2021-02-19 12:23:26 +00:00
|
|
|
<?php
|
|
|
|
|
2021-05-16 14:55:39 +00:00
|
|
|
function nsCommonRequirements() {
|
2022-04-18 14:05:00 +00:00
|
|
|
if (isset($_POST['action'])
|
|
|
|
AND isset($_POST['zone'])
|
|
|
|
AND isset($_POST['ttl-value'])
|
|
|
|
AND isset($_POST['ttl-multiplier'])
|
|
|
|
AND isset($_SESSION['username'])
|
|
|
|
) {
|
|
|
|
antiCSRF();
|
|
|
|
return true;
|
|
|
|
}
|
2021-05-16 14:55:39 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
function nsParseCommonRequirements() {
|
2022-04-18 14:05:00 +00:00
|
|
|
$values['action'] = checkAction($_POST['action']);
|
2021-05-16 14:55:39 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
nsCheckZonePossession($_POST['zone']);
|
2021-07-15 13:36:34 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
if (($_POST['subdomain'] === "") OR ($_POST['subdomain'] === "@"))
|
|
|
|
$values['domain'] = $_POST['zone'];
|
|
|
|
else
|
|
|
|
$values['domain'] = $_POST['subdomain'] . "." . $_POST['zone'];
|
|
|
|
checkAbsoluteDomainFormat($values['domain']);
|
2021-05-16 14:55:39 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
$values['ttl'] = $_POST['ttl-value'] * $_POST['ttl-multiplier'];
|
2021-03-02 21:56:38 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
if (!($values['ttl'] >= 300 AND $values['ttl'] <= 432000))
|
|
|
|
exit("Erreur : le TTL doit être compris entre 5 minutes et 5 jours (entre 300 et 432000 secondes)");
|
2021-03-02 21:56:38 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
return $values;
|
2021-03-02 21:56:38 +00:00
|
|
|
}
|
|
|
|
|
2021-04-14 12:56:02 +00:00
|
|
|
function nsListUserZones($username) {
|
2022-04-18 14:05:00 +00:00
|
|
|
$db = new PDO('sqlite:' . DB_PATH);
|
|
|
|
$usernameArray[0] = $username;
|
|
|
|
|
|
|
|
$op = $db->prepare('SELECT zone FROM zones WHERE username = ?');
|
|
|
|
$op->execute($usernameArray);
|
|
|
|
|
|
|
|
$data = $op->fetch();
|
|
|
|
if (isset($data['zone']))
|
|
|
|
$zone = $data['zone'];
|
|
|
|
else
|
|
|
|
$zone = NULL;
|
|
|
|
|
|
|
|
$i = 0;
|
|
|
|
$zones = NULL;
|
|
|
|
|
|
|
|
while ($zone != NULL) {
|
|
|
|
$zones[$i] = $zone;
|
|
|
|
$i++;
|
|
|
|
$data = $op->fetch();
|
|
|
|
if (isset($data['zone']))
|
|
|
|
$zone = $data['zone'];
|
|
|
|
else
|
|
|
|
$zone = NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
return $zones;
|
2021-04-14 12:56:02 +00:00
|
|
|
}
|
|
|
|
|
2021-03-02 21:56:38 +00:00
|
|
|
function nsCheckZonePossession($submittedZone) {
|
2022-04-18 14:05:00 +00:00
|
|
|
checkAbsoluteDomainFormat($submittedZone);
|
2021-02-19 12:23:26 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
$db = new PDO('sqlite:' . DB_PATH);
|
|
|
|
$username[0] = $_SESSION['username'];
|
2021-02-19 12:23:26 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
$op = $db->prepare('SELECT zone FROM zones WHERE username = ?');
|
|
|
|
$op->execute($username);
|
2021-02-19 12:23:26 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
$dbZone = $op->fetch()['zone'];
|
2021-02-19 12:23:26 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
while ($dbZone != NULL) {
|
|
|
|
if ($dbZone === $submittedZone) return;
|
|
|
|
$dbZone = $op->fetch()['zone'];
|
|
|
|
}
|
2021-02-19 12:23:26 +00:00
|
|
|
|
2022-04-18 14:05:00 +00:00
|
|
|
// If there is no entry in the database for the user matching the submitted zone
|
|
|
|
exit("ERROR: You don't own this zone on the nameserver");
|
2021-02-19 12:23:26 +00:00
|
|
|
}
|