feat(site): implement subdomain discovery and enhanced monitoring dashboard

This commit introduces a comprehensive subdomain discovery system and significantly upgrades the monitoring and domain management user interfaces. Key changes include: - **Subdomain Discovery**: Added a new service in the hub that performs advanced subdomain discovery using DNS brute forcing, Certificate Transparency (CT) log searches, pattern enumeration, and HTTP probing. - **Enhanced Domain Management**: - Added API endpoints for retrieving, discovering, and deleting subdomains. - Implemented a new `SubdomainList` component in the UI to manage discovered subdomains. - Improved WHOIS lookup robustness by supporting a wider range of registry field variations. - **Advanced Monitoring UI**: - Introduced `GroupedMonitorsTable` to organize monitors by root domain and their respective subdomains. - Added visual uptime timelines (heartbeat dots) and response time statistics (Avg, Min, Max, P95, P99) to the monitor detail view. - Implemented "Uptime Pills" for high-visibility status indicators in the monitors table. - **Status Page Management**: Replaced the static status pages table with a full `StatusPageManager` capable of managing status pages and incidents. - **Refactoring & Cleanup**: - Cleaned up `.gitignore` and removed unused reference submodules. - Improved domain extraction and grouping logic in the frontend. - Enhanced the `SystemsTable` with better sorting and layout.
2026-06-03 21:02:56 +00:00 · 2026-05-05 16:14:45 +02:00
parent 21657abe38
commit 7ea9a069f9
22 changed files with 248666 additions and 179 deletions
@@ -43,6 +43,11 @@ func (h *APIHandler) RegisterRoutes(se *core.ServeEvent) {
 	api.GET("/{id}/stats", h.getDomainStats)
 	api.POST("/{id}/pause", h.pauseDomain)
 	api.POST("/{id}/resume", h.resumeDomain)
+	api.GET("/{id}/subdomains", h.getDomainSubdomains)
+	api.POST("/{id}/discover-subdomains", h.discoverSubdomains)
+
+	// Subdomain routes
+	api.DELETE("/subdomains/{subdomainId}", h.deleteSubdomain)
 }

 // listDomains lists all domains for the authenticated user
@@ -705,3 +710,104 @@ func cleanDomain(domain string) string {
 	}
 	return strings.ToLower(strings.TrimSpace(domain))
 }
+
+// getDomainSubdomains returns all subdomains for a domain
+func (h *APIHandler) getDomainSubdomains(e *core.RequestEvent) error {
+	authRecord := e.Auth
+	if authRecord == nil {
+		return e.UnauthorizedError("unauthorized", nil)
+	}
+
+	domainID := e.Request.PathValue("id")
+
+	// Verify domain ownership
+	domain, err := h.app.FindRecordById("domains", domainID)
+	if err != nil {
+		return e.NotFoundError("domain not found", err)
+	}
+	if domain.GetString("user") != authRecord.Id {
+		return e.ForbiddenError("not authorized", nil)
+	}
+
+	records, err := h.app.FindAllRecords("subdomains",
+		dbx.NewExp("domain = {:domain}", dbx.Params{"domain": domainID}),
+	)
+	if err != nil {
+		return e.InternalServerError("failed to fetch subdomains", err)
+	}
+
+	subdomains := make([]map[string]interface{}, 0, len(records))
+	for _, record := range records {
+		subdomains = append(subdomains, map[string]interface{}{
+			"id":               record.Id,
+			"domain":           record.GetString("domain"),
+			"subdomain_name":   record.GetString("subdomain_name"),
+			"full_domain":      record.GetString("full_domain"),
+			"status":           record.GetString("status"),
+			"ip_addresses":     record.GetString("ip_addresses"),
+			"http_status":      record.GetInt("http_status"),
+			"server_header":    record.GetString("server_header"),
+			"discovery_source": record.GetString("discovery_source"),
+			"last_checked":     record.GetDateTime("last_checked").Time(),
+			"created":          record.GetDateTime("created").Time(),
+			"updated":          record.GetDateTime("updated").Time(),
+		})
+	}
+
+	return e.JSON(http.StatusOK, subdomains)
+}
+
+// discoverSubdomains triggers subdomain discovery for a domain
+func (h *APIHandler) discoverSubdomains(e *core.RequestEvent) error {
+	authRecord := e.Auth
+	if authRecord == nil {
+		return e.UnauthorizedError("unauthorized", nil)
+	}
+
+	domainID := e.Request.PathValue("id")
+
+	// Verify domain ownership
+	domain, err := h.app.FindRecordById("domains", domainID)
+	if err != nil {
+		return e.NotFoundError("domain not found", err)
+	}
+	if domain.GetString("user") != authRecord.Id {
+		return e.ForbiddenError("not authorized", nil)
+	}
+
+	// Trigger discovery asynchronously
+	go func() {
+		domainName := domain.GetString("domain_name")
+		userID := authRecord.Id
+		h.scheduler.discoverSubdomainsEnhanced(domain, domainName, userID)
+	}()
+
+	return e.JSON(http.StatusOK, map[string]string{"status": "discovery_started"})
+}
+
+// deleteSubdomain deletes a subdomain
+func (h *APIHandler) deleteSubdomain(e *core.RequestEvent) error {
+	authRecord := e.Auth
+	if authRecord == nil {
+		return e.UnauthorizedError("unauthorized", nil)
+	}
+
+	subdomainID := e.Request.PathValue("subdomainId")
+
+	// Get subdomain
+	subdomain, err := h.app.FindRecordById("subdomains", subdomainID)
+	if err != nil {
+		return e.NotFoundError("subdomain not found", err)
+	}
+
+	// Verify ownership
+	if subdomain.GetString("user") != authRecord.Id {
+		return e.ForbiddenError("not authorized", nil)
+	}
+
+	if err := h.app.Delete(subdomain); err != nil {
+		return e.InternalServerError("failed to delete subdomain", err)
+	}
+
+	return e.NoContent(http.StatusNoContent)
+}