[proxmox-backup.git] / src / bin / proxmox-backup-api.rs

use std::future::Future;
use std::pin::Pin;

use anyhow::{bail, Error};
use futures::*;
use http::request::Parts;
use http::Response;
use hyper::{Body, StatusCode};
use hyper::header;

use proxmox::try_block;
use proxmox::api::RpcEnvironmentType;
use proxmox::tools::fs::CreateOptions;

use proxmox_rest_server::{daemon, ApiConfig, RestServer, RestEnvironment};

use proxmox_backup::server::auth::default_api_auth;
use proxmox_backup::auth_helpers::*;
use proxmox_backup::config;

fn main() {
    proxmox_backup::tools::setup_safe_path_env();

    if let Err(err) = pbs_runtime::main(run()) {
        eprintln!("Error: {}", err);
        std::process::exit(-1);
    }
}

fn get_index<'a>(
    _env: RestEnvironment,
    _parts: Parts,
) -> Pin<Box<dyn Future<Output = Response<Body>> + Send + 'a>> {
    Box::pin(async move {

        let index = "<center><h1>Proxmox Backup API Server</h1></center>";

        Response::builder()
            .status(StatusCode::OK)
            .header(header::CONTENT_TYPE, "text/html")
            .body(index.into())
            .unwrap()
    })
}

async fn run() -> Result<(), Error> {
    if let Err(err) = syslog::init(
        syslog::Facility::LOG_DAEMON,
        log::LevelFilter::Info,
        Some("proxmox-backup-api")) {
        bail!("unable to inititialize syslog - {}", err);
    }

    config::create_configdir()?;

    config::update_self_signed_cert(false)?;

    proxmox_backup::server::create_run_dir()?;

    proxmox_backup::rrd::create_rrdb_dir()?;
    proxmox_backup::server::jobstate::create_jobstate_dir()?;
    proxmox_backup::tape::create_tape_status_dir()?;
    proxmox_backup::tape::create_drive_state_dir()?;
    proxmox_backup::tape::create_changer_state_dir()?;
    proxmox_backup::tape::create_drive_lock_dir()?;

    if let Err(err) = generate_auth_key() {
        bail!("unable to generate auth key - {}", err);
    }
    let _ = private_auth_key(); // load with lazy_static

    if let Err(err) = generate_csrf_key() {
        bail!("unable to generate csrf key - {}", err);
    }
    let _ = csrf_secret(); // load with lazy_static

    let mut config = ApiConfig::new(
        pbs_buildcfg::JS_DIR,
        &proxmox_backup::api2::ROUTER,
        RpcEnvironmentType::PRIVILEGED,
        default_api_auth(),
        &get_index,
    )?;

    let backup_user = pbs_config::backup_user()?;
    let mut commando_sock = proxmox_rest_server::CommandSocket::new(proxmox_rest_server::our_ctrl_sock(), backup_user.gid);

    let dir_opts = CreateOptions::new().owner(backup_user.uid).group(backup_user.gid);
    let file_opts = CreateOptions::new().owner(backup_user.uid).group(backup_user.gid);

    config.enable_access_log(
        pbs_buildcfg::API_ACCESS_LOG_FN,
        Some(dir_opts.clone()),
        Some(file_opts.clone()),
        &mut commando_sock,
    )?;

    config.enable_auth_log(
        pbs_buildcfg::API_AUTH_LOG_FN,
        Some(dir_opts.clone()),
        Some(file_opts.clone()),
        &mut commando_sock,
    )?;


    let rest_server = RestServer::new(config);
    proxmox_rest_server::init_worker_tasks(pbs_buildcfg::PROXMOX_BACKUP_LOG_DIR_M!().into(), file_opts.clone())?;

    // http server future:
    let server = daemon::create_daemon(
        ([127,0,0,1], 82).into(),
        move |listener| {
            let incoming = hyper::server::conn::AddrIncoming::from_listener(listener)?;

            Ok(async {
                daemon::systemd_notify(daemon::SystemdNotify::Ready)?;

                hyper::Server::builder(incoming)
                    .serve(rest_server)
                    .with_graceful_shutdown(proxmox_rest_server::shutdown_future())
                    .map_err(Error::from)
                    .await
            })
        },
    );

    proxmox_rest_server::write_pid(pbs_buildcfg::PROXMOX_BACKUP_API_PID_FN)?;

    let init_result: Result<(), Error> = try_block!({
        proxmox_rest_server::register_task_control_commands(&mut commando_sock)?;
        commando_sock.spawn()?;
        proxmox_rest_server::catch_shutdown_signal()?;
        proxmox_rest_server::catch_reload_signal()?;
        Ok(())
    });

    if let Err(err) = init_result {
        bail!("unable to start daemon - {}", err);
    }

    server.await?;
    log::info!("server shutting down, waiting for active workers to complete");
    proxmox_rest_server::last_worker_future().await?;

    log::info!("done - exit server");

    Ok(())
}
Commit	Line	Data
6680878b DM	1	use std::future::Future;
	2	use std::pin::Pin;
	3
f7d4e4b5	4	use anyhow::{bail, Error};
e76ac3a4	5	use futures::*;
7fa9a37c DM	6	use http::request::Parts;
	7	use http::Response;
	8	use hyper::{Body, StatusCode};
	9	use hyper::header;
e76ac3a4	10
9ea4bce4	11	use proxmox::try_block;
a2479cfa	12	use proxmox::api::RpcEnvironmentType;
fd6d2438	13	use proxmox::tools::fs::CreateOptions;
e76ac3a4	14
48176b0a	15	use proxmox_rest_server::{daemon, ApiConfig, RestServer, RestEnvironment};
8bca935f	16
b9700a9f	17	use proxmox_backup::server::auth::default_api_auth;
6c30068e	18	use proxmox_backup::auth_helpers::*;
a8f268af	19	use proxmox_backup::config;
886e5ce8	20
d973aa82	21	fn main() {
ac7513e3 DM	22	proxmox_backup::tools::setup_safe_path_env();
ac7513e3 DM	23
d420962f	24	if let Err(err) = pbs_runtime::main(run()) {
aa5a4060 DM	25	eprintln!("Error: {}", err);
	26	std::process::exit(-1);
	27	}
	28	}
	29
6680878b	30	fn get_index<'a>(
48176b0a	31	_env: RestEnvironment,
7fa9a37c	32	_parts: Parts,
6680878b DM	33	) -> Pin<Box<dyn Future<Output = Response<Body>> + Send + 'a>> {
6680878b DM	34	Box::pin(async move {
7fa9a37c	35
6680878b	36	let index = "<center><h1>Proxmox Backup API Server</h1></center>";
7fa9a37c	37
6680878b DM	38	Response::builder()
	39	.status(StatusCode::OK)
	40	.header(header::CONTENT_TYPE, "text/html")
	41	.body(index.into())
	42	.unwrap()
	43	})
7fa9a37c DM	44	}
7fa9a37c DM	45
e76ac3a4	46	async fn run() -> Result<(), Error> {
d96d8273 DM	47	if let Err(err) = syslog::init(
	48	syslog::Facility::LOG_DAEMON,
	49	log::LevelFilter::Info,
	50	Some("proxmox-backup-api")) {
aa5a4060	51	bail!("unable to inititialize syslog - {}", err);
a8f268af DM	52	}
	53
	54	config::create_configdir()?;
d96d8273	55
22be470d DM	56	config::update_self_signed_cert(false)?;
22be470d DM	57
6c76aa43	58	proxmox_backup::server::create_run_dir()?;
78bf2923	59
eaeda365	60	proxmox_backup::rrd::create_rrdb_dir()?;
1298618a	61	proxmox_backup::server::jobstate::create_jobstate_dir()?;
cafd51bf	62	proxmox_backup::tape::create_tape_status_dir()?;
cd44fb8d DM	63	proxmox_backup::tape::create_drive_state_dir()?;
cd44fb8d DM	64	proxmox_backup::tape::create_changer_state_dir()?;
a0cd0f9c	65	proxmox_backup::tape::create_drive_lock_dir()?;
eaeda365	66
39a90ca6	67	if let Err(err) = generate_auth_key() {
aa5a4060	68	bail!("unable to generate auth key - {}", err);
8d04280b	69	}
d01e2420	70	let _ = private_auth_key(); // load with lazy_static
8d04280b	71
39a90ca6	72	if let Err(err) = generate_csrf_key() {
aa5a4060	73	bail!("unable to generate csrf key - {}", err);
39a90ca6	74	}
d01e2420	75	let _ = csrf_secret(); // load with lazy_static
39a90ca6	76
fd6d2438	77	let mut config = ApiConfig::new(
af06decd	78	pbs_buildcfg::JS_DIR,
26858dba SR	79	&proxmox_backup::api2::ROUTER,
	80	RpcEnvironmentType::PRIVILEGED,
	81	default_api_auth(),
6680878b	82	&get_index,
26858dba	83	)?;
eaeda365	84
fd6d2438	85	let backup_user = pbs_config::backup_user()?;
49e25688	86	let mut commando_sock = proxmox_rest_server::CommandSocket::new(proxmox_rest_server::our_ctrl_sock(), backup_user.gid);
a68768cf	87
fd6d2438 DM	88	let dir_opts = CreateOptions::new().owner(backup_user.uid).group(backup_user.gid);
	89	let file_opts = CreateOptions::new().owner(backup_user.uid).group(backup_user.gid);
	90
0d5d15c9	91	config.enable_access_log(
fd6d2438	92	pbs_buildcfg::API_ACCESS_LOG_FN,
36b7085e DM	93	Some(dir_opts.clone()),
	94	Some(file_opts.clone()),
	95	&mut commando_sock,
	96	)?;
	97
	98	config.enable_auth_log(
	99	pbs_buildcfg::API_AUTH_LOG_FN,
0a33fba4 DM	100	Some(dir_opts.clone()),
0a33fba4 DM	101	Some(file_opts.clone()),
fd6d2438 DM	102	&mut commando_sock,
fd6d2438 DM	103	)?;
8e7e2223	104
36b7085e	105
9bc17e8d	106	let rest_server = RestServer::new(config);
b9700a9f	107	proxmox_rest_server::init_worker_tasks(pbs_buildcfg::PROXMOX_BACKUP_LOG_DIR_M!().into(), file_opts.clone())?;
886e5ce8	108
5e7bc50a	109	// http server future:
a690ecac WB	110	let server = daemon::create_daemon(
a690ecac WB	111	([127,0,0,1], 82).into(),
d2654200	112	move \|listener\| {
6f0565fa DC	113	let incoming = hyper::server::conn::AddrIncoming::from_listener(listener)?;
6f0565fa DC	114
d2654200 DM	115	Ok(async {
	116	daemon::systemd_notify(daemon::SystemdNotify::Ready)?;
	117
	118	hyper::Server::builder(incoming)
083ff3fd	119	.serve(rest_server)
fd6d2438	120	.with_graceful_shutdown(proxmox_rest_server::shutdown_future())
083ff3fd	121	.map_err(Error::from)
d2654200 DM	122	.await
d2654200 DM	123	})
5e7bc50a	124	},
083ff3fd	125	);
5e7bc50a	126
b9700a9f	127	proxmox_rest_server::write_pid(pbs_buildcfg::PROXMOX_BACKUP_API_PID_FN)?;
d98c9a7a	128
e76ac3a4	129	let init_result: Result<(), Error> = try_block!({
b9700a9f	130	proxmox_rest_server::register_task_control_commands(&mut commando_sock)?;
a68768cf	131	commando_sock.spawn()?;
fd1b65cc DM	132	proxmox_rest_server::catch_shutdown_signal()?;
fd1b65cc DM	133	proxmox_rest_server::catch_reload_signal()?;
e76ac3a4 WB	134	Ok(())
e76ac3a4 WB	135	});
e3f41f21	136
e76ac3a4 WB	137	if let Err(err) = init_result {
	138	bail!("unable to start daemon - {}", err);
	139	}
d607b886	140
083ff3fd	141	server.await?;
a546a8a0	142	log::info!("server shutting down, waiting for active workers to complete");
fd6d2438	143	proxmox_rest_server::last_worker_future().await?;
e3f41f21	144
e76ac3a4	145	log::info!("done - exit server");
eaeda365	146
aa5a4060	147	Ok(())
d8d978eb	148	}