zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-05-14 16:46:59 +02:00
Code Issues Projects Releases Packages Wiki Activity

Added epp domain transfer

Browse source
This commit is contained in:
Pinga 2023-08-25 11:05:14 +03:00
parent c74da6c030
commit 24d0fbb543
3 changed files with 641 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

7
epp/src/EppWriter.php
View file

@ -794,11 +794,11 @@ class EppWriter {
$writer->writeElement('domain:name', $resp['name']); $writer->writeElement('domain:name', $resp['name']);
$writer->writeElement('domain:trStatus', $resp['trStatus']); $writer->writeElement('domain:trStatus', $resp['trStatus']);
$writer->writeElement('domain:reID', $resp['reID']); $writer->writeElement('domain:reID', $resp['reID']);
$writer->writeElement('domain:reDate', $resp['reDate']); $writer->writeElement('domain:reDate', gmdate('Y-m-d\TH:i:s\.0\Z', strtotime($resp['reDate'])));
$writer->writeElement('domain:acID', $resp['acID']); $writer->writeElement('domain:acID', $resp['acID']);
$writer->writeElement('domain:acDate', $resp['acDate']); $writer->writeElement('domain:acDate', gmdate('Y-m-d\TH:i:s\.0\Z', strtotime($resp['acDate'])));
if (isset($resp['exDate'])) { if (isset($resp['exDate'])) {
$writer->writeElement('domain:exDate', $resp['exDate']); $writer->writeElement('domain:exDate', gmdate('Y-m-d\TH:i:s\.0\Z', strtotime($resp['exDate'])));
} }
$writer->endElement(); // End of 'domain:trnData' $writer->endElement(); // End of 'domain:trnData'
$writer->endElement(); // End of 'resData' $writer->endElement(); // End of 'resData'
@ -807,7 +807,6 @@ class EppWriter {
$this->_postamble($writer, $resp); $this->_postamble($writer, $resp);
} }
private function _check_host($writer, $resp) { private function _check_host($writer, $resp) {
$this->_preamble($writer, $resp); $this->_preamble($writer, $resp);

626
epp/src/epp-transfer.php
View file

@ -386,4 +386,630 @@ function processContactTranfer($conn, $db, $xml, $clid, $database_type) {
return; return;
} }
} }
}
function processDomainTranfer($conn, $db, $xml, $clid, $database_type) {
$domainName = (string) $xml->command->transfer->children('urn:ietf:params:xml:ns:domain-1.0')->transfer->name;
$clTRID = (string) $xml->command->clTRID;
// - An OPTIONAL <domain:authInfo> for op="query" and mandatory for other op values "approve|cancel|reject|request"
$authInfo_pw = (string)$xml->xpath('//domain:authInfo/domain:pw[1]')[0];
$authInfo_pw_roid = (string)$xml->xpath('//domain:authInfo/domain:pw/@roid[1]')[0];
if (!$domainName) {
sendEppError($conn, 2003, 'Please provide the domain name', $clTRID);
return;
}
$stmt = $db->prepare("SELECT `id`,`tldid`,`clid` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->bindParam(':name', $domainName, PDO::PARAM_STR);
$stmt->execute();
$row = $stmt->fetch(PDO::FETCH_ASSOC);
$domain_id = $row['id'] ?? null;
$tldid = $row['tldid'] ?? null;
$registrar_id_domain = $row['clid'] ?? null;
if (!$domain_id) {
sendEppError($conn, 2303, 'Domain does not exist in registry', $clTRID);
return;
}
$stmt = $db->prepare("SELECT id FROM registrar WHERE clid = :clid LIMIT 1");
$stmt->bindParam(':clid', $clid, PDO::PARAM_STR);
$stmt->execute();
$clid = $stmt->fetch(PDO::FETCH_ASSOC);
$clid = $clid['id'];
if ($op === 'approve') {
if ($clid !== $registrar_id_domain) {
sendEppError($conn, 2201, 'Only LOSING REGISTRAR can approve', $clTRID);
return;
}
if ($authInfo_pw) {
$stmt = $db->prepare("SELECT `id` FROM `domain_authInfo` WHERE `domain_id` = ? AND `authtype` = 'pw' AND `authinfo` = ? LIMIT 1");
$stmt->execute([$domain_id, $authInfo_pw]);
$domain_authinfo_id = $stmt->fetchColumn();
if (!$domain_authinfo_id) {
sendEppError($conn, 2202, 'authInfo pw is not correct', $clTRID);
return;
}
}
$stmt = $db->prepare("SELECT `id`,`registrant`,`crdate`,`exdate`,`update`,`clid`,`crid`,`upid`,`trdate`,`trstatus`,`reid`,`redate`,`acid`,`acdate`,`transfer_exdate` FROM `domain` WHERE `name` = ? LIMIT 1");
$stmt->execute([$domainName]);
$row = $stmt->fetch(PDO::FETCH_ASSOC);
if ($row && $row["trstatus"] === 'pending') {
$date_add = 0;
$price = 0;
$stmt = $db->prepare("SELECT `accountBalance`,`creditLimit` FROM `registrar` WHERE `id` = ? LIMIT 1");
$stmt->execute([$row["reid"]]);
list($registrar_balance, $creditLimit) = $stmt->fetch(PDO::FETCH_NUM);
if ($row["transfer_exdate"]) {
$stmt = $db->prepare("SELECT PERIOD_DIFF(DATE_FORMAT(`transfer_exdate`, '%Y%m'), DATE_FORMAT(`exdate`, '%Y%m')) AS `intval` FROM `domain` WHERE `name` = ? LIMIT 1");
$stmt->execute([$domainName]);
$date_add = $stmt->fetchColumn();
$stmt = $db->prepare("SELECT `m$date_add` FROM `domain_price` WHERE `tldid` = ? AND `command` = 'transfer' LIMIT 1");
$stmt->execute([$tldid]);
$price = $stmt->fetchColumn();
if (($registrar_balance + $creditLimit) < $price) {
sendEppError($conn, 2104, 'The registrar who took over this domain has no money to pay the renewal period that resulted from the transfer request', $clTRID);
return;
}
}
$stmt = $db->prepare("UPDATE `domain` SET `exdate` = DATE_ADD(`exdate`, INTERVAL ? MONTH), `update` = CURRENT_TIMESTAMP, `clid` = ?, `upid` = ?, `trdate` = CURRENT_TIMESTAMP, `trstatus` = 'clientApproved', `acdate` = CURRENT_TIMESTAMP, `transfer_exdate` = NULL, `rgpstatus` = 'transferPeriod', `transferPeriod` = ? WHERE `id` = ?");
$stmt->execute([$date_add, $row["reid"], $clid, $date_add, $domain_id]);
$stmt = $db->prepare("UPDATE `host` SET `clid` = ?, `upid` = ?, `update` = CURRENT_TIMESTAMP, `trdate` = CURRENT_TIMESTAMP WHERE `domain_id` = ?");
$stmt->execute([$row["reid"], $clid, $domain_id]);
if ($stmt->errorCode() !== PDO::ERR_NONE) {
sendEppError($conn, 2400, 'The transfer was not successful, something is wrong', $clTRID);
return;
} else {
$stmt = $db->prepare("UPDATE `registrar` SET `accountBalance` = (`accountBalance` - :price) WHERE `id` = :reid");
$stmt->execute(['price' => $price, 'reid' => $reid]);
$stmt = $db->prepare("INSERT INTO `payment_history` (`registrar_id`,`date`,`description`,`amount`) VALUES(:reid, CURRENT_TIMESTAMP, :description, :amount)");
$description = "transfer domain $domainName for period $date_add MONTH";
$stmt->execute(['reid' => $reid, 'description' => $description, 'amount' => -$price]);
$stmt = $db->prepare("SELECT `exdate` FROM `domain` WHERE `id` = :domain_id LIMIT 1");
$stmt->execute(['domain_id' => $domain_id]);
$to = $stmt->fetchColumn();
$stmt = $db->prepare("INSERT INTO `statement` (`registrar_id`,`date`,`command`,`domain_name`,`length_in_months`,`from`,`to`,`amount`) VALUES(:registrar_id, CURRENT_TIMESTAMP, :command, :domain_name, :length_in_months, :from, :to, :amount)");
$stmt->execute(['registrar_id' => $reid, 'command' => $blob["cmd"], 'domain_name' => $domainName, 'length_in_months' => $date_add, 'from' => $from, 'to' => $to, 'amount' => $price]);
$stmt = $db->prepare("SELECT `id`,`registrant`,`crdate`,`exdate`,`update`,`clid`,`crid`,`upid`,`trdate`,`trstatus`,`reid`,`redate`,`acid`,`acdate`,`transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute(['name' => $domainName]);
$row = $stmt->fetch(PDO::FETCH_ASSOC);
extract($row);
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :reid LIMIT 1");
$stmt->execute(['reid' => $reid]);
$reid_identifier = $stmt->fetchColumn();
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :acid LIMIT 1");
$stmt->execute(['acid' => $acid]);
$acid_identifier = $stmt->fetchColumn();
$stmt = $db->prepare("SELECT `id` FROM `statistics` WHERE `date` = CURDATE()");
$stmt->execute();
$curdate_id = $stmt->fetchColumn();
if (!$curdate_id) {
$stmt = $db->prepare("INSERT IGNORE INTO `statistics` (`date`) VALUES(CURDATE())");
$stmt->execute();
}
$stmt = $db->prepare("UPDATE `statistics` SET `transfered_domains` = `transfered_domains` + 1 WHERE `date` = CURDATE()");
$stmt->execute();
$response = [
'command' => 'transfer_domain',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Command completed successfully',
'name' => $domainName,
'trStatus' => $trstatus,
'reID' => $reid_identifier,
'reDate' => $redate,
'acID' => $acid_identifier,
'acDate' => $acdate,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
if ($transfer_exdate) {
$response["exDate"] = $transfer_exdate;
}
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
} else {
sendEppError($conn, 2301, 'The domain is NOT pending transfer', $clTRID);
return;
}
}
elseif ($op === 'cancel') {
if ($clid === $registrar_id_domain) {
sendEppError($conn, 2201, 'Only the APPLICANT can cancel', $clTRID);
return;
}
if ($authInfo_pw) {
$stmt = $db->prepare("SELECT `id` FROM `domain_authInfo` WHERE `domain_id` = :domain_id AND `authtype` = 'pw' AND `authinfo` = :authInfo_pw LIMIT 1");
$stmt->execute(['domain_id' => $domain_id, 'authInfo_pw' => $authInfo_pw]);
$domain_authinfo_id = $stmt->fetchColumn();
if (!$domain_authinfo_id) {
sendEppError($conn, 2202, 'authInfo pw is not correct', $clTRID);
return;
}
}
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate`, `transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute(['name' => $domainName]);
$row = $stmt->fetch(PDO::FETCH_ASSOC);
extract($row);
if ($trstatus === 'pending') {
$stmt = $db->prepare("UPDATE `domain` SET `trstatus` = 'clientCancelled' WHERE `id` = :domain_id");
$stmt->execute(['domain_id' => $domain_id]);
if ($stmt->errorCode() !== '00000') {
sendEppError($conn, 2400, 'The transfer was not canceled successfully, something is wrong', $clTRID);
return;
} else {
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate`, `transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute(['name' => $domainName]);
$row = $stmt->fetch(PDO::FETCH_ASSOC);
extract($row);
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :reid LIMIT 1");
$stmt->execute(['reid' => $reid]);
$reid_identifier = $stmt->fetchColumn();
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :acid LIMIT 1");
$stmt->execute(['acid' => $acid]);
$acid_identifier = $stmt->fetchColumn();
$response = [
'command' => 'transfer_domain',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Command completed successfully',
'name' => $domainName,
'trStatus' => $trstatus,
'reID' => $reid_identifier,
'reDate' => $redate,
'acID' => $acid_identifier,
'acDate' => $acdate,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
if ($transfer_exdate) {
$response["exDate"] = $transfer_exdate;
}
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
} else {
sendEppError($conn, 2301, 'The domain is NOT pending transfer', $clTRID);
return;
}
}
elseif ($op === 'query') {
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate`, `transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute(['name' => $domainName]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
extract($result);
if ($trstatus === 'pending') {
$stmtReID = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :reid LIMIT 1");
$stmtReID->execute(['reid' => $reid]);
$reid_identifier = $stmtReID->fetchColumn();
$stmtAcID = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :acid LIMIT 1");
$stmtAcID->execute(['acid' => $acid]);
$acid_identifier = $stmtAcID->fetchColumn();
$response = [
'command' => 'transfer_domain',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Command completed successfully',
'name' => $domainName,
'trStatus' => $trstatus,
'reID' => $reid_identifier,
'reDate' => $redate,
'acID' => $acid_identifier,
'acDate' => $acdate,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
if ($transfer_exdate) {
$response["exDate"] = $transfer_exdate;
}
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
} else {
sendEppError($conn, 2301, 'The domain is NOT pending transfer', $clTRID);
return;
}
$msg = epp_writer($blob);
echo $msg;
$uptr = update_transaction($msg);
exit;
}
elseif ($op === 'reject') {
if ($clid !== $registrar_id_domain) {
sendEppError($conn, 2201, 'Only LOSING REGISTRAR can reject', $clTRID);
return;
}
if ($authInfo_pw) {
$stmtAuthInfo = $db->prepare("SELECT `id` FROM `domain_authInfo` WHERE `domain_id` = :domain_id AND `authtype` = 'pw' AND `authinfo` = :authInfo_pw LIMIT 1");
$stmtAuthInfo->execute(['domain_id' => $domain_id, 'authInfo_pw' => $authInfo_pw]);
$domain_authinfo_id = $stmtAuthInfo->fetchColumn();
if (!$domain_authinfo_id) {
sendEppError($conn, 2202, 'authInfo pw is not correct', $clTRID);
return;
}
}
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate`, `transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute(['name' => $domainName]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
extract($result);
if ($trstatus === 'pending') {
$stmtUpdate = $db->prepare("UPDATE `domain` SET `trstatus` = 'clientRejected' WHERE `id` = :domain_id");
$success = $stmtUpdate->execute(['domain_id' => $domain_id]);
if (!$success || $stmtUpdate->errorCode() !== '00000') {
sendEppError($conn, 2400, 'The transfer was not successfully rejected, something is wrong', $clTRID);
return;
} else {
$stmtReID = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :reid LIMIT 1");
$stmtReID->execute(['reid' => $reid]);
$reid_identifier = $stmtReID->fetchColumn();
$stmtAcID = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :acid LIMIT 1");
$stmtAcID->execute(['acid' => $acid]);
$acid_identifier = $stmtAcID->fetchColumn();
$response = [
'command' => 'transfer_domain',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Command completed successfully',
'name' => $domainName,
'trStatus' => $trstatus,
'reID' => $reid_identifier,
'reDate' => $redate,
'acID' => $acid_identifier,
'acDate' => $acdate,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
if ($transfer_exdate) {
$response["exDate"] = $transfer_exdate;
}
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
} else {
sendEppError($conn, 2301, 'The domain is NOT pending transfer', $clTRID);
return;
}
}
elseif ($op === 'request') {
// Check days from registration
$stmt = $db->prepare("SELECT DATEDIFF(CURRENT_TIMESTAMP, `crdate`) FROM `domain` WHERE `id` = :domain_id LIMIT 1");
$stmt->execute(['domain_id' => $domain_id]);
$days_from_registration = $stmt->fetchColumn();
if ($days_from_registration < 60) {
sendEppError($conn, 2201, 'The domain name must not be within 60 days of its initial registration', $clTRID);
return;
}
// Check days from last transfer
$stmt = $db->prepare("SELECT `trdate`, DATEDIFF(CURRENT_TIMESTAMP,`trdate`) AS `intval` FROM `domain` WHERE `id` = :domain_id LIMIT 1");
$stmt->execute(['domain_id' => $domain_id]);
$result = $stmt->fetch();
$last_trdate = $result["trdate"];
$days_from_last_transfer = $result["intval"];
if ($last_trdate && $days_from_last_transfer < 60) {
sendEppError($conn, 2201, 'The domain name must not be within 60 days of its last transfer from another registrar', $clTRID);
return;
}
// Check days from expiry date
$stmt = $db->prepare("SELECT DATEDIFF(CURRENT_TIMESTAMP,`exdate`) FROM `domain` WHERE `id` = :domain_id LIMIT 1");
$stmt->execute(['domain_id' => $domain_id]);
$days_from_expiry_date = $stmt->fetchColumn();
if ($days_from_expiry_date > 30) {
sendEppError($conn, 2201, 'The domain name must not be more than 30 days past its expiry date', $clTRID);
return;
}
// Auth info with ROID
if ($authInfo_pw_roid) {
// Retain only numbers from roid
$authInfo_pw_roid = preg_replace("/\D/", "", $authInfo_pw_roid);
$stmt = $db->prepare("SELECT `contact_id` FROM `domain_contact_map` WHERE `domain_id` = :domain_id AND `contact_id` = :authInfo_pw_roid LIMIT 1");
$stmt->execute(['domain_id' => $domain_id, 'authInfo_pw_roid' => $authInfo_pw_roid]);
$contact_id_roid = $stmt->fetchColumn();
if (!$contact_id_roid) {
sendEppError($conn, 2202, 'authInfo pw with roid is invalid', $clTRID);
return;
}
$stmt = $db->prepare("SELECT `id` FROM `contact_authInfo` WHERE `contact_id` = :authInfo_pw_roid AND `authtype` = 'pw' AND `authinfo` = :authInfo_pw LIMIT 1");
$stmt->execute(['authInfo_pw_roid' => $authInfo_pw_roid, 'authInfo_pw' => $authInfo_pw]);
$contact_authInfo_id = $stmt->fetchColumn();
if (!$contact_authInfo_id) {
sendEppError($conn, 2202, 'authInfo pw with roid is invalid', $clTRID);
return;
}
} else {
$stmt = $db->prepare("SELECT `id` FROM `domain_authInfo` WHERE `domain_id` = :domain_id AND `authtype` = 'pw' AND `authinfo` = :authInfo_pw LIMIT 1");
$stmt->execute(['domain_id' => $domain_id, 'authInfo_pw' => $authInfo_pw]);
$domain_authinfo_id = $stmt->fetchColumn();
if (!$domain_authinfo_id) {
sendEppError($conn, 2202, 'authInfo pw is invalid', $clTRID);
return;
}
}
// Check domain status
$stmt = $db->prepare("SELECT `status` FROM `domain_status` WHERE `domain_id` = :domain_id");
$stmt->execute(['domain_id' => $domain_id]);
while ($status = $stmt->fetchColumn()) {
if (preg_match('/.*(TransferProhibited)$/', $status) || preg_match('/^pending/', $status)) {
sendEppError($conn, 2304, 'It has a status that does not allow the transfer', $clTRID);
return;
}
}
if ($clid == $registrar_id_domain) {
sendEppError($conn, 2106, 'Destination client of the transfer operation is the domain sponsoring client', $clTRID);
return;
}
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate` FROM `domain` WHERE `name` = ? LIMIT 1");
$stmt->execute([$domainName]);
$row = $stmt->fetch(PDO::FETCH_ASSOC);
$domain_id = $row['id'];
$registrant = $row['registrant'];
$crdate = $row['crdate'];
$exdate = $row['exdate'];
$update = $row['update'];
$registrar_id_domain = $row['clid'];
$crid = $row['crid'];
$upid = $row['upid'];
$trdate = $row['trdate'];
$trstatus = $row['trstatus'];
$reid = $row['reid'];
$redate = $row['redate'];
$acid = $row['acid'];
$acdate = $row['acdate'];
if (!$trstatus || $trstatus !== 'pending') {
$period = (int) ($xml->xpath('domain:period[1]')[0] ?? 0);
$period_unit = ($xml->xpath('domain:period/@unit[1]')[0] ?? '');
if ($period) {
if ($period < 1 || $period > 99) {
sendEppError($conn, 2004, "domain:period minLength value='1', maxLength value='99'", $clTRID);
return;
}
}
if ($period_unit) {
if (!in_array($period_unit, ['m', 'y'])) {
sendEppError($conn, 2004, 'domain:period unit m|y', $clTRID);
return;
}
}
$date_add = 0;
if ($period_unit === 'y') {
$date_add = $period * 12;
} elseif ($period_unit === 'm') {
$date_add = $period;
}
if ($date_add > 0) {
if (!preg_match("/^(12|24|36|48|60|72|84|96|108|120)$/", $date_add)) {
sendEppError($conn, 2306, 'Not less than 1 year and not more than 10', $clTRID);
return;
}
$stmt = $db->prepare("SELECT `accountBalance`, `creditLimit` FROM `registrar` WHERE `id` = :registrar_id LIMIT 1");
$stmt->execute([':registrar_id' => $clid]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
$registrar_balance = $result["accountBalance"];
$creditLimit = $result["creditLimit"];
$stmt = $db->prepare("SELECT `m$date_add` FROM `domain_price` WHERE `tldid` = :tldid AND `command` = 'transfer' LIMIT 1");
$stmt->execute([':tldid' => $tldid]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
$price = $result["m$date_add"];
if (($registrar_balance + $creditLimit) < $price) {
sendEppError($conn, 2104, 'The registrar who wants to take over this domain has no money', $clTRID);
return;
}
$waiting_period = 5;
$stmt = $db->prepare("UPDATE `domain` SET `trstatus` = 'pending', `reid` = :registrar_id, `redate` = CURRENT_TIMESTAMP, `acid` = :registrar_id_domain, `acdate` = DATE_ADD(CURRENT_TIMESTAMP, INTERVAL $waiting_period DAY), `transfer_exdate` = DATE_ADD(`exdate`, INTERVAL $date_add MONTH) WHERE `id` = :domain_id");
$stmt->execute([':registrar_id' => $clid, ':registrar_id_domain' => $registrar_id_domain, ':domain_id' => $domain_id]);
if ($stmt->errorCode() !== '00000') {
sendEppError($conn, 2400, 'The transfer was not initiated successfully, something is wrong', $clTRID);
return;
} else {
// Get the domain details
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate`, `transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute([':name' => $domainName]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
list($domain_id, $registrant, $crdate, $exdate, $update, $registrar_id_domain, $crid, $upid, $trdate, $trstatus, $reid, $redate, $acid, $acdate, $transfer_exdate) = array_values($result);
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :reid LIMIT 1");
$stmt->execute([':reid' => $reid]);
$reid_identifier = $stmt->fetchColumn();
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :acid LIMIT 1");
$stmt->execute([':acid' => $acid]);
$acid_identifier = $stmt->fetchColumn();
// The current sponsoring registrar will receive a notification of a pending transfer
$stmt = $db->prepare("INSERT INTO `poll` (`registrar_id`,`qdate`,`msg`,`msg_type`,`obj_name_or_id`,`obj_trStatus`,`obj_reID`,`obj_reDate`,`obj_acID`,`obj_acDate`,`obj_exDate`) VALUES(:registrar_id_domain, CURRENT_TIMESTAMP, 'Transfer requested.', 'domainTransfer', :name, 'pending', :reid_identifier, :redate, :acid_identifier, :acdate, :transfer_exdate)");
$stmt->execute([
':registrar_id_domain' => $registrar_id_domain,
':name' => $domainName,
':reid_identifier' => $reid_identifier,
':redate' => $redate,
':acid_identifier' => $acid_identifier,
':acdate' => $acdate,
':transfer_exdate' => $transfer_exdate
]);
$response = [
'command' => 'transfer_domain',
'resultCode' => 1001,
'lang' => 'en-US',
'message' => 'Command completed successfully; action pending',
'name' => $domainName,
'trStatus' => $trstatus,
'reID' => $reid_identifier,
'reDate' => $redate,
'acID' => $acid_identifier,
'acDate' => $acdate,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
if ($transfer_exdate) {
$response["exDate"] = $transfer_exdate;
}
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
} else {
// No expiration date is inserted after the transfer procedure
$waiting_period = 5; // days
$stmt = $db->prepare("UPDATE `domain` SET `trstatus` = 'pending', `reid` = :registrar_id, `redate` = CURRENT_TIMESTAMP, `acid` = :registrar_id_domain, `acdate` = DATE_ADD(CURRENT_TIMESTAMP, INTERVAL :waiting_period DAY), `transfer_exdate` = NULL WHERE `id` = :domain_id");
$stmt->execute([
':registrar_id' => $clid,
':registrar_id_domain' => $registrar_id_domain,
':waiting_period' => $waiting_period,
':domain_id' => $domain_id
]);
if ($stmt->errorCode() !== '00000') {
sendEppError($conn, 2400, 'The transfer was not initiated successfully, something is wrong', $clTRID);
return;
} else {
// Get the domain details
$stmt = $db->prepare("SELECT `id`, `registrant`, `crdate`, `exdate`, `update`, `clid`, `crid`, `upid`, `trdate`, `trstatus`, `reid`, `redate`, `acid`, `acdate`, `transfer_exdate` FROM `domain` WHERE `name` = :name LIMIT 1");
$stmt->execute([':name' => $domainName]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
list($domain_id, $registrant, $crdate, $exdate, $update, $registrar_id_domain, $crid, $upid, $trdate, $trstatus, $reid, $redate, $acid, $acdate, $transfer_exdate) = array_values($result);
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :reid LIMIT 1");
$stmt->execute([':reid' => $reid]);
$reid_identifier = $stmt->fetchColumn();
$stmt = $db->prepare("SELECT `clid` FROM `registrar` WHERE `id` = :acid LIMIT 1");
$stmt->execute([':acid' => $acid]);
$acid_identifier = $stmt->fetchColumn();
// Notify the current sponsoring registrar of the pending transfer
$stmt = $db->prepare("INSERT INTO `poll` (`registrar_id`, `qdate`, `msg`, `msg_type`, `obj_name_or_id`, `obj_trStatus`, `obj_reID`, `obj_reDate`, `obj_acID`, `obj_acDate`, `obj_exDate`) VALUES(:registrar_id_domain, CURRENT_TIMESTAMP, 'Transfer requested.', 'domainTransfer', :name, 'pending', :reid_identifier, :redate, :acid_identifier, :acdate, NULL)");
$stmt->execute([
':registrar_id_domain' => $registrar_id_domain,
':name' => $domainName,
':reid_identifier' => $reid_identifier,
':redate' => $redate,
':acid_identifier' => $acid_identifier,
':acdate' => $acdate
]);
$response = [
'command' => 'transfer_domain',
'resultCode' => 1001,
'lang' => 'en-US',
'message' => 'Command completed successfully; action pending',
'name' => $domainName,
'trStatus' => $trstatus,
'reID' => $reid_identifier,
'reDate' => $redate,
'acID' => $acid_identifier,
'acDate' => $acdate,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
if ($transfer_exdate) {
$response["exDate"] = $transfer_exdate;
}
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
}
} elseif ($trstatus === 'pending') {
sendEppError($conn, 2300, 'Command failed as the domain is pending transfer', $clTRID);
return;
}
}
else {
sendEppError($conn, 2005, 'Only op: approve|cancel|query|reject|request are accepted', $clTRID);
return;
}
} }

12
epp/start.php
View file

@ -281,6 +281,18 @@ $server->handle(function (Connection $conn) use ($table, $db, $c) {
processDomainDelete($conn, $db, $xml, $data['clid'], $c['db_type']); processDomainDelete($conn, $db, $xml, $data['clid'], $c['db_type']);
break; break;
} }
case isset($xml->command->transfer) && isset($xml->command->transfer->children('urn:ietf:params:xml:ns:domain-1.0')->transfer):
{
$data = $table->get($connId);
$clTRID = (string) $xml->command->clTRID;
if (!$data || $data['logged_in'] !== 1) {
sendEppError($conn, 2202, 'Authorization error', $clTRID);
$conn->close();
}
processDomainTransfer($conn, $db, $xml, $data['clid'], $c['db_type']);
break;
}
case isset($xml->command->check) && isset($xml->command->check->children('urn:ietf:params:xml:ns:host-1.0')->check): case isset($xml->command->check) && isset($xml->command->check->children('urn:ietf:params:xml:ns:host-1.0')->check):
{ {