指定监听一个端口,配置用户密码验证,访问接口执行shell脚本。
shell脚本需要写对路径,并且配置执行权限。
源码:
package main
import (
"encoding/json"
"flag"
"fmt"
"log"
"net/http"
"os"
"os/exec"
)
func main() {
// 定义程序参数
portPtr := flag.String("port", "8080", "Port to run the server on")
shellScriptPtr := flag.String("shellScript", "your-shell-script.sh", "Path to the shell script to execute")
logFilePtr := flag.String("logFile", "server.log", "Path to the log file")
authUsernamePtr := flag.String("authUsername", "admin", "Username for authentication")
authPasswordPtr := flag.String("authPassword", "password", "Password for authentication")
flag.Parse()
// 创建日志文件
f, err := os.OpenFile(*logFilePtr, os.O_APPEND|os.O_CREATE|os.O_WRONLY, 0644)
if err != nil {
log.Fatalf("Failed to open log file: %v", err)
}
defer f.Close()
// 设置日志输出
log.SetOutput(f)
log.SetFlags(log.LstdFlags | log.Lshortfile)
// 创建 HTTP 服务器
http.HandleFunc("/execute", basicAuth(*authUsernamePtr, *authPasswordPtr, executeShellScript(*shellScriptPtr)))
log.Printf("Starting server on port %s", *portPtr)
log.Fatal(http.ListenAndServe(":"+*portPtr, nil))
}
func basicAuth(username, password string, next http.HandlerFunc) http.HandlerFunc {
return func(w http.ResponseWriter, r *http.Request) {
user, pass, ok := r.BasicAuth()
if !ok || user != username || pass != password {
w.Header().Set("WWW-Authenticate", `Basic realm="Restricted"`)
w.WriteHeader(http.StatusUnauthorized)
fmt.Fprintln(w, "Unauthorized")
return
}
next(w, r)
}
}
func executeShellScript(shellScript string) http.HandlerFunc {
return func(w http.ResponseWriter, r *http.Request) {
if r.Method != http.MethodPost {
w.WriteHeader(http.StatusMethodNotAllowed)
log.Printf("Method not allowed: %s", r.Method)
respondWithJSON(w, http.StatusMethodNotAllowed, map[string]interface{}{
"success": false,
"message": "Method not allowed",
})
return
}
// 执行 Shell 脚本
output, err := exec.Command("/bin/sh", "-c", shellScript).Output()
if err != nil {
w.WriteHeader(http.StatusInternalServerError)
log.Printf("Error executing shell script '%s': %v", shellScript, err)
respondWithJSON(w, http.StatusInternalServerError, map[string]interface{}{
"success": false,
"message": "Error executing shell script",
})
return
}
// 打印 Shell 脚本输出到日志
log.Printf("Shell script '%s' output:\n%s", shellScript, output)
// 返回 JSON 格式的响应
w.WriteHeader(http.StatusOK)
respondWithJSON(w, http.StatusOK, map[string]interface{}{
"success": true,
"message": "Shell script executed successfully",
})
}
}
func respondWithJSON(w http.ResponseWriter, statusCode int, payload interface{}) {
w.Header().Set("Content-Type", "application/json")
w.WriteHeader(statusCode)
json.NewEncoder(w).Encode(payload)
}二进制命令执行:
监听5000端口,用户名:test,密码:123321 ,日志文件 my-log.txt ,执行shell脚本,当前目录/app/addApp.sh。
cat /data/fdroid/go/runserver.sh
#!/bin/bash
/app/shell-execute -port=5000 -shellScript=/app/addApp.sh -logFile=my-log.txt -authUsername=test -authPassword=123321
评论区