feat: feature registry, auto-deploy, IP management, Docker support

Feature Manager (70+ features across 20 categories):
- Web servers: Apache2, nginx, OpenLiteSpeed, Varnish
- PHP: 7.4/8.1/8.2/8.3 multi-version, Composer
- Databases: MySQL 8, MariaDB, PostgreSQL, Redis, Memcached, phpMyAdmin, phpPgAdmin
- Email: Postfix, Dovecot, Roundcube, RainLoop, SpamAssassin, Rspamd, DKIM
- DNS: BIND9, PowerDNS
- FTP: ProFTPD, vsftpd, Pure-FTPd
- SSL: Certbot/Let's Encrypt, acme.sh
- Security: Fail2Ban, ModSecurity WAF, ImunifyAV, ClamAV, UFW, CrowdSec
- Containers: Docker Engine, Docker Compose, Portainer CE, per-account Docker hosting
- IP Management: Shared IPs (SNI), Dedicated IPs, IPv6
- Monitoring: Netdata, AWStats, GoAccess, Grafana+Prometheus
- Backup: BorgBackup, rclone (S3/B2/GCS), Duplicati
- CDN: Cloudflare API, PageSpeed Module
- Dev: Gitea, Phusion Passenger, JupyterHub
- One-click apps: WordPress+WP-CLI, auto-installer (50+ apps)
- Billing: WHMCS bridge, BoxBilling
- Reseller: White label, custom nameservers
- Notifications: Email, Slack, Telegram
- Compliance: Auditd, OSSEC HIDS

Auto-deploy pipeline (deploy/):
- webhook.php: HMAC-verified GitHub push webhook
- deploy-runner.sh: PHP syntax validation → git pull → rsync → DB migrations → PHP-FPM reload
- setup-deploy.sh: one-shot setup script, outputs GitHub webhook config
- Runs every minute via cron; locked to prevent concurrent deploys

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
2026-06-07 05:11:36 +00:00
parent e802443d4a
commit e94dc719c8
6 changed files with 668 additions and 0 deletions
+80
View File
@@ -0,0 +1,80 @@
<?php
/**
* NovaCPX Feature Registry & Toggle API
* Features can be enabled/disabled/installed on the fly
* Covers: Docker, IPs, WordPress, Node.js, Python, Ruby, Git deploy,
* Cloudflare, Redis, Memcached, Varnish, ModSecurity, ImunifyAV,
* Webmail, phpMyAdmin, phpPgAdmin, and more
*/
Auth::getInstance()->require('admin');
$db = DB::getInstance();
$body = json_decode(file_get_contents('php://input'), true) ?? [];
match ($action) {
'list' => (function() use ($db) {
$rows = $db->fetchAll("SELECT * FROM features ORDER BY category, name");
$grouped = [];
foreach ($rows as $r) {
$grouped[$r['category']][] = $r;
}
Response::success($grouped);
})(),
'toggle' => (function() use ($db, $body) {
$id = (int)($body['id'] ?? 0);
$enable = (bool)($body['enable'] ?? false);
$feat = $db->fetchOne("SELECT * FROM features WHERE id = ?", [$id]);
if (!$feat) Response::error("Feature not found");
$db->execute("UPDATE features SET enabled = ?, updated_at = NOW() WHERE id = ?", [(int)$enable, $id]);
audit('feature.' . ($enable ? 'enable' : 'disable'), $feat['slug']);
// Run hook if defined
if ($enable && $feat['install_cmd'] && !$feat['installed']) {
Response::success(['action' => 'install_required', 'feature' => $feat]);
}
Response::success(null, 'Feature ' . ($enable ? 'enabled' : 'disabled'));
})(),
'install' => (function() use ($db, $body) {
$id = (int)($body['id'] ?? 0);
$feat = $db->fetchOne("SELECT * FROM features WHERE id = ?", [$id]);
if (!$feat) Response::error("Feature not found");
if ($feat['installed']) Response::error("Already installed");
if (!$feat['install_cmd']) Response::error("No install command defined");
// Run install in background, return job ID
$jobId = uniqid('install_');
$logFile = "/var/log/novacpx/feature_{$jobId}.log";
$cmd = "nohup bash -c " . escapeshellarg($feat['install_cmd']) . " > " . escapeshellarg($logFile) . " 2>&1 & echo $!";
$pid = trim(shell_exec($cmd) ?: '');
$db->execute("UPDATE features SET install_pid = ?, install_log = ?, updated_at = NOW() WHERE id = ?", [$pid, $logFile, $id]);
audit('feature.install', $feat['slug']);
Response::success(['job_id' => $jobId, 'pid' => $pid, 'log' => $logFile]);
})(),
'install-log' => (function() use ($db) {
$id = (int)($_GET['id'] ?? 0);
$feat = $db->fetchOne("SELECT install_log, install_pid, installed FROM features WHERE id = ?", [$id]);
if (!$feat) Response::error("Feature not found");
$logContent = '';
if ($feat['install_log'] && file_exists($feat['install_log'])) {
$logContent = file_get_contents($feat['install_log']);
}
// Check if process finished
$running = false;
if ($feat['install_pid']) {
$running = file_exists("/proc/{$feat['install_pid']}");
if (!$running && !$feat['installed']) {
$db->execute("UPDATE features SET installed = 1, enabled = 1, updated_at = NOW() WHERE id = ?", [$id]);
}
}
Response::success(['log' => $logContent, 'running' => $running, 'installed' => (bool)$feat['installed']]);
})(),
default => Response::error("Unknown features action: $action", 404),
};