function SRSregistry_register_domain($adm_login, $adm_pass, $domain_name, $period, $contacts, $dns_servers)
{
$owner = SRScreate_contact_array($contacts["owner"]);
$billing = SRScreate_contact_array($contacts["billing"]);
$admin = SRScreate_contact_array($contacts["admin"]);
$contact_set = array('owner' => $owner, 'billing' => $billing, 'admin' => $admin);
$nameservers = array();
if ($dns_servers[0]["name"] != "default" && $dns_servers[1]["name"] != "default" && isHostname($dns_servers[0]["name"]) && isHostname($dns_servers[1]["name"])) {
$nameservers[] = array("sortorder" => 1, "name" => 'ns1.domaindirect.com');
$nameservers[] = array("sortorder" => 2, "name" => 'ns2.domaindirect.com');
}
$cmd = array('protocol' => 'XCP', 'action' => 'SW_REGISTER', 'object' => 'DOMAIN', 'attributes' => array('reg_domain' => $domain_name, 'domain' => $domain_name, 'period' => $period, 'reg_username' => $adm_login, 'reg_password' => $adm_pass, 'auto_renew' => '0', 'custom_tech_contact' => '0', 'link_domains' => '0', 'f_lock_domain' => '0', 'reg_type' => 'new', 'custom_nameservers' => '0', 'nameserver_list' => $nameservers, 'contact_set' => $contact_set));
$O = new openSRS('test', 'XCP');
$O->initAuth();
$srs_result = $O->send_cmd($cmd);
return $srs_result;
}
function drawAdminTools_AddDomain($admin)
{
global $adm_login;
global $adm_pass;
global $addrlink;
global $registration_added_price;
global $conf_addr_primary_dns;
global $conf_addr_secondary_dns;
global $form_enter_dns_infos;
global $form_enter_domain_name;
global $whois_forwareded_params;
global $form_period_popup;
global $conf_webmaster_email_addr;
global $conf_use_registrar_api;
global $pro_mysql_pending_queries_table;
global $pro_mysql_domain_table;
global $pro_mysql_client_table;
global $pro_mysql_product_table;
global $registry_api_modules;
global $secpayconf_currency_letters;
global $pro_mysql_handle_table;
get_secpay_conf();
$out = "";
$form_start = "\n<form action=\"" . $_SERVER["PHP_SELF"] . "\">\n<input type=\"hidden\" name=\"adm_login\" value=\"{$adm_login}\">\n<input type=\"hidden\" name=\"adm_pass\" value=\"{$adm_pass}\">\n<input type=\"hidden\" name=\"addrlink\" value=\"{$addrlink}\">\n<input type=\"hidden\" name=\"action\" value=\"dtcrm_add_domain\">\n";
// User is trying to add a new service, let's complete the form!
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "add_new_service") {
if (!isRandomNum($_REQUEST["product_id"])) {
$out .= _("The product ID is not a valid integer number.");
return $out;
}
$q = "SELECT * FROM {$pro_mysql_product_table} WHERE id='" . $_REQUEST["product_id"] . "';";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n != 1) {
$out .= _("Cannot reselect product: registration failed!");
return $out;
}
$product = mysql_fetch_array($r);
switch ($product["heb_type"]) {
default:
case "shared":
// -> Something has to be done to select dedicated servers location in the form !!!
// -> Something has to be done to select dedicated servers location in the form !!!
case "server":
$added1 = "<input type=\"hidden\" name=\"vps_location\" value=\"node0001.example.com\">\n<input type=\"hidden\" name=\"vps_os\" value=\"debian\">";
break;
case "vps":
$added1 = _("VPS location: ") . "<select name=\"vps_location\">" . vpsLocationSelector() . "</select><br>" . _("VPS OS: ") . "<select name=\"vps_os\">\n<option value=\"debian\">Debian</option>\n<option value=\"centos\">CentOS</option>\n<option value=\"gentoo\">Gentoo</option>\n<option value=\"netbsd\">NetBSD</option>\n</select><br>";
break;
}
$out .= "<br><br><h3>" . _("Add another service to your account:") . "</h3>" . "<br><form action=\"/dtc/new_account.php\">\n<input type=\"hidden\" name=\"adm_login\" value=\"{$adm_login}\">\n<input type=\"hidden\" name=\"adm_pass\" value=\"{$adm_pass}\">\n<input type=\"hidden\" name=\"addrlink\" value=\"{$addrlink}\">\n<input type=\"hidden\" name=\"product_id\" value=\"" . $_REQUEST["product_id"] . "\">\n<input type=\"hidden\" name=\"action\" value=\"add_new_service\">" . $added1 . "\n" . _("Special notes for the setup") . ":<textarea name=\"custom_notes\" cols=\"50\" rows=\"5\"></textarea><br>\n" . submitButtonStart() . _("Register") . submitButtonEnd() . "\n";
return $out;
}
// Registration, hosting, or both ?
if (!isset($_REQUEST["add_domain_type"]) || $_REQUEST["add_domain_type"] != "domregandhosting" && $_REQUEST["add_domain_type"] != "domreg" && $_REQUEST["add_domain_type"] != "hosting") {
$out .= "<br><h3>" . _("What do you want to add:") . "</h3>\n{$form_start}";
if ($conf_use_registrar_api == "yes") {
$out .= "<input type=\"radio\" name=\"add_domain_type\" value=\"domregandhosting\" checked>" . _("Hosting + domain name registration or transfer") . "<br>";
$add_domain_type_checked = " ";
} else {
$add_domain_type_checked = " checked ";
}
$out .= "<input type=\"radio\" name=\"add_domain_type\" value=\"hosting\" checked>" . _("Hosting only") . "<br>\n" . submitButtonStart() . _("Ok") . submitButtonEnd() . "\n</form>\n";
$out .= "<br><br><h3>" . _("Add another service to your account:") . "</h3>";
if (isset($admin["data"])) {
$added_conditions = " AND heb_type NOT LIKE 'shared' ";
} else {
$added_conditions = "";
}
$q = "SELECT * FROM {$pro_mysql_product_table} WHERE private='no' AND renew_prod_id='0' AND heb_type NOT LIKE 'ssl' {$added_conditions};";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
for ($i = 0; $i < $n; $i++) {
$a = mysql_fetch_array($r);
// if($i > 0){
// $out .= " - ";
// }
$out .= "<form action=\"" . $_SERVER["PHP_SELF"] . "\">\n\t\t\t<input type=\"hidden\" name=\"adm_login\" value=\"{$adm_login}\">\n\t\t\t<input type=\"hidden\" name=\"adm_pass\" value=\"{$adm_pass}\">\n\t\t\t<input type=\"hidden\" name=\"action\" value=\"add_new_service\">\n\t\t\t<input type=\"hidden\" name=\"product_id\" value=\"" . $a["id"] . "\">\n\t\t\t<input type=\"hidden\" name=\"addrlink\" value=\"{$addrlink}\">\n\t\t\t" . submitButtonStart() . $a["name"] . submitButtonEnd() . "</form>";
// $out .= "<a href=\"/dtc/new_account.php?action=add_new_service&adm_login=$adm_login&product_id=".$a["id"]."\">".$a["name"]."</a>";
}
return $out;
}
$form_start .= "<input type=\"hidden\" name=\"add_domain_type\" value=\"" . $_REQUEST["add_domain_type"] . "\">";
// $form_start .= "<input type=\"hidden\" name=\"add_domain_type\" value=\"domregandhosting\">";
if ($_REQUEST["add_domain_type"] == "hosting") {
// The don't want name registration or transfer,
// Simply add the domain.
if ($admin["info"]["allow_add_domain"] == "no") {
return _("You curently don't have enough privileges to add domain names. If you often add domain names, you can ask the administrator to do so. To request hosting for a new domain without domain name registration, please write to:") . "<br>" . "<a href=\"mailto:{$conf_webmaster_email_addr}?subject=[DTC] More domains\">{$conf_webmaster_email_addr}</a>.";
}
if ($admin["info"]["max_domain"] != 0) {
$maxdomq = "SELECT COUNT(name) AS numofdomains FROM {$pro_mysql_domain_table} WHERE owner='{$adm_login}';";
$maxdomr = mysql_query($maxdomq) or die("Cannot query {$maxdomq} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$maxdoma = mysql_fetch_array($maxdomr);
$num_of_installed_domains = $maxdoma["numofdomains"];
if ($num_of_installed_domains >= $admin["info"]["max_domain"]) {
return _("You have reached the maximum number of domains that you are allowed to run with this type of account.\nIf you want to add more domain names, you should get in touch by opening a new support ticket.");
}
}
if (!isset($_REQUEST["domain_name"]) || $_REQUEST["domain_name"] == "") {
return "<br><b><u>" . _("Please enter the domain name you wish to add:") . "</u></b><br>\n{$form_start}<input type=\"text\" name=\"domain_name\" value=\"\">\n" . submitButtonStart() . _("Ok") . submitButtonEnd() . "\n</form>";
}
if (!isHostname($_REQUEST["domain_name"])) {
return _("Domain name is not in correct format. Please enter another name.");
}
$q = "SELECT * FROM {$pro_mysql_domain_table} WHERE name='" . $_REQUEST["domain_name"] . "';";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n > 0) {
return _("This domain name already hosted here, please enter another name.");
}
if ($admin["info"]["allow_add_domain"] == "check") {
$q = "INSERT INTO {$pro_mysql_pending_queries_table} (adm_login,domain_name,date) VALUES ('{$adm_login}','" . $_REQUEST["domain_name"] . "','" . date("Y-m-d H:i") . "');";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
return "<br><u><b>" . _("Your domain name will be soon validated:") . "</b></u><br>" . _("An administrator will examine your request shortly, and validate the addition of this domain name to your account. You curently don't have enough privileges to add domain names. If you often add domain names, you can ask the administrator to grant you the privilege of automatic domain name addition. To request hosting for a new domain name, without administrator validation or domain name registration, please write to:") . "<br>\n<a href=\"{$conf_webmaster_email_addr}?subject=[DTC] More domains\">{$conf_webmaster_email_addr}</a>.<br>\n<br>\n" . _("You can add another domain name:") . "\n{$form_start}<input type=\"text\" name=\"domain_name\" value=\"\">\n" . submitButtonStart() . _("Ok") . submitButtonEnd() . "\n</form>\n";
}
addDomainToUser($adm_login, $adm_pass, $_REQUEST["domain_name"]);
return "<br><u><b>" . _("Your domain name is now ready:") . "</b></u><br>\n" . _("Now you can go to check its configuration by clicking here:") . "<br>\n<a href=\"" . $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}&addrlink=" . $_REQUEST["domain_name"] . "\">" . $_REQUEST["domain_name"] . "</a><br>\n<br>\n" . _("Alternatively, you can add another domain name:") . "\n{$form_start}<input type=\"text\" name=\"domain_name\" value=\"\">\n" . submitButtonStart() . _("Ok") . submitButtonEnd() . "\n</form>\n";
}
// Registration or domain transfer ?
if (!isset($_REQUEST["add_regortrans"]) || $_REQUEST["add_regortrans"] != "register" && $_REQUEST["add_regortrans"] != "transfer") {
$out .= "<br><h3>" . _("Do you want to transfer an existing domain or register a new domain?") . "</h3>\n{$form_start}\n<input type=\"radio\" name=\"add_regortrans\" value=\"register\" checked>" . _("Register a new domain") . "<br>\n<input type=\"radio\" name=\"add_regortrans\" value=\"transfer\">" . _("Transfer an existing domain from another registrar") . "<br>\n" . submitButtonStart() . _("Ok") . submitButtonEnd() . "\n</form>\n";
return $out;
}
if ($_REQUEST["add_regortrans"] == "transfer") {
return drawNameTransfer($admin);
}
$form_start .= "<input type=\"hidden\" name=\"add_regortrans\" value=\"register\">";
// Start registration procedure (with or without hosting)
$out .= "<br><h3>" . _("Register a domain name") . "</h3>";
$out .= "<i><u>" . _("Step 1: Verify availability") . "</u></i><br>";
if (!isset($_REQUEST["toreg_domain"]) || $_REQUEST["toreg_domain"] == "" || !isset($_REQUEST["toreg_extention"]) || $_REQUEST["toreg_extention"] == "") {
$out .= "<br>" . _("Enter the domain name you want to register:") . "<br>\n{$form_start} " . make_registration_tld_popup() . "</form>";
return $out;
}
$fqdn = $_REQUEST["toreg_domain"] . $_REQUEST["toreg_extention"];
$domlookup = registry_check_availability($fqdn);
if ($domlookup["is_success"] != 1) {
$out .= "<font color=\"red\">" . _("Could not connect to domain registration server: please try again later!") . "</font><br>" . $domlookup['response_text'];
return $out;
}
if ($domlookup["attributes"]["status"] != "available") {
$out .= "<br>\n" . _("Sorry, the domain name ") . " <b>{$fqdn}</b> " . _("is NOT available for registration. The registration server returned: ") . "<br><font color=\"red\">" . $domlookup["response_text"] . "</font>\n<br><br>\nHave another try:<br>{$form_start} " . make_registration_tld_popup() . "</form>";
return $out;
}
$form_start .= "<input type=\"hidden\" name=\"toreg_domain\" value=\"" . $_REQUEST["toreg_domain"] . "\">\n<input type=\"hidden\" name=\"toreg_extention\" value=\"" . $_REQUEST["toreg_extention"] . "\">";
$q = "SELECT * FROM {$pro_mysql_domain_table} WHERE name='{$fqdn}';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n != 0) {
$out .= "<br>\n" . _("The domain name") . " <b>{$fqdn}</b> " . _("is already in use in this server: you can't register that domain name.") . "<br>" . _("Have another try:") . "<br>{$form_start} " . make_registration_tld_popup() . "</form>";
return $out;
}
// DOMAIN IS AVAILABLE, PROCEED DO REGISTRATION
$out .= "Domain name <b>{$fqdn}</b> is available for registration.<br><br>\n<i><u>" . _("Step 2: Enter whois information") . "</u></i><br>\n";
//http://dtc.example.com/dtc/index.php?adm_login=dtc&adm_pass=bemybest&
//addrlink=myaccount%2Fadddomain&
//action=dtcrm_add_domain&add_domain_type=domreg&add_regortrans=register&
//toreg_domain=yugluxrfvcd&toreg_extention=.com&
//dtcrm_owner_hdl=1&dtcrm_billing_hdl=1&dtcrm_admin_hdl=1&
//toreg_dns1=default&toreg_dns2=default&
//toreg_period=1
if (!isset($_REQUEST["dtcrm_owner_hdl"]) || $_REQUEST["dtcrm_owner_hdl"] == "" || !isset($_REQUEST["dtcrm_admin_hdl"]) || $_REQUEST["dtcrm_admin_hdl"] == "" || !isset($_REQUEST["dtcrm_billing_hdl"]) || $_REQUEST["dtcrm_billing_hdl"] == "" || !isset($_REQUEST["dtcrm_teck_hdl"]) || $_REQUEST["dtcrm_teck_hdl"] == "" || !isset($_REQUEST["toreg_dns1"]) || $_REQUEST["toreg_dns1"] == "" || !isset($_REQUEST["toreg_dns2"]) || $_REQUEST["toreg_dns2"] == "" || $_REQUEST["toreg_period"] < 1 || $_REQUEST["toreg_period"] > 10) {
$year = _("year");
$years = _("years");
$out .= _("Please select registran and the 3 contact handles you want to use for registering that domain name.") . "<br><br>{$form_start}";
$out .= whoisHandleSelection($admin);
if (isset($domlookup["attributes"]["minperiod"])) {
$minreg = str_replace("Y", "", $domlookup["attributes"]["maxperiod"]);
} else {
$minreg = 1;
}
if (isset($domlookup["attributes"]["maxperiod"])) {
$maxreg = str_replace("Y", "", $domlookup["attributes"]["maxperiod"]);
} else {
$maxreg = 10;
}
$out .= "<br>{$form_enter_dns_infos}<br><br>\n" . _("Select how long you want to register this domain name:") . "<br>\n<select name=\"toreg_period\"><option value=\"1\">1 {$year}</option>";
for ($p = 2; $p <= $maxreg; $p++) {
$out .= "<option value=\"{$p}\"";
if ($p == $minreg) {
$out .= " selected>Minimum";
} else {
$out .= ">";
}
$out .= " {$p} {$years}</option>";
}
$out .= "</select><br><br>\n" . submitButtonStart() . _("Ok") . submitButtonEnd() . "\n</form>\n";
return $out;
}
$form_start .= "{$whois_forwareded_params}\n<input type=\"hidden\" name=\"toreg_period\" value=\"" . $_REQUEST["toreg_period"] . "\">";
$out .= "Registration for <b>" . $_REQUEST["toreg_period"] . " years</b><br>";
$out .= "DNS1: " . $_REQUEST["toreg_dns1"] . "<br>";
$out .= "DNS2: " . $_REQUEST["toreg_dns2"] . "<br><br>";
$out .= "<i><u>" . _("Step 3: Proceed to registration") . "</u></i>\n{$form_start}\n";
// Check if paiement has just occured !
if (isset($_REQUEST["inner_action"]) && $_REQUEST["inner_action"] == "return_from_paypal_domain_add") {
$ze_refund = isPayIDValidated(addslashes($_REQUEST["pay_id"]));
if ($ze_refund == 0) {
$out .= "<font color=\"red\">The transaction failed, please try again!</font>";
} else {
$out .= "<font color=\"green\">Funds added to your account</font>";
$q = "UPDATE {$pro_mysql_client_table} SET dollar = dollar+" . $ze_refund . " WHERE id='" . $admin["info"]["id_client"] . "';";
$r = mysql_query($q) or die("Cannot querry {$q} line " . __LINE__ . " file " . __FILE__ . " sql said " . mysql_error());
$admin["client"]["dollar"] += $ze_refund;
}
}
// Check billing to know if user has enough money on his account
$price = find_domain_price($_REQUEST["toreg_extention"]);
$fqdn_price = $price;
$fqdn_price *= $_REQUEST["toreg_period"];
if ($admin["info"]["id_client"] != 0) {
$remaining = $admin["client"]["dollar"];
} else {
$out .= _("You don't have a client ID. Please contact us.") . "<br>";
$remaining = 0;
return $out;
}
$out .= _("Remaining on your account: ") . " {$secpayconf_currency_letters}" . $remaining . "<br>\n" . _("Total price: ") . " " . $secpayconf_currency_letters . "" . $fqdn_price . "<br><br>";
if ($fqdn_price > $remaining) {
$to_pay = $fqdn_price - $remaining;
$payid = createCreditCardPaiementID($to_pay, $admin["info"]["id_client"], "Domain name registration " . $_REQUEST["toreg_extention"], "no");
$return_url = $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}" . "&addrlink={$addrlink}&action=dtcrm_add_domain&add_domain_type=" . $_REQUEST["add_domain_type"] . "&add_regortrans=" . $_REQUEST["add_regortrans"] . "&toreg_domain=" . $_REQUEST["toreg_domain"] . "&toreg_extention=" . $_REQUEST["toreg_extention"] . "&dtcrm_owner_hdl=" . $_REQUEST["dtcrm_owner_hdl"] . "&dtcrm_admin_hdl=" . $_REQUEST["dtcrm_admin_hdl"] . "&dtcrm_billing_hdl=" . $_REQUEST["dtcrm_billing_hdl"] . "&dtcrm_teck_hdl=" . $_REQUEST["dtcrm_teck_hdl"] . "&toreg_dns1=" . $_REQUEST["toreg_dns1"] . "&toreg_dns2=" . $_REQUEST["toreg_dns2"] . "&toreg_dns3=" . $_REQUEST["toreg_dns3"] . "&toreg_dns4=" . $_REQUEST["toreg_dns4"] . "&toreg_dns5=" . $_REQUEST["toreg_dns5"] . "&toreg_dns6=" . $_REQUEST["toreg_dns6"] . "&toreg_period=" . $_REQUEST["toreg_period"] . "&inner_action=return_from_paypal_domain_add&payid={$payid}";
$paybutton = paynowButton($payid, $to_pay, "Domain name registration " . $_REQUEST["toreg_extention"], $return_url);
$out .= _("You currently don't have enough funds on your account. You will be redirected to our payment system. Please click on the button below to pay.") . "<br>\n<br><br>\n{$form_start}\n" . submitButtonStart() . _("Payment complete. Proceed to checkout") . submitButtonEnd() . "\n</form> {$paybutton}";
return $out;
}
// Check for confirmation
if (!isset($_REQUEST["toreg_confirm_register"]) || $_REQUEST["toreg_confirm_register"] != "yes") {
$out .= _("You have enough funds on your account to proceed with registration. Press the confirm button to proceed.") . "<br><br>\n{$form_start}\n<input type=\"hidden\" name=\"toreg_confirm_register\" value=\"yes\">\n" . submitButtonStart() . _("Proceed to name-registration") . submitButtonEnd() . "\n</form>";
return $out;
}
///////////////////////////////////////
// START OF DOMAIN NAME REGISTRATION //
$owner_id = $_REQUEST["dtcrm_owner_hdl"];
$billing_id = $_REQUEST["dtcrm_billing_hdl"];
$admin_id = $_REQUEST["dtcrm_admin_hdl"];
$teck_id = $_REQUEST["dtcrm_teck_hdl"];
$contacts = getContactsArrayFromID($owner_id, $billing_id, $admin_id, $teck_id);
$dns_servers = array();
for ($i = 1; $i < 7; $i++) {
if (isset($_REQUEST["toreg_dns{$i}"]) && isHostname($_REQUEST["toreg_dns{$i}"])) {
$dns_servers[] = $_REQUEST["toreg_dns{$i}"];
} else {
if ($i == 1) {
$dns_servers[] = $conf_addr_primary_dns;
} else {
if ($i == 2) {
$dns_servers[] = $conf_addr_secondary_dns;
}
}
}
}
$q = "SELECT * FROM {$pro_mysql_domain_table} WHERE owner='{$adm_login}' AND whois='here';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n > 0) {
$new_user = "******";
} else {
$new_user = "******";
}
// sleep(2);
$regz = registry_register_domain($adm_login, $adm_pass, $fqdn, $_REQUEST["toreg_period"], $contacts, $dns_servers, $new_user);
if ($regz["is_success"] != 1) {
$out .= "<font color=\"red\"><b>" . _("Registration failed") . "</b></font><br>\n" . _("Server said: ") . "<i>" . $regz["response_text"] . "</i>";
return $out;
}
$out .= "<font color=\"green\"><b>Registration succesfull</b></font><br>\nServer said: <i>" . $regz["response_text"] . "</i><br>";
$operation = $remaining - $fqdn_price;
$query = "UPDATE {$pro_mysql_client_table} SET dollar='{$operation}' WHERE id='" . $admin["info"]["id_client"] . "';";
mysql_query($query) or die("Cannot query \"{$query}\" !!!" . mysql_error());
addDomainToUser($adm_login, $adm_pass, $fqdn, $adm_pass);
if ($regz["is_success"] == 1) {
$id = find_registry_id($fqdn);
$q = "UPDATE {$pro_mysql_domain_table} SET registrar='" . $registry_api_modules[$id]["name"] . "' WHERE name='{$fqdn}';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
unset($ns_ar);
$ns_ar = array();
$ns_ar[] = $_REQUEST["toreg_dns1"];
$ns_ar[] = $_REQUEST["toreg_dns2"];
if (isset($_REQUEST["toreg_dns3"]) && $_REQUEST["toreg_dns3"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns3"];
}
if (isset($_REQUEST["toreg_dns4"]) && $_REQUEST["toreg_dns4"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns4"];
}
if (isset($_REQUEST["toreg_dns5"]) && $_REQUEST["toreg_dns5"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns5"];
}
if (isset($_REQUEST["toreg_dns6"]) && $_REQUEST["toreg_dns6"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns6"];
}
newWhois($fqdn, $owner_id, $billing_id, $admin_id, $teck_id, $_REQUEST["toreg_period"], $ns_ar, $registry_api_modules[$id]["name"]);
}
$out .= "<font color=\"green\"><b>" . _("Successfully added your domain name to the hosting database") . "</b></font><br>";
$out .= _("Click") . " " . "<a href=\"" . $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}&addrlink={$addrlink}\">" . _("here") . "</a>" . " " . _("to refresh the menu or add another domain name.");
// END OF DOMAIN NAME REGISTRATION //
/////////////////////////////////////
return $out;
}
<?php
// get_install_log.php?adm_login=$adm_login&adm_pass=$adm_pass&vps_node=$vps_node&vps_name=$vps_name
$panel_type = "admin";
require_once "../shared/autoSQLconfig.php";
require_once "{$dtcshared_path}/dtc_lib.php";
$vps_name = $_REQUEST["vps_name"];
$vps_node = $_REQUEST["vps_node"];
if (!isRandomNum($vps_name)) {
die("Not a vps number...");
}
if (!isHostname($vps_node)) {
die("Not a vps name...");
}
if (checkVPSAdmin($adm_login, $adm_pass, $vps_node, $vps_name) == false) {
die("Login, pass, vps number or node name incorrect: access not granted!");
}
$soap_client = connectToVPSServer($vps_node);
if ($soap_client != false) {
// getVPSInstallLog(vpsname,numlines)
$r = $soap_client->call("getVPSInstallLog", array("vpsname" => $vps_name, "numlines" => "0"), "", "", "");
$err = $soap_client->getError();
if ($err) {
die("Could not get VPS install log. Error: " . $err);
}
// prepare to send JSON
header('Content-type: application/json');
// disable cookies (so script works for privacy conscious users too)
ini_set('session.use_cookies', false);
// start ongoing or new session
if (isset($_GET["PHPSESSID"])) {
function isValidHost($str)
{
return isHostname($str) || isIpv4($str) ? true : false;
}
mysql_query($adm_query) or die("Cannot execute query \"{$adm_query}\" !!!");
// Tell the cron job to activate the changes (because ip could have change)
$adm_query = "UPDATE {$pro_mysql_cronjob_table} SET gen_vhosts='yes',gen_named='yes',reload_named='yes',restart_apache='yes',gen_backup='yes' WHERE 1;";
mysql_query($adm_query);
}
/////////////////////////////////////
// Domain name database management //
/////////////////////////////////////
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "set_vhost_custom_directives") {
$q = "UPDATE {$pro_mysql_subdomain_table} SET customize_vhost='" . $_REQUEST["custom_directives"] . "' WHERE domain_name='" . $_REQUEST["edithost"] . "' AND subdomain_name='" . $_REQUEST["subdomain"] . "';";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$adm_query = "UPDATE {$pro_mysql_cronjob_table} SET gen_vhosts='yes',restart_apache='yes' WHERE 1;";
mysql_query($adm_query);
}
if (isset($_REQUEST["newdomain"]) && $_REQUEST["newdomain"] == "Ok") {
if (isHostname($_REQUEST["newdomain_name"])) {
addDomainToUser($adm_login, $adm_pass, $_REQUEST["newdomain_name"]);
triggerDomainListUpdate();
} else {
echo "<font color=\"red\">Hostname is not a valid domain name!</font>";
}
}
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "valid_waiting_domain_to_user") {
$q = "SELECT * FROM {$pro_mysql_pending_queries_table} WHERE id='" . $_REQUEST["reqid"] . "';";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n != 1) {
die("ID of pending domain not found!");
}
$pending = mysql_fetch_array($r);
$q = "SELECT * FROM {$pro_mysql_admin_table} WHERE adm_login='******';";
function dtcListItemsEdit($dsc)
{
global $adm_pass;
$out = "<h3>" . $dsc["title"] . "</u></b></h3>";
// Calculate the forwards parameters for links and forms
$nbr_forwards = sizeof($dsc["forward"]);
$keys_fw = array_keys($dsc["forward"]);
$fw = "";
$fw_link = $_SERVER["PHP_SELF"] . "?";
for ($i = 0; $i < $nbr_forwards; $i++) {
if ($dsc["forward"][$i] == "adm_pass") {
$fw .= "<input type=\"hidden\" name=\"" . $dsc["forward"][$i] . "\" value=\"" . $adm_pass . "\">";
} else {
$fw .= "<input type=\"hidden\" name=\"" . $dsc["forward"][$i] . "\" value=\"" . $_REQUEST[$dsc["forward"][$i]] . "\">";
}
if ($i != 0) {
$fw_link .= "&";
}
if ($dsc["forward"][$i] == "adm_pass") {
$fw_link .= $dsc["forward"][$i] . "={$adm_pass}";
} else {
$fw_link .= $dsc["forward"][$i] . "=" . $_REQUEST[$dsc["forward"][$i]];
}
}
// Condition to add to each queries
$where = "WHERE 1";
if (isset($dsc["order_by"])) {
$order_by = " ORDER BY " . $dsc["order_by"];
} else {
$order_by = "";
}
$added_insert_names = "";
$added_insert_values = "";
if (isset($dsc["where_list"])) {
$nbr_where = sizeof($dsc["where_list"]);
$where_keys = array_keys($dsc["where_list"]);
for ($i = 0; $i < $nbr_where; $i++) {
if ($i != 0) {
$added_insert_names .= ",";
$added_insert_values .= ",";
}
$added_insert_names .= $where_keys[$i];
$added_insert_values .= "'" . $dsc["where_list"][$where_keys[$i]] . "'";
$where .= " AND " . $where_keys[$i] . "='" . $dsc["where_list"][$where_keys[$i]] . "'";
}
// As there will be other fields, we need that one
$added_insert_names .= ",";
$added_insert_values .= ",";
}
// Number of fields that we are about to manage here and theire names
$nbr_fld = sizeof($dsc["cols"]);
$keys = array_keys($dsc["cols"]);
// We need the current number of items now to check against the max number for addition
$q = "SELECT " . $dsc["id_fld"] . "," . $dsc["list_fld_show"] . " FROM " . $dsc["table_name"] . " {$where};";
$r_item_list = mysql_query($q) or die("Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error());
$current_num_items = mysql_num_rows($r_item_list);
// SQL submit stuffs
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == $dsc["action"] . "_new_item") {
// Todo: do the fields checkings
$commit_flag = "yes";
$commit_err = "";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "popup":
case "radio":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$is_one_of_them = "no";
for ($j = 0; $j < $nbr_choices; $j++) {
if ($dsc["cols"][$keys[$i]]["values"][$j] == $_REQUEST[$keys[$i]]) {
$is_one_of_them = "yes";
}
}
if ($is_one_of_them == "no") {
$commit_flag = "no";
$commit_err = "the variable " . $keys[$i] . " is not one of the allowed values<br>";
}
break;
default:
break;
}
if (isset($dsc["cols"][$keys[$i]]["check"])) {
switch ($dsc["cols"][$keys[$i]]["check"]) {
case "subdomain":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain<br>";
}
}
break;
case "subdomain_or_ip":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]]) && !isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain or IP addresse<br>";
}
}
break;
case "ip6":
if (!isIP6($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) || $dsc["cols"][$keys[$i]]["empty_makes_default"] != "yes" || $_REQUEST[$keys[$i]] != "default") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IPv6 address<br>";
}
}
}
break;
case "ip_addr":
if (!isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IP address<br>";
}
}
break;
case "domain_or_ip":
if (!isIP($_REQUEST[$keys[$i]]) && !isHostname($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a domain or IP addresse<br>";
}
}
break;
case "dtc_login":
if (!isFtpLogin($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "dtc_login_or_email":
if (!isFtpLogin($_REQUEST[$keys[$i]]) && !isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "mail_alias_group":
$mail_alias_group_raw = trim($_REQUEST[$keys[$i]], "\r\n");
$mail_alias_nocr = str_replace("\r", "", $mail_alias_group_raw);
$mail_alias_array = split("\n", $mail_alias_nocr);
for ($x = 0; $x < count($mail_alias_array); $x++) {
if (!isValidEmail($mail_alias_array[$x])) {
$commit_flag = "no";
$commit_err .= $mail_alias_array[$x] . ": not a valid email format.<br>";
}
}
break;
case "dtc_pass":
if (!isDTCPassword($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct password format<br>";
}
}
break;
case "email":
if (!isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct email format<br>";
}
}
break;
case "number":
if (!isRandomNum($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
}
break;
case "max_value_2096":
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isRandomNum($_REQUEST[$keys[$i]])) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
if ($_REQUEST[$keys[$i]] >= 2096) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": is greater or equal than the max value 2096<br>";
}
}
break;
default:
$commit_flag = "no";
$commit_err .= $keys[$i] . ": unknown field checking type (" . $dsc["cols"][$keys[$i]]["check"] . ").<br>";
break;
}
}
}
if (isset($dsc["max_item"]) && $current_num_items >= $dsc["max_item"]) {
$commit_flag = "no";
$commit_err = "Max number of items reached!";
}
if (isset($dsc["check_unique"])) {
$nbr_unique_check = sizeof($dsc["check_unique"]);
$where_clause = "";
for ($i = 0; $i < $nbr_unique_check; $i++) {
if ($i != 0) {
$where_clause .= " AND ";
}
if (isset($dsc["cols"][$dsc["check_unique"][$i]]["happen_domain"])) {
$where_clause .= $dsc["check_unique"][$i] . "='" . $_REQUEST[$dsc["check_unique"][$i]] . $dsc["cols"][$dsc["check_unique"][$i]]["happen_domain"] . "' ";
} else {
$where_clause .= $dsc["check_unique"][$i] . "='" . $_REQUEST[$dsc["check_unique"][$i]] . "' ";
}
}
if (!isset($dsc["check_unique_use_where_list"]) || $dsc["check_unique_use_where_list"] == "yes") {
$nbr_where_list_fld = sizeof($dsc["where_list"]);
$where_list_keys_fld = array_keys($dsc["where_list"]);
for ($i = 0; $i < $nbr_where_list_fld; $i++) {
$where_clause .= " AND " . $where_list_keys_fld[$i] . "='" . $dsc["where_list"][$where_list_keys_fld[$i]] . "'";
}
}
$q = "SELECT * FROM " . $dsc["table_name"] . " WHERE {$where_clause} ";
$r = mysql_query($q) or die("Cannot query \"{$q}\" line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n > 0) {
$commit_flag = "no";
$commit_err = $dsc["check_unique_msg"];
}
}
// Build the request
$fld_names = "";
$values = "";
$added_one = "no";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "password":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $keys[$i];
if (isset($dsc["cols"][$keys[$i]]["empty_makes_sql_null"]) && $dsc["cols"][$keys[$i]]["empty_makes_sql_null"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "NULL";
} else {
if (isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) && $dsc["cols"][$keys[$i]]["empty_makes_default"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "'default'";
} else {
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . $dsc["cols"][$keys[$i]]["happen_domain"] . "'";
} else {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . "'";
}
// if the crypt field is set, then we use this as the SQL field to populate the crypted password into
if (isset($dsc["cols"][$keys[$i]]["cryptfield"])) {
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $dsc["cols"][$keys[$i]]["cryptfield"];
$values .= "'" . crypt($_REQUEST[$keys[$i]], dtc_makesalt()) . "'";
}
}
}
$added_one = "yes";
break;
case "text":
case "textarea":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $keys[$i];
if (isset($dsc["cols"][$keys[$i]]["empty_makes_sql_null"]) && $dsc["cols"][$keys[$i]]["empty_makes_sql_null"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "NULL";
} else {
if (isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) && $dsc["cols"][$keys[$i]]["empty_makes_default"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "'default'";
} else {
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . $dsc["cols"][$keys[$i]]["happen_domain"] . "'";
} else {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . "'";
}
}
}
$added_one = "yes";
break;
case "checkbox":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$added_one = "yes";
$fld_names .= $keys[$i];
if (isset($_REQUEST[$keys[$i]])) {
$values .= "'" . $dsc["cols"][$keys[$i]]["values"][0] . "'";
} else {
$values .= "'" . $dsc["cols"][$keys[$i]]["values"][1] . "'";
}
break;
case "popup":
case "radio":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $keys[$i];
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . "'";
$added_one = "yes";
break;
}
}
if ($commit_flag == "yes") {
$q = "INSERT INTO " . $dsc["table_name"] . " ({$added_insert_names} {$fld_names}) VALUES ({$added_insert_values} {$values});";
$success = "yes";
$r = mysql_query($q) or $success = "no";
if ($success == "yes") {
$insert_id = mysql_insert_id();
if (isset($dsc["create_item_callback"])) {
$out .= $dsc["create_item_callback"]($insert_id);
}
} else {
$out .= "<font color=\"red\">Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error() . "</font>";
}
} else {
$out .= "<font color=\"red\">Could not commit the changes because of an error in field format: <br>{$commit_err}</font><br>";
}
} else {
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == $dsc["action"] . "_save_item") {
// Todo: do the fields checkings
$commit_flag = "yes";
$commit_err = "";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "checkbox":
break;
case "popup":
case "radio":
case "checkbox":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$is_one_of_them = "no";
for ($j = 0; $j < $nbr_choices; $j++) {
if ($dsc["cols"][$keys[$i]]["values"][$j] == $_REQUEST[$keys[$i]]) {
$is_one_of_them = "yes";
}
}
if ($is_one_of_them == "no") {
$commit_flag = "no";
$commit_err = "the variable " . $keys[$i] . " is not one of the allowed values<br>";
}
break;
default:
break;
}
if (isset($dsc["cols"][$keys[$i]]["check"]) && (!isset($dsc["cols"][$keys[$i]]["disable_edit"]) || $dsc["cols"][$keys[$i]]["disable_edit"] != "yes")) {
switch ($dsc["cols"][$keys[$i]]["check"]) {
case "subdomain":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain<br>";
}
}
break;
case "subdomain_or_ip":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]]) && !isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain or IP addresse<br>";
}
}
break;
case "ip6":
if (!isIP6($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) || $dsc["cols"][$keys[$i]]["empty_makes_default"] != "yes" || $_REQUEST[$keys[$i]] != "default") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IPv6 address<br>";
}
}
}
break;
case "ip_addr":
if (!isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IP address<br>";
}
}
break;
case "domain_or_ip":
if (!isIP($_REQUEST[$keys[$i]]) && !isHostname($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a domain or IP addresse<br>";
}
}
break;
case "dtc_login":
if (!isFtpLogin($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "dtc_login_or_email":
if (!isFtpLogin($_REQUEST[$keys[$i]]) && !isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "mail_alias_group":
$mail_alias_group_raw = trim($_REQUEST[$keys[$i]], "\r\n");
$mail_alias_nocr = str_replace("\r", "", $mail_alias_group_raw);
$mail_alias_array = split("\n", $mail_alias_nocr);
for ($x = 0; $x < count($mail_alias_array); $x++) {
if (!isValidEmail($mail_alias_array[$x])) {
$commit_flag = "no";
$commit_err .= $mail_alias_array[$x] . ": not a valid email format.<br>";
}
}
break;
case "dtc_pass":
if (!isDTCPassword($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct password format<br>";
}
}
break;
case "email":
if (!isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct email format<br>";
}
}
break;
case "number":
if (!isRandomNum($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
}
break;
case "max_value_2096":
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isRandomNum($_REQUEST[$keys[$i]])) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
if ($_REQUEST[$keys[$i]] >= 2096) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": is greater or equal than the max value 2096<br>";
}
}
break;
default:
$commit_flag = "no";
$commit_err .= $keys[$i] . ": unknown field checking type (" . $dsc["cols"][$keys[$i]]["check"] . ").<br>";
break;
}
}
}
// Build the request
$added_one = "no";
$reqs = "";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "id":
$id_fldname = $keys[$i];
$id_fld_value = addslashes($_REQUEST[$keys[$i]]);
break;
case "readonly":
break;
case "text":
case "textarea":
case "password":
if (!isset($dsc["cols"][$keys[$i]]["disable_edit"]) || $dsc["cols"][$keys[$i]]["disable_edit"] != "yes") {
if ($added_one == "yes") {
$reqs .= ",";
}
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$happen = $dsc["cols"][$keys[$i]]["happen_domain"];
} else {
$happen = "";
}
if (isset($dsc["cols"][$keys[$i]]["empty_makes_sql_null"]) && $dsc["cols"][$keys[$i]]["empty_makes_sql_null"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$reqs .= $keys[$i] . "=NULL";
} else {
if (isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) && $dsc["cols"][$keys[$i]]["empty_makes_default"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$reqs .= $keys[$i] . "='default'";
} else {
$reqs .= $keys[$i] . "='" . addslashes($_REQUEST[$keys[$i]]) . $happen . "'";
// if the crypt field is set, then we use this as the SQL field to populate the crypted password into
if (isset($dsc["cols"][$keys[$i]]["cryptfield"])) {
if ($added_one == "yes") {
$reqs .= ", ";
}
$reqs .= " " . $dsc["cols"][$keys[$i]]["cryptfield"] . "='" . crypt($_REQUEST[$keys[$i]], dtc_makesalt()) . "' ";
}
}
}
$added_one = "yes";
}
break;
case "popup":
case "radio":
if ($added_one == "yes") {
$reqs .= ",";
}
$reqs .= $keys[$i] . "='" . addslashes($_REQUEST[$keys[$i]]) . "'";
$added_one = "yes";
break;
case "checkbox":
if ($added_one == "yes") {
$reqs .= ",";
}
if (isset($_REQUEST[$keys[$i]])) {
$reqs .= $keys[$i] . "='" . $dsc["cols"][$keys[$i]]["values"][0] . "'";
} else {
$reqs .= $keys[$i] . "='" . $dsc["cols"][$keys[$i]]["values"][1] . "'";
}
break;
default:
die($dsc["cols"][$keys[$i]]["type"] . ": Not implemented yet line " . __LINE__ . " file " . __FILE__);
break;
}
}
if ($commit_flag != "yes") {
$out .= "<font color=\"red\">Could not commit the changes because of an error in field format: [todo: error desc]<br>{$commit_err}</font>";
} else {
if (!isset($id_fldname) || !isset($id_fld_value)) {
$out .= "<font color=\"red\">Could not commit the changes because the id is not set!</font>";
} else {
$q = "UPDATE " . $dsc["table_name"] . " SET {$reqs} {$where} AND {$id_fldname}='{$id_fld_value}';";
$r = mysql_query($q) or $out .= "<font color=\"red\">Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error() . "</font>";
if (isset($dsc["edit_item_callback"])) {
$dsc["edit_item_callback"]($id_fld_value);
}
}
}
} else {
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == $dsc["action"] . "_delete_item") {
for ($i = 0; $i < $nbr_fld; $i++) {
if ($dsc["cols"][$keys[$i]]["type"] == "id") {
$id_fldname = $keys[$i];
$id_fld_value = addslashes($_REQUEST[$keys[$i]]);
}
}
if (isset($id_fldname) && isset($id_fld_value)) {
if (isset($dsc["delete_item_callback"])) {
$dsc["delete_item_callback"]($id_fld_value);
}
$q = "DELETE FROM " . $dsc["table_name"] . " {$where} AND {$id_fldname}='" . $id_fld_value . "';";
$r = mysql_query($q) or $out .= "<font color=\"red\">Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error() . "</font>";
} else {
$out .= "<font color=\"red\">Could not commit the deletion because the id field could not be found.</font>";
}
}
}
}
// We have to query it again, in case an insert or a delete has occured!
$q = "SELECT " . $dsc["id_fld"] . "," . $dsc["list_fld_show"] . " FROM " . $dsc["table_name"] . " {$where} {$order_by};";
$r_item_list = mysql_query($q) or die("Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error());
$current_num_items = mysql_num_rows($r_item_list);
if (isset($dsc["max_item"])) {
if ($current_num_items >= $dsc["max_item"]) {
$out .= "<font color=\"red\">";
}
$out .= $dsc["num_item_txt"] . $current_num_items . "/" . $dsc["max_item"];
if ($current_num_items >= $dsc["max_item"]) {
$out .= "</font>";
}
$out .= "<br><br>";
}
// First display a list of items
for ($i = 0; $i < $current_num_items; $i++) {
$a = mysql_fetch_array($r_item_list);
if ($i != 0) {
$out .= " - ";
}
if (isset($_REQUEST["subaction"]) && $_REQUEST["subaction"] == $dsc["action"] . "_edit_item" && $_REQUEST["item"] == $a[$dsc["id_fld"]]) {
$out .= $a[$dsc["list_fld_show"]];
} else {
$out .= "<a href=\"{$fw_link}&subaction=" . $dsc["action"] . "_edit_item&item=" . $a[$dsc["id_fld"]] . "\">" . $a[$dsc["list_fld_show"]] . "</a>";
}
}
$out .= "<br><br>";
// Creation of new items
if (!isset($_REQUEST["subaction"]) || $_REQUEST["subaction"] != $dsc["action"] . "_edit_item") {
$out .= $dsc["new_item_link"] . "<br><br>";
$out .= "<h3>" . $dsc["new_item_title"] . "</h3><br>";
if (isset($dsc["max_item"]) && $current_num_items >= $dsc["max_item"]) {
$out .= "<font color=\"red\">" . _("Maximum number reached") . "!</font><br>";
} else {
$out .= "<form name=\"" . $dsc["action"] . "_new_item_frm\" action=\"" . $_SERVER["PHP_SELF"] . "\">{$fw}\n\t\t\t\t<input type=\"hidden\" name=\"action\" value=\"" . $dsc["action"] . "_new_item\">" . dtcFormTableAttrs();
for ($i = 0; $i < $nbr_fld; $i++) {
if (isset($dsc["cols"][$keys[$i]]["help"])) {
$help = $dsc["cols"][$keys[$i]]["help"];
} else {
$help = "";
}
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "id":
$out .= "<input type=\"hidden\" name=\"" . $keys[$i] . "\" value=\"\">";
break;
case "password":
$genpass = autoGeneratePassButton($dsc["action"] . "_new_item_frm", $keys[$i]);
$ctrl = "<input type=\"password\" name=\"" . $keys[$i] . "\" value=\"\">{$genpass}";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "text":
case "readonly":
if (isset($dsc["cols"][$keys[$i]]["hide_create"]) && $dsc["cols"][$keys[$i]]["hide_create"] == "yes") {
break;
}
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$happen = $dsc["cols"][$keys[$i]]["happen_domain"];
} else {
$happen = "";
}
if (isset($dsc["cols"][$keys[$i]]["happen"])) {
$happen .= $dsc["cols"][$keys[$i]]["happen"];
}
if (isset($dsc["cols"][$keys[$i]]["default"])) {
$ctrl_value = $dsc["cols"][$keys[$i]]["default"];
} else {
$ctrl_value = "";
}
if ($dsc["cols"][$keys[$i]]["type"] == "readonly") {
$ctrl = "<input type=\"text\" name=\"" . $keys[$i] . "\" value=\"{$ctrl_value}\" READONLY>{$happen}";
} else {
$ctrl = "<input type=\"text\" name=\"" . $keys[$i] . "\" value=\"{$ctrl_value}\">{$happen}";
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "textarea":
if (isset($dsc["cols"][$keys[$i]]["cols"])) {
$ctrl_cols = " cols=\"" . $dsc["cols"][$keys[$i]]["cols"] . "\" ";
} else {
$ctrl_cols = "";
}
if (isset($dsc["cols"][$keys[$i]]["rows"])) {
$ctrl_rows = " rows=\"" . $dsc["cols"][$keys[$i]]["rows"] . "\" ";
} else {
$ctrl_rows = "";
}
$ctrl = "<textarea {$ctrl_cols} {$ctrl_rows} name=\"" . $keys[$i] . "\"></textarea>";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "radio":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$ctrl = "";
for ($x = 0; $x < $nbr_choices; $x++) {
if (isset($dsc["cols"][$keys[$i]]["default"])) {
if ($dsc["cols"][$keys[$i]]["values"][$x] == $dsc["cols"][$keys[$i]]["default"]) {
$selected = " checked ";
} else {
$selected = "";
}
} else {
if ($x == 0) {
$selected = " checked ";
} else {
$selected = "";
}
}
if (isset($dsc["cols"][$keys[$i]]["display_replace"][$x])) {
$display_val = $dsc["cols"][$keys[$i]]["display_replace"][$x];
} else {
$display_val = $dsc["cols"][$keys[$i]]["values"][$x];
}
$ctrl .= "<input type=\"radio\" name=\"" . $keys[$i] . "\" value=\"" . $dsc["cols"][$keys[$i]]["values"][$x] . "\" {$selected}> ";
$ctrl .= $display_val;
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "checkbox":
if (!isset($dsc["cols"][$keys[$i]]["default"])) {
$checked = " checked ";
} else {
$checked = " ";
}
$ctrl = "<input type=\"checkbox\" name=\"" . $keys[$i] . "\" value=\"yes\" {$checked}>";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "popup":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$ctrl = "<select name=\"" . $keys[$i] . "\">";
for ($x = 0; $x < $nbr_choices; $x++) {
$selected = "";
if (isset($dsc["cols"][$keys[$i]]["default"])) {
if ($dsc["cols"][$keys[$i]]["values"][$x] == $dsc["cols"][$keys[$i]]["default"]) {
$selected = " selected ";
} else {
$selected = "";
}
}
if (isset($dsc["cols"][$keys[$i]]["display_replace"][$x])) {
$display_val = $dsc["cols"][$keys[$i]]["display_replace"][$x];
} else {
$display_val = $dsc["cols"][$keys[$i]]["values"][$x];
}
$ctrl .= " <option value=\"" . $dsc["cols"][$keys[$i]]["values"][$x] . "\" {$selected}>{$display_val}</option>";
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
default:
$ctrl = "Not implemented yet!!!";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
}
}
$out .= dtcFromOkDraw();
$out .= "</table></form>";
}
// Edition of existing items
} else {
$out .= "<a href=\"{$fw_link}&subaction=" . $dsc["action"] . "_new_item\">" . $dsc["new_item_link"] . "</a><br><br>";
$out .= "<h3>" . $dsc["edit_item_title"] . "</h3><br>";
$q = "SELECT * FROM " . $dsc["table_name"] . " {$where} AND " . $dsc["id_fld"] . "='" . addslashes($_REQUEST["item"]) . "';";
$r = mysql_query($q) or die("Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n == 1) {
$a = mysql_fetch_array($r);
$out .= "<form name=\"" . $dsc["action"] . "_save_item_frm\" action=\"" . $_SERVER["PHP_SELF"] . "\">{$fw}";
$out .= "<input type=\"hidden\" name=\"action\" value=\"" . $dsc["action"] . "_save_item\">";
$out .= "<input type=\"hidden\" name=\"subaction\" value=\"" . $dsc["action"] . "_edit_item\">";
$out .= "<input type=\"hidden\" name=\"item\" value=\"" . $a[$dsc["id_fld"]] . "\">";
$out .= dtcFormTableAttrs();
for ($j = 0; $j < $nbr_fld; $j++) {
$the_fld = $dsc["cols"][$keys[$j]];
if (isset($dsc["cols"][$keys[$j]]["help"])) {
$help = $dsc["cols"][$keys[$j]]["help"];
} else {
$help = "";
}
switch ($the_fld["type"]) {
case "id":
$out .= "<input type=\"hidden\" name=\"" . $keys[$j] . "\" value=\"" . $a[$keys[$j]] . "\">";
$id_fldname = $keys[$j];
$id_fld_value = $a[$keys[$j]];
break;
case "textarea":
if (isset($dsc["cols"][$keys[$j]]["cols"])) {
$ctrl_cols = " cols=\"" . $dsc["cols"][$keys[$j]]["cols"] . "\" ";
} else {
$ctrl_cols = "";
}
if (isset($dsc["cols"][$keys[$j]]["rows"])) {
$ctrl_rows = " rows=\"" . $dsc["cols"][$keys[$j]]["rows"] . "\" ";
} else {
$ctrl_rows = "";
}
$ctrl = "<textarea {$ctrl_cols} {$ctrl_rows} name=\"" . $keys[$j] . "\">" . stripslashes($a[$keys[$j]]) . "</textarea>";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "password":
case "text":
case "readonly":
if (isset($dsc["cols"][$keys[$j]]["disable_edit"]) && $dsc["cols"][$keys[$j]]["disable_edit"] == "yes") {
$disabled = " disabled ";
} else {
$disabled = " ";
}
if (isset($dsc["cols"][$keys[$j]]["size"])) {
$size = " size=\"" . $dsc["cols"][$keys[$j]]["size"] . "\" ";
} else {
$size = "";
}
if (isset($dsc["cols"][$keys[$j]]["happen_domain"]) && preg_match("/" . $dsc["cols"][$keys[$j]]["happen_domain"] . "\$/", $a[$keys[$j]])) {
$input_disp_value = substr($a[$keys[$j]], 0, strlen($a[$keys[$j]]) - strlen($dsc["cols"][$keys[$j]]["happen_domain"]));
$happen = $dsc["cols"][$keys[$j]]["happen_domain"];
} else {
if ($dsc["cols"][$keys[$j]]["type"] != "readonly") {
$input_disp_value = $a[$keys[$j]];
}
$happen = "";
}
if (isset($dsc["cols"][$keys[$j]]["happen"])) {
$happen .= $dsc["cols"][$keys[$j]]["happen"];
}
if ($the_fld["type"] == "password") {
$genpass = autoGeneratePassButton($dsc["action"] . "_save_item_frm", $keys[$j]);
$input_disp_type = "password";
} else {
$genpass = "";
$input_disp_type = "text";
}
// Do this only for readonly
if ($dsc["cols"][$keys[$j]]["type"] == "readonly") {
$disabled = " READONLY";
isset($dsc["cols"][$keys[$j]]["default"]) ? $input_disp_value = $dsc["cols"][$keys[$j]]["default"] : ($input_disp_value = '');
isset($dsc["cols"][$keys[$j]]["happen"]) ? $happen = $dsc["cols"][$keys[$j]]["happen"] : ($happen = '');
}
if (isset($dsc["cols"][$keys[$j]]["callback"])) {
$retArray = $dsc["cols"][$keys[$j]]["callback"]($id_fld_value);
$input_disp_value = $retArray["value"];
$happen = $retArray["happen"];
}
$ctrl = "<input type=\"{$input_disp_type}\" {$size} name=\"" . $keys[$j] . "\" value=\"" . stripslashes($input_disp_value) . "\" {$disabled}>{$genpass}{$happen}";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "radio":
$nbr_choices = sizeof($dsc["cols"][$keys[$j]]["values"]);
$ctrl = "";
for ($x = 0; $x < $nbr_choices; $x++) {
if ($dsc["cols"][$keys[$j]]["values"][$x] == $a[$keys[$j]]) {
$selected = " checked ";
} else {
$selected = "";
}
$ctrl .= " <input type=\"radio\" name=\"" . $keys[$j] . "\" value=\"" . $dsc["cols"][$keys[$j]]["values"][$x] . "\" {$selected}> ";
$ctrl .= $dsc["cols"][$keys[$j]]["values"][$x];
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "checkbox":
if ($dsc["cols"][$keys[$j]]["values"][0] == $a[$keys[$j]]) {
$selected = " checked ";
} else {
$selected = " ";
}
$ctrl = "<input type=\"checkbox\" name=\"" . $keys[$j] . "\" value=\"yes\" " . $selected . ">";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "popup":
$nbr_choices = sizeof($dsc["cols"][$keys[$j]]["values"]);
$ctrl = "<select name=\"" . $keys[$j] . "\">";
for ($x = 0; $x < $nbr_choices; $x++) {
if ($dsc["cols"][$keys[$j]]["values"][$x] == $a[$keys[$j]]) {
$selected = " selected ";
} else {
$selected = "";
}
if (isset($dsc["cols"][$keys[$j]]["display_replace"][$x])) {
$display_val = $dsc["cols"][$keys[$j]]["display_replace"][$x];
} else {
$display_val = $dsc["cols"][$keys[$j]]["values"][$x];
}
$ctrl .= " <option value=\"" . $dsc["cols"][$keys[$j]]["values"][$x] . "\" {$selected}>{$display_val}</option>";
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
default:
$ctrl = "Not implemented yet!!!";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
}
}
$delete_button = "<form action=\"" . $_SERVER["PHP_SELF"] . "\">{$fw}\n\t\t\t<input type=\"hidden\" name=\"action\" value=\"" . $dsc["action"] . "_delete_item" . "\">\n\t\t\t<input type=\"hidden\" name=\"{$id_fldname}\" value=\"{$id_fld_value}\">\n\t\t\t" . dtcDeleteButton() . "</form>";
$out .= "<tr><td> </td><td><table cellspacing=\"0\" cellpadding=\"0\" border=\"0\">\n\t\t\t<tr><td>" . dtcApplyButton() . "</form></td><td>{$delete_button}</td></tr></table></td></tr>";
$out .= "</table>";
} else {
$out .= "No item by this number!";
}
}
return $out;
}
function drawDomainConfig($admin)
{
global $rub;
global $cc_code_array;
global $pro_mysql_product_table;
global $pro_mysql_domain_table;
global $pro_mysql_product_table;
global $pro_mysql_vps_table;
global $pro_mysql_dedicated_table;
global $pro_mysql_subdomain_table;
global $conf_site_addrs;
global $conf_use_shared_ssl;
$site_addrs = explode("|", $conf_site_addrs);
global $adm_login;
global $adm_pass;
$ret = "";
if (isset($admin["data"])) {
$domains = $admin["data"];
$nbr_domain = sizeof($domains);
} else {
$nbr_domain = 0;
}
// Shared hosting domain configuration
if ($nbr_domain > 0) {
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "change_domain_config_edit") {
$q = "UPDATE {$pro_mysql_domain_table} SET generate_flag='yes' WHERE name='" . $_REQUEST["name"] . "';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
updateUsingCron("gen_vhosts='yes',restart_apache='yes',gen_named='yes',reload_named ='yes'");
}
$dsc = array("table_name" => $pro_mysql_domain_table, "title" => _("Configuration of the domains"), "action" => "change_domain_config", "forward" => array("rub", "adm_login", "adm_pass"), "skip_deletion" => "yes", "skip_creation" => "yes", "where_condition" => "owner='{$adm_login}'", "cols" => array("name" => array("type" => "id", "display" => "yes", "legend" => _("Domain name")), "edithost" => array("type" => "hyperlink", "legend" => _("Vhost"), "text" => _("Customize")), "safe_mode" => array("type" => "checkbox", "help" => _("This will add a new subdomain switch yes/no in the client interface of this domain. Unticking this checkbox is NOT ENOUGH to disable the safe mode. Please go in the subdomains section of this domain name to finish the setup."), "legend" => _("PHP safe_mode"), "values" => array("yes", "no"), "display_replace" => array(_("No"), _("Yes"))), "sbox_protect" => array("type" => "checkbox", "help" => _("This will add a new subdomain switch yes/no in the client interface of this domain. Unticking this checkbox is NOT ENOUGH to disable the sbox CGI-BIN protection. Please go in the subdomains section of this domain name to finish the setup."), "legend" => _("CGI-BIN protection"), "values" => array("yes", "no"), "display_replace" => array(_("No"), _("Yes"))), "quota" => array("type" => "text", "help" => _("Quota disk in MBytes"), "legend" => _("Disk quota"), "size" => "6"), "max_email" => array("type" => "text", "legend" => _("Email max"), "size" => "3"), "max_lists" => array("type" => "text", "legend" => _("Lists max"), "size" => "3"), "max_ftp" => array("type" => "text", "legend" => _("Max FTP"), "size" => "3"), "max_subdomain" => array("type" => "text", "legend" => _("Subdomain max"), "size" => "3"), "max_ssh" => array("type" => "text", "legend" => _("Max SSH"), "size" => "3"), "ip_addr" => array("type" => "popup", "legend" => _("IP address"), "values" => $site_addrs), "backup_ip_addr" => array("type" => "text", "legend" => _("Backup Vhost IP address"), "size" => "14")));
$ret .= dtcDatagrid($dsc);
if (isset($_REQUEST["edithost"]) && isHostname($_REQUEST["edithost"])) {
$ret .= "<h3>" . _("Custom Apache directives for") . " " . $_REQUEST["edithost"] . "</h3>";
$q = "SELECT subdomain_name FROM {$pro_mysql_subdomain_table} WHERE domain_name='" . $_REQUEST["edithost"] . "';";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
for ($j = 0; $j < $n; $j++) {
$a = mysql_fetch_array($r);
if ($j != 0) {
$ret .= " - ";
}
$subname = $a["subdomain_name"];
$ret .= "<a href=\"" . $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}&rub={$rub}&edithost=" . $_REQUEST["edithost"] . "&subdomain={$subname}\">{$subname}</a>";
}
$ret .= "<br><br>";
if (isset($_REQUEST["subdomain"]) && isHostname($_REQUEST["subdomain"])) {
$ret .= "<u>" . _("Subdomain") . ": " . $_REQUEST["subdomain"] . ":</u><br>";
$ret .= _("Take care: no syntax checkings are done on your custom directives, doing a mistake here could lead to your web server not being able to restart!") . "<br>";
$q = "SELECT customize_vhost FROM {$pro_mysql_subdomain_table} WHERE subdomain_name='" . $_REQUEST["subdomain"] . "' AND domain_name='" . $_REQUEST["edithost"] . "';";
$r = mysql_query($q) or die("Cannot execute query \"{$q}\" ! line: " . __LINE__ . " file: " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n != 1) {
die("Domain name not found line " . __LINE__ . " file " . __FILE__);
}
$ze_dom = mysql_fetch_array($r);
$customization = $ze_dom["customize_vhost"];
/*$ret .= "<form action=\"".$_SERVER["PHP_SELF"]."\">
<input type=\"hidden\" name=\"rub\" value=\"$rub\">
<input type=\"hidden\" name=\"adm_login\" value=\"$adm_login\">
<input type=\"hidden\" name=\"adm_pass\" value=\"$adm_pass\">
<input type=\"hidden\" name=\"edithost\" value=\"".$_REQUEST["edithost"]."\">
<input type=\"hidden\" name=\"subdomain\" value=\"".$_REQUEST["subdomain"]."\">
<input type=\"hidden\" name=\"action\" value=\"set_vhost_custom_directives\">
<textarea cols=\"120\" rows=\"10\" name=\"custom_directives\">$customization</textarea><br>
<div class=\"input_btn_container\" onMouseOver=\"this.className='input_btn_container-hover';\" onMouseOut=\"this.className='input_btn_container';\">
<div class=\"input_btn_left\"></div>
<div class=\"input_btn_mid\"><input class=\"input_btn\" type=\"submit\" value=\"Ok\"></div>
<div class=\"input_btn_right\"></div>
</div>
</form><br><br><br>";*/
$cols = array("id" => array("type" => "id", "display" => "no", "legend" => _("ID")), "customize_vhost" => array("type" => "textarea", "help" => _("Custom apache directives. There is *no* syntax checking on this field!"), "cols" => "40", "rows" => "70", "legend" => _("Custom apache directives")), "redirect_url" => array("type" => "text", "help" => _("Redirect URL"), "size" => 50, "legend" => _("Redirect to:")), "php_memory_limit" => array("type" => "text", "help" => _("Maximum memory used by PHP session"), "size" => 3, "legend" => _("PHP memory limit")), "php_max_execution_time" => array("type" => "text", "help" => _("Maximum time a PHP script can execute"), "size" => 3, "legend" => _("Execution time")), "php_upload_max_filesize" => array("type" => "text", "help" => _("Maximum allowed size of uploaded file"), "size" => 2, "legend" => _("Max upload file size")), "php_post_max_size" => array("type" => "text", "help" => _("Maximum allowed size of POST"), "size" => 2, "legend" => _("Max POST file size")), "php_session_auto_start" => array("type" => "checkbox", "help" => _("Auto start of php sessions"), "size" => 2, "legend" => _("Session autostart"), "values" => array("yes", "no"), "display_replace" => array(_("No"), _("Yes"))), "php_allow_url_fopen" => array("type" => "checkbox", "help" => _("Allows to open URLs with PHP's fopen() function."), "size" => 2, "legend" => _("Allow URL fOpen()"), "values" => array("yes", "no"), "display_replace" => array(_("No"), _("Yes"))));
if ($conf_use_shared_ssl == "yes") {
$cols["use_shared_ssl"] = array("type" => "checkbox", "help" => _("Use a shared SSL certificate for this subdomain."), "size" => 2, "legend" => _("SSL"), "values" => array("yes", "no"), "display_replace" => array(_("No"), _("Yes")));
}
$dsc = array("table_name" => $pro_mysql_subdomain_table, "title" => _("Configuration of the subdomain"), "action" => "change_domain_config", "forward" => array("subdomain", "edithost", "rub", "adm_login", "adm_pass"), "skip_deletion" => "yes", "skip_creation" => "yes", "where_condition" => "subdomain_name='" . $_REQUEST["subdomain"] . "' AND domain_name='" . $_REQUEST["edithost"] . "'", "cols" => $cols);
$ret .= dtcDatagrid($dsc);
}
}
}
// VPS configuration
if (isset($admin["vps"])) {
$vpses = $admin["vps"];
$nbr_vps = sizeof($vpses);
} else {
$nbr_vps = 0;
}
if ($nbr_vps > 0) {
$q = "SELECT id,name FROM {$pro_mysql_product_table} WHERE heb_type='vps' AND renew_prod_id='0';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
$prod_name = array();
$prod_id = array();
for ($i = 0; $i < $n; $i++) {
$a = mysql_fetch_array($r);
$prod_name[] = $a["name"];
$prod_id[] = $a["id"];
}
$dsc = array("table_name" => $pro_mysql_vps_table, "title" => _("Configuration of the VPSes"), "action" => "change_vps_config", "forward" => array("rub", "adm_login", "adm_pass"), "skip_deletion" => "yes", "skip_creation" => "yes", "where_condition" => "owner='{$adm_login}'", "order_by" => "vps_server_hostname,vps_xen_name", "cols" => array("id" => array("type" => "id", "display" => "no", "legend" => "id"), "vps_server_hostname" => array("type" => "info", "legend" => _("VPS Server")), "vps_xen_name" => array("type" => "info", "legend" => _("VPS Name")), "start_date" => array("type" => "text", "size" => "10", "help" => _("Format: YYYY-MM-DD."), "legend" => _("Registration")), "expire_date" => array("type" => "text", "help" => _("Format: YYYY-MM-DD."), "size" => "10", "legend" => _("Expiration")), "hddsize" => array("type" => "text", "help" => _("Hard drive space in MBytes. You will need to manually do a lvresize on the dom0 of your VPS server to activate the changes."), "size" => "5", "legend" => "HDD"), "ramsize" => array("type" => "text", "help" => _("Memory size in MBytes. You will need to manually change the RAM size in the /etc/xen/xenXX startup configuration file and reboot the VPS to activate the changes."), "size" => "5", "legend" => "RAM"), "bandwidth_per_month_gb" => array("type" => "text", "size" => "5", "help" => _("Bandwidth per month in MBytes."), "legend" => _("Bandwidth")), "product_id" => array("type" => "popup", "legend" => _("Product ID"), "values" => $prod_id, "display_replace" => $prod_name)));
$ret .= dtcDatagrid($dsc);
}
// Dedicated servers configuration
if (isset($admin["dedicated"])) {
$servers = $admin["dedicated"];
$nbr_server = sizeof($servers);
} else {
$nbr_server = 0;
}
if ($nbr_server > 0) {
$q = "SELECT id,name FROM {$pro_mysql_product_table} WHERE heb_type='server' AND renew_prod_id='0';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
$prod_name = array();
$prod_id = array();
for ($i = 0; $i < $n; $i++) {
$a = mysql_fetch_array($r);
$prod_name[] = $a["name"];
$prod_id[] = $a["id"];
}
$dsc = array("table_name" => $pro_mysql_dedicated_table, "title" => "", "action" => _("Configuration of the dedicated servers"), "forward" => array("rub", "adm_login", "adm_pass"), "skip_deletion" => "yes", "skip_creation" => "yes", "where_condition" => "owner='{$adm_login}'", "cols" => array("id" => array("type" => "id", "display" => "no", "legend" => "id"), "server_hostname" => array("type" => "text", "legend" => _("Server name")), "start_date" => array("type" => "text", "help" => _("Format: YYYY-MM-DD."), "size" => "10", "legend" => _("Registration")), "expire_date" => array("type" => "text", "help" => _("Format: YYYY-MM-DD."), "size" => "10", "legend" => _("Expiration")), "hddsize" => array("type" => "text", "help" => _("Hard drive size in MBytes."), "size" => "5", "legend" => "HDD"), "ramsize" => array("type" => "text", "help" => _("Memory size in MBytes."), "size" => "5", "legend" => "RAM"), "bandwidth_per_month_gb" => array("type" => "text", "help" => _("Bandwidth per month in GBytes."), "size" => "5", "legend" => _("Bandwidth per month")), "country_code" => array("type" => "popup", "legend" => _("Country"), "values" => array_keys($cc_code_array), "display_replace" => array_values($cc_code_array)), "product_id" => array("type" => "popup", "legend" => _("Product"), "values" => $prod_id, "display_replace" => $prod_name)));
$ret .= dtcDatagrid($dsc);
}
return $ret;
}
$login = $_REQUEST["login"];
$pass = $_REQUEST["pass"];
if (isset($_REQUEST["ip"])) {
$ip = $_REQUEST["ip"];
}
$domain = $_REQUEST["domain"];
if (!isset($login) || $login == "" || !isset($pass) || $pass == "") {
die("Incorrect params");
}
if (!isFtpLogin($login)) {
die("Requested login does not look like to be correct. It should be made only with letters, numbers, \".\" or \"-\" sign.");
}
if (!isDTCPassword($pass)) {
die("Requested pass does not look like to be correct. It should be made only with letters, numbers, \".\" or \"-\" sign.");
}
if (!isHostname($domain)) {
die("Requested domain name does not looklike to be correct. Please check !");
}
$query = "SELECT * FROM {$pro_mysql_subdomain_table} WHERE login='******' AND pass='******' AND domain_name='{$domain}';";
$result = mysql_query($query) or die("Cannot query: \"{$query}\" !!!" . mysql_error());
$num_rows = mysql_num_rows($result);
if ($num_rows != 1) {
die("Incorrect login, pass or domain name !");
} else {
if (!isset($ip) || $ip == "") {
$ip = $_SERVER["REMOTE_ADDR"];
} else {
if (!isIP($ip)) {
die("Incorrect IP format !");
}
}
function drawNameTransfer($admin, $given_fqdn = "none")
{
global $adm_login;
global $adm_pass;
global $addrlink;
global $registration_added_price;
global $pro_mysql_domain_table;
global $pro_mysql_client_table;
global $registry_api_modules;
global $form_enter_dns_infos;
global $form_enter_auth_code;
global $whois_forwareded_params;
global $secpayconf_currency_letters;
global $allTLD;
get_secpay_conf();
$out = "";
if (isset($_REQUEST["toreg_domain"])) {
$toreg_domain = $_REQUEST["toreg_domain"];
}
if (isset($_REQUEST["toreg_extention"])) {
$toreg_extention = $_REQUEST["toreg_extention"];
}
if ($given_fqdn != "none" && !isset($toreg_extention)) {
$c = strrpos($given_fqdn, ".");
$toreg_extention = find_domain_extension($given_fqdn);
$toreg_domain = str_replace($toreg_extention, "", $given_fqdn);
# echo "extension: $toreg_extention domain: $toreg_domain<br />";
}
// Step 1: enter domain name and check domain transferability
$form_start = "<form action=\"" . $_SERVER["PHP_SELF"] . "\">\n<input type=\"hidden\" name=\"adm_login\" value=\"{$adm_login}\">\n<input type=\"hidden\" name=\"adm_pass\" value=\"{$adm_pass}\">\n<input type=\"hidden\" name=\"addrlink\" value=\"{$addrlink}\">\n<input type=\"hidden\" name=\"dtcrm_action\" value=\"transfer_domain\">\n<input type=\"hidden\" name=\"add_regortrans\" value=\"transfer\">\n<input type=\"hidden\" name=\"add_domain_type\" value=\"" . $_REQUEST["add_domain_type"] . "\">\n";
$out .= "<br><h3>" . _("Transfer from another registrar to this server:") . "</h3>\n<i><u>" . _("Step1: check if domain is transferable") . "</u></i>";
# echo "Checking1 $toreg_domain$toreg_extention<br />";
if (!isset($toreg_extention) || $toreg_extention == "" || !isset($toreg_domain) || $toreg_domain == "" || $toreg_extention != ".com" && $toreg_extention != ".net" && $toreg_extention != ".org" && $toreg_extention != ".biz" && $toreg_extention != ".name" && $toreg_extention != ".info" && $toreg_extention != ".co.uk") {
$out .= "{$form_start}<br>\n" . _("Please enter the domain name you wish to transfer:") . "<br>\n" . make_registration_tld_popup();
return $out;
}
$form_start .= "<input type=\"hidden\" name=\"toreg_domain\" value=\"{$toreg_domain}\">\n<input type=\"hidden\" name=\"toreg_extention\" value=\"{$toreg_extention}\">";
$regz = registry_check_transfer($toreg_domain . $toreg_extention);
# echo "Checking2 $toreg_domain$toreg_extention<br />";
if ($regz["is_success"] != 1) {
die("<font color=\"red\">" . _("TRANSFER CHECK FAILED: registry server didn't reply successfuly.") . "</font>");
}
if ($regz["attributes"]["transferrable"] != 1) {
$out .= "<br><font color=\"red\">" . _("TRANSFER CHECK FAILED") . "</font><br>\n" . _("Server said: ") . $regz["attributes"]["reason"] . "<br>\n{$form_start}<br>\n" . _("Please enter the domain name you wish to transfer:") . "<br>\n" . make_registration_tld_popup();
return $out;
}
$out .= "<br><font color=\"green\">" . _("TRANSFER CHECK SUCCESSFUL") . "</font><br><br>";
// Step 2: enter whois infos
$out .= "<i><u>" . _("Step 2: select contacts for domain transfer") . "</u></i><br>";
if (!isset($_REQUEST["dtcrm_owner_hdl"]) || $_REQUEST["dtcrm_owner_hdl"] == "" || !isset($_REQUEST["dtcrm_admin_hdl"]) || $_REQUEST["dtcrm_admin_hdl"] == "" || !isset($_REQUEST["dtcrm_billing_hdl"]) || $_REQUEST["dtcrm_billing_hdl"] == "" || !isset($_REQUEST["toreg_dns1"]) || $_REQUEST["toreg_dns1"] == "" || !isset($_REQUEST["toreg_dns2"]) || $_REQUEST["toreg_dns2"] == "") {
$out .= $form_start . whoisHandleSelection($admin);
$out .= $form_enter_dns_infos;
$out .= $form_enter_auth_code;
$out .= "<br>" . submitButtonStart() . _("Proceed to transfer") . submitButtonEnd() . "</form>";
return $out;
}
$form_start .= $whois_forwareded_params;
$out .= "DNS1: " . $_REQUEST["toreg_dns1"] . "<br>";
$out .= "DNS2: " . $_REQUEST["toreg_dns2"] . "<br><br>";
$fqdn = $toreg_domain . $toreg_extention;
$fqdn_price = $price = find_domain_price($toreg_extention);
if ($admin["info"]["id_client"] != 0) {
$remaining = $admin["client"]["dollar"];
} else {
$out .= _("You don't have a client ID. Please contact us.");
$remaining = 0;
return $out;
}
// Step 3: check account balance and transfer the domain name after transaction aprooval
$out .= "<i><u>Step3: Proceed for transfer</u></i><br>";
$out .= _("Remaining on your account: ") . " " . $remaining . " {$secpayconf_currency_letters}<br>\n" . _("Total price: ") . " " . $fqdn_price . " {$secpayconf_currency_letters}<br><br>";
if (!isset($_REQUEST["authcode"])) {
$out .= $form_enter_auth_code;
} else {
$out .= "Auth Code:" . " " . $_REQUEST["authcode"] . "<br />";
}
if (isset($_REQUEST["inner_action"]) && $_REQUEST["inner_action"] == "return_from_paypal_domain_add") {
$ze_refund = isPayIDValidated(addslashes($_REQUEST["pay_id"]));
if ($ze_refund == 0) {
$out .= "<font color=\"red\">" . _("The transaction failed, please try again!") . "</font>";
} else {
$out .= "<font color=\"green\">" . _("Your account has been credited!") . "</font><br>";
$q = "UPDATE {$pro_mysql_client_table} SET dollar = dollar+" . $ze_refund . " WHERE id='" . $admin["info"]["id_client"] . "';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said " . mysql_error());
$remaining += $ze_refund;
}
}
if ($fqdn_price > $remaining) {
$payid = createCreditCardPaiementID($fqdn_price, $admin["info"]["id_client"], "Domain name registration " . $_REQUEST["toreg_extention"], "no");
$return_url = $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}" . "&addrlink={$addrlink}&add_domain_type=" . $_REQUEST["add_domain_type"] . "&add_regortrans=" . $_REQUEST["add_regortrans"] . "&toreg_domain=" . $_REQUEST["toreg_domain"] . "&toreg_extention=" . $_REQUEST["toreg_extention"] . "&dtcrm_owner_hdl=" . $_REQUEST["dtcrm_owner_hdl"] . "&dtcrm_admin_hdl=" . $_REQUEST["dtcrm_admin_hdl"] . "&dtcrm_billing_hdl=" . $_REQUEST["dtcrm_billing_hdl"] . "&toreg_dns1=" . $_REQUEST["toreg_dns1"] . "&toreg_dns2=" . $_REQUEST["toreg_dns2"] . "&toreg_dns3=" . $_REQUEST["toreg_dns3"] . "&toreg_dns4=" . $_REQUEST["toreg_dns4"] . "&toreg_dns5=" . $_REQUEST["toreg_dns5"] . "&toreg_dns6=" . $_REQUEST["toreg_dns6"] . "&toreg_period=1&inner_action=return_from_paypal_domain_add&payid={$payid}";
if (isset($_REQUEST["action"])) {
$return_url .= "&action=" . $_REQUEST["action"];
}
if (isset($_REQUEST["dtcrm_action"])) {
$return_url .= "&dtcrm_action=" . $_REQUEST["dtcrm_action"];
}
$paybutton = paynowButton($payid, $fqdn_price, "Domain name registration " . $_REQUEST["toreg_extention"], $return_url);
$out .= _("You currently don't have enough funds on your account. You will be redirected to our payment system. Please click on the button below to pay.") . "<br><br>\n{$paybutton}";
return $out;
}
// Check for confirmation
if (!isset($_REQUEST["toreg_confirm_transfert"]) || $_REQUEST["toreg_confirm_transfert"] != "yes") {
$out .= _("You have enough funds on your account to proceed with transfert. Press the confirm button to proceed.") . "<br><br>\n{$form_start}\n<input type=\"hidden\" name=\"toreg_confirm_transfert\" value=\"yes\">\n<input type=\"hidden\" name=\"authcode\" value=\"" . $_REQUEST['authcode'] . "\">\n" . submitButtonStart() . _("Proceed to name-transfert") . submitButtonEnd() . "\n</form>";
return $out;
}
///////////////////////////////////////
// START OF DOMAIN NAME TRANSFERT //
$owner_id = $_REQUEST["dtcrm_owner_hdl"];
$billing_id = $_REQUEST["dtcrm_billing_hdl"];
$admin_id = $_REQUEST["dtcrm_admin_hdl"];
$teck_id = $_REQUEST["dtcrm_teck_hdl"];
$authcode = $_REQUEST["authcode"];
$contacts = getContactsArrayFromID($owner_id, $billing_id, $admin_id, $teck_id);
$dns_servers = array();
for ($i = 1; $i < 7; $i++) {
if (isset($_REQUEST["toreg_dns{$i}"]) && isHostname($_REQUEST["toreg_dns{$i}"])) {
$dns_servers[] = $_REQUEST["toreg_dns{$i}"];
} else {
if ($i == 1) {
$dns_servers[] = $conf_addr_primary_dns;
} else {
if ($i == 2) {
$dns_servers[] = $conf_addr_secondary_dns;
}
}
}
}
$q = "SELECT * FROM {$pro_mysql_domain_table} WHERE owner='{$adm_login}';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n > 0) {
$new_user = "******";
} else {
$new_user = "******";
}
// sleep(2);
$regz = registry_transfert_domain($adm_login, $adm_pass, $fqdn, $contacts, $dns_servers, $new_user, $authcode);
if ($regz["is_success"] != 1) {
$out .= "<font color=\"red\"><b>" . _("Transfert failed") . "</b></font><br>\n" . _("Server said: ") . "<i>" . $regz["response_text"] . "</i>";
return $out;
}
$out .= "<font color=\"green\"><b>Transfert succesfull</b></font><br>\nServer said: <i>" . $regz["response_text"] . "</i><br>";
$operation = $remaining - $fqdn_price;
$query = "UPDATE {$pro_mysql_client_table} SET dollar='{$operation}' WHERE id='" . $admin["info"]["id_client"] . "';";
mysql_query($query) or die("Cannot query \"{$query}\" !!!" . mysql_error());
$q = "SELECT * FROM {$pro_mysql_domain_table} WHERE domain='{$fqdn}';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
// Is this a transfer of a domain already hosted?
if ($n == 0) {
addDomainToUser($adm_login, $adm_pass, $fqdn, $adm_pass);
}
if ($regz["is_success"] == 1) {
$id = find_registry_id($fqdn);
$q = "UPDATE {$pro_mysql_domain_table} SET registrar='" . $registry_api_modules[$id]["name"] . "' WHERE name='{$fqdn}';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
unset($ns_ar);
$ns_ar = array();
$ns_ar[] = $_REQUEST["toreg_dns1"];
$ns_ar[] = $_REQUEST["toreg_dns2"];
if (isset($_REQUEST["toreg_dns3"]) && $_REQUEST["toreg_dns3"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns3"];
}
if (isset($_REQUEST["toreg_dns4"]) && $_REQUEST["toreg_dns4"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns4"];
}
if (isset($_REQUEST["toreg_dns5"]) && $_REQUEST["toreg_dns5"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns5"];
}
if (isset($_REQUEST["toreg_dns6"]) && $_REQUEST["toreg_dns6"] != "") {
$ns_ar[] = $_REQUEST["toreg_dns6"];
}
newWhois($fqdn, $owner_id, $billing_id, $admin_id, $teck_id, $period = "1", $ns_ar, $registry_api_modules[$id]["name"]);
}
$out .= "<font color=\"green\"><b>" . _("Successfully added your domain name to the hosting database") . "</b></font><br>";
$out .= _("Click") . " " . "<a href=\"" . $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}&addrlink={$addrlink}\">" . _("here") . "</a>" . " " . _("to refresh the menu or add another domain name.");
// END OF DOMAIN NAME TRANSFERT //
/////////////////////////////////////
return $out;
}
die;
}
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "export_domain") {
checkLoginPassAndDomain($adm_login, $adm_pass, $edit_domain);
$file_name = $edit_domain . '.dtc.xml';
$xml = exportDomain($edit_domain, $adm_login);
header('Content-type: application/dtc+xml');
header('Content-Disposition: attachment; filename="' . $file_name . '"');
echo $xml;
die;
}
if (isset($_REQUEST["set_domain_parcking"]) && $_REQUEST["set_domain_parcking"] == "Ok") {
checkLoginPassAndDomain($adm_login, $adm_pass, $edit_domain);
if ($_REQUEST["domain_parking_value"] != "no-parking") {
// Check for mysql insertion and that the user owns the domain he wants to send it's domain to parking to
if (!isHostname($_REQUEST["domain_parking_value"]) || $_REQUEST["domain_parking_value"] == $edit_domain) {
if ($_REQUEST["domain_parking_value"] == $edit_domain) {
echo "You cannot set a domain to be parked to itself";
} else {
echo "Not a hostname: " . $_REQUEST["domain_parking_value"];
}
$set_to = "no-parking";
} else {
checkLoginPassAndDomain($adm_login, $adm_pass, $_REQUEST["domain_parking_value"]);
// Check that the aimed domain is not in parking as well: this could happen only with "hacking the URL", but who knows...
$q = "SELECT domain_parking FROM {$pro_mysql_domain_table} WHERE name='" . $_REQUEST["domain_parking_value"] . "' AND domain_parking='no-parking'";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said " . mysql_error());
$n = mysql_num_rows($r);
if ($n != 1) {
echo "Target domain " . $_REQUEST["domain_parking_value"] . " is already in parking " . __LINE__ . " file " . __FILE__;
$set_to = "no-parking";
