nexus/ProxMenux
2
0
Fork 0
mirror of https://github.com/MacRimi/ProxMenux.git synced 2026-04-06 04:13:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
develop
ProxMenux/AppImage/components/secure-gateway-setup.tsx
MacRimi ac6561ca52 Update menus
2026-03-28 18:29:58 +01:00

1303 lines
50 KiB
TypeScript
Raw Permalink Blame History

"use client"
import { useState, useEffect } from "react"
import { Button } from "./ui/button"
import { Input } from "./ui/input"
import { Label } from "./ui/label"
import { Card, CardContent, CardDescription, CardHeader, CardTitle } from "./ui/card"
import { Checkbox } from "./ui/checkbox"
import {
Dialog,
DialogContent,
DialogDescription,
DialogHeader,
DialogTitle,
} from "./ui/dialog"
import {
ShieldCheck, Globe, ExternalLink, Loader2, CheckCircle, XCircle,
Play, Square, RotateCw, Trash2, FileText, ChevronRight, ChevronDown,
AlertTriangle, Info, Network, Eye, EyeOff, Settings, Wifi, Key,
} from "lucide-react"
import { fetchApi } from "../lib/api-config"
interface NetworkInfo {
interface: string
type?: string
address?: string
ip?: string
subnet: string
prefixlen?: number
recommended?: boolean
}
interface StorageInfo {
name: string
type: string
total: number
used: number
avail: number
active: boolean
enabled: boolean
recommended: boolean
}
interface AppStatus {
state: "not_installed" | "running" | "stopped" | "error"
health: string
uptime_seconds: number
last_check: string
}
interface ConfigSchema {
[key: string]: {
type: string
label: string
description: string
placeholder?: string
default?: any
required?: boolean
sensitive?: boolean
env_var?: string
help_url?: string
help_text?: string
options?: Array<{ value: string; label: string; description?: string }>
depends_on?: { field: string; values: string[] }
flag?: string
warning?: string
validation?: { pattern?: string; max_length?: number; message?: string }
}
}
interface WizardStep {
id: string
title: string
description: string
fields?: string[]
}
export function SecureGatewaySetup() {
// State
const [loading, setLoading] = useState(true)
const [runtimeAvailable, setRuntimeAvailable] = useState(false)
const [runtimeInfo, setRuntimeInfo] = useState<{ runtime: string; version: string } | null>(null)
const [appStatus, setAppStatus] = useState<AppStatus>({ state: "not_installed", health: "unknown", uptime_seconds: 0, last_check: "" })
const [configSchema, setConfigSchema] = useState<ConfigSchema | null>(null)
const [wizardSteps, setWizardSteps] = useState<WizardStep[]>([])
const [networks, setNetworks] = useState<NetworkInfo[]>([])
const [storages, setStorages] = useState<StorageInfo[]>([])
// Wizard state
const [showWizard, setShowWizard] = useState(false)
const [currentStep, setCurrentStep] = useState(0)
const [config, setConfig] = useState<Record<string, any>>({})
const [deploying, setDeploying] = useState(false)
const [deployProgress, setDeployProgress] = useState("")
const [deployError, setDeployError] = useState("")
// Installed state
const [actionLoading, setActionLoading] = useState<string | null>(null)
const [showLogs, setShowLogs] = useState(false)
const [logs, setLogs] = useState("")
const [logsLoading, setLogsLoading] = useState(false)
const [showRemoveConfirm, setShowRemoveConfirm] = useState(false)
const [showAuthKey, setShowAuthKey] = useState(false)
// Post-deploy confirmation
const [showPostDeployInfo, setShowPostDeployInfo] = useState(false)
const [deployedConfig, setDeployedConfig] = useState<Record<string, any>>({})
// Host IP for "Host Only" mode
const [hostIp, setHostIp] = useState("")
// Update Auth Key
const [showUpdateAuthKey, setShowUpdateAuthKey] = useState(false)
const [newAuthKey, setNewAuthKey] = useState("")
const [updateAuthKeyLoading, setUpdateAuthKeyLoading] = useState(false)
const [updateAuthKeyError, setUpdateAuthKeyError] = useState("")
// Password visibility
const [visiblePasswords, setVisiblePasswords] = useState<Set<string>>(new Set())
useEffect(() => {
loadInitialData()
}, [])
const loadInitialData = async () => {
setLoading(true)
try {
// Secure Gateway uses standard LXC, not OCI containers
// So we don't require PVE 9.1+ - it works on any Proxmox version
setRuntimeAvailable(true)
// Still load runtime info for reference
const runtimeRes = await fetchApi("/api/oci/runtime")
if (runtimeRes.success) {
setRuntimeInfo({ runtime: runtimeRes.runtime || "proxmox-lxc", version: runtimeRes.version || "unknown" })
}
// Load app definition
const catalogRes = await fetchApi("/api/oci/catalog/secure-gateway")
if (catalogRes.success && catalogRes.app) {
setConfigSchema(catalogRes.app.config_schema || {})
setWizardSteps(catalogRes.app.ui?.wizard_steps || [])
// Set defaults
const defaults: Record<string, any> = {}
for (const [key, field] of Object.entries(catalogRes.app.config_schema || {})) {
if (field.default !== undefined) {
defaults[key] = field.default
}
}
setConfig(defaults)
}
// Load status
await loadStatus()
// Load networks
const networksRes = await fetchApi("/api/oci/networks")
if (networksRes.success) {
setNetworks(networksRes.networks || [])
// Get host IP for "Host Only" mode
const primaryNetwork = networksRes.networks?.find((n: NetworkInfo) => n.recommended) || networksRes.networks?.[0]
// Backend returns "ip" field with the host IP address
const hostIpValue = primaryNetwork?.ip || primaryNetwork?.address
if (hostIpValue) {
// Remove CIDR notation if present (e.g., "192.168.0.55/24" -> "192.168.0.55")
const ip = hostIpValue.split("/")[0]
setHostIp(ip)
}
}
// Load available storages
const storagesRes = await fetchApi("/api/oci/storages")
if (storagesRes.success && storagesRes.storages?.length > 0) {
setStorages(storagesRes.storages)
// Set default storage (first recommended one)
const recommended = storagesRes.storages.find((s: StorageInfo) => s.recommended) || storagesRes.storages[0]
if (recommended) {
setConfig(prev => ({ ...prev, storage: recommended.name }))
}
}
} catch (err) {
console.error("Failed to load data:", err)
} finally {
setLoading(false)
}
}
const loadStatus = async () => {
try {
const statusRes = await fetchApi("/api/oci/status/secure-gateway")
if (statusRes.success) {
setAppStatus(statusRes.status)
}
} catch (err) {
// Not installed is ok
}
}
const handleDeploy = async () => {
setDeploying(true)
setDeployError("")
setDeployProgress("Preparing deployment...")
try {
// Validate required fields
const step = wizardSteps[currentStep]
if (step?.fields) {
for (const fieldName of step.fields) {
const field = configSchema?.[fieldName]
if (field?.required && !config[fieldName]) {
setDeployError(`${field.label} is required`)
setDeploying(false)
return
}
}
}
// Prepare config based on access_mode
const deployConfig = { ...config }
if (config.access_mode === "host_only" && hostIp) {
// Host only: just the host IP
deployConfig.advertise_routes = [`${hostIp}/32`]
} else if (config.access_mode === "proxmox_network") {
// Proxmox network: use the recommended network (should already be set)
if (!deployConfig.advertise_routes?.length) {
const recommendedNetwork = networks.find((n) => n.recommended) || networks[0]
if (recommendedNetwork) {
deployConfig.advertise_routes = [recommendedNetwork.subnet]
}
}
}
// For "custom", the user has already selected networks manually
setDeployProgress("Creating LXC container...")
const result = await fetchApi("/api/oci/deploy", {
method: "POST",
body: JSON.stringify({
app_id: "secure-gateway",
config: deployConfig
})
})
if (!result.success) {
// Make runtime errors more user-friendly
let errorMsg = result.message || "Deployment failed"
if (errorMsg.includes("9.1") || errorMsg.includes("OCI") || errorMsg.includes("not supported")) {
errorMsg = "OCI containers require Proxmox VE 9.1 or later. Please upgrade your Proxmox installation to use this feature."
}
setDeployError(errorMsg)
setDeploying(false)
return
}
setDeployProgress("Gateway deployed successfully!")
// Wait and reload status, then show post-deploy info
setTimeout(async () => {
await loadStatus()
setShowWizard(false)
setDeploying(false)
setCurrentStep(0)
// Show post-deploy confirmation - always show when access mode is set (routes need approval)
const needsApproval = deployConfig.access_mode && deployConfig.access_mode !== "none"
if (needsApproval) {
// Ensure advertise_routes is set for the dialog
const finalConfig = { ...deployConfig }
if (deployConfig.access_mode === "host_only" && hostIp) {
finalConfig.advertise_routes = [`${hostIp}/32`]
}
setDeployedConfig(finalConfig)
setShowPostDeployInfo(true)
}
}, 2000)
} catch (err: any) {
setDeployError(err.message || "Deployment failed")
setDeploying(false)
}
}
const handleAction = async (action: "start" | "stop" | "restart") => {
setActionLoading(action)
try {
const result = await fetchApi(`/api/oci/installed/secure-gateway/${action}`, {
method: "POST"
})
if (result.success) {
await loadStatus()
}
} catch (err) {
console.error(`Failed to ${action}:`, err)
} finally {
setActionLoading(null)
}
}
const handleUpdateAuthKey = async () => {
if (!newAuthKey.trim()) {
setUpdateAuthKeyError("Auth Key is required")
return
}
setUpdateAuthKeyLoading(true)
setUpdateAuthKeyError("")
try {
const result = await fetchApi("/api/oci/installed/secure-gateway/update-auth-key", {
method: "POST",
body: JSON.stringify({
auth_key: newAuthKey.trim()
})
})
if (!result.success) {
setUpdateAuthKeyError(result.message || "Failed to update auth key")
setUpdateAuthKeyLoading(false)
return
}
// Success - close dialog and reload status
setShowUpdateAuthKey(false)
setNewAuthKey("")
await loadStatus()
} catch (err: any) {
setUpdateAuthKeyError(err.message || "Failed to update auth key")
} finally {
setUpdateAuthKeyLoading(false)
}
}
const handleRemove = async () => {
setActionLoading("remove")
try {
const result = await fetchApi("/api/oci/installed/secure-gateway?remove_data=false", {
method: "DELETE"
})
if (result.success) {
setAppStatus({ state: "not_installed", health: "unknown", uptime_seconds: 0, last_check: "" })
setShowRemoveConfirm(false)
}
} catch (err) {
console.error("Failed to remove:", err)
} finally {
setActionLoading(null)
}
}
const loadLogs = async () => {
setLogsLoading(true)
try {
const result = await fetchApi("/api/oci/installed/secure-gateway/logs?lines=100")
if (result.success) {
setLogs(result.logs || "No logs available")
}
} catch (err) {
setLogs("Failed to load logs")
} finally {
setLogsLoading(false)
}
}
const formatUptime = (seconds: number): string => {
if (seconds < 60) return `${seconds}s`
if (seconds < 3600) return `${Math.floor(seconds / 60)}m`
if (seconds < 86400) return `${Math.floor(seconds / 3600)}h ${Math.floor((seconds % 3600) / 60)}m`
return `${Math.floor(seconds / 86400)}d ${Math.floor((seconds % 86400) / 3600)}h`
}
const renderField = (fieldName: string) => {
const field = configSchema?.[fieldName]
if (!field) return null
// Check depends_on
if (field.depends_on) {
const depValue = config[field.depends_on.field]
if (!field.depends_on.values.includes(depValue)) {
return null
}
}
const isVisible = visiblePasswords.has(fieldName)
switch (field.type) {
case "password":
return (
<div key={fieldName} className="space-y-2">
<Label htmlFor={fieldName} className="text-sm font-medium">
{field.label}
{field.required && <span className="text-red-500 ml-1">*</span>}
</Label>
<div className="relative">
<Input
id={fieldName}
type={isVisible ? "text" : "password"}
value={config[fieldName] || ""}
onChange={(e) => setConfig({ ...config, [fieldName]: e.target.value })}
placeholder={field.placeholder}
className="pr-10 bg-background border-border"
/>
<button
type="button"
onClick={() => {
const newSet = new Set(visiblePasswords)
if (isVisible) newSet.delete(fieldName)
else newSet.add(fieldName)
setVisiblePasswords(newSet)
}}
className="absolute right-3 top-1/2 -translate-y-1/2 text-muted-foreground hover:text-foreground"
>
{isVisible ? <EyeOff className="h-4 w-4" /> : <Eye className="h-4 w-4" />}
</button>
</div>
<p className="text-xs text-muted-foreground">{field.description}</p>
{field.help_url && (
<a
href={field.help_url}
target="_blank"
rel="noopener noreferrer"
className="text-xs text-cyan-500 hover:text-cyan-400 inline-flex items-center gap-1"
>
{field.help_text || "Learn more"} <ExternalLink className="h-3 w-3" />
</a>
)}
</div>
)
case "text":
return (
<div key={fieldName} className="space-y-2">
<Label htmlFor={fieldName} className="text-sm font-medium">
{field.label}
{field.required && <span className="text-red-500 ml-1">*</span>}
</Label>
<Input
id={fieldName}
type="text"
value={config[fieldName] || ""}
onChange={(e) => setConfig({ ...config, [fieldName]: e.target.value })}
placeholder={field.placeholder}
className="bg-background border-border"
/>
<p className="text-xs text-muted-foreground">{field.description}</p>
</div>
)
case "select":
// Special handling for access_mode to auto-select networks
const handleSelectChange = (value: string) => {
const newConfig = { ...config, [fieldName]: value }
// When access_mode changes to proxmox_network, auto-select the recommended network
if (fieldName === "access_mode" && value === "proxmox_network") {
const recommendedNetwork = networks.find((n) => n.recommended) || networks[0]
if (recommendedNetwork) {
newConfig.advertise_routes = [recommendedNetwork.subnet]
}
}
// Clear routes when switching to host_only
if (fieldName === "access_mode" && value === "host_only") {
newConfig.advertise_routes = []
}
// Clear routes when switching to custom (user will select manually)
if (fieldName === "access_mode" && value === "custom") {
newConfig.advertise_routes = []
}
setConfig(newConfig)
}
return (
<div key={fieldName} className="space-y-3">
<Label className="text-sm font-medium">
{field.label}
{field.required && <span className="text-red-500 ml-1">*</span>}
</Label>
<div className="space-y-2">
{field.options?.map((opt) => (
<div
key={opt.value}
onClick={() => handleSelectChange(opt.value)}
className={`p-3 rounded-lg border cursor-pointer transition-colors ${
config[fieldName] === opt.value
? "border-cyan-500 bg-cyan-500/10"
: "border-border hover:border-muted-foreground/50"
}`}
>
<div className="flex items-center gap-3">
<div className={`w-4 h-4 rounded-full border-2 flex items-center justify-center ${
config[fieldName] === opt.value ? "border-cyan-500" : "border-muted-foreground"
}`}>
{config[fieldName] === opt.value && (
<div className="w-2 h-2 rounded-full bg-cyan-500" />
)}
</div>
<div className="flex-1">
<p className="font-medium text-sm">{opt.label}</p>
{opt.description && (
<p className="text-xs text-muted-foreground">{opt.description}</p>
)}
{/* Show selected network for proxmox_network */}
{fieldName === "access_mode" && opt.value === "proxmox_network" && config[fieldName] === "proxmox_network" && (
<p className="text-xs text-cyan-400 mt-1 flex items-center gap-1">
<Network className="h-3 w-3" />
{networks.find((n) => n.recommended)?.subnet || networks[0]?.subnet || "No network detected"}
</p>
)}
</div>
</div>
</div>
))}
</div>
</div>
)
case "networks":
return (
<div key={fieldName} className="space-y-3">
<Label className="text-sm font-medium">
{field.label}
</Label>
<p className="text-xs text-muted-foreground">{field.description}</p>
<div className="space-y-2 max-h-48 overflow-y-auto">
{networks.length === 0 ? (
<p className="text-sm text-muted-foreground p-3 bg-muted/30 rounded">
No networks detected
</p>
) : (
networks.map((net) => {
const selected = (config[fieldName] || []).includes(net.subnet)
return (
<div
key={net.subnet}
onClick={() => {
const current = config[fieldName] || []
const updated = selected
? current.filter((s: string) => s !== net.subnet)
: [...current, net.subnet]
setConfig({ ...config, [fieldName]: updated })
}}
className={`p-3 rounded-lg border cursor-pointer transition-colors flex items-center gap-3 ${
selected
? "border-cyan-500 bg-cyan-500/10"
: "border-border hover:border-muted-foreground/50"
}`}
>
<Checkbox checked={selected} className="pointer-events-none" />
<div className="flex-1">
<div className="flex items-center gap-2">
<Network className="h-4 w-4 text-muted-foreground" />
<span className="font-mono text-sm">{net.subnet}</span>
{net.recommended && (
<span className="text-[10px] px-1.5 py-0.5 rounded bg-green-500/10 text-green-500">
Recommended
</span>
)}
</div>
<p className="text-xs text-muted-foreground">
{net.interface} ({net.type})
</p>
</div>
</div>
)
})
)}
</div>
</div>
)
case "boolean":
return (
<div key={fieldName} className="space-y-2">
<div
onClick={() => setConfig({ ...config, [fieldName]: !config[fieldName] })}
className={`p-3 rounded-lg border cursor-pointer transition-colors flex items-start gap-3 ${
config[fieldName]
? "border-cyan-500 bg-cyan-500/10"
: "border-border hover:border-muted-foreground/50"
}`}
>
<Checkbox checked={config[fieldName] || false} className="pointer-events-none mt-0.5" />
<div>
<p className="font-medium text-sm">{field.label}</p>
<p className="text-xs text-muted-foreground">{field.description}</p>
{field.warning && config[fieldName] && (
<p className="text-xs text-cyan-400 mt-2 flex items-start gap-1.5 bg-cyan-500/10 p-2 rounded">
<Info className="h-3 w-3 mt-0.5 flex-shrink-0" />
{field.warning}
</p>
)}
</div>
</div>
</div>
)
default:
return null
}
}
const renderWizardContent = () => {
const step = wizardSteps[currentStep]
if (!step) return null
if (step.id === "intro") {
return (
<div className="space-y-6">
<div className="flex justify-center">
<div className="w-20 h-20 rounded-full bg-cyan-500/10 flex items-center justify-center">
<ShieldCheck className="h-10 w-10 text-cyan-500" />
</div>
</div>
<div className="text-center space-y-2">
<h3 className="text-lg font-semibold">Secure Remote Access</h3>
<p className="text-sm text-muted-foreground max-w-md mx-auto">
Deploy a VPN gateway using Tailscale for secure, zero-trust access to your Proxmox infrastructure without opening ports.
</p>
</div>
<div className="bg-muted/30 rounded-lg p-4 space-y-3">
<h4 className="text-sm font-medium">What you{"'"}ll get:</h4>
<ul className="space-y-2 text-sm text-muted-foreground">
<li className="flex items-center gap-2">
<CheckCircle className="h-4 w-4 text-green-500 flex-shrink-0" />
Access ProxMenux Monitor from anywhere
</li>
<li className="flex items-center gap-2">
<CheckCircle className="h-4 w-4 text-green-500 flex-shrink-0" />
Secure access to Proxmox web UI
</li>
<li className="flex items-center gap-2">
<CheckCircle className="h-4 w-4 text-green-500 flex-shrink-0" />
Optionally expose VMs and LXC containers
</li>
<li className="flex items-center gap-2">
<CheckCircle className="h-4 w-4 text-green-500 flex-shrink-0" />
End-to-end encryption
</li>
<li className="flex items-center gap-2">
<CheckCircle className="h-4 w-4 text-green-500 flex-shrink-0" />
No port forwarding required
</li>
</ul>
</div>
<div className="bg-cyan-500/10 border border-cyan-500/20 rounded-lg p-3">
<p className="text-xs text-cyan-400 flex items-start gap-2">
<Info className="h-4 w-4 flex-shrink-0 mt-0.5" />
You{"'"}ll need a free Tailscale account. If you don{"'"}t have one, you can create it at{" "}
<a href="https://tailscale.com" target="_blank" rel="noopener noreferrer" className="underline hover:text-cyan-300">
tailscale.com
</a>
</p>
</div>
</div>
)
}
if (step.id === "deploy") {
return (
<div className="space-y-6">
<div className="text-center space-y-2">
<h3 className="text-lg font-semibold">Review & Deploy</h3>
<p className="text-sm text-muted-foreground">
Review your configuration before deploying the gateway.
</p>
</div>
{/* Storage selector */}
{storages.length > 1 && (
<div className="space-y-3">
<Label className="text-sm font-medium">Storage Location</Label>
<p className="text-xs text-muted-foreground">Select where to create the container disk.</p>
<div className="space-y-2">
{storages.filter(s => s.active && s.enabled).map((storage) => (
<div
key={storage.name}
onClick={() => setConfig({ ...config, storage: storage.name })}
className={`p-3 rounded-lg border cursor-pointer transition-colors ${
config.storage === storage.name
? "border-cyan-500 bg-cyan-500/10"
: "border-border hover:border-muted-foreground/50"
}`}
>
<div className="flex items-center gap-3">
<div className={`w-4 h-4 rounded-full border-2 flex items-center justify-center ${
config.storage === storage.name ? "border-cyan-500" : "border-muted-foreground"
}`}>
{config.storage === storage.name && (
<div className="w-2 h-2 rounded-full bg-cyan-500" />
)}
</div>
<div className="flex-1">
<div className="flex items-center gap-2">
<span className="font-medium text-sm">{storage.name}</span>
<span className="text-xs text-muted-foreground">({storage.type})</span>
{storage.recommended && (
<span className="text-[10px] px-1.5 py-0.5 rounded bg-green-500/10 text-green-500">
Recommended
</span>
)}
</div>
<p className="text-xs text-muted-foreground">
{(storage.avail / 1024 / 1024 / 1024).toFixed(1)} GB available
</p>
</div>
</div>
</div>
))}
</div>
</div>
)}
<div className="bg-muted/30 rounded-lg p-4 space-y-3">
<h4 className="text-sm font-medium">Configuration Summary</h4>
<div className="space-y-2 text-sm">
<div className="flex justify-between">
<span className="text-muted-foreground">Hostname:</span>
<span className="font-mono">{config.hostname || "proxmox-gateway"}</span>
</div>
{storages.length > 1 && (
<div className="flex justify-between">
<span className="text-muted-foreground">Storage:</span>
<span className="font-mono">{config.storage || storages[0]?.name}</span>
</div>
)}
<div className="flex justify-between">
<span className="text-muted-foreground">Access Mode:</span>
<span>{config.access_mode === "host_only" ? "Host Only" : config.access_mode === "proxmox_network" ? "Proxmox Network" : "Custom Networks"}</span>
</div>
{config.access_mode === "host_only" && hostIp && (
<div className="flex justify-between">
<span className="text-muted-foreground">Host Access:</span>
<span className="text-right font-mono text-xs">{hostIp}/32</span>
</div>
)}
{(config.access_mode === "proxmox_network" || config.access_mode === "custom") && config.advertise_routes?.length > 0 && (
<div className="flex justify-between">
<span className="text-muted-foreground">Networks:</span>
<span className="text-right font-mono text-xs">{config.advertise_routes.join(", ")}</span>
</div>
)}
<div className="flex justify-between">
<span className="text-muted-foreground">Exit Node:</span>
<span>{config.exit_node ? "Yes" : "No"}</span>
</div>
<div className="flex justify-between">
<span className="text-muted-foreground">Accept Routes:</span>
<span>{config.accept_routes ? "Yes" : "No"}</span>
</div>
</div>
</div>
{/* Approval notice */}
{(config.access_mode && config.access_mode !== "none") && !deploying && (
<div className="bg-cyan-500/10 border border-cyan-500/20 rounded-lg p-3 space-y-2">
<p className="text-xs text-cyan-400 flex items-start gap-2">
<Info className="h-4 w-4 flex-shrink-0 mt-0.5" />
<span>
<strong>Important:</strong> After deployment, you must approve the subnet route in Tailscale Admin for remote access to work.
{config.exit_node && <span> You{"'"}ll also need to approve the exit node.</span>}
</span>
</p>
<p className="text-xs text-muted-foreground ml-6">
We{"'"}ll show you exactly what to do after the gateway is deployed.
</p>
</div>
)}
{deploying && (
<div className="bg-cyan-500/10 border border-cyan-500/20 rounded-lg p-4">
<div className="flex items-center gap-3">
<Loader2 className="h-5 w-5 text-cyan-500 animate-spin" />
<span className="text-sm">{deployProgress}</span>
</div>
</div>
)}
{deployError && (
<div className="bg-red-500/10 border border-red-500/20 rounded-lg p-3">
<p className="text-sm text-red-500 flex items-center gap-2">
<XCircle className="h-4 w-4" />
{deployError}
</p>
</div>
)}
</div>
)
}
// Regular step with fields
return (
<div className="space-y-6">
<div className="text-center space-y-2">
<h3 className="text-lg font-semibold">{step.title}</h3>
<p className="text-sm text-muted-foreground">{step.description}</p>
</div>
<div className="space-y-4">
{step.fields?.map((fieldName) => renderField(fieldName))}
</div>
</div>
)
}
// Loading state
if (loading) {
return (
<Card className="border-border bg-card">
<CardHeader className="pb-3">
<div className="flex items-center gap-2">
<ShieldCheck className="h-5 w-5 text-cyan-500" />
<CardTitle className="text-base">Secure Gateway</CardTitle>
</div>
</CardHeader>
<CardContent>
<div className="flex items-center justify-center py-8">
<Loader2 className="h-6 w-6 animate-spin text-muted-foreground" />
</div>
</CardContent>
</Card>
)
}
// Installed state
if (appStatus.state !== "not_installed") {
const isRunning = appStatus.state === "running"
const isStopped = appStatus.state === "stopped"
const isError = appStatus.state === "error"
return (
<>
<Card className="border-border bg-card">
<CardHeader className="pb-3">
<div className="flex items-center justify-between">
<div className="flex items-center gap-2">
<ShieldCheck className="h-5 w-5 text-cyan-500" />
<CardTitle className="text-base">Secure Gateway</CardTitle>
</div>
<div className={`flex items-center gap-1.5 px-2 py-1 rounded-full text-xs font-medium ${
isRunning ? "bg-green-500/10 text-green-500" :
isStopped ? "bg-yellow-500/10 text-yellow-500" :
"bg-red-500/10 text-red-500"
}`}>
{isRunning ? <Wifi className="h-3 w-3" /> :
isStopped ? <Square className="h-3 w-3" /> :
<XCircle className="h-3 w-3" />}
{isRunning ? "Connected" : isStopped ? "Stopped" : "Error"}
</div>
</div>
<CardDescription>Tailscale VPN Gateway</CardDescription>
</CardHeader>
<CardContent className="space-y-4">
{/* Status info */}
{isRunning && appStatus.uptime_seconds > 0 && (
<div className="text-xs text-muted-foreground">
Uptime: {formatUptime(appStatus.uptime_seconds)}
</div>
)}
{/* Actions */}
<div className="flex flex-wrap gap-2">
{isStopped && (
<Button
size="sm"
onClick={() => handleAction("start")}
disabled={actionLoading !== null}
className="bg-green-600 hover:bg-green-700"
>
{actionLoading === "start" ? (
<Loader2 className="h-4 w-4 animate-spin mr-1" />
) : (
<Play className="h-4 w-4 mr-1" />
)}
Start
</Button>
)}
{isRunning && (
<>
<Button
size="sm"
variant="outline"
onClick={() => handleAction("stop")}
disabled={actionLoading !== null}
>
{actionLoading === "stop" ? (
<Loader2 className="h-4 w-4 animate-spin mr-1" />
) : (
<Square className="h-4 w-4 mr-1" />
)}
Stop
</Button>
<Button
size="sm"
variant="outline"
onClick={() => handleAction("restart")}
disabled={actionLoading !== null}
>
{actionLoading === "restart" ? (
<Loader2 className="h-4 w-4 animate-spin mr-1" />
) : (
<RotateCw className="h-4 w-4 mr-1" />
)}
Restart
</Button>
</>
)}
<Button
size="sm"
variant="outline"
onClick={() => {
setShowLogs(true)
loadLogs()
}}
>
<FileText className="h-4 w-4 mr-1" />
Logs
</Button>
<Button
size="sm"
variant="outline"
className="text-red-500 hover:text-red-400 hover:bg-red-500/10"
onClick={() => setShowRemoveConfirm(true)}
disabled={actionLoading !== null}
>
<Trash2 className="h-4 w-4 mr-1" />
Remove
</Button>
</div>
{/* Update Auth Key button */}
<div className="pt-2 border-t border-border flex items-center justify-between">
<Button
size="sm"
variant="ghost"
onClick={() => setShowUpdateAuthKey(true)}
disabled={actionLoading !== null}
className="text-xs h-7 px-2"
>
<Key className="h-3 w-3 mr-1" />
Update Auth Key
</Button>
<a
href="https://login.tailscale.com/admin/machines"
target="_blank"
rel="noopener noreferrer"
className="text-xs text-cyan-500 hover:text-cyan-400 inline-flex items-center gap-1"
>
Open Tailscale Admin <ExternalLink className="h-3 w-3" />
</a>
</div>
</CardContent>
</Card>
{/* Logs Dialog */}
<Dialog open={showLogs} onOpenChange={setShowLogs}>
<DialogContent className="max-w-2xl">
<DialogHeader>
<DialogTitle>Secure Gateway Logs</DialogTitle>
<DialogDescription>Recent container logs</DialogDescription>
</DialogHeader>
<div className="bg-black/50 rounded-lg p-4 max-h-96 overflow-auto">
{logsLoading ? (
<div className="flex items-center justify-center py-8">
<Loader2 className="h-6 w-6 animate-spin text-muted-foreground" />
</div>
) : (
<pre className="text-xs font-mono text-green-400 whitespace-pre-wrap">
{logs || "No logs available"}
</pre>
)}
</div>
<div className="flex justify-end">
<Button variant="outline" size="sm" onClick={loadLogs}>
<RotateCw className="h-4 w-4 mr-1" />
Refresh
</Button>
</div>
</DialogContent>
</Dialog>
{/* Remove Confirm Dialog */}
<Dialog open={showRemoveConfirm} onOpenChange={setShowRemoveConfirm}>
<DialogContent>
<DialogHeader>
<DialogTitle>Remove Secure Gateway?</DialogTitle>
<DialogDescription>
This will stop and remove the gateway container. Your Tailscale state will be preserved for re-deployment.
</DialogDescription>
</DialogHeader>
<div className="flex justify-end gap-2">
<Button variant="outline" onClick={() => setShowRemoveConfirm(false)}>
Cancel
</Button>
<Button
variant="destructive"
onClick={handleRemove}
disabled={actionLoading === "remove"}
>
{actionLoading === "remove" ? (
<Loader2 className="h-4 w-4 animate-spin mr-1" />
) : (
<Trash2 className="h-4 w-4 mr-1" />
)}
Remove
</Button>
</div>
</DialogContent>
</Dialog>
{/* Update Auth Key Dialog */}
<Dialog open={showUpdateAuthKey} onOpenChange={(open) => {
setShowUpdateAuthKey(open)
if (!open) {
setNewAuthKey("")
setUpdateAuthKeyError("")
}
}}>
<DialogContent className="max-w-md">
<DialogHeader>
<DialogTitle className="flex items-center gap-2">
<Key className="h-5 w-5 text-cyan-500" />
Update Auth Key
</DialogTitle>
<DialogDescription>
Enter a new Tailscale auth key to re-authenticate the gateway. This is useful if your previous key has expired.
</DialogDescription>
</DialogHeader>
<div className="space-y-4">
<div className="space-y-2">
<label className="text-sm font-medium">New Auth Key</label>
<Input
type="password"
value={newAuthKey}
onChange={(e) => setNewAuthKey(e.target.value)}
placeholder="tskey-auth-..."
className="font-mono text-sm"
/>
<p className="text-xs text-muted-foreground">
Generate a new key at{" "}
<a
href="https://login.tailscale.com/admin/settings/keys"
target="_blank"
rel="noopener noreferrer"
className="text-cyan-500 hover:text-cyan-400 underline"
>
Tailscale Admin &gt; Settings &gt; Keys
</a>
</p>
</div>
{updateAuthKeyError && (
<div className="bg-red-500/10 border border-red-500/20 rounded-lg p-3">
<p className="text-xs text-red-500">{updateAuthKeyError}</p>
</div>
)}
</div>
<div className="flex justify-end gap-2 pt-2">
<Button variant="outline" onClick={() => setShowUpdateAuthKey(false)}>
Cancel
</Button>
<Button
onClick={handleUpdateAuthKey}
disabled={updateAuthKeyLoading || !newAuthKey.trim()}
className="bg-cyan-600 hover:bg-cyan-700"
>
{updateAuthKeyLoading ? (
<Loader2 className="h-4 w-4 animate-spin mr-2" />
) : (
<Key className="h-4 w-4 mr-2" />
)}
Update Key
</Button>
</div>
</DialogContent>
</Dialog>
{/* Post-Deploy Info Dialog */}
<Dialog open={showPostDeployInfo} onOpenChange={setShowPostDeployInfo}>
<DialogContent className="max-w-md">
<DialogHeader>
<DialogTitle className="flex items-center gap-2">
<CheckCircle className="h-5 w-5 text-green-500" />
Gateway Deployed Successfully
</DialogTitle>
<DialogDescription>
One more step to complete the setup
</DialogDescription>
</DialogHeader>
<div className="space-y-4">
<div className="bg-cyan-500/10 border border-cyan-500/20 rounded-lg p-4">
<p className="text-sm font-medium text-cyan-400 flex items-center gap-2 mb-2">
<Info className="h-4 w-4" />
Next Step: Approve in Tailscale Admin
</p>
<p className="text-sm text-muted-foreground mb-3">
You need to approve the following settings in your Tailscale admin console for them to take effect:
</p>
<ul className="space-y-2 text-sm">
{deployedConfig.advertise_routes?.length > 0 && (
<li className="flex items-start gap-2">
<Network className="h-4 w-4 text-cyan-500 mt-0.5 flex-shrink-0" />
<div>
<span className="font-medium">Subnet Routes:</span>
<span className="text-muted-foreground ml-1">
{deployedConfig.advertise_routes.join(", ")}
</span>
</div>
</li>
)}
{deployedConfig.exit_node && (
<li className="flex items-start gap-2">
<Globe className="h-4 w-4 text-cyan-500 mt-0.5 flex-shrink-0" />
<div>
<span className="font-medium">Exit Node:</span>
<span className="text-muted-foreground ml-1">
Route all internet traffic
</span>
</div>
</li>
)}
</ul>
</div>
<div className="bg-muted/30 rounded-lg p-4 space-y-2">
<p className="text-sm font-medium">How to approve:</p>
<ol className="text-sm text-muted-foreground space-y-2 list-decimal list-inside">
<li>Click the button below to open Tailscale Admin</li>
<li>Find <span className="font-mono text-cyan-400">{deployedConfig.hostname || "proxmox-gateway"}</span> in the machines list</li>
<li>Click on it to open machine details</li>
<li>In the <strong>Subnets</strong> section, click <strong>Edit</strong> and enable the route</li>
{deployedConfig.exit_node && (
<li>In <strong>Routing Settings</strong>, enable <strong>Exit Node</strong></li>
)}
</ol>
</div>
<div className="bg-green-500/10 border border-green-500/20 rounded-lg p-3">
<p className="text-xs text-green-400">
Once approved, you can access your Proxmox host at{" "}
<span className="font-mono">{deployedConfig.advertise_routes?.[0]?.replace("/32", "") || hostIp}:8006</span> (Proxmox UI) or{" "}
<span className="font-mono">{deployedConfig.advertise_routes?.[0]?.replace("/32", "") || hostIp}:8008</span> (ProxMenux Monitor) from any device with Tailscale.
</p>
</div>
</div>
<div className="flex justify-end gap-2 pt-2">
<Button variant="outline" onClick={() => setShowPostDeployInfo(false)}>
I{"'"}ll do it later
</Button>
<Button
onClick={() => {
window.open("https://login.tailscale.com/admin/machines", "_blank")
setShowPostDeployInfo(false)
}}
className="bg-cyan-600 hover:bg-cyan-700"
>
Open Tailscale Admin
<ExternalLink className="h-4 w-4 ml-2" />
</Button>
</div>
</DialogContent>
</Dialog>
</>
)
}
// Not installed state
return (
<>
<Card className="border-border bg-card">
<CardHeader className="pb-3">
<div className="flex items-center gap-2">
<ShieldCheck className="h-5 w-5 text-cyan-500" />
<CardTitle className="text-base">Secure Gateway</CardTitle>
</div>
<CardDescription>VPN access without opening ports</CardDescription>
</CardHeader>
<CardContent className="space-y-4">
<p className="text-sm text-muted-foreground">
Deploy a Tailscale VPN gateway for secure remote access to your Proxmox infrastructure. No port forwarding required.
</p>
<Button
onClick={() => setShowWizard(true)}
className="bg-cyan-600 hover:bg-cyan-700"
>
<ShieldCheck className="h-4 w-4 mr-2" />
Deploy Secure Gateway
</Button>
</CardContent>
</Card>
{/* Wizard Dialog */}
<Dialog open={showWizard} onOpenChange={(open) => {
if (!deploying) {
setShowWizard(open)
if (!open) {
setCurrentStep(0)
setDeployError("")
}
}
}}>
<DialogContent className="max-w-lg max-h-[90vh] sm:max-h-[85vh] flex flex-col p-0 gap-0">
{/* Fixed Header */}
<div className="shrink-0 px-6 pt-6 pb-4 border-b border-border">
<DialogHeader>
<DialogTitle className="flex items-center gap-2">
<ShieldCheck className="h-5 w-5 text-cyan-500" />
Secure Gateway Setup
</DialogTitle>
</DialogHeader>
{/* Progress indicator - filter out "options" step if using Proxmox Only */}
<div className="flex items-center gap-1 mt-4">
{wizardSteps
.filter((step) => !(config.access_mode === "host_only" && step.id === "options"))
.map((step, idx) => {
// Recalculate the actual step index accounting for skipped steps
const actualIdx = wizardSteps.findIndex((s) => s.id === step.id)
const adjustedCurrentStep = config.access_mode === "host_only"
? (currentStep > wizardSteps.findIndex((s) => s.id === "options") ? currentStep - 1 : currentStep)
: currentStep
return (
<div
key={step.id}
className={`flex-1 h-1 rounded-full transition-colors ${
idx < adjustedCurrentStep ? "bg-cyan-500" :
idx === adjustedCurrentStep ? "bg-cyan-500" :
"bg-muted"
}`}
/>
)
})}
</div>
</div>
{/* Scrollable Content */}
<div className="flex-1 overflow-y-auto px-6 py-4 min-h-0">
{renderWizardContent()}
</div>
{/* Fixed Footer with Navigation */}
<div className="shrink-0 flex justify-between px-6 py-4 border-t border-border bg-background">
<Button
variant="outline"
onClick={() => {
// Skip "options" step when going back if using "Proxmox Only"
let prevStep = currentStep - 1
if (config.access_mode === "host_only" && wizardSteps[prevStep]?.id === "options") {
prevStep = prevStep - 1
}
setCurrentStep(Math.max(0, prevStep))
}}
disabled={currentStep === 0 || deploying}
>
Back
</Button>
{currentStep < wizardSteps.length - 1 ? (
<Button
onClick={() => {
// Skip "options" step when using "Proxmox Only"
let nextStep = currentStep + 1
if (config.access_mode === "host_only" && wizardSteps[nextStep]?.id === "options") {
nextStep = nextStep + 1
}
setCurrentStep(nextStep)
}}
className="bg-cyan-600 hover:bg-cyan-700"
>
Continue
<ChevronRight className="h-4 w-4 ml-1" />
</Button>
) : (
<Button
onClick={handleDeploy}
disabled={deploying}
className="bg-cyan-600 hover:bg-cyan-700"
>
{deploying ? (
<>
<Loader2 className="h-4 w-4 animate-spin mr-2" />
Deploying...
</>
) : (
<>
<Play className="h-4 w-4 mr-2" />
Deploy Gateway
</>
)}
</Button>
)}
</div>
</DialogContent>
</Dialog>
</>
)
}
Reference in New Issue View Git Blame Copy Permalink