We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
desec-stack
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 3fdd2012b7
Branches Tags
desec-stack
/
api
/
desecapi
/
pdns.py

pdns.py 4.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151 
  1. import requests
    2. 

  2. import json
    3. 

  3. from desecapi import settings
    4. 

  4. from desecapi.exceptions import PdnsException
    5. 

  5. 

  6. 

  7. headers_nslord = {
    8. 

  8.     'Accept': 'application/json',
    9. 

  9.     'User-Agent': 'desecapi',
    10. 

  10.     'X-API-Key': settings.NSLORD_PDNS_API_TOKEN,
    11. 

  11. }
    12. 

  12. 

  13. headers_nsmaster = {
    14. 

  14.     'User-Agent': 'desecapi',
    15. 

  15.     'X-API-Key': settings.NSMASTER_PDNS_API_TOKEN,
    16. 

  16. }
    17. 

  17. 

  18. 

  19. def _pdns_delete(url):
    20. 

  20.     # We first delete the zone from nslord, the main authoritative source of our DNS data.
    21. 

  21.     # However, we do not want to wait for the zone to expire on the slave ("nsmaster").
    22. 

  22.     # We thus issue a second delete request on nsmaster to delete the zone there immediately.
    23. 

  23.     r1 = requests.delete(settings.NSLORD_PDNS_API + url, headers=headers_nslord)
    24. 

  24.     if r1.status_code < 200 or r1.status_code >= 300:
    25. 

  25.         # Deletion technically does not fail if the zone didn't exist in the first place
    26. 

  26.         if r1.status_code == 422 and 'Could not find domain' in r1.text:
    27. 

  27.             pass
    28. 

  28.         else:
    29. 

  29.             raise PdnsException(r1)
    30. 

  30. 

  31.     # Delete from nsmaster as well
    32. 

  32.     r2 = requests.delete(settings.NSMASTER_PDNS_API + url, headers=headers_nsmaster)
    33. 

  33.     if r2.status_code < 200 or r2.status_code >= 300:
    34. 

  34.         # Deletion technically does not fail if the zone didn't exist in the first place
    35. 

  35.         if r2.status_code == 422 and 'Could not find domain' in r2.text:
    36. 

  36.             pass
    37. 

  37.         else:
    38. 

  38.             raise PdnsException(r2)
    39. 

  39. 

  40.     return (r1, r2)
    41. 

  41. 

  42. 

  43. def _pdns_post(url, body):
    44. 

  44.     r = requests.post(settings.NSLORD_PDNS_API + url, data=json.dumps(body), headers=headers_nslord)
    45. 

  45.     if r.status_code < 200 or r.status_code >= 300:
    46. 

  46.         raise PdnsException(r)
    47. 

  47.     return r
    48. 

  48. 

  49. 

  50. def _pdns_patch(url, body):
    51. 

  51.     r = requests.patch(settings.NSLORD_PDNS_API + url, data=json.dumps(body), headers=headers_nslord)
    52. 

  52.     if r.status_code < 200 or r.status_code >= 300:
    53. 

  53.         raise PdnsException(r)
    54. 

  54.     return r
    55. 

  55. 

  56. 

  57. def _pdns_get(url):
    58. 

  58.     r = requests.get(settings.NSLORD_PDNS_API + url, headers=headers_nslord)
    59. 

  59.     if r.status_code < 200 or r.status_code >= 400:
    60. 

  60.         raise PdnsException(r)
    61. 

  61.     return r
    62. 

  62. 

  63. 

  64. def _pdns_put(url):
    65. 

  65.     r = requests.put(settings.NSLORD_PDNS_API + url, headers=headers_nslord)
    66. 

  66.     if r.status_code < 200 or r.status_code >= 500:
    67. 

  67.         raise PdnsException(r)
    68. 

  68.     return r
    69. 

  69. 

  70. 

  71. def create_zone(domain, nameservers, kind='NATIVE'):
    72. 

  72.     """
    73. 

  73.     Commands pdns to create a zone with the given name and nameservers.
    74. 

  74.     """
    75. 

  75.     name = domain.name
    76. 

  76.     if not name.endswith('.'):
    77. 

  77.         name += '.'
    78. 

  78. 

  79.     payload = {'name': name, 'kind': kind.upper(), 'masters': [],
    80. 

  80.                'nameservers': nameservers}
    81. 

  81.     _pdns_post('/zones', payload)
    82. 

  82. 

  83. 

  84. def delete_zone(domain):
    85. 

  85.     """
    86. 

  86.     Commands pdns to delete a zone with the given name.
    87. 

  87.     """
    88. 

  88.     _pdns_delete('/zones/' + domain.pdns_id)
    89. 

  89. 

  90. 

  91. def get_keys(domain):
    92. 

  92.     """
    93. 

  93.     Retrieves a dict representation of the DNSSEC key information
    94. 

  94.     """
    95. 

  95.     try:
    96. 

  96.         r = _pdns_get('/zones/%s/cryptokeys' % domain.pdns_id)
    97. 

  97.         keys = [{k: key[k] for k in ('dnskey', 'ds', 'flags', 'keytype')}
    98. 

  98.                 for key in r.json()
    99. 

  99.                 if key['active'] and key['keytype'] in ['csk', 'ksk']]
    100. 

  100.     except:
    101. 

  101.         keys = []
    102. 

  102. 

  103.     return keys
    104. 

  104. 

  105. 

  106. def get_zone(domain):
    107. 

  107.     """
    108. 

  108.     Retrieves a dict representation of the zone from pdns
    109. 

  109.     """
    110. 

  110.     r = _pdns_get('/zones/' + domain.pdns_id)
    111. 

  111. 

  112.     return r.json()
    113. 

  113. 

  114. 

  115. def get_rrset_datas(domain):
    116. 

  116.     """
    117. 

  117.     Retrieves a dict representation of the RRsets in a given zone
    118. 

  118.     """
    119. 

  119.     return [{'domain': domain,
    120. 

  120.              'subname': rrset['name'][:-(len(domain.name) + 2)],
    121. 

  121.              'type': rrset['type'],
    122. 

  122.              'records_data': [{'content': record['content']}
    123. 

  123.                               for record in rrset['records']],
    124. 

  124.              'ttl': rrset['ttl']}
    125. 

  125.             for rrset in get_zone(domain)['rrsets']]
    126. 

  126. 

  127. 

  128. def set_rrset(rrset, notify=True):
    129. 

  129.     return set_rrsets(rrset.domain, [rrset], notify=notify)
    130. 

  130. 

  131. 

  132. def set_rrsets(domain, rrsets, notify=True):
    133. 

  133.     data = {'rrsets':
    134. 

  134.         [{'name': rrset.name, 'type': rrset.type, 'ttl': rrset.ttl,
    135. 

  135.           'changetype': 'REPLACE',
    136. 

  136.           'records': [{'content': record.content, 'disabled': False}
    137. 

  137.                       for record in rrset.records.all()]
    138. 

  138.           }
    139. 

  139.          for rrset in rrsets]
    140. 

  140.     }
    141. 

  141.     _pdns_patch('/zones/' + domain.pdns_id, data)
    142. 

  142. 

  143.     if notify:
    144. 

  144.         notify_zone(domain)
    145. 

  145. 

  146. 

  147. def notify_zone(domain):
    148. 

  148.     """
    149. 

  149.     Commands pdns to notify the zone to the pdns slaves.
    150. 

  150.     """
    151. 

  151.     _pdns_put('/zones/%s/notify' % domain.pdns_id)
    152.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5