zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-08-12 20:39:20 +02:00
Code Issues Projects Releases Packages Wiki Activity

Added registrar update

Browse source
This commit is contained in:
Pinga 2023-12-05 17:17:59 +02:00
parent 83f8e41709
commit 001b348087
2 changed files with 318 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

291
cp/app/Controllers/RegistrarsController.php
View file

@ -357,4 +357,295 @@ class RegistrarsController extends Controller
} }
} }
public function updateRegistrar(Request $request, Response $response, $args)
{
$db = $this->container->get('db');
$iso3166 = new ISO3166();
$countries = $iso3166->all();
// Get the current URI
$uri = $request->getUri()->getPath();
if ($args) {
$registrar = $db->selectRow('SELECT * FROM registrar WHERE clid = ?',
[ $args ]);
if ($registrar) {
// Check if the user is not an admin (assuming role 0 is admin)
if ($_SESSION["auth_roles"] != 0) {
return $response->withHeader('Location', '/dashboard')->withStatus(302);
}
$contacts = $db->select("SELECT * FROM registrar_contact WHERE registrar_id = ?",
[ $registrar['id'] ]);
$ote = $db->select("SELECT * FROM registrar_ote WHERE registrar_id = ?",
[ $registrar['id'] ]);
$user_id = $db->selectValue("SELECT user_id FROM registrar_users WHERE registrar_id = ?",
[ $registrar['id'] ]);
$user = $db->selectRow("SELECT email FROM users WHERE id = ?",
[ $user_id ]);
$whitelist = $db->select("SELECT * FROM registrar_whitelist WHERE registrar_id = ?",
[ $registrar['id'] ]);
return view($response,'admin/registrars/updateRegistrar.twig', [
'registrar' => $registrar,
'contacts' => $contacts,
'ote' => $ote,
'user' => $user,
'whitelist' => $whitelist,
'currentUri' => $uri,
'countries' => $countries
]);
} else {
// Registrar does not exist, redirect to the registrars view
return $response->withHeader('Location', '/registrars')->withStatus(302);
}
} else {
// Redirect to the registrars view
return $response->withHeader('Location', '/registrars')->withStatus(302);
}
}
public function updateRegistrarProcess(Request $request, Response $response)
{
if ($_SESSION["auth_roles"] != 0) {
return $response->withHeader('Location', '/dashboard')->withStatus(302);
}
if ($request->getMethod() === 'POST') {
// Retrieve POST data
$data = $request->getParsedBody();
$db = $this->container->get('db');
$registrar = $data['reg_clid'] ?? null;
$iso3166 = new ISO3166();
$countries = $iso3166->all();
$ipAddressValidator = v::when(
v::arrayType()->notEmpty(), // Condition: If it's a non-empty array
v::arrayType()->each(v::ip()), // Then: Each element must be a valid IP address
v::equals('') // Else: Allow it to be an empty string
);
$data['owner']['cc'] = strtoupper($data['owner']['cc']);
$data['billing']['cc'] = strtoupper($data['billing']['cc']);
$data['abuse']['cc'] = strtoupper($data['abuse']['cc']);
$phoneValidator = v::regex('/^\+\d{1,3}\.\d{2,12}$/');
// Define validation for nested fields
$contactValidator = [
v::key('first_name', v::stringType()->notEmpty()->length(1, 255), true),
v::key('last_name', v::stringType()->notEmpty()->length(1, 255), true),
v::key('org', v::optional(v::stringType()->length(1, 255)), false),
v::key('street1', v::optional(v::stringType()), false),
v::key('city', v::stringType()->notEmpty(), true),
v::key('sp', v::optional(v::stringType()), false),
v::key('pc', v::optional(v::stringType()), false),
v::key('cc', v::countryCode(), true),
v::key('voice', v::optional($phoneValidator), false),
v::key('fax', v::optional(v::phone()), false),
v::key('email', v::email(), true)
];
$validators = [
'name' => v::stringType()->notEmpty()->length(1, 255),
'ianaId' => v::optional(v::positive()->length(1, 5)),
'email' => v::email(),
'owner' => v::optional(v::keySet(...$contactValidator)),
'billing' => v::optional(v::keySet(...$contactValidator)),
'abuse' => v::optional(v::keySet(...$contactValidator)),
'whoisServer' => v::domain(),
'rdapServer' => v::domain(),
'url' => v::url(),
'abuseEmail' => v::email(),
'abusePhone' => v::optional($phoneValidator),
'accountBalance' => v::numericVal(),
'creditLimit' => v::numericVal(),
'creditThreshold' => v::numericVal(),
'thresholdType' => v::in(['fixed', 'percent']),
'ipAddress' => v::optional($ipAddressValidator),
'user_name' => v::stringType()->notEmpty()->length(1, 255),
'user_email' => v::email(),
'eppPassword' => v::stringType()->notEmpty(),
'panelPassword' => v::stringType()->notEmpty(),
];
$errors = [];
foreach ($validators as $field => $validator) {
try {
$validator->assert(isset($data[$field]) ? $data[$field] : []);
} catch (\Respect\Validation\Exceptions\NestedValidationException $e) {
$errors[$field] = $e->getMessages();
}
}
if (!empty($errors)) {
// Handle errors
$errorText = '';
foreach ($errors as $field => $messages) {
$errorText .= ucfirst($field) . ' errors: ' . implode(', ', $messages) . '; ';
}
// Trim the final semicolon and space
$errorText = rtrim($errorText, '; ');
$this->container->get('flash')->addMessage('error', $errorText);
return $response->withHeader('Location', '/registrars')->withStatus(302);
}
$db->beginTransaction();
try {
$currentDateTime = new \DateTime();
$update = $currentDateTime->format('Y-m-d H:i:s.v');
$characters = '0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ';
$randomPrefix = '';
for ($i = 0; $i < 2; $i++) {
$randomPrefix .= $characters[rand(0, strlen($characters) - 1)];
}
$currency = $_SESSION['_currency'] ?? 'USD';
if (empty($data['ianaId']) || !is_numeric($data['ianaId'])) {
$data['ianaId'] = null;
}
$updateData = [
'name' => $data['name'],
'iana_id' => $data['ianaId'],
'email' => $data['email'],
'url' => $data['url'],
'whois_server' => $data['whoisServer'],
'rdap_server' => $data['rdapServer'],
'abuse_email' => $data['abuseEmail'],
'abuse_phone' => $data['abusePhone'],
'creditLimit' => $data['creditLimit'],
'creditThreshold' => $data['creditThreshold'],
'currency' => $currency,
'update' => $crdate
];
if (!empty($data['eppPassword'])) {
$eppPassword = password_hash($data['eppPassword'], PASSWORD_ARGON2ID, ['memory_cost' => 1024 * 128, 'time_cost' => 6, 'threads' => 4]);
$updateData['pw'] = $eppPassword;
}
$db->update(
'registrar',
$updateData,
[
'clid' => $registrar
]
);
$registrar_id = $db->selectValue(
'SELECT id FROM registrar WHERE clid = ?',
[$registrar]
);
$db->update(
'registrar_contact',
[
'first_name' => $data['owner']['first_name'],
'last_name' => $data['owner']['last_name'],
'org' => $data['owner']['org'],
'street1' => $data['owner']['street1'],
'city' => $data['owner']['city'],
'sp' => $data['owner']['sp'],
'pc' => $data['owner']['pc'],
'cc' => strtolower($data['owner']['cc']),
'voice' => $data['owner']['voice'],
'email' => $data['owner']['email']
],
[
'registrar_id' => $registrar_id,
'type' => 'owner'
]
);
$db->update(
'registrar_contact',
[
'first_name' => $data['billing']['first_name'],
'last_name' => $data['billing']['last_name'],
'org' => $data['billing']['org'],
'street1' => $data['billing']['street1'],
'city' => $data['billing']['city'],
'sp' => $data['billing']['sp'],
'pc' => $data['billing']['pc'],
'cc' => strtolower($data['billing']['cc']),
'voice' => $data['billing']['voice'],
'email' => $data['billing']['email']
],
[
'registrar_id' => $registrar_id,
'type' => 'billing'
]
);
$db->update(
'registrar_contact',
[
'first_name' => $data['abuse']['first_name'],
'last_name' => $data['abuse']['last_name'],
'org' => $data['abuse']['org'],
'street1' => $data['abuse']['street1'],
'city' => $data['abuse']['city'],
'sp' => $data['abuse']['sp'],
'pc' => $data['abuse']['pc'],
'cc' => strtolower($data['abuse']['cc']),
'voice' => $data['abuse']['voice'],
'email' => $data['abuse']['email']
],
[
'registrar_id' => $registrar_id,
'type' => 'abuse'
]
);
if (!empty($data['ipAddress'])) {
$db->delete(
'registrar_whitelist',
[
'registrar_id' => $registrar_id
]
);
foreach ($data['ipAddress'] as $ip) {
$db->insert(
'registrar_whitelist',
[
'registrar_id' => $registrar_id,
'addr' => $ip
]
);
}
}
if ($data['panelPassword']) {
$panelPassword = password_hash($data['panelPassword'], PASSWORD_ARGON2ID, ['memory_cost' => 1024 * 128, 'time_cost' => 6, 'threads' => 4]);
$db->update(
'users',
[
'password' => $panelPassword,
],
[
'email' => $data['reg_email']
]
);
}
$db->commit();
} catch (Exception $e) {
$db->rollBack();
$this->container->get('flash')->addMessage('error', 'Database failure during update: ' . $e->getMessage());
return $response->withHeader('Location', '/registrar/update/'.$data['clid'])->withStatus(302);
}
$this->container->get('flash')->addMessage('success', 'Registrar ' . $data['name'] . ' has been updated successfully on ' . $update);
return $response->withHeader('Location', '/registrar/update/'.$data['clid'])->withStatus(302);
}
}
} }

30
cp/resources/views/admin/registrars/updateRegistrar.twig
View file

@ -378,7 +378,7 @@
<thead> <thead>
<tr> <tr>
<th scope="col required">Username/CLID</th> <th scope="col required">Username/CLID</th>
<th scope="col">Login Email</th> <th scope="col">Login Email</th><input type="hidden" name="reg_email" value="{{ user.email }}">
<th scope="col">Panel Password <span class="text-red">*</span></th> <th scope="col">Panel Password <span class="text-red">*</span></th>
<th scope="col">EPP Password <span class="text-red">*</span></th> <th scope="col">EPP Password <span class="text-red">*</span></th>
</tr> </tr>
@ -392,10 +392,20 @@
{{ user.email ? user.email : 'N/A' }} {{ user.email ? user.email : 'N/A' }}
</td> </td>
<td> <td>
<input type="password" class="form-control form-control-sm" name="panelPassword" autocomplete="off" disabled> <div class="d-flex align-items-center">
<input type="password" class="form-control form-control-sm me-2" name="panelPassword" id="panelPassword" autocomplete="off" disabled>
<div class="form-check mb-0">
<input class="form-check-input" type="checkbox" id="updatePanelPassword" title="Update Panel Password">
</div>
</div>
</td> </td>
<td> <td>
<input type="password" class="form-control form-control-sm" name="eppPassword" autocomplete="off" disabled> <div class="d-flex align-items-center">
<input type="password" class="form-control form-control-sm me-2" name="eppPassword" id="eppPassword" autocomplete="off" disabled>
<div class="form-check mb-0">
<input class="form-check-input" type="checkbox" id="updateEppPassword" title="Update EPP Password">
</div>
</div>
</td> </td>
</tr> </tr>
</tbody> </tbody>
@ -495,6 +505,20 @@
</div> </div>
<script> <script>
document.addEventListener('DOMContentLoaded', function() { document.addEventListener('DOMContentLoaded', function() {
const updatePanelPasswordCheckbox = document.getElementById('updatePanelPassword');
const panelPasswordField = document.getElementById('panelPassword');
updatePanelPasswordCheckbox.addEventListener('change', function() {
panelPasswordField.disabled = !this.checked;
});
const updateEppPasswordCheckbox = document.getElementById('updateEppPassword');
const eppPasswordField = document.getElementById('eppPassword');
updateEppPasswordCheckbox.addEventListener('change', function() {
eppPasswordField.disabled = !this.checked;
});
const ipForm = document.getElementById('ipWhitelistForm'); const ipForm = document.getElementById('ipWhitelistForm');
const maxFields = 5; const maxFields = 5;