feat(ui): add new rudimentory UI & dockerfile (#23)

* feat(ui): add new rudimentory UI & dockerfile

* fix(ci): build templ

* feat(ci): try out docker build * push

Author: cterence

.air.toml

@@ -4,16 +4,16 @@ tmp_dir = "tmp"
 
 [build]
 bin = "./tmp/tailout"
-cmd = "go mod tidy && go build -o ./tmp/tailout ."
+cmd = "go mod tidy && templ generate && go build -o ./tmp/tailout ."
 delay = 1000
 exclude_dir = ["assets", "tmp", "vendor", "testdata"]
 exclude_file = []
-exclude_regex = ["_test.go"]
+exclude_regex = ["_test.go", ".*_templ\\.go$"]
 exclude_unchanged = false
 follow_symlink = false
 full_bin = ""
 include_dir = []
-include_ext = ["go", "tpl", "tmpl", "html"]
+include_ext = ["go", "tpl", "tmpl", "html", "templ"]
 kill_delay = "0s"
 log = "build-errors.log"
 send_interrupt = false

.github/actions/build/action.yaml

@@ -10,6 +10,15 @@ inputs:
 runs:
   using: "composite"
   steps:
+    - uses: actions/setup-go@v5
+      with:
+        go-version: stable
+    - name: Generate templ code
+      uses: capthiron/templ-generator-action@v1
+      with:
+        commit: "false"
+        setup-go: "false"
+        directory: "internal/views"
     - name: Build ${{ inputs.binary_name }}
       run: go build -o bin/${{ inputs.binary_name }}
       shell: bash

.github/workflows/build-and-push.yaml

@@ -0,0 +1,49 @@
+name: Create and publish Tailout Docker image
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+    types: [opened, synchronize, reopened]
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  build-and-push-image:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+      attestations: write
+      id-token: write
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+      - name: Log in to the Container registry
+        uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: Extract metadata (tags, labels) for Docker
+        id: meta
+        uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+      - name: Build and push Docker image
+        id: push
+        uses: docker/build-push-action@f2a1d5e99d037542a71f64918e516c093c6f3fc4
+        with:
+          context: .
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v1
+        with:
+          subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}}
+          subject-digest: ${{ steps.push.outputs.digest }}
+          push-to-registry: true

.gitignore

@@ -25,3 +25,5 @@ config.yaml
 
 tmp/
 bin/
+
+*_templ.go

Dockerfile

@@ -0,0 +1,29 @@
+FROM golang:1.22.5 as fetch-stage
+
+COPY go.mod go.sum /app/
+WORKDIR /app
+RUN go mod download
+
+FROM ghcr.io/a-h/templ:latest AS generate-stage
+COPY --chown=65532:65532 . /app
+WORKDIR /app
+RUN ["templ", "generate"]
+
+FROM cosmtrek/air as development
+COPY --from=generate-stage /ko-app/templ /bin/templ
+COPY --chown=65532:65532 . /app
+WORKDIR /app
+EXPOSE 3000
+ENTRYPOINT ["air"]
+
+FROM golang:1.22.5 AS build-stage
+COPY --from=generate-stage /app /app
+WORKDIR /app
+RUN CGO_ENABLED=0 GOOS=linux go build -buildvcs=false -o /app/app
+
+FROM gcr.io/distroless/base-debian12 AS deploy-stage
+WORKDIR /
+COPY --from=build-stage /app/app /app
+EXPOSE 3000
+USER nonroot:nonroot
+ENTRYPOINT ["/app"]

cmd/cmd.go

@@ -25,6 +25,7 @@ func buildTailoutCommand(app *tailout.App) *cobra.Command {
 	cmd.AddCommand(buildInitCommand(app))
 	cmd.AddCommand(buildStatusCommand(app))
 	cmd.AddCommand(buildStopCommand(app))
+	cmd.AddCommand(buildUiCommand(app))
 
 	return cmd
 }

cmd/ui.go

@@ -0,0 +1,28 @@
+package cmd
+
+import (
+	"github.com/cterence/tailout/tailout"
+	"github.com/spf13/cobra"
+)
+
+// uiCmd represents the UI command
+func buildUiCommand(app *tailout.App) *cobra.Command {
+	cmd := &cobra.Command{
+		Args:  cobra.ArbitraryArgs,
+		Use:   "ui",
+		Short: "Start the Tailout UI",
+		RunE: func(cmd *cobra.Command, args []string) error {
+			err := app.Ui(args)
+			if err != nil {
+				return err
+			}
+			return nil
+		},
+	}
+
+	cmd.PersistentFlags().BoolVarP(&app.Config.NonInteractive, "non-interactive", "n", false, "Disable interactive prompts")
+	cmd.PersistentFlags().StringVarP(&app.Config.Ui.Address, "address", "a", "127.0.0.1", "Address to bind the UI to")
+	cmd.PersistentFlags().StringVarP(&app.Config.Ui.Port, "port", "p", "3000", "Port to bind the UI to")
+
+	return cmd
+}

go.mod

@@ -5,6 +5,7 @@ go 1.22.0
 toolchain go1.22.5
 
 require (
+	github.com/a-h/templ v0.2.747
 	github.com/adhocore/chin v1.1.0
 	github.com/aws/aws-sdk-go-v2 v1.30.3
 	github.com/aws/aws-sdk-go-v2/config v1.27.27

go.sum

@@ -1,5 +1,7 @@
 filippo.io/edwards25519 v1.1.0 h1:FNf4tywRC1HmFuKW5xopWpigGjJKiJSV0Cqo0cJWDaA=
 filippo.io/edwards25519 v1.1.0/go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4=
+github.com/a-h/templ v0.2.747 h1:D0dQ2lxC3W7Dxl6fxQ/1zZHBQslSkTSvl5FxP/CfdKg=
+github.com/a-h/templ v0.2.747/go.mod h1:69ObQIbrcuwPCU32ohNaWce3Cb7qM5GMiqN1K+2yop4=
 github.com/adhocore/chin v1.1.0 h1:RuBkSBhtGpW2l6y9d/YSj7ZJSQINJgjodoD0OB1coAo=
 github.com/adhocore/chin v1.1.0/go.mod h1:X6ey2uVyRozOnqd/sFb/k0pxY1tnm+Msigh1m2jlfbg=
 github.com/akutz/memconn v0.1.0 h1:NawI0TORU4hcOMsMr11g7vwlCdkYeLKXBcxWu2W/P8A=

internal/assets/spinner.svg

@@ -0,0 +1,11 @@
+package components
+
+templ Footer() {
+	<footer class="fixed p-1 bottom-0 bg-gray-100 w-full border-t">
+		<div class="md:container md:mx-auto">
+			<a class="rounded-lg p-4 text-s text-blue-600 visited:text-purple-600 text-center" href="https://github.com/cterence/dead-drop" target="_blank">
+				github.com/cterence/tailout
+			</a>
+		</div>
+	</footer>
+}

internal/views/components/footer.templ

@@ -0,0 +1,11 @@
+package components
+
+templ Header() {
+	<head>
+		<script src="https://unpkg.com/htmx.org@2.0.0" integrity="sha384-wS5l5IKJBvK6sPTKa2WZ1js3d947pvWXbPJ1OmWfEuxLgeHcEbjUUA5i9V5ZkpCw" crossorigin="anonymous"></script>
+		<script src="https://cdn.tailwindcss.com"></script>
+		<meta charset="UTF-8"/>
+		<meta name="viewport" content="width=device-width, initial-scale=1.0"/>
+		<title>tailout.</title>
+	</head>
+}

internal/views/components/header.templ

@@ -0,0 +1,5 @@
+package components
+
+templ Title() {
+	<a href="/" class="text-4xl">tailout.</a>
+}

internal/views/components/title.templ

@@ -0,0 +1,56 @@
+package views
+
+import "github.com/cterence/tailout/internal/views/components"
+
+templ Index() {
+	<!DOCTYPE html>
+	<html lang="en" class="text-gray-900 antialiased leading-tight">
+		@components.Header()
+		<body class="min-h-screen bg-gray-100 p-4">
+			<div class="md:container md:mx-auto">
+				@components.Title()
+				<h2 class="text-xl my-4 text-gray-600">create an exit node in your tailnet in seconds.</h2>
+				<div>
+					<button id="create-btn" class="bg-blue-500 hover:bg-blue-700 text-white font-bold py-2 px-4 mr-2 rounded" hx-post="/create" hx-indicator="#spinner" hx-target="#create-btn" hx-on::before-request="disableButton(event)" hx-on::after-request="enableButton(event)" hx-swap="none">
+						Create exit node
+						// <img id="spinner" class="htmx-indicator" src="/assets/spinner.svg" alt="spinner"/>
+					</button>
+					<button id="stop-btn" class="bg-blue-500 hover:bg-blue-700 text-white font-bold py-2 px-4 rounded" hx-post="/stop" hx-swap="none" hx-indicator="#spinner" hx-on::before-request="disableButton(event)" hx-on::after-request="enableButton(event)">
+						Stop all exit nodes
+					</button>
+				</div>
+				// Table of exit nodes
+				<div class="overflow-x-auto my-4">
+					<table class="table-auto w-full text-sm text-left text-gray-500">
+						<thead class="text-xs text-gray-700 uppercase bg-gray-50">
+							<tr>
+								<th class="px-4 py-2">Hostname</th>
+								<th class="px-4 py-2">Address</th>
+								<th class="px-4 py-2">Last seen</th>
+							</tr>
+						</thead>
+						<tbody hx-get="/status" hx-trigger="load,every 5s"></tbody>
+					</table>
+				</div>
+			</div>
+			@components.Footer()
+		</body>
+		<script>
+    function disableButton(e) {
+        htmx.removeClass(e.detail.elt, 'hover:bg-blue-700');
+        htmx.removeClass(e.detail.elt, 'bg-blue-500');
+        htmx.addClass(e.detail.elt, 'cursor-not-allowed');
+        htmx.addClass(e.detail.elt, 'bg-gray-300');
+        e.disabled = true;
+    }
+
+    function enableButton(e) {
+        htmx.removeClass(e.detail.elt, 'cursor-not-allowed');
+        htmx.removeClass(e.detail.elt, 'bg-gray-300');
+        htmx.addClass(e.detail.elt, 'hover:bg-blue-700');
+        htmx.addClass(e.detail.elt, 'bg-blue-500');
+        e.disabled = false;
+    }
+    </script>
+	</html>
+}

internal/views/index.templ

@@ -16,6 +16,7 @@ type Config struct {
 	Tailscale TailscaleConfig `mapstructure:"tailscale"`
 	Create    CreateConfig    `mapstructure:"create"`
 	Stop      StopConfig      `mapstructure:"stop"`
+	Ui        UiConfig        `mapstructure:"ui"`
 }
 
 type CreateConfig struct {
@@ -33,6 +34,11 @@ type StopConfig struct {
 	All bool `mapstructure:"all"`
 }
 
+type UiConfig struct {
+	Port    string `mapstructure:"port"`
+	Address string `mapstructure:"address"`
+}
+
 type Policy struct {
 	ACLs                []ACL               `json:"acls,omitempty"`
 	Hosts               map[string]string   `json:"hosts,omitempty"`

tailout/config/config.go

@@ -204,7 +204,7 @@ sudo echo "sudo shutdown" | at now + ` + fmt.Sprint(durationMinutes) + ` minutes
 	// Call internal.GetNodes periodically and search for the instance
 	// If the instance is found, print the command to use it as an exit node
 
-	timeout := time.Now().Add(2 * time.Minute)
+	timeout := time.Now().Add(3 * time.Minute)
 
 	client, err := tailscale.NewClient(app.Config.Tailscale.APIKey, app.Config.Tailscale.Tailnet)
 	if err != nil {
@@ -268,9 +268,6 @@ found:
 	if connect {
 		fmt.Println()
 		args := []string{nodeName}
-		if nonInteractive {
-			args = append(args, "--non-interactive")
-		}
 		err = app.Connect(args)
 		if err != nil {
 			return fmt.Errorf("failed to connect to node: %w", err)

tailout/create.go

@@ -0,0 +1,77 @@
+package tailout
+
+import (
+	"fmt"
+	"log/slog"
+	"net/http"
+
+	"github.com/cterence/tailout/internal"
+	"github.com/cterence/tailout/internal/views"
+	"github.com/tailscale/tailscale-client-go/tailscale"
+
+	"github.com/a-h/templ"
+)
+
+func (app *App) Ui(args []string) error {
+	indexComponent := views.Index()
+	app.Config.NonInteractive = true
+
+	client, err := tailscale.NewClient(app.Config.Tailscale.APIKey, app.Config.Tailscale.Tailnet)
+	if err != nil {
+		return fmt.Errorf("failed to create tailscale client: %w", err)
+	}
+
+	http.Handle("/", templ.Handler(indexComponent))
+
+	http.HandleFunc("/create", func(w http.ResponseWriter, r *http.Request) {
+		slog.Info("Creating tailout node")
+		go func() {
+			err := app.Create()
+			if err != nil {
+				slog.Error("failed to create node: " + err.Error())
+			}
+		}()
+		w.WriteHeader(http.StatusCreated)
+	})
+
+	http.HandleFunc("/stop", func(w http.ResponseWriter, r *http.Request) {
+		slog.Info("Stopping tailout nodes")
+		app.Config.Stop.All = true
+		go func() {
+			err := app.Stop(nil)
+			if err != nil {
+				slog.Error("failed to create node: " + err.Error())
+			}
+		}()
+		w.WriteHeader(http.StatusNoContent)
+	})
+
+	http.HandleFunc("/status", func(w http.ResponseWriter, r *http.Request) {
+		nodes, err := internal.GetActiveNodes(client)
+		if err != nil {
+			slog.Error("failed to get active nodes: " + err.Error())
+			w.WriteHeader(http.StatusInternalServerError)
+			return
+		}
+		table := ""
+		for _, node := range nodes {
+			table += fmt.Sprintf("<tr class=\"bg-white border-b\"><td class=\"px-4 py-2\">%s</td><td class=\"px-4 py-2\">%s</td><td class=\"px-4 py-2\">%s</td></tr>", node.Hostname, node.Addresses[0], node.LastSeen)
+		}
+		w.Write([]byte(table))
+	})
+
+	http.Handle("/health", http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.Write([]byte(`{"status": {"server": "OK"}}`))
+	}))
+
+	// Serve assets files
+	http.Handle("/assets/", http.StripPrefix("/assets/", http.FileServer(http.Dir("internal/assets"))))
+
+	slog.Info("Listening on " + app.Config.Ui.Address + ":" + app.Config.Ui.Port)
+	err = http.ListenAndServe(app.Config.Ui.Address+":"+app.Config.Ui.Port, nil)
+	if err != nil {
+		slog.Error("Failed to start server")
+		panic(err)
+	}
+	return nil
+}