/**
* init RequestHandler
*/
public function __construct($module = '')
{
$this->pattern = '~/?(?:(?P<controller>[A-Za-z0-9\\-]+)(?:/(?P<id>\\d+)(?:-(?P<title>[^/]+))?)?)?~x';
$controllers = ControllerCacheBuilder::getInstance()->getData(array('module' => $module));
if (DNS::getSession()->username !== null) {
DNS::getTPL()->assign(array("username" => DNS::getSession()->username));
} else {
DNS::getTPL()->assign(array("username" => ''));
}
$className = "";
if (!empty($_SERVER['QUERY_STRING'])) {
$this->matches($_SERVER['QUERY_STRING']);
$this->registerRouteData();
} else {
$className = '\\dns' . (empty($module) ? '' : '\\' . $module) . '\\page\\IndexPage';
}
if (isset($this->routeData['controller']) && !empty($this->routeData['controller'])) {
$controller = strtolower($this->routeData['controller']);
if (isset($controllers[$controller]) && !empty($controllers[$controller])) {
$className = $controllers[$controller];
} else {
@header('HTTP/1.0 404 Not Found');
DNS::getTPL()->assign(array("activeMenuItem" => '', "error" => 'The link you are trying to reach is no longer available or invalid.'));
DNS::getTPL()->display('error.tpl');
exit;
}
}
if (!User::isLoggedIn() && $className != '\\dns\\page\\LoginPage' && $className != '\\dns\\page\\ApiPage') {
DNS::getTPL()->display('login.tpl');
exit;
}
// handle offline mode
if (defined('OFFLINE') && OFFLINE) {
$admin = User::isAdmin();
$available = false;
if (defined($className . '::AVAILABLE_DURING_OFFLINE_MODE') && constant($className . '::AVAILABLE_DURING_OFFLINE_MODE')) {
$available = true;
}
if (!$admin && !$available) {
@header('HTTP/1.1 503 Service Unavailable');
DNS::getTPL()->display('offline.tpl');
exit;
}
}
try {
new $className();
} catch (\Exception $e) {
if ($e->getCode() == 404) {
@header('HTTP/1.0 404 Not Found');
} else {
if ($e->getCode() == 403) {
@header('HTTP/1.0 403 Forbidden');
}
}
/* show error page */
DNS::getTPL()->assign(array("activeMenuItem" => '', "error" => $e->getMessage()));
DNS::getTPL()->display('error.tpl');
exit;
}
}
public function prepare()
{
$sql = "SELECT * FROM dns_api WHERE userID = ?";
$res = DNS::getDB()->query($sql, array(DNS::getSession()->userID));
$row = DNS::getDB()->fetch_array($res);
$apiKey = "";
if (isset($row['apiKey'])) {
$apiKey = $row['apiKey'];
}
DNS::getTPL()->assign(array("userID" => DNS::getSession()->userID, "apiKey" => $apiKey));
}
public function prepare()
{
if (User::isReseller() === false) {
throw new \Exeption('Forbidden', 403);
}
if (isset($_POST['origin']) && isset($_POST['submit'])) {
if (!empty($_POST['origin'])) {
$idna = new idna_convert();
$origin = $_POST['origin'];
if (substr($origin, -1) != ".") {
$origin = $origin . ".";
}
$origin = $idna->encode($origin);
$serial = date("Ymd") . "01";
$sql = "SELECT * FROM dns_soa WHERE origin = ?";
$res = DNS::getDB()->query($sql, array($origin));
$soa = DNS::getDB()->fetch_array($res);
if (empty($soa)) {
$soaData = array($origin, DNS_SOA_NS, DNS_SOA_MBOX, $serial, DNS_SOA_REFRESH, DNS_SOA_RETRY, DNS_SOA_EXPIRE, DNS_SOA_MINIMUM_TTL, DNS_SOA_TTL, 1);
$sql = "INSERT INTO dns_soa (id, origin, ns, mbox, serial, refresh, retry, expire, minimum, ttl, active) VALUES (null, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)";
DNS::getDB()->query($sql, $soaData);
$soaID = DNS::getDB()->last_id();
$sql = "INSERT INTO dns_soa_to_user (id, userID, soaID) VALUES (null, ?, ?)";
DNS::getDB()->query($sql, array(DNS::getSession()->userID, $soaID));
$sql = "SELECT * FROM dns_template WHERE userID = ?";
$res = DNS::getDB()->query($sql, array(DNS::getSession()->userID));
$tpl = DNS::getDB()->fetch_array($res);
$records = array();
if (!empty($tpl) && !empty($tpl['template'])) {
$records = explode("\n", $tpl['template']);
} else {
$records = explode("\n", DNS_DEFAULT_RECORDS);
}
if (!empty($records)) {
foreach ($records as $record) {
$record = str_replace("{domain}", $origin, $record);
$record = explode(":", $record, 3);
$rrData = array($soaID, $record[0], $record[1], $record[2], $record[1] == "MX" ? 10 : 0, DNS_SOA_MINIMUM_TTL);
$sql = 'INSERT INTO dns_rr (id, zone, name, type, data, aux, ttl) VALUES (NULL, ?, ?, ?, ?, ?, ?)';
DNS::getDB()->query($sql, $rrData);
}
}
DNS::getTPL()->assign(array("error" => '', 'success' => true));
} else {
DNS::getTPL()->assign(array("error" => 'origin', 'origin' => $_POST['origin']));
}
} else {
DNS::getTPL()->assign(array("error" => 'origin'));
}
} else {
DNS::getTPL()->assign(array("error" => ''));
}
}
public function prepare()
{
if (!isset($_POST['action']) || empty($_POST['action']) || !isset($_POST['dataID'])) {
echo "failure";
exit;
}
$action = trim($_POST['action']);
$dataID = intval(trim($_POST['dataID']));
if ($action == "toggleDomain") {
if (User::isReseller() === false) {
echo "failure";
exit;
}
$soaIDs = User::getAccessibleDomains();
if (!in_array($dataID, $soaIDs)) {
echo "failure";
exit;
}
$sql = "SELECT active, serial FROM dns_soa WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$soa = DNS::getDB()->fetch_array($res);
$active = $soa['active'] ? 0 : 1;
$sql = "UPDATE dns_soa SET active = ?, serial = ? WHERE id = ?";
DNS::getDB()->query($sql, array($active, $this->fixSerial($soa['serial']), $dataID));
echo "success";
exit;
} else {
if ($action == "deleteDomain") {
if (User::isReseller() === false) {
echo "failure";
exit;
}
$soaIDs = User::getAccessibleDomains();
if (!in_array($dataID, $soaIDs)) {
echo "failure";
exit;
}
$sql = "DELETE FROM dns_soa WHERE id = ?";
DNS::getDB()->query($sql, array($dataID));
echo "success";
exit;
} else {
if ($action == "toggleRecord") {
$sql = "SELECT zone FROM dns_rr WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$rr = DNS::getDB()->fetch_array($res);
$soaID = $rr['zone'];
$soaIDs = User::getAccessibleDomains();
if (!in_array($soaID, $soaIDs)) {
echo "failure";
exit;
}
$sql = "SELECT active FROM dns_rr WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$rr = DNS::getDB()->fetch_array($res);
$active = $rr['active'] ? 0 : 1;
$sql = "UPDATE dns_rr SET active = ? WHERE id = ?";
DNS::getDB()->query($sql, array($active, $dataID));
$sql = "SELECT serial FROM dns_soa WHERE id = ?";
$res = DNS::getDB()->query($sql, array($soaID));
$soa = DNS::getDB()->fetch_array($res);
$sql = "UPDATE dns_soa SET serial = ? WHERE id = ?";
DNS::getDB()->query($sql, array($this->fixSerial($soa['serial']), $soaID));
echo "success";
exit;
} else {
if ($action == "deleteRecord") {
$sql = "SELECT zone FROM dns_rr WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$rr = DNS::getDB()->fetch_array($res);
$soaID = $rr['zone'];
$soaIDs = User::getAccessibleDomains();
if (!in_array($soaID, $soaIDs)) {
echo "failure";
exit;
}
$sql = "DELETE FROM dns_rr WHERE id = ?";
DNS::getDB()->query($sql, array($dataID));
$sql = "SELECT serial FROM dns_soa WHERE id = ?";
$res = DNS::getDB()->query($sql, array($soaID));
$soa = DNS::getDB()->fetch_array($res);
$sql = "UPDATE dns_soa SET serial = ? WHERE id = ?";
DNS::getDB()->query($sql, array($this->fixSerial($soa['serial']), $soaID));
echo "success";
exit;
} else {
if ($action == "toggleSec") {
$sql = "SELECT zone FROM dns_sec WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$rr = DNS::getDB()->fetch_array($res);
$soaID = $rr['zone'];
$soaIDs = User::getAccessibleDomains();
if (!in_array($soaID, $soaIDs)) {
echo "failure";
exit;
}
$sql = "SELECT active FROM dns_sec WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$rr = DNS::getDB()->fetch_array($res);
$active = $rr['active'] ? 0 : 1;
$sql = "UPDATE dns_sec SET active = ? WHERE id = ?";
DNS::getDB()->query($sql, array($active, $dataID));
$sql = "SELECT serial FROM dns_soa WHERE id = ?";
$res = DNS::getDB()->query($sql, array($soaID));
$soa = DNS::getDB()->fetch_array($res);
$sql = "UPDATE dns_soa SET serial = ? WHERE id = ?";
DNS::getDB()->query($sql, array($this->fixSerial($soa['serial']), $soaID));
echo "success";
exit;
} else {
if ($action == "deleteSec") {
$sql = "SELECT zone FROM dns_sec WHERE id = ?";
$res = DNS::getDB()->query($sql, array($dataID));
$rr = DNS::getDB()->fetch_array($res);
$soaID = $rr['zone'];
$soaIDs = User::getAccessibleDomains();
if (!in_array($soaID, $soaIDs)) {
echo "failure";
exit;
}
$sql = "DELETE FROM dns_sec WHERE id = ?";
DNS::getDB()->query($sql, array($dataID));
$sql = "SELECT serial FROM dns_soa WHERE id = ?";
$res = DNS::getDB()->query($sql, array($soaID));
$soa = DNS::getDB()->fetch_array($res);
$sql = "UPDATE dns_soa SET serial = ? WHERE id = ?";
DNS::getDB()->query($sql, array($this->fixSerial($soa['serial']), $soaID));
echo "success";
exit;
} else {
if ($action == "requestApiKey") {
if (User::isLoggedIn()) {
$sql = "SELECT * FROM dns_api WHERE userID = ?";
$res = DNS::getDB()->query($sql, array(DNS::getSession()->userID));
$row = DNS::getDB()->fetch_array($res);
if (empty($row)) {
$apiKey = DNS::generateUUID();
$sql = "INSERT INTO dns_api (id, userID, apiKey) VALUES (NULL, ?, ?)";
DNS::getDB()->query($sql, array(DNS::getSession()->userID, $apiKey));
echo $apiKey;
exit;
}
}
} else {
if ($action == "import") {
if (isset($_POST['zone']) && !empty($_POST['zone'])) {
if ($dataID == 0) {
if (isset($_POST['origin']) && !empty($_POST['origin'])) {
/*
if (User::isReseller() === false) {
echo "failure";
exit;
}
*/
// new zone
}
} else {
$soaIDs = User::getAccessibleDomains();
if (!in_array($dataID, $soaIDs)) {
echo "failure";
exit;
}
$sql = 'SELECT * FROM dns_soa where id = ?';
$res = DNS::getDB()->query($sql, array($dataID));
$res = DNS::getDB()->fetch_array($res);
$soa = $res;
$parser = new ParseZone($_POST['zone'], $soa['origin']);
try {
$parser->parse();
} catch (\Exception $e) {
echo "failure";
exit;
}
$data = $parser->getParsedData();
if (!empty($data['rr'])) {
// delete existing records
foreach ($data['rr'] as $rr) {
// dont update the default ns entrys, we add them automatically, all other ns entrys will be updated
if (strtolower($rr['type']) != "ns" && strtolower($rr['name']) != strtolower($soa['origin'])) {
// import data
}
}
} else {
echo "failure";
exit;
}
}
}
} else {
if ($action == "export") {
$sql = 'SELECT * FROM dns_soa where id = ?';
$res = DNS::getDB()->query($sql, array($dataID));
$res = DNS::getDB()->fetch_array($res);
$soa = $res;
$soaIDs = User::getAccessibleDomains();
if (!in_array($soa['id'], $soaIDs)) {
echo "failure";
exit;
}
$out = ";; Domain:\t" . $soa['origin'] . "\n";
$out .= ";; Exported:\t" . date("Y-m-d H:i:s") . "\n";
$out .= ";; \n";
$out .= ";; This file is intended for use for informational and archival\n";
$out .= ";; purposes ONLY and MUST be edited before use on a production\n";
$out .= ";; DNS server. In particular, you must:\n";
$out .= ";; -- update the SOA record with the correct authoritative name server\n";
$out .= ";; -- update the SOA record with the contact e-mail address information\n";
$out .= ";; -- update the NS record(s) with the authoritative name servers for this domain.\n";
$out .= ";; \n";
$out .= ";; For further information, please consult the BIND documentation\n";
$out .= ";; located on the following website:\n";
$out .= ";; \n";
$out .= ";; http://www.isc.org/\n";
$out .= ";; \n";
$out .= ";; And RFC 1035:\n";
$out .= ";; \n";
$out .= ";; http://www.ietf.org/rfc/rfc1035.txt\n";
$out .= ";; \n";
$out .= ";; Please note that we do NOT offer technical support for any use\n";
$out .= ";; of this zone data, the BIND name server, or any other third-party\n";
$out .= ";; DNS software.\n";
$out .= ";; \n";
$out .= ";;\tUse at your own risk.\n";
$out .= ";; \n";
$out .= $soa['origin'] . "\t" . $soa['minimum'] . "\tIN\tSOA\t" . $soa['ns'] . "\t" . $soa['mbox'] . "\t(\n";
$out .= "\t\t" . $soa['serial'] . "\t; Serial\n";
$out .= "\t\t" . $soa['refresh'] . "\t\t; Refresh\n";
$out .= "\t\t" . $soa['retry'] . "\t\t; Retry\n";
$out .= "\t\t" . $soa['expire'] . "\t\t; Expire\n";
$out .= "\t\t180 )\t\t; Negative Cache TTL\n";
$out .= ";;\n";
$sql = 'SELECT * FROM dns_rr where zone = ?';
$res = DNS::getDB()->query($sql, array($soa['id']));
while ($record = DNS::getDB()->fetch_array($res)) {
if (!$record['active']) {
$out .= ";; ";
}
if ($record['type'] == "MX" || $record['type'] == "SRV" || $record['type'] == "TLSA" || $record['type'] == "DS") {
$out .= $record['name'] . "\t" . $record['ttl'] . "\tIN\t" . $record['type'] . "\t" . $record['aux'] . "\t" . $record['data'] . "\n";
} else {
if ($record['type'] == "TXT") {
$txt = $record['data'];
if (strpos($txt, " ") !== false) {
if (substr($txt, -1) != '"' && substr($txt, 0, 1) != '"') {
if (substr($txt, -1) != "'" && substr($txt, 0, 1) != "'") {
$record['data'] = '"' . $txt . '"';
}
}
}
if (strpos($record['data'], "v=spf1") !== false) {
$out .= $record['name'] . "\t" . $record['ttl'] . "\tIN\tSPF\t" . $record['data'] . "\n";
}
$out .= $record['name'] . "\t" . $record['ttl'] . "\tIN\t" . $record['type'] . "\t" . $record['data'] . "\n";
} else {
$out .= $record['name'] . "\t" . $record['ttl'] . "\tIN\t" . $record['type'] . "\t\t" . $record['data'] . "\n";
}
}
}
echo $out;
exit;
}
}
}
}
}
}
}
}
}
echo "failure";
exit;
}
