pfrest
diff --git a/‎docs/documentation.json‎
Lines changed: 216 additions & 0 deletions b/‎docs/documentation.json‎
Lines changed: 216 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIServicesNTPd.inc‎
Lines changed: 30 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIServicesNTPd.inc‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIServicesNTPdTimeServer.inc‎
Lines changed: 30 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/endpoints/APIServicesNTPdTimeServer.inc‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/framework/APIResponse.inc‎
Lines changed: 37 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/framework/APIResponse.inc‎
Lines changed: 37 additions & 0 deletions
diff --git a/‎pfSense-pkg-API/files/etc/inc/api/models/APIServicesNTPdRead.inc‎
Lines changed: 37 additions & 0 deletions b/‎pfSense-pkg-API/files/etc/inc/api/models/APIServicesNTPdRead.inc‎
Lines changed: 37 additions & 0 deletions
@@ -7404,6 +7404,105 @@
 				{
 					"name": "NTPD",
 					"item": [
+						{
+							"name": "TIME_SERVER",
+							"item": [
+								{
+									"name": "Create NTPd Time Server",
+									"request": {
+										"method": "POST",
+										"header": [],
+										"body": {
+											"mode": "raw",
+											"raw": "{\n    \"timeserver\": \"ntp.pool.org\", \n    \"ispool\": true, \n    \"prefer\": true, \n    \"noselect\": false\n}",
+											"options": {
+												"raw": {
+													"language": "json"
+												}
+											}
+										},
+										"url": {
+											"raw": "https://{{$hostname}}/api/v1/services/ntpd/time_server?timeserver=string&ispool=boolean&noselect=boolean&prefer=boolean",
+											"protocol": "https",
+											"host": [
+												"{{$hostname}}"
+											],
+											"path": [
+												"api",
+												"v1",
+												"services",
+												"ntpd",
+												"time_server"
+											],
+											"query": [
+												{
+													"key": "timeserver",
+													"value": "string",
+													"description": "Specify the IP or hostname of the NTP time server to add."
+												},
+												{
+													"key": "ispool",
+													"value": "boolean",
+													"description": "Specify whether or not this time server represents an NTP server pool or a single NTP server. "
+												},
+												{
+													"key": "noselect",
+													"value": "boolean",
+													"description": "Enable or disable this NTP time server from selection. If `true`, the time server will be eligible for selection. If `false, the NTP server will remain In the configuration but not used."
+												},
+												{
+													"key": "prefer",
+													"value": "boolean",
+													"description": "Enable or disable this NTP time server as a preferred NTP time server. If `true`, this time server will take preference over other time servers."
+												}
+											]
+										},
+										"description": "Add a new NTP time server to the NTPd configuration.<br><br>\n\n_Requires at least one of the following privileges:_ [`page-all`, `page-services-ntpd`]"
+									},
+									"response": []
+								},
+								{
+									"name": "Delete NTPd Time Server",
+									"request": {
+										"method": "DELETE",
+										"header": [],
+										"body": {
+											"mode": "raw",
+											"raw": "{\n    \"timeserver\": \"ntp.pool.org\"\n}",
+											"options": {
+												"raw": {
+													"language": "json"
+												}
+											}
+										},
+										"url": {
+											"raw": "https://{{$hostname}}/api/v1/services/ntpd/time_server?timeserver=string",
+											"protocol": "https",
+											"host": [
+												"{{$hostname}}"
+											],
+											"path": [
+												"api",
+												"v1",
+												"services",
+												"ntpd",
+												"time_server"
+											],
+											"query": [
+												{
+													"key": "timeserver",
+													"value": "string",
+													"description": "Specify the IP or hostname of the NTP time server to delete. If more than one time server exists with this value, only the first match will be deleted. In the case that all time servers were deleted, the default time server `pool.ntp.org` will be written."
+												}
+											]
+										},
+										"description": "Delete an existing NTP time server from the NTPd configuration.<br><br>\n\n_Requires at least one of the following privileges:_ [`page-all`, `page-services-ntpd`]"
+									},
+									"response": []
+								}
+							],
+							"description": "API endpoints that create, read, update and delete NTPd configuration."
+						},
 						{
 							"name": "Start NTPd Service",
 							"request": {
@@ -7436,6 +7535,123 @@
 							},
 							"response": []
 						},
+						{
+							"name": "Read NTPd Service",
+							"protocolProfileBehavior": {
+								"disableBodyPruning": true
+							},
+							"request": {
+								"method": "GET",
+								"header": [],
+								"body": {
+									"mode": "raw",
+									"raw": "{\n    \n}",
+									"options": {
+										"raw": {
+											"language": "json"
+										}
+									}
+								},
+								"url": {
+									"raw": "https://{{$hostname}}/api/v1/services/ntpd",
+									"protocol": "https",
+									"host": [
+										"{{$hostname}}"
+									],
+									"path": [
+										"api",
+										"v1",
+										"services",
+										"ntpd"
+									]
+								},
+								"description": "Read the ntpd service configuration.<br><br>\n\n_Requires at least one of the following privileges:_ [`page-all`, `page-services-ntpd`]"
+							},
+							"response": []
+						},
+						{
+							"name": "Update NTPd Service",
+							"request": {
+								"method": "PUT",
+								"header": [],
+								"body": {
+									"mode": "raw",
+									"raw": "{\n    \"interface\": [\"WAN\", \"lan\", \"lo0\"],\n    \"orphan\": 15,\n    \"logpeer\": true,\n    \"logsys\": true,\n    \"clockstats\": true,\n    \"loopstats\": false,\n    \"peerstats\": true,\n    \"statsgraph\": true,\n    \"timeservers\": [\n      {\"timeserver\": \"ntp.pool.org\", \"ispool\": true, \"prefer\": true, \"noselect\": false}\n    ]\n  }",
+									"options": {
+										"raw": {
+											"language": "json"
+										}
+									}
+								},
+								"url": {
+									"raw": "https://{{$hostname}}/api/v1/services/ntpd?interface=array&time_servers=array&orphan=integer&leapsec=string&statsgraph=boolean&logpeer=boolean&logsys=boolean&clockstats=boolean&loopstats=boolean&peerstats=boolean",
+									"protocol": "https",
+									"host": [
+										"{{$hostname}}"
+									],
+									"path": [
+										"api",
+										"v1",
+										"services",
+										"ntpd"
+									],
+									"query": [
+										{
+											"key": "interface",
+											"value": "array",
+											"description": "Update the Interfaces NTPd will listen on. This must be an array of strings. You may specify either the physical Interface ID, the pfSense Interface ID or the descriptive Interface name. To match any Interface, simply pass In an empty array. e.g. `[\"wan\", \"em1\", \"lo0\", \"LAN\"]` (optional)"
+										},
+										{
+											"key": "time_servers",
+											"value": "array",
+											"description": "Update the time servers used by the system. This must be an array of objects. Each object may use the parameters available In the /api/v1/services/ntpd/time_server endpoint. To revert to the default timeserver, you may pass In an empty array. Specifying this field will overwrite any existing time servers. To simply add or remove time servers, use the /api/v1/services/ntpd/time_server endpoint as it Is less taxing on the system. e.g. `[{\"timeserver\": \"pool.ntp.org\", \"ispool\": true\", \"prefer\": true, \"noselect\": false}]` (optional)"
+										},
+										{
+											"key": "orphan",
+											"value": "integer",
+											"description": "Update the orphan mode value. This must be a value between `1` and `15`. Orphan mode allows the system clock to be used when no other clocks are available. The number here specifies the stratum reported during orphan mode and should normally be set to a number high enough to insure that any other servers available to clients are preferred over this server. (optional)"
+										},
+										{
+											"key": "leapsec",
+											"value": "string",
+											"description": "Update the leap seconds configuration. This should be the contents of the leap seconds file received from the IERS. (optional)"
+										},
+										{
+											"key": "statsgraph",
+											"value": "boolean",
+											"description": "Enable or disable RRD graphs of NTP metrics. (optional)"
+										},
+										{
+											"key": "logpeer",
+											"value": "boolean",
+											"description": "Enable or disable the logging of peer messages. (optional)"
+										},
+										{
+											"key": "logsys",
+											"value": "boolean",
+											"description": "Enable or disable the logging of system messages. (optional)"
+										},
+										{
+											"key": "clockstats",
+											"value": "boolean",
+											"description": "Enable or disable the logging of reference clock statistics. (optional)"
+										},
+										{
+											"key": "loopstats",
+											"value": "boolean",
+											"description": "Enable or disable the logging of clock discipline statistics. (optional)"
+										},
+										{
+											"key": "peerstats",
+											"value": "boolean",
+											"description": "Enable or disable the logging of NTP peer statistics. (optional)"
+										}
+									]
+								},
+								"description": "Update the ntpd service configuration.<br><br>\n\n_Requires at least one of the following privileges:_ [`page-all`, `page-services-ntpd`]"
+							},
+							"response": []
+						},
 						{
 							"name": "Restart NTPd Service",
 							"request": {
 
@@ -0,0 +1,30 @@
+<?php
+//   Copyright 2021 Jared Hendrickson
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+
+require_once("api/framework/APIEndpoint.inc");
+
+class APIServicesNTPd extends APIEndpoint {
+    public function __construct() {
+        $this->url = "/api/v1/services/ntpd";
+    }
+
+    protected function get() {
+        return (new APIServicesNTPdRead())->call();
+    }
+
+    protected function put() {
+        return (new APIServicesNTPdUpdate())->call();
+    }
+}
@@ -0,0 +1,30 @@
+<?php
+//   Copyright 2021 Jared Hendrickson
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+
+require_once("api/framework/APIEndpoint.inc");
+
+class APIServicesNTPdTimeServer extends APIEndpoint {
+    public function __construct() {
+        $this->url = "/api/v1/services/ntpd/time_server";
+    }
+
+    protected function post() {
+        return (new APIServicesNTPdTimeServerCreate())->call();
+    }
+
+    protected function delete() {
+        return (new APIServicesNTPdTimeServerDelete())->call();
+    }
+}
@@ -520,6 +520,42 @@ function get($id, $data=[], $all=false) {
             "return" => $id,
             "message" => "DHCPd static mapping ID does not exist"
         ],
+        2046 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "NTPd orphan value must be between 1 and 15"
+        ],
+        2047 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Unknown NTPd interface specified"
+        ],
+        2048 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "NTPd timeserver value is required"
+        ],
+        2049 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "NTPd timeserver must be valid IP address or hostname"
+        ],
+        2050 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "Maximum limit of 10 NTPd timeservers exceeded"
+        ],
+        2051 => [
+            "status" => "bad request",
+            "code" => 400,
+            "return" => $id,
+            "message" => "NTPd timeserver does not exist"
+        ],
 
         // 3000-3999 reserved for /interfaces API calls
         3000 => [
@@ -1744,6 +1780,7 @@ function get($id, $data=[], $all=false) {
             "return" => $id,
             "message" => "Authentication server name already in use"
         ],
+
         //6000-6999 reserved for /routing API calls
         6000 => [
             "status" => "bad request",
 
@@ -0,0 +1,37 @@
+<?php
+//   Copyright 2021 Jared Hendrickson
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+
+require_once("api/framework/APIModel.inc");
+require_once("api/framework/APIResponse.inc");
+
+
+class APIServicesNTPdRead extends APIModel {
+    # Create our method constructor
+    public function __construct() {
+        parent::__construct();
+        $this->privileges = ["page-all", "page-services-ntpd"];
+    }
+
+    public function action() {
+        # Return the current NTP configuration if it exists, otherwise return empty array
+        if (isset($this->config["ntpd"])) {
+            $data = $this->config["ntpd"];
+            $data["timeservers"] = explode(" ", $this->config["system"]["timeservers"]);
+            return APIResponse\get(0, $data);
+        } else {
+            return APIResponse\get(0, []);
+        }
+    }
+}