use std::future::Future; use std::pin::Pin; use anyhow::{bail, Error}; use futures::*; use http::request::Parts; use http::Response; use hyper::{Body, Method, StatusCode}; use http::HeaderMap; use proxmox_lang::try_block; use proxmox_router::{RpcEnvironmentType, UserInformation}; use proxmox_sys::fs::CreateOptions; use proxmox_rest_server::{daemon, AuthError, ApiConfig, RestServer, RestEnvironment, ServerAdapter}; use proxmox_backup::server::auth::check_pbs_auth; use proxmox_backup::auth_helpers::*; use proxmox_backup::config; fn main() { pbs_tools::setup_libc_malloc_opts(); proxmox_backup::tools::setup_safe_path_env(); if let Err(err) = proxmox_async::runtime::main(run()) { eprintln!("Error: {}", err); std::process::exit(-1); } } struct ProxmoxBackupApiAdapter; impl ServerAdapter for ProxmoxBackupApiAdapter { fn get_index( &self, _env: RestEnvironment, _parts: Parts, ) -> Pin> + Send>> { Box::pin(async move { let index = "

Proxmox Backup API Server

"; Response::builder() .status(StatusCode::OK) .header(hyper::header::CONTENT_TYPE, "text/html") .body(index.into()) .unwrap() }) } fn check_auth<'a>( &'a self, headers: &'a HeaderMap, method: &'a Method, ) -> Pin), AuthError>> + Send + 'a>> { Box::pin(async move { check_pbs_auth(headers, method).await }) } } async fn run() -> Result<(), Error> { if let Err(err) = syslog::init( syslog::Facility::LOG_DAEMON, log::LevelFilter::Info, Some("proxmox-backup-api")) { bail!("unable to inititialize syslog - {}", err); } config::create_configdir()?; config::update_self_signed_cert(false)?; proxmox_backup::server::create_run_dir()?; proxmox_backup::server::create_state_dir()?; proxmox_backup::server::create_active_operations_dir()?; proxmox_backup::server::jobstate::create_jobstate_dir()?; proxmox_backup::tape::create_tape_status_dir()?; proxmox_backup::tape::create_drive_state_dir()?; proxmox_backup::tape::create_changer_state_dir()?; proxmox_backup::tape::create_drive_lock_dir()?; if let Err(err) = generate_auth_key() { bail!("unable to generate auth key - {}", err); } let _ = private_auth_key(); // load with lazy_static if let Err(err) = generate_csrf_key() { bail!("unable to generate csrf key - {}", err); } let _ = csrf_secret(); // load with lazy_static let mut config = ApiConfig::new( pbs_buildcfg::JS_DIR, &proxmox_backup::api2::ROUTER, RpcEnvironmentType::PRIVILEGED, ProxmoxBackupApiAdapter, )?; let backup_user = pbs_config::backup_user()?; let mut commando_sock = proxmox_rest_server::CommandSocket::new(proxmox_rest_server::our_ctrl_sock(), backup_user.gid); let dir_opts = CreateOptions::new().owner(backup_user.uid).group(backup_user.gid); let file_opts = CreateOptions::new().owner(backup_user.uid).group(backup_user.gid); config.enable_access_log( pbs_buildcfg::API_ACCESS_LOG_FN, Some(dir_opts.clone()), Some(file_opts.clone()), &mut commando_sock, )?; config.enable_auth_log( pbs_buildcfg::API_AUTH_LOG_FN, Some(dir_opts.clone()), Some(file_opts.clone()), &mut commando_sock, )?; let rest_server = RestServer::new(config); proxmox_rest_server::init_worker_tasks(pbs_buildcfg::PROXMOX_BACKUP_LOG_DIR_M!().into(), file_opts.clone())?; // http server future: let server = daemon::create_daemon( ([127,0,0,1], 82).into(), move |listener| { let incoming = hyper::server::conn::AddrIncoming::from_listener(listener)?; Ok(async { daemon::systemd_notify(daemon::SystemdNotify::Ready)?; hyper::Server::builder(incoming) .serve(rest_server) .with_graceful_shutdown(proxmox_rest_server::shutdown_future()) .map_err(Error::from) .await }) }, ); proxmox_rest_server::write_pid(pbs_buildcfg::PROXMOX_BACKUP_API_PID_FN)?; let init_result: Result<(), Error> = try_block!({ proxmox_rest_server::register_task_control_commands(&mut commando_sock)?; commando_sock.spawn()?; proxmox_rest_server::catch_shutdown_signal()?; proxmox_rest_server::catch_reload_signal()?; Ok(()) }); if let Err(err) = init_result { bail!("unable to start daemon - {}", err); } server.await?; log::info!("server shutting down, waiting for active workers to complete"); proxmox_rest_server::last_worker_future().await?; log::info!("done - exit server"); Ok(()) }