We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
servnest
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: dev
Branches Tags
servnest
/
pg-act
/
ht
/
add-dns.php

add-dns.php 2.6 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950 
  1. <?php declare(strict_types=1);
    2. 

  2. 

  3. $_POST['domain'] = formatDomain($_POST['domain']);
    4. 

  4. 

  5. if (dirsStatuses('dns')[$_POST['dir']] !== false)
    6. 

  6. 	output(403, 'Wrong value for <code>dir</code>.');
    7. 

  7. 

  8. if (query('select', 'sites', ['address' => $_POST['domain']], ['address']) !== [])
    9. 

  9. 	output(403, _('This domain already exists on this service. Use another one.'));
    10. 

  10. 

  11. $remoteAaaaRecords = dns_get_record($_POST['domain'], DNS_AAAA);
    12. 

  12. if (is_array($remoteAaaaRecords) !== true)
    13. 

  13. 	output(500, sprintf(_('Can\'t retrieve the %1$s record for domain %2$s.'), 'AAAA', '<code>' . htmlspecialchars($_POST['domain']) . '</code>'));
    14. 

  14. if (equalArrays([CONF['ht']['ipv6_address']], array_column($remoteAaaaRecords, 'ipv6')) !== true)
    15. 

  15. 	output(403, sprintf(_('This domain must have %2$s as its only %1$s record.'), 'AAAA', '<code>' . CONF['ht']['ipv6_address'] . '</code>'));
    16. 

  16. 

  17. $remoteARecords = dns_get_record($_POST['domain'], DNS_A);
    18. 

  18. if (is_array($remoteARecords) !== true)
    19. 

  19. 	output(500, sprintf(_('Can\'t retrieve the %1$s record for domain %2$s.'), 'A', '<code>' . htmlspecialchars($_POST['domain']) . '</code>'));
    20. 

  20. if (equalArrays([CONF['ht']['ipv4_address']], array_column($remoteARecords, 'ip')) !== true)
    21. 

  21. 	output(403, sprintf(_('This domain must have %2$s as its only %1$s record.'), 'A', '<code>' . CONF['ht']['ipv4_address'] . '</code>'));
    22. 

  22. 

  23. $remoteTXTRecords = dns_get_record('_auth.' . $_POST['domain'], DNS_TXT);
    24. 

  24. if (is_array($remoteTXTRecords) !== true)
    25. 

  25. 	output(500, sprintf(_('Can\'t retrieve the %1$s record for domain %2$s.'), 'TXT', '<code>_auth.' . htmlspecialchars($_POST['domain']) . '</code>'));
    26. 

  26. if (preg_match('/^' . preg_quote(SERVER_NAME, '/') . '_domain-verification=(?<salt>[0-9a-f]{8})-(?<hash>[0-9a-f]{32})$/Dm', implode(LF, array_column($remoteTXTRecords, 'txt')), $matches) !== 1)
    27. 

  27. 	output(403, sprintf(_('No TXT record with the expected format has been found on domain %s.'), '<code>_auth.' . htmlspecialchars($_POST['domain']) . '</code>'));
    28. 

  28. 

  29. checkAuthToken($matches['salt'], $matches['hash']);
    30. 

  30. 

  31. rateLimit();
    32. 

  32. 

  33. exescape([
    34. 

  34. 	CONF['ht']['sudo_path'],
    35. 

  35. 	CONF['ht']['certbot_path'],
    36. 

  36. 	'--config',
    37. 

  37. 	CONF['ht']['certbot_config_path'],
    38. 

  38. 	'certonly',
    39. 

  39. 	'--domain',
    40. 

  40. 	$_POST['domain'],
    41. 

  41. 	...(($_SESSION['type'] === 'approved') ? [] : ['--test-cert']),
    42. 

  42. ], $output, $returnCode);
    43. 

  43. if ($returnCode !== 0)
    44. 

  44. 	output(500, 'Certbot failed to get a Let\'s Encrypt certificate.', $output);
    45. 

  45. 

  46. addSite($_SESSION['id'], $_POST['dir'], $_POST['domain'], 'dns');
    47. 

  47. 

  48. htRelativeSymlink('../fs/' . $_SESSION['id'] . '/' . $_POST['dir'], CONF['ht']['ht_path'] . '/uri/' . $_POST['domain']);
    49. 

  49. 

  50. output(200, sprintf(_('%s added on this directory.'), PAGE_METADATA['title']));
    51.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5