mh
/
mhsw-espurna
1
0
Fork 0
Code Releases 0 Activity
Fork of the espurna firmware for `mhsw` switches
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1930 Commits
18 Branches
212 MiB
Tree: 857969b8ff
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '857969b8ff'
${ noResults }
mhsw-espurna/code/espurna/web.ino

391 lines
11 KiB
Raw Normal View History

Complete update
8 years ago
Update copyright notices
6 years ago
Complete update
8 years ago
Option to build without web server support
7 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
First power.ino module
7 years ago
Added basic authetication and CSRF check to websocket requests
7 years ago
Complete update
8 years ago
Further renaming
7 years ago
Enable embedded web by default
7 years ago
Option to build without NTP support
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Small changes in config variables
7 years ago
HTTPS disabled by default
7 years ago
Option to build without NTP support
7 years ago
Testing web interface over SSL
7 years ago
Option to build without web server support
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
Option to build without web server support
7 years ago
Restore settings & reset via HTTP
6 years ago
Complete update
8 years ago
Option to build without web server support
7 years ago
Split web code into web, ws and api
6 years ago
Option to build without web server support
7 years ago
Restore settings & reset via HTTP
6 years ago
Enable CORS
6 years ago
Backup and restore settings from file
7 years ago
Split web code into web, ws and api
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Backup and restore settings from file
7 years ago
Pretty print config backup json
6 years ago
Backup and restore settings from file
7 years ago
Fix bug using snprintf
7 years ago
Backup and restore settings from file
7 years ago
Added security headers for each HTTP response
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Backup and restore settings from file
7 years ago
Restore settings & reset via HTTP
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Restore settings & reset via HTTP
6 years ago
Refactor settings module, added settingsCommandRegister
6 years ago
Restore settings & reset via HTTP
6 years ago
Refactor settings module, added settingsCommandRegister
6 years ago
Restore settings & reset via HTTP
6 years ago
Further renaming
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Split web code into web, ws and api
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Chunked response for SSL requests
7 years ago
WTF - ESP.getFreeHeap crashing the system for an specific light bulb...
6 years ago
Chunked response for SSL requests
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Added security headers for each HTTP response
6 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Small changes in config variables
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
Small changes in config variables
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
Upgrade form and handle code
7 years ago
Add Update error number to error message in web UI
7 years ago
Split web code into web, ws and api
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Simplify and fix web auth code (#284)
6 years ago
Add Update error number to error message in web UI
7 years ago
Wrong messages when upgrading from web UI
7 years ago
Add Update error number to error message in web UI
7 years ago
Upgrade form and handle code
7 years ago
Added security headers for each HTTP response
6 years ago
Update EEPROM_Rotate to 0.9.1 and use rotate(false) before OTA
6 years ago
Unify reset calls
6 years ago
Do not restart after failed web upgrade
7 years ago
Small changes in reset delays after web upgrade
7 years ago
Add Update error number to error message in web UI
7 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Update EEPROM_Rotate to 0.9.1 and use rotate(false) before OTA
6 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
Fix references to Serial
7 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
Fix references to Serial
7 years ago
Upgrade form and handle code
7 years ago
Update API, backup EEPROM to last sector before OTA upgrades
6 years ago
Upgrade form and handle code
7 years ago
Fix references to Serial
7 years ago
Upgrade form and handle code
7 years ago
Option to build without web server support
7 years ago
Revert WS to ticket-based authentication
6 years ago
Build option to disable password check (USE_PASSWORD). Password check is enabled by default. Use at your own risk (#373)
6 years ago
Split web code into web, ws and api
6 years ago
SSDP working
6 years ago
Split web code into web, ws and api
6 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Option to build without web server support
7 years ago
Fix bug using snprintf
7 years ago
Option to build without web server support
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
* Support for ITead's Sonoff Dual * Support for Electrodragon's ESP Relay Board * Support for multi-relay boards * Changed relay MQTT topics * Changed relay API entry points * Removed non-secure api entry points
7 years ago
Further renaming
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Restore settings & reset via HTTP
6 years ago
Backup and restore settings from file
7 years ago
Restore settings & reset via HTTP
6 years ago
Upgrade form and handle code
7 years ago
Enable CORS
6 years ago
Bring back HTTP relay entry points
7 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Refactoring build flag names
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Split web code into web, ws and api
6 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Added EEPROM management commands to terminal interface
7 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
7 years ago
Small changes in config variables
7 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
SSDP working
6 years ago
Complete update
8 years ago
Option to build without web server support
7 years ago
 
  1. /*

  2. 

  3. WEBSERVER MODULE
  4. 

  5. Copyright (C) 2016-2018 by Xose Pérez <xose dot perez at gmail dot com>
  6. 

  7. */
  8. 

  9. #if WEB_SUPPORT

  10. 

  11. #include <ESPAsyncTCP.h>

  12. #include <ESPAsyncWebServer.h>

  13. #include <Hash.h>

  14. #include <FS.h>

  15. #include <AsyncJson.h>

  16. #include <ArduinoJson.h>

  17. 

  18. #if WEB_EMBEDDED

  19. #include "static/index.html.gz.h"

  20. #endif // WEB_EMBEDDED

  21. 

  22. #if ASYNC_TCP_SSL_ENABLED & WEB_SSL_ENABLED

  23. #include "static/server.cer.h"

  24. #include "static/server.key.h"

  25. #endif // ASYNC_TCP_SSL_ENABLED & WEB_SSL_ENABLED

  26. 

  27. // -----------------------------------------------------------------------------

  28. 

  29. AsyncWebServer * _server;
  30. char _last_modified[50];
  31. std::vector<uint8_t> * _webConfigBuffer;
  32. bool _webConfigSuccess = false;
  33. 

  34. // -----------------------------------------------------------------------------

  35. // HOOKS

  36. // -----------------------------------------------------------------------------

  37. 

  38. void _onReset(AsyncWebServerRequest *request) {
  39.     deferredReset(100, CUSTOM_RESET_HTTP);
  40.     request->send(200);
  41. }
  42. 

  43. void _onDiscover(AsyncWebServerRequest *request) {
  44. 

  45.     webLog(request);
  46. 

  47.     AsyncResponseStream *response = request->beginResponseStream("text/json");
  48. 

  49.     DynamicJsonBuffer jsonBuffer;
  50.     JsonObject &root = jsonBuffer.createObject();
  51.     root["app"] = APP_NAME;
  52.     root["version"] = APP_VERSION;
  53.     root["hostname"] = getSetting("hostname");
  54.     root["device"] = getBoardName();
  55.     root.printTo(*response);
  56. 

  57.     request->send(response);
  58. 

  59. }
  60. 

  61. void _onGetConfig(AsyncWebServerRequest *request) {
  62. 

  63.     webLog(request);
  64.     if (!webAuthenticate(request)) {
  65.         return request->requestAuthentication(getSetting("hostname").c_str());
  66.     }
  67. 

  68.     AsyncResponseStream *response = request->beginResponseStream("text/json");
  69. 

  70.     char buffer[100];
  71.     snprintf_P(buffer, sizeof(buffer), PSTR("attachment; filename=\"%s-backup.json\""), (char *) getSetting("hostname").c_str());
  72.     response->addHeader("Content-Disposition", buffer);
  73.     response->addHeader("X-XSS-Protection", "1; mode=block");
  74.     response->addHeader("X-Content-Type-Options", "nosniff");
  75.     response->addHeader("X-Frame-Options", "deny");
  76. 

  77.     response->printf("{\n  \"app\": \"%s\",\n  \"version\": \"%s\"", APP_NAME, APP_VERSION);
  78. 

  79.     // Write the keys line by line (not sorted)

  80.     unsigned long count = settingsKeyCount();
  81.     for (unsigned int i=0; i<count; i++) {
  82.         String key = settingsKeyName(i);
  83.         String value = getSetting(key);
  84.         response->printf(",\n  \"%s\": \"%s\"", key.c_str(), value.c_str());
  85.     }
  86.     response->printf("\n}");
  87. 

  88.     request->send(response);
  89. 

  90. }
  91. 

  92. void _onPostConfig(AsyncWebServerRequest *request) {
  93.     webLog(request);
  94.     if (!webAuthenticate(request)) {
  95.         return request->requestAuthentication(getSetting("hostname").c_str());
  96.     }
  97.     request->send(_webConfigSuccess ? 200 : 400);
  98. }
  99. 

  100. void _onPostConfigData(AsyncWebServerRequest *request, String filename, size_t index, uint8_t *data, size_t len, bool final) {
  101. 

  102.     // No buffer

  103.     if (final && (index == 0)) {
  104.         DynamicJsonBuffer jsonBuffer;
  105.         JsonObject& root = jsonBuffer.parseObject((char *) data);
  106.         if (root.success()) _webConfigSuccess = settingsRestoreJson(root);
  107.         return;
  108.     }
  109. 

  110.     // Buffer start => reset

  111.     if (index == 0) if (_webConfigBuffer) delete _webConfigBuffer;
  112. 

  113.     // init buffer if it doesn't exist

  114.     if (!_webConfigBuffer) {
  115.         _webConfigBuffer = new std::vector<uint8_t>();
  116.         _webConfigSuccess = false;
  117.     }
  118. 

  119.     // Copy

  120.     if (len > 0) {
  121.         _webConfigBuffer->reserve(_webConfigBuffer->size() + len);
  122.         _webConfigBuffer->insert(_webConfigBuffer->end(), data, data + len);
  123.     }
  124. 

  125.     // Ending

  126.     if (final) {
  127. 

  128.         _webConfigBuffer->push_back(0);
  129. 

  130.         // Parse JSON

  131.         DynamicJsonBuffer jsonBuffer;
  132.         JsonObject& root = jsonBuffer.parseObject((char *) _webConfigBuffer->data());
  133.         if (root.success()) _webConfigSuccess = settingsRestoreJson(root);
  134.         delete _webConfigBuffer;
  135. 

  136.     }
  137. 

  138. }
  139. 

  140. #if WEB_EMBEDDED

  141. void _onHome(AsyncWebServerRequest *request) {
  142. 

  143.     webLog(request);
  144.     if (!webAuthenticate(request)) {
  145.         return request->requestAuthentication(getSetting("hostname").c_str());
  146.     }
  147. 

  148.     if (request->header("If-Modified-Since").equals(_last_modified)) {
  149. 

  150.         request->send(304);
  151. 

  152.     } else {
  153. 

  154.         #if ASYNC_TCP_SSL_ENABLED

  155. 

  156.             // Chunked response, we calculate the chunks based on free heap (in multiples of 32)

  157.             // This is necessary when a TLS connection is open since it sucks too much memory

  158.             DEBUG_MSG_P(PSTR("[MAIN] Free heap: %d bytes\n"), getFreeHeap());
  159.             size_t max = (getFreeHeap() / 3) & 0xFFE0;
  160. 

  161.             AsyncWebServerResponse *response = request->beginChunkedResponse("text/html", [max](uint8_t *buffer, size_t maxLen, size_t index) -> size_t {
  162. 

  163.                 // Get the chunk based on the index and maxLen

  164.                 size_t len = index_html_gz_len - index;
  165.                 if (len > maxLen) len = maxLen;
  166.                 if (len > max) len = max;
  167.                 if (len > 0) memcpy_P(buffer, index_html_gz + index, len);
  168. 

  169.                 DEBUG_MSG_P(PSTR("[WEB] Sending %d%%%% (max chunk size: %4d)\r"), int(100 * index / index_html_gz_len), max);
  170.                 if (len == 0) DEBUG_MSG_P(PSTR("\n"));
  171. 

  172.                 // Return the actual length of the chunk (0 for end of file)

  173.                 return len;
  174. 

  175.             });
  176. 

  177.         #else

  178. 

  179.             AsyncWebServerResponse *response = request->beginResponse_P(200, "text/html", index_html_gz, index_html_gz_len);
  180. 

  181.         #endif

  182. 

  183.         response->addHeader("Content-Encoding", "gzip");
  184.         response->addHeader("Last-Modified", _last_modified);
  185. 	response->addHeader("X-XSS-Protection", "1; mode=block");
  186. 	response->addHeader("X-Content-Type-Options", "nosniff");
  187. 	response->addHeader("X-Frame-Options", "deny");
  188.         request->send(response);
  189. 

  190.     }
  191. 

  192. }
  193. #endif

  194. 

  195. #if ASYNC_TCP_SSL_ENABLED & WEB_SSL_ENABLED

  196. 

  197. int _onCertificate(void * arg, const char *filename, uint8_t **buf) {
  198. 

  199. #if WEB_EMBEDDED

  200. 

  201.     if (strcmp(filename, "server.cer") == 0) {
  202.         uint8_t * nbuf = (uint8_t*) malloc(server_cer_len);
  203.         memcpy_P(nbuf, server_cer, server_cer_len);
  204.         *buf = nbuf;
  205.         DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  206.         return server_cer_len;
  207.     }
  208. 

  209.     if (strcmp(filename, "server.key") == 0) {
  210.         uint8_t * nbuf = (uint8_t*) malloc(server_key_len);
  211.         memcpy_P(nbuf, server_key, server_key_len);
  212.         *buf = nbuf;
  213.         DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  214.         return server_key_len;
  215.     }
  216. 

  217.     DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - ERROR\n"), filename);
  218.     *buf = 0;
  219.     return 0;
  220. 

  221. #else

  222. 

  223.     File file = SPIFFS.open(filename, "r");
  224.     if (file) {
  225.         size_t size = file.size();
  226.         uint8_t * nbuf = (uint8_t*) malloc(size);
  227.         if (nbuf) {
  228.             size = file.read(nbuf, size);
  229.             file.close();
  230.             *buf = nbuf;
  231.             DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  232.             return size;
  233.         }
  234.         file.close();
  235.     }
  236.     DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - ERROR\n"), filename);
  237.     *buf = 0;
  238.     return 0;
  239. 

  240. #endif

  241. 

  242. }
  243. 

  244. #endif

  245. 

  246. void _onUpgrade(AsyncWebServerRequest *request) {
  247. 

  248.     webLog(request);
  249.     if (!webAuthenticate(request)) {
  250.         return request->requestAuthentication(getSetting("hostname").c_str());
  251.     }
  252. 

  253.     char buffer[10];
  254.     if (!Update.hasError()) {
  255.         sprintf_P(buffer, PSTR("OK"));
  256.     } else {
  257.         sprintf_P(buffer, PSTR("ERROR %d"), Update.getError());
  258.     }
  259. 

  260.     AsyncWebServerResponse *response = request->beginResponse(200, "text/plain", buffer);
  261.     response->addHeader("Connection", "close");
  262.     response->addHeader("X-XSS-Protection", "1; mode=block");
  263.     response->addHeader("X-Content-Type-Options", "nosniff");
  264.     response->addHeader("X-Frame-Options", "deny");
  265.     if (Update.hasError()) {
  266.         eepromRotate(true);
  267.     } else {
  268.         deferredReset(100, CUSTOM_RESET_UPGRADE);
  269.     }
  270.     request->send(response);
  271. 

  272. }
  273. 

  274. void _onUpgradeData(AsyncWebServerRequest *request, String filename, size_t index, uint8_t *data, size_t len, bool final) {
  275. 

  276.     if (!index) {
  277. 

  278.         // Disabling EEPROM rotation to prevent writing to EEPROM after the upgrade

  279.         eepromRotate(false);
  280. 

  281.         DEBUG_MSG_P(PSTR("[UPGRADE] Start: %s\n"), filename.c_str());
  282.         Update.runAsync(true);
  283.         if (!Update.begin((ESP.getFreeSketchSpace() - 0x1000) & 0xFFFFF000)) {
  284.             #ifdef DEBUG_PORT

  285.                 Update.printError(DEBUG_PORT);
  286.             #endif

  287.         }
  288. 

  289.     }
  290. 

  291.     if (!Update.hasError()) {
  292.         if (Update.write(data, len) != len) {
  293.             #ifdef DEBUG_PORT

  294.                 Update.printError(DEBUG_PORT);
  295.             #endif

  296.         }
  297.     }
  298. 

  299.     if (final) {
  300.         if (Update.end(true)){
  301.             DEBUG_MSG_P(PSTR("[UPGRADE] Success:  %u bytes\n"), index + len);
  302.         } else {
  303.             #ifdef DEBUG_PORT

  304.                 Update.printError(DEBUG_PORT);
  305.             #endif

  306.         }
  307.     } else {
  308.         DEBUG_MSG_P(PSTR("[UPGRADE] Progress: %u bytes\r"), index + len);
  309.     }
  310. }
  311. 

  312. // -----------------------------------------------------------------------------

  313. 

  314. bool webAuthenticate(AsyncWebServerRequest *request) {
  315.     #if USE_PASSWORD

  316.         String password = getSetting("adminPass", ADMIN_PASS);
  317.         char httpPassword[password.length() + 1];
  318.         password.toCharArray(httpPassword, password.length() + 1);
  319.         return request->authenticate(WEB_USERNAME, httpPassword);
  320.     #else

  321.         return true;
  322.     #endif

  323. }
  324. 

  325. // -----------------------------------------------------------------------------

  326. 

  327. AsyncWebServer * webServer() {
  328.     return _server;
  329. }
  330. 

  331. unsigned int webPort() {
  332.     #if ASYNC_TCP_SSL_ENABLED & WEB_SSL_ENABLED

  333.         return 443;
  334.     #else

  335.         return getSetting("webPort", WEB_PORT).toInt();
  336.     #endif

  337. }
  338. 

  339. void webLog(AsyncWebServerRequest *request) {
  340.     DEBUG_MSG_P(PSTR("[WEBSERVER] Request: %s %s\n"), request->methodToString(), request->url().c_str());
  341. }
  342. 

  343. void webSetup() {
  344. 

  345.     // Cache the Last-Modifier header value

  346.     snprintf_P(_last_modified, sizeof(_last_modified), PSTR("%s %s GMT"), __DATE__, __TIME__);
  347. 

  348.     // Create server

  349.     unsigned int port = webPort();
  350.     _server = new AsyncWebServer(port);
  351. 

  352.     // Rewrites

  353.     _server->rewrite("/", "/index.html");
  354. 

  355.     // Serve home (basic authentication protection)

  356.     #if WEB_EMBEDDED

  357.         _server->on("/index.html", HTTP_GET, _onHome);
  358.     #endif

  359.     _server->on("/reset", HTTP_GET, _onReset);
  360.     _server->on("/config", HTTP_GET, _onGetConfig);
  361.     _server->on("/config", HTTP_POST | HTTP_PUT, _onPostConfig, _onPostConfigData);
  362.     _server->on("/upgrade", HTTP_POST, _onUpgrade, _onUpgradeData);
  363.     _server->on("/discover", HTTP_GET, _onDiscover);
  364. 

  365.     // Serve static files

  366.     #if SPIFFS_SUPPORT

  367.         _server->serveStatic("/", SPIFFS, "/")
  368.             .setLastModified(_last_modified)
  369.             .setFilter([](AsyncWebServerRequest *request) -> bool {
  370.                 webLog(request);
  371.                 return true;
  372.             });
  373.     #endif

  374. 

  375.     // 404

  376.     _server->onNotFound([](AsyncWebServerRequest *request){
  377.         request->send(404);
  378.     });
  379. 

  380.     // Run server

  381.     #if ASYNC_TCP_SSL_ENABLED & WEB_SSL_ENABLED

  382.         _server->onSslFileRequest(_onCertificate, NULL);
  383.         _server->beginSecure("server.cer", "server.key", NULL);
  384.     #else

  385.         _server->begin();
  386.     #endif

  387.     DEBUG_MSG_P(PSTR("[WEBSERVER] Webserver running on port %u\n"), port);
  388. 

  389. }
  390. 

  391. #endif // WEB_SUPPORT