A resque administration website for actionhero
- install
npm install --save ah-resque-ui
- Add this plugin to your
./config/plugins.ts
export const DEFAULT = {
plugins: (config) => {
return {
"ah-resque-ui": { path: __dirname + "/../../node_modules/ah-resque-ui" },
};
},
};
- Create a new config file,
./src/config/ah-resque-ui.ts
export const DEFAULT = {
"ah-resque-ui": (config) => {
return {
// the name of the middleware(s) which will protect all actions in this plugin
// ie middleware: ['basic-auth', 'role-admin']
middleware: null,
};
},
};
- visit
http://localhost:8080/resque
This plugin will inject routes into your application. The routes are equivalent to:
get: [
{ path: '/resque/packageDetails', action: 'resque:packageDetails' },
{ path: '/resque/redisInfo', action: 'resque:redisInfo' },
{ path: '/resque/resqueDetails', action: 'resque:resqueDetails' },
{ path: '/resque/queued', action: 'resque:queued' },
{ path: '/resque/loadWorkerQueues', action: 'resque:loadWorkerQueues' },
{ path: '/resque/resqueFailedCount', action: 'resque:resqueFailedCount' },
{ path: '/resque/resqueFailed', action: 'resque:resqueFailed' },
{ path: '/resque/delayedjobs', action: 'resque:delayedjobs' },
],
post: [
{ path: '/resque/removeFailed', action: 'resque:removeFailed' },
{ path: '/resque/retryAndRemoveFailed', action: 'resque:retryAndRemoveFailed' },
{ path: '/resque/removeAllFailed', action: 'resque:removeAllFailed' },
{ path: '/resque/retryAndRemoveAllFailed', action: 'resque:retryAndRemoveAllFailed' },
{ path: '/resque/forceCleanWorker', action: 'resque:forceCleanWorker' },
{ path: '/resque/delQueue', action: 'resque:delQueue' },
{ path: '/resque/delDelayed', action: 'resque:delDelayed' },
{ path: '/resque/runDelayed', action: 'resque:runDelayed' },
]
};
This package exposes some potentially dangerous actions which would allow folks to see user data (if you keep such in your task params), and modify your task queues. To protect these actions, you should configure this package to use action middleware which would restrict these actions to only certain clients.
The most basic middleware would be one to enforce a Basic Auth Password:
npm install basic-auth --save
// File: src/initializers/basic-auth-middleware.js
import { Initializer, api, action } from "actionhero";
import auth from "basic-auth";
export class BasicAuthInitializer extends Initializer {
constructor() {
super();
this.name = "basic-auth";
}
async initialize() {
const correctPassword = process.env.BASIC_AUTH_PASSWORD;
const middleware = {
name: "basic-auth",
global: false,
priority: 1000,
preProcessor: (data) => {
if (!correctPassword) {
throw "basic auth password not set up in BASIC_AUTH_PASSWORD env";
}
const { res, req } = connection.rawConnection;
const credentials = auth(req);
if (!credentials || credentials.pass !== correctPassword) {
res.statusCode = 401;
res.setHeader("WWW-Authenticate", 'Basic realm="Admin Access"');
res.end("Access denied");
data.toRender = false;
}
},
};
action.addMiddleware(middleware);
}
}
Now you can apply the basic-auth
middleware to your actions to protect them.
To inform ah-resque-ui to use a middleware determined elsewhere like this, set api.config.ah-resque-ui.middleware = ['basic-auth']
in the provided configuration file.
You will need 2 terminals:
- Start the actionhero server
npm run dev
- In another shell, run the webpack to regenerate your changes
npm run ui:watch
Now visit http://localhost:8080/resque
in your browser