finished /reboot host and /restart host functions, added authorization for actions by telegram ID, added nginx to default services

2024-10-18 18:06:53 +05:00 · 2024-10-18 18:06:53 +05:00 · e68739966a
commit e68739966a
parent 0afffee697
2 changed files with 58 additions and 26 deletions
--- a/.authorized_users
+++ b/.authorized_users
@ -0,0 +1,2 @@
+AUTHORIZED_USER_ID_1
+AUTHORIZED_USER_ID_2
--- a/lainmonitor.py
+++ b/lainmonitor.py
@ -5,20 +5,27 @@
 import subprocess
 import threading
 from time import sleep
-import telebot
+from telebot import *
+

 #define the variables
-status, hostname, uptime, zerotier, prosody, postgres, tailscale, disk, ping = 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown'
+status, hostname, uptime, zerotier, prosody, postgres, tailscale, nginx, disk, ping = 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown', 'unknown'
 nodes, hostnames, reach, threads = [], [], [], []

-#change this to your hostname
-host = 'lainlounge'
+#change this to your instance's hostname
+host = subprocess.check_output(['hostname']).decode().strip()
+#print ('host:', host) # debug

 #load the token
 token = open('.env', 'r').read().strip()

+#load the authorized users
+authorized_users = [line.strip() for line in open('.authorized_users', 'r').readlines()]
+#print('authorized users:', authorized_users) # debug
+
 #bot init
 bot = telebot.TeleBot(token)
+updater = bot.update_listener

 #get system info
 def getinfo():
@ -30,12 +37,13 @@ def getinfo():
    prosody = subprocess.Popen("sudo systemctl status prosody | grep 'Active'", shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()
    postgres = subprocess.Popen("sudo systemctl status postgresql | grep 'Active'", shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()
    tailscale = subprocess.Popen("sudo systemctl status tailscaled | grep 'Active'", shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()
+    nginx = subprocess.Popen("sudo systemctl status nginx | grep 'Active'", shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()
    disk = subprocess.check_output(['df', '-h']).decode().strip()
    if hostname == 'unknown':
        status = 'offline'
    else:
        status = 'online'
-    return hostname, uptime, zerotier, prosody, postgres, tailscale, disk
+    return hostname, uptime, zerotier, prosody, postgres, tailscale, nginx, disk

 #function to ping tailscale nodes
 def ping_node(node, hostname):
@ -64,27 +72,43 @@ def check_tailscale():

 #restart services
 def restart_service(service):
+    print(f'restarting {service}...')
    subprocess.Popen(f'sudo systemctl restart {service}', shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()
    sleep(3)
    service_status = subprocess.Popen(f'sudo systemctl status {service} | grep "Active"', shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()
-    message = f'{service} restarted! status: {service_status}'
+    status_message = f'{service} restarted! status: {service_status}'
+    return status_message

 #restart services menu
 def restart_menu():
-    keyboard = telebot.types.ReplyKeyboardMarkup(resize_keyboard=True)
-    zerotier_button = telebot.types.KeyboardButton('zerotier-one', callback_data='zerotier')
-    prosody_button = telebot.types.KeyboardButton('prosody', callback_data='prosody')
-    postgres_button = telebot.types.KeyboardButton('postgresql', callback_data='postgresql')
-    tailscale_button = telebot.types.KeyboardButton('tailscaled', callback_data='tailscaled')
+    keyboard = [
+        [telebot.types.InlineKeyboardButton('zerotier-one', callback_data='zerotier-one')],
+        [telebot.types.InlineKeyboardButton('prosody', callback_data='prosody')],
+        [telebot.types.InlineKeyboardButton('postgresql', callback_data='postgresql')],
+        [telebot.types.InlineKeyboardButton('tailscaled', callback_data='tailscaled')],
+        [telebot.types.InlineKeyboardButton('nginx', callback_data='nginx')],
+        [telebot.types.InlineKeyboardButton('cancel', callback_data='cancel')]
+    ]
+    reply_markup = telebot.types.InlineKeyboardMarkup(keyboard)
+    return reply_markup

-    return keyboard
+#callback query handler
+@bot.callback_query_handler(func=lambda call: True)
+def callback_query(call):
+    service = call.data
+    if service != 'cancel':
+        status_message = restart_service(service)
+        bot.send_message(call.message.chat.id, status_message)
+    else:
+        bot.edit_message_reply_markup(call.message.chat.id, call.message.message_id, reply_markup=None)
+        bot.send_message(call.message.chat.id, 'canceled')

 def reboot():
    subprocess.Popen('sudo reboot', shell=True, stdout=subprocess.PIPE).stdout.read().decode().strip()

 #debug handler
 def check():
-    global status, hostname, uptime, zerotier, prosody, postgres, tailscale, disk
+    global status, hostname, uptime, zerotier, prosody, postgres, tailscale, nginx, disk
    getinfo()
    print('system status:', status)
    print('hostname:', hostname)
@ -94,7 +118,7 @@ def check():
    print('postgres:', postgres)
    print('tailscale:', tailscale)
    print('disk:', disk)
-    return status, hostname, uptime, zerotier, prosody, postgres, tailscale, disk
+    return status, hostname, uptime, zerotier, prosody, postgres, tailscale, nginx, disk

 #message handling
@bot.message_handler(commands=['start', 'help', 'status', 'restart', 'reboot', 'ping'])
@ -102,26 +126,32 @@ def handle(message):
    if message.text == '/start':
        bot.reply_to(message, 'lainmonitor v1.0 --- standing by...')
    elif message.text == '/help':
-        bot.reply_to(message, 'commands: /start, /help, /status, /reboot, /ping')
+        bot.reply_to(message, 'commands: /start, /help, /status, /restart, /reboot, /ping')
    elif message.text == '/status':
        check()
-        status_message = f'hostname: {hostname}\nsystem status: {status}\nuptime: {uptime}\nzerotier: {zerotier}\nprosody: {prosody}\npostgres: {postgres}\ntailscale: {tailscale}'
+        status_message = f'hostname: {hostname}\nsystem status: {status}\nuptime: {uptime}\nzerotier: {zerotier}\nprosody: {prosody}\npostgres: {postgres}\ntailscale: {tailscale}\nnginx: {nginx}'
        bot.reply_to(message, status_message)
        bot.reply_to(message, f'filesystem info for {hostname}: \n\n{disk}')
    elif message.text == f'/restart {host}':
-        if host == hostname:
+        if message.text == f'/restart {host}' and str(message.from_user.id) in authorized_users:
            bot.send_message(message.chat.id, 'select a service to restart:', reply_markup=restart_menu())
        else:
-            pass
-    elif message.text == f'/reboot {hostname}':
-        bot.reply_to(message, f'rebooting {host}...')
-        reboot()
+            bot.reply_to(message, 'you are not authorized to restart services on this host')
+    elif message.text == f'/reboot {host}':
+        if message.text == f'/reboot {host}' and str(message.from_user.id) in authorized_users:
+            bot.reply_to(message, f'rebooting {host}...')
+            reboot()
+        else:
+            bot.reply_to(message, 'you are not authorized to reboot this host')
    elif message.text == '/ping':
-        check_tailscale()
-        ping_status = '\n'.join(reach)
-        bot.reply_to(message, f'ping status:\n\n{ping_status}')
-        ping_status = ''
-        reach.clear()
+        if message.text == f'/restart {host}' and str(message.from_user.id) in authorized_users:
+            check_tailscale()
+            ping_status = '\n'.join(reach)
+            bot.reply_to(message, f'ping status:\n\n{ping_status}')
+            ping_status = ''
+            reach.clear()
+        else:
+            bot.reply_to(message, 'you are not authorized to view ping status')

 #polling
 bot.polling()