zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-08-17 06:43:49 +02:00
Code Issues Projects Releases Packages Wiki Activity

Added ability to link client SSL to EPP users

Browse source
This commit is contained in:
Pinga 2025-07-10 16:19:38 +03:00
parent db64250093
commit f8f711e348
6 changed files with 787 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

24
epp/src/helpers.php
View file

@ -542,6 +542,30 @@ function getClid(Swoole\Database\PDOProxy $db, string $clid): ?int {
return $result ? (int)$result['id'] : null;
}
function getFingerprint(Swoole\Database\PDOProxy $db, int $clid): ?string {
$stmt = $db->prepare("SELECT ssl_fingerprint FROM registrar WHERE id = :clid LIMIT 1");
$stmt->bindParam(':clid', $clid, PDO::PARAM_INT);
$stmt->execute();
$result = $stmt->fetch(PDO::FETCH_ASSOC);
$stmt->closeCursor();
return $result ? $result['ssl_fingerprint'] : null;
}
function getClientFingerprint(\Swoole\Server $serv, int $fd): ?string {
$info = $serv->getClientInfo($fd);
if (empty($info['ssl_client_cert'])) {
return null;
}
$cert = $info['ssl_client_cert'];
$pem = preg_replace('/\-+BEGIN CERTIFICATE\-+|\-+END CERTIFICATE\-+|\s+/', '', $cert);
$der = base64_decode($pem);
return $der ? strtoupper(hash('sha256', $der)) : null;
}
/**
* Calculate ds-rdata from dnskey-rdata
* For additional information please refer to RFC 5910: http://www.ietf.org/rfc/rfc5910.txt