Compare commits
10 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
| b955e4f464 | |||
| 831564762b | |||
| 3f177a6993 | |||
| ea4afbd6ca | |||
| 95ec6765c1 | |||
| c40b7d3bc6 | |||
| 525b056b91 | |||
| 6bc11d4c5e | |||
| e0aa51bac3 | |||
| 94d0b989d0 |
15
.gitignore
vendored
15
.gitignore
vendored
@@ -69,5 +69,20 @@ PROJECT_SUMMARY.md
|
||||
QUICKSTART.md
|
||||
VS_CODE_SETUP.md
|
||||
|
||||
# Gemini / Antigravity
|
||||
.gemini/
|
||||
|
||||
# Windows artifacts
|
||||
nul
|
||||
|
||||
# Debug / temp files (generated during development & testing)
|
||||
out.txt
|
||||
containers.txt
|
||||
helper.txt
|
||||
logs.txt
|
||||
port.txt
|
||||
env.txt
|
||||
network.txt
|
||||
update_helper.txt
|
||||
state.txt
|
||||
hostpath.txt
|
||||
|
||||
@@ -334,6 +334,19 @@ async def get_version(
|
||||
return result
|
||||
|
||||
|
||||
@router.get("/branches")
|
||||
async def get_branches(
|
||||
current_user: User = Depends(get_current_user),
|
||||
db: Session = Depends(get_db),
|
||||
):
|
||||
"""Return a list of available branches from the configured git remote."""
|
||||
config = get_system_config(db)
|
||||
if not config or not config.git_repo_url:
|
||||
return []
|
||||
branches = await update_service.get_remote_branches(config)
|
||||
return branches
|
||||
|
||||
|
||||
@router.post("/update")
|
||||
async def trigger_update(
|
||||
current_user: User = Depends(get_current_user),
|
||||
|
||||
@@ -5,6 +5,7 @@ import logging
|
||||
import os
|
||||
import shutil
|
||||
import subprocess
|
||||
import httpx
|
||||
from datetime import datetime
|
||||
from pathlib import Path
|
||||
from typing import Any
|
||||
@@ -130,6 +131,42 @@ async def check_for_updates(config: Any) -> dict:
|
||||
}
|
||||
|
||||
|
||||
async def get_remote_branches(config: Any) -> list[str]:
|
||||
"""Query the Gitea API for available branches on the configured repository.
|
||||
|
||||
Returns a list of branch names (e.g., ['main', 'unstable', 'development']).
|
||||
If the repository URL is not configured or an error occurs, returns an empty list.
|
||||
"""
|
||||
if not config.git_repo_url:
|
||||
return []
|
||||
|
||||
repo_url = config.git_repo_url.rstrip("/")
|
||||
parts = repo_url.split("/")
|
||||
if len(parts) < 5:
|
||||
return []
|
||||
|
||||
base_url = "/".join(parts[:-2])
|
||||
owner = parts[-2]
|
||||
repo = parts[-1]
|
||||
branches_api = f"{base_url}/api/v1/repos/{owner}/{repo}/branches?limit=100"
|
||||
|
||||
headers = {}
|
||||
if config.git_token:
|
||||
headers["Authorization"] = f"token {config.git_token}"
|
||||
|
||||
try:
|
||||
async with httpx.AsyncClient(timeout=10) as client:
|
||||
resp = await client.get(branches_api, headers=headers)
|
||||
if resp.status_code == 200:
|
||||
data = resp.json()
|
||||
if isinstance(data, list):
|
||||
return [branch.get("name") for branch in data if "name" in branch]
|
||||
except Exception as exc:
|
||||
logger.error("Error fetching branches: %s", exc)
|
||||
|
||||
return []
|
||||
|
||||
|
||||
def backup_database(db_path: str) -> str:
|
||||
"""Create a timestamped backup of the SQLite database.
|
||||
|
||||
@@ -299,10 +336,10 @@ def trigger_update(config: Any, db_path: str) -> dict:
|
||||
own_image = "netbirdmsp-appliance-netbird-msp-appliance:latest"
|
||||
|
||||
helper_cmd = [
|
||||
"docker", "run", "-d",
|
||||
"docker", "run", "--rm", "-d", "--privileged",
|
||||
"--name", "msp-updater",
|
||||
"-v", "/var/run/docker.sock:/var/run/docker.sock",
|
||||
"-v", f"{host_source_dir}:{host_source_dir}:ro",
|
||||
"-v", "/var/run/docker.sock:/var/run/docker.sock:z",
|
||||
"-v", f"{host_source_dir}:{host_source_dir}:ro,z",
|
||||
*env_flags,
|
||||
own_image,
|
||||
"sh", "-c",
|
||||
@@ -310,8 +347,7 @@ def trigger_update(config: Any, db_path: str) -> dict:
|
||||
"sleep 3 && "
|
||||
"docker compose -p netbirdmsp-appliance "
|
||||
f"-f {host_source_dir}/docker-compose.yml "
|
||||
"up --force-recreate --no-deps -d netbird-msp-appliance "
|
||||
f">> {host_source_dir}/app/backups/updater.log 2>&1"
|
||||
"up --force-recreate --no-deps -d netbird-msp-appliance"
|
||||
),
|
||||
]
|
||||
try:
|
||||
|
||||
@@ -1 +0,0 @@
|
||||
Error response from daemon: No such container: msp-updater
|
||||
50
logs.txt
50
logs.txt
@@ -1,50 +0,0 @@
|
||||
INFO: 127.0.0.1:35822 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:33932 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:50284 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:49612 - "GET / HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:49612 - "GET /css/styles.css HTTP/1.1" 304 Not Modified
|
||||
INFO: 172.18.0.1:49610 - "GET /js/i18n.js HTTP/1.1" 304 Not Modified
|
||||
INFO: 172.18.0.1:49632 - "GET /js/app.js HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:49632 - "GET /lang/en.json HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:49632 - "GET /favicon.ico HTTP/1.1" 404 Not Found
|
||||
INFO: 172.18.0.1:49610 - "GET /lang/de.json HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:49610 - "GET /api/settings/branding HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:49610 - "GET /api/auth/azure/config HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:59642 - "GET /api/health HTTP/1.1" 200 OK
|
||||
2026-02-22 13:56:39,498 [WARNING] passlib.handlers.bcrypt: (trapped) error reading bcrypt version
|
||||
Traceback (most recent call last):
|
||||
File "/usr/local/lib/python3.11/site-packages/passlib/handlers/bcrypt.py", line 620, in _load_backend_mixin
|
||||
version = _bcrypt.__about__.__version__
|
||||
^^^^^^^^^^^^^^^^^
|
||||
AttributeError: module 'bcrypt' has no attribute '__about__'
|
||||
2026-02-22 13:56:39,929 [INFO] app.routers.auth: User admin logged in (provider: local).
|
||||
INFO: 172.18.0.1:36450 - "POST /api/auth/login HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:36462 - "GET /api/customers?page=1&per_page=25 HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:36450 - "GET /api/monitoring/status HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:54154 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:54490 - "GET /api/settings/system HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:54490 - "GET /api/auth/mfa/status HTTP/1.1" 200 OK
|
||||
2026-02-22 13:57:10,815 [INFO] httpx: HTTP Request: GET https://git.0x26.ch/api/v1/repos/BurgerGames/NetBirdMSP-Appliance/branches/unstable "HTTP/1.1 200 OK"
|
||||
2026-02-22 13:57:10,822 [INFO] httpx: HTTP Request: GET https://git.0x26.ch/api/v1/repos/BurgerGames/NetBirdMSP-Appliance/tags?limit=1 "HTTP/1.1 200 OK"
|
||||
INFO: 172.18.0.1:57512 - "GET /api/settings/version HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:52478 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:47310 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:47530 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:41918 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:45108 - "GET /api/health HTTP/1.1" 200 OK
|
||||
2026-02-22 13:59:53,200 [INFO] app.services.update_service: Database backed up to /app/backups/netbird_msp_20260222_135953.db
|
||||
2026-02-22 13:59:54,630 [INFO] app.services.update_service: git pull succeeded: Already up to date.
|
||||
2026-02-22 13:59:54,740 [INFO] app.services.update_service: Rebuilding with GIT_TAG=alpha-1.4 GIT_COMMIT=ef691a4 GIT_BRANCH=unstable
|
||||
2026-02-22 13:59:54,741 [INFO] app.services.update_service: Phase A: building new image …
|
||||
2026-02-22 14:03:51,162 [INFO] app.services.update_service: Phase A complete — image built successfully.
|
||||
2026-02-22 14:03:51,242 [INFO] app.services.update_service: Host source directory: /home/sascha/NetBirdMSP-Appliance
|
||||
2026-02-22 14:03:52,032 [INFO] app.services.update_service: Phase B: updater container started — this container will restart in ~5s.
|
||||
2026-02-22 14:03:52,033 [INFO] app.routers.settings: Update triggered by admin.
|
||||
INFO: 172.18.0.1:53362 - "POST /api/settings/update HTTP/1.1" 200 OK
|
||||
INFO: 172.18.0.1:35312 - "POST /api/settings/update HTTP/1.1" 401 Unauthorized
|
||||
INFO: 127.0.0.1:35534 - "GET /api/health HTTP/1.1" 200 OK
|
||||
2026-02-22 14:04:22,366 [INFO] httpx: HTTP Request: GET https://git.0x26.ch/api/v1/repos/BurgerGames/NetBirdMSP-Appliance/branches/unstable "HTTP/1.1 200 OK"
|
||||
2026-02-22 14:04:22,376 [INFO] httpx: HTTP Request: GET https://git.0x26.ch/api/v1/repos/BurgerGames/NetBirdMSP-Appliance/tags?limit=1 "HTTP/1.1 200 OK"
|
||||
INFO: 172.18.0.1:53602 - "GET /api/settings/version HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:51374 - "GET /api/health HTTP/1.1" 200 OK
|
||||
INFO: 127.0.0.1:48640 - "GET /api/health HTTP/1.1" 200 OK
|
||||
1403
static/index.html
1403
static/index.html
File diff suppressed because it is too large
Load Diff
@@ -366,7 +366,7 @@ function logout() {
|
||||
'Content-Type': 'application/json',
|
||||
'Authorization': `Bearer ${authToken}`,
|
||||
},
|
||||
}).catch(() => {});
|
||||
}).catch(() => { });
|
||||
}
|
||||
authToken = null;
|
||||
currentUser = null;
|
||||
@@ -465,9 +465,9 @@ function renderCustomersTable(data) {
|
||||
<div class="btn-group btn-group-sm">
|
||||
<button class="btn btn-outline-primary" title="${t('common.view')}" onclick="viewCustomer(${c.id})"><i class="bi bi-eye"></i></button>
|
||||
${c.deployment && c.deployment.deployment_status === 'running'
|
||||
? `<button class="btn btn-outline-warning" title="${t('common.stop')}" onclick="customerAction(${c.id},'stop')"><i class="bi bi-stop-circle"></i></button>`
|
||||
: `<button class="btn btn-outline-success" title="${t('common.start')}" onclick="customerAction(${c.id},'start')"><i class="bi bi-play-circle"></i></button>`
|
||||
}
|
||||
? `<button class="btn btn-outline-warning" title="${t('common.stop')}" onclick="customerAction(${c.id},'stop')"><i class="bi bi-stop-circle"></i></button>`
|
||||
: `<button class="btn btn-outline-success" title="${t('common.start')}" onclick="customerAction(${c.id},'start')"><i class="bi bi-play-circle"></i></button>`
|
||||
}
|
||||
<button class="btn btn-outline-info" title="${t('common.restart')}" onclick="customerAction(${c.id},'restart')"><i class="bi bi-arrow-repeat"></i></button>
|
||||
<button class="btn btn-outline-danger" title="${t('common.delete')}" onclick="showDeleteModal(${c.id},'${esc(c.name)}')"><i class="bi bi-trash"></i></button>
|
||||
</div>
|
||||
@@ -511,7 +511,7 @@ function showNewCustomerModal() {
|
||||
// Update subdomain suffix
|
||||
api('GET', '/settings/system').then(cfg => {
|
||||
document.getElementById('cust-subdomain-suffix').textContent = `.${cfg.base_domain || 'domain.com'}`;
|
||||
}).catch(() => {});
|
||||
}).catch(() => { });
|
||||
|
||||
const modalEl = document.getElementById('customer-modal');
|
||||
const modal = bootstrap.Modal.getOrCreateInstance(modalEl);
|
||||
@@ -872,6 +872,9 @@ async function loadSettings() {
|
||||
} catch (err) {
|
||||
showSettingsAlert('danger', t('errors.failedToLoadSettings', { error: err.message }));
|
||||
}
|
||||
|
||||
// Automatically fetch branches once the base config is populated
|
||||
await loadGitBranches();
|
||||
}
|
||||
|
||||
function updateLogoPreview(logoPath) {
|
||||
@@ -1183,6 +1186,42 @@ async function testLdapConnection() {
|
||||
}
|
||||
}
|
||||
|
||||
async function loadGitBranches() {
|
||||
const branchSelect = document.getElementById('cfg-git-branch');
|
||||
const currentVal = branchSelect.value;
|
||||
|
||||
// Disable mapping while loading
|
||||
branchSelect.disabled = true;
|
||||
branchSelect.innerHTML = `<option value="${currentVal}">${currentVal} (Loading...)</option>`;
|
||||
|
||||
try {
|
||||
const branches = await api('GET', '/settings/branches');
|
||||
branchSelect.innerHTML = '';
|
||||
|
||||
// Always ensure the currently saved branch is an option
|
||||
if (currentVal && !branches.includes(currentVal)) {
|
||||
branches.unshift(currentVal);
|
||||
}
|
||||
|
||||
if (branches.length === 0) {
|
||||
branchSelect.innerHTML = `<option value="main">main</option>`;
|
||||
} else {
|
||||
branches.forEach(b => {
|
||||
const opt = document.createElement('option');
|
||||
opt.value = b;
|
||||
opt.textContent = b;
|
||||
if (b === currentVal) opt.selected = true;
|
||||
branchSelect.appendChild(opt);
|
||||
});
|
||||
}
|
||||
} catch (err) {
|
||||
showSettingsAlert('warning', `Failed to load branches: ${err.message}`);
|
||||
branchSelect.innerHTML = `<option value="${currentVal}">${currentVal}</option>`;
|
||||
} finally {
|
||||
branchSelect.disabled = false;
|
||||
}
|
||||
}
|
||||
|
||||
// ---------------------------------------------------------------------------
|
||||
// Update / Version Management
|
||||
// ---------------------------------------------------------------------------
|
||||
@@ -1219,12 +1258,12 @@ async function loadVersionInfo() {
|
||||
|
||||
let html = `<div class="row g-3">
|
||||
<div class="col-md-6">
|
||||
<div class="border rounded p-3">
|
||||
<div class="border rounded p-3 h-100">
|
||||
<div class="text-muted small mb-1">${t('settings.currentVersion')}</div>
|
||||
<div class="fw-bold fs-5">${esc(currentTag || currentCommit)}</div>
|
||||
${currentTag ? `<div class="text-muted small font-monospace">${t('settings.commitHash')}: ${esc(currentCommit)}</div>` : ''}
|
||||
<div class="text-muted small">${t('settings.branch')}: <strong>${esc(current.branch || 'unknown')}</strong></div>
|
||||
<div class="text-muted small">${esc(current.date || '')}</div>
|
||||
<div class="text-muted small mt-2"><i class="bi bi-clock me-1"></i>${formatDate(current.date)}</div>
|
||||
</div>
|
||||
</div>`;
|
||||
|
||||
@@ -1235,17 +1274,17 @@ async function loadVersionInfo() {
|
||||
? `<span class="badge bg-warning text-dark ms-1">${t('settings.updateAvailable')}</span>`
|
||||
: `<span class="badge bg-success ms-1">${t('settings.upToDate')}</span>`;
|
||||
html += `<div class="col-md-6">
|
||||
<div class="border rounded p-3 ${needsUpdate ? 'border-warning' : ''}">
|
||||
<div class="border rounded p-3 h-100 ${needsUpdate ? 'border-warning' : ''}">
|
||||
<div class="text-muted small mb-1">${t('settings.latestVersion')} ${badge}</div>
|
||||
<div class="fw-bold fs-5">${esc(latestTag || latestCommit)}</div>
|
||||
${latestTag ? `<div class="text-muted small font-monospace">${t('settings.commitHash')}: ${esc(latestCommit)}</div>` : ''}
|
||||
<div class="text-muted small">${t('settings.branch')}: <strong>${esc(latest.branch || 'unknown')}</strong></div>
|
||||
<div class="text-muted small">${esc(latest.message || '')}</div>
|
||||
<div class="text-muted small">${esc(latest.date || '')}</div>
|
||||
<div class="text-muted small mt-2"><i class="bi bi-clock me-1"></i>${formatDate(latest.date)}</div>
|
||||
${latest.message ? `<div class="text-muted small mt-1 border-top pt-1 text-truncate" title="${esc(latest.message)}"><i class="bi bi-chat-text me-1"></i>${esc(latest.message)}</div>` : ''}
|
||||
</div>
|
||||
</div>`;
|
||||
} else if (data.error) {
|
||||
html += `<div class="col-md-6"><div class="alert alert-warning mb-0">${esc(data.error)}</div></div>`;
|
||||
html += `<div class="col-md-6"><div class="alert alert-warning h-100 mb-0">${esc(data.error)}</div></div>`;
|
||||
}
|
||||
html += '</div>';
|
||||
|
||||
@@ -1305,9 +1344,9 @@ async function loadUsers() {
|
||||
<td>
|
||||
<div class="btn-group btn-group-sm">
|
||||
${u.is_active
|
||||
? `<button class="btn btn-outline-warning" title="${t('common.disable')}" onclick="toggleUserActive(${u.id}, false)"><i class="bi bi-pause-circle"></i></button>`
|
||||
: `<button class="btn btn-outline-success" title="${t('common.enable')}" onclick="toggleUserActive(${u.id}, true)"><i class="bi bi-play-circle"></i></button>`
|
||||
}
|
||||
? `<button class="btn btn-outline-warning" title="${t('common.disable')}" onclick="toggleUserActive(${u.id}, false)"><i class="bi bi-pause-circle"></i></button>`
|
||||
: `<button class="btn btn-outline-success" title="${t('common.enable')}" onclick="toggleUserActive(${u.id}, true)"><i class="bi bi-play-circle"></i></button>`
|
||||
}
|
||||
${u.auth_provider === 'local' ? `<button class="btn btn-outline-info" title="${t('common.resetPassword')}" onclick="resetUserPassword(${u.id}, '${esc(u.username)}')"><i class="bi bi-key"></i></button>` : ''}
|
||||
${u.totp_enabled ? `<button class="btn btn-outline-secondary" title="${t('mfa.resetMfa')}" onclick="resetUserMfa(${u.id}, '${esc(u.username)}')"><i class="bi bi-shield-x"></i></button>` : ''}
|
||||
<button class="btn btn-outline-danger" title="${t('common.delete')}" onclick="deleteUser(${u.id}, '${esc(u.username)}')"><i class="bi bi-trash"></i></button>
|
||||
|
||||
@@ -93,16 +93,19 @@
|
||||
},
|
||||
"settings": {
|
||||
"title": "Systemeinstellungen",
|
||||
"tabSystem": "Systemkonfiguration",
|
||||
"tabNpm": "NPM Integration",
|
||||
"tabImages": "Docker Images",
|
||||
"tabSystem": "NetBird MSP System",
|
||||
"tabNpm": "NPM Proxy",
|
||||
"tabImages": "NetBird Docker Images",
|
||||
"tabBranding": "Branding",
|
||||
"tabUsers": "Benutzer",
|
||||
"tabAzure": "Azure AD",
|
||||
"tabDns": "Windows DNS",
|
||||
"tabLdap": "LDAP / AD",
|
||||
"tabUpdate": "Updates",
|
||||
"tabUpdate": "NetBird MSP Updates",
|
||||
"tabSecurity": "Sicherheit",
|
||||
"groupUsers": "Benutzerverwaltung",
|
||||
"groupSystem": "Systemkonfiguration",
|
||||
"groupExternal": "Umsysteme",
|
||||
"baseDomain": "Basis-Domain",
|
||||
"baseDomainPlaceholder": "ihredomain.com",
|
||||
"baseDomainHint": "Kunden erhalten Subdomains: kunde.ihredomain.com",
|
||||
|
||||
@@ -114,16 +114,19 @@
|
||||
},
|
||||
"settings": {
|
||||
"title": "System Settings",
|
||||
"tabSystem": "System Configuration",
|
||||
"tabNpm": "NPM Integration",
|
||||
"tabImages": "Docker Images",
|
||||
"tabSystem": "NetBird MSP System",
|
||||
"tabNpm": "NPM Proxy",
|
||||
"tabImages": "NetBird Docker Images",
|
||||
"tabBranding": "Branding",
|
||||
"tabUsers": "Users",
|
||||
"tabAzure": "Azure AD",
|
||||
"tabDns": "Windows DNS",
|
||||
"tabLdap": "LDAP / AD",
|
||||
"tabUpdate": "Updates",
|
||||
"tabUpdate": "NetBird MSP Updates",
|
||||
"tabSecurity": "Security",
|
||||
"groupUsers": "User Management",
|
||||
"groupSystem": "System Configuration",
|
||||
"groupExternal": "External Systems",
|
||||
"baseDomain": "Base Domain",
|
||||
"baseDomainPlaceholder": "yourdomain.com",
|
||||
"baseDomainHint": "Customers get subdomains: customer.yourdomain.com",
|
||||
@@ -370,4 +373,4 @@
|
||||
"confirmDeleteUser": "Delete user '{username}'? This cannot be undone.",
|
||||
"confirmResetPassword": "Reset password for '{username}'? A new random password will be generated."
|
||||
}
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user