Spaces:

enzostvs
/

deepsite

Running

App Files Files Community

339

Upload 73 files

#340

by coerxso - opened 1 day ago

base: refs/heads/main

←

from: refs/pr/340

Discussion Files changed

+5744

-0

This view is limited to 50 files because it contains too many changes. See the raw diff here.

Files changed (50) hide show

key.py +32 -0
manage.py +20 -0
management/__init__.py +0 -0
management/__pycache__/__init__.cpython-312.pyc +0 -0
management/__pycache__/admin.cpython-312.pyc +0 -0
management/__pycache__/apps.cpython-312.pyc +0 -0
management/__pycache__/backends.cpython-312.pyc +0 -0
management/__pycache__/forms.cpython-312.pyc +0 -0
management/__pycache__/marzban_api.cpython-312.pyc +0 -0
management/__pycache__/marzban_client.cpython-312.pyc +0 -0
management/__pycache__/models.cpython-312.pyc +0 -0
management/__pycache__/serializers.cpython-312.pyc +0 -0
management/__pycache__/tasks.cpython-312.pyc +0 -0
management/__pycache__/urls.cpython-312.pyc +0 -0
management/__pycache__/utils.cpython-312.pyc +0 -0
management/__pycache__/views.cpython-312.pyc +0 -0
management/admin.py +130 -0
management/backends.py +89 -0
management/forms.py +13 -0
management/manage.py +20 -0
management/management/commands/backup_all_databases.py +100 -0
management/management/commands/check_payments.py +42 -0
management/management/commands/restore_all_databases.py +100 -0
management/management/commands/schedule_reminders.py +203 -0
management/marzban_client.py +79 -0
management/migrations/0001_initial.py +241 -0
management/migrations/__init__.py +0 -0
management/migrations/__pycache__/0001_initial.cpython-312.pyc +0 -0
management/migrations/__pycache__/0002_remove_user_admin_remove_payment_user_and_more.cpython-312.pyc +0 -0
management/migrations/__pycache__/0003_notification_remove_payment_user_config_and_more.cpython-312.pyc +0 -0
management/migrations/__pycache__/__init__.cpython-312.pyc +0 -0
management/models.py +261 -0
management/serializers.py +193 -0
management/static/css/styles.css +22 -0
management/static/js/main.js +174 -0
management/static/js/service-worker.js +91 -0
management/static/manifest.json +23 -0
management/static/styles.css +22 -0
management/tasks.py +192 -0
management/telebot.py +62 -0
management/templates/management/%} +1 -0
management/templates/management/admin-panel-management.html +276 -0
management/templates/management/admin_dashboard.html +35 -0
management/templates/management/admin_login.html +112 -0
management/templates/management/amin_login.html +44 -0
management/templates/management/base.html +25 -0
management/templates/management/create_discount_code.html +62 -0
management/templates/management/create_notification.html +198 -0
management/templates/management/error.html +43 -0
management/templates/management/home.html +30 -0

key.py ADDED Viewed

	@@ -0,0 +1,32 @@

+# management/generate_vapid_keys.py
+# -*- coding: utf-8 -*-
+import base64
+import os
+from cryptography.hazmat.primitives.asymmetric import ec
+from cryptography.hazmat.primitives import hashes
+from cryptography.hazmat.primitives.kdf.hkdf import HKDF
+from cryptography.hazmat.backends import default_backend
+# تابعی برای تولید کلیدهای VAPID
+def generate_vapid_keys():
+    """
+    این تابع یک جفت کلید عمومی و خصوصی VAPID تولید می‌کند.
+    """
+    private_key = ec.generate_private_key(ec.SECP256R1(), default_backend())
+    public_key = private_key.public_key()
+    # برای استفاده در فرانت‌اند
+    public_key_bytes = public_key.public_numbers().x.to_bytes(32, 'big') + public_key.public_numbers().y.to_bytes(32, 'big')
+    public_key_b64 = base64.urlsafe_b64encode(public_key_bytes).decode('utf-8').rstrip('=')
+    # برای استفاده در بک‌اند
+    private_key_bytes = private_key.private_numbers().private_value.to_bytes(32, 'big')
+    private_key_b64 = base64.urlsafe_b64encode(private_key_bytes).decode('utf-8').rstrip('=')
+    print("VAPID Public Key:", public_key_b64)
+    print("VAPID Private Key:", private_key_b64)
+if __name__ == '__main__':
+    generate_vapid_keys()

manage.py ADDED Viewed

	@@ -0,0 +1,20 @@

+#!/usr/bin/env python
+"""Django's command-line utility for administrative tasks."""
+import os
+import sys
+def main():
+    """Run administrative tasks."""
+    os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'my_panel_project.settings')
+    try:
+        from django.core.management import execute_from_command_line
+    except ImportError as exc:
+        raise ImportError(
+            "Couldn't import Django. Are you sure it's installed and "
+            "available on your PYTHONPATH environment variable? Did you "
+            "forget to activate a virtual environment?"
+        ) from exc
+    execute_from_command_line(sys.argv)
+if __name__ == '__main__':
+    main()

management/__init__.py ADDED Viewed

File without changes

management/__pycache__/__init__.cpython-312.pyc ADDED Viewed

Binary file (142 Bytes). View file

management/__pycache__/admin.cpython-312.pyc ADDED Viewed

Binary file (5.95 kB). View file

management/__pycache__/apps.cpython-312.pyc ADDED Viewed

Binary file (456 Bytes). View file

management/__pycache__/backends.cpython-312.pyc ADDED Viewed

Binary file (4.96 kB). View file

management/__pycache__/forms.cpython-312.pyc ADDED Viewed

Binary file (6.34 kB). View file

management/__pycache__/marzban_api.cpython-312.pyc ADDED Viewed

Binary file (4.2 kB). View file

management/__pycache__/marzban_client.cpython-312.pyc ADDED Viewed

Binary file (5.03 kB). View file

management/__pycache__/models.cpython-312.pyc ADDED Viewed

Binary file (17.3 kB). View file

management/__pycache__/serializers.cpython-312.pyc ADDED Viewed

Binary file (12.7 kB). View file

management/__pycache__/tasks.cpython-312.pyc ADDED Viewed

Binary file (9.22 kB). View file

management/__pycache__/urls.cpython-312.pyc ADDED Viewed

Binary file (3.55 kB). View file

management/__pycache__/utils.cpython-312.pyc ADDED Viewed

Binary file (382 Bytes). View file

management/__pycache__/views.cpython-312.pyc ADDED Viewed

Binary file (22.7 kB). View file

management/admin.py ADDED Viewed

	@@ -0,0 +1,130 @@

+# management/admin.py
+# -*- coding: utf-8 -*-
+from django.contrib import admin
+from django.contrib.auth.admin import UserAdmin as BaseUserAdmin
+from .models import (
+    CustomUser,
+    AdminLevel2,
+    Panel,
+    License,
+    EndUser,
+    Plan,
+    Subscription,
+    Payment,
+    DiscountCode,
+    TelegramUser,
+    SecurityToken,
+    PushSubscription,
+    PaymentMethod,
+    PaymentSetting,
+    PaymentDetail
+)
+# تنظیمات ادمین برای مدل CustomUser
+@admin.register(CustomUser)
+class CustomUserAdmin(BaseUserAdmin):
+    list_display = ('username', 'email', 'role', 'is_staff')
+    list_filter = ('role', 'is_staff', 'is_superuser', 'is_active')
+    search_fields = ('username', 'email')
+    ordering = ('username',)
+    fieldsets = BaseUserAdmin.fieldsets + (
+        ('اطلاعات نقش', {'fields': ('role', 'marzban_admin_id')}),
+    )
+# تنظیمات ادمین برای مدل AdminLevel2
+@admin.register(AdminLevel2)
+class AdminLevel2Admin(admin.ModelAdmin):
+    # FIXED: 'marzban_api_token' does not exist in the model
+    list_display = ('user', 'telegram_chat_id', 'license_expiry_date')
+    search_fields = ('user__username',)
+# تنظیمات ادمین برای مدل Panel
+@admin.register(Panel)
+class PanelAdmin(admin.ModelAdmin):
+    # FIXED: 'url' and 'api_token' do not exist. Used correct fields.
+    list_display = ('name', 'owner', 'marzban_host')
+    search_fields = ('name', 'owner__username')
+# تنظیمات ادمین برای مدل License
+@admin.register(License)
+class LicenseAdmin(admin.ModelAdmin):
+    # FIXED: Used correct field names from the model ('key', 'owner', etc.)
+    list_display = ('key', 'owner', 'is_active', 'created_at', 'expiry_date')
+    list_filter = ('is_active',)
+    search_fields = ('key', 'owner__username')
+# تنظیمات ادمین برای مدل EndUser
+@admin.register(EndUser)
+class EndUserAdmin(admin.ModelAdmin):
+    list_display = ('username', 'panel', 'marzban_user_id')
+    search_fields = ('username', 'marzban_user_id')
+    list_filter = ('panel',)
+# تنظیمات ادمین برای مدل Plan
+@admin.register(Plan)
+class PlanAdmin(admin.ModelAdmin):
+    list_display = ('name', 'panel', 'price', 'duration_days', 'data_limit_gb', 'is_active')
+    list_filter = ('is_active', 'panel')
+    search_fields = ('name',)
+# تنظیمات ادمین برای مدل Subscription
+@admin.register(Subscription)
+class SubscriptionAdmin(admin.ModelAdmin):
+    list_display = ('end_user', 'plan', 'status', 'start_date', 'end_date', 'remaining_data_gb')
+    # FIXED: 'is_trial' does not exist in the model
+    list_filter = ('status', 'plan', 'panel')
+    search_fields = ('end_user__username',)
+    date_hierarchy = 'start_date'
+# تنظیمات ادمین برای مدل Payment
+@admin.register(Payment)
+class PaymentAdmin(admin.ModelAdmin):
+    list_display = ('subscription', 'admin', 'amount', 'status', 'created_at')
+    # IMPROVED: Filtering on image/text fields is not useful. Using status instead.
+    list_filter = ('status', 'admin')
+    search_fields = ('subscription__end_user__username',)
+    date_hierarchy = 'created_at'
+# تنظیمات ادمین برای مدل DiscountCode
+@admin.register(DiscountCode)
+class DiscountCodeAdmin(admin.ModelAdmin):
+    list_display = ('code', 'admin', 'discount_percentage', 'is_active')
+    list_filter = ('is_active',)
+    search_fields = ('code', 'admin__username',)
+# تنظیمات ادمین برای مدل TelegramUser
+@admin.register(TelegramUser)
+class TelegramUserAdmin(admin.ModelAdmin):
+    list_display = ('username', 'chat_id', 'admin_id')
+    search_fields = ('username', 'chat_id')
+# تنظیمات ادمین برای مدل SecurityToken
+@admin.register(SecurityToken)
+class SecurityTokenAdmin(admin.ModelAdmin):
+    list_display = ('admin_id', 'token', 'expiration_date')
+    search_fields = ('admin_id', 'token')
+# تنظیمات ادمین برای مدل PushSubscription
+@admin.register(PushSubscription)
+class PushSubscriptionAdmin(admin.ModelAdmin):
+    list_display = ('user', 'created_at')
+    search_fields = ('user__username',)
+# تنظیمات ادمین برای مدل PaymentMethod
+@admin.register(PaymentMethod)
+class PaymentMethodAdmin(admin.ModelAdmin):
+    list_display = ('name', 'is_active', 'can_be_managed_by_level3')
+    list_filter = ('is_active', 'can_be_managed_by_level3')
+# تنظیمات ادمین برای مدل PaymentSetting
+@admin.register(PaymentSetting)
+class PaymentSettingAdmin(admin.ModelAdmin):
+    list_display = ('admin_level_3', 'payment_method', 'is_active')
+    list_filter = ('is_active', 'payment_method')
+    search_fields = ('admin_level_3__user__username',)
+# تنظیمات ادمین برای مدل PaymentDetail
+@admin.register(PaymentDetail)
+class PaymentDetailAdmin(admin.ModelAdmin):
+    list_display = ('admin_level_3', 'card_number', 'wallet_address')
+    search_fields = ('admin_level_3__user__username',)

management/backends.py ADDED Viewed

	@@ -0,0 +1,89 @@

+# management/backends.py
+# -*- coding: utf-8 -*-
+import asyncio
+import logging
+from django.contrib.auth.backends import BaseBackend
+from django.contrib.auth import get_user_model
+from marzban_api.marzban_client import Marzban
+from marzban_api.exceptions import AuthenticationError, MarzbanAPIError
+from .models import MarzbanAdmin, MarzbanUser, Panel, Role
+CustomUser = get_user_model()
+logger = logging.getLogger(__name__)
+class CustomMarzbanBackend(BaseBackend):
+    """
+    بک‌اند احراز هویت که admin_id و اطلاعات ادمین را از دیتابیس مرزبان پیدا می‌کند.
+    """
+    def authenticate(self, request, username=None, **kwargs):
+        if not username:
+            return None
+        try:
+            # 1. پیدا کردن admin_id از دیتابیس مرزبان
+            marzban_user = MarzbanUser.objects.using('marzban_db').get(username=username)
+            admin_id = marzban_user.admin_id
+            if not admin_id:
+                logger.warning(f"User {username} has no associated admin in Marzban DB.")
+                return None
+            # 2. پیدا کردن اطلاعات ادمین از دیتابیس مرزبان
+            try:
+                admin_obj = MarzbanAdmin.objects.using('marzban_db').get(id=admin_id)
+            except MarzbanAdmin.DoesNotExist:
+                logger.error(f"Admin with ID {admin_id} not found in Marzban DB.")
+                return None
+            admin_username = admin_obj.username
+            admin_password = admin_obj.password
+            # 3. لاگین به API مرزبان با مشخصات ادمین و تایید وجود کاربر
+            async def authenticate_with_marzban():
+                # در این مرحله، آدرس پنل باید از یک مکان مشخص (مثلاً مدل Panel) خوانده شود.
+                # برای سادگی، فعلا یک آدرس پیش‌فرض در نظر می‌گیریم.
+                panel_address = 'http://your_marzban_panel_address.com'
+                try:
+                    async with Marzban(admin_username, admin_password, panel_address) as marzban_client:
+                        await marzban_client.login_admin()
+                        await marzban_client.get_user_info(username)
+                        # 4. ایجاد یا دریافت کاربر در دیتابیس لوکال و اختصاص نقش
+                        user, created = CustomUser.objects.get_or_create(username=username)
+                        if created:
+                            user_role, _ = Role.objects.get_or_create(name=Role.USER)
+                            user.role = user_role
+                            user.save()
+                        return user
+                except AuthenticationError as e:
+                    logger.error(f"Marzban API authentication failed for admin {admin_username}: {e}")
+                    return None
+                except MarzbanAPIError as e:
+                    logger.error(f"User {username} not found in Marzban via admin {admin_username}: {e}")
+                    return None
+                except Exception as e:
+                    logger.error(f"An unknown error occurred during Marzban API authentication: {e}")
+                    return None
+            authenticated_user = asyncio.run(authenticate_with_marzban())
+            if authenticated_user:
+                return authenticated_user
+        except MarzbanUser.DoesNotExist:
+            logger.warning(f"User {username} not found in Marzban database.")
+            return None
+        except Exception as e:
+            logger.error(f"An unknown error occurred: {e}")
+            return None
+    def get_user(self, user_id):
+        try:
+            return CustomUser.objects.get(pk=user_id)
+        except CustomUser.DoesNotExist:
+            return None

management/forms.py ADDED Viewed

	@@ -0,0 +1,13 @@

+# management/forms.py
+# -*- coding: utf-8 -*-
+from django import forms
+from .models import DiscountCode
+class UserLoginForm(forms.Form):
+    username = forms.CharField(max_length=150, label="نام کاربری")
+class DiscountCodeForm(forms.ModelForm):
+    class Meta:
+        model = DiscountCode
+        fields = ['code', 'discount_type', 'value', 'expiration_date', 'is_active', 'min_new_subscriptions', 'max_uses', 'max_uses_per_user']

management/manage.py ADDED Viewed

	@@ -0,0 +1,20 @@

+#!/usr/bin/env python
+"""Django's command-line utility for administrative tasks."""
+import os
+import sys
+def main():
+    """Run administrative tasks."""
+    os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'my_panel_project.settings')
+    try:
+        from django.core.management import execute_from_command_line
+    except ImportError as exc:
+        raise ImportError(
+            "Couldn't import Django. Are you sure it's installed and "
+            "available on your PYTHONPATH environment variable? Did you "
+            "forget to activate a virtual environment?"
+        ) from exc
+    execute_from_command_line(sys.argv)
+if __name__ == '__main__':
+    main()

management/management/commands/backup_all_databases.py ADDED Viewed

	@@ -0,0 +1,100 @@

+# management/commands/backup_all_databases.py
+# -*- coding: utf-8 -*-
+import os
+import datetime
+import subprocess
+from django.conf import settings
+from django.core.management.base import BaseCommand, CommandError
+from django.db import connections
+from management.models import Panel
+from management.tasks import send_backup_to_telegram
+class Command(BaseCommand):
+    help = 'Backs up all configured databases (Django and all Marzban panels) and sends them to Telegram.'
+    def handle(self, *args, **options):
+        # Define the backup directory
+        backup_dir = os.path.join(settings.BASE_DIR, 'backups')
+        os.makedirs(backup_dir, exist_ok=True)
+        # Create a timestamped directory for the current backup
+        timestamp = datetime.datetime.now().strftime('%Y-%m-%d_%H-%M-%S')
+        current_backup_dir = os.path.join(backup_dir, timestamp)
+        os.makedirs(current_backup_dir)
+        # Get database configurations to backup
+        db_configs = {
+            'default': connections['default']
+        }
+        # Dynamically add all Marzban panels to the backup list
+        try:
+            for panel in Panel.objects.all():
+                db_key = f"marzban_panel_{panel.id}"
+                db_configs[db_key] = {
+                    'ENGINE': panel.db_engine,
+                    'NAME': panel.db_name,
+                    'USER': panel.db_user,
+                    'PASSWORD': panel.db_password,
+                    'HOST': panel.db_host,
+                    'PORT': panel.db_port,
+                    'TELEGRAM_BOT_TOKEN': panel.telegram_bot_token,
+                    'MARZBAN_PANEL_DOMAIN': panel.domain
+                }
+        except Exception as e:
+            self.stdout.write(self.style.ERROR(
+                f"Failed to retrieve Marzban panel information. Error: {e}"
+            ))
+            return
+        for db_key, db_config in db_configs.items():
+            if 'mysql' not in db_config.get('ENGINE', ''):
+                self.stdout.write(self.style.WARNING(
+                    f"Skipping database '{db_key}' as it is not a MySQL database."
+                ))
+                continue
+            output_file = os.path.join(current_backup_dir, f"{db_key}_{timestamp}.sql")
+            mysqldump_cmd = [
+                'mysqldump',
+                f'--host={db_config.get("HOST", "localhost")}',
+                f'--port={db_config.get("PORT", 3306)}',
+                f'--user={db_config.get("USER", "")}',
+                f'--password={db_config.get("PASSWORD", "")}',
+                db_config['NAME'],
+                '--result-file', output_file
+            ]
+            try:
+                self.stdout.write(f"Backing up database '{db_key}' to {output_file}...")
+                subprocess.run(mysqldump_cmd, check=True, text=True)
+                self.stdout.write(self.style.SUCCESS(
+                    f"Successfully backed up database '{db_key}'."
+                ))
+                # If it's a Marzban panel, send it to Telegram
+                if 'marzban' in db_key:
+                    bot_token = db_config.get('TELEGRAM_BOT_TOKEN')
+                    if bot_token and settings.TELEGRAM_ADMIN_CHAT_ID:
+                        message = f"✅ Backup of Marzban panel at {db_config.get('MARZBAN_PANEL_DOMAIN', 'N/A')} is ready."
+                        send_backup_to_telegram.delay(
+                            settings.TELEGRAM_ADMIN_CHAT_ID,
+                            message,
+                            output_file,
+                            bot_token
+                        )
+                        self.stdout.write(self.style.SUCCESS(
+                            f"Scheduled sending backup for '{db_key}' to Telegram."
+                        ))
+            except FileNotFoundError:
+                raise CommandError(
+                    "mysqldump command not found. Please ensure it is installed and in your system's PATH."
+                )
+            except subprocess.CalledProcessError as e:
+                raise CommandError(
+                    f"Failed to backup database '{db_key}'. Error: {e.stderr}"
+                )
+        self.stdout.write(self.style.SUCCESS('All databases backed up successfully.'))

management/management/commands/check_payments.py ADDED Viewed

	@@ -0,0 +1,42 @@

+from django.core.management.base import BaseCommand
+from django.utils import timezone
+from datetime import timedelta
+from management.models import Payment, Subscription
+class Command(BaseCommand):
+    help = 'Checks for pending payments older than 48 hours and deactivates subscriptions.'
+    def handle(self, *args, **options):
+        # زمان فعلی منهای 48 ساعت
+        forty_eight_hours_ago = timezone.now() - timedelta(hours=48)
+        # پیدا کردن پرداخت‌های در انتظار که بیش از 48 ساعت ازشون گذشته
+        overdue_payments = Payment.objects.filter(
+            status='pending',
+            created_at__lt=forty_eight_hours_ago
+        )
+        if not overdue_payments:
+            self.stdout.write(self.style.SUCCESS('No overdue pending payments found.'))
+            return
+        self.stdout.write(self.style.WARNING(f'Found {overdue_payments.count()} overdue payments.'))
+        # غیرفعال کردن اشتراک‌های مربوطه
+        for payment in overdue_payments:
+            try:
+                subscription = payment.subscription
+                if subscription and subscription.status == 'active':
+                    subscription.status = 'inactive'
+                    subscription.save()
+                    payment.status = 'expired'
+                    payment.save()
+                    self.stdout.write(self.style.SUCCESS(
+                        f'Successfully deactivated subscription for user: {subscription.user.username}'
+                    ))
+            except Subscription.DoesNotExist:
+                self.stdout.write(self.style.ERROR(
+                    f'Subscription not found for payment ID: {payment.id}'
+                ))
+        self.stdout.write(self.style.SUCCESS('Finished checking payments.'))

management/management/commands/restore_all_databases.py ADDED Viewed

	@@ -0,0 +1,100 @@

+# management/commands/restore_all_databases.py
+# -*- coding: utf-8 -*-
+import os
+import subprocess
+from django.conf import settings
+from django.core.management.base import BaseCommand, CommandError
+from django.db import connections
+from management.models import Panel
+class Command(BaseCommand):
+    help = 'Restores all databases from a specified timestamped backup directory.'
+    def add_arguments(self, parser):
+        parser.add_argument(
+            'timestamp',
+            type=str,
+            help='The timestamp of the backup directory to restore (e.g., 2023-10-27_10-30-00).',
+        )
+    def handle(self, *args, **options):
+        timestamp = options['timestamp']
+        backup_dir = os.path.join(settings.BASE_DIR, 'backups', timestamp)
+        if not os.path.isdir(backup_dir):
+            raise CommandError(f"Backup directory '{backup_dir}' not found.")
+        self.stdout.write(self.style.WARNING(
+            f"WARNING: This will overwrite your current databases with data from '{timestamp}'. "
+            f"Proceed with caution. Type 'yes' to continue."
+        ))
+        confirm = input("> ")
+        if confirm.lower() != 'yes':
+            self.stdout.write("Restore operation cancelled.")
+            return
+        # Get database configurations to restore
+        db_configs = {
+            'default': connections['default']
+        }
+        try:
+            for panel in Panel.objects.all():
+                db_key = f"marzban_panel_{panel.id}"
+                db_configs[db_key] = {
+                    'ENGINE': panel.db_engine,
+                    'NAME': panel.db_name,
+                    'USER': panel.db_user,
+                    'PASSWORD': panel.db_password,
+                    'HOST': panel.db_host,
+                    'PORT': panel.db_port,
+                }
+        except Exception as e:
+            self.stdout.write(self.style.ERROR(
+                f"Failed to retrieve Marzban panel information. Error: {e}"
+            ))
+            return
+        for db_key, db_config in db_configs.items():
+            if 'mysql' not in db_config.get('ENGINE', ''):
+                self.stdout.write(self.style.WARNING(
+                    f"Skipping restore for database '{db_key}' as it is not a MySQL database."
+                ))
+                continue
+            sql_file = os.path.join(backup_dir, f"{db_key}_{timestamp}.sql")
+            if not os.path.isfile(sql_file):
+                self.stdout.write(self.style.WARNING(
+                    f"Skipping restore for database '{db_key}': backup file not found at {sql_file}."
+                ))
+                continue
+            mysql_cmd = [
+                'mysql',
+                f'--host={db_config.get("HOST", "localhost")}',
+                f'--port={db_config.get("PORT", 3306)}',
+                f'--user={db_config.get("USER", "")}',
+                f'--password={db_config.get("PASSWORD", "")}',
+                db_config['NAME']
+            ]
+            try:
+                self.stdout.write(f"Restoring database '{db_key}' from {sql_file}...")
+                with open(sql_file, 'r') as f:
+                    subprocess.run(mysql_cmd, stdin=f, check=True, text=True)
+                self.stdout.write(self.style.SUCCESS(
+                    f"Successfully restored database '{db_key}'."
+                ))
+            except FileNotFoundError:
+                raise CommandError(
+                    "mysql command not found. Please ensure it is installed and in your system's PATH."
+                )
+            except subprocess.CalledProcessError as e:
+                raise CommandError(
+                    f"Failed to restore database '{db_key}'. Error: {e.stderr}"
+                )
+        self.stdout.write(self.style.SUCCESS('All databases restored successfully.'))

management/management/commands/schedule_reminders.py ADDED Viewed

	@@ -0,0 +1,203 @@

+# management/management/commands/schedule_reminders.py
+# -*- coding: utf-8 -*-
+import os
+import uuid
+import datetime
+from django.core.management.base import BaseCommand
+from django.conf import settings
+from django.db import connections
+from management.models import Panel
+from management.tasks import send_telegram_notification
+# Dynamically import the unmanaged models
+# This will be used to access the Marzban database tables
+try:
+    from management.models import MarzbanUser, TelegramUser
+except ImportError:
+    # Handle the case where the models might not be fully defined yet
+    pass
+class Command(BaseCommand):
+    help = 'Schedules renewal and usage reminders for Marzban users.'
+    def handle(self, *args, **options):
+        # Retrieve the bot token from the environment variables or settings
+        # IMPORTANT: You need to define this in your settings or as an environment variable
+        telegram_bot_token = os.environ.get('TELEGRAM_BOT_TOKEN', 'YOUR_DEFAULT_BOT_TOKEN_HERE')
+        if not telegram_bot_token:
+            self.stdout.write(self.style.ERROR('Telegram bot token is not configured. Aborting.'))
+            return
+        self.stdout.write(self.style.SUCCESS('Starting reminder scheduling for all users...'))
+        # Get all panels from the main database
+        panels = Panel.objects.all()
+        for panel in panels:
+            self.stdout.write(f'Processing panel: {panel.name} (ID: {panel.id})')
+            # Dynamically set up the database connection for the current panel
+            marzban_db_settings = {
+                'ENGINE': 'django.db.backends.mysql',
+                'NAME': panel.db_name,
+                'USER': panel.db_user,
+                'PASSWORD': panel.db_password,
+                'HOST': panel.db_host,
+                'PORT': panel.db_port,
+            }
+            settings.DATABASES['marzban_db'] = marzban_db_settings
+            try:
+                # Use the dynamic connection to query the MarzbanUser and TelegramUser models
+                with connections['marzban_db'].cursor() as cursor:
+                    # Get all users from the Marzban database
+                    users_to_check = MarzbanUser.objects.using('marzban_db').all()
+                    for user in users_to_check:
+                        # --- Here is the core logic for reminders ---
+                        # Find the Telegram chat_id for this user
+                        try:
+                            # We assume the TelegramUser model is now linked to the user's ID
+                            telegram_user = TelegramUser.objects.using('marzban_db').get(user_id=user.pk)
+                            chat_id = telegram_user.chat_id
+                        except TelegramUser.DoesNotExist:
+                            self.stdout.write(f'  No Telegram chat_id found for user {user.username}. Skipping.')
+                            continue
+                        # Check for expiration
+                        is_expiring = False
+                        if user.expire_date:
+                            time_left = user.expire_date - datetime.datetime.now(user.expire_date.tzinfo)
+                            if time_left < datetime.timedelta(days=3): # Expiring in less than 3 days
+                                is_expiring = True
+                                message = (
+                                    f"⚠️ سلام {user.username}، سرویس شما در تاریخ {user.expire_date.strftime('%Y-%m-%d')} منقضی می‌شود.\n"
+                                    "لطفاً برای تمدید سرویس به پنل کاربری خود مراجعه کنید."
+                                )
+                                send_telegram_notification.delay(chat_id, message, telegram_bot_token)
+                                self.stdout.write(f'  Scheduled expiration reminder for user {user.username}.')
+                        # Check for usage limit (e.g., 80% of total)
+                        is_over_usage_limit = False
+                        if user.data_limit and user.data_usage:
+                            usage_percentage = (user.data_usage / user.data_limit) * 100
+                            if usage_percentage >= 80:
+��                               is_over_usage_limit = True
+                                message = (
+                                    f"⚠️ سلام {user.username}، حجم باقی‌مانده سرویس شما کم است.\n"
+                                    f"میزان مصرف: {usage_percentage:.2f}%\n"
+                                    "لطفاً برای خرید حجم جدید به پنل کاربری خود مراجعه کنید."
+                                )
+                                # Avoid sending duplicate messages if both conditions are met
+                                if not is_expiring:
+                                    send_telegram_notification.delay(chat_id, message, telegram_bot_token)
+                                    self.stdout.write(f'  Scheduled usage reminder for user {user.username}.')
+            except Exception as e:
+                self.stdout.write(self.style.ERROR(f'An error occurred while processing panel {panel.name}: {e}'))
+        self.stdout.write(self.style.SUCCESS('Reminder scheduling finished.'))

management/marzban_client.py ADDED Viewed

	@@ -0,0 +1,79 @@

+import aiohttp
+import json
+import asyncio
+# --- کد از فایل send_requests.py ---
+async def send_request(endpoint, token, method, data=None):
+    panel_address = token["panel_address"]
+    token_type = token["token_type"]
+    access_token = token["access_token"]
+    request_address = f"{panel_address}/api/{endpoint}"
+    headers = {
+        "Content-Type": "application/json",
+        "Authorization": f"{token_type} {access_token}",
+    }
+    async with aiohttp.request(
+        method=method,
+        url=request_address,
+        headers=headers,
+        data=json.dumps(data) if data else None,
+        raise_for_status=True
+    ) as response:
+        result = await response.json()
+        return result
+# --- کد از فایل user.py ---
+class User:
+    def __init__(self, username, **kwargs):
+        self.username = username
+        self.proxies = kwargs.get('proxies', {})
+        self.inbounds = kwargs.get('inbounds', {})
+        self.data_limit = kwargs.get('data_limit', 0)
+        self.data_limit_reset_strategy = kwargs.get('data_limit_reset_strategy', "no_reset")
+        self.status = kwargs.get('status', "")
+        self.expire = kwargs.get('expire', 0)
+        self.used_traffic = kwargs.get('used_traffic', 0)
+        self.lifetime_used_traffic = kwargs.get('lifetime_used_traffic', 0)
+        self.created_at = kwargs.get('created_at', "")
+        self.links = kwargs.get('links', [])
+        self.subscription_url = kwargs.get('subscription_url', "")
+        self.excluded_inbounds = kwargs.get('excluded_inbounds', {})
+        self.full_name = kwargs.get('full_name', "")
+class UserMethods:
+    async def get_all_users(self, token: dict, username=None, status=None):
+        endpoint = "users"
+        if username:
+            endpoint += f"?username={username}"
+        if status:
+            if "?" in endpoint:
+                endpoint += f"&status={status}"
+            else:
+                endpoint += f"?status={status}"
+        request = await send_request(endpoint, token, "get")
+        user_list = [User(**user) for user in request["users"]]
+        return user_list
+# --- کد از فایل admin.py ---
+class Admin:
+    def __init__(self, username: str, password: str, panel_address: str):
+        self.username = username
+        self.password = password
+        self.panel_address = panel_address
+    async def get_token(self):
+        try:
+            async with aiohttp.request(
+                "post",
+                url=f"{self.panel_address}/api/admin/token",
+                data={"username": self.username, "password": self.password},
+                raise_for_status=True
+            ) as response:
+                result = await response.json()
+                result["panel_address"] = self.panel_address
+                return result
+        except aiohttp.exceptions.RequestException as ex:
+            print(f"Request Exception: {ex}")
+            return None
+        except json.JSONDecodeError as ex:
+            print(f"JSON Decode Error: {ex}")
+            return None

management/migrations/0001_initial.py ADDED Viewed

	@@ -0,0 +1,241 @@

+# Generated by Django 5.2.5 on 2025-08-15 09:56
+import django.contrib.auth.models
+import django.contrib.auth.validators
+import django.db.models.deletion
+import django.utils.timezone
+import uuid
+from django.conf import settings
+from django.db import migrations, models
+class Migration(migrations.Migration):
+    initial = True
+    dependencies = [
+        ('auth', '0012_alter_user_first_name_max_length'),
+    ]
+    operations = [
+        migrations.CreateModel(
+            name='SecurityToken',
+            fields=[
+                ('admin_id', models.CharField(max_length=255, primary_key=True, serialize=False)),
+                ('token', models.CharField(default=uuid.uuid4, max_length=255, unique=True)),
+                ('expiration_date', models.DateTimeField()),
+            ],
+            options={
+                'db_table': 'telegram_tokens',
+                'managed': False,
+            },
+        ),
+        migrations.CreateModel(
+            name='TelegramUser',
+            fields=[
+                ('admin_id', models.CharField(max_length=255, primary_key=True, serialize=False, unique=True)),
+                ('chat_id', models.CharField(max_length=255, unique=True)),
+                ('username', models.CharField(max_length=255)),
+            ],
+            options={
+                'db_table': 'telegram_users',
+                'managed': False,
+            },
+        ),
+        migrations.CreateModel(
+            name='MarzbanUser',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('username', models.CharField(max_length=255, unique=True)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='PaymentMethod',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('name', models.CharField(choices=[('gateway', 'Bank Gateway'), ('crypto', 'Cryptocurrency'), ('manual', 'Manual (Card-to-Card)')], max_length=50, unique=True, verbose_name='Payment Method Name')),
+                ('is_active', models.BooleanField(default=True, verbose_name='Is Active?')),
+                ('can_be_managed_by_level3', models.BooleanField(default=False, verbose_name='Can be managed by Admin Level 3?')),
+            ],
+            options={
+                'verbose_name': 'Payment Method',
+                'verbose_name_plural': 'Payment Methods',
+            },
+        ),
+        migrations.CreateModel(
+            name='CustomUser',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('password', models.CharField(max_length=128, verbose_name='password')),
+                ('last_login', models.DateTimeField(blank=True, null=True, verbose_name='last login')),
+                ('is_superuser', models.BooleanField(default=False, help_text='Designates that this user has all permissions without explicitly assigning them.', verbose_name='superuser status')),
+                ('username', models.CharField(error_messages={'unique': 'A user with that username already exists.'}, help_text='Required. 150 characters or fewer. Letters, digits and @/./+/-/_ only.', max_length=150, unique=True, validators=[django.contrib.auth.validators.UnicodeUsernameValidator()], verbose_name='username')),
+                ('first_name', models.CharField(blank=True, max_length=150, verbose_name='first name')),
+                ('last_name', models.CharField(blank=True, max_length=150, verbose_name='last name')),
+                ('email', models.EmailField(blank=True, max_length=254, verbose_name='email address')),
+                ('is_staff', models.BooleanField(default=False, help_text='Designates whether the user can log into this admin site.', verbose_name='staff status')),
+                ('is_active', models.BooleanField(default=True, help_text='Designates whether this user should be treated as active. Unselect this instead of deleting accounts.', verbose_name='active')),
+                ('date_joined', models.DateTimeField(default=django.utils.timezone.now, verbose_name='date joined')),
+                ('role', models.CharField(choices=[('SuperAdmin', 'Super Admin'), ('PanelOwner', 'Panel Owner'), ('AdminLevel2', 'Admin Level 2'), ('AdminLevel3', 'Admin Level 3'), ('EndUser', 'End User')], default='EndUser', max_length=20)),
+                ('marzban_admin_id', models.UUIDField(blank=True, null=True)),
+                ('groups', models.ManyToManyField(blank=True, help_text='The groups this user belongs to. A user will get all permissions granted to each of their groups.', related_name='user_set', related_query_name='user', to='auth.group', verbose_name='groups')),
+                ('user_permissions', models.ManyToManyField(blank=True, help_text='Specific permissions for this user.', related_name='user_set', related_query_name='user', to='auth.permission', verbose_name='user permissions')),
+            ],
+            options={
+                'verbose_name': 'user',
+                'verbose_name_plural': 'users',
+                'abstract': False,
+            },
+            managers=[
+                ('objects', django.contrib.auth.models.UserManager()),
+            ],
+        ),
+        migrations.CreateModel(
+            name='AdminLevel2',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('telegram_chat_id', models.CharField(blank=True, max_length=255, null=True, verbose_name='تلگرام چت آیدی')),
+                ('license_expiry_date', models.DateField(blank=True, null=True, verbose_name='تاریخ انقضای لایسنس')),
+                ('user', models.OneToOneField(on_delete=django.db.models.deletion.CASCADE, related_name='admin_level_2', to=settings.AUTH_USER_MODEL)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='AdminLevel3',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('telegram_chat_id', models.CharField(blank=True, max_length=255, null=True, verbose_name='تلگرام چت آیدی')),
+                ('parent_admin', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='child_admins', to='management.adminlevel2', verbose_name='ادمین والد (سطح ۲)')),
+                ('user', models.OneToOneField(on_delete=django.db.models.deletion.CASCADE, related_name='admin_level_3', to=settings.AUTH_USER_MODEL)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='DiscountCode',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('code', models.CharField(max_length=50, unique=True)),
+                ('discount_percentage', models.DecimalField(decimal_places=2, max_digits=5)),
+                ('is_active', models.BooleanField(default=True)),
+                ('admin', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to=settings.AUTH_USER_MODEL)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='License',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('key', models.UUIDField(default=uuid.uuid4, editable=False, unique=True, verbose_name='کلید لایسنس')),
+                ('is_active', models.BooleanField(default=True, verbose_name='وضعیت فعال')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='تاریخ ایجاد')),
+                ('expiry_date', models.DateField(verbose_name='تاریخ انقضا')),
+                ('owner', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to=settings.AUTH_USER_MODEL, verbose_name='صاحب لایسنس')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='Panel',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('name', models.CharField(max_length=255, verbose_name='نام پنل')),
+                ('marzban_host', models.CharField(max_length=255, verbose_name='آدرس هاست Marzban')),
+                ('marzban_username', models.CharField(max_length=255, verbose_name='نام کاربری Marzban')),
+                ('marzban_password', models.CharField(max_length=255, verbose_name='رمز عبور Marzban')),
+                ('telegram_bot_token', models.CharField(blank=True, max_length=255, null=True)),
+                ('license', models.OneToOneField(blank=True, null=True, on_delete=django.db.models.deletion.SET_NULL, related_name='linked_panel', to='management.license')),
+                ('owner', models.OneToOneField(on_delete=django.db.models.deletion.CASCADE, related_name='owned_panel', to=settings.AUTH_USER_MODEL)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='MarzbanAdmin',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('username', models.CharField(max_length=255, unique=True)),
+                ('password', models.CharField(max_length=255)),
+                ('permission', models.CharField(max_length=50)),
+                ('panel', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='marzban_admins', to='management.panel')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='EndUser',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('username', models.CharField(max_length=255, unique=True)),
+                ('marzban_user_id', models.CharField(blank=True, max_length=255, null=True, unique=True)),
+                ('telegram_chat_id', models.CharField(blank=True, max_length=255, null=True)),
+                ('panel', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='management.panel')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='PaymentDetail',
+            fields=[
+                ('id', models.UUIDField(default=uuid.uuid4, editable=False, primary_key=True, serialize=False)),
+                ('card_number', models.CharField(blank=True, max_length=50, null=True)),
+                ('card_holder_name', models.CharField(blank=True, max_length=255, null=True)),
+                ('wallet_address', models.CharField(blank=True, max_length=255, null=True)),
+                ('admin_level_3', models.OneToOneField(limit_choices_to={'role': 'AdminLevel3'}, on_delete=django.db.models.deletion.CASCADE, related_name='payment_details', to=settings.AUTH_USER_MODEL)),
+            ],
+            options={
+                'verbose_name': 'Payment Detail',
+                'verbose_name_plural': 'Payment Details',
+            },
+        ),
+        migrations.CreateModel(
+            name='Plan',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('name', models.CharField(max_length=100)),
+                ('price', models.DecimalField(decimal_places=2, max_digits=10)),
+                ('duration_days', models.IntegerField()),
+                ('data_limit_gb', models.FloatField()),
+                ('is_active', models.BooleanField(default=True)),
+                ('panel', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='plans', to='management.panel')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='PushSubscription',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('subscription_info', models.JSONField()),
+                ('created_at', models.DateTimeField(auto_now_add=True)),
+                ('user', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='push_subscriptions', to=settings.AUTH_USER_MODEL)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='Subscription',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('status', models.CharField(choices=[('active', 'فعال'), ('expired', 'منقضی شده'), ('pending', 'در انتظار پرداخت'), ('deactivated', 'غیرفعال')], default='pending', max_length=20)),
+                ('start_date', models.DateField(blank=True, null=True)),
+                ('end_date', models.DateField(blank=True, null=True)),
+                ('remaining_data_gb', models.FloatField(blank=True, null=True)),
+                ('end_user', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='subscriptions', to='management.enduser')),
+                ('panel', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='subscriptions', to='management.panel')),
+                ('plan', models.ForeignKey(on_delete=django.db.models.deletion.PROTECT, to='management.plan')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='Payment',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('amount', models.DecimalField(decimal_places=2, max_digits=10, verbose_name='مبلغ')),
+                ('status', models.CharField(choices=[('pending', 'در انتظار تأیید'), ('approved', 'تأیید شده'), ('rejected', 'رد شده')], default='pending', max_length=20, verbose_name='وضعیت')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='تاریخ ایجاد')),
+                ('payment_token', models.UUIDField(default=uuid.uuid4, editable=False, unique=True)),
+                ('receipt_image', models.ImageField(blank=True, null=True, upload_to='receipts/', verbose_name='تصویر رسید')),
+                ('receipt_text', models.TextField(blank=True, null=True, verbose_name='متن رسید')),
+                ('admin', models.ForeignKey(on_delete=django.db.models.deletion.PROTECT, related_name='handled_payments', to=settings.AUTH_USER_MODEL)),
+                ('subscription', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='payments', to='management.subscription')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='PaymentSetting',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('is_active', models.BooleanField(default=False, verbose_name='Is Active for this Admin?')),
+                ('admin_level_3', models.ForeignKey(limit_choices_to={'role': 'AdminLevel3'}, on_delete=django.db.models.deletion.CASCADE, related_name='payment_settings', to=settings.AUTH_USER_MODEL)),
+                ('payment_method', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='management.paymentmethod')),
+            ],
+            options={
+                'verbose_name': 'Payment Setting',
+                'verbose_name_plural': 'Payment Settings',
+                'unique_together': {('admin_level_3', 'payment_method')},
+            },
+        ),
+    ]

management/migrations/__init__.py ADDED Viewed

File without changes

management/migrations/__pycache__/0001_initial.cpython-312.pyc ADDED Viewed

Binary file (16.9 kB). View file

management/migrations/__pycache__/0002_remove_user_admin_remove_payment_user_and_more.cpython-312.pyc ADDED Viewed

Binary file (6.05 kB). View file

management/migrations/__pycache__/0003_notification_remove_payment_user_config_and_more.cpython-312.pyc ADDED Viewed

Binary file (12.7 kB). View file

management/migrations/__pycache__/__init__.cpython-312.pyc ADDED Viewed

Binary file (153 Bytes). View file

management/models.py ADDED Viewed

	@@ -0,0 +1,261 @@

+# management/models.py
+# -*- coding: utf-8 -*-
+from django.db import models
+from django.contrib.auth.models import AbstractUser
+from django.utils import timezone
+import uuid
+import datetime
+# --- Users & Authentication ---
+class CustomUser(AbstractUser):
+    ROLE_CHOICES = [
+        ('SuperAdmin', 'Super Admin'),
+        ('PanelOwner', 'Panel Owner'),
+        ('AdminLevel2', 'Admin Level 2'),
+        ('AdminLevel3', 'Admin Level 3'),
+        ('EndUser', 'End User'),
+    ]
+    role = models.CharField(max_length=20, choices=ROLE_CHOICES, default='EndUser')
+    marzban_admin_id = models.UUIDField(null=True, blank=True)
+    def is_super_admin(self):
+        return self.role == 'SuperAdmin'
+    def is_admin_level_2(self):
+        return self.role in ('SuperAdmin', 'PanelOwner', 'AdminLevel2')
+    def is_admin_level_3(self):
+        return self.role in ('SuperAdmin', 'PanelOwner', 'AdminLevel2', 'AdminLevel3')
+    def __str__(self):
+        return self.username
+# --- Main Website Models ---
+class AdminLevel2(models.Model):
+    user = models.OneToOneField(
+        CustomUser, on_delete=models.CASCADE, related_name='admin_level_2'
+    )
+    telegram_chat_id = models.CharField(
+        max_length=255, blank=True, null=True,
+        verbose_name="تلگرام چت آیدی"
+    )
+    license_expiry_date = models.DateField(
+        null=True, blank=True, verbose_name="تاریخ انقضای لایسنس"
+    )
+    def __str__(self):
+        return f"Admin Level 2: {self.user.username}"
+class AdminLevel3(models.Model):
+    user = models.OneToOneField(
+        CustomUser, on_delete=models.CASCADE, related_name='admin_level_3'
+    )
+    parent_admin = models.ForeignKey(
+        AdminLevel2,
+        on_delete=models.CASCADE,
+        related_name='child_admins',
+        verbose_name="ادمین والد (سطح ۲)"
+    )
+    telegram_chat_id = models.CharField(
+        max_length=255, blank=True, null=True,
+        verbose_name="تلگرام چت آیدی"
+    )
+    def __str__(self):
+        return f"Admin Level 3: {self.user.username}"
+class Panel(models.Model):
+    owner = models.OneToOneField(CustomUser, on_delete=models.CASCADE, related_name='owned_panel')
+    name = models.CharField(max_length=255, verbose_name="نام پنل")
+    marzban_host = models.CharField(max_length=255, verbose_name="آدرس هاست Marzban")
+    marzban_username = models.CharField(max_length=255, verbose_name="نام کاربری Marzban")
+    marzban_password = models.CharField(max_length=255, verbose_name="رمز عبور Marzban")
+    telegram_bot_token = models.CharField(max_length=255, blank=True, null=True)
+    # ADDED: Link to the license
+    license = models.OneToOneField('License', on_delete=models.SET_NULL, null=True, blank=True, related_name='linked_panel')
+    def __str__(self):
+        return self.name
+class License(models.Model):
+    key = models.UUIDField(default=uuid.uuid4, editable=False, unique=True, verbose_name="کلید لایسنس")
+    is_active = models.BooleanField(default=True, verbose_name="وضعیت فعال")
+    owner = models.ForeignKey(CustomUser, on_delete=models.CASCADE, verbose_name="صاحب لایسنس")
+    created_at = models.DateTimeField(auto_now_add=True, verbose_name="تاریخ ایجاد")
+    expiry_date = models.DateField(verbose_name="تاریخ انقضا")
+    def __str__(self):
+        return str(self.key)
+# ADDED: MarzbanAdmin model (was missing)
+class MarzbanAdmin(models.Model):
+    username = models.CharField(max_length=255, unique=True)
+    password = models.CharField(max_length=255)
+    permission = models.CharField(max_length=50)
+    panel = models.ForeignKey(Panel, on_delete=models.CASCADE, related_name='marzban_admins')
+    def __str__(self):
+        return self.username
+# ADDED: MarzbanUser model (was missing)
+class MarzbanUser(models.Model):
+    username = models.CharField(max_length=255, unique=True)
+    # Add other fields relevant to Marzban users
+    # ...
+    def __str__(self):
+        return self.username
+class EndUser(models.Model):
+    username = models.CharField(max_length=255, unique=True)
+    panel = models.ForeignKey(Panel, on_delete=models.CASCADE)
+    # marzban_user_id can be nullable if the user is created first in our DB
+    marzban_user_id = models.CharField(max_length=255, unique=True, null=True, blank=True)
+    telegram_chat_id = models.CharField(max_length=255, blank=True, null=True)
+    def __str__(self):
+        return self.username
+# ADDED: Plan model (was missing)
+class Plan(models.Model):
+    name = models.CharField(max_length=100)
+    price = models.DecimalField(max_digits=10, decimal_places=2)
+    duration_days = models.IntegerField()
+    data_limit_gb = models.FloatField()
+    is_active = models.BooleanField(default=True)
+    panel = models.ForeignKey(Panel, on_delete=models.CASCADE, related_name='plans')
+    def __str__(self):
+        return f"{self.name} ({self.panel.name})"
+# ADDED: Subscription model (was missing)
+class Subscription(models.Model):
+    STATUS_CHOICES = [
+        ('active', 'فعال'),
+        ('expired', 'منقضی شده'),
+        ('pending', 'در انتظار پرداخت'),
+        ('deactivated', 'غیرفعال'),
+    ]
+    end_user = models.ForeignKey(EndUser, on_delete=models.CASCADE, related_name='subscriptions')
+    plan = models.ForeignKey(Plan, on_delete=models.PROTECT) # Don't delete plan if subscription exists
+    panel = models.ForeignKey(Panel, on_delete=models.CASCADE, related_name='subscriptions')
+    status = models.CharField(max_length=20, choices=STATUS_CHOICES, default='pending')
+    start_date = models.DateField(null=True, blank=True)
+    end_date = models.DateField(null=True, blank=True)
+    remaining_data_gb = models.FloatField(null=True, blank=True)
+    def __str__(self):
+        return f"Subscription for {self.end_user.username} on plan {self.plan.name}"
+# FIXED: Complete overhaul of the Payment model
+class Payment(models.Model):
+    STATUS_CHOICES = [
+        ('pending', 'در انتظار تأیید'),
+        ('approved', 'تأیید شده'),
+        ('rejected', 'رد شده'),
+    ]
+    subscription = models.ForeignKey(Subscription, on_delete=models.CASCADE, related_name='payments')
+    admin = models.ForeignKey(CustomUser, on_delete=models.PROTECT, related_name='handled_payments') # The admin to approve
+    amount = models.DecimalField(max_digits=10, decimal_places=2, verbose_name="مبلغ")
+    status = models.CharField(max_length=20, choices=STATUS_CHOICES, default='pending', verbose_name="وضعیت")
+    created_at = models.DateTimeField(auto_now_add=True, verbose_name="تاریخ ایجاد")
+    # Fields for receipt upload
+    payment_token = models.UUIDField(default=uuid.uuid4, editable=False, unique=True)
+    receipt_image = models.ImageField(upload_to='receipts/', blank=True, null=True, verbose_name="تصویر رسید")
+    receipt_text = models.TextField(blank=True, null=True, verbose_name="متن رسید")
+    def __str__(self):
+        return f"Payment for {self.subscription.end_user.username} - {self.amount} - {self.status}"
+class DiscountCode(models.Model):
+    code = models.CharField(max_length=50, unique=True)
+    admin = models.ForeignKey(CustomUser, on_delete=models.CASCADE)
+    discount_percentage = models.DecimalField(max_digits=5, decimal_places=2)
+    is_active = models.BooleanField(default=True)
+    def __str__(self):
+        return self.code
+# --- Telegram Integration ---
+class TelegramUser(models.Model):
+    admin_id = models.CharField(max_length=255, unique=True, primary_key=True)
+    chat_id = models.CharField(max_length=255, unique=True)
+    username = models.CharField(max_length=255)
+    class Meta:
+        managed = False
+        db_table = 'telegram_users'
+    def __str__(self):
+        return self.username
+class SecurityToken(models.Model):
+    admin_id = models.CharField(max_length=255, primary_key=True)
+    token = models.CharField(max_length=255, unique=True, default=uuid.uuid4)
+    expiration_date = models.DateTimeField()
+    class Meta:
+        managed = False
+        db_table = 'telegram_tokens'
+    def __str__(self):
+        return f"Token for {self.admin_id}"
+# --- Push Notifications ---
+class PushSubscription(models.Model):
+    user = models.ForeignKey(
+        CustomUser, on_delete=models.CASCADE, related_name='push_subscriptions'
+    )
+    subscription_info = models.JSONField()
+    created_at = models.DateTimeField(auto_now_add=True)
+# --- Payment System Models ---
+class PaymentMethod(models.Model):
+    METHOD_CHOICES = [
+        ('gateway', 'Bank Gateway'),
+        ('crypto', 'Cryptocurrency'),
+        ('manual', 'Manual (Card-to-Card)'),
+    ]
+    name = models.CharField(max_length=50, choices=METHOD_CHOICES, unique=True, verbose_name="Payment Method Name")
+    is_active = models.BooleanField(default=True, verbose_name="Is Active?")
+    can_be_managed_by_level3 = models.BooleanField(default=False, verbose_name="Can be managed by Admin Level 3?")
+    class Meta:
+        verbose_name = "Payment Method"
+        verbose_name_plural = "Payment Methods"
+    def __str__(self):
+        return self.get_name_display()
+class PaymentSetting(models.Model):
+    admin_level_3 = models.ForeignKey(
+        CustomUser,
+        on_delete=models.CASCADE,
+        limit_choices_to={'role': 'AdminLevel3'},
+        related_name='payment_settings'
+    )
+    payment_method = models.ForeignKey(PaymentMethod, on_delete=models.CASCADE)
+    is_active = models.BooleanField(default=False, verbose_name="Is Active for this Admin?")
+    class Meta:
+        unique_together = ('admin_level_3', 'payment_method')
+        verbose_name = "Payment Setting"
+        verbose_name_plural = "Payment Settings"
+    def __str__(self):
+        return f"{self.admin_level_3.username}'s {self.payment_method.get_name_display()} Setting"
+class PaymentDetail(models.Model):
+    id = models.UUIDField(primary_key=True, default=uuid.uuid4, editable=False)
+    admin_level_3 = models.OneToOneField(
+        CustomUser,
+        on_delete=models.CASCADE,
+        limit_choices_to={'role': 'AdminLevel3'},
+        related_name='payment_details'
+    )
+    card_number = models.CharField(max_length=50, blank=True, null=True)
+    card_holder_name = models.CharField(max_length=255, blank=True, null=True)
+    wallet_address = models.CharField(max_length=255, blank=True, null=True)
+    class Meta:
+        verbose_name = "Payment Detail"
+        verbose_name_plural = "Payment Details"
+    def __str__(self):
+        return f"Payment details for {self.admin_level_3.username}"

management/serializers.py ADDED Viewed

	@@ -0,0 +1,193 @@

+# management/serializers.py
+# -*- coding: utf-8 -*-
+from rest_framework import serializers
+from django.utils import timezone
+import datetime
+from .models import (
+    CustomUser,
+    Panel,
+    License,
+    PushSubscription,
+    MarzbanAdmin,
+    SecurityToken,
+    DiscountCode,
+    Plan,
+    Subscription,
+    Payment,
+    EndUser,
+    PaymentMethod,
+    PaymentSetting,
+    PaymentDetail,
+)
+# --- Serializers for Django Rest Framework ---
+# ADDED: LicenseSerializer (was missing)
+class LicenseSerializer(serializers.ModelSerializer):
+    """Serializer for the License model."""
+    class Meta:
+        model = License
+        fields = ['key', 'is_active', 'owner', 'created_at', 'expiry_date']
+        read_only_fields = ['key', 'created_at']
+class CustomUserSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = CustomUser
+        fields = ['id', 'username', 'role']
+class PushSubscriptionSerializer(serializers.Serializer):
+    subscription_info = serializers.JSONField()
+class MarzbanAdminSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = MarzbanAdmin
+        fields = ['id', 'username', 'password', 'permission']
+        extra_kwargs = {'password': {'write_only': True}}
+class SecurityTokenSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = SecurityToken
+        fields = ['admin_id', 'token', 'expiration_date']
+class DiscountCodeSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = DiscountCode
+        fields = ['id', 'code', 'discount_percentage', 'is_active']
+        read_only_fields = ['id', 'admin']
+class PanelSerializer(serializers.ModelSerializer):
+    license_key = serializers.CharField(write_only=True, required=True)
+    class Meta:
+        model = Panel
+        fields = ['id', 'name', 'marzban_host', 'marzban_username', 'marzban_password', 'telegram_bot_token', 'license_key']
+        read_only_fields = ['id', 'owner']
+    def validate_license_key(self, value):
+        owner = self.context['request'].user
+        try:
+            license_obj = License.objects.get(key=value, owner=owner, is_active=True)
+            if hasattr(license_obj, 'linked_panel') and license_obj.linked_panel is not None:
+                raise serializers.ValidationError('This license key has already been used.')
+            return license_obj
+        except License.DoesNotExist:
+            raise serializers.ValidationError('Invalid or inactive license key.')
+    def create(self, validated_data):
+        license_obj = validated_data.pop('license_key')
+        panel = Panel.objects.create(
+            owner=self.context['request'].user,
+            license=license_obj,
+            **validated_data
+        )
+        return panel
+class PlanSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = Plan
+        fields = ['id', 'name', 'price', 'duration_days', 'data_limit_gb', 'is_active']
+        read_only_fields = ['id']
+class SubscriptionSerializer(serializers.ModelSerializer):
+    end_user = serializers.CharField(source='end_user.username', read_only=True)
+    plan = PlanSerializer(read_only=True)
+    class Meta:
+        model = Subscription
+        fields = ['id', 'end_user', 'plan', 'status', 'start_date', 'end_date', 'remaining_data_gb']
+class AdminLevel3SubscriptionSerializer(serializers.ModelSerializer):
+    end_user_username = serializers.CharField(write_only=True)
+    plan_id = serializers.IntegerField(write_only=True)
+    end_user = SubscriptionSerializer(source='end_user', read_only=True) # To show user details on response
+    plan = PlanSerializer(read_only=True) # To show plan details on response
+    class Meta:
+        model = Subscription
+        fields = ['id', 'end_user_username', 'plan_id', 'status', 'start_date', 'end_date', 'remaining_data_gb', 'end_user', 'plan']
+        read_only_fields = ['id', 'status', 'start_date', 'end_date', 'remaining_data_gb', 'end_user', 'plan']
+    def validate(self, data):
+        request_user = self.context['request'].user
+        try:
+            panel = request_user.owned_panel
+        except Panel.DoesNotExist:
+            raise serializers.ValidationError("Admin does not own a panel.")
+        try:
+            end_user = EndUser.objects.get(username=data.get('end_user_username'), panel=panel)
+            data['end_user_instance'] = end_user
+        except EndUser.DoesNotExist:
+            raise serializers.ValidationError({"end_user_username": "User not found in your panel."})
+        try:
+            plan = Plan.objects.get(id=data.get('plan_id'), is_active=True, panel=panel)
+            data['plan_instance'] = plan
+        except Plan.DoesNotExist:
+            raise serializers.ValidationError({"plan_id": "Plan not found or is not active in your panel."})
+        data['panel_instance'] = panel
+        return data
+    def create(self, validated_data):
+        end_user = validated_data.get('end_user_instance')
+        plan = validated_data.get('plan_instance')
+        panel = validated_data.get('panel_instance')
+        start_date = timezone.now().date()
+        end_date = start_date + datetime.timedelta(days=plan.duration_days)
+        subscription = Subscription.objects.create(
+            end_user=end_user,
+            plan=plan,
+            panel=panel,
+            status='active', # Assuming direct creation by admin activates it
+            start_date=start_date,
+            end_date=end_date,
+            remaining_data_gb=plan.data_limit_gb
+        )
+        return subscription
+class PurchaseSubscriptionForUserSerializer(serializers.Serializer):
+    end_user_username = serializers.CharField(max_length=150)
+    plan_id = serializers.IntegerField()
+    amount = serializers.DecimalField(max_digits=10, decimal_places=2)
+    def validate_plan_id(self, value):
+        if not Plan.objects.filter(id=value, is_active=True).exists():
+            raise serializers.ValidationError("Plan not found or is not active.")
+        return value
+class ReceiptUploadSerializer(serializers.ModelSerializer):
+    payment_token = serializers.UUIDField(write_only=True)
+    class Meta:
+        model = Payment
+        fields = ['receipt_image', 'receipt_text', 'payment_token']
+    def validate(self, data):
+        if not data.get('receipt_image') and not data.get('receipt_text'):
+            raise serializers.ValidationError("Either receipt image or text is required.")
+        return data
+# --- Payment System Serializers ---
+class PaymentMethodSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = PaymentMethod
+        fields = ['id', 'name', 'is_active', 'can_be_managed_by_level3']
+        read_only_fields = ['id']
+class PaymentDetailSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = PaymentDetail
+        fields = ['id', 'card_number', 'card_holder_name', 'wallet_address']
+        read_only_fields = ['id']
+class EndUserPaymentDetailSerializer(serializers.Serializer):
+    method_name = serializers.CharField(source='payment_method.get_name_display')
+    method_key = serializers.CharField(source='payment_method.name')
+    is_active = serializers.BooleanField(source='is_active')
+    card_number = serializers.CharField(source='admin_level_3.payment_details.card_number', read_only=True)
+    card_holder_name = serializers.CharField(source='admin_level_3.payment_details.card_holder_name', read_only=True)
+    wallet_address = serializers.CharField(source='admin_level_3.payment_details.wallet_address', read_only=True)

management/static/css/styles.css ADDED Viewed

	@@ -0,0 +1,22 @@

+/* management/static/css/styles.css */
+@font-face {
+    font-family: 'Vazirmatn';
+    src: url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/eot/Vazirmatn-Regular.eot') format('eot'),
+         url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/woff2/Vazirmatn-Regular.woff2') format('woff2'),
+         url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/woff/Vazirmatn-Regular.woff') format('woff'),
+         url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/ttf/Vazirmatn-Regular.ttf') format('truetype');
+    font-weight: normal;
+    font-style: normal;
+    font-display: swap;
+}
+body {
+    font-family: 'Vazirmatn', sans-serif;
+}
+/* Custom styles for the configs list */
+#configs-list li:hover {
+    background-color: #f1f5f9;
+    transition: background-color 0.2s ease-in-out;
+}

management/static/js/main.js ADDED Viewed

	@@ -0,0 +1,174 @@

+// management/static/js/main.js
+// -*- coding: utf-8 -*-
+// VAPID_PUBLIC_KEY will be passed from the Django template.
+// This is a placeholder; it will be filled with the correct value in the HTML file.
+const VAPID_PUBLIC_KEY_PLACEHOLDER = "{{ vapid_public_key }}";
+/**
+ * Converts a base64 string to a Uint8Array.
+ * @param {string} base64String
+ * @returns {Uint8Array}
+ */
+function urlBase64ToUint8Array(base64String) {
+    const padding = '='.repeat((4 - base64String.length % 4) % 4);
+    const base64 = (base64String + padding)
+        .replace(/\-/g, '+')
+        .replace(/_/g, '/');
+    const rawData = window.atob(base64);
+    const outputArray = new Uint8Array(rawData.length);
+    for (let i = 0; i < rawData.length; ++i) {
+        outputArray[i] = rawData.charCodeAt(i);
+    }
+    return outputArray;
+}
+/**
+ * Registers the service worker for the PWA.
+ * @returns {Promise<ServiceWorkerRegistration|null>}
+ */
+async function registerServiceWorker() {
+    if ('serviceWorker' in navigator) {
+        try {
+            const registration = await navigator.serviceWorker.register('/service-worker.js');
+            console.log('Service worker registered successfully.');
+            return registration;
+        } catch (error) {
+            console.error('Service worker registration failed:', error);
+            return null;
+        }
+    }
+    console.error('Service workers are not supported in this browser.');
+    return null;
+}
+/**
+ * Subscribes the user to push notifications.
+ * @param {ServiceWorkerRegistration} registration
+ */
+async function subscribeUserToPush(registration) {
+    if (!('PushManager' in window)) {
+        console.error('Push notifications are not supported.');
+        return;
+    }
+    if (!VAPID_PUBLIC_KEY_PLACEHOLDER || VAPID_PUBLIC_KEY_PLACEHOLDER === "YOUR_VAPID_PUBLIC_KEY_HERE") {
+        console.error("VAPID public key not configured.");
+        return;
+    }
+    try {
+        const subscription = await registration.pushManager.subscribe({
+            userVisibleOnly: true,
+            applicationServerKey: urlBase64ToUint8Array(VAPID_PUBLIC_KEY_PLACEHOLDER)
+        });
+        console.log('User is subscribed to push.');
+        const response = await fetch('/api/push/subscribe/', {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'X-CSRFToken': document.querySelector('[name=csrfmiddlewaretoken]').value
+            },
+            body: JSON.stringify(subscription)
+        });
+        if (!response.ok) {
+            console.error('Failed to save push subscription on server.');
+        }
+    } catch (error) {
+        console.error('Push subscription failed:', error);
+    }
+}
+/**
+ * Fetches and displays user dashboard data from the API.
+ */
+async function fetchDashboardData() {
+    try {
+        const response = await fetch('/api/dashboard/');
+        if (!response.ok) {
+            throw new Error('Network response was not ok');
+        }
+        const data = await response.json();
+        document.getElementById('username-display').textContent = data.username;
+        document.getElementById('service-status').textContent = data.service_status;
+        document.getElementById('used-traffic').textContent = (data.used_traffic / (1024 ** 3)).toFixed(2) + ' GB';
+        document.getElementById('total-traffic').textContent = (data.total_traffic / (1024 ** 3)).toFixed(2) + ' GB';
+        const configsList = document.getElementById('configs-list');
+        configsList.innerHTML = ''; // Clear previous content
+        data.configs.forEach(config => {
+            const listItem = document.createElement('li');
+            listItem.className = 'bg-gray-50 rounded-md p-3 border border-gray-200';
+            listItem.innerHTML = `
+                <div class="font-bold text-gray-800">${config.remark}</div>
+                <div class="text-sm text-gray-500 break-all">${config.link}</div>
+            `;
+            configsList.appendChild(listItem);
+        });
+    } catch (error) {
+        console.error('Error fetching dashboard data:', error);
+        document.body.innerHTML = '<p class="text-red-500 text-center">خطا در بارگذاری اطلاعات داشبورد.</p>';
+    }
+}
+/**
+ * Handles the generation of the Telegram security token.
+ */
+async function handleTelegramTokenGeneration() {
+    const generateTokenBtn = document.getElementById('generate-token-btn');
+    const tokenDisplayArea = document.getElementById('token-display-area');
+    const telegramTokenCode = document.getElementById('telegram-token');
+    if (!generateTokenBtn) return;
+    generateTokenBtn.addEventListener('click', async () => {
+        const response = await fetch('/api/telegram/generate-token/', {
+            method: 'POST',
+            headers: {
+                'X-CSRFToken': document.querySelector('[name=csrfmiddlewaretoken]').value
+            }
+        });
+        if (response.ok) {
+            const data = await response.json();
+            telegramTokenCode.textContent = data.token;
+            tokenDisplayArea.classList.remove('hidden');
+        } else {
+            // Using a custom modal or message box instead of alert()
+            console.error('Failed to generate token.');
+            alert('خطا در تولید توکن.');
+        }
+    });
+}
+document.addEventListener('DOMContentLoaded', async () => {
+    // Fetch and render dashboard data
+    await fetchDashboardData();
+    // PWA and Push Notification logic
+    const registration = await registerServiceWorker();
+    if (registration) {
+        if (Notification.permission === 'granted') {
+            console.log('Push permission already granted.');
+        } else if (Notification.permission === 'denied') {
+            console.log('Push permission denied by user.');
+        } else {
+            // Prompt the user for permission
+            // This is a browser feature, so we don't need a custom modal
+            Notification.requestPermission().then(permission => {
+                if (permission === 'granted') {
+                    subscribeUserToPush(registration);
+                } else {
+                    console.log('User denied push notification permission.');
+                }
+            });
+        }
+    }
+    // Telegram token generation
+    handleTelegramTokenGeneration();
+});

management/static/js/service-worker.js ADDED Viewed

	@@ -0,0 +1,91 @@

+// management/templates/management/service-worker.js
+// -*- coding: utf-8 -*-
+console.log('Service Worker Loaded and Ready.');
+// CACHE_NAME را برای مدیریت نسخه‌ها تغییر دهید
+const CACHE_NAME = 'marzban-pwa-cache-v1.0';
+// فایل‌هایی که باید در زمان نصب Service Worker کش شوند
+const urlsToCache = [
+    '/',
+    '/dashboard/',
+    '/static/js/main.js',
+    '/static/css/styles.css',
+    '/static/images/icons/icon-192x192.png',
+    '/static/images/icons/icon-512x512.png',
+    '/manifest.json'
+];
+self.addEventListener('install', (event) => {
+    console.log('Service Worker: Install event.');
+    // در زمان نصب، فایل‌های اصلی را در حافظه کش ذخیره می‌کنیم
+    event.waitUntil(
+        caches.open(CACHE_NAME)
+            .then((cache) => {
+                console.log('Opened cache');
+                return cache.addAll(urlsToCache);
+            })
+    );
+});
+self.addEventListener('activate', (event) => {
+    console.log('Service Worker: Activate event.');
+    // پاک کردن کش‌های قدیمی
+    event.waitUntil(
+        caches.keys().then((cacheNames) => {
+            return Promise.all(
+                cacheNames.map((cacheName) => {
+                    if (cacheName !== CACHE_NAME) {
+                        console.log('Service Worker: Deleting old cache: ', cacheName);
+                        return caches.delete(cacheName);
+                    }
+                })
+            );
+        })
+    );
+});
+self.addEventListener('fetch', (event) => {
+    // برای درخواست‌های شبکه، ابتدا کش را بررسی می‌کنیم و در صورت عدم وجود، درخواست شبکه می‌زنیم
+    event.respondWith(
+        caches.match(event.request).then((response) => {
+            // اگر در کش بود، همان را برمی‌گردانیم
+            if (response) {
+                return response;
+            }
+            // اگر در کش نبود، درخواست شبکه می‌زنیم
+            return fetch(event.request);
+        })
+    );
+});
+self.addEventListener('push', (event) => {
+    const data = event.data.json();
+    console.log('Push received...', data);
+    const title = data.head || 'نوتیفیکیشن جدید';
+    const options = {
+        body: data.body,
+        icon: data.icon || '/static/images/icons/icon-192x192.png',
+        // الگوی لرزش: 200ms لرزش، 100ms مکث، 200ms لرزش
+        vibrate: data.vibrate || [200, 100, 200],
+        // پخش صدای پیش‌فرض سیستم
+        // توجه: پخش فایل صوتی سفارشی در مرورگرها به طور کامل پشتیبانی نمی‌شود.
+        // مرورگرها از صدای پیش‌فرض سیستم برای نوتیفیکیشن استفاده می‌کنند.
+        sound: data.sound || undefined,
+        badge: '/static/images/icons/badge-72x72.png'
+    };
+    event.waitUntil(
+        self.registration.showNotification(title, options)
+    );
+});
+self.addEventListener('notificationclick', (event) => {
+    console.log('Notification clicked', event);
+    event.notification.close();
+    event.waitUntil(
+        clients.openWindow('https://your-panel-address.com/dashboard/')
+    );
+});

management/static/manifest.json ADDED Viewed

	@@ -0,0 +1,23 @@

+// management/static/manifest.json
+{
+    "name": "پنل مدیریت مرزبان",
+    "short_name": "مرزبان",
+    "start_url": "/",
+    "display": "standalone",
+    "background_color": "#ffffff",
+    "theme_color": "#4f46e5",
+    "description": "پنل مدیریت پیشرفته برای مرزبان",
+    "icons": [
+        {
+            "src": "/static/icons/icon-192x192.png",
+            "sizes": "192x192",
+            "type": "image/png"
+        },
+        {
+            "src": "/static/icons/icon-512x512.png",
+            "sizes": "512x512",
+            "type": "image/png"
+        }
+    ]
+}

management/static/styles.css ADDED Viewed

	@@ -0,0 +1,22 @@

+/* management/static/css/styles.css */
+@font-face {
+    font-family: 'Vazirmatn';
+    src: url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/eot/Vazirmatn-Regular.eot') format('eot'),
+         url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/woff2/Vazirmatn-Regular.woff2') format('woff2'),
+         url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/woff/Vazirmatn-Regular.woff') format('woff'),
+         url('https://cdn.jsdelivr.net/gh/rastikerdar/[email protected]/fonts/web/ttf/Vazirmatn-Regular.ttf') format('truetype');
+    font-weight: normal;
+    font-style: normal;
+    font-display: swap;
+}
+body {
+    font-family: 'Vazirmatn', sans-serif;
+}
+/* Custom styles for the configs list */
+#configs-list li:hover {
+    background-color: #f1f5f9;
+    transition: background-color 0.2s ease-in-out;
+}

management/tasks.py ADDED Viewed

	@@ -0,0 +1,192 @@

+# management/tasks.py
+# -*- coding: utf-8 -*-
+from __future__ import absolute_import, unicode_literals
+import requests
+import json
+import os
+import datetime
+from celery import shared_task
+from django.db import connections, connection
+from django.conf import settings
+from django.utils import timezone
+from .models import (
+    Panel,
+    AdminLevel2,
+    AdminLevel3,
+    EndUser,
+    Payment,
+    CustomUser,
+    Subscription,
+)
+from django.core.management import call_command
+# --- Utilities ---
+# FIXED: Renamed function to match imports in other files
+@shared_task
+def send_telegram_message(chat_id, message, bot_token):
+    """
+    Sends a message to a specific Telegram chat using a bot token.
+    """
+    if not bot_token:
+        print("Telegram bot token is not configured.")
+        return
+    url = f"https://api.telegram.org/bot{bot_token}/sendMessage"
+    payload = {
+        "chat_id": chat_id,
+        "text": message,
+        "parse_mode": "Markdown"
+    }
+    try:
+        response = requests.post(url, json=payload)
+        response.raise_for_status()
+        print(f"Notification sent successfully to chat_id {chat_id}")
+    except requests.RequestException as e:
+        print(f"Failed to send notification to chat_id {chat_id}: {e}")
+# --- Celery Tasks ---
+@shared_task(name="management.tasks.schedule_reminders")
+def schedule_reminders():
+    """
+    Celery task to send periodic reminders to admins and users.
+    """
+    now = timezone.now().date()
+    # 1. License expiry warnings for AdminLevel2s (resellers)
+    three_days_from_now = now + datetime.timedelta(days=3)
+    admin_level2s = AdminLevel2.objects.filter(license_expiry_date__lte=three_days_from_now)
+    for admin in admin_level2s:
+        # Assuming AdminLevel2 is linked to a Panel through its CustomUser owner
+        # This part might need adjustment based on the final model structure
+        try:
+            panel = Panel.objects.get(owner=admin.user)
+            if admin.telegram_chat_id and panel.telegram_bot_token:
+                message = (
+                    f"🚨 **هشدار انقضای لایسنس!**\n\n"
+                    f"ادمین {admin.user.username}، لایسنس شما در تاریخ {admin.license_expiry_date} منقضی خواهد شد. لطفاً برای تمدید آن اقدام کنید."
+                )
+                send_telegram_message(
+                    chat_id=admin.telegram_chat_id,
+                    message=message,
+                    bot_token=panel.telegram_bot_token
+                )
+        except Panel.DoesNotExist:
+            print(f"Panel for admin {admin.user.username} not found.")
+@shared_task
+def send_payment_receipt_to_admin(payment_id):
+    """
+    Sends a payment receipt notification to the relevant admin via Telegram.
+    """
+    try:
+        payment = Payment.objects.get(id=payment_id)
+        admin = payment.admin
+        panel = payment.subscription.panel
+        if not admin.admin_level_3.telegram_chat_id or not panel.telegram_bot_token:
+            print(f"Admin telegram_chat_id or bot token not found for payment {payment_id}.")
+            return
+        message = (
+            f"🔔 **رسید پرداخت جدید!**\n\n"
+            f"یک کاربر ({payment.subscription.end_user.username}) رسید پرداختی را برای تمدید اشتراک ارسال کرده است.\n"
+            f"مبلغ: {payment.amount} تومان\n"
+            f"توکن پرداخت: `{payment.payment_token}`\n"
+            f"لطفا به پنل خود مراجعه کرده و پرداخت را تایید کنید."
+        )
+        if payment.receipt_image:
+            message += f"\n\nتصویر رسید پرداخت آپلود شده است."
+        elif payment.receipt_text:
+             message += f"\n\nمتن رسید پرداخت: {payment.receipt_text}"
+        send_telegram_message(
+            chat_id=admin.admin_level_3.telegram_chat_id,
+            message=message,
+            bot_token=panel.telegram_bot_token
+        )
+    except Payment.DoesNotExist:
+        print(f"Payment with id {payment_id} not found.")
+    except Exception as e:
+        print(f"Error sending payment receipt to admin: {e}")
+@shared_task
+def send_payment_confirmation_to_user(end_user_id, amount, status):
+    """
+    Sends a payment confirmation message to the end-user.
+    """
+    try:
+        end_user = EndUser.objects.get(id=end_user_id)
+        panel = end_user.panel
+        if not panel or not panel.telegram_bot_token or not end_user.telegram_chat_id:
+            print(f"EndUser panel, bot token or telegram_chat_id not found for user {end_user_id}.")
+            return
+        if status == 'approved':
+            message = (
+                f"✅ **پرداخت شما تأیید شد**\n\n"
+                f"مبلغ {amount} تومان برای پنل {panel.name} با موفقیت تأیید شد. سرویس شما به زودی فعال خواهد شد."
+            )
+        else:
+            message = (
+                f"❌ **پرداخت شما رد شد**\n\n"
+                f"پرداخت {amount} تومان برای پنل {panel.name} رد شد. لطفاً رسید معتبر را ارسال کنید."
+            )
+        send_telegram_message(
+            chat_id=end_user.telegram_chat_id,
+            message=message,
+            bot_token=panel.telegram_bot_token
+        )
+    except EndUser.DoesNotExist:
+        print(f"EndUser with id {end_user_id} not found.")
+    except Exception as e:
+        print(f"Error sending payment confirmation to user: {e}")
+@shared_task(name="management.tasks.check_subscription_expiry")
+def check_subscription_expiry():
+    """
+    Celery task to check subscription expiry and send notifications.
+    """
+    now = timezone.now().date()
+    # Send reminder 3 days before expiry
+    three_days_from_now = now + datetime.timedelta(days=3)
+    expiring_soon_subscriptions = Subscription.objects.filter(
+        end_date__date=three_days_from_now,
+        status='active'
+    )
+    for sub in expiring_soon_subscriptions:
+        if sub.end_user.telegram_chat_id and sub.panel.telegram_bot_token:
+            message = (
+                f"⏳ **اشتراک شما به زودی منقضی می‌شود!**\n\n"
+                f"کاربر {sub.end_user.username}، اشتراک شما در تاریخ {sub.end_date.strftime('%Y-%m-%d')} منقضی خواهد شد. برای تمدید آن از طریق بات اقدام کنید."
+            )
+            send_telegram_message(
+                chat_id=sub.end_user.telegram_chat_id,
+                message=message,
+                bot_token=sub.panel.telegram_bot_token
+            )
+    # Deactivate expired subscriptions
+    expired_subscriptions = Subscription.objects.filter(end_date__lte=now, status='active')
+    for sub in expired_subscriptions:
+        sub.status = 'expired'
+        sub.save()
+        if sub.end_user.telegram_chat_id and sub.panel.telegram_bot_token:
+            message = (
+                f"❌ **اشتراک شما منقضی شد!**\n\n"
+                f"کاربر {sub.end_user.username}، اشتراک شما منقضی شده است. لطفا برای تمدید اقدام کنید."
+            )
+            send_telegram_message(
+                chat_id=sub.end_user.telegram_chat_id,
+                message=message,
+                bot_token=sub.panel.telegram_bot_token
+            )

management/telebot.py ADDED Viewed

	@@ -0,0 +1,62 @@

+# management/telebot.py
+# -*- coding: utf-8 -*-
+import logging
+from django.contrib.auth import get_user_model
+from django.conf import settings
+from .models import TelegramUser
+import requests
+import json
+logger = logging.getLogger(__name__)
+CustomUser = get_user_model()
+def send_telegram_message(chat_id, message):
+    """
+    ارسال پیام به یک کاربر تلگرام با استفاده از API.
+    """
+    TOKEN = settings.TELEGRAM_BOT_TOKEN
+    API_URL = f"https://api.telegram.org/bot{TOKEN}/sendMessage"
+    payload = {
+        'chat_id': chat_id,
+        'text': message
+    }
+    try:
+        response = requests.post(API_URL, json=payload)
+        response.raise_for_status()
+        logger.info(f"Message sent to chat ID {chat_id}: {message}")
+    except requests.exceptions.RequestException as e:
+        logger.error(f"Error sending message to Telegram: {e}")
+def process_telegram_message(update):
+    """
+    پردازش پیام‌های ورودی از تلگرام.
+    """
+    message_data = update.get('message')
+    if not message_data:
+        return
+    chat_id = message_data['chat']['id']
+    text = message_data.get('text', '')
+    # بررسی اگر متن یک کد امنیتی است
+    # اینجا یک شرط برای طول توکن میگذاریم تا از بررسی پیام‌های کوتاه جلوگیری شود
+    if 10 < len(text) < 50:
+        # ارسال کد به سرور برای تأیید
+        payload = {
+            'token': text,
+            'chat_id': chat_id
+        }
+        try:
+            # URL باید به آدرس واقعی API در سرور شما اشاره کند
+            response = requests.post('http://127.0.0.1:8000/api/telegram/verify-token/', json=payload)
+            result = response.json()
+            send_telegram_message(chat_id, result['message'])
+        except requests.exceptions.RequestException as e:
+            logger.error(f"Error communicating with Django server: {e}")
+            send_telegram_message(chat_id, "متاسفم، در حال حاضر نمی‌توانم درخواست شما را پردازش کنم. لطفاً بعداً امتحان کنید.")
+    elif text == '/start':
+        send_telegram_message(chat_id, "سلام، برای همگام‌سازی حساب خود، لطفاً یک کد امنیتی از پنل کاربری خود دریافت کرده و آن را برای من ارسال کنید.")
+    else:
+        send_telegram_message(chat_id, "دستور شما نامعتبر است. لطفاً کد امنیتی خود را ارسال کنید یا از دستورات مجاز استفاده کنید.")

management/templates/management/%} ADDED Viewed

	@@ -0,0 +1 @@


1	+

management/templates/management/admin-panel-management.html ADDED Viewed

	@@ -0,0 +1,276 @@

+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>مدیریت پنل‌های Marzban</title>
+    <!-- Tailwind CSS -->
+    <script src="https://cdn.tailwindcss.com"></script>
+    <style>
+        @import url('https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap');
+        body {
+            font-family: 'Inter', sans-serif;
+        }
+    </style>
+</head>
+<body class="bg-gray-100 p-8">
+    <div class="max-w-4xl mx-auto bg-white rounded-xl shadow-lg p-6">
+        <h1 class="text-3xl font-bold text-gray-800 text-center mb-6">مدیریت پنل‌های Marzban</h1>
+        <!-- فرم اضافه/ویرایش پنل -->
+        <form id="panel-form" class="space-y-4 mb-8">
+            <h2 id="form-title" class="text-2xl font-semibold text-gray-700">افزودن پنل جدید</h2>
+            <div class="grid grid-cols-1 md:grid-cols-2 gap-4">
+                <div>
+                    <label for="panel-name" class="block text-sm font-medium text-gray-700">نام پنل</label>
+                    <input type="text" id="panel-name" required class="mt-1 block w-full px-3 py-2 bg-white border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+                </div>
+                <div>
+                    <label for="panel-address" class="block text-sm font-medium text-gray-700">آدرس پنل (URL)</label>
+                    <input type="url" id="panel-address" required class="mt-1 block w-full px-3 py-2 bg-white border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+                </div>
+            </div>
+            <div class="grid grid-cols-1 md:grid-cols-2 gap-4">
+                <div>
+                    <label for="db-name" class="block text-sm font-medium text-gray-700">نام دیتابیس</label>
+                    <input type="text" id="db-name" required class="mt-1 block w-full px-3 py-2 bg-white border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+                </div>
+                <div>
+                    <label for="db-user" class="block text-sm font-medium text-gray-700">نام کاربری دیتابیس</label>
+                    <input type="text" id="db-user" required class="mt-1 block w-full px-3 py-2 bg-white border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+                </div>
+            </div>
+            <div class="grid grid-cols-1 md:grid-cols-2 gap-4">
+                <div>
+                    <label for="db-password" class="block text-sm font-medium text-gray-700">رمز عبور دیتابیس</label>
+                    <input type="password" id="db-password" required class="mt-1 block w-full px-3 py-2 bg-white border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+                </div>
+                <div>
+                    <label for="db-host" class="block text-sm font-medium text-gray-700">آدرس هاست دیتابیس</label>
+                    <input type="text" id="db-host" value="127.0.0.1" required class="mt-1 block w-full px-3 py-2 bg-white border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+                </div>
+            </div>
+            <div class="flex items-center space-x-2 space-x-reverse">
+                <input id="is-default" type="checkbox" class="h-4 w-4 text-indigo-600 focus:ring-indigo-500 border-gray-300 rounded">
+                <label for="is-default" class="text-sm font-medium text-gray-700">پنل پیش‌فرض باشد</label>
+            </div>
+            <div class="flex justify-start space-x-4 space-x-reverse">
+                <button type="submit" class="inline-flex justify-center py-2 px-4 border border-transparent shadow-sm text-sm font-medium rounded-md text-white bg-indigo-600 hover:bg-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-indigo-500">
+                    ذخیره
+                </button>
+                <button type="button" id="clear-form-btn" class="inline-flex justify-center py-2 px-4 border border-gray-300 shadow-sm text-sm font-medium rounded-md text-gray-700 bg-white hover:bg-gray-50 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-indigo-500">
+                    پاک کردن فرم
+                </button>
+            </div>
+            <div id="message-box" class="mt-4 p-3 rounded-md text-sm" style="display: none;"></div>
+        </form>
+        <hr class="my-8 border-gray-300">
+        <!-- جدول نمایش پنل‌ها -->
+        <h2 class="text-2xl font-semibold text-gray-700 mb-4">لیست پنل‌های موجود</h2>
+        <div class="overflow-x-auto">
+            <table class="min-w-full divide-y divide-gray-200">
+                <thead class="bg-gray-50">
+                    <tr>
+                        <th scope="col" class="px-6 py-3 text-right text-xs font-medium text-gray-500 uppercase tracking-wider">نام</th>
+                        <th scope="col" class="px-6 py-3 text-right text-xs font-medium text-gray-500 uppercase tracking-wider">آدرس پنل</th>
+                        <th scope="col" class="px-6 py-3 text-right text-xs font-medium text-gray-500 uppercase tracking-wider">نام دیتابیس</th>
+                        <th scope="col" class="px-6 py-3 text-center text-xs font-medium text-gray-500 uppercase tracking-wider">پیش‌فرض</th>
+                        <th scope="col" class="px-6 py-3 text-center text-xs font-medium text-gray-500 uppercase tracking-wider">عملیات</th>
+                    </tr>
+                </thead>
+                <tbody id="panels-table-body" class="bg-white divide-y divide-gray-200">
+                    <!-- محتوای پنل‌ها اینجا با جاوااسکریپت پر می‌شود -->
+                </tbody>
+            </table>
+        </div>
+    </div>
+    <script>
+        document.addEventListener('DOMContentLoaded', () => {
+            const API_URL = '/api/panels/';
+            const form = document.getElementById('panel-form');
+            const panelsTableBody = document.getElementById('panels-table-body');
+            const formTitle = document.getElementById('form-title');
+            const messageBox = document.getElementById('message-box');
+            const clearFormBtn = document.getElementById('clear-form-btn');
+            let editingPanelId = null;
+            // تابع کمکی برای گرفتن توکن JWT از localStorage
+            const getAuthHeaders = () => {
+                const accessToken = localStorage.getItem('access');
+                return {
+                    'Content-Type': 'application/json',
+                    'Authorization': `Bearer ${accessToken}`
+                };
+            };
+            // نمایش پیام‌های وضعیت (موفقیت/خطا)
+            const showMessage = (message, type = 'success') => {
+                messageBox.textContent = message;
+                messageBox.style.display = 'block';
+                if (type === 'success') {
+                    messageBox.className = 'mt-4 p-3 rounded-md text-sm bg-green-100 text-green-800';
+                } else if (type === 'error') {
+                    messageBox.className = 'mt-4 p-3 rounded-md text-sm bg-red-100 text-red-800';
+                }
+                setTimeout(() => {
+                    messageBox.style.display = 'none';
+                }, 5000);
+            };
+            // پاک کردن فرم
+            const clearForm = () => {
+                form.reset();
+                formTitle.textContent = 'افزودن پنل جدید';
+                editingPanelId = null;
+            };
+            clearFormBtn.addEventListener('click', clearForm);
+            // واکشی لیست پنل‌ها از API
+            const fetchPanels = async () => {
+                try {
+                    const response = await fetch(API_URL, { headers: getAuthHeaders() });
+                    if (!response.ok) {
+                        throw new Error('Failed to fetch panels');
+                    }
+                    const panels = await response.json();
+                    renderPanels(panels);
+                } catch (error) {
+                    showMessage(`خطا در دریافت لیست پنل‌ها: ${error.message}`, 'error');
+                }
+            };
+            // نمایش پنل‌ها در جدول
+            const renderPanels = (panels) => {
+                panelsTableBody.innerHTML = '';
+                panels.forEach(panel => {
+                    const row = document.createElement('tr');
+                    row.className = 'hover:bg-gray-100';
+                    row.innerHTML = `
+                        <td class="px-6 py-4 whitespace-nowrap text-sm font-medium text-gray-900">${panel.name}</td>
+                        <td class="px-6 py-4 whitespace-nowrap text-sm text-gray-500">${panel.panel_address}</td>
+                        <td class="px-6 py-4 whitespace-nowrap text-sm text-gray-500">${panel.db_name}</td>
+                        <td class="px-6 py-4 whitespace-nowrap text-center text-sm text-gray-500">${panel.is_default ? '✅' : '❌'}</td>
+                        <td class="px-6 py-4 whitespace-nowrap text-center text-sm font-medium">
+                            <button data-id="${panel.id}" class="edit-btn text-indigo-600 hover:text-indigo-900 mx-2">ویرایش</button>
+                            <button data-id="${panel.id}" class="delete-btn text-red-600 hover:text-red-900 mx-2">حذف</button>
+                        </td>
+                    `;
+                    panelsTableBody.appendChild(row);
+                });
+                // اضافه کردن event listener برای دکمه‌های ویرایش و حذف
+                document.querySelectorAll('.edit-btn').forEach(button => {
+                    button.addEventListener('click', (e) => handleEditClick(e.target.dataset.id));
+                });
+                document.querySelectorAll('.delete-btn').forEach(button => {
+                    button.addEventListener('click', (e) => handleDeleteClick(e.target.dataset.id));
+                });
+            };
+            // پر کردن فرم برای ویرایش یک پنل
+            const handleEditClick = async (panelId) => {
+                try {
+                    const response = await fetch(`${API_URL}${panelId}/`, { headers: getAuthHeaders() });
+                    if (!response.ok) {
+                        throw new Error('Failed to fetch panel details');
+                    }
+                    const panel = await response.json();
+                    formTitle.textContent = `ویرایش پنل: ${panel.name}`;
+                    editingPanelId = panel.id;
+                    document.getElementById('panel-name').value = panel.name;
+                    document.getElementById('panel-address').value = panel.panel_address;
+                    document.getElementById('db-name').value = panel.db_name;
+                    document.getElementById('db-user').value = panel.db_user;
+                    document.getElementById('db-password').value = panel.db_password;
+                    document.getElementById('db-host').value = panel.db_host;
+                    document.getElementById('is-default').checked = panel.is_default;
+                } catch (error) {
+                    showMessage(`خطا در دریافت اطلاعات پنل برای ویرایش: ${error.message}`, 'error');
+                }
+            };
+            // ارسال درخواست حذف
+            const handleDeleteClick = async (panelId) => {
+                 if (window.confirm("آیا از حذف این پنل اطمینان دارید؟")) {
+                    try {
+                        const response = await fetch(`${API_URL}${panelId}/`, {
+                            method: 'DELETE',
+                            headers: getAuthHeaders()
+                        });
+                        if (response.status === 204) {
+                            showMessage('پنل با موفقیت حذف شد.');
+                            fetchPanels();
+                        } else {
+                            const errorData = await response.json();
+                            showMessage(`خطا در حذف پنل: ${errorData.error}`, 'error');
+                        }
+                    } catch (error) {
+                        showMessage(`خطا در حذف پنل: ${error.message}`, 'error');
+                    }
+                }
+            };
+            // هندل کردن ارسال فرم (ایجاد یا ویرایش)
+            form.addEventListener('submit', async (e) => {
+                e.preventDefault();
+                const formData = {
+                    name: document.getElementById('panel-name').value,
+                    panel_address: document.getElementById('panel-address').value,
+                    db_name: document.getElementById('db-name').value,
+                    db_user: document.getElementById('db-user').value,
+                    db_password: document.getElementById('db-password').value,
+                    db_host: document.getElementById('db-host').value,
+                    db_port: 3306, // Default port
+                    is_default: document.getElementById('is-default').checked,
+                };
+                let response;
+                try {
+                    if (editingPanelId) {
+                        response = await fetch(`${API_URL}${editingPanelId}/`, {
+                            method: 'PUT',
+                            headers: getAuthHeaders(),
+                            body: JSON.stringify(formData)
+                        });
+                    } else {
+                        response = await fetch(API_URL, {
+                            method: 'POST',
+                            headers: getAuthHeaders(),
+                            body: JSON.stringify(formData)
+                        });
+                    }
+                    if (response.ok) {
+                        const result = await response.json();
+                        showMessage(editingPanelId ? 'پنل با موفقیت به‌روزرسانی شد.' : 'پنل جدید با موفقیت ایجاد شد.');
+                        clearForm();
+                        fetchPanels();
+                    } else {
+                        const errorData = await response.json();
+                        const errorMsg = errorData.error || JSON.stringify(errorData);
+                        showMessage(`خطا در عملیات: ${errorMsg}`, 'error');
+                    }
+                } catch (error) {
+                    showMessage(`خطا در ارتباط با سرور: ${error.message}`, 'error');
+                }
+            });
+            fetchPanels();
+        });
+    </script>
+</body>
+</html>

management/templates/management/admin_dashboard.html ADDED Viewed

	@@ -0,0 +1,35 @@

+{% extends 'management/base.html' %}
+{% load static %}
+{% block header_title %}داشبورد ادمین {{ request.user.username }}{% endblock %}
+{% block content %}
+<div class="row">
+    <div class="col-md-4">
+        <div class="card text-center">
+            <div class="card-body">
+                <h5 class="card-title">تعداد کاربران</h5>
+                <h2 class="card-text">{{ total_users }}</h2>
+            </div>
+        </div>
+    </div>
+    <div class="col-md-4">
+        <div class="card text-center">
+            <div class="card-body">
+                <h5 class="card-title">پرداخت‌های در انتظار تأیید</h5>
+                <h2 class="card-text">{{ pending_payments }}</h2>
+            </div>
+        </div>
+    </div>
+    <div class="col-md-4">
+        <div class="card text-center">
+            <div class="card-body">
+                <h5 class="card-title">کاربران بدون پرداخت (۴۸ ساعت)</h5>
+                <h2 class="card-text">{{ users_no_payment_48h }}</h2>
+            </div>
+        </div>
+    </div>
+</div>
+{% endblock %}

management/templates/management/admin_login.html ADDED Viewed

	@@ -0,0 +1,112 @@

+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>ورود به پنل ادمین</title>
+    <style>
+        body {
+            display: flex;
+            flex-direction: column;
+            justify-content: center;
+            align-items: center;
+            height: 100vh;
+            background-color: #f0f2f5;
+            font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+            text-align: center;
+        }
+        .login-container {
+            background: white;
+            padding: 30px;
+            border-radius: 8px;
+            box-shadow: 0 4px 8px rgba(0,0,0,0.1);
+            width: 300px;
+        }
+        h2 {
+            margin-bottom: 20px;
+            color: #333;
+        }
+        .form-group {
+            margin-bottom: 15px;
+            text-align: right;
+        }
+        .form-group label {
+            display: block;
+            margin-bottom: 5px;
+            font-size: 14px;
+            color: #555;
+        }
+        .form-group input {
+            width: 100%;
+            padding: 10px;
+            box-sizing: border-box;
+            border: 1px solid #ccc;
+            border-radius: 5px;
+            font-size: 16px;
+        }
+        .error-message {
+            color: #dc3545;
+            margin-bottom: 15px;
+        }
+        .submit-button {
+            width: 100%;
+            padding: 12px 20px;
+            margin-top: 20px;
+            border-radius: 5px;
+            border: none;
+            background-color: #007bff; /* Changed color for admin */
+            color: white;
+            font-size: 16px;
+            cursor: pointer;
+            transition: background-color 0.3s ease;
+        }
+        .submit-button:hover {
+            background-color: #0056b3;
+        }
+        .messages {
+            list-style-type: none;
+            padding: 0;
+            margin-bottom: 20px;
+        }
+        .messages .error {
+            background-color: #f8d7da;
+            color: #721c24;
+            border: 1px solid #f5c6cb;
+            padding: 10px;
+            border-radius: 5px;
+        }
+        .messages .success {
+            background-color: #d4edda;
+            color: #155724;
+            border: 1px solid #c3e6cb;
+            padding: 10px;
+            border-radius: 5px;
+        }
+    </style>
+</head>
+<body>
+    <div class="login-container">
+        <h2>ورود به پنل ادمین</h2>
+        {% if messages %}
+            <ul class="messages">
+                {% for message in messages %}
+                    <li class="{{ message.tags }}">{{ message }}</li>
+                {% endfor %}
+            </ul>
+        {% endif %}
+        <form method="post" action="{% url 'admin_login_view' %}">
+            {% csrf_token %}
+            <div class="form-group">
+                <label for="username">نام کاربری:</label>
+                <input type="text" id="username" name="username" required>
+            </div>
+            <div class="form-group">
+                <label for="password">رمز عبور:</label>
+                <input type="password" id="password" name="password" required>
+            </div>
+            <button type="submit" class="submit-button">ورود</button>
+        </form>
+    </div>
+</body>
+</html>

management/templates/management/amin_login.html ADDED Viewed

	@@ -0,0 +1,44 @@

+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>ورود ادمین</title>
+    <script src="https://cdn.tailwindcss.com"></script>
+    <style>
+        body {
+            font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+            background-color: #f0f2f5;
+        }
+    </style>
+</head>
+<body class="flex items-center justify-center min-h-screen">
+    <div class="bg-white p-8 rounded-lg shadow-md w-full max-w-sm">
+        <h2 class="text-2xl font-bold text-center mb-6 text-gray-800">ورود به پنل ادمین</h2>
+        {% if messages %}
+            <ul class="mb-4">
+                {% for message in messages %}
+                    <li class="p-2 {% if message.tags %} bg-{{ message.tags }}-100 text-{{ message.tags }}-800 {% endif %} rounded">{{ message }}</li>
+                {% endfor %}
+            </ul>
+        {% endif %}
+        <form method="post" action="{% url 'management:admin_login' %}" class="space-y-4">
+            {% csrf_token %}
+            <div>
+                <label for="{{ form.username.id_for_label }}" class="block text-sm font-medium text-gray-700">نام کاربری:</label>
+                {{ form.username }}
+            </div>
+            <div>
+                <label for="{{ form.password.id_for_label }}" class="block text-sm font-medium text-gray-700">رمز عبور:</label>
+                {{ form.password }}
+            </div>
+            <button type="submit" class="w-full py-2 px-4 bg-blue-600 text-white font-semibold rounded-lg shadow-md hover:bg-blue-700 transition duration-300">
+                ورود
+            </button>
+        </form>
+    </div>
+</body>
+</html>

management/templates/management/base.html ADDED Viewed

	@@ -0,0 +1,25 @@

+<!-- management/templates/management/base.html -->
+<!-- -*- coding: utf-8 -*- -->
+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{% block title %}پنل مدیریت{% endblock %}</title>
+    <!-- Add link to the PWA manifest file -->
+    <link rel="manifest" href="/static/manifest.json">
+    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/tailwindcss/2.2.19/tailwind.min.css">
+    <style>
+        body {
+            font-family: 'Vazirmatn', sans-serif;
+            background-color: #f3f4f6;
+        }
+    </style>
+</head>
+<body class="bg-gray-100 p-8">
+    <div class="max-w-4xl mx-auto bg-white shadow-xl rounded-lg p-6">
+        {% block content %}{% endblock %}
+    </div>
+</body>
+</html>

management/templates/management/create_discount_code.html ADDED Viewed

	@@ -0,0 +1,62 @@

+<!-- management/templates/management/create_discount_code.html -->
+<!-- -*- coding: utf-8 -*- -->
+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>ایجاد کد تخفیف</title>
+    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/tailwindcss/2.2.19/tailwind.min.css">
+    <style>
+        body {
+            font-family: 'Vazirmatn', sans-serif;
+            background-color: #f3f4f6;
+        }
+    </style>
+</head>
+<body class="bg-gray-100 p-8">
+    <div class="max-w-xl mx-auto bg-white shadow-xl rounded-lg p-6">
+        <header class="border-b pb-4 mb-4">
+            <h1 class="text-3xl font-bold text-gray-800">ایجاد کد تخفیف</h1>
+        </header>
+        <main>
+            {% if messages %}
+                <ul class="mb-4">
+                    {% for message in messages %}
+                        <li class="p-3 rounded-lg {% if message.tags == 'error' %}bg-red-100 text-red-800{% else %}bg-green-100 text-green-800{% endif %}">
+                            {{ message }}
+                        </li>
+                    {% endfor %}
+                </ul>
+            {% endif %}
+            <form method="post">
+                {% csrf_token %}
+                <div class="space-y-4">
+                    {% for field in form %}
+                        <div>
+                            <label for="{{ field.id_for_label }}" class="block text-sm font-medium text-gray-700">{{ field.label }}</label>
+                            <div class="mt-1">
+                                {{ field }}
+                            </div>
+                            {% if field.errors %}
+                                {% for error in field.errors %}
+                                    <p class="mt-2 text-sm text-red-600">{{ error }}</p>
+                                {% endfor %}
+                            {% endif %}
+                        </div>
+                    {% endfor %}
+                </div>
+                <div class="mt-6">
+                    <button type="submit" class="w-full bg-indigo-600 hover:bg-indigo-700 text-white font-bold py-2 px-4 rounded-lg">
+                        ایجاد کد تخفیف
+                    </button>
+                </div>
+            </form>
+        </main>
+    </div>
+</body>
+</html>

management/templates/management/create_notification.html ADDED Viewed

	@@ -0,0 +1,198 @@

+{% extends 'management/base.html' %}
+{% load static %}
+{% block header_title %}ارسال اعلان جدید{% endblock %}
+{% block content %}
+<div class="card shadow-sm">
+    <div class="card-header bg-primary text-white d-flex justify-content-between align-items-center">
+        <h5 class="mb-0">ارسال اعلان جدید</h5>
+        <a href="{% url 'notification_history_view' %}" class="btn btn-light btn-sm">تاریخچه اعلان‌ها</a>
+    </div>
+    <div class="card-body">
+        <form action="{% url 'send_notification_view' %}" method="post">
+            {% csrf_token %}
+            <!-- انتخاب نوع اعلان (دستی یا خودکار) -->
+            <div class="mb-3">
+                <label class="form-label">نوع اعلان</label>
+                <div class="form-check form-check-inline">
+                    <input class="form-check-input" type="radio" name="notification_type" id="type_manual" value="manual" checked>
+                    <label class="form-check-label" for="type_manual">ارسال دستی</label>
+                </div>
+                <div class="form-check form-check-inline">
+                    <input class="form-check-input" type="radio" name="notification_type" id="type_automatic" value="automatic">
+                    <label class="form-check-label" for="type_automatic">ارسال خودکار</label>
+                </div>
+            </div>
+            <!-- بخش مربوط به اعلان دستی -->
+            <div id="manual-notification-fields">
+                <div class="mb-3">
+                    <label for="id_title" class="form-label">عنوان</label>
+                    <input type="text" class="form-control" id="id_title" name="title" required>
+                </div>
+                <div class="mb-3">
+                    <label for="id_content" class="form-label">متن اعلان</label>
+                    <textarea class="form-control" id="id_content" name="content" rows="5" required></textarea>
+                </div>
+                <!-- گزینه‌های اعلان غنی -->
+                <div class="card bg-light mb-3">
+                    <div class="card-body">
+                        <h6 class="card-title">گزینه‌های پیشرفته (اختیاری)</h6>
+                        <div class="row">
+                            <div class="col-md-6 mb-3">
+                                <label for="id_button_text" class="form-label">متن دکمه</label>
+                                <input type="text" class="form-control" id="id_button_text" name="button_text">
+                            </div>
+                            <div class="col-md-6 mb-3">
+                                <label for="id_button_url" class="form-label">لینک دکمه</label>
+                                <input type="url" class="form-control" id="id_button_url" name="button_url">
+                            </div>
+                        </div>
+                        <div class="mb-3">
+                            <label for="id_image_url" class="form-label">لینک تصویر/آیکون</label>
+                            <input type="url" class="form-control" id="id_image_url" name="image_url">
+                        </div>
+                    </div>
+                </div>
+                <!-- گیرنده اعلان دستی -->
+                <div class="mb-3">
+                    <label class="form-label">گیرنده اعلان</label>
+                    <div class="form-check">
+                        <input class="form-check-input" type="radio" name="recipient_type" id="recipient_all" value="all" checked>
+                        <label class="form-check-label" for="recipient_all">همه کاربران</label>
+                    </div>
+                    <div class="form-check">
+                        <input class="form-check-input" type="radio" name="recipient_type" id="recipient_specific" value="specific">
+                        <label class="form-check-label" for="recipient_specific">کاربران خاص</label>
+                    </div>
+                </div>
+                <div class="mb-3" id="specific-users-container">
+                    <label for="id_users" class="form-label">انتخاب کاربران (می‌توانید چند کاربر را انتخاب کنید)</label>
+                    <select multiple class="form-select" id="id_users" name="users">
+                        {% for user in all_users %}
+                            <option value="{{ user.id }}">{{ user.full_name }} ({{ user.username }})</option>
+                        {% endfor %}
+                    </select>
+                </div>
+                <!-- زمان‌بندی اعلان دستی -->
+                <div class="mb-3">
+                    <label for="id_schedule" class="form-label">زمان‌بندی ارسال</label>
+                    <div class="input-group">
+                        <select class="form-select" id="schedule-type-select" name="schedule_type">
+                            <option value="one_time">یک‌بار</option>
+                            <option value="weekly">هفتگی</option>
+                            <option value="monthly">ماهانه</option>
+                        </select>
+                        <input type="datetime-local" class="form-control" id="id_schedule_time" name="schedule_time" required>
+                    </div>
+                </div>
+                <div class="mb-3 form-check">
+                    <input type="checkbox" class="form-check-input" id="id_is_urgent" name="is_urgent">
+                    <label class="form-check-label" for="id_is_urgent">اخطار فوری</label>
+                </div>
+            </div>
+            <!-- بخش مربوط به اعلان خودکار -->
+            <div id="automatic-notification-fields" style="display: none;">
+                <div class="card bg-light mb-3">
+                    <div class="card-body">
+                        <h6 class="card-title">قانون ارسال اعلان خودکار</h6>
+                        <div class="mb-3 form-check">
+                            <input type="checkbox" class="form-check-input" id="id_auto_consumption" name="auto_consumption">
+                            <label class="form-check-label" for="id_auto_consumption">ارسال به هنگام رسیدن مصرف به یک حد مشخص</label>
+                        </div>
+                        <div class="input-group mb-3" id="consumption-threshold-container" style="display: none;">
+                            <input type="number" class="form-control" name="consumption_threshold" placeholder="مثلاً ۹۰" min="1" max="100">
+                            <span class="input-group-text">%</span>
+                        </div>
+                        <div class="mb-3 form-check">
+                            <input type="checkbox" class="form-check-input" id="id_auto_expiration" name="auto_expiration">
+                            <label class="form-check-label" for="id_auto_expiration">ارسال قبل از تاریخ انقضا</label>
+                        </div>
+                        <div class="input-group mb-3" id="expiration-days-container" style="display: none;">
+                            <input type="number" class="form-control" name="expiration_days_before" placeholder="مثلاً ۳" min="1">
+                            <span class="input-group-text">روز قبل</span>
+                        </div>
+                        <div class="mb-3">
+                            <label for="id_auto_plans" class="form-label">مربوط به پلن‌های زیر</label>
+                            <select multiple class="form-select" id="id_auto_plans" name="auto_plans">
+                                {% for plan in all_plans %}
+                                    <option value="{{ plan.id }}">{{ plan.name }}</option>
+                                {% endfor %}
+                            </select>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <button type="submit" class="btn btn-primary mt-3">ارسال اعلان</button>
+        </form>
+    </div>
+</div>
+<script>
+    document.addEventListener('DOMContentLoaded', () => {
+        const typeManual = document.getElementById('type_manual');
+        const typeAutomatic = document.getElementById('type_automatic');
+        const manualFields = document.getElementById('manual-notification-fields');
+        const automaticFields = document.getElementById('automatic-notification-fields');
+        const recipientTypeRadios = document.querySelectorAll('input[name="recipient_type"]');
+        const specificUsersContainer = document.getElementById('specific-users-container');
+        const autoConsumptionCheckbox = document.getElementById('id_auto_consumption');
+        const consumptionThresholdContainer = document.getElementById('consumption-threshold-container');
+        const autoExpirationCheckbox = document.getElementById('id_auto_expiration');
+        const expirationDaysContainer = document.getElementById('expiration-days-container');
+        // نمایش/پنهان کردن فیلدهای اعلان دستی و خودکار
+        function toggleNotificationType() {
+            if (typeManual.checked) {
+                manualFields.style.display = 'block';
+                automaticFields.style.display = 'none';
+            } else {
+                manualFields.style.display = 'none';
+                automaticFields.style.display = 'block';
+            }
+        }
+        typeManual.addEventListener('change', toggleNotificationType);
+        typeAutomatic.addEventListener('change', toggleNotificationType);
+        // نمایش/پنهان کردن فیلد انتخاب کاربران خاص
+        recipientTypeRadios.forEach(radio => {
+            radio.addEventListener('change', (event) => {
+                if (event.target.value === 'specific') {
+                    specificUsersContainer.style.display = 'block';
+                } else {
+                    specificUsersContainer.style.display = 'none';
+                }
+            });
+        });
+        // نمایش/پنهان کردن فیلد میزان مصرف
+        autoConsumptionCheckbox.addEventListener('change', (event) => {
+            if (event.target.checked) {
+                consumptionThresholdContainer.style.display = 'flex';
+            } else {
+                consumptionThresholdContainer.style.display = 'none';
+            }
+        });
+        // نمایش/پنهان کردن فیلد روزهای قبل از انقضا
+        autoExpirationCheckbox.addEventListener('change', (event) => {
+            if (event.target.checked) {
+                expirationDaysContainer.style.display = 'flex';
+            } else {
+                expirationDaysContainer.style.display = 'none';
+            }
+        });
+    });
+</script>
+{% endblock %}

management/templates/management/error.html ADDED Viewed

	@@ -0,0 +1,43 @@

+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>خطا</title>
+    <style>
+        body {
+            font-family: Arial, sans-serif;
+            background-color: #f8d7da;
+            color: #721c24;
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            height: 100vh;
+            margin: 0;
+            text-align: center;
+        }
+        .container {
+            background-color: #fdd;
+            padding: 40px;
+            border-radius: 10px;
+            box-shadow: 0 4px 8px rgba(0, 0, 0, 0.1);
+            max-width: 500px;
+            border: 1px solid #f5c6cb;
+        }
+        h1 {
+            color: #dc3545;
+        }
+        p {
+            line-height: 1.6;
+            margin-top: 20px;
+        }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <h1>خطا!</h1>
+        <p>{{ message }}</p>
+        <a href="/">بازگشت به صفحه اصلی</a>
+    </div>
+</body>
+</html>

management/templates/management/home.html ADDED Viewed

	@@ -0,0 +1,30 @@

+<!DOCTYPE html>
+<html lang="fa" dir="rtl">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>صفحه اصلی</title>
+    <script src="https://cdn.tailwindcss.com"></script>
+    <style>
+        body {
+            font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+            background-color: #f0f2f5;
+        }
+    </style>
+</head>
+<body class="flex flex-col items-center justify-center min-h-screen">
+    <div class="bg-white p-8 rounded-lg shadow-md w-full max-w-sm text-center">
+        <h1 class="text-3xl font-bold mb-6 text-gray-800">به پنل خوش آمدید</h1>
+        <p class="text-gray-600 mb-8">لطفاً نوع کاربری خود را انتخاب کنید.</p>
+        <div class="space-y-4">
+            <a href="{% url 'management:admin_login' %}" class="block w-full py-3 px-6 bg-blue-600 text-white font-semibold rounded-lg shadow-md hover:bg-blue-700 transition duration-300">
+                ورود به پنل ادمین
+            </a>
+            <a href="{% url 'management:user_dashboard_login' %}" class="block w-full py-3 px-6 bg-gray-600 text-white font-semibold rounded-lg shadow-md hover:bg-gray-700 transition duration-300">
+                ورود به پنل کاربر
+            </a>
+        </div>
+    </div>
+</body>
+</html>