pfrest
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIFirewallSchedule.inc‎
Lines changed: 34 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIFirewallSchedule.inc‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIFirewallScheduleTimeRange.inc‎
Lines changed: 30 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIFirewallScheduleTimeRange.inc‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/framework/APIResponse.inc‎
Lines changed: 126 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/framework/APIResponse.inc‎
Lines changed: 126 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/models/APIFirewallScheduleCreate.inc‎
Lines changed: 141 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/models/APIFirewallScheduleCreate.inc‎
Lines changed: 141 additions & 0 deletions
@@ -0,0 +1,34 @@
+<?php
+//   Copyright 2021 Jared Hendrickson
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+
+require_once("api/framework/APIEndpoint.inc");
+
+class APIFirewallSchedule extends APIEndpoint {
+    public function __construct() {
+        $this->url = "/api/v1/firewall/schedule";
+    }
+
+    protected function get() {
+        return (new APIFirewallScheduleRead())->call();
+    }
+
+    protected function post() {
+        return (new APIFirewallScheduleCreate())->call();
+    }
+
+    protected function delete() {
+        return (new APIFirewallScheduleDelete())->call();
+    }
+}
@@ -0,0 +1,30 @@
+<?php
+//   Copyright 2021 Jared Hendrickson
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+
+require_once("api/framework/APIEndpoint.inc");
+
+class APIFirewallScheduleTimeRange extends APIEndpoint {
+    public function __construct() {
+        $this->url = "/api/v1/firewall/schedule/time_range";
+    }
+
+    protected function post() {
+        return (new APIFirewallScheduleTimeRangeCreate())->call();
+    }
+
+    protected function delete() {
+        return (new APIFirewallScheduleTimeRangeDelete())->call();
+    }
+}
@@ -1856,6 +1856,132 @@ function get($id, $data=[], $all=false) {
             "return" => $id,
             "message" => "Firewall traffic shaper queue name does not exist"
         ],
+        4146 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule name is required"
+        ],
+        4147 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule name can only contain alphanumerics, underscores and hyphens"
+        ],
+        4148 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule name must 32 characters or less"
+        ],
+        4149 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule name already in use"
+        ],
+        4150 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule name does not exist"
+        ],
+        4151 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range month is required"
+        ],
+        4152 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range months must be between 1 and 12"
+        ],
+        4153 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range day is required"
+        ],
+        4154 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range number of days must match number of months"
+        ],
+        4155 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range days out of range for month"
+        ],
+        4156 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range hour is required"
+        ],
+        4157 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range starting hour is invalid"
+        ],
+        4158 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range ending hour is invalid"
+        ],
+        4159 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range starting hour cannot be greater than the ending hour"
+        ],
+        4160 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range positions must be between 1 and 7"
+        ],
+        4161 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range is required"
+        ],
+        4162 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "At least one firewall schedule time range is required"
+        ],
+        4163 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range ID is required"
+        ],
+        4164 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Firewall schedule time range ID does not exist"
+        ],
+        4165 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Cannot delete the last remaining firewall schedule time range"
+        ],
+        4166 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Cannot delete firewall schedule while it is in use"
+        ],
 
         //5000-5999 reserved for /users API calls
         5000 => [
 
@@ -0,0 +1,141 @@
+<?php
+//   Copyright 2021 Jared Hendrickson
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+
+require_once("api/framework/APIModel.inc");
+require_once("api/framework/APIResponse.inc");
+
+
+class APIFirewallScheduleCreate extends APIModel {
+    # Create our method constructor
+    public function __construct() {
+        parent::__construct();
+        $this->privileges = ["page-all", "page-firewall-schedules-edit"];
+        $this->change_note = "Added firewall schedule via API";
+    }
+
+    public function action() {
+        # Write this schedule to the config and reload the firewall filter
+        $this->__init_config();
+        $this->config["schedules"]["schedule"][] = $this->validated_data;
+        $this->__sort_schedules();
+        $this->write_config();
+        filter_configure();
+
+        return APIResponse\get(0, $this->validated_data);
+    }
+
+    public function validate_payload() {
+        # Add static values
+        $this->validated_data["schedlabel"] = uniqid();
+
+        # Validate fields
+        $this->__validate_name();
+        $this->__validate_timerange();
+        $this->__validate_descr();
+    }
+
+    private function __validate_name() {
+        # Check for our required `name` payload value
+        if (isset($this->initial_data["name"])) {
+            # Ensure the name only contains alphanumeric, underscores, and hyphens
+            if (preg_match('/^[\w-]+$/', $this->initial_data["name"])) {
+                # Ensure the name is greater than 1 character and less than equal to 15 characters
+                if (strlen($this->initial_data["name"]) >= 1 and strlen($this->initial_data["name"]) <= 32) {
+                    # Ensure the name is not already in use
+                    if (!$this->is_schedule_name_in_use($this->initial_data["name"])) {
+                        $this->validated_data["name"] = $this->initial_data["name"];
+                    } else {
+                        $this->errors[] = APIResponse\get(4149);
+                    }
+                } else {
+                    $this->errors[] = APIResponse\get(4148);
+                }
+            } else {
+                $this->errors[] = APIResponse\get(4147);
+            }
+        } else {
+            $this->errors[] = APIResponse\get(4146);
+        }
+    }
+
+    private function __validate_timerange() {
+        # Check for the optional `timerange` payload value
+        if (isset($this->initial_data["timerange"])) {
+            # Initialize the array to store validated time ranges
+            $this->validated_data["timerange"];
+
+            # Require at least 1 time range to be configured
+            if (is_array($this->initial_data["timerange"]) and count($this->initial_data["timerange"]) >= 1) {
+                # Loop through each requested time range to validate
+                foreach ($this->initial_data["timerange"] as $tr_data) {
+                    # Validate the time range using the APIFirewallScheduleTimeRangeCreate model
+                    $time_range = new APIFirewallScheduleTimeRangeCreate();
+                    $time_range->initial_data = $tr_data;
+                    $time_range->validate_payload(true);
+
+                    # Add the validated time range if no errors were found
+                    if (empty($time_range->errors)) {
+                        $this->validated_data["timerange"][] = $time_range->validated_data;
+                    } else {
+                        $this->errors = $this->errors + $time_range->errors;
+                    }
+                }
+            } else {
+                $this->errors[] = APIResponse\get(4162);
+            }
+        } else {
+            $this->errors[] = APIResponse\get(4161);
+        }
+    }
+
+    private function __validate_descr() {
+        # Check for the optional `descr` payload value
+        if (isset($this->initial_data["descr"])) {
+            $this->validated_data["descr"] = strval($this->initial_data["descr"]);
+        }
+    }
+
+    public function is_schedule_name_in_use($name) {
+        # Loop through each schedule configured and check it's name
+        foreach ($this->config["schedules"]["schedule"] as $schedule) {
+            # Check if this $schedule's name matches our requested name
+            if ($name === $schedule["name"] or $name == "wan" or $name == "lan") {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    private function __init_config() {
+        # Check if there is no schedules array in the config
+        if (empty($this->config["schedules"])) {
+            $this->config["schedules"] = [];
+        }
+        # Check if there is no schedule array in the config
+        if (empty($this->config["schedules"]["schedule"])) {
+            $this->config["schedules"]["schedule"] = [];
+        }
+    }
+
+    private static function __compare_schedules($a, $b) {
+        return strcmp($a['name'], $b['name']);
+    }
+
+    private function __sort_schedules() {
+        if (is_array($this->config['schedules']['schedule'])) {
+            usort($this->config['schedules']['schedule'], ["APIFirewallScheduleCreate", "__compare_schedules"]);
+        }
+    }
+}