3x-ui/web/controller/setting.go

package controller

import (
	"errors"
	"time"

	"github.com/mhsanaei/3x-ui/v2/util/crypto"
	"github.com/mhsanaei/3x-ui/v2/web/entity"
	"github.com/mhsanaei/3x-ui/v2/web/service"
	"github.com/mhsanaei/3x-ui/v2/web/session"

	"github.com/gin-gonic/gin"
)

// updateUserForm represents the form for updating user credentials.
type updateUserForm struct {
	OldUsername string `json:"oldUsername" form:"oldUsername"`
	OldPassword string `json:"oldPassword" form:"oldPassword"`
	NewUsername string `json:"newUsername" form:"newUsername"`
	NewPassword string `json:"newPassword" form:"newPassword"`
}

// SettingController handles settings and user management operations.
type SettingController struct {
	settingService service.SettingService
	userService    service.UserService
	panelService   service.PanelService
}

// NewSettingController creates a new SettingController and initializes its routes.
func NewSettingController(g *gin.RouterGroup) *SettingController {
	a := &SettingController{}
	a.initRouter(g)
	return a
}

// initRouter sets up the routes for settings management.
func (a *SettingController) initRouter(g *gin.RouterGroup) {
	g = g.Group("/setting")

	g.POST("/all", a.getAllSetting)
	g.POST("/defaultSettings", a.getDefaultSettings)
	g.POST("/update", a.updateSetting)
	g.POST("/updateUser", a.updateUser)
	g.POST("/restartPanel", a.restartPanel)
	g.GET("/getDefaultJsonConfig", a.getDefaultXrayConfig)
}

// getAllSetting retrieves all current settings.
func (a *SettingController) getAllSetting(c *gin.Context) {
	allSetting, err := a.settingService.GetAllSetting()
	if err != nil {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.getSettings"), err)
		return
	}
	jsonObj(c, allSetting, nil)
}

// getDefaultSettings retrieves the default settings based on the host.
func (a *SettingController) getDefaultSettings(c *gin.Context) {
	result, err := a.settingService.GetDefaultSettings(c.Request.Host)
	if err != nil {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.getSettings"), err)
		return
	}
	jsonObj(c, result, nil)
}

// updateSetting updates all settings with the provided data.
func (a *SettingController) updateSetting(c *gin.Context) {
	allSetting := &entity.AllSetting{}
	err := c.ShouldBind(allSetting)
	if err != nil {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifySettings"), err)
		return
	}
	err = a.settingService.UpdateAllSetting(allSetting)
	jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifySettings"), err)
}

// updateUser updates the current user's username and password.
func (a *SettingController) updateUser(c *gin.Context) {
	form := &updateUserForm{}
	err := c.ShouldBind(form)
	if err != nil {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifySettings"), err)
		return
	}
	user := session.GetLoginUser(c)
	if user.Username != form.OldUsername || !crypto.CheckPasswordHash(user.Password, form.OldPassword) {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifyUserError"), errors.New(I18nWeb(c, "pages.settings.toasts.originalUserPassIncorrect")))
		return
	}
	if form.NewUsername == "" || form.NewPassword == "" {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifyUserError"), errors.New(I18nWeb(c, "pages.settings.toasts.userPassMustBeNotEmpty")))
		return
	}
	err = a.userService.UpdateUser(user.Id, form.NewUsername, form.NewPassword)
	if err == nil {
		user.Username = form.NewUsername
		user.Password, _ = crypto.HashPasswordAsBcrypt(form.NewPassword)
		if saveErr := session.SetLoginUser(c, user); saveErr != nil {
			err = saveErr
		}
	}
	jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifyUser"), err)
}

// restartPanel restarts the panel service after a delay.
func (a *SettingController) restartPanel(c *gin.Context) {
	err := a.panelService.RestartPanel(time.Second * 3)
	jsonMsg(c, I18nWeb(c, "pages.settings.restartPanelSuccess"), err)
}

// getDefaultXrayConfig retrieves the default Xray configuration.
func (a *SettingController) getDefaultXrayConfig(c *gin.Context) {
	defaultJsonConfig, err := a.settingService.GetDefaultXrayConfig()
	if err != nil {
		jsonMsg(c, I18nWeb(c, "pages.settings.toasts.getSettings"), err)
		return
	}
	jsonObj(c, defaultJsonConfig, nil)
}
3x-ui 2023-02-09 19:18:06 +00:00			`package controller`

			`import (`
			`"errors"`
			`"time"`
Some fixes and improvements (#1997) * [refactor] api controller * [fix] access log path better to not hardcode the access log path, maybe some ppl dont want to use the default ./access.log * [fix] set select options from logs paths in xray settings * [update] .gitignore * [lint] all .go files * [update] use status code for jsonMsg and 401 to unauthorize * [update] handle response status code via axios * [fix] set correct value if log paths is set to 'none' we also use the default value for the paths if its set to none * [fix] iplimit - only warning access log if f2b is installed 2024-03-10 21:31:24 +00:00
go package correction v2 2025-09-19 08:05:43 +00:00			`"github.com/mhsanaei/3x-ui/v2/util/crypto"`
			`"github.com/mhsanaei/3x-ui/v2/web/entity"`
			`"github.com/mhsanaei/3x-ui/v2/web/service"`
			`"github.com/mhsanaei/3x-ui/v2/web/session"`
alireza 2023-03-17 16:07:49 +00:00
			`"github.com/gin-gonic/gin"`
3x-ui 2023-02-09 19:18:06 +00:00			`)`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// updateUserForm represents the form for updating user credentials.`
3x-ui 2023-02-09 19:18:06 +00:00			`type updateUserForm struct {`
			OldUsername string `json:"oldUsername" form:"oldUsername"`
			OldPassword string `json:"oldPassword" form:"oldPassword"`
			NewUsername string `json:"newUsername" form:"newUsername"`
			NewPassword string `json:"newPassword" form:"newPassword"`
			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// SettingController handles settings and user management operations.`
3x-ui 2023-02-09 19:18:06 +00:00			`type SettingController struct {`
			`settingService service.SettingService`
			`userService service.UserService`
			`panelService service.PanelService`
			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// NewSettingController creates a new SettingController and initializes its routes.`
3x-ui 2023-02-09 19:18:06 +00:00			`func NewSettingController(g gin.RouterGroup) SettingController {`
			`a := &SettingController{}`
			`a.initRouter(g)`
			`return a`
			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// initRouter sets up the routes for settings management.`
3x-ui 2023-02-09 19:18:06 +00:00			`func (a SettingController) initRouter(g gin.RouterGroup) {`
			`g = g.Group("/setting")`

			`g.POST("/all", a.getAllSetting)`
alireza update pack Co-Authored-By: Alireza Ahmadi <alireza7@gmail.com> 2023-04-09 19:43:18 +00:00			`g.POST("/defaultSettings", a.getDefaultSettings)`
3x-ui 2023-02-09 19:18:06 +00:00			`g.POST("/update", a.updateSetting)`
			`g.POST("/updateUser", a.updateUser)`
			`g.POST("/restartPanel", a.restartPanel)`
separate xray page #1286 2023-12-04 18:20:46 +00:00			`g.GET("/getDefaultJsonConfig", a.getDefaultXrayConfig)`
3x-ui 2023-02-09 19:18:06 +00:00			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// getAllSetting retrieves all current settings.`
3x-ui 2023-02-09 19:18:06 +00:00			`func (a SettingController) getAllSetting(c gin.Context) {`
			`allSetting, err := a.settingService.GetAllSetting()`
			`if err != nil {`
rename I18n to I18nWeb 2023-05-20 22:59:27 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.getSettings"), err)`
3x-ui 2023-02-09 19:18:06 +00:00			`return`
			`}`
			`jsonObj(c, allSetting, nil)`
			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// getDefaultSettings retrieves the default settings based on the host.`
alireza update pack Co-Authored-By: Alireza Ahmadi <alireza7@gmail.com> 2023-04-09 19:43:18 +00:00			`func (a SettingController) getDefaultSettings(c gin.Context) {`
pagination and sub URI support #1300 2023-12-08 16:18:51 +00:00			`result, err := a.settingService.GetDefaultSettings(c.Request.Host)`
			`if err != nil {`
			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.getSettings"), err)`
			`return`
[feature] separate subscription service Co-Authored-By: Alireza Ahmadi <alireza7@gmail.com> 2023-05-22 14:36:34 +00:00			`}`
alireza update pack Co-Authored-By: Alireza Ahmadi <alireza7@gmail.com> 2023-04-09 19:43:18 +00:00			`jsonObj(c, result, nil)`
			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// updateSetting updates all settings with the provided data.`
3x-ui 2023-02-09 19:18:06 +00:00			`func (a SettingController) updateSetting(c gin.Context) {`
			`allSetting := &entity.AllSetting{}`
			`err := c.ShouldBind(allSetting)`
			`if err != nil {`
rename I18n to I18nWeb 2023-05-20 22:59:27 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifySettings"), err)`
3x-ui 2023-02-09 19:18:06 +00:00			`return`
			`}`
			`err = a.settingService.UpdateAllSetting(allSetting)`
rename I18n to I18nWeb 2023-05-20 22:59:27 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifySettings"), err)`
3x-ui 2023-02-09 19:18:06 +00:00			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// updateUser updates the current user's username and password.`
3x-ui 2023-02-09 19:18:06 +00:00			`func (a SettingController) updateUser(c gin.Context) {`
			`form := &updateUserForm{}`
			`err := c.ShouldBind(form)`
			`if err != nil {`
rename I18n to I18nWeb 2023-05-20 22:59:27 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifySettings"), err)`
3x-ui 2023-02-09 19:18:06 +00:00			`return`
			`}`
			`user := session.GetLoginUser(c)`
feat: hashing user passwords solves problems #2944, #2783 2025-05-03 09:27:53 +00:00			`if user.Username != form.OldUsername \|\| !crypto.CheckPasswordHash(user.Password, form.OldPassword) {`
chore: toasts translation refactoring 2025-05-09 03:46:29 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifyUserError"), errors.New(I18nWeb(c, "pages.settings.toasts.originalUserPassIncorrect")))`
3x-ui 2023-02-09 19:18:06 +00:00			`return`
			`}`
			`if form.NewUsername == "" \|\| form.NewPassword == "" {`
chore: toasts translation refactoring 2025-05-09 03:46:29 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifyUserError"), errors.New(I18nWeb(c, "pages.settings.toasts.userPassMustBeNotEmpty")))`
3x-ui 2023-02-09 19:18:06 +00:00			`return`
			`}`
			`err = a.userService.UpdateUser(user.Id, form.NewUsername, form.NewPassword)`
			`if err == nil {`
			`user.Username = form.NewUsername`
feat: hashing user passwords solves problems #2944, #2783 2025-05-03 09:27:53 +00:00			`user.Password, _ = crypto.HashPasswordAsBcrypt(form.NewPassword)`
ws/inbounds: realtime fixes + perf for 10k+ client inbounds (#4123) * ws/inbounds: realtime fixes + perf for 10k+ client inbounds - hub: dedup, throttle, panic-restart, deadlock fix, race tests - client: backoff cap + slow-retry instead of giving up - broadcast: delta-only payload, count-based invalidate fallback - filter: fix empty online list (Inbound has no .id, use dbInbound.toInbound) - perf: O(N²)→O(N) traffic merge, bulk delete, /setEnable endpoint - traffic: monotonic all_time + UI clamp + propagate in delta handler - session: persist on update/logout (fixes logout-after-password-change) - ui: protocol tags flex, traffic bar normalize * Remove hub_test.go file * fix: ws hub, inbound service, and frontend correctness - propagate DelInbound error on disable path in SetInboundEnable - skip empty emails in updateClientTraffics to avoid constraint violations - use consistent IN ? clause, drop redundant ErrRecordNotFound guards - Hub.Unregister: direct removeClient fallback when channel is full - applyClientStatsDelta: O(1) email lookup via per-inbound Map cache - WS payload size check: Blob.size instead of .length for real byte count * fix: chunk large IN ? queries and fix IPv6 same-origin check * fix: chunk large IN ? queries and fix IPv6 same-origin check * fix: unify clientStats cache, throttle clarity, hub constants * fix(ui): align traffic/expiry cell columns across all rows * style(ui): redesign outbounds table for visual consistency * style(ui): redesign routing table for visual consistency * fix: * fix: * fix: * fix: * fix: * fix: font * refactor: simplify outbound tone functions for consistency and maintainability --------- Co-authored-by: lolka1333 <test123@gmail.com> 2026-05-05 15:27:49 +00:00			`if saveErr := session.SetLoginUser(c, user); saveErr != nil {`
			`err = saveErr`
			`}`
3x-ui 2023-02-09 19:18:06 +00:00			`}`
rename I18n to I18nWeb 2023-05-20 22:59:27 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.modifyUser"), err)`
3x-ui 2023-02-09 19:18:06 +00:00			`}`

docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// restartPanel restarts the panel service after a delay.`
3x-ui 2023-02-09 19:18:06 +00:00			`func (a SettingController) restartPanel(c gin.Context) {`
			`err := a.panelService.RestartPanel(time.Second * 3)`
chore: toasts translation refactoring 2025-05-09 03:46:29 +00:00			`jsonMsg(c, I18nWeb(c, "pages.settings.restartPanelSuccess"), err)`
3x-ui 2023-02-09 19:18:06 +00:00			`}`
secret token thanks to @HarlyquinForest 2023-04-21 15:30:14 +00:00
docs: add comments for all functions 2025-09-20 07:35:50 +00:00			`// getDefaultXrayConfig retrieves the default Xray configuration.`
separate xray page #1286 2023-12-04 18:20:46 +00:00			`func (a SettingController) getDefaultXrayConfig(c gin.Context) {`
			`defaultJsonConfig, err := a.settingService.GetDefaultXrayConfig()`
			`if err != nil {`
			`jsonMsg(c, I18nWeb(c, "pages.settings.toasts.getSettings"), err)`
			`return`
			`}`
			`jsonObj(c, defaultJsonConfig, nil)`
			`}`