Pi-Hole/FTL
1
0
Fork 0
mirror of https://github.com/pi-hole/FTL.git synced 2025-12-20 14:58:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
1414e0d397e647931e4513d28ed45e9418f686b4
FTL/test/api/libs/FTLAPI.py
DL6ER 1414e0d397 Ensure checkAPI.py also accepts situations with localAPIauth = false 
Signed-off-by: DL6ER <dl6er@dl6er.de>
2023-01-08 20:59:18 +01:00

128 lines
4.1 KiB
Python
Raw Blame History

#!/bin/python3
# Pi-hole: A black hole for Internet advertisements
# (c) 2023 Pi-hole, LLC (https://pi-hole.net)
# Network-wide ad blocking via your own hardware.
#
# FTL Engine - auxiliary files
# API test script
#
# This file is copyright under the latest version of the EUPL.
# Please see LICENSE file for your rights under this license.
import requests
from typing import List
import json
from hashlib import sha256
url = "http://pi.hole/api/auth"
"""
challenge = requests.get(url).json()["challenge"].encode('ascii')
response = sha256(challenge + b":" + pwhash).hexdigest().encode("ascii")
session = requests.post(url, data = {"response": response}).json()
valid = session["session"]["valid"] # True / False
sid = session["session"]["sid"] # SID string if succesful, null otherwise
"""
# Class to query the FTL API
class FTLAPI():
def __init__(self, api_url: str):
self.api_url = api_url
self.endpoints = []
self.errors = []
self.session = None
self.verbose = False
# Login to FTL API
self.login()
if self.session is None or 'valid' not in self.session or not self.session['valid']:
raise Exception("Could not login to FTL API")
def login(self, password: str = None):
# Get challenge from FTL
response = self.GET("/api/auth")
# Check if we are already logged in or authentication is not
# required
if 'session' in response and response['session']['valid']:
if 'session' not in response:
raise Exception("FTL returned invalid challenge item")
self.session = response["session"]
return
pwhash = None
if password is None:
# Try to read the password hash from setupVars.conf
try:
with open("/etc/pihole/setupVars.conf", "r") as f:
for line in f:
if line.startswith("WEBPASSWORD="):
pwhash = line[12:].strip()
break
except Exception as e:
self.errors.append("Exception when reading setupVars.conf: " + str(e))
else:
# Generate password hash
pwhash = sha256(password.encode("ascii")).hexdigest()
pwhash = sha256(pwhash.encode("ascii")).hexdigest()
# Get the challenge from FTL
challenge = challenge["challenge"].encode("ascii")
response = sha256(challenge + b":" + pwhash.encode("ascii")).hexdigest()
response = self.POST("/api/auth", {"response": response})
if 'session' not in response:
raise Exception("FTL returned invalid challenge item")
self.session = response["session"]
# Query the FTL API (GET) and return the response
def GET(self, uri: str, params: List[str] = []):
self.errors = []
try:
# Add parameters to the URI (if any)
if len(params) > 0:
uri = uri + "?" + "&".join(params)
# Add session ID to the request (if any)
data = None
if self.session is not None and 'sid' in self.session:
data = {"sid": self.session['sid'] }
# Query the API
if self.verbose:
print("GET " + self.api_url + uri + " with data: " + json.dumps(data))
with requests.get(url = self.api_url + uri, json = data) as response:
if self.verbose:
print(json.dumps(response.json(), indent=4))
return response.json()
except Exception as e:
self.errors.append("Exception when GETing from FTL: " + str(e))
return None
# Query the FTL API (POST) and return the response
def POST(self, uri: str, data: dict = {}):
self.errors = []
try:
if self.verbose:
print("POST " + self.api_url + uri + " with data: " + json.dumps(data))
with requests.post(url = self.api_url + uri, json = data) as response:
if self.verbose:
print(json.dumps(response.json(), indent=4))
return response.json()
except Exception as e:
self.errors.append("Exception when POSTing to FTL: " + str(e))
return None
# Query the endpoints from FTL for comparison with the OpenAPI specs
def get_endpoints(self):
try:
# Get all endpoints from FTL and sort them for comparison
for endpoint in self.GET("/api/ftl/endpoints")["endpoints"]:
self.endpoints.append(endpoint["uri"] + endpoint["parameters"])
self.endpoints = sorted(self.endpoints)
except Exception as e:
print("Exception when pre-processing endpoints from FTL: " + str(e))
exit(1)
return self.endpoints
Reference in New Issue View Git Blame Copy Permalink