gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ef936f1295
secubox-openwrt/luci-app-network-modes/htdocs/luci-static/resources/view/network-modes/doublenat.js
CyberMind-FR de40c8e533 feat: Release v0.4.3 - Dual menu access and enhanced permissions 
This release adds dual menu access for Network Modes (both SecuBox and
LuCI Network menus) and significantly expands RPCD permissions for all
mode configuration operations.

## Network Modes - Dual Menu Access (2 files)
- Added Network Modes to standard LuCI Network menu (admin/network/modes)
- Maintains existing SecuBox menu location (admin/secubox/network/modes)
- Users can now access Network Modes from both locations
- Menu order: 60 in Network menu, 10 in SecuBox Network category

## Network Modes - Enhanced Permissions (1 file)
Added 13+ new RPCD methods to ACL for complete mode management:

Read permissions:
- preview_changes
- sniffer_config, ap_config, relay_config, router_config
- travel_config, doublenat_config, multiwan_config, vpnrelay_config
- travel_scan_networks

Write permissions:
- apply_mode, confirm_mode, rollback
- update_settings
- generate_wireguard_keys, apply_wireguard_config
- apply_mtu_clamping, enable_tcp_bbr
- add_vhost, generate_config

## Network Modes - View Updates (11 files)
Updated all mode views for consistency:
- helpers.js: 28 lines refactored
- overview.js: Enhanced view structure
- All mode views: wizard, router, multiwan, doublenat, accesspoint,
  relay, vpnrelay, travel, sniffer

## Theme Enhancements (1 file)
- theme.js: 89 lines added
- Enhanced theme initialization and configuration
- Improved component styling support

## SecuBox Dashboard (2 files)
- Updated dashboard.js and modules.js
- Improved view rendering and integration

## System Hub (3 files)
- Enhanced logs.js, overview.js, services.js
- Better view consistency and functionality

Summary:
- 19 files changed (+282, -36)
- Dual menu access for Network Modes
- 13+ new RPCD permission methods
- All network mode views updated
- Theme significantly enhanced

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2025-12-28 19:24:40 +01:00

197 lines
6.6 KiB
JavaScript
Raw Blame History

'use strict';
'require view';
'require ui';
'require network-modes.api as api';
'require network-modes.helpers as helpers';
'require secubox-theme/theme as Theme';
var nmLang = (typeof L !== 'undefined' && L.env && L.env.lang) ||
(document.documentElement && document.documentElement.getAttribute('lang')) ||
(navigator.language ? navigator.language.split('-')[0] : 'en');
Theme.init({ language: nmLang });
return view.extend({
title: _('Double NAT Mode'),
load: function() {
return api.getDoubleNatConfig();
},
render: function(data) {
var cfg = data || {};
var wan = cfg.wan || {};
var lan = cfg.lan || {};
var container = E('div', { 'class': 'network-modes-dashboard doublenat-mode' }, [
E('link', { 'rel': 'stylesheet', 'href': L.resource('secubox-theme/secubox-theme.css') }),
E('link', { 'rel': 'stylesheet', 'href': L.resource('network-modes/dashboard.css') }),
helpers.createNavigationTabs('doublenat'),
helpers.createHero({
icon: '🔁',
title: _('Double NAT'),
subtitle: _('Operate behind an ISP router with a second isolated LAN, guest network, and hardened perimeter.'),
actions: [
E('button', {
'class': 'nm-btn nm-btn-primary',
'data-action': 'doublenat-save',
'type': 'button'
}, '💾 ' + _('Save Settings')),
E('button', {
'class': 'nm-btn',
'type': 'button',
'click': ui.createHandlerFn(helpers, helpers.showGeneratedConfig, 'doublenat')
}, '📝 ' + _('Preview Config'))
]
}),
this.renderWanSection(wan),
this.renderLanSection(lan, cfg),
this.renderSecuritySection(cfg)
]);
container.querySelectorAll('.nm-toggle-switch').forEach(function(toggle) {
toggle.addEventListener('click', function() {
this.classList.toggle('active');
});
});
this.bindActions(container);
return container;
},
renderWanSection: function(wan) {
return helpers.createSection({
icon: '🌐',
title: _('Upstream (ISP box)'),
body: [
E('div', { 'class': 'nm-form-grid' }, [
E('div', { 'class': 'nm-form-group' }, [
E('label', { 'class': 'nm-form-label' }, _('WAN Interface')),
E('input', {
'class': 'nm-input',
'id': 'dn-wan-interface',
'value': wan.interface || 'eth1'
})
]),
E('div', { 'class': 'nm-form-group' }, [
E('label', { 'class': 'nm-form-label' }, _('Protocol')),
E('select', { 'class': 'nm-select', 'id': 'dn-wan-proto' }, [
E('option', { 'value': 'dhcp', 'selected': (wan.protocol || 'dhcp') === 'dhcp' }, _('DHCP Client')),
E('option', { 'value': 'static', 'selected': wan.protocol === 'static' }, _('Static IP')),
E('option', { 'value': 'pppoe', 'selected': wan.protocol === 'pppoe' }, _('PPPoE'))
])
])
]),
E('p', { 'class': 'nm-text-muted' }, _('Keep WAN as DHCP client to obtain an address from the ISP box. Use DMZ on the ISP router to point to SecuBox for best results.'))
]
});
},
renderLanSection: function(lan, cfg) {
return helpers.createSection({
icon: '🏠',
title: _('LAN & Guest Segments'),
body: [
E('div', { 'class': 'nm-form-grid' }, [
E('div', { 'class': 'nm-form-group' }, [
E('label', { 'class': 'nm-form-label' }, _('LAN Interface')),
E('input', {
'class': 'nm-input',
'id': 'dn-lan-interface',
'value': lan.interface || 'br-lan'
})
]),
E('div', { 'class': 'nm-form-group' }, [
E('label', { 'class': 'nm-form-label' }, _('LAN IP')),
E('input', {
'class': 'nm-input',
'id': 'dn-lan-ip',
'value': lan.ipaddr || '10.10.0.1'
})
]),
E('div', { 'class': 'nm-form-group' }, [
E('label', { 'class': 'nm-form-label' }, _('LAN Netmask')),
E('input', {
'class': 'nm-input',
'id': 'dn-lan-netmask',
'value': lan.netmask || '255.255.255.0'
})
]),
E('div', { 'class': 'nm-form-group' }, [
E('label', { 'class': 'nm-form-label' }, _('Guest bridge name')),
E('input', {
'class': 'nm-input',
'id': 'dn-guest-bridge',
'value': cfg.guest_network || 'br-guest'
})
])
])
]
});
},
renderSecuritySection: function(cfg) {
return helpers.createSection({
icon: '🛡️',
title: _('Security Hardening'),
body: [
E('div', { 'class': 'nm-toggle-list' }, [
this.renderToggle(_('Disable UPnP on downstream LAN'), 'Prevents auto-forwarding from LAN devices', 'dn-upnp', cfg.upnp_enabled && cfg.upnp_enabled !== '0'),
this.renderToggle(_('Isolate guest bridge'), 'Block traffic between guest and LAN networks', 'dn-isolate-guest', cfg.isolate_guest === 1 || cfg.isolate_guest === '1')
]),
E('div', { 'class': 'nm-form-group', 'style': 'margin-top: 16px;' }, [
E('label', { 'class': 'nm-form-label' }, _('DMZ Host on ISP router')),
E('input', {
'class': 'nm-input',
'id': 'dn-dmz-host',
'value': cfg.dmz_host || '',
'placeholder': _('192.168.1.254 (optional)')
}),
E('p', { 'class': 'nm-text-muted' }, _('Configure the ISP router DMZ to forward everything to this LAN IP.'))
])
]
});
},
renderToggle: function(label, desc, id, active) {
return E('div', { 'class': 'nm-toggle' }, [
E('div', { 'class': 'nm-toggle-info' }, [
E('span', { 'class': 'nm-toggle-icon' }, '⚙️'),
E('div', {}, [
E('div', { 'class': 'nm-toggle-label' }, label),
E('div', { 'class': 'nm-toggle-desc' }, desc)
])
]),
E('div', {
'class': 'nm-toggle-switch' + (active ? ' active' : ''),
'id': id
})
]);
},
bindActions: function(container) {
var saveBtn = container.querySelector('[data-action="doublenat-save"]');
if (saveBtn)
saveBtn.addEventListener('click', ui.createHandlerFn(this, 'saveDoubleNatSettings', container));
},
saveDoubleNatSettings: function(container) {
var payload = {
wan_interface: (container.querySelector('#dn-wan-interface') || {}).value,
wan_protocol: (container.querySelector('#dn-wan-proto') || {}).value,
lan_interface: (container.querySelector('#dn-lan-interface') || {}).value,
lan_ip: (container.querySelector('#dn-lan-ip') || {}).value,
lan_netmask: (container.querySelector('#dn-lan-netmask') || {}).value,
guest_network: (container.querySelector('#dn-guest-bridge') || {}).value,
isolate_guest: helpers.isToggleActive(container.querySelector('#dn-isolate-guest')) ? 1 : 0,
upnp_enabled: helpers.isToggleActive(container.querySelector('#dn-upnp')) ? 1 : 0,
dmz_host: (container.querySelector('#dn-dmz-host') || {}).value
};
return helpers.persistSettings('doublenat', payload);
},
handleSaveApply: null,
handleSave: null,
handleReset: null
});
Reference in New Issue View Git Blame Copy Permalink