anti
a266d6b17e
Adds /api/v1/swarm-updates/{hosts,push,push-self,rollback} behind
require_admin. Reuses the existing UpdaterClient + tar_working_tree + the
per-host asyncio.gather pattern from api_deploy_swarm.py; tarball is
built exactly once per /push request and fanned out to every selected
worker. /hosts filters out decommissioned hosts and agent-only
enrollments (no updater bundle = not a target).
Connection drops during /update-self are treated as success — the
updater re-execs itself mid-response, so httpx always raises.
Pydantic models live in decnet/web/db/models.py (single source of
truth). 24 tests cover happy paths, rollback, transport failures,
include_self ordering (skip on rolled-back agents), validation, and
RBAC gating.
67 lines
2.7 KiB
Python
67 lines
2.7 KiB
Python
from fastapi import APIRouter
|
|
|
|
from .auth.api_login import router as login_router
|
|
from .auth.api_change_pass import router as change_pass_router
|
|
from .logs.api_get_logs import router as logs_router
|
|
from .logs.api_get_histogram import router as histogram_router
|
|
from .bounty.api_get_bounties import router as bounty_router
|
|
from .stats.api_get_stats import router as stats_router
|
|
from .fleet.api_get_deckies import router as get_deckies_router
|
|
from .fleet.api_mutate_decky import router as mutate_decky_router
|
|
from .fleet.api_mutate_interval import router as mutate_interval_router
|
|
from .fleet.api_deploy_deckies import router as deploy_deckies_router
|
|
from .stream.api_stream_events import router as stream_router
|
|
from .attackers.api_get_attackers import router as attackers_router
|
|
from .attackers.api_get_attacker_detail import router as attacker_detail_router
|
|
from .attackers.api_get_attacker_commands import router as attacker_commands_router
|
|
from .attackers.api_get_attacker_artifacts import router as attacker_artifacts_router
|
|
from .config.api_get_config import router as config_get_router
|
|
from .config.api_update_config import router as config_update_router
|
|
from .config.api_manage_users import router as config_users_router
|
|
from .config.api_reinit import router as config_reinit_router
|
|
from .health.api_get_health import router as health_router
|
|
from .artifacts.api_get_artifact import router as artifacts_router
|
|
from .swarm_updates import swarm_updates_router
|
|
|
|
api_router = APIRouter()
|
|
|
|
# Authentication
|
|
api_router.include_router(login_router)
|
|
api_router.include_router(change_pass_router)
|
|
|
|
# Logs & Analytics
|
|
api_router.include_router(logs_router)
|
|
api_router.include_router(histogram_router)
|
|
|
|
# Bounty Vault
|
|
api_router.include_router(bounty_router)
|
|
|
|
# Fleet Management
|
|
api_router.include_router(get_deckies_router)
|
|
api_router.include_router(mutate_decky_router)
|
|
api_router.include_router(mutate_interval_router)
|
|
api_router.include_router(deploy_deckies_router)
|
|
|
|
# Attacker Profiles
|
|
api_router.include_router(attackers_router)
|
|
api_router.include_router(attacker_detail_router)
|
|
api_router.include_router(attacker_commands_router)
|
|
api_router.include_router(attacker_artifacts_router)
|
|
|
|
# Observability
|
|
api_router.include_router(stats_router)
|
|
api_router.include_router(stream_router)
|
|
api_router.include_router(health_router)
|
|
|
|
# Configuration
|
|
api_router.include_router(config_get_router)
|
|
api_router.include_router(config_update_router)
|
|
api_router.include_router(config_users_router)
|
|
api_router.include_router(config_reinit_router)
|
|
|
|
# Artifacts (captured attacker file drops)
|
|
api_router.include_router(artifacts_router)
|
|
|
|
# Remote Updates (dashboard → worker updater daemons)
|
|
api_router.include_router(swarm_updates_router)
|