wenil/amneziavpnphp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(migrations): Add WARP auto-integration with redsocks and iptables

Browse Source 
- Implemented migration 067 to set up Cloudflare WARP with automatic routing for VPN client TCP traffic through a redsocks proxy.
- Included installation scripts for WARP and redsocks, along with iptables rules for traffic redirection.
- Added detection for X-Ray and patching of its outbound configuration.
- Created uninstall scripts to clean up configurations and remove installed packages.

fix(migrations): Enhance WARP install script for heredoc compatibility

- Implemented migration 068 to fix nested heredoc conflicts and streamline the WARP installation script for panel compatibility.
- Removed duplicate `set -eo pipefail` and adjusted formatting for better readability.

feat(migrations): Auto-detect AIVPN subnet for routing in WARP setup

- Implemented migration 069 to enhance the WARP installation script by adding detection for AIVPN subnets alongside existing AWG container detection.
- Updated routing logic to handle both container IPs and host-level VPN subnets.
- Ensured proper configuration of iptables for seamless traffic routing through the WARP proxy.
This commit is contained in:
infosave2007
2026-04-25 10:40:21 +03:00
parent f04f9dd1cb
commit 809b0ca63d
11 changed files with 3178 additions and 113 deletions
Download Patch File Download Diff File Expand all files Collapse all files
public/index.php
+65
View File
@@ -763,6 +763,71 @@ Router::post('/servers/{id}/protocols/activate', function ($params) {
}
});
// Get WARP status for a server (AJAX)
Router::get('/servers/{id}/warp/status', function ($params) {
requireAuth();
header('Content-Type: application/json');
$serverId = (int) $params['id'];
try {
$server = new VpnServer($serverId);
$serverData = $server->getData();
$user = Auth::user();
if ($serverData['user_id'] != $user['id'] && !Auth::isAdmin()) {
http_response_code(403);
echo json_encode(['error' => 'Forbidden']);
return;
}
$status = InstallProtocolManager::getWarpStatus($server);
echo json_encode(array_merge(['success' => true], $status));
} catch (Exception $e) {
http_response_code(500);
echo json_encode(['success' => false, 'error' => $e->getMessage()]);
}
});
// WARP actions: connect/disconnect/reconnect (AJAX)
Router::post('/servers/{id}/warp/action', function ($params) {
requireAdmin();
header('Content-Type: application/json');
$serverId = (int) $params['id'];
$input = json_decode(file_get_contents('php://input'), true);
$action = $input['action'] ?? '';
if (!in_array($action, ['connect', 'disconnect', 'reconnect'], true)) {
http_response_code(400);
echo json_encode(['error' => 'Invalid action. Allowed: connect, disconnect, reconnect']);
return;
}
try {
$server = new VpnServer($serverId);
$serverData = $server->getData();
$user = Auth::user();
if ($serverData['user_id'] != $user['id'] && !Auth::isAdmin()) {
http_response_code(403);
echo json_encode(['error' => 'Forbidden']);
return;
}
switch ($action) {
case 'connect':
$server->executeCommand('warp-cli --accept-tos connect 2>/dev/null', true);
break;
case 'disconnect':
$server->executeCommand('warp-cli --accept-tos disconnect 2>/dev/null', true);
break;
case 'reconnect':
$server->executeCommand('warp-cli --accept-tos disconnect 2>/dev/null || true', true);
sleep(1);
$server->executeCommand('warp-cli --accept-tos connect 2>/dev/null', true);
break;
}
sleep(2);
$status = InstallProtocolManager::getWarpStatus($server);
echo json_encode(array_merge(['success' => true, 'action' => $action], $status));
} catch (Exception $e) {
http_response_code(500);
echo json_encode(['success' => false, 'error' => $e->getMessage()]);
}
});
// View server
Router::get('/servers/{id}', function ($params) {
requireAuth();