From 620fd2569655aa0f45b486201bcac75654f28326 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?dni=20=E2=9A=A1?= <office@dnilabs.com>
Date: Wed, 12 Oct 2022 13:08:59 +0200
Subject: [PATCH] bugfixes and fix topup wallet

---
 .../admin/templates/admin/index.html          |  6 ++--
 lnbits/extensions/admin/views_api.py          | 36 ++++++++++---------
 lnbits/server.py                              |  1 +
 lnbits/settings.py                            | 29 ++++++++++-----
 lnbits/wallets/fake.py                        |  2 +-
 5 files changed, 44 insertions(+), 30 deletions(-)

diff --git a/lnbits/extensions/admin/templates/admin/index.html b/lnbits/extensions/admin/templates/admin/index.html
index ccaddda4..575b377f 100644
--- a/lnbits/extensions/admin/templates/admin/index.html
+++ b/lnbits/extensions/admin/templates/admin/index.html
@@ -369,10 +369,10 @@
       topupWallet() {
         LNbits.api
           .request(
-            'POST',
+            'PUT',
             '/admin/api/v1/topup/?usr=' + this.g.user.id,
-            this.wallet.id,
-            this.wallet.amount
+            this.g.user.wallets[0].adminkey,
+            this.wallet
           )
           .then(response => {
             this.$q.notify({
diff --git a/lnbits/extensions/admin/views_api.py b/lnbits/extensions/admin/views_api.py
index ae2959bc..63ed5b3c 100644
--- a/lnbits/extensions/admin/views_api.py
+++ b/lnbits/extensions/admin/views_api.py
@@ -1,7 +1,6 @@
 from http import HTTPStatus
 
-from fastapi import Body, Depends, Request
-from loguru import logger
+from fastapi import Body, Depends, Query
 from starlette.exceptions import HTTPException
 
 from lnbits.core.crud import get_wallet
@@ -9,47 +8,50 @@ from lnbits.core.models import User
 from lnbits.decorators import check_admin
 from lnbits.extensions.admin import admin_ext
 from lnbits.extensions.admin.models import UpdateSettings
-from lnbits.requestvars import g
 from lnbits.server import server_restart
-from lnbits.settings import settings
 
 from .crud import delete_settings, update_settings, update_wallet_balance
 
 
-@admin_ext.get("/api/v1/restart/", status_code=HTTPStatus.OK)
-async def api_restart_server(user: User = Depends(check_admin)):
+@admin_ext.get(
+    "/api/v1/restart/", status_code=HTTPStatus.OK, dependencies=[Depends(check_admin)]
+)
+async def api_restart_server() -> dict[str, str]:
     server_restart.set()
     return {"status": "Success"}
 
 
-@admin_ext.put("/api/v1/topup/", status_code=HTTPStatus.OK)
+@admin_ext.put(
+    "/api/v1/topup/", status_code=HTTPStatus.OK, dependencies=[Depends(check_admin)]
+)
 async def api_update_balance(
-    wallet_id, topup_amount: int, user: User = Depends(check_admin)
-):
+    id: str = Body(...), amount: int = Body(...)
+) -> dict[str, str]:
     try:
-        wallet = await get_wallet(wallet_id)
+        await get_wallet(id)
     except:
         raise HTTPException(
             status_code=HTTPStatus.FORBIDDEN, detail="wallet does not exist."
         )
 
-    await update_wallet_balance(wallet_id=wallet_id, amount=int(topup_amount))
+    await update_wallet_balance(wallet_id=id, amount=int(amount))
 
     return {"status": "Success"}
 
 
-@admin_ext.put("/api/v1/settings/", status_code=HTTPStatus.OK)
+@admin_ext.put(
+    "/api/v1/settings/", status_code=HTTPStatus.OK, dependencies=[Depends(check_admin)]
+)
 async def api_update_settings(
-    user: User = Depends(check_admin),
     data: UpdateSettings = Body(...),
 ):
     settings = await update_settings(data)
     return {"status": "Success", "settings": settings.dict()}
 
 
-@admin_ext.delete("/api/v1/settings/", status_code=HTTPStatus.OK)
-async def api_delete_settings(
-    user: User = Depends(check_admin),
-):
+@admin_ext.delete(
+    "/api/v1/settings/", status_code=HTTPStatus.OK, dependencies=[Depends(check_admin)]
+)
+async def api_delete_settings() -> dict[str, str]:
     await delete_settings()
     return {"status": "Success"}
diff --git a/lnbits/server.py b/lnbits/server.py
index 79af8112..6d4cd2e7 100644
--- a/lnbits/server.py
+++ b/lnbits/server.py
@@ -52,6 +52,7 @@ def main(ctx, port: int, host: str, ssl_keyfile: str, ssl_certfile: str, reload:
             port=port,
             host=host,
             reload=reload,
+            forwarded_allow_ips="*",
             ssl_keyfile=ssl_keyfile,
             ssl_certfile=ssl_certfile,
             **d
diff --git a/lnbits/settings.py b/lnbits/settings.py
index f183211c..61dbd6f2 100644
--- a/lnbits/settings.py
+++ b/lnbits/settings.py
@@ -1,20 +1,19 @@
 import importlib
 import json
 import subprocess
-import httpx
 from os import path
 from sqlite3 import Row
 from typing import List, Optional
 
+import httpx
 from loguru import logger
 from pydantic import BaseSettings, Field, validator
 
 
-
 def list_parse_fallback(v):
     try:
         return json.loads(v)
-    except Exception as e:
+    except Exception:
         replaced = v.replace(" ", "")
         if replaced:
             return replaced.split(",")
@@ -238,24 +237,36 @@ async def check_admin_settings():
                 http = "https" if settings.lnbits_force_https else "http"
                 user = settings.lnbits_admin_users[0]
 
-                admin_url = f"{http}://{settings.host}:{settings.port}/wallet?usr={user}"
+                admin_url = (
+                    f"{http}://{settings.host}:{settings.port}/wallet?usr={user}"
+                )
                 logger.warning(f"✔️ Access admin user account at: {admin_url}")
 
-                if settings.lnbits_saas_callback and settings.lnbits_saas_secret and settings.lnbits_saas_instance_id:
+                if (
+                    settings.lnbits_saas_callback
+                    and settings.lnbits_saas_secret
+                    and settings.lnbits_saas_instance_id
+                ):
                     with httpx.Client() as client:
                         headers = {
                             "Content-Type": "application/json; charset=utf-8",
-                            "X-API-KEY": settings.lnbits_saas_secret
+                            "X-API-KEY": settings.lnbits_saas_secret,
                         }
                         payload = {
                             "instance_id": settings.lnbits_saas_instance_id,
-                            "adminuser": user
+                            "adminuser": user,
                         }
                         try:
-                            r = client.post(settings.lnbits_saas_callback, headers=headers, json=payload)
+                            client.post(
+                                settings.lnbits_saas_callback,
+                                headers=headers,
+                                json=payload,
+                            )
                             logger.warning("sent admin user to saas application")
                         except:
-                            logger.error(f"error sending admin user to saas: {settings.lnbits_saas_callback}")
+                            logger.error(
+                                f"error sending admin user to saas: {settings.lnbits_saas_callback}"
+                            )
 
             except:
                 logger.error("admin.settings tables does not exist.")
diff --git a/lnbits/wallets/fake.py b/lnbits/wallets/fake.py
index 73458e8c..94ff5f48 100644
--- a/lnbits/wallets/fake.py
+++ b/lnbits/wallets/fake.py
@@ -19,7 +19,6 @@ from .base import (
 
 
 class FakeWallet(Wallet):
-    queue: asyncio.Queue = asyncio.Queue(0)
     secret: str = settings.fake_wallet_secret
     privkey: str = hashlib.pbkdf2_hmac(
         "sha256",
@@ -98,6 +97,7 @@ class FakeWallet(Wallet):
         return PaymentStatus(None)
 
     async def paid_invoices_stream(self) -> AsyncGenerator[str, None]:
+        self.queue: asyncio.Queue = asyncio.Queue(0)
         while True:
             value: Invoice = await self.queue.get()
             yield value.payment_hash