mh
/
mhsw-espurna
1
0
Fork 0
Code Releases 0 Activity
Fork of the espurna firmware for `mhsw` switches
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3246 Commits
18 Branches
212 MiB
Tree: 8df23392a9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8df23392a9'
${ noResults }
mhsw-espurna/code/espurna/web.cpp

607 lines
18 KiB
Raw Normal View History

Complete update
8 years ago
[copyright-update] Update for 2019
5 years ago
Complete update
8 years ago
Convert .ino -> .cpp (#2228) - general conversion from .ino modules into a separate .cpp files - clean-up internal headers, place libraries into .h. guard .cpp with _SUPPORT flags - fix some instances of shared variables instead of public methods - tweak build system to still build a single source file via os environment variable ESPURNA_BUILD_SINGLE_SOURCE
4 years ago
Option to build without web server support
7 years ago
Terminal: change command-line parser (#2247) Change the underlying command line handling: - switch to a custom parser, inspired by redis / sds - update terminalRegisterCommand signature, pass only bare minimum - clean-up `help` & `commands`. update settings `set`, `get` and `del` - allow our custom test suite to run command-line tests - clean-up Stream IO to allow us to print large things into debug stream (for example, `eeprom.dump`) - send parsing errors to the debug log As a proof of concept, introduce `TERMINAL_MQTT_SUPPORT` and `TERMINAL_WEB_API_SUPPORT` - MQTT subscribes to the `<root>/cmd/set` and sends response to the `<root>/cmd`. We can't output too much, as we don't have any large-send API. - Web API listens to the `/api/cmd?apikey=...&line=...` (or PUT, params inside the body). This one is intended as a possible replacement of the `API_SUPPORT`. Internals introduce a 'task' around the AsyncWebServerRequest object that will simulate what WiFiClient does and push data into it continuously, switching between CONT and SYS. Both are experimental. We only accept a single command and not every command is updated to use Print `ctx.output` object. We are also somewhat limited by the Print / Stream overall, perhaps I am overestimating the usefulness of Arduino compatibility to such an extent :) Web API handler can also sometimes show only part of the result, whenever the command tries to yield() by itself waiting for something. Perhaps we would need to create a custom request handler for that specific use-case.
4 years ago
system: move prototypes to a separate header
4 years ago
relay: replace eeprom 8bit with 32bit bitmask stored in settings - mask is defined as (relay# status << number) - transparently handle base-2 and base-10 numbers - if the relay mode requires us to save the mask, it will be saved as base-2
5 years ago
Convert .ino -> .cpp (#2228) - general conversion from .ino modules into a separate .cpp files - clean-up internal headers, place libraries into .h. guard .cpp with _SUPPORT flags - fix some instances of shared variables instead of public methods - tweak build system to still build a single source file via os environment variable ESPURNA_BUILD_SINGLE_SOURCE
4 years ago
Complete update
8 years ago
Include library headers in .cpp
4 years ago
Further renaming
7 years ago
Pre-build the different available WebUI images
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Initial support for RFM69GW board
6 years ago
UI for LightFox
5 years ago
garland: new module (#2408) Port of https://github.com/Vasil-Pahomov/ArWs2812 from Arduino to ESP8266 Implementing garland of WS2812 Co-authored-by: Dmitry Blinov <dblinov@blackberry.com>
3 years ago
Fix conflicts: 1. Add thermostat to the espurna_modules in progmem.h 2. Add thermostat to webui, gulp, html, js. 3. in general.h MQTT_USE_JSON returned to 0 by default and 1 if thermostat enabled.
5 years ago
Kingart curtain switch UI support (#2250) * Completed kingart curtain switch support: Added Web UI controls and view in status Added power up behaviour (nothing, close, open, last position) Added curtain style (Roller, etc...) for UI status and to be used in MQTT * Checked commit before PR. Added html gulp static files generated. * Corrected a code refactor error which make the MQTT messages not handling position from received messages. Added comment to debug tab to show how to enable debug * Use the maximum compression for gzip. A byte is a byte :) * Update code/espurna/curtain_kingart.cpp Co-authored-by: Max Prokhorov <prokhorov.max@outlook.com> * Variable name prefix update Added public set position function and curtain count * Added Scheduler new type : curtain * Add curtain schedule support and correct the 12h bug when adding a slot (00:00 after refresh). Default Hour is 12h * Code cleaning. Schedule support. Light support is having an issue with new schedules corrected here. * I let do better by the specialists * Curtain init statues * Coding style corrections * Removed debug stuff from now - will be back later with the right way * rebuild webui * revert 435f1c5e03ac8ff3e5591795e67c00aef55dc956 schHour default, rebuild ui Co-authored-by: Eric Chauvet <eric.chauvet@test-tree.com> Co-authored-by: Max Prokhorov <prokhorov.max@outlook.com>
4 years ago
Initial support for RFM69GW board
6 years ago
Use full web UI image if device has more than one webui module (#981)
6 years ago
Pre-build the different available WebUI images
6 years ago
Option to build without NTP support
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
5 years ago
HTTPS disabled by default
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
5 years ago
Testing web interface over SSL
7 years ago
Terminal: change command-line parser (#2247) Change the underlying command line handling: - switch to a custom parser, inspired by redis / sds - update terminalRegisterCommand signature, pass only bare minimum - clean-up `help` & `commands`. update settings `set`, `get` and `del` - allow our custom test suite to run command-line tests - clean-up Stream IO to allow us to print large things into debug stream (for example, `eeprom.dump`) - send parsing errors to the debug log As a proof of concept, introduce `TERMINAL_MQTT_SUPPORT` and `TERMINAL_WEB_API_SUPPORT` - MQTT subscribes to the `<root>/cmd/set` and sends response to the `<root>/cmd`. We can't output too much, as we don't have any large-send API. - Web API listens to the `/api/cmd?apikey=...&line=...` (or PUT, params inside the body). This one is intended as a possible replacement of the `API_SUPPORT`. Internals introduce a 'task' around the AsyncWebServerRequest object that will simulate what WiFiClient does and push data into it continuously, switching between CONT and SYS. Both are experimental. We only accept a single command and not every command is updated to use Print `ctx.output` object. We are also somewhat limited by the Print / Stream overall, perhaps I am overestimating the usefulness of Arduino compatibility to such an extent :) Web API handler can also sometimes show only part of the result, whenever the command tries to yield() by itself waiting for something. Perhaps we would need to create a custom request handler for that specific use-case.
4 years ago
Option to build without web server support
7 years ago
terminal: make sure API is loaded after the web server New apiRegister depends on `webServer()` returning a valid object.
3 years ago
Option to build without web server support
7 years ago
Restore settings & reset via HTTP
6 years ago
Complete update
8 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Option to build without web server support
7 years ago
Split web code into web, ws and api
7 years ago
Option to build without web server support
7 years ago
Restore settings & reset via HTTP
6 years ago
Authenticate /reset endpoint (#1858)
5 years ago
Restore settings & reset via HTTP
6 years ago
Enable CORS
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Enable CORS
6 years ago
utils: simplify version + revision into just version
3 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Enable CORS
6 years ago
Backup and restore settings from file
7 years ago
Split web code into web, ws and api
7 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Backup and restore settings from file
7 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Backup and restore settings from file
7 years ago
Fix bug using snprintf
7 years ago
Backup and restore settings from file
7 years ago
Added security headers for each HTTP response
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
utils: simplify version + revision into just version
3 years ago
Fix crash on loading malformed settings, option to load partial configuration
6 years ago
Adding /api and /apis to API request callback
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Rework settings (#2282) * wip based on early draft. todo benchmarking * fixup eraser, assume keys are unique * fix cursor copy, test removal at random * small benchmark via permutations. todo lambdas and novirtual * fix empty condition / reset * overwrite optimizations, fix move offsets overflows * ...erase using 0xff instead of 0 * test the theory with code, different length kv were bugged * try to check for out-of-bounds writes / reads * style * trying to fix mover again * clarify length, defend against reading len on edge * fix uncommited rewind change * prove space assumptions * more concise traces, fix move condition (agrh!!!) * slightly more internal knowledge (estimates API?) * make sure cursor is only valid within the range * ensure 0 does not blow things * go back up * cursor comments * comments * rewrite writes through cursor * in del too * estimate kv storage requirements, return available size * move raw erase / move into a method, allow ::set to avoid scanning storage twice * refactor naming, use in code * amend storage slicing test * fix crash handler offsets, cleanup configuration * start -> begin * eeprom readiness * dependencies * unused * SPI_FLASH constants for older Core * vtables -> templates * less include dependencies * gcov help, move estimate outside of the class * writer position can never match, use begin + offset * tweak save_crash to trigger only once in a serious crash * doh, header function should be inline * foreach api, tweak structs for public api * use test helper class * when not using foreach, move cursor reset closer to the loop using read_kv * coverage comments, fix typo in tests decltype * ensure set() does not break with offset * make codacy happy again
4 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Fix crash on loading malformed settings, option to load partial configuration
6 years ago
Dump settings line by line to prevent memory issues (#896)
6 years ago
Backup and restore settings from file
7 years ago
Restore settings & reset via HTTP
6 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Restore settings & reset via HTTP
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Restore settings & reset via HTTP
6 years ago
Web OTA: check authentication result before accepting payload (#1812)
5 years ago
Restore settings & reset via HTTP
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Restore settings & reset via HTTP
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Restore settings & reset via HTTP
6 years ago
Fixed size json payload & other WS bugfixes (#1843) - update every dynamicjsonbuffer with fixed size constructor argument - change to ws callback registration to use a class builder (just cosmetic) - test multiple ws data callbacks for each module - remove some of the static strings in favour of ws data callback - improve sensor ws callback data size, remove duplicated strings - use static buffer in wsDebugSend - postpone wsSend until loop, implement wsPost to allow other modules to queue message callbacks. remove Ticker based ws callbacks for data - update WebUI files
5 years ago
Restore settings & reset via HTTP
6 years ago
Further renaming
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Split web code into web, ws and api
7 years ago
Fix telnet & web debug responsiveness (#896)
6 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
5 years ago
Chunked response for SSL requests
7 years ago
WTF - ESP.getFreeHeap crashing the system for an specific light bulb...
7 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Pre-build the different available WebUI images
6 years ago
Chunked response for SSL requests
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Update web.ino tabs to spaces for consistency
6 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
5 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Testing web interface over SSL
7 years ago
Small changes in config variables
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
HTTPS disabled by default
7 years ago
Testing web interface over SSL
7 years ago
Added code for SSL certificate reading from SPIFFS
7 years ago
Optional Web(UI) OTA (#2190) * web: optional OTA support * add prototype * hide under websupport
4 years ago
Add Update error number to error message in web UI
7 years ago
Upgrade form and handle code
7 years ago
Optional Web(UI) OTA (#2190) * web: optional OTA support * add prototype * hide under websupport
4 years ago
Upgrade form and handle code
7 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
web: prometheus metrics support (#2332) - (experimental) provide generic way to read magnitude values - expose /api/metrics with values formatted specifically for prometheus, with relay and sensor data - small tweaks to sensor init Example config: ``` scrape_configs: - job_name: 'espurna' metrics_path: '/api/metrics' params: apikey: ['apikeyapikey'] static_configs: - targets: ['espurna-blabla.lan:80'] ``` Where ESPurna side has ``` apiKey => "apikeyapikey" apiEnabled => "1" ```
4 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Close connection in notFound callback (#1768) * Close connection in notFound callback * Add early check of AP mode
5 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Option to build without web server support
7 years ago
Revert WS to ticket-based authentication
6 years ago
Build option to disable password check (USE_PASSWORD). Password check is enabled by default. Use at your own risk (#373)
6 years ago
OTA: verify data stream and properly handle errors (#2067) * webui: improve updater error message * ota: properly check updater state and finalize on errors * finish up ota handling refactor * fail web upgrade when cannot find magic byte * send updater status with no payload arg and always send payload with * mention magic byte and flash mode in webui * gzip magic * make async ota at least usable. timeouts, show errors, try harder to find data after headers * simplify setup and destruction * cleanup class instantiations for ota and url * handle default case of magicflashchipsize * shorter * blobs
4 years ago
Build option to disable password check (USE_PASSWORD). Password check is enabled by default. Use at your own risk (#373)
6 years ago
Split web code into web, ws and api
7 years ago
api: rework plain and JSON implementations (#2405) - match paths through a custom AsyncWebHandler instead of using generic not-found fallback handler - allow MQTT-like patterns when registering paths (`simple/path`, `path/+/something`, `path/#`) Replaces `relay/0`, `relay/1` etc. with `relay/+`. Magnitudes are plain paths, but using `/+` in case there's more than 1 magnitude of the same type. - restore `std::function` as callback container (no more single-byte arg nonsense). Still, limit to 1 type per handler type - adds JSON handlers which will receive JsonObject root as both input and output. Same logic as plain - GET returns resource data, PUT updates it. - breaking change to `apiAuthenticate(request)`, it no longer will do `request->send(403)` and expect this to be handled externally. - allow `Api-Key` header containing the key, works for both GET & PUT plain requests. The only way to set apikey for JSON. - add `ApiRequest::param` to retrieve both GET and PUT params (aka args), remove ApiBuffer - remove `API_BUFFER_SIZE`. Allow custom form-data key=value pairs for requests, allow to send basic `String`. - add `API_JSON_BUFFER_SIZE` for the JSON buffer (both input and output) - `/apis` replaced with `/api/list`, no longer uses custom handler and is an `apiRegister` callback - `/api/rpc` custom handler replaced with an `apiRegister` callback WIP further down: - no more `webLog` for API requests, unless `webAccessLog` / `WEB_ACCESS_LOG` is set to `1`. This also needs to happen to the other handlers. - migrate to ArduinoJson v6, since it become apparent it is actually a good upgrade :) - actually make use of JSON endpoints more, right now it's just existing GET for sensors and relays - fork ESPAsyncWebServer to cleanup path parsing and temporary objects attached to the request (also, fix things a lot of things based on PRs there...)
3 years ago
Split web code into web, ws and api
7 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Refactor get/set/del/hasSetting (#2048) * experimental: refactor get/set/del/hasSetting * sensors * lights * cleaup * r * tuya * fixup! sensors * fixup! tuya * header defaults types * fix lights * setup already checks for max * helper for flashstring * fix overload * oops * refactor includes * warnings * test with migrate * add ids in a separate file * cleanup rev: crash rev: domoticz rev: encoder rev: loopdelay rev: hass rev: i2c rev2: hass rev: mqtt rev: rfm69 rev: relay rev: rpn rev: settings setup rev: hb settings rev: telnet preprocessor fix rev: settings wrap rev: tspk bool style rev: wifi types rev: util hb rev: settings fixup! rev: settings * rev: cleanup wifi injections based on new getters * hasSetting now can return true for empty key * show hardcoded network in web * oops * fix ws referencing wrong index * ensure empty strings are written * c/p * use experimental schema style for payload, mark network as not deletable * allow to customize converter * shorter syntax, try using with wifi * use proper #if syntax to handle definitions that are missing * fixup ota sc checks getter, cast schEnabled to bool * add utils header to sensors
4 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
5 years ago
SSDP working
6 years ago
Refactor get/set/del/hasSetting (#2048) * experimental: refactor get/set/del/hasSetting * sensors * lights * cleaup * r * tuya * fixup! sensors * fixup! tuya * header defaults types * fix lights * setup already checks for max * helper for flashstring * fix overload * oops * refactor includes * warnings * test with migrate * add ids in a separate file * cleanup rev: crash rev: domoticz rev: encoder rev: loopdelay rev: hass rev: i2c rev2: hass rev: mqtt rev: rfm69 rev: relay rev: rpn rev: settings setup rev: hb settings rev: telnet preprocessor fix rev: settings wrap rev: tspk bool style rev: wifi types rev: util hb rev: settings fixup! rev: settings * rev: cleanup wifi injections based on new getters * hasSetting now can return true for empty key * show hardcoded network in web * oops * fix ws referencing wrong index * ensure empty strings are written * c/p * use experimental schema style for payload, mark network as not deletable * allow to customize converter * shorter syntax, try using with wifi * use proper #if syntax to handle definitions that are missing * fixup ota sc checks getter, cast schEnabled to bool * add utils header to sensors
4 years ago
SSDP working
6 years ago
Split web code into web, ws and api
7 years ago
api: rework plain and JSON implementations (#2405) - match paths through a custom AsyncWebHandler instead of using generic not-found fallback handler - allow MQTT-like patterns when registering paths (`simple/path`, `path/+/something`, `path/#`) Replaces `relay/0`, `relay/1` etc. with `relay/+`. Magnitudes are plain paths, but using `/+` in case there's more than 1 magnitude of the same type. - restore `std::function` as callback container (no more single-byte arg nonsense). Still, limit to 1 type per handler type - adds JSON handlers which will receive JsonObject root as both input and output. Same logic as plain - GET returns resource data, PUT updates it. - breaking change to `apiAuthenticate(request)`, it no longer will do `request->send(403)` and expect this to be handled externally. - allow `Api-Key` header containing the key, works for both GET & PUT plain requests. The only way to set apikey for JSON. - add `ApiRequest::param` to retrieve both GET and PUT params (aka args), remove ApiBuffer - remove `API_BUFFER_SIZE`. Allow custom form-data key=value pairs for requests, allow to send basic `String`. - add `API_JSON_BUFFER_SIZE` for the JSON buffer (both input and output) - `/apis` replaced with `/api/list`, no longer uses custom handler and is an `apiRegister` callback - `/api/rpc` custom handler replaced with an `apiRegister` callback WIP further down: - no more `webLog` for API requests, unless `webAccessLog` / `WEB_ACCESS_LOG` is set to `1`. This also needs to happen to the other handlers. - migrate to ArduinoJson v6, since it become apparent it is actually a good upgrade :) - actually make use of JSON endpoints more, right now it's just existing GET for sensors and relays - fork ESPAsyncWebServer to cleanup path parsing and temporary objects attached to the request (also, fix things a lot of things based on PRs there...)
3 years ago
Split web code into web, ws and api
7 years ago
api: rework plain and JSON implementations (#2405) - match paths through a custom AsyncWebHandler instead of using generic not-found fallback handler - allow MQTT-like patterns when registering paths (`simple/path`, `path/+/something`, `path/#`) Replaces `relay/0`, `relay/1` etc. with `relay/+`. Magnitudes are plain paths, but using `/+` in case there's more than 1 magnitude of the same type. - restore `std::function` as callback container (no more single-byte arg nonsense). Still, limit to 1 type per handler type - adds JSON handlers which will receive JsonObject root as both input and output. Same logic as plain - GET returns resource data, PUT updates it. - breaking change to `apiAuthenticate(request)`, it no longer will do `request->send(403)` and expect this to be handled externally. - allow `Api-Key` header containing the key, works for both GET & PUT plain requests. The only way to set apikey for JSON. - add `ApiRequest::param` to retrieve both GET and PUT params (aka args), remove ApiBuffer - remove `API_BUFFER_SIZE`. Allow custom form-data key=value pairs for requests, allow to send basic `String`. - add `API_JSON_BUFFER_SIZE` for the JSON buffer (both input and output) - `/apis` replaced with `/api/list`, no longer uses custom handler and is an `apiRegister` callback - `/api/rpc` custom handler replaced with an `apiRegister` callback WIP further down: - no more `webLog` for API requests, unless `webAccessLog` / `WEB_ACCESS_LOG` is set to `1`. This also needs to happen to the other handlers. - migrate to ArduinoJson v6, since it become apparent it is actually a good upgrade :) - actually make use of JSON endpoints more, right now it's just existing GET for sensors and relays - fork ESPAsyncWebServer to cleanup path parsing and temporary objects attached to the request (also, fix things a lot of things based on PRs there...)
3 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
8 years ago
Option to build without web server support
7 years ago
Fix bug using snprintf
7 years ago
Option to build without web server support
7 years ago
api: rework plain and JSON implementations (#2405) - match paths through a custom AsyncWebHandler instead of using generic not-found fallback handler - allow MQTT-like patterns when registering paths (`simple/path`, `path/+/something`, `path/#`) Replaces `relay/0`, `relay/1` etc. with `relay/+`. Magnitudes are plain paths, but using `/+` in case there's more than 1 magnitude of the same type. - restore `std::function` as callback container (no more single-byte arg nonsense). Still, limit to 1 type per handler type - adds JSON handlers which will receive JsonObject root as both input and output. Same logic as plain - GET returns resource data, PUT updates it. - breaking change to `apiAuthenticate(request)`, it no longer will do `request->send(403)` and expect this to be handled externally. - allow `Api-Key` header containing the key, works for both GET & PUT plain requests. The only way to set apikey for JSON. - add `ApiRequest::param` to retrieve both GET and PUT params (aka args), remove ApiBuffer - remove `API_BUFFER_SIZE`. Allow custom form-data key=value pairs for requests, allow to send basic `String`. - add `API_JSON_BUFFER_SIZE` for the JSON buffer (both input and output) - `/apis` replaced with `/api/list`, no longer uses custom handler and is an `apiRegister` callback - `/api/rpc` custom handler replaced with an `apiRegister` callback WIP further down: - no more `webLog` for API requests, unless `webAccessLog` / `WEB_ACCESS_LOG` is set to `1`. This also needs to happen to the other handlers. - migrate to ArduinoJson v6, since it become apparent it is actually a good upgrade :) - actually make use of JSON endpoints more, right now it's just existing GET for sensors and relays - fork ESPAsyncWebServer to cleanup path parsing and temporary objects attached to the request (also, fix things a lot of things based on PRs there...)
3 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
Option to change the port the embedded webserver is listening to, defaults to 80
7 years ago
api: rework plain and JSON implementations (#2405) - match paths through a custom AsyncWebHandler instead of using generic not-found fallback handler - allow MQTT-like patterns when registering paths (`simple/path`, `path/+/something`, `path/#`) Replaces `relay/0`, `relay/1` etc. with `relay/+`. Magnitudes are plain paths, but using `/+` in case there's more than 1 magnitude of the same type. - restore `std::function` as callback container (no more single-byte arg nonsense). Still, limit to 1 type per handler type - adds JSON handlers which will receive JsonObject root as both input and output. Same logic as plain - GET returns resource data, PUT updates it. - breaking change to `apiAuthenticate(request)`, it no longer will do `request->send(403)` and expect this to be handled externally. - allow `Api-Key` header containing the key, works for both GET & PUT plain requests. The only way to set apikey for JSON. - add `ApiRequest::param` to retrieve both GET and PUT params (aka args), remove ApiBuffer - remove `API_BUFFER_SIZE`. Allow custom form-data key=value pairs for requests, allow to send basic `String`. - add `API_JSON_BUFFER_SIZE` for the JSON buffer (both input and output) - `/apis` replaced with `/api/list`, no longer uses custom handler and is an `apiRegister` callback - `/api/rpc` custom handler replaced with an `apiRegister` callback WIP further down: - no more `webLog` for API requests, unless `webAccessLog` / `WEB_ACCESS_LOG` is set to `1`. This also needs to happen to the other handlers. - migrate to ArduinoJson v6, since it become apparent it is actually a good upgrade :) - actually make use of JSON endpoints more, right now it's just existing GET for sensors and relays - fork ESPAsyncWebServer to cleanup path parsing and temporary objects attached to the request (also, fix things a lot of things based on PRs there...)
3 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
api: rework plain and JSON implementations (#2405) - match paths through a custom AsyncWebHandler instead of using generic not-found fallback handler - allow MQTT-like patterns when registering paths (`simple/path`, `path/+/something`, `path/#`) Replaces `relay/0`, `relay/1` etc. with `relay/+`. Magnitudes are plain paths, but using `/+` in case there's more than 1 magnitude of the same type. - restore `std::function` as callback container (no more single-byte arg nonsense). Still, limit to 1 type per handler type - adds JSON handlers which will receive JsonObject root as both input and output. Same logic as plain - GET returns resource data, PUT updates it. - breaking change to `apiAuthenticate(request)`, it no longer will do `request->send(403)` and expect this to be handled externally. - allow `Api-Key` header containing the key, works for both GET & PUT plain requests. The only way to set apikey for JSON. - add `ApiRequest::param` to retrieve both GET and PUT params (aka args), remove ApiBuffer - remove `API_BUFFER_SIZE`. Allow custom form-data key=value pairs for requests, allow to send basic `String`. - add `API_JSON_BUFFER_SIZE` for the JSON buffer (both input and output) - `/apis` replaced with `/api/list`, no longer uses custom handler and is an `apiRegister` callback - `/api/rpc` custom handler replaced with an `apiRegister` callback WIP further down: - no more `webLog` for API requests, unless `webAccessLog` / `WEB_ACCESS_LOG` is set to `1`. This also needs to happen to the other handlers. - migrate to ArduinoJson v6, since it become apparent it is actually a good upgrade :) - actually make use of JSON endpoints more, right now it's just existing GET for sensors and relays - fork ESPAsyncWebServer to cleanup path parsing and temporary objects attached to the request (also, fix things a lot of things based on PRs there...)
3 years ago
Further renaming
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Adding /api and /apis to API request callback
6 years ago
Optional Web(UI) OTA (#2190) * web: optional OTA support * add prototype * hide under websupport
4 years ago
Refactoring build flag names
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Using gulp to generate the embedded web contents, added Last-Modifier support to embedded home
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Split web code into web, ws and api
7 years ago
Experimental option to embed the web interface in the firmware image
7 years ago
Added EEPROM management commands to terminal interface
7 years ago
Optional Web(UI) OTA (#2190) * web: optional OTA support * add prototype * hide under websupport
4 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Optional Web(UI) OTA (#2190) * web: optional OTA support * add prototype * hide under websupport
4 years ago
Test support for upcoming fauxmoESP 3.1.0
5 years ago
Reduce memory footprint of API calls (#1133)
6 years ago
Migrated to AsyncWebServer, AsyncWebSocket and AsyncMqttClient
8 years ago
Secure client / server cleanup (#2016) * web: revert changed from secure_client patch * ota/httpupdate: use SecureClient * ota/httpupdate: use scheduled function on mqtt event * config: finish up 590282e changes + add warnings * typo fix * use bind instead of c++14 magic, use debug text from secureclient * bump * actually use the locking
5 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
SSDP working
6 years ago
Testing web interface over SSL
7 years ago
Added password check to telnet
6 years ago
SSDP working
6 years ago
Complete update
8 years ago
Option to build without web server support
7 years ago
 
  1. /*

  2. 

  3. WEBSERVER MODULE
  4. 

  5. Copyright (C) 2016-2019 by Xose Pérez <xose dot perez at gmail dot com>
  6. 

  7. */
  8. 

  9. #include "web.h"

  10. 

  11. #if WEB_SUPPORT

  12. 

  13. #include <algorithm>

  14. #include <functional>

  15. #include <memory>

  16. 

  17. #include "system.h"

  18. #include "utils.h"

  19. #include "ntp.h"

  20. 

  21. #include <Schedule.h>

  22. #include <Print.h>

  23. #include <Hash.h>

  24. #include <FS.h>

  25. 

  26. #include <ArduinoJson.h>

  27. #include <ESPAsyncWebServer.h>

  28. #include <AsyncJson.h>

  29. 

  30. #if WEB_EMBEDDED

  31. 

  32. #if WEBUI_IMAGE == WEBUI_IMAGE_SMALL

  33.     #include "static/index.small.html.gz.h"

  34. #elif WEBUI_IMAGE == WEBUI_IMAGE_LIGHT

  35.     #include "static/index.light.html.gz.h"

  36. #elif WEBUI_IMAGE == WEBUI_IMAGE_SENSOR

  37.     #include "static/index.sensor.html.gz.h"

  38. #elif WEBUI_IMAGE == WEBUI_IMAGE_RFBRIDGE

  39.     #include "static/index.rfbridge.html.gz.h"

  40. #elif WEBUI_IMAGE == WEBUI_IMAGE_RFM69

  41.     #include "static/index.rfm69.html.gz.h"

  42. #elif WEBUI_IMAGE == WEBUI_IMAGE_LIGHTFOX

  43.     #include "static/index.lightfox.html.gz.h"

  44. #elif WEBUI_IMAGE == WEBUI_IMAGE_GARLAND

  45.     #include "static/index.garland.html.gz.h"

  46. #elif WEBUI_IMAGE == WEBUI_IMAGE_THERMOSTAT

  47.     #include "static/index.thermostat.html.gz.h"

  48. #elif WEBUI_IMAGE == WEBUI_IMAGE_CURTAIN

  49.     #include "static/index.curtain.html.gz.h"

  50. #elif WEBUI_IMAGE == WEBUI_IMAGE_FULL

  51.     #include "static/index.all.html.gz.h"

  52. #endif

  53. 

  54. #endif // WEB_EMBEDDED

  55. 

  56. #if WEB_SSL_ENABLED

  57. #include "static/server.cer.h"

  58. #include "static/server.key.h"

  59. #endif // WEB_SSL_ENABLED

  60. 

  61. 

  62. AsyncWebPrint::AsyncWebPrint(const AsyncWebPrintConfig& config, AsyncWebServerRequest* request) :
  63.     mimeType(config.mimeType),
  64.     backlogCountMax(config.backlogCountMax),
  65.     backlogSizeMax(config.backlogSizeMax),
  66.     backlogTimeout(config.backlogTimeout),
  67.     _request(request),
  68.     _state(State::None)
  69. {}
  70. 

  71. bool AsyncWebPrint::_addBuffer() {
  72.     if ((_buffers.size() + 1) > backlogCountMax) {
  73.         if (!_exhaustBuffers()) {
  74.             _state = State::Error;
  75.             return false;
  76.         }
  77.     }
  78. 

  79.     // Note: c++17, emplace returns created object reference

  80.     //       c++11, we need to use .back()

  81.     _buffers.emplace_back(backlogSizeMax, 0);
  82.     _buffers.back().clear();
  83. 

  84.     return true;
  85. }
  86. 

  87. // Creates response object that will handle the data written into the Print& interface.

  88. //

  89. // This API expects a **very** careful approach to context switching between SYS and CONT:

  90. // - Returning RESPONSE_TRY_AGAIN before buffers are filled will result in invalid size marker being sent on the wire.

  91. //   HTTP client (curl, python requests etc., as discovered in testing) will then drop the connection

  92. // - Returning 0 will immediatly close the connection from our side

  93. // - Calling _prepareRequest() **before** _buffers are filled will result in returning 0

  94. // - Calling yield() / delay() while request AsyncWebPrint is active **may** trigger this callback out of sequence

  95. //   (e.g. Serial.print(..), DEBUG_MSG(...), or any other API trying to switch contexts)

  96. // - Receiving data (tcp ack from the previous packet) **will** trigger the callback when switching contexts.

  97. 

  98. void AsyncWebPrint::_prepareRequest() {
  99.     _state = State::Sending;
  100. 

  101.     auto *response = _request->beginChunkedResponse(mimeType, [this](uint8_t *buffer, size_t maxLen, size_t index) -> size_t {
  102.         switch (_state) {
  103.         case State::None:
  104.             return RESPONSE_TRY_AGAIN;
  105.         case State::Error:
  106.         case State::Done:
  107.             return 0;
  108.         case State::Sending:
  109.             break;
  110.         }
  111. 

  112.         size_t written = 0;
  113.         while ((written < maxLen) && !_buffers.empty()) {
  114.             auto& chunk =_buffers.front();
  115.             auto have = maxLen - written;
  116.             if (chunk.size() > have) {
  117.                 std::copy(chunk.data(), chunk.data() + have, buffer + written);
  118.                 chunk.erase(chunk.begin(), chunk.begin() + have);
  119.                 written += have;
  120.             } else {
  121.                 std::copy(chunk.data(), chunk.data() + chunk.size(), buffer + written);
  122.                 _buffers.pop_front();
  123.                 written += chunk.size();
  124.             }
  125.         }
  126. 

  127. 

  128.         return written;
  129.     });
  130. 

  131.     response->addHeader("Connection", "close");
  132.     _request->send(response);
  133. }
  134. 

  135. void AsyncWebPrint::setState(State state) {
  136.     _state = state;
  137. }
  138. 

  139. AsyncWebPrint::State AsyncWebPrint::getState() {
  140.     return _state;
  141. }
  142. 

  143. size_t AsyncWebPrint::write(uint8_t b) {
  144.     const uint8_t tmp[1] {b};
  145.     return write(tmp, 1);
  146. }
  147. 

  148. bool AsyncWebPrint::_exhaustBuffers() {
  149.     // XXX: espasyncwebserver will trigger write callback if we setup response too early

  150.     //      exploring code, callback handler responds to a special return value RESPONSE_TRY_AGAIN

  151.     //      but, it seemingly breaks chunked response logic

  152.     // XXX: this should be **the only place** that can trigger yield() while we stay in CONT

  153.     if (_state == State::None) {
  154.         _prepareRequest();
  155.     }
  156. 

  157.     const auto start = millis();
  158.     do {
  159.         if (millis() - start > 5000) {
  160.             _buffers.clear();
  161.             break;
  162.         }
  163.         yield();
  164.     } while (!_buffers.empty());
  165. 

  166.     return _buffers.empty();
  167. }
  168. 

  169. void AsyncWebPrint::flush() {
  170.     _exhaustBuffers();
  171.     _state = State::Done;
  172. }
  173. 

  174. size_t AsyncWebPrint::write(const uint8_t* data, size_t size) {
  175.     if (_state == State::Error) {
  176.         return 0;
  177.     }
  178. 

  179.     size_t full_size = size;
  180.     auto* data_ptr = data;
  181. 

  182.     while (size) {
  183.         if (_buffers.empty() && !_addBuffer()) {
  184.             full_size = 0;
  185.             break;
  186.         }
  187.         auto& current = _buffers.back();
  188.         const auto have = current.capacity() - current.size();
  189.         if (have >= size) {
  190.             current.insert(current.end(), data_ptr, data_ptr + size);
  191.             size = 0;
  192.         } else {
  193.             current.insert(current.end(), data_ptr, data_ptr + have);
  194.             if (!_addBuffer()) {
  195.                 full_size = 0;
  196.                 break;
  197.             }
  198.             data_ptr += have;
  199.             size -= have;
  200.         }
  201.     }
  202. 

  203.     return full_size;
  204. }
  205. 

  206. // -----------------------------------------------------------------------------

  207. 

  208. AsyncWebServer* _server;
  209. char _last_modified[50];
  210. std::vector<uint8_t> * _webConfigBuffer;
  211. bool _webConfigSuccess = false;
  212. 

  213. std::vector<web_request_callback_f> _web_request_callbacks;
  214. std::vector<web_body_callback_f> _web_body_callbacks;
  215. 

  216. constexpr const size_t WEB_CONFIG_BUFFER_MAX = 4096;
  217. 

  218. // -----------------------------------------------------------------------------

  219. // HOOKS

  220. // -----------------------------------------------------------------------------

  221. 

  222. void _onReset(AsyncWebServerRequest *request) {
  223. 

  224.     webLog(request);
  225.     if (!webAuthenticate(request)) {
  226.         return request->requestAuthentication(getSetting("hostname").c_str());
  227.     }
  228. 

  229.     deferredReset(100, CUSTOM_RESET_HTTP);
  230.     request->send(200);
  231. }
  232. 

  233. void _onDiscover(AsyncWebServerRequest *request) {
  234. 

  235.     webLog(request);
  236. 

  237.     const String device = getBoardName();
  238.     const String hostname = getSetting("hostname");
  239. 

  240.     StaticJsonBuffer<JSON_OBJECT_SIZE(4)> jsonBuffer;
  241.     JsonObject &root = jsonBuffer.createObject();
  242.     root["app"] = APP_NAME;
  243.     root["version"] = getVersion().c_str();
  244.     root["device"] = device.c_str();
  245.     root["hostname"] = hostname.c_str();
  246. 

  247.     AsyncResponseStream *response = request->beginResponseStream("application/json", root.measureLength() + 1);
  248.     root.printTo(*response);
  249. 

  250.     request->send(response);
  251. 

  252. }
  253. 

  254. void _onGetConfig(AsyncWebServerRequest *request) {
  255. 

  256.     webLog(request);
  257.     if (!webAuthenticate(request)) {
  258.         return request->requestAuthentication(getSetting("hostname").c_str());
  259.     }
  260. 

  261.     AsyncResponseStream *response = request->beginResponseStream("application/json");
  262. 

  263.     char buffer[100];
  264.     snprintf_P(buffer, sizeof(buffer), PSTR("attachment; filename=\"%s-backup.json\""), (char *) getSetting("hostname").c_str());
  265.     response->addHeader("Content-Disposition", buffer);
  266.     response->addHeader("X-XSS-Protection", "1; mode=block");
  267.     response->addHeader("X-Content-Type-Options", "nosniff");
  268.     response->addHeader("X-Frame-Options", "deny");
  269. 

  270.     response->printf("{\n\"app\": \"" APP_NAME "\"");
  271.     response->printf(",\n\"version\": \"%s\"", getVersion().c_str());
  272.     response->printf(",\n\"backup\": \"1\"");
  273.     #if NTP_SUPPORT

  274.         response->printf(",\n\"timestamp\": \"%s\"", ntpDateTime().c_str());
  275.     #endif

  276. 

  277.     // Write the keys line by line (not sorted)

  278.     auto keys = settingsKeys();
  279.     for (auto& key : keys) {
  280.         String value = getSetting(key);
  281.         response->printf(",\n\"%s\": \"%s\"", key.c_str(), value.c_str());
  282.     }
  283.     response->printf("\n}");
  284. 

  285.     request->send(response);
  286. 

  287. }
  288. 

  289. void _onPostConfig(AsyncWebServerRequest *request) {
  290.     webLog(request);
  291.     if (!webAuthenticate(request)) {
  292.         return request->requestAuthentication(getSetting("hostname").c_str());
  293.     }
  294.     request->send(_webConfigSuccess ? 200 : 400);
  295. }
  296. 

  297. void _onPostConfigFile(AsyncWebServerRequest *request, String filename, size_t index, uint8_t *data, size_t len, bool final) {
  298. 

  299.     if (!webAuthenticate(request)) {
  300.         return request->requestAuthentication(getSetting("hostname").c_str());
  301.     }
  302. 

  303.     // No buffer

  304.     if (final && (index == 0)) {
  305.         _webConfigSuccess = settingsRestoreJson((char*) data);
  306.         return;
  307.     }
  308. 

  309.     // Buffer start => reset

  310.     if (index == 0) if (_webConfigBuffer) delete _webConfigBuffer;
  311. 

  312.     // init buffer if it doesn't exist

  313.     if (!_webConfigBuffer) {
  314.         _webConfigBuffer = new std::vector<uint8_t>();
  315.         _webConfigSuccess = false;
  316.     }
  317. 

  318.     // Copy

  319.     if (len > 0) {
  320.         if ((_webConfigBuffer->size() + len) > std::min(WEB_CONFIG_BUFFER_MAX, getFreeHeap() - sizeof(std::vector<uint8_t>))) {
  321.             delete _webConfigBuffer;
  322.             _webConfigBuffer = nullptr;
  323.             request->send(500);
  324.             return;
  325.         }
  326.         _webConfigBuffer->reserve(_webConfigBuffer->size() + len);
  327.         _webConfigBuffer->insert(_webConfigBuffer->end(), data, data + len);
  328.     }
  329. 

  330.     // Ending

  331.     if (final) {
  332. 

  333.         _webConfigBuffer->push_back(0);
  334.         _webConfigSuccess = settingsRestoreJson((char*) _webConfigBuffer->data());
  335.         delete _webConfigBuffer;
  336. 

  337.     }
  338. 

  339. }
  340. 

  341. #if WEB_EMBEDDED

  342. void _onHome(AsyncWebServerRequest *request) {
  343. 

  344.     webLog(request);
  345.     if (!webAuthenticate(request)) {
  346.         return request->requestAuthentication(getSetting("hostname").c_str());
  347.     }
  348. 

  349.     if (request->header("If-Modified-Since").equals(_last_modified)) {
  350. 

  351.         request->send(304);
  352. 

  353.     } else {
  354. 

  355.         #if WEB_SSL_ENABLED

  356. 

  357.             // Chunked response, we calculate the chunks based on free heap (in multiples of 32)

  358.             // This is necessary when a TLS connection is open since it sucks too much memory

  359.             DEBUG_MSG_P(PSTR("[MAIN] Free heap: %d bytes\n"), getFreeHeap());
  360.             size_t max = (getFreeHeap() / 3) & 0xFFE0;
  361. 

  362.             AsyncWebServerResponse *response = request->beginChunkedResponse("text/html", [max](uint8_t *buffer, size_t maxLen, size_t index) -> size_t {
  363. 

  364.                 // Get the chunk based on the index and maxLen

  365.                 size_t len = webui_image_len - index;
  366.                 if (len > maxLen) len = maxLen;
  367.                 if (len > max) len = max;
  368.                 if (len > 0) memcpy_P(buffer, webui_image + index, len);
  369. 

  370.                 DEBUG_MSG_P(PSTR("[WEB] Sending %d%%%% (max chunk size: %4d)\r"), int(100 * index / webui_image_len), max);
  371.                 if (len == 0) DEBUG_MSG_P(PSTR("\n"));
  372. 

  373.                 // Return the actual length of the chunk (0 for end of file)

  374.                 return len;
  375. 

  376.             });
  377. 

  378.         #else

  379. 

  380.             AsyncWebServerResponse *response = request->beginResponse_P(200, "text/html", webui_image, webui_image_len);
  381. 

  382.         #endif

  383. 

  384.         response->addHeader("Content-Encoding", "gzip");
  385.         response->addHeader("Last-Modified", _last_modified);
  386.         response->addHeader("X-XSS-Protection", "1; mode=block");
  387.         response->addHeader("X-Content-Type-Options", "nosniff");
  388.         response->addHeader("X-Frame-Options", "deny");
  389.         request->send(response);
  390. 

  391.     }
  392. 

  393. }
  394. #endif

  395. 

  396. #if WEB_SSL_ENABLED

  397. 

  398. int _onCertificate(void * arg, const char *filename, uint8_t **buf) {
  399. 

  400. #if WEB_EMBEDDED

  401. 

  402.     if (strcmp(filename, "server.cer") == 0) {
  403.         uint8_t * nbuf = (uint8_t*) malloc(server_cer_len);
  404.         memcpy_P(nbuf, server_cer, server_cer_len);
  405.         *buf = nbuf;
  406.         DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  407.         return server_cer_len;
  408.     }
  409. 

  410.     if (strcmp(filename, "server.key") == 0) {
  411.         uint8_t * nbuf = (uint8_t*) malloc(server_key_len);
  412.         memcpy_P(nbuf, server_key, server_key_len);
  413.         *buf = nbuf;
  414.         DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  415.         return server_key_len;
  416.     }
  417. 

  418.     DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - ERROR\n"), filename);
  419.     *buf = 0;
  420.     return 0;
  421. 

  422. #else

  423. 

  424.     File file = SPIFFS.open(filename, "r");
  425.     if (file) {
  426.         size_t size = file.size();
  427.         uint8_t * nbuf = (uint8_t*) malloc(size);
  428.         if (nbuf) {
  429.             size = file.read(nbuf, size);
  430.             file.close();
  431.             *buf = nbuf;
  432.             DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - OK\n"), filename);
  433.             return size;
  434.         }
  435.         file.close();
  436.     }
  437.     DEBUG_MSG_P(PSTR("[WEB] SSL File: %s - ERROR\n"), filename);
  438.     *buf = 0;
  439.     return 0;
  440. 

  441. #endif // WEB_EMBEDDED == 1

  442. 

  443. }
  444. 

  445. #endif // WEB_SSL_ENABLED

  446. 

  447. bool _onAPModeRequest(AsyncWebServerRequest *request) {
  448. 

  449.     if ((WiFi.getMode() & WIFI_AP) > 0) {
  450.         const String domain = getSetting("hostname") + ".";
  451.         const String host = request->header("Host");
  452.         const String ip = WiFi.softAPIP().toString();
  453. 

  454.         // Only allow requests that use our hostname or ip

  455.         if (host.equals(ip)) return true;
  456.         if (host.startsWith(domain)) return true;
  457. 

  458.         // Immediatly close the connection, ref: https://github.com/xoseperez/espurna/issues/1660

  459.         // Not doing so will cause memory exhaustion, because the connection will linger

  460.         request->send(404);
  461.         request->client()->close();
  462. 

  463.         return false;
  464.     }
  465. 

  466.     return true;
  467. 

  468. }
  469. 

  470. void _onRequest(AsyncWebServerRequest *request){
  471. 

  472.     if (!_onAPModeRequest(request)) return;
  473. 

  474.     // Send request to subscribers, break when request is 'handled' by the callback

  475.     for (auto& callback : _web_request_callbacks) {
  476.         if (callback(request)) {
  477.             return;
  478.         }
  479.     }
  480. 

  481.     // No subscriber handled the request, return a 404 with implicit "Connection: close"

  482.     request->send(404);
  483. 

  484.     // And immediatly close the connection, ref: https://github.com/xoseperez/espurna/issues/1660

  485.     // Not doing so will cause memory exhaustion, because the connection will linger

  486.     request->client()->close();
  487. 

  488. }
  489. 

  490. void _onBody(AsyncWebServerRequest *request, uint8_t *data, size_t len, size_t index, size_t total) {
  491. 

  492.     if (!_onAPModeRequest(request)) return;
  493. 

  494.     // Send request to subscribers

  495.     for (unsigned char i = 0; i < _web_body_callbacks.size(); i++) {
  496.         bool response = (_web_body_callbacks[i])(request, data, len, index, total);
  497.         if (response) return;
  498.     }
  499. 

  500.     // Same as _onAPModeRequest(...)

  501.     request->send(404);
  502.     request->client()->close();
  503. 

  504. }
  505. 

  506. 

  507. // -----------------------------------------------------------------------------

  508. 

  509. bool webAuthenticate(AsyncWebServerRequest *request) {
  510.     #if USE_PASSWORD

  511.         return request->authenticate(WEB_USERNAME, getAdminPass().c_str());
  512.     #else

  513.         return true;
  514.     #endif

  515. }
  516. 

  517. // -----------------------------------------------------------------------------

  518. 

  519. AsyncWebServer& webServer() {
  520.     return *_server;
  521. }
  522. 

  523. void webBodyRegister(web_body_callback_f callback) {
  524.     _web_body_callbacks.push_back(callback);
  525. }
  526. 

  527. void webRequestRegister(web_request_callback_f callback) {
  528.     _web_request_callbacks.push_back(callback);
  529. }
  530. 

  531. uint16_t webPort() {
  532.     #if WEB_SSL_ENABLED

  533.         return 443;
  534.     #else

  535.         constexpr const uint16_t defaultValue(WEB_PORT);
  536.         return getSetting("webPort", defaultValue);
  537.     #endif

  538. }
  539. 

  540. void webLog(AsyncWebServerRequest *request) {
  541.     DEBUG_MSG_P(PSTR("[WEBSERVER] %s %s\n"), request->methodToString(), request->url().c_str());
  542. }
  543. 

  544. class WebAccessLogHandler : public AsyncWebHandler {
  545.     bool canHandle(AsyncWebServerRequest* request) override {
  546.         webLog(request);
  547.         return false;
  548.     }
  549. };
  550. 

  551. void webSetup() {
  552. 

  553.     // Cache the Last-Modifier header value

  554.     snprintf_P(_last_modified, sizeof(_last_modified), PSTR("%s %s GMT"), __DATE__, __TIME__);
  555. 

  556.     // Create server and install global URL debug handler

  557.     // (since we don't want to forcibly add it to each instance)

  558.     unsigned int port = webPort();
  559.     _server = new AsyncWebServer(port);
  560. 

  561. #if DEBUG_SUPPORT

  562.     if (getSetting("webAccessLog", (1 == WEB_ACCESS_LOG))) {
  563.         static WebAccessLogHandler log;
  564.         _server->addHandler(&log);
  565.     }
  566. #endif

  567. 

  568.     // Rewrites

  569.     _server->rewrite("/", "/index.html");
  570. 

  571.     // Serve home (basic authentication protection is done manually b/c the handler is installed through callback functions)

  572.     #if WEB_EMBEDDED

  573.         _server->on("/index.html", HTTP_GET, _onHome);
  574.     #endif

  575. 

  576.     // Serve static files (not supported, yet)

  577.     #if SPIFFS_SUPPORT

  578.         _server->serveStatic("/", SPIFFS, "/")
  579.             .setLastModified(_last_modified)
  580.             .setFilter([](AsyncWebServerRequest *request) -> bool {
  581.                 webLog(request);
  582.                 return true;
  583.             });
  584.     #endif

  585. 

  586.     _server->on("/reset", HTTP_GET, _onReset);
  587.     _server->on("/config", HTTP_GET, _onGetConfig);
  588.     _server->on("/config", HTTP_POST | HTTP_PUT, _onPostConfig, _onPostConfigFile);
  589.     _server->on("/discover", HTTP_GET, _onDiscover);
  590. 

  591.     // Handle every other request, including 404

  592.     _server->onRequestBody(_onBody);
  593.     _server->onNotFound(_onRequest);
  594. 

  595.     // Run server

  596.     #if WEB_SSL_ENABLED

  597.         _server->onSslFileRequest(_onCertificate, NULL);
  598.         _server->beginSecure("server.cer", "server.key", NULL);
  599.     #else

  600.         _server->begin();
  601.     #endif

  602. 

  603.     DEBUG_MSG_P(PSTR("[WEBSERVER] Webserver running on port %u\n"), port);
  604. 

  605. }
  606. 

  607. #endif // WEB_SUPPORT