We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
servnest
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 18d976217b
Branches Tags
servnest
/
pages
/
ns
/
edit.php

edit.php 5.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142 
  1. <?php
    2. 

  2. 

  3. if (processForm() AND isset($_POST['zone-content'])) { // Update zone
    4. 

  4. 	nsCheckZonePossession($_POST['zone']);
    5. 

  5. 

  6. 	// Get current SOA record
    7. 

  7. 	$current_zone_content = file_get_contents(CONF['ns']['knot_zones_path'] . '/' . $_POST['zone'] . 'zone');
    8. 

  8. 	if ($current_zone_content === false)
    9. 

  9. 		output(500, 'Unable to read zone file.');
    10. 

  10. 	if (preg_match('/^(?<soa>' . preg_quote($_POST['zone']) . '[\t ]+[0-9]{1,16}[\t ]+SOA[\t ]+.+)$/m', $current_zone_content, $matches) !== 1)
    11. 

  11. 		output(500, 'Unable to get current serial from zone file.');
    12. 

  12. 

  13. 	// Generate new zone content
    14. 

  14. 	$new_zone_content = $matches['soa'] . LF;
    15. 

  15. 	if (strlen($_POST['zone-content']) > ZONE_MAX_CHARACTERS)
    16. 

  16. 		output(403, 'La zone n\'est pas autorisée à dépasser ' . ZONE_MAX_CHARACTERS . ' caractères.');
    17. 

  17. 	foreach (explode("\r\n", $_POST['zone-content']) as $line) {
    18. 

  18. 		if ($line === '') continue;
    19. 

  19. 		if (preg_match('/^(?<domain>[a-z0-9@._-]+)(?:[\t ]+(?<ttl>[0-9]{1,16}))?(?:[\t ]+IN)?[\t ]+(?<type>[A-Z]{1,16})[\t ]+(?<value>.+)$/', $line, $matches) !== 1)
    20. 

  20. 			output(403, 'La zone est mal formatée (selon Niver).');
    21. 

  21. 		if (in_array($matches['type'], ALLOWED_TYPES, true) !== true)
    22. 

  22. 			output(403, 'Le type <code>' . $matches['type'] . '</code> n\'est pas autorisé.');
    23. 

  23. 		if ($matches['ttl'] !== '' AND $matches['ttl'] < MIN_TTL)
    24. 

  24. 			output(403, 'Les TTLs inférieurs à ' . MIN_TTL . ' secondes ne sont pas autorisés.');
    25. 

  25. 		if ($matches['ttl'] !== '' AND $matches['ttl'] > MAX_TTL)
    26. 

  26. 			output(403, 'Les TTLs supérieurs à ' . MAX_TTL . ' secondes ne sont pas autorisés.');
    27. 

  27. 		$new_zone_content .= $matches['domain'] . ' ' . (($matches['ttl'] === '') ? DEFAULT_TTL : $matches['ttl']) . ' ' . $matches['type'] . ' ' . $matches['value'] . LF;
    28. 

  28. 	}
    29. 

  29. 

  30. 	// Send the zone content to kzonecheck's stdin
    31. 

  31. 	$process = proc_open(CONF['ns']['kzonecheck_path'] . ' --origin ' . $_POST['zone'] . ' --dnssec off -', [0 => ['pipe', 'r']], $pipes);
    32. 

  32. 	if (is_resource($process) !== true)
    33. 

  33. 		output(500, 'Can\'t spawn kzonecheck.');
    34. 

  34. 	fwrite($pipes[0], $new_zone_content);
    35. 

  35. 	fclose($pipes[0]);
    36. 

  36. 	if (proc_close($process) !== 0)
    37. 

  37. 		output(403, 'Le contenu de zone envoyé n\'est pas valide (selon <code>kzonecheck</code>).');
    38. 

  38. 

  39. 	ratelimit();
    40. 

  40. 

  41. 	exec(CONF['dns']['knotc_path'] . ' --blocking --timeout 10 zone-freeze ' . $_POST['zone'], $output, $return_code);
    42. 

  42. 	if ($return_code !== 0)
    43. 

  43. 		output(500, 'Failed to freeze zone file.', $output);
    44. 

  44. 

  45. 	exec(CONF['dns']['knotc_path'] . ' --blocking --timeout 10 zone-flush ' . $_POST['zone'], $output, $return_code);
    46. 

  46. 	if ($return_code !== 0)
    47. 

  47. 		output(500, 'Failed to flush zone file.', $output);
    48. 

  48. 

  49. 	if (file_put_contents(CONF['ns']['knot_zones_path'] . '/' . $_POST['zone'] . 'zone', $new_zone_content) === false)
    50. 

  50. 		output(500, 'Failed to write zone file.');
    51. 

  51. 

  52. 	exec(CONF['dns']['knotc_path'] . ' --blocking --timeout 10 zone-reload ' . $_POST['zone'], $output, $return_code);
    53. 

  53. 	if ($return_code !== 0)
    54. 

  54. 		output(500, 'Failed to reload zone file.', $output);
    55. 

  55. 

  56. 	exec(CONF['dns']['knotc_path'] . ' --blocking --timeout 10 zone-thaw ' . $_POST['zone'], $output, $return_code);
    57. 

  57. 	if ($return_code !== 0)
    58. 

  58. 		output(500, 'Failed to thaw zone file.', $output);
    59. 

  59. 

  60. 	usleep(1000000);
    61. 

  61. 

  62. 	output(200, 'La zone a été mise à jour.');
    63. 

  63. }
    64. 

  64. 

  65. ?>
    66. 

  66. 

  67. <form method="post">
    68. 

  68. 	<label for="zone">Zone à modifier</label>
    69. 

  69. 	<br>
    70. 

  70. 	<select required="" name="zone" id="zone">
    71. 

  71. 		<option value="" disabled="" selected="">-</option>
    72. 

  72. <?php
    73. 

  73. if (isset($_SESSION['username']))
    74. 

  74. 	foreach (nsListUserZones($_SESSION['username']) as $zone)
    75. 

  75. 		echo '		<option value="' . $zone . '">' . $zone . '</option>' . LF;
    76. 

  76. ?>
    77. 

  77. 	</select>
    78. 

  78. 	<br>
    79. 

  79. 	<input type="submit" value="Afficher">
    80. 

  80. </form>
    81. 

  81. 

  82. <?php
    83. 

  83. 

  84. if (processForm()) { // Display zone
    85. 

  85. 	nsCheckZonePossession($_POST['zone']);
    86. 

  86. 

  87. 	$zone_content = file_get_contents(CONF['ns']['knot_zones_path'] . '/' . $_POST['zone'] . 'zone');
    88. 

  88. 	if ($zone_content === false)
    89. 

  89. 		output(500, 'Unable to read zone file.');
    90. 

  90. 

  91. 	$displayed_zone_content = '';
    92. 

  92. 	foreach(explode(LF, $zone_content) as $zone_line) {
    93. 

  93. 		if (empty($zone_line) OR str_starts_with($zone_line, ';'))
    94. 

  94. 			continue;
    95. 

  95. 		if (preg_match('/^(?:(?:[a-z0-9_-]{1,63}\.){1,127})?' . preg_quote($_POST['zone'], '/') . '[\t ]+[0-9]{1,8}[\t ]+(?<type>[A-Z]{1,16})[\t ]+.+$/', $zone_line, $matches)) {
    96. 

  96. 			if (in_array($matches['type'], ALLOWED_TYPES, true) !== true)
    97. 

  97. 				continue;
    98. 

  98. 			$displayed_zone_content .= $zone_line . LF;
    99. 

  99. 		}
    100. 

  100. 	}
    101. 

  101. 	$displayed_zone_content .= LF;
    102. 

  102. 

  103. ?>
    104. 

  104. <form method="post">
    105. 

  105. 	<input type="hidden" name="zone" value="<?= $_POST['zone'] ?>">
    106. 

  106. 

  107. 	<label for="zone-content">Nouveau contenu de la zone <code><strong><?= $_POST['zone'] ?></strong></code></label>
    108. 

  108. 	<textarea id="zone-content" name="zone-content" wrap="off" rows="<?= substr_count($displayed_zone_content, LF) + 1 ?>"><?= htmlspecialchars($displayed_zone_content) ?></textarea>
    109. 

  109. 	<br>
    110. 

  110. 	<input type="submit" value="Remplacer">
    111. 

  111. </form>
    112. 

  112. 

  113. <?php
    114. 

  114. 

  115. }
    116. 

  116. 

  117. global $final_message;
    118. 

  118. displayFinalMessage();
    119. 

  119. 

  120. ?>
    121. 

  121. 

  122. <h2>Valeurs par défaut</h2>
    123. 

  123. 

  124. <p>Si le TTL est omis, il sera définit à <code><?= DEFAULT_TTL ?></code> secondes.</p>
    125. 

  125. 

  126. <p>La précision de la classe (<code>IN</code>) est facultative.</p>
    127. 

  127. 

  128. <h2>Valeurs autorisées</h2>
    129. 

  129. 

  130. <p>La zone n'est pas autorisée à dépasser <?= ZONE_MAX_CHARACTERS ?> caractères.</p>
    131. 

  131. 

  132. <p>Les TTLs ne sont autorisés qu'entre <code><?= MIN_TTL ?></code> et <code><?= MAX_TTL ?></code> secondes.</p>
    133. 

  133. 

  134. <p>Les seuls types dont l'édition est autorisée sont :</p>
    135. 

  135. 

  136. <ul>
    137. 

  137. <?php
    138. 

  138. 	foreach (ALLOWED_TYPES as $allowed_type)
    139. 

  139. 		echo '	<li><code>' . $allowed_type . '</code></li>';
    140. 

  140. 

  141. ?>
    142. 

  142. </ul>
    143.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5