You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
407 lines
8.7 KiB
407 lines
8.7 KiB
<?php
|
|
use function Hestiacp\quoteshellarg\quoteshellarg;
|
|
|
|
ob_start();
|
|
$TAB = "DNS";
|
|
|
|
// Main include
|
|
include $_SERVER["DOCUMENT_ROOT"] . "/inc/main.php";
|
|
|
|
// List ip addresses
|
|
exec(HESTIA_CMD . "v-list-user-ips " . $user . " json", $output, $return_var);
|
|
$v_ips = json_decode(implode("", $output), true);
|
|
unset($output);
|
|
|
|
// Check POST request for dns domain
|
|
if (!empty($_POST["ok"])) {
|
|
// Check token
|
|
verify_csrf($_POST);
|
|
|
|
// Check empty fields
|
|
if (empty($_POST["v_domain"])) {
|
|
$errors[] = _("Domain");
|
|
}
|
|
if (empty($_POST["v_ip"])) {
|
|
$errors[] = _("IP Address");
|
|
}
|
|
if (!empty($errors[0])) {
|
|
foreach ($errors as $i => $error) {
|
|
if ($i == 0) {
|
|
$error_msg = $error;
|
|
} else {
|
|
$error_msg = $error_msg . ", " . $error;
|
|
}
|
|
}
|
|
$_SESSION["error_msg"] = sprintf(_('Field "%s" can not be blank.'), $error_msg);
|
|
}
|
|
|
|
// Protect input
|
|
$v_domain = preg_replace("/^www./i", "", $_POST["v_domain"]);
|
|
$v_domain = quoteshellarg($v_domain);
|
|
$v_domain = strtolower($v_domain);
|
|
$v_ip = $_POST["v_ip"];
|
|
// Change NameServers
|
|
if (empty($_POST["v_ns1"])) {
|
|
$_POST["v_ns1"] = "";
|
|
}
|
|
if (empty($_POST["v_ns2"])) {
|
|
$_POST["v_ns2"] = "";
|
|
}
|
|
if (empty($_POST["v_ns3"])) {
|
|
$_POST["v_ns3"] = "";
|
|
}
|
|
if (empty($_POST["v_ns4"])) {
|
|
$_POST["v_ns4"] = "";
|
|
}
|
|
if (empty($_POST["v_ns5"])) {
|
|
$_POST["v_ns5"] = "";
|
|
}
|
|
if (empty($_POST["v_ns6"])) {
|
|
$_POST["v_ns6"] = "";
|
|
}
|
|
if (empty($_POST["v_ns7"])) {
|
|
$_POST["v_ns7"] = "";
|
|
}
|
|
if (empty($_POST["v_ns8"])) {
|
|
$_POST["v_ns8"] = "";
|
|
}
|
|
if (empty($_POST["v_dnssec"])) {
|
|
$_POST["v_dnssec"] = "no";
|
|
}
|
|
$v_ns1 = quoteshellarg($_POST["v_ns1"]);
|
|
$v_ns2 = quoteshellarg($_POST["v_ns2"]);
|
|
$v_ns3 = quoteshellarg($_POST["v_ns3"]);
|
|
$v_ns4 = quoteshellarg($_POST["v_ns4"]);
|
|
$v_ns5 = quoteshellarg($_POST["v_ns5"]);
|
|
$v_ns6 = quoteshellarg($_POST["v_ns6"]);
|
|
$v_ns7 = quoteshellarg($_POST["v_ns7"]);
|
|
$v_ns8 = quoteshellarg($_POST["v_ns8"]);
|
|
$v_dnssec = quoteshellarg($_POST["v_dnssec"]);
|
|
|
|
// Add dns domain
|
|
if (empty($_SESSION["error_msg"])) {
|
|
exec(
|
|
HESTIA_CMD .
|
|
"v-add-dns-domain " .
|
|
$user .
|
|
" " .
|
|
$v_domain .
|
|
" " .
|
|
quoteshellarg($v_ip) .
|
|
" " .
|
|
$v_ns1 .
|
|
" " .
|
|
$v_ns2 .
|
|
" " .
|
|
$v_ns3 .
|
|
" " .
|
|
$v_ns4 .
|
|
" " .
|
|
$v_ns5 .
|
|
" " .
|
|
$v_ns6 .
|
|
" " .
|
|
$v_ns7 .
|
|
" " .
|
|
$v_ns8 .
|
|
" no " .
|
|
$v_dnssec,
|
|
$output,
|
|
$return_var,
|
|
);
|
|
check_return_code($return_var, $output);
|
|
unset($output);
|
|
}
|
|
exec(HESTIA_CMD . "v-list-user " . $user . " json", $output, $return_var);
|
|
$user_config = json_decode(implode("", $output), true);
|
|
unset($output);
|
|
$v_template = $user_config[$user_plain]["DNS_TEMPLATE"];
|
|
|
|
if (
|
|
$v_template != $_POST["v_template"] &&
|
|
!empty($_POST["v_template"]) &&
|
|
empty($_SESSION["error_msg"])
|
|
) {
|
|
$v_template = quoteshellarg($_POST["v_template"]);
|
|
exec(
|
|
HESTIA_CMD .
|
|
"v-change-dns-domain-tpl " .
|
|
$user .
|
|
" " .
|
|
$v_domain .
|
|
" " .
|
|
$v_template .
|
|
" 'no'",
|
|
$output,
|
|
$return_var,
|
|
);
|
|
check_return_code($return_var, $output);
|
|
unset($output);
|
|
}
|
|
|
|
// Set expiration date
|
|
if (empty($_SESSION["error_msg"])) {
|
|
if (!empty($_POST["v_exp"]) && $_POST["v_exp"] != date("Y-m-d", strtotime("+1 year"))) {
|
|
$v_exp = quoteshellarg($_POST["v_exp"]);
|
|
exec(
|
|
HESTIA_CMD .
|
|
"v-change-dns-domain-exp " .
|
|
$user .
|
|
" " .
|
|
$v_domain .
|
|
" " .
|
|
$v_exp .
|
|
" no",
|
|
$output,
|
|
$return_var,
|
|
);
|
|
check_return_code($return_var, $output);
|
|
unset($output);
|
|
}
|
|
}
|
|
|
|
// Set ttl
|
|
if (empty($_SESSION["error_msg"])) {
|
|
if (
|
|
!empty($_POST["v_ttl"]) &&
|
|
$_POST["v_ttl"] != "14400" &&
|
|
empty($_SESSION["error_msg"])
|
|
) {
|
|
$v_ttl = quoteshellarg($_POST["v_ttl"]);
|
|
exec(
|
|
HESTIA_CMD .
|
|
"v-change-dns-domain-ttl " .
|
|
$user .
|
|
" " .
|
|
$v_domain .
|
|
" " .
|
|
$v_ttl .
|
|
" no",
|
|
$output,
|
|
$return_var,
|
|
);
|
|
check_return_code($return_var, $output);
|
|
unset($output);
|
|
}
|
|
}
|
|
|
|
// Restart dns server
|
|
if (empty($_SESSION["error_msg"])) {
|
|
exec(HESTIA_CMD . "v-restart-dns", $output, $return_var);
|
|
check_return_code($return_var, $output);
|
|
unset($output);
|
|
}
|
|
|
|
// Flush field values on success
|
|
if (empty($_SESSION["error_msg"])) {
|
|
$_SESSION["ok_msg"] = htmlify_trans(
|
|
sprintf(
|
|
_("DNS zone {%s} has been created successfully."),
|
|
htmlentities($_POST["v_domain"]),
|
|
),
|
|
"</a>",
|
|
'<a href="/edit/dns/?domain=' . htmlentities($_POST["v_domain"]) . '">',
|
|
);
|
|
|
|
unset($v_domain);
|
|
}
|
|
}
|
|
|
|
// Check POST request for dns record
|
|
if (!empty($_POST["ok_rec"])) {
|
|
// Check token
|
|
if (!isset($_POST["token"]) || $_SESSION["token"] != $_POST["token"]) {
|
|
header("location: /login/");
|
|
exit();
|
|
}
|
|
|
|
// Check empty fields
|
|
if (empty($_POST["v_domain"])) {
|
|
$errors[] = _("Domain");
|
|
}
|
|
if (empty($_POST["v_rec"])) {
|
|
$errors[] = _("Record");
|
|
}
|
|
if (empty($_POST["v_type"])) {
|
|
$errors[] = _("Type");
|
|
}
|
|
if (empty($_POST["v_val"])) {
|
|
$errors[] = _("IP or Value");
|
|
}
|
|
if (!empty($errors[0])) {
|
|
foreach ($errors as $i => $error) {
|
|
if ($i == 0) {
|
|
$error_msg = $error;
|
|
} else {
|
|
$error_msg = $error_msg . ", " . $error;
|
|
}
|
|
}
|
|
$_SESSION["error_msg"] = sprintf(_('Field "%s" can not be blank.'), $error_msg);
|
|
}
|
|
|
|
// Protect input
|
|
$v_domain = quoteshellarg($_POST["v_domain"]);
|
|
$v_rec = quoteshellarg($_POST["v_rec"]);
|
|
$v_type = quoteshellarg($_POST["v_type"]);
|
|
$v_val = quoteshellarg($_POST["v_val"]);
|
|
$v_priority = quoteshellarg($_POST["v_priority"]);
|
|
$v_ttl = quoteshellarg($_POST["v_ttl"]);
|
|
|
|
// Add dns record
|
|
if (empty($_SESSION["error_msg"])) {
|
|
exec(
|
|
HESTIA_CMD .
|
|
"v-add-dns-record " .
|
|
$user .
|
|
" " .
|
|
$v_domain .
|
|
" " .
|
|
$v_rec .
|
|
" " .
|
|
$v_type .
|
|
" " .
|
|
$v_val .
|
|
" " .
|
|
$v_priority .
|
|
" '' yes " .
|
|
$v_ttl,
|
|
$output,
|
|
$return_var,
|
|
);
|
|
check_return_code($return_var, $output);
|
|
unset($output);
|
|
}
|
|
$v_type = $_POST["v_type"];
|
|
|
|
// Flush field values on success
|
|
if (empty($_SESSION["error_msg"])) {
|
|
$_SESSION["ok_msg"] = htmlify_trans(
|
|
sprintf(
|
|
_("Record {%s.%s} has been created successfully."),
|
|
htmlentities($_POST["v_rec"]),
|
|
htmlentities($_POST["v_domain"]),
|
|
),
|
|
"</code>",
|
|
"<code>",
|
|
);
|
|
unset($v_domain);
|
|
unset($v_rec);
|
|
unset($v_val);
|
|
unset($v_priority);
|
|
unset($v_dnssec);
|
|
}
|
|
}
|
|
|
|
if (empty($v_ns1)) {
|
|
$v_ns1 = "";
|
|
}
|
|
if (empty($v_ns2)) {
|
|
$v_ns2 = "";
|
|
}
|
|
if (empty($v_ns3)) {
|
|
$v_ns3 = "";
|
|
}
|
|
if (empty($v_ns4)) {
|
|
$v_ns4 = "";
|
|
}
|
|
if (empty($v_ns5)) {
|
|
$v_ns5 = "";
|
|
}
|
|
if (empty($v_ns6)) {
|
|
$v_ns6 = "";
|
|
}
|
|
if (empty($v_ns7)) {
|
|
$v_ns7 = "";
|
|
}
|
|
if (empty($v_ns8)) {
|
|
$v_ns8 = "";
|
|
}
|
|
|
|
$v_ns1 = str_replace("'", "", $v_ns1);
|
|
$v_ns2 = str_replace("'", "", $v_ns2);
|
|
$v_ns3 = str_replace("'", "", $v_ns3);
|
|
$v_ns4 = str_replace("'", "", $v_ns4);
|
|
$v_ns5 = str_replace("'", "", $v_ns5);
|
|
$v_ns6 = str_replace("'", "", $v_ns6);
|
|
$v_ns7 = str_replace("'", "", $v_ns7);
|
|
$v_ns8 = str_replace("'", "", $v_ns8);
|
|
|
|
if (empty($v_ip) && count($v_ips) > 0) {
|
|
$ip = array_key_first($v_ips);
|
|
$v_ip = empty($v_ips[$ip]["NAT"]) ? $ip : $v_ips[$ip]["NAT"];
|
|
}
|
|
|
|
// List dns templates
|
|
exec(HESTIA_CMD . "v-list-dns-templates json", $output, $return_var);
|
|
$templates = json_decode(implode("", $output), true);
|
|
unset($output);
|
|
|
|
exec(HESTIA_CMD . "v-list-user " . $user . " json", $output, $return_var);
|
|
$user_config = json_decode(implode("", $output), true);
|
|
unset($output);
|
|
$v_template = $user_config[$user_plain]["DNS_TEMPLATE"];
|
|
|
|
if (empty($_GET["domain"])) {
|
|
// Display body for dns domain
|
|
if (empty($v_domain)) {
|
|
$v_domain = "";
|
|
}
|
|
if (empty($v_ttl)) {
|
|
$v_ttl = 14400;
|
|
}
|
|
if (empty($v_exp)) {
|
|
$v_exp = date("Y-m-d", strtotime("+1 year"));
|
|
}
|
|
if (empty($v_dnssec)) {
|
|
$v_dnssec = "";
|
|
}
|
|
if (empty($v_ns1)) {
|
|
exec(HESTIA_CMD . "v-list-user-ns " . $user . " json", $output, $return_var);
|
|
$nameservers = json_decode(implode("", $output), true);
|
|
for ($i = 0; $i < 8; $i++) {
|
|
if (empty($nameservers[$i])) {
|
|
$nameservers[$i] = "";
|
|
}
|
|
}
|
|
$v_ns1 = str_replace("'", "", $nameservers[0]);
|
|
$v_ns2 = str_replace("'", "", $nameservers[1]);
|
|
$v_ns3 = str_replace("'", "", $nameservers[2]);
|
|
$v_ns4 = str_replace("'", "", $nameservers[3]);
|
|
$v_ns5 = str_replace("'", "", $nameservers[4]);
|
|
$v_ns6 = str_replace("'", "", $nameservers[5]);
|
|
$v_ns7 = str_replace("'", "", $nameservers[6]);
|
|
$v_ns8 = str_replace("'", "", $nameservers[7]);
|
|
unset($output);
|
|
}
|
|
$accept = $_GET["accept"] ?? "";
|
|
|
|
render_page($user, $TAB, "add_dns");
|
|
} else {
|
|
// Display body for dns record
|
|
$v_domain = $_GET["domain"];
|
|
if (empty($v_rec)) {
|
|
$v_rec = "@";
|
|
}
|
|
if (empty($v_type)) {
|
|
$v_type = "";
|
|
}
|
|
if (empty($v_val)) {
|
|
$v_val = "";
|
|
}
|
|
if (empty($v_priority)) {
|
|
$v_priority = "";
|
|
}
|
|
if (empty($v_ttl)) {
|
|
$v_ttl = "";
|
|
}
|
|
if (empty($v_dnssec)) {
|
|
$v_dnssec = "";
|
|
}
|
|
$accept = $_GET["accept"] ?? "";
|
|
render_page($user, $TAB, "add_dns_rec");
|
|
}
|
|
|
|
// Flush session messages
|
|
unset($_SESSION["error_msg"]);
|
|
unset($_SESSION["ok_msg"]);
|