dbcon->prepare($jobsSql); $jobsRslt = $jobsStmt->executeQuery(); $jobs = $jobsRslt->fetchAllAssociative(); foreach ($jobs as $key=>&$job) { $job['data'] = json_decode($job['data'], true); $job['host-displayname'] = $job['data']['host']; if(!empty($job['data']['containertype']) && $job['data']['containertype'] != 'none') { $job['host-displayname'] = $job['data']['service'] . ' on ' . $job['data']['host']; } } return $jobs; } public function getJobsDue() { $jobsSql = "SELECT id FROM job WHERE nextrun <= :timestamp AND running != 1"; $jobsStmt = $this->dbcon->prepare($jobsSql); $jobsRslt = $jobsStmt->executeQuery([':timestamp' => time()]); $jobs = $jobsRslt->fetchAllAssociative(); $return = []; foreach ($jobs as $job) { $return[] = $job['id']; } return $return; } public function setJobRunning(int $job, bool $status): void { $jobsSql = "UPDATE job SET running = :status WHERE id = :id AND running in (0,1)"; $jobsStmt = $this->dbcon->prepare($jobsSql); $jobsStmt->executeQuery([':id' => $job, ':status' => $status ? 1 : 0]); return; } private function runHttpJob(array $job): array { $client = new Client(); if(!empty($job['data']['vars'])) { foreach($job['data']['vars'] as $key => $var) { $job['data']['basicauth-username'] = str_replace('{' . $key . '}', $var['value'], $job['data']['basicauth-username']); $job['data']['url'] = str_replace('{' . $key . '}', $var['value'], $job['data']['url']); } } $url = $job['data']['url']; $options['http_errors'] = false; $options['auth'] = [$job['data']['basicauth-username'], $job['data']['basicauth-password']]; $res = $client->request('GET', $url, $options); $return['exitcode'] = $res->getStatusCode(); $return['output'] = $res->getBody(); return $return; } private function runCommandJob(array $job): array { if(!empty($job['data']['vars'])) { foreach ($job['data']['vars'] as $key => $var) { $job['data']['command'] = str_replace('{' . $key . '}', $var['value'], $job['data']['command']); } } $command = $job['data']['command']; if ($job['data']['containertype'] == 'docker') { $command = $this->prepareDockerCommand($command, $job['data']['service'], $job['data']['container-user']); } if($job['data']['hosttype'] == 'local') { return $this->runLocalCommand($command); } elseif($job['data']['hosttype'] == 'ssh') { return $this->runSshCommand($command, $job['data']['host'], $job['data']['user'], $job['data']['ssh-privkey'], $job['data']['privkey-password']); } } private function runLocalCommand(string $command): array { pcntl_signal(SIGCHLD, SIG_DFL); $return['exitcode'] = NULL; $return['output'] = NULL; exec($command . ' 2>&1', $return['output'], $return['exitcode']); pcntl_signal(SIGCHLD, SIG_IGN); $return['output'] = implode("\n", $return['output']); return $return; } private function runSshCommand(string $command, string $host, string $user, string $privkey, string $password): array { $ssh = new SSH2($host); $key = null; if(!empty($privkey)) { if(!empty($password)) { $key = PublicKeyLoader::load(base64_decode($privkey), $password); } else { $key = PublicKeyLoader::load(base64_decode($privkey)); } } elseif (!empty($password)) { $key = $privkey; } if (!$ssh->login($user, $key)) { $return['output'] = "Login failed"; $return['exitcode'] = 255; return $return; } $command .= ';echo "[return_code:$?]"'; $output = $ssh->exec($command); preg_match( '/\[return_code:(.*?)\]/', $output, $match ); $return['output'] = str_replace($match[0] . "\n", '', $output); $return['exitcode'] = $match[1]; return $return; } private function runRebootJob(array $job): array { if($job['running'] == 1) { $job['data']['reboot-command'] = str_replace('{reboot-delay}', $job['data']['reboot-delay'], $job['data']['reboot-command']); $job['data']['reboot-command'] = str_replace('{reboot-delay-secs}', $job['data']['reboot-delay-secs'], $job['data']['reboot-command']); if (!empty($job['data']['vars'])) { foreach ($job['data']['vars'] as $key => $var) { $job['data']['reboot-command'] = str_replace('{' . $key . '}', $var['value'], $job['data']['reboot-command']); } } $jobsSql = "UPDATE job SET running = :status WHERE id = :id"; $jobsStmt = $this->dbcon->prepare($jobsSql); $jobsStmt->executeQuery([':id' => $job['id'], ':status' => time() + $job['data']['reboot-delay-secs'] + ($job['reboot-duration'] * 60)]); if($job['data']['hosttype'] == 'ssh') { $this->runSshCommand($job['data']['reboot-command'], $job['data']['host'], $job['data']['user'], $job['data']['ssh-privkey'], $job['data']['privkey-password']); } elseif($job['data']['hosttype'] == 'local') { $this->runLocalCommand($job['data']['reboot-command']); } exit; } elseif($job['running'] != 0) { if($job['running'] > time()) { exit; } if (!empty($job['data']['vars'])) { foreach ($job['data']['vars'] as $key => $var) { $job['data']['getservices-command'] = str_replace('{' . $key . '}', $var['value'], $job['data']['getservices-command']); } } if($job['data']['hosttype'] == 'ssh') { return $this->runSshCommand($job['data']['getservices-command'], $job['data']['host'], $job['data']['user'], $job['data']['ssh-privkey'], $job['data']['privkey-password']); } elseif($job['data']['hosttype'] == 'local') { return $this->runLocalCommand($job['data']['getservices-command']); } } } private function prepareDockerCommand(string $command, string $service, string|NULL $user): string { $prepend = 'docker exec '; $prepend .= (!empty($user)) ? ' --user=' . $user . ' ' : ''; $prepend .= $service . ' '; return $prepend . $command; } public function runJob(int $job): void { $starttime = microtime(true); $job = $this->getJob($job, true); if($job['data']['crontype'] == 'http') { $result = $this->runHttpJob($job); } elseif($job['data']['crontype'] == 'command') { $result = $this->runCommandJob($job); } elseif($job['data']['crontype'] == 'reboot') { $result = $this->runRebootJob($job); } $endtime = microtime(true); $runtime = $endtime - $starttime; // handling of response $addRunSql = 'INSERT INTO run(job_id, exitcode, output, runtime, timestamp) VALUES (:job_id, :exitcode, :output, :runtime, :timestamp)'; $addRunStmt = $this->dbcon->prepare($addRunSql); $addRunStmt->executeQuery([':job_id' => $job['id'], ':exitcode' => $result['exitcode'], ':output' => $result['output'], ':runtime' => $runtime, ':timestamp' => floor($starttime)]); // setting nextrun to next run $nextrun = $job['nextrun']; do { $nextrun = $nextrun + $job['interval']; } while ($nextrun < time()); $addRunSql = 'UPDATE job SET nextrun = :nextrun WHERE id = :id'; $addRunStmt = $this->dbcon->prepare($addRunSql); $addRunStmt->executeQuery([':id' => $job['id'], ':nextrun' => $nextrun]); } public function addJob(array $values) { if(empty($values['crontype']) || empty($values['name']) || empty($values['interval']) || empty($values['nextrun']) ) { throw new \InvalidArgumentException('Some fields are empty'); } $data = $this->prepareJob($values); $data['data'] = json_encode($data['data']); $addJobSql = "INSERT INTO job(name, data, interval, nextrun, lastrun, running) VALUES (:name, :data, :interval, :nextrun, :lastrun, :running)"; $addJobStmt = $this->dbcon->prepare($addJobSql); $addJobStmt->executeQuery([':name' => $data['name'], ':data' => $data['data'], ':interval' => $data['interval'], ':nextrun' => $data['nextrun'], ':lastrun' => $data['lastrun'], ':running' => 0]); return ['success' => true, 'message' => 'Cronjob succesfully added']; } public function editJob(int $id, array $values) { if(empty($values['crontype']) || empty($values['name']) || empty($values['interval']) || empty($values['nextrun']) ) { throw new \InvalidArgumentException('Some fields are empty'); } $data = $this->prepareJob($values); $data['data'] = json_encode($data['data']); $editJobSql = "UPDATE job set name = :name, data = :data, interval = :interval, nextrun = :nextrun, lastrun = :lastrun WHERE id = :id"; $editJobStmt = $this->dbcon->prepare($editJobSql); $editJobStmt->executeQuery([':name' => $data['name'], ':data' => $data['data'], ':interval' => $data['interval'], ':nextrun' => $data['nextrun'], ':lastrun' => $data['lastrun'],':id' => $id ]); return ['success' => true, 'message' => 'Cronjob succesfully edited']; } public function prepareJob(array $values): array { if(empty($values['lastrun']) || (isset($values['lastrun-eternal']) && $values['lastrun-eternal'] == 'true')) { $values['lastrun'] = NULL; } else { $values['lastrun'] = DateTime::createFromFormat('d/m/Y H:i:s',$values['lastrun'])->getTimestamp(); } $values['nextrun'] = DateTime::createFromFormat('d/m/Y H:i:s', $values['nextrun'])->getTimestamp(); $values['data']['crontype'] = $values['crontype']; $values['data']['hosttype'] = $values['hosttype']; $values['data']['containertype'] = $values['containertype']; if(empty($values['data']['crontype'])) { throw new \InvalidArgumentException("Crontype cannot be empty"); } switch($values['data']['crontype']) { case 'command': $values['data']['command'] = $values['command']; $values['data']['response'] = $values['response']; break; case 'reboot': $values['data']['reboot-command'] = $values['reboot-command']; $values['data']['getservices-command'] = $values['getservices-command']; $values['data']['reboot-duration'] = $values['reboot-duration']; if(!empty($values['reboot-delay'])) { $newsecretkey = count($values['var-value']); $values['var-id'][$newsecretkey] = 'reboot-delay'; $values['var-issecret'][$newsecretkey] = false; $values['var-value'][$newsecretkey] = (int)$values['reboot-delay']; $newsecretkey = count($values['var-value']); $values['var-id'][$newsecretkey] = 'reboot-delay-secs'; $values['var-issecret'][$newsecretkey] = false; $values['var-value'][$newsecretkey] = (int)$values['reboot-delay'] * 60; } break; case 'http': $parsedUrl = parse_url($values['url']); $values['data']['url'] = $values['url']; $values['data']['response'] = $values['response']; $values['data']['basicauth-username'] = $values['basicauth-username']; if(empty($parsedUrl['host'])) { throw new \InvalidArgumentException('Some data was invalid'); } if(!empty($values['basicauth-password'])) { $newsecretkey = count($values['var-value']); $values['var-id'][$newsecretkey] = 'basicauth-password'; $values['var-issecret'][$newsecretkey] = true; $values['var-value'][$newsecretkey] = $values['basicauth-password']; } $values['data']['host'] = $parsedUrl['host']; break; } switch($values['data']['hosttype']) { default: if($values['data']['crontype'] == 'http') break; $values['data']['hosttype'] = 'local'; case 'local': $values['data']['host'] = 'localhost'; break; case 'ssh': $values['data']['host'] = $values['host']; $values['data']['user'] = $values['user']; if(!empty($values['privkey-password'])) { $newsecretkey = count($values['var-value']); $values['var-id'][$newsecretkey] = 'privkey-password'; $values['var-issecret'][$newsecretkey] = true; $values['var-value'][$newsecretkey] = $values['privkey-password']; } $privkeyid = NULL; if(!empty($_FILES['privkey']['tmp_name'])) { $newsecretkey = count($values['var-value']); $privkeyid = $newsecretkey; $values['var-id'][$newsecretkey] = 'ssh-privkey'; $values['var-issecret'][$newsecretkey] = true; $values['var-value'][$newsecretkey] = base64_encode(file_get_contents($_FILES['privkey']['tmp_name'])); } if($values['privkey-keep'] == true) { $privkeyid = ($privkeyid === NULL) ? count($values['var-value']) : $privkeyid ; $values['var-id'][$privkeyid] = 'ssh-privkey'; $values['var-issecret'][$privkeyid] = true; $values['var-value'][$privkeyid] = $values['privkey-orig']; } break; } switch($values['data']['containertype']) { default: if($values['data']['crontype'] == 'http' || $values['data']['crontype'] == 'reboot' ) break; $values['data']['containertype'] = 'none'; case 'none': // No options for no container break; case 'docker': $values['data']['service'] = $values['service']; $values['data']['container-user'] = $values['container-user']; break; } if(!empty($values['var-value'])) { foreach($values['var-value'] as $key => $name) { if(!empty($name)) { if(isset($values['var-issecret'][$key]) && $values['var-issecret'][$key] != false) { $values['data']['vars'][$values['var-id'][$key]]['issecret'] = true; $values['data']['vars'][$values['var-id'][$key]]['value'] = base64_encode(Secret::encrypt($values['var-value'][$key])); } else { $values['data']['vars'][$values['var-id'][$key]]['issecret'] = false; $values['data']['vars'][$values['var-id'][$key]]['value'] = $values['var-value'][$key]; } } } } return $values; } public function getJob(int $id, bool $withSecrets = false) { $jobSql = "SELECT * FROM job WHERE id = :id"; $jobStmt = $this->dbcon->prepare($jobSql); $jobRslt = $jobStmt->execute([':id' => $id])->fetchAssociative(); $jobRslt['data'] = json_decode($jobRslt['data'], true); if(!empty($jobRslt['data']['vars'])) { foreach ($jobRslt['data']['vars'] as $key => &$value) { if ($value['issecret']) { $value['value'] = ($withSecrets) ? Secret::decrypt(base64_decode($value['value'])) : ''; } } } switch($jobRslt['data']['crontype']) { case 'http': if(isset($jobRslt['data']['vars']['basicauth-password']['value'])) { $jobRslt['data']['basicauth-password'] = $jobRslt['data']['vars']['basicauth-password']['value']; unset($jobRslt['data']['vars']['basicauth-password']); } break; case 'reboot': $jobRslt['data']['reboot-delay'] = $jobRslt['data']['vars']['reboot-delay']['value']; $jobRslt['data']['reboot-delay-secs'] = $jobRslt['data']['vars']['reboot-delay-secs']['value']; unset($jobRslt['data']['vars']['reboot-delay']); unset($jobRslt['data']['vars']['reboot-delay-secs']); break; } switch($jobRslt['data']['hosttype']) { case 'ssh': if(isset($jobRslt['data']['vars']['ssh-privkey']['value'])) { $jobRslt['data']['ssh-privkey'] = $jobRslt['data']['vars']['ssh-privkey']['value']; unset($jobRslt['data']['vars']['ssh-privkey']); } if(isset($jobRslt['data']['vars']['privkey-password']['value'])) { $jobRslt['data']['privkey-password'] = $jobRslt['data']['vars']['privkey-password']['value']; unset($jobRslt['data']['vars']['privkey-password']); } break; } if($jobRslt['data']['crontype'] == 'http') { } return $jobRslt; } public function deleteJob(int $id) { $addJobSql = "DELETE FROM job WHERE id = :id"; $addJobStmt = $this->dbcon->prepare($addJobSql); $addJobStmt->executeQuery([':id' => $id]); return ['success' => true, 'message' => 'Cronjob succesfully deleted']; } }