len), max);
  215.                 if (len == 0) DEBUG_MSG_P(PSTR("\n"));
  216. 

  217.                 // Return the actual length of the chunk (0 for end of file)

  218.                 return len;
  219. 

  220.             });
  221. 

  222.         #else

  223. 

  224.             AsyncWebServerResponse *response = request->beginResponse_P(200, "text/html", webui_image, webui_image_len);
  225. 

  226.         #endif

  227. 

  228.         response->addHeader("Content-Encoding", "gzip");
  229.         response->addHeader("Last-Modified", _last_modified);
  230.         response->addHeader("X-XSS-Protection", "1; mode=block");
  231.         response->addHeader("X-Content-Type-Options", "nosniff");
  232.         response->addHeader("X-Frame-Options", "deny");
  233.         request->send(response);
  234. 

  235.     }
  236. 

  237. }
  238. #endif

  239. 

  240. #if WEB_SSL_ENABLED

  241. 

  242. int _onCertificate(void * arg, const char *filename, uint8_t **buf) {
  243. 

  244. #if WEB_EMBEDDED

  245. 

  246.     if (strcmp(filename, "server.cer") == 0) {
  247.         uint8_t * nbuf = (uint8_t*) malloc(server_cer_len);
  248.         memcpy_P(nbuf, server_cer, server_cer_len);
  249.         *buf = nbuf;
  250.         DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  251.         return server_cer_len;
  252.     }
  253. 

  254.     if (strcmp(filename, "server.key") == 0) {
  255.         uint8_t * nbuf = (uint8_t*) malloc(server_key_len);
  256.         memcpy_P(nbuf, server_key, server_key_len);
  257.         *buf = nbuf;
  258.         DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  259.         return server_key_len;
  260.     }
  261. 

  262.     DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - ERROR\n"), filename);
  263.     *buf = 0;
  264.     return 0;
  265. 

  266. #else

  267. 

  268.     File file = SPIFFS.open(filename, "r");
  269.     if (file) {
  270.         size_t size = file.size();
  271.         uint8_t * nbuf = (uint8_t*) malloc(size);
  272.         if (nbuf) {
  273.             size = file.read(nbuf, size);
  274.             file.close();
  275.             *buf = nbuf;
  276.             DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  277.             return size;
  278.         }
  279.         file.close();
  280.     }
  281.     DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - ERROR\n"), filename);
  282.     *buf = 0;
  283.     return 0;
  284. 

  285. #endif

  286. 

  287. }
  288. 

  289. #endif

  290. 

  291. void _onUpgradeResponse(AsyncWebServerRequest *request, int code, const String& payload = "") {
  292. 

  293.     auto *response = request->beginResponseStream("text/plain", 256);
  294.     response->addHeader("Connection", "close");
  295.     response->addHeader("X-XSS-Protection", "1; mode=block");
  296.     response->addHeader("X-Content-Type-Options", "nosniff");
  297.     response->addHeader("X-Frame-Options", "deny");
  298. 

  299.     response->setCode(code);
  300. 

  301.     if (payload.length()) {
  302.         response->printf("%s", payload.c_str());
  303.     } else {
  304.         if (!Update.hasError()) {
  305.             response->print("OK");
  306.         } else {
  307.             #if defined(ARDUINO_ESP8266_RELEASE_2_3_0)

  308.                 Update.printError(reinterpret_cast<Stream&>(response));
  309.             #else

  310.                 Update.printError(*response);
  311.             #endif

  312.         }
  313.     }
  314. 

  315.     request->send(response);
  316. 

  317. }
  318. 

  319. void _onUpgradeStatusSet(AsyncWebServerRequest *request, int code, const String& payload = "") {
  320.     _onUpgradeResponse(request, code, payload);
  321.     request->_tempObject = malloc(sizeof(bool));
  322. }
  323. 

  324. void _onUpgrade(AsyncWebServerRequest *request) {
  325. 

  326.     webLog(request);
  327.     if (!webAuthenticate(request)) {
  328.         return request->requestAuthentication(getSetting("hostname").c_str());
  329.     }
  330. 

  331.     if (request->_tempObject) {
  332.         return;
  333.     }
  334. 

  335.     _onUpgradeResponse(request, 200);
  336. 

  337. }
  338. 

  339. void _onUpgradeFile(AsyncWebServerRequest *request, String filename, size_t index, uint8_t *data, size_t len, bool final) {
  340. 

  341.     if (!webAuthenticate(request)) {
  342.         return request->requestAuthentication(getSetting("hostname").c_str());
  343.     }
  344. 

  345.     // We set this after we are done with the request

  346.     // It is still possible to re-enter this callback even after connection is already closed

  347.     // 1.14.2: TODO: see https://github.com/me-no-dev/ESPAsyncWebServer/pull/660

  348.     // remote close or request sending some data before finishing parsing of the body will leak 1460 bytes

  349.     // waiting a bit for upstream. fork and point to the fixed version if not resolved before 1.14.2

  350.     if (request->_tempObject) {
  351.         return;
  352.     }
  353. 

  354.     if (!index) {
  355. 

  356.         // TODO: stop network activity completely when handling Update through ArduinoOTA or `ota` command?

  357.         if (Update.isRunning()) {
  358.             _onUpgradeStatusSet(request, 400, F("ERROR: Upgrade in progress"));
  359.             return;
  360.         }
  361. 

  362.         // Check that header is correct and there is more data before anything is written to the flash

  363.         if (final || !len) {
  364.             _onUpgradeStatusSet(request, 400, F("ERROR: Invalid request"));
  365.             return;
  366.         }
  367. 

  368.         if (!otaVerifyHeader(data, len)) {
  369.             _onUpgradeStatusSet(request, 400, F("ERROR: No magic byte / invalid flash config"));
  370.             return;
  371.         }
  372. 

  373.         // Disabling EEPROM rotation to prevent writing to EEPROM after the upgrade

  374.         eepromRotate(false);
  375. 

  376.         DEBUG_MSG_P(PSTR("[UPGRADE] Start: %s\n"), filename.c_str());
  377.         Update.runAsync(true);
  378. 

  379.         // Note: cannot use request->contentLength() for multipart/form-data

  380.         if (!Update.begin((ESP.getFreeSketchSpace() - 0x1000) & 0xFFFFF000)) {
  381.             _onUpgradeStatusSet(request, 500);
  382.             eepromRotate(true);
  383.             return;
  384.         }
  385. 

  386.     }
  387. 

  388.     if (request->_tempObject) {
  389.         return;
  390.     }
  391. 

  392.     // Any error will cancel the update, but request may still be alive

  393.     if (!Update.isRunning()) {
  394.         return;
  395.     }
  396. 

  397.     if (Update.write(data, len) != len) {
  398.         _onUpgradeStatusSet(request, 500);
  399.         Update.end();
  400.         eepromRotate(true);
  401.         return;
  402.     }
  403. 

  404.     if (final) {
  405.         otaFinalize(index + len, CUSTOM_RESET_UPGRADE, true);
  406.     } else {
  407.         otaProgress(index + len);
  408.     }
  409. 

  410. }
  411. 

  412. bool _onAPModeRequest(AsyncWebServerRequest *request) {
  413. 

  414.     if ((WiFi.getMode() & WIFI_AP) > 0) {
  415.         const String domain = getSetting("hostname") + ".";
  416.         const String host = request->header("Host");
  417.         const String ip = WiFi.softAPIP().toString();
  418. 

  419.         // Only allow requests that use our hostname or ip

  420.         if (host.equals(ip)) return true;
  421.         if (host.startsWith(domain)) return true;
  422. 

  423.         // Immediatly close the connection, ref: https://github.com/xoseperez/espurna/issues/1660

  424.         // Not doing so will cause memory exhaustion, because the connection will linger

  425.         request->send(404);
  426.         request->client()->close();
  427. 

  428.         return false;
  429.     }
  430. 

  431.     return true;
  432. 

  433. }
  434. 

  435. void _onRequest(AsyncWebServerRequest *request){
  436. 

  437.     if (!_onAPModeRequest(request)) return;
  438. 

  439.     // Send request to subscribers

  440.     for (unsigned char i = 0; i < _web_request_callbacks.size(); i++) {
  441.         bool response = (_web_request_callbacks[i])(request);
  442.         if (response) return;
  443.     }
  444. 

  445.     // No subscriber handled the request, return a 404 with implicit "Connection: close"

  446.     request->send(404);
  447. 

  448.     // And immediatly close the connection, ref: https://github.com/xoseperez/espurna/issues/1660

  449.     // Not doing so will cause memory exhaustion, because the connection will linger

  450.     request->client()->close();
  451. 

  452. }
  453. 

  454. void _onBody(AsyncWebServerRequest *request, uint8_t *data, size_t len, size_t index, size_t total) {
  455. 

  456.     if (!_onAPModeRequest(request)) return;
  457. 

  458.     // Send request to subscribers

  459.     for (unsigned char i = 0; i < _web_body_callbacks.size(); i++) {
  460.         bool response = (_web_body_callbacks[i])(request, data, len, index, total);
  461.         if (response) return;
  462.     }
  463. 

  464.     // Same as _onAPModeRequest(...)

  465.     request->send(404);
  466.     request->client()->close();
  467. 

  468. }
  469. 

  470. 

  471. // -----------------------------------------------------------------------------

  472. 

  473. bool webAuthenticate(AsyncWebServerRequest *request) {
  474.     #if USE_PASSWORD

  475.         return request->authenticate(WEB_USERNAME, getAdminPass().c_str());
  476.     #else

  477.         return true;
  478.     #endif

  479. }
  480. 

  481. // -----------------------------------------------------------------------------

  482. 

  483. AsyncWebServer * webServer() {
  484.     return _server;
  485. }
  486. 

  487. void webBodyRegister(web_body_callback_f callback) {
  488.     _web_body_callbacks.push_back(callback);
  489. }
  490. 

  491. void webRequestRegister(web_request_callback_f callback) {
  492.     _web_request_callbacks.push_back(callback);
  493. }
  494. 

  495. unsigned int webPort() {
  496.     #if WEB_SSL_ENABLED

  497.         return 443;
  498.     #else

  499.         return getSetting("webPort", WEB_PORT).toInt();
  500.     #endif

  501. }
  502. 

  503. void webLog(AsyncWebServerRequest *request) {
  504.     DEBUG_MSG_P(PSTR("[WEBSERVER] Request: %s %s\n"), request->methodToString(), request->url().c_str());
  505. }
  506. 

  507. void webSetup() {
  508. 

  509.     // Cache the Last-Modifier header value

  510.     snprintf_P(_last_modified, sizeof(_last_modified), PSTR("%s %s GMT"), __DATE__, __TIME__);
  511. 

  512.     // Create server

  513.     unsigned int port = webPort();
  514.     _server = new AsyncWebServer(port);
  515. 

  516.     // Rewrites

  517.     _server->rewrite("/", "/index.html");
  518. 

  519.     // Serve home (basic authentication protection)

  520.     #if WEB_EMBEDDED

  521.         _server->on("/index.html", HTTP_GET, _onHome);
  522.     #endif

  523. 

  524.     // Other entry points

  525.     _server->on("/reset", HTTP_GET, _onReset);
  526.     _server->on("/config", HTTP_GET, _onGetConfig);
  527.     _server->on("/config", HTTP_POST | HTTP_PUT, _onPostConfig, _onPostConfigFile);
  528.     _server->on("/upgrade", HTTP_POST, _onUpgrade, _onUpgradeFile);
  529.     _server->on("/discover", HTTP_GET, _onDiscover);
  530. 

  531.     // Serve static files

  532.     #if SPIFFS_SUPPORT

  533.         _server->serveStatic("/", SPIFFS, "/")
  534.             .setLastModified(_last_modified)
  535.             .setFilter([](AsyncWebServerRequest *request) -> bool {
  536.                 webLog(request);
  537.                 return true;
  538.             });
  539.     #endif

  540. 

  541. 

  542.     // Handle other requests, including 404

  543.     _server->onRequestBody(_onBody);
  544.     _server->onNotFound(_onRequest);
  545. 

  546.     // Run server

  547.     #if WEB_SSL_ENABLED

  548.         _server->onSslFileRequest(_onCertificate, NULL);
  549.         _server->beginSecure("server.cer", "server.key", NULL);
  550.     #else

  551.         _server->begin();
  552.     #endif

  553. 

  554.     DEBUG_MSG_P(PSTR("[WEBSERVER] Webserver running on port %u\n"), port);
  555. 

  556. }
  557. 

  558. #endif // WEB_SUPPORT