refactor: 重构 WebSocket 模块实现解耦
This commit is contained in:
Baobhan Sith
@@ -0,0 +1,393 @@
|
||||
import { AuthenticatedWebSocket, ClientState, DockerContainer, DockerStats } from '../types';
|
||||
import { parsePortsString } from '../utils';
|
||||
import { clientStates, settingsService } from '../state';
|
||||
import WebSocket from 'ws';
|
||||
|
||||
const DEFAULT_DOCKER_STATUS_INTERVAL_SECONDS = 2;
|
||||
|
||||
export async function fetchRemoteDockerStatus(state: ClientState): Promise<{ available: boolean; containers: DockerContainer[] }> {
|
||||
if (!state || !state.sshClient) {
|
||||
console.warn(`[fetchRemoteDockerStatus] SSH client not available or not connected for session ${state?.ws?.sessionId}.`);
|
||||
return { available: false, containers: [] };
|
||||
}
|
||||
|
||||
let allContainers: DockerContainer[] = [];
|
||||
const statsMap = new Map<string, DockerStats>();
|
||||
|
||||
try {
|
||||
const versionCommand = "docker version --format '{{.Server.Version}}'";
|
||||
const { stdout: versionStdout, stderr: versionStderr } = await new Promise<{ stdout: string; stderr: string }>((resolve, reject) => {
|
||||
let stdout = '';
|
||||
let stderr = '';
|
||||
if (!state.sshClient) {
|
||||
return reject(new Error('SSH client disconnected before command execution.'));
|
||||
}
|
||||
state.sshClient.exec(versionCommand, { pty: false }, (err, stream) => {
|
||||
if (err) return reject(err);
|
||||
stream.on('data', (data: Buffer) => { stdout += data.toString(); });
|
||||
stream.stderr.on('data', (data: Buffer) => { stderr += data.toString(); });
|
||||
stream.on('close', () => resolve({ stdout, stderr }));
|
||||
stream.on('error', (execErr: Error) => reject(execErr));
|
||||
});
|
||||
});
|
||||
|
||||
if (versionStderr.includes('command not found') ||
|
||||
versionStderr.includes('permission denied') ||
|
||||
versionStderr.includes('Cannot connect to the Docker daemon')) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Docker version check failed on session ${state.ws.sessionId}. Docker unavailable or inaccessible. Stderr: ${versionStderr.trim()}`);
|
||||
return { available: false, containers: [] };
|
||||
} else if (versionStderr) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Docker version command stderr on session ${state.ws.sessionId}: ${versionStderr.trim()}`);
|
||||
}
|
||||
|
||||
if (!versionStdout.trim()) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Docker version check on session ${state.ws.sessionId} produced no output, assuming Docker unavailable.`);
|
||||
return { available: false, containers: [] };
|
||||
}
|
||||
} catch (error: any) {
|
||||
console.error(`[fetchRemoteDockerStatus] Error executing docker version for session ${state.ws.sessionId}:`, error.message);
|
||||
return { available: false, containers: [] };
|
||||
}
|
||||
|
||||
try {
|
||||
const psCommand = "docker ps -a --no-trunc --format '{{json .}}'";
|
||||
const { stdout: psStdout, stderr: psStderr } = await new Promise<{ stdout: string; stderr: string }>((resolve, reject) => {
|
||||
let stdout = '';
|
||||
let stderr = '';
|
||||
if (!state.sshClient) {
|
||||
return reject(new Error('SSH client disconnected before command execution.'));
|
||||
}
|
||||
state.sshClient.exec(psCommand, { pty: false }, (err, stream) => {
|
||||
if (err) return reject(err);
|
||||
stream.on('data', (data: Buffer) => { stdout += data.toString(); });
|
||||
stream.stderr.on('data', (data: Buffer) => { stderr += data.toString(); });
|
||||
stream.on('close', () => resolve({ stdout, stderr }));
|
||||
stream.on('error', (execErr: Error) => reject(execErr));
|
||||
});
|
||||
});
|
||||
|
||||
if (psStderr.includes('command not found') ||
|
||||
psStderr.includes('permission denied') ||
|
||||
psStderr.includes('Cannot connect to the Docker daemon')) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Docker ps command failed unexpectedly after version check on session ${state.ws.sessionId}. Stderr: ${psStderr.trim()}`);
|
||||
return { available: false, containers: [] };
|
||||
} else if (psStderr) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Docker ps command stderr on session ${state.ws.sessionId}: ${psStderr.trim()}`);
|
||||
}
|
||||
|
||||
const lines = psStdout.trim() ? psStdout.trim().split('\n') : [];
|
||||
allContainers = lines
|
||||
.map(line => {
|
||||
try {
|
||||
const data = JSON.parse(line);
|
||||
const container: DockerContainer = {
|
||||
id: data.ID,
|
||||
Names: typeof data.Names === 'string' ? data.Names.split(',') : (data.Names || []),
|
||||
Image: data.Image || '',
|
||||
ImageID: data.ImageID || '',
|
||||
Command: data.Command || '',
|
||||
Created: data.CreatedAt || 0,
|
||||
State: data.State || 'unknown',
|
||||
Status: data.Status || '',
|
||||
Ports: parsePortsString(data.Ports),
|
||||
Labels: data.Labels || {},
|
||||
stats: null
|
||||
};
|
||||
return container;
|
||||
} catch (parseError) {
|
||||
console.error(`[fetchRemoteDockerStatus] Failed to parse container JSON line for session ${state.ws.sessionId}: ${line}`, parseError);
|
||||
return null;
|
||||
}
|
||||
})
|
||||
.filter((container): container is DockerContainer => container !== null);
|
||||
} catch (error: any) {
|
||||
console.error(`[fetchRemoteDockerStatus] Error executing docker ps for session ${state.ws.sessionId}:`, error.message);
|
||||
return { available: false, containers: [] };
|
||||
}
|
||||
|
||||
const runningContainerIds = allContainers.filter(c => c.State === 'running').map(c => c.id);
|
||||
|
||||
if (runningContainerIds.length > 0) {
|
||||
try {
|
||||
const statsCommand = `docker stats ${runningContainerIds.join(' ')} --no-stream --format '{{json .}}'`;
|
||||
const { stdout: statsStdout, stderr: statsStderr } = await new Promise<{ stdout: string; stderr: string }>((resolve, reject) => {
|
||||
let stdout = '';
|
||||
let stderr = '';
|
||||
if (!state.sshClient) {
|
||||
return reject(new Error('SSH client disconnected before command execution.'));
|
||||
}
|
||||
state.sshClient.exec(statsCommand, { pty: false }, (err, stream) => {
|
||||
if (err) return reject(err);
|
||||
stream.on('data', (data: Buffer) => { stdout += data.toString(); });
|
||||
stream.stderr.on('data', (data: Buffer) => { stderr += data.toString(); });
|
||||
stream.on('close', () => resolve({ stdout, stderr }));
|
||||
stream.on('error', (execErr: Error) => reject(execErr));
|
||||
});
|
||||
});
|
||||
|
||||
if (statsStderr) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Docker stats command stderr on session ${state.ws.sessionId}: ${statsStderr.trim()}`);
|
||||
}
|
||||
|
||||
const statsLines = statsStdout.trim() ? statsStdout.trim().split('\n') : [];
|
||||
statsLines.forEach(line => {
|
||||
try {
|
||||
const statsData = JSON.parse(line) as DockerStats;
|
||||
if (statsData.ID) {
|
||||
statsMap.set(statsData.ID, statsData);
|
||||
}
|
||||
} catch (parseError) {
|
||||
console.error(`[fetchRemoteDockerStatus] Failed to parse stats JSON line for session ${state.ws.sessionId}: ${line}`, parseError);
|
||||
}
|
||||
});
|
||||
} catch (error: any) {
|
||||
console.warn(`[fetchRemoteDockerStatus] Error executing docker stats for session ${state.ws.sessionId}:`, error.message);
|
||||
}
|
||||
}
|
||||
|
||||
allContainers.forEach(container => {
|
||||
const shortId = container.id.substring(0, 12);
|
||||
const stats = statsMap.get(container.id) || statsMap.get(shortId);
|
||||
if (stats) {
|
||||
container.stats = stats;
|
||||
}
|
||||
});
|
||||
|
||||
return { available: true, containers: allContainers };
|
||||
}
|
||||
|
||||
export async function handleDockerGetStatus(ws: AuthenticatedWebSocket, sessionId: string | undefined): Promise<void> {
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
if (!state) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 docker:get_status 请求,但无活动会话状态。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:status:error', payload: { message: 'Session state not found.' } }));
|
||||
return;
|
||||
}
|
||||
if (!state.sshClient) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 docker:get_status 请求,但无活动 SSH 连接。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:status:error', payload: { message: 'SSH connection not active.' } }));
|
||||
return;
|
||||
}
|
||||
console.log(`WebSocket: 处理来自 ${ws.username} (会话: ${sessionId}) 的 docker:get_status 请求 (手动触发)...`);
|
||||
try {
|
||||
const statusPayload = await fetchRemoteDockerStatus(state);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:status:update', payload: statusPayload }));
|
||||
} catch (error: any) {
|
||||
console.error(`WebSocket: 手动执行远程 Docker 状态命令失败 for session ${sessionId}:`, error);
|
||||
const errorMessage = error.message || 'Unknown error fetching status';
|
||||
const isUnavailable = errorMessage.includes('command not found') || errorMessage.includes('Cannot connect to the Docker daemon');
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
if (isUnavailable) {
|
||||
ws.send(JSON.stringify({ type: 'docker:status:update', payload: { available: false, containers: [] } }));
|
||||
} else {
|
||||
ws.send(JSON.stringify({ type: 'docker:status:error', payload: { message: `Failed to get remote Docker status: ${errorMessage}` } }));
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
export async function handleDockerCommand(ws: AuthenticatedWebSocket, sessionId: string | undefined, payload: any): Promise<void> {
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
if (!state || !state.sshClient) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 docker:command 请求,但无活动 SSH 连接。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:command:error', payload: { command: payload?.command, message: 'SSH connection not active.' } }));
|
||||
return;
|
||||
}
|
||||
const { containerId, command } = payload || {};
|
||||
if (!containerId || typeof containerId !== 'string' || !command || !['start', 'stop', 'restart', 'remove'].includes(command)) {
|
||||
console.error(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的无效 docker:command 请求。Payload:`, payload);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:command:error', payload: { command: command, message: 'Invalid containerId or command.' } }));
|
||||
return;
|
||||
}
|
||||
|
||||
console.log(`WebSocket: Processing command '${command}' for container '${containerId}' on session ${sessionId}...`);
|
||||
try {
|
||||
const cleanContainerId = containerId.replace(/[^a-zA-Z0-9_-]/g, '');
|
||||
if (!cleanContainerId) throw new Error('Invalid container ID format after sanitization.');
|
||||
|
||||
let dockerCliCommand: string;
|
||||
switch (command) {
|
||||
case 'start': dockerCliCommand = `docker start ${cleanContainerId}`; break;
|
||||
case 'stop': dockerCliCommand = `docker stop ${cleanContainerId}`; break;
|
||||
case 'restart': dockerCliCommand = `docker restart ${cleanContainerId}`; break;
|
||||
case 'remove': dockerCliCommand = `docker rm -f ${cleanContainerId}`; break;
|
||||
default: throw new Error(`Unsupported command: ${command}`);
|
||||
}
|
||||
|
||||
await new Promise<void>((resolve, reject) => {
|
||||
if (!state.sshClient) {
|
||||
return reject(new Error('SSH client disconnected before command execution.'));
|
||||
}
|
||||
state.sshClient.exec(dockerCliCommand, { pty: false }, (err, stream) => {
|
||||
if (err) return reject(err);
|
||||
let stderr = '';
|
||||
stream.stderr.on('data', (data: Buffer) => { stderr += data.toString(); });
|
||||
stream.on('close', (code: number | null) => {
|
||||
if (code === 0) {
|
||||
console.log(`WebSocket: 远程 Docker 命令 (${dockerCliCommand}) on session ${sessionId} 执行成功。`);
|
||||
resolve();
|
||||
} else {
|
||||
console.error(`WebSocket: 远程 Docker 命令 (${dockerCliCommand}) on session ${sessionId} 执行失败 (Code: ${code}). Stderr: ${stderr}`);
|
||||
reject(new Error(`Command failed with code ${code}. ${stderr || 'No stderr output.'}`));
|
||||
}
|
||||
});
|
||||
stream.on('error', (execErr: Error) => reject(execErr));
|
||||
});
|
||||
});
|
||||
|
||||
// Request a status update after a short delay
|
||||
setTimeout(() => {
|
||||
const currentState = clientStates.get(sessionId!); // Re-fetch state as it might have changed
|
||||
if (currentState && currentState.ws.readyState === WebSocket.OPEN) {
|
||||
currentState.ws.send(JSON.stringify({ type: 'request_docker_status_update' }));
|
||||
}
|
||||
}, 500);
|
||||
|
||||
} catch (error: any) {
|
||||
console.error(`WebSocket: 执行远程 Docker 命令 (${command} for ${containerId}) 失败 for session ${sessionId}:`, error);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:command:error', payload: { command, containerId, message: `Failed to execute remote command: ${error.message}` } }));
|
||||
}
|
||||
}
|
||||
|
||||
export async function handleDockerGetStats(ws: AuthenticatedWebSocket, sessionId: string | undefined, payload: any): Promise<void> {
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
if (!state || !state.sshClient) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 docker:get_stats 请求,但无活动 SSH 连接。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:stats:error', payload: { containerId: payload?.containerId, message: 'SSH connection not active.' } }));
|
||||
return;
|
||||
}
|
||||
if (!payload || !payload.containerId) {
|
||||
console.warn(`WebSocket: Invalid payload for docker:get_stats in session ${sessionId}:`, payload);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:stats:error', payload: { containerId: payload?.containerId, message: 'Missing containerId.' } }));
|
||||
return;
|
||||
}
|
||||
|
||||
const containerId = payload.containerId;
|
||||
console.log(`WebSocket: Handling docker:get_stats for container ${containerId} in session ${sessionId}`);
|
||||
const command = `docker stats ${containerId} --no-stream --format '{{json .}}'`;
|
||||
|
||||
try {
|
||||
const execResult = await new Promise<{ stdout: string; stderr: string }>((resolve, reject) => {
|
||||
let stdout = '';
|
||||
let stderr = '';
|
||||
if (!state.sshClient) {
|
||||
return reject(new Error('SSH client disconnected before command execution.'));
|
||||
}
|
||||
state.sshClient.exec(command, { pty: false }, (err, stream) => {
|
||||
if (err) return reject(err);
|
||||
stream.on('data', (data: Buffer) => { stdout += data.toString(); });
|
||||
stream.stderr.on('data', (data: Buffer) => { stderr += data.toString(); });
|
||||
stream.on('close', () => resolve({ stdout, stderr }));
|
||||
stream.on('error', (execErr: Error) => reject(execErr));
|
||||
});
|
||||
});
|
||||
|
||||
if (execResult.stderr) {
|
||||
console.error(`WebSocket: Docker stats stderr for ${containerId} in session ${sessionId}: ${execResult.stderr}`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:stats:error', payload: { containerId, message: execResult.stderr.trim() || 'Error executing stats command.' } }));
|
||||
return;
|
||||
}
|
||||
|
||||
if (!execResult.stdout) {
|
||||
console.warn(`WebSocket: No stats output for container ${containerId} in session ${sessionId}. Might be stopped or error occurred.`);
|
||||
if (!execResult.stderr && ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'docker:stats:error', payload: { containerId, message: 'No stats data received (container might be stopped).' } }));
|
||||
}
|
||||
return;
|
||||
}
|
||||
|
||||
try {
|
||||
const statsData = JSON.parse(execResult.stdout.trim());
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:stats:update', payload: { containerId, stats: statsData } }));
|
||||
} catch (parseError) {
|
||||
console.error(`WebSocket: Failed to parse docker stats JSON for ${containerId} in session ${sessionId}: ${execResult.stdout}`, parseError);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:stats:error', payload: { containerId, message: 'Failed to parse stats data.' } }));
|
||||
}
|
||||
|
||||
} catch (error: any) {
|
||||
console.error(`WebSocket: Failed to execute docker stats for ${containerId} in session ${sessionId}:`, error);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'docker:stats:error', payload: { containerId, message: error.message || 'Failed to fetch Docker stats.' } }));
|
||||
}
|
||||
}
|
||||
|
||||
export async function startDockerStatusPolling(sessionId: string): Promise<void> {
|
||||
const state = clientStates.get(sessionId);
|
||||
if (!state) {
|
||||
console.warn(`[Docker Polling] Cannot start polling for non-existent session ${sessionId}`);
|
||||
return;
|
||||
}
|
||||
|
||||
console.log(`WebSocket: 会话 ${sessionId} 正在启动 Docker 状态轮询...`);
|
||||
let dockerPollIntervalMs = DEFAULT_DOCKER_STATUS_INTERVAL_SECONDS * 1000;
|
||||
try {
|
||||
const intervalSetting = await settingsService.getSetting('dockerStatusIntervalSeconds');
|
||||
if (intervalSetting) {
|
||||
const intervalSeconds = parseInt(intervalSetting, 10);
|
||||
if (!isNaN(intervalSeconds) && intervalSeconds >= 1) {
|
||||
dockerPollIntervalMs = intervalSeconds * 1000;
|
||||
console.log(`[Docker Polling] Using interval from settings: ${intervalSeconds}s (${dockerPollIntervalMs}ms) for session ${sessionId}`);
|
||||
} else {
|
||||
console.warn(`[Docker Polling] Invalid interval setting '${intervalSetting}' found. Using default ${dockerPollIntervalMs}ms for session ${sessionId}`);
|
||||
}
|
||||
} else {
|
||||
console.log(`[Docker Polling] No interval setting found. Using default ${dockerPollIntervalMs}ms for session ${sessionId}`);
|
||||
}
|
||||
} catch (settingError) {
|
||||
console.error(`[Docker Polling] Error fetching interval setting for session ${sessionId}. Using default ${dockerPollIntervalMs}ms:`, settingError);
|
||||
}
|
||||
|
||||
// Clear existing interval if any, to prevent multiple pollers for the same session
|
||||
if (state.dockerStatusIntervalId) {
|
||||
clearInterval(state.dockerStatusIntervalId);
|
||||
console.log(`[Docker Polling] Cleared existing Docker status interval for session ${sessionId}.`);
|
||||
}
|
||||
|
||||
const dockerIntervalId = setInterval(async () => {
|
||||
const currentState = clientStates.get(sessionId); // Re-fetch state in case it changed (e.g., disconnected)
|
||||
if (!currentState || currentState.ws.readyState !== WebSocket.OPEN || !currentState.sshClient) {
|
||||
console.log(`[Docker Polling] Session ${sessionId} no longer valid, WS closed, or SSH disconnected. Stopping poll.`);
|
||||
clearInterval(dockerIntervalId);
|
||||
if (currentState && currentState.dockerStatusIntervalId === dockerIntervalId) { // Ensure we only delete our own interval ID
|
||||
delete currentState.dockerStatusIntervalId;
|
||||
}
|
||||
return;
|
||||
}
|
||||
try {
|
||||
const statusPayload = await fetchRemoteDockerStatus(currentState);
|
||||
if (currentState.ws.readyState === WebSocket.OPEN) { // Check again before sending
|
||||
currentState.ws.send(JSON.stringify({ type: 'docker:status:update', payload: statusPayload }));
|
||||
}
|
||||
} catch (error: any) {
|
||||
console.error(`[Docker Polling] Error fetching Docker status for session ${sessionId}:`, error.message);
|
||||
// Optionally send an error to the client if polling fails consistently,
|
||||
// but be mindful of flooding the client with errors.
|
||||
// if (currentState.ws.readyState === WebSocket.OPEN) {
|
||||
// currentState.ws.send(JSON.stringify({ type: 'docker:status:error', payload: { message: `Polling error: ${error.message}` } }));
|
||||
// }
|
||||
}
|
||||
}, dockerPollIntervalMs);
|
||||
state.dockerStatusIntervalId = dockerIntervalId;
|
||||
|
||||
// Initial fetch
|
||||
const initialState = clientStates.get(sessionId);
|
||||
if (initialState && initialState.ws.readyState === WebSocket.OPEN && initialState.sshClient) {
|
||||
console.log(`[Docker Initial Fetch] Fetching status for session ${sessionId}...`);
|
||||
try {
|
||||
const statusPayload = await fetchRemoteDockerStatus(initialState);
|
||||
if (initialState.ws.readyState === WebSocket.OPEN) { // Check again
|
||||
initialState.ws.send(JSON.stringify({ type: 'docker:status:update', payload: statusPayload }));
|
||||
}
|
||||
} catch (error: any) {
|
||||
console.error(`[Docker Initial Fetch] Error fetching Docker status for session ${sessionId}:`, error.message);
|
||||
if (initialState.ws.readyState === WebSocket.OPEN) {
|
||||
const errorMessage = error.message || 'Unknown error during initial fetch';
|
||||
const isUnavailable = errorMessage.includes('command not found') || errorMessage.includes('Cannot connect to the Docker daemon');
|
||||
if (isUnavailable) {
|
||||
initialState.ws.send(JSON.stringify({ type: 'docker:status:update', payload: { available: false, containers: [] } }));
|
||||
} else {
|
||||
initialState.ws.send(JSON.stringify({ type: 'docker:status:error', payload: { message: `Initial Docker status fetch failed: ${errorMessage}` } }));
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,127 @@
|
||||
import WebSocket, { RawData } from 'ws';
|
||||
import { Request } from 'express';
|
||||
import { AuthenticatedWebSocket } from '../types';
|
||||
|
||||
export function handleRdpProxyConnection(
|
||||
ws: AuthenticatedWebSocket,
|
||||
request: Request
|
||||
): void {
|
||||
const clientIp = (request as any).clientIpAddress || 'unknown';
|
||||
console.log(`WebSocket:RDP 代理客户端 ${ws.username} (ID: ${ws.userId}, IP: ${clientIp}) 已连接。`);
|
||||
|
||||
ws.on('pong', () => { ws.isAlive = true; });
|
||||
|
||||
// Retrieve all necessary parameters passed from the upgrade handler
|
||||
const rdpToken = (request as any).rdpToken;
|
||||
const rdpWidthStr = (request as any).rdpWidth; // Get as string first
|
||||
const rdpHeightStr = (request as any).rdpHeight; // Get as string first
|
||||
|
||||
// --- 新增:参数验证和 DPI 计算 ---
|
||||
if (!rdpToken || !rdpWidthStr || !rdpHeightStr) { // Check string presence
|
||||
console.error(`WebSocket: RDP Proxy connection for ${ws.username} missing required parameters (token, width, height).`);
|
||||
ws.send(JSON.stringify({ type: 'rdp:error', payload: 'Missing RDP connection parameters (token, width, height).' }));
|
||||
ws.close(1008, 'Missing RDP parameters');
|
||||
return;
|
||||
}
|
||||
|
||||
const rdpWidth = parseInt(rdpWidthStr, 10);
|
||||
const rdpHeight = parseInt(rdpHeightStr, 10);
|
||||
|
||||
if (isNaN(rdpWidth) || isNaN(rdpHeight) || rdpWidth <= 0 || rdpHeight <= 0) {
|
||||
console.error(`WebSocket: RDP Proxy connection for ${ws.username} has invalid width or height parameters.`);
|
||||
ws.send(JSON.stringify({ type: 'rdp:error', payload: 'Invalid width or height parameters.' }));
|
||||
ws.close(1008, 'Invalid RDP dimensions');
|
||||
return;
|
||||
}
|
||||
|
||||
// 根据宽高的简单 DPI 计算逻辑 (如果宽度 > 1920,则 DPI=120,否则 DPI=96)
|
||||
const calculatedDpi = rdpWidth > 1920 ? 120 : 96;
|
||||
console.log(`WebSocket: RDP Proxy calculated DPI for ${ws.username} based on width ${rdpWidth}: ${calculatedDpi}`);
|
||||
|
||||
// Determine RDP target URL based on deployment mode
|
||||
const deploymentMode = process.env.DEPLOYMENT_MODE;
|
||||
let remoteGatewayWsBaseUrl: string;
|
||||
if (deploymentMode === 'local') {
|
||||
remoteGatewayWsBaseUrl = process.env.REMOTE_GATEWAY_WS_URL_LOCAL || 'ws://localhost:8080';
|
||||
console.log(`[WebSocket Remote Desktop Proxy] Using LOCAL deployment mode. Target Base: ${remoteGatewayWsBaseUrl}`);
|
||||
} else if (deploymentMode === 'docker') {
|
||||
remoteGatewayWsBaseUrl = process.env.REMOTE_GATEWAY_WS_URL_DOCKER || 'ws://remote-gateway:8080';
|
||||
console.log(`[WebSocket Remote Desktop Proxy] Using DOCKER deployment mode. Target Base: ${remoteGatewayWsBaseUrl}`);
|
||||
} else {
|
||||
remoteGatewayWsBaseUrl = 'ws://localhost:8080';
|
||||
console.warn(`[WebSocket Remote Desktop Proxy] Unknown deployment mode '${deploymentMode}'. Defaulting to safe fallback Target Base: ${remoteGatewayWsBaseUrl}`);
|
||||
}
|
||||
|
||||
const cleanRemoteGatewayWsBaseUrl = remoteGatewayWsBaseUrl.endsWith('/') ? remoteGatewayWsBaseUrl.slice(0, -1) : remoteGatewayWsBaseUrl;
|
||||
|
||||
const remoteDesktopTargetUrl = `${cleanRemoteGatewayWsBaseUrl}/?token=${encodeURIComponent(rdpToken)}&width=${encodeURIComponent(rdpWidth)}&height=${encodeURIComponent(rdpHeight)}&dpi=${encodeURIComponent(calculatedDpi)}`;
|
||||
|
||||
console.log(`WebSocket: Remote Desktop Proxy for ${ws.username} attempting to connect to ${remoteDesktopTargetUrl}`);
|
||||
|
||||
const rdpWs = new WebSocket(remoteDesktopTargetUrl);
|
||||
let clientWsClosed = false;
|
||||
let rdpWsClosed = false;
|
||||
|
||||
// --- 消息转发: Client -> RDP ---
|
||||
ws.on('message', (message: RawData) => {
|
||||
if (rdpWs.readyState === WebSocket.OPEN) {
|
||||
rdpWs.send(message);
|
||||
} else {
|
||||
console.warn(`[RDP 代理 C->S] 用户: ${ws.username}, 会话: ${ws.sessionId}, RDP WS 未打开,丢弃消息。`);
|
||||
}
|
||||
});
|
||||
|
||||
// --- 消息转发: RDP -> Client ---
|
||||
rdpWs.on('message', (message: RawData) => {
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
const messageString = message.toString('utf-8');
|
||||
ws.send(messageString);
|
||||
} else {
|
||||
console.warn(`[RDP 代理 S->C] 用户: ${ws.username}, 会话: ${ws.sessionId}, 客户端 WS 未打开,丢弃消息。`);
|
||||
}
|
||||
});
|
||||
|
||||
// --- 错误处理 ---
|
||||
ws.on('error', (error) => {
|
||||
console.error(`[RDP 代理 客户端 WS 错误] 用户: ${ws.username}, 会话: ${ws.sessionId}, 错误:`, error);
|
||||
if (!rdpWsClosed && rdpWs.readyState !== WebSocket.CLOSED && rdpWs.readyState !== WebSocket.CLOSING) {
|
||||
console.log(`[RDP 代理] 因客户端 WS 错误关闭 RDP WS。会话: ${ws.sessionId}`);
|
||||
rdpWs.close(1011, 'Client WS Error');
|
||||
rdpWsClosed = true;
|
||||
}
|
||||
clientWsClosed = true;
|
||||
});
|
||||
rdpWs.on('error', (error) => {
|
||||
console.error(`[RDP 代理 RDP WS 错误] 用户: ${ws.username}, 会话: ${ws.sessionId}, 连接到 ${remoteDesktopTargetUrl} 时出错:`, error);
|
||||
if (!clientWsClosed && ws.readyState !== WebSocket.CLOSED && ws.readyState !== WebSocket.CLOSING) {
|
||||
console.log(`[RDP 代理] 因 RDP WS 错误关闭客户端 WS。会话: ${ws.sessionId}`);
|
||||
ws.close(1011, `RDP WS Error: ${error.message}`);
|
||||
clientWsClosed = true;
|
||||
}
|
||||
rdpWsClosed = true;
|
||||
});
|
||||
|
||||
// --- 关闭处理 ---
|
||||
ws.on('close', (code, reason) => {
|
||||
clientWsClosed = true;
|
||||
console.log(`[RDP 代理 客户端 WS 关闭] 用户: ${ws.username}, 会话: ${ws.sessionId}, 代码: ${code}, 原因: ${reason.toString()}`);
|
||||
if (!rdpWsClosed && rdpWs.readyState !== WebSocket.CLOSED && rdpWs.readyState !== WebSocket.CLOSING) {
|
||||
console.log(`[RDP 代理] 因客户端 WS 关闭而关闭 RDP WS。会话: ${ws.sessionId}`);
|
||||
rdpWs.close(1000, 'Client WS Closed');
|
||||
rdpWsClosed = true;
|
||||
}
|
||||
});
|
||||
rdpWs.on('close', (code, reason) => {
|
||||
rdpWsClosed = true;
|
||||
console.log(`[RDP 代理 RDP WS 关闭] 用户: ${ws.username}, 会话: ${ws.sessionId}, 到 ${remoteDesktopTargetUrl} 的连接已关闭。代码: ${code}, 原因: ${reason.toString()}`);
|
||||
if (!clientWsClosed && ws.readyState !== WebSocket.CLOSED && ws.readyState !== WebSocket.CLOSING) {
|
||||
console.log(`[RDP 代理] 因 RDP WS 关闭而关闭客户端 WS。会话: ${ws.sessionId}`);
|
||||
ws.close(1000, 'RDP WS Closed');
|
||||
clientWsClosed = true;
|
||||
}
|
||||
});
|
||||
|
||||
rdpWs.on('open', () => {
|
||||
console.log(`[RDP 代理 RDP WS 打开] 用户: ${ws.username}, 会话: ${ws.sessionId}, 到 ${remoteDesktopTargetUrl} 的连接已建立。开始转发消息。`);
|
||||
});
|
||||
}
|
||||
@@ -0,0 +1,141 @@
|
||||
import { AuthenticatedWebSocket } from '../types';
|
||||
import { clientStates, sftpService } from '../state';
|
||||
import WebSocket from 'ws';
|
||||
|
||||
export async function handleSftpOperation(
|
||||
ws: AuthenticatedWebSocket,
|
||||
type: string,
|
||||
payload: any,
|
||||
requestId?: string
|
||||
): Promise<void> {
|
||||
const sessionId = ws.sessionId;
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
|
||||
if (!sessionId || !state) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} 的 SFTP 请求 (${type}),但无活动会话。`);
|
||||
const errPayload: { message: string; requestId?: string } = { message: '无效的会话' };
|
||||
if (requestId) errPayload.requestId = requestId;
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp_error', payload: errPayload }));
|
||||
return;
|
||||
}
|
||||
if (!requestId) {
|
||||
console.error(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 SFTP 请求 (${type}),但缺少 requestId。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp_error', payload: { message: `SFTP 操作 ${type} 缺少 requestId` } }));
|
||||
return;
|
||||
}
|
||||
|
||||
try {
|
||||
switch (type) {
|
||||
case 'sftp:readdir':
|
||||
if (payload?.path) sftpService.readdir(sessionId, payload.path, requestId);
|
||||
else throw new Error("Missing 'path' in payload for readdir");
|
||||
break;
|
||||
case 'sftp:stat':
|
||||
if (payload?.path) sftpService.stat(sessionId, payload.path, requestId);
|
||||
else throw new Error("Missing 'path' in payload for stat");
|
||||
break;
|
||||
case 'sftp:readfile':
|
||||
if (payload?.path) {
|
||||
const requestedEncoding = payload?.encoding;
|
||||
sftpService.readFile(sessionId, payload.path, requestId, requestedEncoding);
|
||||
} else {
|
||||
throw new Error("Missing 'path' in payload for readfile");
|
||||
}
|
||||
break;
|
||||
case 'sftp:writefile':
|
||||
const fileContent = payload?.content ?? payload?.data ?? '';
|
||||
const encoding = payload?.encoding;
|
||||
if (payload?.path) {
|
||||
const dataToSend = (typeof fileContent === 'string') ? fileContent : '';
|
||||
sftpService.writefile(sessionId, payload.path, dataToSend, requestId, encoding);
|
||||
} else throw new Error("Missing 'path' in payload for writefile");
|
||||
break;
|
||||
case 'sftp:mkdir':
|
||||
if (payload?.path) sftpService.mkdir(sessionId, payload.path, requestId);
|
||||
else throw new Error("Missing 'path' in payload for mkdir");
|
||||
break;
|
||||
case 'sftp:rmdir':
|
||||
if (payload?.path) sftpService.rmdir(sessionId, payload.path, requestId);
|
||||
else throw new Error("Missing 'path' in payload for rmdir");
|
||||
break;
|
||||
case 'sftp:unlink':
|
||||
if (payload?.path) sftpService.unlink(sessionId, payload.path, requestId);
|
||||
else throw new Error("Missing 'path' in payload for unlink");
|
||||
break;
|
||||
case 'sftp:rename':
|
||||
if (payload?.oldPath && payload?.newPath) sftpService.rename(sessionId, payload.oldPath, payload.newPath, requestId);
|
||||
else throw new Error("Missing 'oldPath' or 'newPath' in payload for rename");
|
||||
break;
|
||||
case 'sftp:chmod':
|
||||
if (payload?.path && typeof payload?.mode === 'number') sftpService.chmod(sessionId, payload.path, payload.mode, requestId);
|
||||
else throw new Error("Missing 'path' or invalid 'mode' in payload for chmod");
|
||||
break;
|
||||
case 'sftp:realpath':
|
||||
if (payload?.path) sftpService.realpath(sessionId, payload.path, requestId);
|
||||
else throw new Error("Missing 'path' in payload for realpath");
|
||||
break;
|
||||
case 'sftp:copy':
|
||||
if (Array.isArray(payload?.sources) && payload?.destination) {
|
||||
sftpService.copy(sessionId, payload.sources, payload.destination, requestId);
|
||||
} else throw new Error("Missing 'sources' (array) or 'destination' in payload for copy");
|
||||
break;
|
||||
case 'sftp:move':
|
||||
if (Array.isArray(payload?.sources) && payload?.destination) {
|
||||
sftpService.move(sessionId, payload.sources, payload.destination, requestId);
|
||||
} else throw new Error("Missing 'sources' (array) or 'destination' in payload for move");
|
||||
break;
|
||||
default:
|
||||
console.warn(`WebSocket: Received unhandled SFTP message type in sftp.handler: ${type}`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp_error', payload: { message: `内部未处理的 SFTP 类型: ${type}`, requestId } }));
|
||||
throw new Error(`Unhandled SFTP type: ${type}`);
|
||||
}
|
||||
} catch (sftpCallError: any) {
|
||||
console.error(`WebSocket: Error preparing/calling SFTP service for ${type} (Request ID: ${requestId}):`, sftpCallError);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp_error', payload: { message: `处理 SFTP 请求 ${type} 时出错: ${sftpCallError.message}`, requestId } }));
|
||||
}
|
||||
}
|
||||
|
||||
export function handleSftpUploadStart(ws: AuthenticatedWebSocket, payload: any): void {
|
||||
const sessionId = ws.sessionId;
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
|
||||
if (!sessionId || !state) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} 的 SFTP 上传开始请求,但无活动会话。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp:upload:error', payload: { uploadId: payload?.uploadId, message: '无效的会话' } }));
|
||||
return;
|
||||
}
|
||||
if (!payload?.uploadId || !payload?.remotePath || typeof payload?.size !== 'number') {
|
||||
console.error(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 sftp:upload:start 请求,但缺少 uploadId, remotePath 或 size。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp:upload:error', payload: { uploadId: payload?.uploadId, message: '缺少 uploadId, remotePath 或 size' } }));
|
||||
return;
|
||||
}
|
||||
const relativePath = payload?.relativePath;
|
||||
console.log(`WebSocket: SFTP Upload Start - Session: ${sessionId}, UploadID: ${payload.uploadId}, RemotePath: ${payload.remotePath}, Size: ${payload.size}, RelativePath: ${relativePath}`);
|
||||
sftpService.startUpload(sessionId, payload.uploadId, payload.remotePath, payload.size, relativePath);
|
||||
}
|
||||
|
||||
export async function handleSftpUploadChunk(ws: AuthenticatedWebSocket, payload: any): Promise<void> {
|
||||
const sessionId = ws.sessionId;
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
if (!sessionId || !state) return; // Silently ignore if session is gone
|
||||
|
||||
if (!payload?.uploadId || typeof payload?.chunkIndex !== 'number' || !payload?.data) {
|
||||
console.error(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 sftp:upload:chunk 请求,但缺少 uploadId, chunkIndex 或 data。`);
|
||||
// Optionally send error to client, but be mindful of flooding for many chunks
|
||||
return;
|
||||
}
|
||||
await sftpService.handleUploadChunk(sessionId, payload.uploadId, payload.chunkIndex, payload.data);
|
||||
}
|
||||
|
||||
export function handleSftpUploadCancel(ws: AuthenticatedWebSocket, payload: any): void {
|
||||
const sessionId = ws.sessionId;
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
if (!sessionId || !state) return; // Silently ignore
|
||||
|
||||
if (!payload?.uploadId) {
|
||||
console.error(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 sftp:upload:cancel 请求,但缺少 uploadId。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'sftp:upload:error', payload: { uploadId: payload?.uploadId, message: '缺少 uploadId' } }));
|
||||
return;
|
||||
}
|
||||
sftpService.cancelUpload(sessionId, payload.uploadId);
|
||||
}
|
||||
@@ -0,0 +1,235 @@
|
||||
import { Request } from 'express';
|
||||
import { v4 as uuidv4 } from 'uuid';
|
||||
import { AuthenticatedWebSocket, ClientState } from '../types';
|
||||
import { clientStates, sftpService, statusMonitorService, auditLogService, notificationService } from '../state';
|
||||
import * as SshService from '../../services/ssh.service';
|
||||
import { cleanupClientConnection } from '../utils';
|
||||
import { startDockerStatusPolling } from './docker.handler';
|
||||
import WebSocket from 'ws';
|
||||
|
||||
export async function handleSshConnect(
|
||||
ws: AuthenticatedWebSocket,
|
||||
request: Request,
|
||||
payload: any
|
||||
): Promise<void> {
|
||||
const sessionId = ws.sessionId;
|
||||
const existingState = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
|
||||
if (sessionId && existingState) {
|
||||
console.warn(`WebSocket: 用户 ${ws.username} (会话: ${sessionId}) 已有活动连接,忽略新的连接请求。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:error', payload: '已存在活动的 SSH 连接。' }));
|
||||
return;
|
||||
}
|
||||
|
||||
const dbConnectionId = payload?.connectionId;
|
||||
if (!dbConnectionId) {
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:error', payload: '缺少 connectionId。' }));
|
||||
return;
|
||||
}
|
||||
|
||||
console.log(`WebSocket: 用户 ${ws.username} 请求连接到数据库 ID: ${dbConnectionId}`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:status', payload: '正在处理连接请求...' }));
|
||||
|
||||
const clientIp = (request as any).clientIpAddress || 'unknown';
|
||||
let connInfo: SshService.DecryptedConnectionDetails | null = null;
|
||||
|
||||
try {
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:status', payload: '正在获取连接信息...' }));
|
||||
connInfo = await SshService.getConnectionDetails(dbConnectionId);
|
||||
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:status', payload: `正在连接到 ${connInfo.host}...` }));
|
||||
const sshClient = await SshService.establishSshConnection(connInfo);
|
||||
|
||||
const newSessionId = uuidv4();
|
||||
ws.sessionId = newSessionId; // Assign new sessionId to the WebSocket
|
||||
|
||||
const dbConnectionIdAsNumber = parseInt(dbConnectionId, 10);
|
||||
if (isNaN(dbConnectionIdAsNumber)) {
|
||||
console.error(`WebSocket: 无效的 dbConnectionId '${dbConnectionId}' (非数字),无法创建会话 ${newSessionId}。`);
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:error', payload: '无效的连接 ID。' }));
|
||||
sshClient.end();
|
||||
ws.close(1008, 'Invalid Connection ID');
|
||||
return;
|
||||
}
|
||||
|
||||
const newState: ClientState = {
|
||||
ws: ws,
|
||||
sshClient: sshClient,
|
||||
dbConnectionId: dbConnectionIdAsNumber,
|
||||
connectionName: connInfo!.name,
|
||||
ipAddress: clientIp,
|
||||
isShellReady: false,
|
||||
};
|
||||
clientStates.set(newSessionId, newState);
|
||||
console.log(`WebSocket: 为用户 ${ws.username} (IP: ${clientIp}) 创建新会话 ${newSessionId} (DB ID: ${dbConnectionIdAsNumber}, 连接名称: ${newState.connectionName})`);
|
||||
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:status', payload: 'SSH 连接成功,正在打开 Shell...' }));
|
||||
try {
|
||||
const defaultCols = payload?.cols || 80; // Use provided cols or default
|
||||
const defaultRows = payload?.rows || 24; // Use provided rows or default
|
||||
sshClient.shell({ term: payload?.term || 'xterm-256color', cols: defaultCols, rows: defaultRows }, (err, stream) => {
|
||||
if (err) {
|
||||
console.error(`SSH: 会话 ${newSessionId} 打开 Shell 失败:`, err);
|
||||
auditLogService.logAction('SSH_SHELL_FAILURE', {
|
||||
connectionName: newState.connectionName,
|
||||
userId: ws.userId,
|
||||
username: ws.username,
|
||||
connectionId: dbConnectionIdAsNumber,
|
||||
sessionId: newSessionId,
|
||||
ip: newState.ipAddress,
|
||||
reason: err.message
|
||||
});
|
||||
notificationService.sendNotification('SSH_SHELL_FAILURE', {
|
||||
userId: ws.userId,
|
||||
username: ws.username,
|
||||
connectionId: dbConnectionIdAsNumber,
|
||||
sessionId: newSessionId,
|
||||
ip: newState.ipAddress,
|
||||
reason: err.message
|
||||
});
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'ssh:error', payload: `打开 Shell 失败: ${err.message}` }));
|
||||
}
|
||||
cleanupClientConnection(newSessionId);
|
||||
return;
|
||||
}
|
||||
|
||||
console.log(`WebSocket: 会话 ${newSessionId} Shell 打开成功 (尺寸 ${defaultCols}x${defaultRows})。`);
|
||||
newState.sshShellStream = stream;
|
||||
newState.isShellReady = true;
|
||||
|
||||
stream.on('data', (data: Buffer) => {
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'ssh:output', payload: data.toString('base64'), encoding: 'base64' }));
|
||||
}
|
||||
});
|
||||
stream.stderr.on('data', (data: Buffer) => {
|
||||
console.error(`SSH Stderr (会话: ${newSessionId}): ${data.toString('utf8').substring(0, 100)}...`);
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'ssh:output', payload: data.toString('base64'), encoding: 'base64' }));
|
||||
}
|
||||
});
|
||||
stream.on('close', () => {
|
||||
console.log(`SSH: 会话 ${newSessionId} 的 Shell 通道已关闭。`);
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'ssh:disconnected', payload: 'Shell 通道已关闭。' }));
|
||||
}
|
||||
cleanupClientConnection(newSessionId);
|
||||
});
|
||||
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({
|
||||
type: 'ssh:connected',
|
||||
payload: {
|
||||
connectionId: dbConnectionIdAsNumber,
|
||||
sessionId: newSessionId
|
||||
}
|
||||
}));
|
||||
console.log(`WebSocket: 会话 ${newSessionId} SSH 连接和 Shell 建立成功。`);
|
||||
auditLogService.logAction('SSH_CONNECT_SUCCESS', {
|
||||
userId: ws.userId,
|
||||
username: ws.username,
|
||||
connectionId: dbConnectionIdAsNumber,
|
||||
sessionId: newSessionId,
|
||||
ip: newState.ipAddress,
|
||||
connectionName: connInfo!.name,
|
||||
});
|
||||
notificationService.sendNotification('SSH_CONNECT_SUCCESS', {
|
||||
userId: ws.userId,
|
||||
username: ws.username,
|
||||
connectionId: dbConnectionIdAsNumber,
|
||||
sessionId: newSessionId,
|
||||
ip: newState.ipAddress
|
||||
});
|
||||
|
||||
console.log(`WebSocket: 会话 ${newSessionId} 正在异步初始化 SFTP...`);
|
||||
sftpService.initializeSftpSession(newSessionId)
|
||||
.then(() => console.log(`SFTP: 会话 ${newSessionId} 异步初始化成功。`))
|
||||
.catch(sftpInitError => console.error(`WebSocket: 会话 ${newSessionId} 异步初始化 SFTP 失败:`, sftpInitError));
|
||||
|
||||
statusMonitorService.startStatusPolling(newSessionId);
|
||||
startDockerStatusPolling(newSessionId); // Start Docker polling
|
||||
});
|
||||
} catch (shellError: any) {
|
||||
console.error(`SSH: 会话 ${newSessionId} 打开 Shell 时发生意外错误:`, shellError);
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'ssh:error', payload: `打开 Shell 时发生意外错误: ${shellError.message}` }));
|
||||
}
|
||||
cleanupClientConnection(newSessionId);
|
||||
}
|
||||
|
||||
sshClient.on('close', () => {
|
||||
console.log(`SSH: 会话 ${newSessionId} 的客户端连接已关闭。`);
|
||||
cleanupClientConnection(newSessionId);
|
||||
});
|
||||
sshClient.on('error', (err: Error) => {
|
||||
console.error(`SSH: 会话 ${newSessionId} 的客户端连接错误:`, err);
|
||||
if (ws.readyState === WebSocket.OPEN) {
|
||||
ws.send(JSON.stringify({ type: 'ssh:error', payload: `SSH 连接错误: ${err.message}` }));
|
||||
}
|
||||
cleanupClientConnection(newSessionId);
|
||||
});
|
||||
|
||||
} catch (connectError: any) {
|
||||
console.error(`WebSocket: 用户 ${ws.username} (IP: ${clientIp}) 连接到数据库 ID ${dbConnectionId} 失败:`, connectError);
|
||||
auditLogService.logAction('SSH_CONNECT_FAILURE', {
|
||||
userId: ws.userId,
|
||||
username: ws.username,
|
||||
connectionId: dbConnectionId,
|
||||
connectionName: connInfo?.name || 'Unknown',
|
||||
ip: clientIp,
|
||||
reason: connectError.message
|
||||
});
|
||||
notificationService.sendNotification('SSH_CONNECT_FAILURE', {
|
||||
userId: ws.userId,
|
||||
username: ws.username,
|
||||
connectionId: dbConnectionId,
|
||||
ip: clientIp,
|
||||
reason: connectError.message
|
||||
});
|
||||
if (ws.readyState === WebSocket.OPEN) ws.send(JSON.stringify({ type: 'ssh:error', payload: `连接失败: ${connectError.message}` }));
|
||||
ws.close(1011, `SSH Connection Failed: ${connectError.message}`);
|
||||
}
|
||||
}
|
||||
|
||||
export function handleSshInput(ws: AuthenticatedWebSocket, payload: any): void {
|
||||
const sessionId = ws.sessionId;
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
|
||||
if (!state || !state.sshShellStream) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的 SSH 输入,但无活动 Shell。`);
|
||||
return;
|
||||
}
|
||||
const data = payload?.data;
|
||||
if (typeof data === 'string' && state.isShellReady) { // Check isShellReady
|
||||
state.sshShellStream.write(data);
|
||||
} else if (!state.isShellReady) {
|
||||
console.warn(`WebSocket: 会话 ${sessionId} 收到 SSH 输入,但 Shell 尚未就绪。`);
|
||||
}
|
||||
}
|
||||
|
||||
export function handleSshResize(ws: AuthenticatedWebSocket, payload: any): void {
|
||||
const sessionId = ws.sessionId;
|
||||
const state = sessionId ? clientStates.get(sessionId) : undefined;
|
||||
|
||||
if (!state || !state.sshClient) { // sshClient is enough, stream might not be ready for resize yet
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} 的调整大小请求,但无有效会话或 SSH 客户端。`);
|
||||
return;
|
||||
}
|
||||
|
||||
const { cols, rows } = payload || {};
|
||||
if (typeof cols !== 'number' || typeof rows !== 'number' || cols <= 0 || rows <= 0) {
|
||||
console.warn(`WebSocket: 收到来自 ${ws.username} (会话: ${sessionId}) 的无效调整大小请求:`, payload);
|
||||
return;
|
||||
}
|
||||
|
||||
if (state.isShellReady && state.sshShellStream) {
|
||||
console.log(`SSH: 会话 ${sessionId} 调整终端大小: ${cols}x${rows}`);
|
||||
state.sshShellStream.setWindow(rows, cols, 0, 0);
|
||||
} else {
|
||||
// Store intended size if shell not ready, apply when shell is ready.
|
||||
// This part is a bit more complex as it requires modifying the shell opening logic.
|
||||
// For now, we just log if shell is not ready.
|
||||
console.warn(`WebSocket: 会话 ${sessionId} 收到调整大小请求,但 Shell 尚未就绪或流不存在 (isShellReady: ${state.isShellReady})。尺寸将不会立即应用。`);
|
||||
// A more robust solution would queue the resize or store it in ClientState to be applied later.
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user