zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-05-21 20:09:20 +02:00
Code Issues Projects Releases Packages Wiki Activity

Fixed #36

Browse source
This commit is contained in:
Pinga 2024-01-02 10:28:29 +02:00
parent 80d89a6b90
commit a69a642a12
3 changed files with 167 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

80
cp/app/Controllers/ApplicationsController.php
View file

@ -5,6 +5,9 @@ namespace App\Controllers;
use Psr\Http\Message\ResponseInterface as Response;
use Psr\Http\Message\ServerRequestInterface as Request;
use Psr\Container\ContainerInterface;
use Selective\XmlDSig\PublicKeyStore;
use Selective\XmlDSig\CryptoVerifier;
use Selective\XmlDSig\XmlSignatureVerifier;
class ApplicationsController extends Controller
{
@ -151,6 +154,83 @@ class ApplicationsController extends Controller
$notafter = null;
$accepted = null;
}
if ($phaseType === 'sunrise') {
if ($smd !== null && $smd !== '') {
// Extract the BASE64 encoded part
$beginMarker = "-----BEGIN ENCODED SMD-----";
$endMarker = "-----END ENCODED SMD-----";
$beginPos = strpos($smd, $beginMarker) + strlen($beginMarker);
$endPos = strpos($smd, $endMarker);
$encodedSMD = trim(substr($smd, $beginPos, $endPos - $beginPos));
// Decode the BASE64 content
$xmlContent = base64_decode($encodedSMD);
// Load the XML content using DOMDocument
$domDocument = new \DOMDocument();
$domDocument->preserveWhiteSpace = false;
$domDocument->formatOutput = true;
$domDocument->loadXML($xmlContent);
// Parse data
$xpath = new \DOMXPath($domDocument);
$xpath->registerNamespace('smd', 'urn:ietf:params:xml:ns:signedMark-1.0');
$xpath->registerNamespace('mark', 'urn:ietf:params:xml:ns:mark-1.0');
$notBefore = new \DateTime($xpath->evaluate('string(//smd:notBefore)'));
$notAfter = new \DateTime($xpath->evaluate('string(//smd:notAfter)'));
$markName = $xpath->evaluate('string(//mark:markName)');
$labels = [];
foreach ($xpath->query('//mark:label') as $x_label) {
$labels[] = $x_label->nodeValue;
}
if (!in_array($label, $labels)) {
return view($response, 'admin/domains/createApplication.twig', [
'domainName' => $domainName,
'error' => "SMD file is not valid for the application being created.",
'registrars' => $registrars,
'registrar' => $registrar,
]);
}
// Check if current date and time is between notBefore and notAfter
$now = new \DateTime();
if (!($now >= $notBefore && $now <= $notAfter)) {
// Current time is outside the valid range, return an error view
return view($response, 'admin/domains/createApplication.twig', [
'domainName' => $domainName,
'error' => "Current time is outside the valid range.",
'registrars' => $registrars,
'registrar' => $registrar,
]);
}
// Verify the signature
$publicKeyStore = new PublicKeyStore();
$publicKeyStore->loadFromDocument($domDocument);
$cryptoVerifier = new CryptoVerifier($publicKeyStore);
$xmlSignatureVerifier = new XmlSignatureVerifier($cryptoVerifier);
$isValid = $xmlSignatureVerifier->verifyXml($xmlContent);
if (!$isValid) {
return view($response, 'admin/domains/createApplication.twig', [
'domainName' => $domainName,
'error' => "The XML signature of the SMD file is not valid.",
'registrars' => $registrars,
'registrar' => $registrar,
]);
}
} else {
return view($response, 'admin/domains/createApplication.twig', [
'domainName' => $domainName,
'error' => "SMD upload is required in the 'sunrise' phase.",
'registrars' => $registrars,
'registrar' => $registrar,
]);
}
}
$domain_already_reserved = $db->selectValue(
'SELECT id FROM reserved_domain_names WHERE name = ? LIMIT 1',