mirror of
https://github.com/immense/Remotely.git
synced 2025-10-26 11:27:15 +00:00
3ef4cdf81a
* Convert server to new single-file startup model. * Add remote control implementations. * Implement IViewerAuthorizer. * Update hub endpoints. * Implement HubEventHandler. * Implement ViewerHubDataProvider. * Implement page data provider. * Implement RCL and refactor. * Update submodule. * Replace submodule with NuGet. * Update copy URL. * Update NuGet. * Remove deprecated WebRTC. * Remove deprecated WebRTC. * Update Immense.RemoteControl * Building out desktop projects. * Bring more services into submodule. * Update submodule. * Update submodule. * Refactoring for module. * Update submodule. * Update submodule * Got Windows desktop app running. * Refactor for submodule changes. * FIx unattended session start. * Switch desktop app out of console mode. * Fix tests. * Update publishing. * Remove ClickOnce middleware. * Remove ClickOnce remnants. * Update submodule * Add some logging. * Update Linux path. * Update submodule. * Add cleanup service for unattended sessions that failed to start. * Update submodule. * Fix chat. * Add ValidateExecutableReferencesMatchSelfContained property. * Add other submodule projects. Align checkbox. * Update submodule. Reduce deserialization in the browser, resulting in faster renders. * Update submodule. * Update submodule. * Update submodule. * Update submodule. * Add orgId back for branding. * Get branding loading in desktop apps. * Update submodule. * Create log dir. * Refactor version check on config page. * Update submodule. * Update submodule. * Change submodule URL. * Correct namespace. * Update submodule. * Checkout submodules recursively.
169 lines
6.6 KiB
C#
169 lines
6.6 KiB
C#
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.SignalR;
|
|
using Remotely.Server.Attributes;
|
|
using Remotely.Server.Hubs;
|
|
using Remotely.Server.Models;
|
|
using Remotely.Server.Services;
|
|
using Remotely.Shared.Utilities;
|
|
using Remotely.Shared.Models;
|
|
using System;
|
|
using System.Linq;
|
|
using System.Threading.Tasks;
|
|
using Remotely.Server.Auth;
|
|
using Immense.RemoteControl.Server.Services;
|
|
using Remotely.Server.Services.RcImplementations;
|
|
using Immense.RemoteControl.Server.Abstractions;
|
|
using Immense.RemoteControl.Shared.Helpers;
|
|
|
|
// For more information on enabling Web API for empty projects, visit https://go.microsoft.com/fwlink/?LinkID=397860
|
|
|
|
namespace Remotely.Server.API
|
|
{
|
|
[Route("api/[controller]")]
|
|
[ApiController]
|
|
public class RemoteControlController : ControllerBase
|
|
{
|
|
private readonly IHubContext<ServiceHub> _serviceHub;
|
|
private readonly IDesktopHubSessionCache _desktopSessionCache;
|
|
private readonly IServiceHubSessionCache _serviceSessionCache;
|
|
private readonly IApplicationConfig _appConfig;
|
|
private readonly IOtpProvider _otpProvider;
|
|
private readonly IHubEventHandlerEx _hubEvents;
|
|
private readonly IDataService _dataService;
|
|
private readonly SignInManager<RemotelyUser> _signInManager;
|
|
|
|
public RemoteControlController(
|
|
SignInManager<RemotelyUser> signInManager,
|
|
IDataService dataService,
|
|
IDesktopHubSessionCache desktopSessionCache,
|
|
IHubContext<ServiceHub> serviceHub,
|
|
IServiceHubSessionCache serviceSessionCache,
|
|
IOtpProvider otpProvider,
|
|
IHubEventHandlerEx hubEvents,
|
|
IApplicationConfig appConfig)
|
|
{
|
|
_dataService = dataService;
|
|
_serviceHub = serviceHub;
|
|
_desktopSessionCache = desktopSessionCache;
|
|
_serviceSessionCache = serviceSessionCache;
|
|
_appConfig = appConfig;
|
|
_otpProvider = otpProvider;
|
|
_hubEvents = hubEvents;
|
|
_signInManager = signInManager;
|
|
}
|
|
|
|
[HttpGet("{deviceID}")]
|
|
[ServiceFilter(typeof(ApiAuthorizationFilter))]
|
|
public async Task<IActionResult> Get(string deviceID)
|
|
{
|
|
Request.Headers.TryGetValue("OrganizationID", out var orgID);
|
|
return await InitiateRemoteControl(deviceID, orgID);
|
|
}
|
|
|
|
[HttpPost]
|
|
public async Task<IActionResult> Post([FromBody] RemoteControlRequest rcRequest)
|
|
{
|
|
if (!_appConfig.AllowApiLogin)
|
|
{
|
|
return NotFound();
|
|
}
|
|
|
|
var orgId = _dataService.GetUserByNameWithOrg(rcRequest.Email)?.OrganizationID;
|
|
|
|
var result = await _signInManager.PasswordSignInAsync(rcRequest.Email, rcRequest.Password, false, true);
|
|
if (result.Succeeded &&
|
|
_dataService.DoesUserHaveAccessToDevice(rcRequest.DeviceID, _dataService.GetUserByNameWithOrg(rcRequest.Email)))
|
|
{
|
|
_dataService.WriteEvent($"API login successful for {rcRequest.Email}.", orgId);
|
|
return await InitiateRemoteControl(rcRequest.DeviceID, orgId);
|
|
}
|
|
else if (result.IsLockedOut)
|
|
{
|
|
_dataService.WriteEvent($"API login unsuccessful due to lockout for {rcRequest.Email}.", orgId);
|
|
return Unauthorized("Account is locked.");
|
|
}
|
|
else if (result.RequiresTwoFactor)
|
|
{
|
|
_dataService.WriteEvent($"API login unsuccessful due to 2FA for {rcRequest.Email}.", orgId);
|
|
return Unauthorized("Account requires two-factor authentication.");
|
|
}
|
|
_dataService.WriteEvent($"API login unsuccessful due to bad attempt for {rcRequest.Email}.", orgId);
|
|
return BadRequest();
|
|
}
|
|
|
|
private async Task<IActionResult> InitiateRemoteControl(string deviceID, string orgID)
|
|
{
|
|
if (!_serviceSessionCache.TryGetByDeviceId(deviceID, out var targetDevice) ||
|
|
!_serviceSessionCache.TryGetConnectionId(deviceID, out var serviceConnectionId))
|
|
{
|
|
return NotFound("The target device couldn't be found.");
|
|
}
|
|
|
|
if (targetDevice.OrganizationID != orgID)
|
|
{
|
|
return Unauthorized();
|
|
}
|
|
|
|
if (User.Identity.IsAuthenticated &&
|
|
!_dataService.DoesUserHaveAccessToDevice(targetDevice.ID, _dataService.GetUserByNameWithOrg(User.Identity.Name)))
|
|
{
|
|
return Unauthorized();
|
|
}
|
|
|
|
|
|
var sessionCount = _desktopSessionCache.Sessions.Values
|
|
.OfType<RemoteControlSessionEx>()
|
|
.Count(x => x.OrganizationId == orgID);
|
|
|
|
if (sessionCount > _appConfig.RemoteControlSessionLimit)
|
|
{
|
|
return BadRequest("There are already the maximum amount of active remote control sessions for your organization.");
|
|
}
|
|
|
|
var sessionId = Guid.NewGuid().ToString();
|
|
var accessKey = RandomGenerator.GenerateAccessKey();
|
|
|
|
var session = new RemoteControlSessionEx()
|
|
{
|
|
UnattendedSessionId = sessionId,
|
|
UserConnectionId = HttpContext.Connection.Id,
|
|
ServiceConnectionId = serviceConnectionId,
|
|
DeviceId = deviceID,
|
|
OrganizationId = orgID
|
|
};
|
|
|
|
_desktopSessionCache.Sessions.AddOrUpdate(sessionId, session, (k, v) =>
|
|
{
|
|
if (v is RemoteControlSessionEx ex)
|
|
{
|
|
ex.ServiceConnectionId = HttpContext.Connection.Id;
|
|
return ex;
|
|
}
|
|
return session;
|
|
});
|
|
|
|
var orgName = _dataService.GetOrganizationNameById(orgID);
|
|
Task CreateSessionFunc()
|
|
{
|
|
return _serviceHub.Clients.Client(serviceConnectionId).SendAsync("RemoteControl",
|
|
sessionId,
|
|
accessKey,
|
|
HttpContext.Connection.Id,
|
|
string.Empty,
|
|
orgName);
|
|
|
|
}
|
|
|
|
if (!await _hubEvents.TryWaitForSession(sessionId, CreateSessionFunc))
|
|
{
|
|
return StatusCode(408, "The remote control process failed to start in time on the remote device.");
|
|
}
|
|
|
|
var otp = _otpProvider.GetOtp(targetDevice.ID);
|
|
|
|
return Ok($"{HttpContext.Request.Scheme}://{Request.Host}/RemoteControl/Viewer?mode=Unattended&sessionId={sessionId}&accessKey={accessKey}&otp={otp}");
|
|
}
|
|
}
|
|
}
|