mirror of
https://github.com/tailscale/tailscale.git
synced 2025-04-18 12:32:13 +00:00
f9550e0bed
Use the packet filter rules to determine if any device is allowed to connect on port 5252. This does not check whether a specific device can connect (since we typically don't know the source device when this is used). Nor does it specifically check for wide-open ACLs, which is something we may provide a warning about in the future. Update the login popover content to display information when the src device is unable to connect to the dst device over its Tailscale IP. If we know it's an ACL issue, mention that, otherwise list a couple of things to check. In both cases, link to a placeholder URL to get more information about web client connection issues. Updates #10261 Signed-off-by: Will Norris <will@tailscale.com>
237 lines
6.0 KiB
TypeScript
237 lines
6.0 KiB
TypeScript
// Copyright (c) Tailscale Inc & AUTHORS
|
|
// SPDX-License-Identifier: BSD-3-Clause
|
|
|
|
import { useCallback, useEffect, useMemo, useState } from "react"
|
|
import { apiFetch, setUnraidCsrfToken } from "src/api"
|
|
import { ExitNode, noExitNode, runAsExitNode } from "src/hooks/exit-nodes"
|
|
import { VersionInfo } from "src/hooks/self-update"
|
|
import { assertNever } from "src/util"
|
|
|
|
export type NodeData = {
|
|
Profile: UserProfile
|
|
Status: NodeState
|
|
DeviceName: string
|
|
OS: string
|
|
IP: string
|
|
IPv6: string
|
|
ID: string
|
|
KeyExpiry: string
|
|
KeyExpired: boolean
|
|
UsingExitNode?: ExitNode
|
|
AdvertisingExitNode: boolean
|
|
AdvertisedRoutes?: SubnetRoute[]
|
|
TUNMode: boolean
|
|
IsSynology: boolean
|
|
DSMVersion: number
|
|
IsUnraid: boolean
|
|
UnraidToken: string
|
|
IPNVersion: string
|
|
ClientVersion?: VersionInfo
|
|
URLPrefix: string
|
|
DomainName: string
|
|
TailnetName: string
|
|
IsTagged: boolean
|
|
Tags: string[]
|
|
RunningSSHServer: boolean
|
|
ControlAdminURL: string
|
|
LicensesURL: string
|
|
Features: { [key in Feature]: boolean } // value is true if given feature is available on this client
|
|
ACLAllowsAnyIncomingTraffic: boolean
|
|
}
|
|
|
|
type NodeState =
|
|
| "NoState"
|
|
| "NeedsLogin"
|
|
| "NeedsMachineAuth"
|
|
| "Stopped"
|
|
| "Starting"
|
|
| "Running"
|
|
|
|
export type UserProfile = {
|
|
LoginName: string
|
|
DisplayName: string
|
|
ProfilePicURL: string
|
|
}
|
|
|
|
export type SubnetRoute = {
|
|
Route: string
|
|
Approved: boolean
|
|
}
|
|
|
|
export type Feature =
|
|
| "advertise-exit-node"
|
|
| "advertise-routes"
|
|
| "use-exit-node"
|
|
| "ssh"
|
|
| "auto-update"
|
|
|
|
export const featureDescription = (f: Feature) => {
|
|
switch (f) {
|
|
case "advertise-exit-node":
|
|
return "Advertising as an exit node"
|
|
case "advertise-routes":
|
|
return "Advertising subnet routes"
|
|
case "use-exit-node":
|
|
return "Using an exit node"
|
|
case "ssh":
|
|
return "Running a Tailscale SSH server"
|
|
case "auto-update":
|
|
return "Auto updating client versions"
|
|
default:
|
|
assertNever(f)
|
|
}
|
|
}
|
|
|
|
/**
|
|
* NodeUpdaters provides a set of mutation functions for a node.
|
|
*
|
|
* These functions handle both making the requested change, as well as
|
|
* refreshing the app's node data state upon completion to reflect any
|
|
* relevant changes in the UI.
|
|
*/
|
|
export type NodeUpdaters = {
|
|
/**
|
|
* patchPrefs updates node preferences.
|
|
* Only provided preferences will be updated.
|
|
* Similar to running the tailscale set command in the CLI.
|
|
*/
|
|
patchPrefs: (d: PrefsPATCHData) => Promise<void>
|
|
/**
|
|
* postExitNode updates the node's status as either using or
|
|
* running as an exit node.
|
|
*/
|
|
postExitNode: (d: ExitNode) => Promise<void>
|
|
/**
|
|
* postSubnetRoutes updates the node's advertised subnet routes.
|
|
*/
|
|
postSubnetRoutes: (d: string[]) => Promise<void>
|
|
}
|
|
|
|
type PrefsPATCHData = {
|
|
RunSSHSet?: boolean
|
|
RunSSH?: boolean
|
|
}
|
|
|
|
type RoutesPOSTData = {
|
|
UseExitNode?: string
|
|
AdvertiseExitNode?: boolean
|
|
AdvertiseRoutes?: string[]
|
|
}
|
|
|
|
// useNodeData returns basic data about the current node.
|
|
export default function useNodeData() {
|
|
const [data, setData] = useState<NodeData>()
|
|
const [isPosting, setIsPosting] = useState<boolean>(false)
|
|
|
|
const refreshData = useCallback(
|
|
() =>
|
|
apiFetch("/data", "GET")
|
|
.then((r) => r.json())
|
|
.then((d: NodeData) => {
|
|
setData(d)
|
|
setUnraidCsrfToken(d.IsUnraid ? d.UnraidToken : undefined)
|
|
})
|
|
.catch((error) => console.error(error)),
|
|
[setData]
|
|
)
|
|
|
|
const prefsPATCH = useCallback(
|
|
(d: PrefsPATCHData) => {
|
|
setIsPosting(true)
|
|
if (data) {
|
|
const optimisticUpdates = data
|
|
if (d.RunSSHSet) {
|
|
optimisticUpdates.RunningSSHServer = Boolean(d.RunSSH)
|
|
}
|
|
// Reflect the pref change immediatley on the frontend,
|
|
// then make the prefs PATCH. If the request fails,
|
|
// data will be updated to it's previous value in
|
|
// onComplete below.
|
|
setData(optimisticUpdates)
|
|
}
|
|
|
|
const onComplete = () => {
|
|
setIsPosting(false)
|
|
refreshData() // refresh data after PATCH finishes
|
|
}
|
|
|
|
return apiFetch("/local/v0/prefs", "PATCH", d)
|
|
.then(onComplete)
|
|
.catch((err) => {
|
|
onComplete()
|
|
alert("Failed to update prefs")
|
|
throw err
|
|
})
|
|
},
|
|
[setIsPosting, refreshData, setData, data]
|
|
)
|
|
|
|
const routesPOST = useCallback(
|
|
(d: RoutesPOSTData) => {
|
|
setIsPosting(true)
|
|
const onComplete = () => {
|
|
setIsPosting(false)
|
|
refreshData() // refresh data after POST finishes
|
|
}
|
|
|
|
return apiFetch("/routes", "POST", d)
|
|
.then(onComplete)
|
|
.catch((err) => {
|
|
onComplete()
|
|
alert("Failed to update routes")
|
|
throw err
|
|
})
|
|
},
|
|
[setIsPosting, refreshData]
|
|
)
|
|
|
|
useEffect(
|
|
() => {
|
|
// Initial data load.
|
|
refreshData()
|
|
|
|
// Refresh on browser tab focus.
|
|
const onVisibilityChange = () => {
|
|
document.visibilityState === "visible" && refreshData()
|
|
}
|
|
window.addEventListener("visibilitychange", onVisibilityChange)
|
|
return () => {
|
|
// Cleanup browser tab listener.
|
|
window.removeEventListener("visibilitychange", onVisibilityChange)
|
|
}
|
|
},
|
|
// Run once.
|
|
[refreshData]
|
|
)
|
|
|
|
const nodeUpdaters: NodeUpdaters = useMemo(
|
|
() => ({
|
|
patchPrefs: prefsPATCH,
|
|
postExitNode: (node) =>
|
|
routesPOST({
|
|
AdvertiseExitNode: node.ID === runAsExitNode.ID,
|
|
UseExitNode:
|
|
node.ID === noExitNode.ID || node.ID === runAsExitNode.ID
|
|
? undefined
|
|
: node.ID,
|
|
AdvertiseRoutes: data?.AdvertisedRoutes?.map((r) => r.Route), // unchanged
|
|
}),
|
|
postSubnetRoutes: (routes) =>
|
|
routesPOST({
|
|
AdvertiseRoutes: routes,
|
|
AdvertiseExitNode: data?.AdvertisingExitNode, // unchanged
|
|
UseExitNode: data?.UsingExitNode?.ID, // unchanged
|
|
}),
|
|
}),
|
|
[
|
|
data?.AdvertisingExitNode,
|
|
data?.AdvertisedRoutes,
|
|
data?.UsingExitNode?.ID,
|
|
prefsPATCH,
|
|
routesPOST,
|
|
]
|
|
)
|
|
|
|
return { data, refreshData, nodeUpdaters, isPosting }
|
|
}
|