mirror of
https://github.com/pacnpal/simpleguardhome.git
synced 2025-12-20 12:31:16 -05:00
feat(auth): implement session management and reauthentication for AdGuard API
This commit is contained in:
pacnpal
@@ -26,10 +26,60 @@ class AdGuardClient:
|
|||||||
"""Initialize the AdGuard Home API client."""
|
"""Initialize the AdGuard Home API client."""
|
||||||
self.base_url = settings.adguard_base_url
|
self.base_url = settings.adguard_base_url
|
||||||
self.client = httpx.AsyncClient(timeout=10.0) # 10 second timeout
|
self.client = httpx.AsyncClient(timeout=10.0) # 10 second timeout
|
||||||
|
self._session_cookie = None
|
||||||
self._auth = None
|
self._auth = None
|
||||||
if settings.ADGUARD_USERNAME and settings.ADGUARD_PASSWORD:
|
if settings.ADGUARD_USERNAME and settings.ADGUARD_PASSWORD:
|
||||||
self._auth = (settings.ADGUARD_USERNAME, settings.ADGUARD_PASSWORD)
|
self._auth = {
|
||||||
|
"name": settings.ADGUARD_USERNAME,
|
||||||
|
"password": settings.ADGUARD_PASSWORD
|
||||||
|
}
|
||||||
logger.info(f"Initialized AdGuard Home client with base URL: {self.base_url}")
|
logger.info(f"Initialized AdGuard Home client with base URL: {self.base_url}")
|
||||||
|
|
||||||
|
async def login(self) -> bool:
|
||||||
|
"""Authenticate with AdGuard Home and get session cookie.
|
||||||
|
|
||||||
|
Returns:
|
||||||
|
bool: True if authentication successful
|
||||||
|
|
||||||
|
Raises:
|
||||||
|
AdGuardConnectionError: If connection to AdGuard Home fails
|
||||||
|
AdGuardAPIError: If authentication fails
|
||||||
|
"""
|
||||||
|
if not self._auth:
|
||||||
|
logger.warning("No credentials configured, skipping authentication")
|
||||||
|
return False
|
||||||
|
|
||||||
|
url = f"{self.base_url}/control/login"
|
||||||
|
|
||||||
|
try:
|
||||||
|
logger.info("Authenticating with AdGuard Home")
|
||||||
|
response = await self.client.post(url, json=self._auth)
|
||||||
|
response.raise_for_status()
|
||||||
|
|
||||||
|
# Extract and store session cookie
|
||||||
|
cookies = response.cookies
|
||||||
|
if 'agh_session' in cookies:
|
||||||
|
self._session_cookie = cookies['agh_session']
|
||||||
|
logger.info("Successfully authenticated with AdGuard Home")
|
||||||
|
return True
|
||||||
|
else:
|
||||||
|
logger.error("No session cookie received after login")
|
||||||
|
raise AdGuardAPIError("Authentication failed: No session cookie received")
|
||||||
|
|
||||||
|
except httpx.ConnectError as e:
|
||||||
|
logger.error(f"Connection error during login: {str(e)}")
|
||||||
|
raise AdGuardConnectionError(f"Failed to connect to AdGuard Home: {str(e)}")
|
||||||
|
except httpx.HTTPError as e:
|
||||||
|
logger.error(f"HTTP error during login: {str(e)}")
|
||||||
|
raise AdGuardAPIError(f"Authentication failed: {str(e)}")
|
||||||
|
except Exception as e:
|
||||||
|
logger.error(f"Unexpected error during login: {str(e)}")
|
||||||
|
raise AdGuardError(f"Authentication error: {str(e)}")
|
||||||
|
|
||||||
|
async def _ensure_authenticated(self):
|
||||||
|
"""Ensure we have a valid session cookie."""
|
||||||
|
if not self._session_cookie:
|
||||||
|
await self.login()
|
||||||
|
|
||||||
async def check_domain(self, domain: str) -> Dict:
|
async def check_domain(self, domain: str) -> Dict:
|
||||||
"""Check if a domain is blocked by AdGuard Home.
|
"""Check if a domain is blocked by AdGuard Home.
|
||||||
@@ -44,12 +94,26 @@ class AdGuardClient:
|
|||||||
AdGuardConnectionError: If connection to AdGuard Home fails
|
AdGuardConnectionError: If connection to AdGuard Home fails
|
||||||
AdGuardAPIError: If AdGuard Home API returns an error
|
AdGuardAPIError: If AdGuard Home API returns an error
|
||||||
"""
|
"""
|
||||||
|
await self._ensure_authenticated()
|
||||||
url = f"{self.base_url}/filtering/check_host"
|
url = f"{self.base_url}/filtering/check_host"
|
||||||
params = {"name": domain}
|
params = {"name": domain}
|
||||||
|
headers = {}
|
||||||
|
|
||||||
|
if self._session_cookie:
|
||||||
|
headers['Cookie'] = f'agh_session={self._session_cookie}'
|
||||||
|
|
||||||
try:
|
try:
|
||||||
logger.info(f"Checking domain: {domain}")
|
logger.info(f"Checking domain: {domain}")
|
||||||
response = await self.client.get(url, params=params, auth=self._auth)
|
response = await self.client.get(url, params=params, headers=headers)
|
||||||
|
|
||||||
|
# Handle unauthorized response by attempting reauth
|
||||||
|
if response.status_code == 401:
|
||||||
|
logger.info("Session expired, attempting reauth")
|
||||||
|
await self.login()
|
||||||
|
if self._session_cookie:
|
||||||
|
headers['Cookie'] = f'agh_session={self._session_cookie}'
|
||||||
|
response = await self.client.get(url, params=params, headers=headers)
|
||||||
|
|
||||||
response.raise_for_status()
|
response.raise_for_status()
|
||||||
result = response.json()
|
result = response.json()
|
||||||
logger.info(f"Domain check result for {domain}: {result}")
|
logger.info(f"Domain check result for {domain}: {result}")
|
||||||
@@ -75,11 +139,25 @@ class AdGuardClient:
|
|||||||
AdGuardConnectionError: If connection to AdGuard Home fails
|
AdGuardConnectionError: If connection to AdGuard Home fails
|
||||||
AdGuardAPIError: If AdGuard Home API returns an error
|
AdGuardAPIError: If AdGuard Home API returns an error
|
||||||
"""
|
"""
|
||||||
|
await self._ensure_authenticated()
|
||||||
url = f"{self.base_url}/filtering/status"
|
url = f"{self.base_url}/filtering/status"
|
||||||
|
headers = {}
|
||||||
|
|
||||||
|
if self._session_cookie:
|
||||||
|
headers['Cookie'] = f'agh_session={self._session_cookie}'
|
||||||
|
|
||||||
try:
|
try:
|
||||||
logger.info("Getting filter status")
|
logger.info("Getting filter status")
|
||||||
response = await self.client.get(url, auth=self._auth)
|
response = await self.client.get(url, headers=headers)
|
||||||
|
|
||||||
|
# Handle unauthorized response by attempting reauth
|
||||||
|
if response.status_code == 401:
|
||||||
|
logger.info("Session expired, attempting reauth")
|
||||||
|
await self.login()
|
||||||
|
if self._session_cookie:
|
||||||
|
headers['Cookie'] = f'agh_session={self._session_cookie}'
|
||||||
|
response = await self.client.get(url, headers=headers)
|
||||||
|
|
||||||
response.raise_for_status()
|
response.raise_for_status()
|
||||||
result = response.json()
|
result = response.json()
|
||||||
logger.info("Successfully retrieved filter status")
|
logger.info("Successfully retrieved filter status")
|
||||||
@@ -108,12 +186,26 @@ class AdGuardClient:
|
|||||||
AdGuardConnectionError: If connection to AdGuard Home fails
|
AdGuardConnectionError: If connection to AdGuard Home fails
|
||||||
AdGuardAPIError: If AdGuard Home API returns an error
|
AdGuardAPIError: If AdGuard Home API returns an error
|
||||||
"""
|
"""
|
||||||
|
await self._ensure_authenticated()
|
||||||
url = f"{self.base_url}/filtering/whitelist/add"
|
url = f"{self.base_url}/filtering/whitelist/add"
|
||||||
data = {"name": domain}
|
data = {"name": domain}
|
||||||
|
headers = {}
|
||||||
|
|
||||||
|
if self._session_cookie:
|
||||||
|
headers['Cookie'] = f'agh_session={self._session_cookie}'
|
||||||
|
|
||||||
try:
|
try:
|
||||||
logger.info(f"Adding domain to whitelist: {domain}")
|
logger.info(f"Adding domain to whitelist: {domain}")
|
||||||
response = await self.client.post(url, json=data, auth=self._auth)
|
response = await self.client.post(url, json=data, headers=headers)
|
||||||
|
|
||||||
|
# Handle unauthorized response by attempting reauth
|
||||||
|
if response.status_code == 401:
|
||||||
|
logger.info("Session expired, attempting reauth")
|
||||||
|
await self.login()
|
||||||
|
if self._session_cookie:
|
||||||
|
headers['Cookie'] = f'agh_session={self._session_cookie}'
|
||||||
|
response = await self.client.post(url, json=data, headers=headers)
|
||||||
|
|
||||||
response.raise_for_status()
|
response.raise_for_status()
|
||||||
logger.info(f"Successfully added {domain} to whitelist")
|
logger.info(f"Successfully added {domain} to whitelist")
|
||||||
return True
|
return True
|
||||||
|
|||||||
Reference in New Issue
Block a user