getting there

2025-04-02 00:42:37 -04:00
parent 1482643261
commit 82e534f4d3
22 changed files with 643 additions and 1227 deletions
--- a/app/views/index_views.py
+++ b/app/views/index_views.py
@@ -1,26 +1,27 @@
 from flask import Blueprint, render_template, request, jsonify, current_app
-from database import get_db
 from datetime import datetime
-import requests, pytz
+from db_interface import (
+    get_connection,
+    get_vendor_info,
+    get_all_groups,
+    get_latest_auth_logs,
+)
+import pytz

 index = Blueprint('index', __name__)
-OUI_API_URL = 'https://api.maclookup.app/v2/macs/{}'


-import pytz  # make sure it's imported if not already
-
 def time_ago(dt):
    if not dt:
        return "n/a"

-    local_tz = current_app.config.get('TZ', pytz.utc)
+    # Use configured timezone
+    tz_name = current_app.config.get('APP_TIMEZONE', 'UTC')
+    local_tz = pytz.timezone(tz_name)

-    # If the DB datetime is naive, assume it's already in local server time
    if dt.tzinfo is None:
-        server_tz = pytz.timezone('America/Toronto')  # Or your DB server's real timezone
-        dt = server_tz.localize(dt)
+        dt = dt.replace(tzinfo=pytz.utc)

-    # Convert to the app's configured timezone (from .env)
    dt = dt.astimezone(local_tz)
    now = datetime.now(local_tz)
    diff = now - dt
@@ -29,91 +30,21 @@ def time_ago(dt):
    if seconds < 60:
        return f"{seconds}s ago"
    elif seconds < 3600:
-        return f"{seconds//60}m{seconds%60}s ago"
+        return f"{seconds // 60}m{seconds % 60}s ago"
    elif seconds < 86400:
-        return f"{seconds//3600}h{(seconds%3600)//60}m ago"
+        return f"{seconds // 3600}h{(seconds % 3600) // 60}m ago"
    else:
-        return f"{seconds//86400}d{(seconds%86400)//3600}h ago"
-
-
-
-def lookup_vendor(mac):
-    prefix = mac.replace(":", "").replace("-", "").upper()[:6]
-    db = get_db()
-    cursor = db.cursor(dictionary=True)
-
-    # Try local DB first
-    cursor.execute("SELECT vendor_name FROM mac_vendor_cache WHERE mac_prefix = %s", (prefix,))
-    result = cursor.fetchone()
-
-    if result and result['vendor_name'] != "Unknown Vendor":
-        return {"source": "local", "prefix": prefix, "vendor": result['vendor_name']}
-
-    # Try API fallback
-    try:
-        api_url = OUI_API_URL.format(mac)
-        r = requests.get(api_url, timeout=3)
-        if r.status_code == 200:
-            data = r.json()
-            vendor = data.get("company", "Unknown Vendor")
-
-            # Save to DB
-            cursor.execute("""
-                INSERT INTO mac_vendor_cache (mac_prefix, vendor_name, last_updated)
-                VALUES (%s, %s, NOW())
-                ON DUPLICATE KEY UPDATE vendor_name = VALUES(vendor_name), last_updated = NOW()
-            """, (prefix, vendor))
-            db.commit()
-            return {"source": "api", "prefix": prefix, "vendor": vendor, "raw": data}
-        else:
-            return {"source": "api", "prefix": prefix, "error": f"API returned status {r.status_code}", "raw": r.text}
-    except Exception as e:
-        return {"source": "api", "prefix": prefix, "error": str(e)}
-    finally:
-        cursor.close()
+        return f"{seconds // 86400}d{(seconds % 86400) // 3600}h ago"


@index.route('/')
 def homepage():
-    db = get_db()
-    latest_accept = []
-    latest_reject = []
-    total_users = 0
-    total_groups = 0
+    total_users, total_groups = get_summary_counts()
+    latest_accept = get_latest_auth_logs('Access-Accept', limit=5)
+    latest_reject = get_latest_auth_logs('Access-Reject', limit=5)

-    if db:
-        cursor = db.cursor(dictionary=True)
-
-        cursor.execute("SELECT COUNT(*) AS count FROM radcheck")
-        total_users = cursor.fetchone()['count']
-
-        cursor.execute("SELECT COUNT(DISTINCT groupname) AS count FROM radgroupcheck")
-        total_groups = cursor.fetchone()['count']
-
-        cursor.execute("""
-            SELECT p.username, d.description, p.reply, p.authdate
-            FROM radpostauth p
-            LEFT JOIN rad_description d ON p.username = d.username
-            WHERE p.reply = 'Access-Accept'
-            ORDER BY p.authdate DESC LIMIT 5
-        """)
-        latest_accept = cursor.fetchall()
-        for row in latest_accept:
-            row['ago'] = time_ago(row['authdate'])
-
-        cursor.execute("""
-            SELECT p.username, d.description, p.reply, p.authdate
-            FROM radpostauth p
-            LEFT JOIN rad_description d ON p.username = d.username
-            WHERE p.reply = 'Access-Reject'
-            ORDER BY p.authdate DESC LIMIT 5
-        """)
-        latest_reject = cursor.fetchall()
-        for row in latest_reject:
-            row['ago'] = time_ago(row['authdate'])
-
-        cursor.close()
-        db.close()
+    for row in latest_accept + latest_reject:
+        row['ago'] = time_ago(row['timestamp'])

    return render_template('index.html',
                           total_users=total_users,
@@ -124,66 +55,15 @@ def homepage():

@index.route('/stats')
 def stats():
-    db = get_db()
-    accept_entries = []
-    reject_entries = []
-    available_groups = []
+    accept_entries = get_latest_auth_logs('Access-Accept', limit=25)
+    reject_entries = get_latest_auth_logs('Access-Reject', limit=25)
+    available_groups = get_all_groups()

-    if db:
-        cursor = db.cursor(dictionary=True)
-
-        # Fetch available VLANs
-        cursor.execute("SELECT DISTINCT groupname FROM radgroupcheck ORDER BY groupname")
-        available_groups = [row['groupname'] for row in cursor.fetchall()]
-
-        # Get existing users and map to group
-        cursor.execute("""
-            SELECT r.username, g.groupname
-            FROM radcheck r
-            LEFT JOIN radusergroup g ON r.username = g.username
-        """)
-        existing_user_map = {
-            row['username'].replace(":", "").replace("-", "").upper(): row['groupname']
-            for row in cursor.fetchall()
-        }
-
-        # Access-Reject entries
-        cursor.execute("""
-            SELECT p.username, d.description, p.reply, p.authdate
-            FROM radpostauth p
-            LEFT JOIN rad_description d ON p.username = d.username
-            WHERE p.reply = 'Access-Reject'
-            ORDER BY p.authdate DESC LIMIT 25
-        """)
-        reject_entries = cursor.fetchall()
-        for row in reject_entries:
-            normalized = row['username'].replace(":", "").replace("-", "").upper()
-            row['vendor'] = lookup_vendor(row['username'])['vendor']
-            row['ago'] = time_ago(row['authdate'])
-
-            if normalized in existing_user_map:
-                row['already_exists'] = True
-                row['existing_vlan'] = existing_user_map[normalized]
-            else:
-                row['already_exists'] = False
-                row['existing_vlan'] = None
-                print(f"⚠ Not found in radcheck: {row['username']} → {normalized}")
-
-        # Access-Accept entries
-        cursor.execute("""
-            SELECT p.username, d.description, p.reply, p.authdate
-            FROM radpostauth p
-            LEFT JOIN rad_description d ON p.username = d.username
-            WHERE p.reply = 'Access-Accept'
-            ORDER BY p.authdate DESC LIMIT 25
-        """)
-        accept_entries = cursor.fetchall()
-        for row in accept_entries:
-            row['vendor'] = lookup_vendor(row['username'])['vendor']
-            row['ago'] = time_ago(row['authdate'])
-
-        cursor.close()
-        db.close()
+    for entry in accept_entries + reject_entries:
+        entry['ago'] = time_ago(entry['timestamp'])
+        entry['vendor'] = get_vendor_info(entry['mac_address'])
+        entry['already_exists'] = entry.get('vlan_id') is not None
+        entry['existing_vlan'] = entry.get('vlan_id') if entry['already_exists'] else None

    return render_template('stats.html',
                           accept_entries=accept_entries,
@@ -191,13 +71,24 @@ def stats():
                           available_groups=available_groups)


-
-
-
@index.route('/lookup_mac', methods=['POST'])
 def lookup_mac():
    mac = request.form.get('mac', '').strip()
    if not mac:
        return jsonify({"error": "MAC address is required"}), 400

-    return jsonify(lookup_vendor(mac))
+    return jsonify(get_vendor_info(mac))
+
+
+def get_summary_counts():
+    conn = get_connection()
+    cursor = conn.cursor(dictionary=True)
+
+    cursor.execute("SELECT COUNT(*) AS count FROM users")
+    total_users = cursor.fetchone()['count']
+
+    cursor.execute("SELECT COUNT(*) AS count FROM groups")
+    total_groups = cursor.fetchone()['count']
+
+    cursor.close()
+    return total_users, total_groups