opnsense-prom-exporter/opnsense_exporter/opnsense_api.py

import logging
from enum import Enum

import requests
from requests import RequestException

logger = logging.getLogger(__name__)


class OPNSenseHAState(Enum):
    ACTIVE = "active"
    HOT_STANDBY = "hot_standby"
    UNAVAILABLE = "unavailable"
    MAINTENANCE_MODE = "maintenancemode"


class OPNSenseTrafficMetric(Enum):
    IN = "rate_bits_in"
    OUT = "rate_bits_out"


class OPNSenseTraffic:
    interface: str = None
    metric: OPNSenseTrafficMetric = None
    value: int = 0

    def __init__(
        self,
        interface: str,
        metric: OPNSenseTrafficMetric,
        value: int = 0,
    ):
        self.value = value
        self.interface = interface
        self.metric = metric

    @property
    def labels(self):
        return {"metric": self.metric.value, "interface": self.interface}

    def __eq__(self, opn_traffic):
        """Used by unittest to assert expected values"""
        return (
            self.interface == opn_traffic.interface
            and self.metric == opn_traffic.metric
            and self.value == opn_traffic.value
        )

    def __repr__(self):
        return f"{self.interface} - {self.metric} = {self.value}"


class OPNSenseRole(Enum):
    MAIN = "main"
    BACKUP = "backup"


class OPNSenseAPI:
    host: str = None
    login: str = None
    password: str = None
    role: OPNSenseRole = None
    get_vip_status_timeout_sec: int = 5
    get_traffic_timeout_sec: int = 15

    def __init__(
        self,
        role,
        host,
        login,
        password,
        get_vip_status_timeout_sec: int = 5,
        get_traffic_timeout_sec: int = 5,
    ):
        self.role = role
        self.host = host
        self.login = login
        self.password = password
        self.get_vip_status_timeout_sec = get_vip_status_timeout_sec
        self.get_traffic_timeout_sec = get_traffic_timeout_sec

    @property
    def labels(self):
        return {
            "host": self.host,
            "role": self.role.value,
        }

    def prepare_url(self, path):
        return f"https://{self.host}{path}"

    def get(self, path, timeout=2):
        response = requests.get(
            self.prepare_url(path),
            auth=(self.login, self.password),
            timeout=timeout,
            # # as today I'm using the opnsense selfsigned certificat
            # # but we should avoid this instead trust any certificat
            verify=False,
        )
        response.raise_for_status()
        return response.json()

    def get_interface_vip_status(self) -> OPNSenseHAState:
        try:
            data = self.get(
                "/api/diagnostics/interface/get_vip_status/",
                timeout=self.get_vip_status_timeout_sec,
            )
        except RequestException as ex:
            logger.error(
                "Get VIP STATUS on %s failed with the following error %r", self.host, ex
            )
            return OPNSenseHAState.UNAVAILABLE
        if data["carp"]["maintenancemode"]:
            return OPNSenseHAState.MAINTENANCE_MODE
        is_active = all([row["status"] == "MASTER" for row in data["rows"]])
        if is_active:
            return OPNSenseHAState.ACTIVE
        is_backup = all([row["status"] == "BACKUP" for row in data["rows"]])
        if is_backup:
            return OPNSenseHAState.HOT_STANDBY
        logger.warning(
            "this host %s is no active nor backup received payload %s", self.host, data
        )
        return OPNSenseHAState.UNAVAILABLE

    def get_traffic(self, interfaces):
        if not interfaces:
            return []
        try:
            data = self.get(
                f"/api/diagnostics/traffic/top/{interfaces}",
                timeout=self.get_traffic_timeout_sec,
            )
        except RequestException as ex:
            logger.error(
                "Get diagnostics traffic on %s interface(s) for %s host failed with the following error %r",
                interfaces,
                self.host,
                ex,
            )
            return []
        traffics = []
        for interface in interfaces.split(","):
            traffic_in = OPNSenseTraffic(interface, OPNSenseTrafficMetric.IN)
            traffic_out = OPNSenseTraffic(interface, OPNSenseTrafficMetric.OUT)
            for record in data.get(interface, {}).get("records", []):
                traffic_in.value += record.get(OPNSenseTrafficMetric.IN.value, 0)
                traffic_out.value += record.get(OPNSenseTrafficMetric.OUT.value, 0)
            traffics.extend([traffic_in, traffic_out])
        return traffics
First implementation 2023-09-01 13:27:55 +02:00			`import logging`
Add role label in metrics I expecte to refactor and merge metrics together so later those labels will be required 2023-09-03 21:52:19 +02:00			`from enum import Enum`
First implementation 2023-09-01 13:27:55 +02:00
			`import requests`
			`from requests import RequestException`

			`logger = logging.getLogger(__name__)`


Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`class OPNSenseHAState(Enum):`
			`ACTIVE = "active"`
			`HOT_STANDBY = "hot_standby"`
			`UNAVAILABLE = "unavailable"`
			`MAINTENANCE_MODE = "maintenancemode"`


Allow to monitor multiple interfaces 2023-09-03 23:38:34 +02:00			`class OPNSenseTrafficMetric(Enum):`
			`IN = "rate_bits_in"`
			`OUT = "rate_bits_out"`


			`class OPNSenseTraffic:`
			`interface: str = None`
			`metric: OPNSenseTrafficMetric = None`
			`value: int = 0`

allow to configure OPNSense REST API calls timeout per REST API endpoint two new paramters available and parameters. 2023-09-06 10:39:54 +02:00			`def __init__(`
			`self,`
			`interface: str,`
			`metric: OPNSenseTrafficMetric,`
			`value: int = 0,`
			`):`
Allow to monitor multiple interfaces 2023-09-03 23:38:34 +02:00			`self.value = value`
			`self.interface = interface`
			`self.metric = metric`

			`@property`
			`def labels(self):`
			`return {"metric": self.metric.value, "interface": self.interface}`

			`def __eq__(self, opn_traffic):`
			`"""Used by unittest to assert expected values"""`
			`return (`
			`self.interface == opn_traffic.interface`
			`and self.metric == opn_traffic.metric`
			`and self.value == opn_traffic.value`
			`)`

			`def __repr__(self):`
			`return f"{self.interface} - {self.metric} = {self.value}"`


Add role label in metrics I expecte to refactor and merge metrics together so later those labels will be required 2023-09-03 21:52:19 +02:00			`class OPNSenseRole(Enum):`
			`MAIN = "main"`
			`BACKUP = "backup"`


First implementation 2023-09-01 13:27:55 +02:00			`class OPNSenseAPI:`
			`host: str = None`
			`login: str = None`
			`password: str = None`
Add role label in metrics I expecte to refactor and merge metrics together so later those labels will be required 2023-09-03 21:52:19 +02:00			`role: OPNSenseRole = None`
allow to configure OPNSense REST API calls timeout per REST API endpoint two new paramters available and parameters. 2023-09-06 10:39:54 +02:00			`get_vip_status_timeout_sec: int = 5`
			`get_traffic_timeout_sec: int = 15`

			`def __init__(`
			`self,`
			`role,`
			`host,`
			`login,`
			`password,`
			`get_vip_status_timeout_sec: int = 5,`
			`get_traffic_timeout_sec: int = 5,`
			`):`
Add role label in metrics I expecte to refactor and merge metrics together so later those labels will be required 2023-09-03 21:52:19 +02:00			`self.role = role`
First implementation 2023-09-01 13:27:55 +02:00			`self.host = host`
			`self.login = login`
			`self.password = password`
allow to configure OPNSense REST API calls timeout per REST API endpoint two new paramters available and parameters. 2023-09-06 10:39:54 +02:00			`self.get_vip_status_timeout_sec = get_vip_status_timeout_sec`
			`self.get_traffic_timeout_sec = get_traffic_timeout_sec`
First implementation 2023-09-01 13:27:55 +02:00
Add role label in metrics I expecte to refactor and merge metrics together so later those labels will be required 2023-09-03 21:52:19 +02:00			`@property`
			`def labels(self):`
			`return {`
			`"host": self.host,`
			`"role": self.role.value,`
			`}`

First implementation 2023-09-01 13:27:55 +02:00			`def prepare_url(self, path):`
			`return f"https://{self.host}{path}"`

Increase timeout while getting wan traffic info 2023-09-02 02:35:02 +02:00			`def get(self, path, timeout=2):`
First implementation 2023-09-01 13:27:55 +02:00			`response = requests.get(`
			`self.prepare_url(path),`
			`auth=(self.login, self.password),`
Increase timeout while getting wan traffic info 2023-09-02 02:35:02 +02:00			`timeout=timeout,`
First implementation 2023-09-01 13:27:55 +02:00			`# # as today I'm using the opnsense selfsigned certificat`
			`# # but we should avoid this instead trust any certificat`
			`verify=False,`
			`)`
			`response.raise_for_status()`
			`return response.json()`

Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`def get_interface_vip_status(self) -> OPNSenseHAState:`
First implementation 2023-09-01 13:27:55 +02:00			`try:`
allow to configure OPNSense REST API calls timeout per REST API endpoint two new paramters available and parameters. 2023-09-06 10:39:54 +02:00			`data = self.get(`
			`"/api/diagnostics/interface/get_vip_status/",`
			`timeout=self.get_vip_status_timeout_sec,`
			`)`
First implementation 2023-09-01 13:27:55 +02:00			`except RequestException as ex:`
			`logger.error(`
			`"Get VIP STATUS on %s failed with the following error %r", self.host, ex`
			`)`
Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`return OPNSenseHAState.UNAVAILABLE`
First implementation 2023-09-01 13:27:55 +02:00			`if data["carp"]["maintenancemode"]:`
Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`return OPNSenseHAState.MAINTENANCE_MODE`
First implementation 2023-09-01 13:27:55 +02:00			`is_active = all([row["status"] == "MASTER" for row in data["rows"]])`
			`if is_active:`
Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`return OPNSenseHAState.ACTIVE`
First implementation 2023-09-01 13:27:55 +02:00			`is_backup = all([row["status"] == "BACKUP" for row in data["rows"]])`
			`if is_backup:`
Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`return OPNSenseHAState.HOT_STANDBY`
First implementation 2023-09-01 13:27:55 +02:00			`logger.warning(`
			`"this host %s is no active nor backup received payload %s", self.host, data`
			`)`
Create opnsense_server_ha_state metric in order to replace and that will be removed in version 1.0.0. Also use Enum to store possible OPNsense HA states to avoid typo 2023-09-04 00:06:17 +02:00			`return OPNSenseHAState.UNAVAILABLE`
First implementation 2023-09-01 13:27:55 +02:00
Allow to monitor multiple interfaces 2023-09-03 23:38:34 +02:00			`def get_traffic(self, interfaces):`
Allow empty string interface to not call the OPNsense traffic diagnostic REST API endpoint 2023-09-06 09:09:41 +02:00			`if not interfaces:`
			`return []`
First implementation 2023-09-01 13:27:55 +02:00			`try:`
allow to configure OPNSense REST API calls timeout per REST API endpoint two new paramters available and parameters. 2023-09-06 10:39:54 +02:00			`data = self.get(`
			`f"/api/diagnostics/traffic/top/{interfaces}",`
			`timeout=self.get_traffic_timeout_sec,`
			`)`
First implementation 2023-09-01 13:27:55 +02:00			`except RequestException as ex:`
			`logger.error(`
Allow to monitor multiple interfaces 2023-09-03 23:38:34 +02:00			`"Get diagnostics traffic on %s interface(s) for %s host failed with the following error %r",`
			`interfaces,`
First implementation 2023-09-01 13:27:55 +02:00			`self.host,`
			`ex,`
			`)`
Allow to monitor multiple interfaces 2023-09-03 23:38:34 +02:00			`return []`
			`traffics = []`
			`for interface in interfaces.split(","):`
			`traffic_in = OPNSenseTraffic(interface, OPNSenseTrafficMetric.IN)`
			`traffic_out = OPNSenseTraffic(interface, OPNSenseTrafficMetric.OUT)`
Allow empty string interface to not call the OPNsense traffic diagnostic REST API endpoint 2023-09-06 09:09:41 +02:00			`for record in data.get(interface, {}).get("records", []):`
Allow to monitor multiple interfaces 2023-09-03 23:38:34 +02:00			`traffic_in.value += record.get(OPNSenseTrafficMetric.IN.value, 0)`
			`traffic_out.value += record.get(OPNSenseTrafficMetric.OUT.value, 0)`
			`traffics.extend([traffic_in, traffic_out])`
			`return traffics`