/** * XML-RPC service to update A records * *@access public *@params XML-RPC message $m *@return XML-RPC answer * *The request for this service is a structure containing: * * - user: the user name * - password: his password * - zone: the name of the zone * - name: the name of the A record(s) * - oldaddress (optional): the address of the A record to * delete or "*" to delete all A records * for the given name. * - newaddress (optional): the address of the A record to add. * - ttl (optional): the TTL of the A record to add. * * The return value is the whole zone as text. * * Inserts can be performed by leaving "oldaddress" empty. * Deletes can be performed by leaving "newaddress" empty. * Updates are performed by giving both old and new addresses. * */ function updateArecord($m) { global $xmlrpcerruser, $stateNames; global $db, $dbauth, $user, $config; if ($_SERVER["HTTPS"] != "on") { return new xmlrpcresp(0, $xmlrpcerruser, "non-https modifications disabled " . "(also, now you have to change your password)"); } $res = ""; $modified = 0; $req = php_xmlrpc_decode($m->getParam(0)); $db = new Db(); if ($config->userdbname) { $dbauth = new DbAuth(); } else { $dbauth = $db; } $user = new User($req["user"], $req["password"], NULL); if ($user->authenticated == 0) { $user = new User($req["user"], $req["password"], NULL, 1); } if ($user->authenticated == 0) { return new xmlrpcresp(0, $xmlrpcerruser, "authentication refused"); } elseif ($user->authenticated >= 2) { return new xmlrpcresp(0, $xmlrpcerruser, "you have to migrate first"); } $zonename = $req["zone"]; $zonetype = "P"; $zone = new Zone($zonename, $zonetype); $zone->isErroneous(); if ($zone->error) { return new xmlrpcresp(0, $xmlrpcerruser, $zone->error); } if ($config->usergroups) { include 'libs/group.php'; $group = new Group($user->userid); if ($config->userlogs) { include 'libs/userlogs.php'; $userlogs = new UserLogs($group->groupid, $user->userid); } } if (!$config->usergroups && $zone->RetrieveUser() != $user->userid || $config->usergroups && $zone->RetrieveUser() != $group->groupid) { return new xmlrpcresp(0, $xmlrpcerruser, "You can not manage zone " . $zone->zonename); } $currentzone = new Primary($zone->zonename, $zone->zonetype, $user); if (!empty($req["newaddress"]) && $req["newaddress"] == "<dynamic>") { $req["newaddress"] = $_SERVER["REMOTE_ADDR"]; } if (!empty($req["oldaddress"])) { if (!empty($req["newaddress"])) { # skip changes if newaddress is the same we already have $currentzone->getARecords($addarr, mysql_real_escape_string($req["name"])); if (count($addarr) == 1 && in_array($req["newaddress"], $addarr)) { $ttl = intval($req["ttl"]); if (empty($ttl)) { $ttl = "-1"; } $ret = array("zone" => $req["zone"], "serial" => $currentzone->serial, "name" => $req["name"], "addresses" => $addarr, "ttl" => $ttl); return new xmlrpcresp(php_xmlrpc_encode($ret)); } } $modified = 1; if ($req["oldaddress"] == "*") { $currentzone->deleteMultipleARecords($req["name"]); } elseif ($req["oldaddress"] == "*.*") { $currentzone->deleteMultipleARecords($req["name"], "A"); } elseif ($req["oldaddress"] == "*:*") { $currentzone->deleteMultipleARecords($req["name"], "AAAA"); } else { $tmpname = sprintf("%s(%s/%s)", preg_match('/:/', $req["oldaddress"]) ? "aaaa" : "a", mysql_real_escape_string($req["name"]), mysql_real_escape_string($req["oldaddress"])); $currentzone->Delete(array($tmpname), 0, 0); } if ($currentzone->error) { return new xmlrpcresp(0, $xmlrpcerruser, $currentzone->error); } } $ttl = intval($req["ttl"]); if (empty($ttl)) { $ttl = "-1"; } $updatereverse = !empty($req["updatereveverse"]); if (!empty($req["newaddress"])) { $modified = 1; if (preg_match('/:/', $req["newaddress"])) { $fn = "addAAAARecord"; } else { $fn = "addARecord"; } $res = $currentzone->{$fn}($zone->zoneid, array(mysql_real_escape_string($req["newaddress"])), array(mysql_real_escape_string($req["name"])), array($ttl), $updatereverse); if ($currentzone->error) { return new xmlrpcresp(0, $xmlrpcerruser, $res); } } $currentzone->generateConfigFile(); $checker = sprintf("%s %s %s", $config->binnamedcheckzone, $currentzone->zonename, $currentzone->tempZoneFile()); $check = `{$checker}`; unlink($currentzone->tempZoneFile()); if (!preg_match("/OK/", $check)) { return new xmlrpcresp(0, $xmlrpcerruser, "Check error: " . $checker); } if ($modified) { $currentzone->flagModified($currentzone->zoneid); $currentzone->updateSerial($currentzone->zoneid); if ($currentzone->error) { return new xmlrpcresp(0, $xmlrpcerruser, "DB error: " . $currentzone->error); } } $ret = array("zone" => $req["zone"], "serial" => $currentzone->serial, "name" => $req["name"], "addresses" => NULL, "ttl" => $ttl); $currentzone->getArecords($ret["addresses"], mysql_real_escape_string($req["name"])); if ($currentzone->error) { return new xmlrpcresp(0, $xmlrpcerruser, $currentzone->error); } return new xmlrpcresp(php_xmlrpc_encode($ret)); }