mirror of
https://github.com/getnamingo/registry.git
synced 2025-07-01 16:43:26 +02:00
277 lines
No EOL
8.9 KiB
PHP
277 lines
No EOL
8.9 KiB
PHP
<?php
|
|
|
|
function checkLogin($db, $clID, $pw) {
|
|
$stmt = $db->prepare("SELECT pw FROM registrar WHERE clid = :username");
|
|
$stmt->execute(['username' => $clID]);
|
|
$hashedPassword = $stmt->fetchColumn();
|
|
|
|
return password_verify($pw, $hashedPassword);
|
|
}
|
|
|
|
function sendGreeting($conn) {
|
|
global $c;
|
|
$currentDate = gmdate('Y-m-d\TH:i:s\Z');
|
|
|
|
$response = [
|
|
'command' => 'greeting',
|
|
'svID' => $c['epp_greeting'],
|
|
'svDate' => $currentDate,
|
|
'version' => '1.0',
|
|
'lang' => 'en',
|
|
'services' => [
|
|
'urn:ietf:params:xml:ns:domain-1.0',
|
|
'urn:ietf:params:xml:ns:contact-1.0',
|
|
'urn:ietf:params:xml:ns:host-1.0'
|
|
],
|
|
'extensions' => [
|
|
'https://namingo.org/epp/funds-1.0',
|
|
'https://namingo.org/epp/identica-1.0',
|
|
'urn:ietf:params:xml:ns:secDNS-1.1',
|
|
'urn:ietf:params:xml:ns:rgp-1.0',
|
|
'urn:ietf:params:xml:ns:launch-1.0',
|
|
'urn:ietf:params:xml:ns:idn-1.0',
|
|
'urn:ietf:params:xml:ns:epp:fee-1.0',
|
|
'urn:ar:params:xml:ns:price-1.1'
|
|
],
|
|
'dcp' => [ // Data Collection Policy (optional)
|
|
'access' => ['all'],
|
|
'statement' => [
|
|
'purpose' => ['admin', 'prov'],
|
|
'recipient' => ['ours'],
|
|
'retention' => ['stated']
|
|
]
|
|
]
|
|
];
|
|
|
|
$epp = new EPP\EppWriter();
|
|
$xml = $epp->epp_writer($response);
|
|
sendEppResponse($conn, $xml);
|
|
}
|
|
|
|
function sendEppError($conn, $db, $code, $msg, $clTRID = "000", $trans = "0") {
|
|
if (!isset($clTRID)) {
|
|
$clTRID = "000";
|
|
}
|
|
if (!isset($trans)) {
|
|
$trans = "0";
|
|
}
|
|
$svTRID = generateSvTRID();
|
|
$response = [
|
|
'command' => 'error',
|
|
'resultCode' => $code,
|
|
'human_readable_message' => $msg,
|
|
'clTRID' => $clTRID,
|
|
'svTRID' => $svTRID,
|
|
];
|
|
|
|
$epp = new EPP\EppWriter();
|
|
$xml = $epp->epp_writer($response);
|
|
updateTransaction($db, null, null, 'error', $code, $msg, $svTRID, $xml, $trans);
|
|
sendEppResponse($conn, $xml);
|
|
}
|
|
|
|
function sendEppResponse($conn, $response) {
|
|
$length = strlen($response) + 4; // Total length including the 4-byte header
|
|
$lengthData = pack('N', $length); // Pack the length into 4 bytes
|
|
|
|
$conn->send($lengthData . $response);
|
|
}
|
|
|
|
function generateSvTRID() {
|
|
global $c;
|
|
$prefix = $c['epp_prefix'];
|
|
|
|
// Get current timestamp
|
|
$timestamp = time();
|
|
|
|
// Generate a random 5-character alphanumeric string
|
|
$randomString = bin2hex(random_bytes(5));
|
|
|
|
// Combine the prefix, timestamp, and random string to form the svTRID
|
|
$svTRID = "{$prefix}-{$timestamp}-{$randomString}";
|
|
|
|
return $svTRID;
|
|
}
|
|
|
|
function getRegistrarClid(PDO $db, $id) {
|
|
$stmt = $db->prepare("SELECT clid FROM registrar WHERE id = :id");
|
|
$stmt->execute([':id' => $id]);
|
|
$result = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
return $result['clid'] ?? null; // Return the clid if found, otherwise return null
|
|
}
|
|
|
|
function getContactIdentifier(PDO $db, $id) {
|
|
$stmt = $db->prepare("SELECT identifier FROM contact WHERE id = :id");
|
|
$stmt->execute([':id' => $id]);
|
|
$result = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
return $result['identifier'] ?? null; // Return the identifier if found, otherwise return null
|
|
}
|
|
|
|
function getHost(PDO $db, $id) {
|
|
$stmt = $db->prepare("SELECT name FROM host WHERE id = :id");
|
|
$stmt->execute([':id' => $id]);
|
|
$result = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
return $result['name'] ?? null; // Return the name if found, otherwise return null
|
|
}
|
|
|
|
function validate_identifier($identifier) {
|
|
if (!$identifier) {
|
|
return 'Abstract client and object identifier type minLength value=3';
|
|
}
|
|
|
|
if (strlen($identifier) < 3) {
|
|
return 'Abstract client and object identifier type minLength value=3';
|
|
}
|
|
|
|
if (strlen($identifier) > 16) {
|
|
return 'Abstract client and object identifier type maxLength value=16';
|
|
}
|
|
|
|
if (preg_match('/[^A-Z0-9\-]/', $identifier)) {
|
|
return 'The ID of the contact must contain letters (A-Z) (ASCII) hyphen (-), and digits (0-9). Registry assigns each registrar a unique prefix with which that registrar must create contact IDs.';
|
|
}
|
|
}
|
|
|
|
function validate_label($label, $pdo) {
|
|
if (!$label) {
|
|
return 'You must enter a domain name';
|
|
}
|
|
if (strlen($label) > 63) {
|
|
return 'Total lenght of your domain must be less then 63 characters';
|
|
}
|
|
if (strlen($label) < 2) {
|
|
return 'Total lenght of your domain must be greater then 2 characters';
|
|
}
|
|
if (preg_match("/(^-|^\.|-\.|\.-|--|\.\.|-$|\.$)/", $label)) {
|
|
return 'Invalid domain name format, cannot begin or end with a hyphen (-)';
|
|
}
|
|
|
|
// Extract TLD from the domain and prepend a dot
|
|
$parts = explode('.', $label);
|
|
$tld = "." . end($parts);
|
|
|
|
// Check if the TLD exists in the domain_tld table
|
|
$stmtTLD = $pdo->prepare("SELECT COUNT(*) FROM domain_tld WHERE tld = :tld");
|
|
$stmtTLD->bindParam(':tld', $tld, PDO::PARAM_STR);
|
|
$stmtTLD->execute();
|
|
$tldExists = $stmtTLD->fetchColumn();
|
|
|
|
if (!$tldExists) {
|
|
return 'Zone is not supported';
|
|
}
|
|
|
|
// Fetch the IDN regex for the given TLD
|
|
$stmtRegex = $pdo->prepare("SELECT idn_table FROM domain_tld WHERE tld = :tld");
|
|
$stmtRegex->bindParam(':tld', $tld, PDO::PARAM_STR);
|
|
$stmtRegex->execute();
|
|
$idnRegex = $stmtRegex->fetchColumn();
|
|
|
|
if (!$idnRegex) {
|
|
return 'Failed to fetch domain IDN table';
|
|
}
|
|
|
|
// Check for invalid characters using fetched regex
|
|
if (!preg_match($idnRegex, $label)) {
|
|
$server->send($fd, "Domain name invalid format");
|
|
return 'Invalid domain name format, please review registry policy about accepted labels';
|
|
}
|
|
}
|
|
|
|
function normalize_v4_address($v4) {
|
|
// Remove leading zeros from the first octet
|
|
$v4 = preg_replace('/^0+(\d)/', '$1', $v4);
|
|
|
|
// Remove leading zeros from successive octets
|
|
$v4 = preg_replace('/\.0+(\d)/', '.$1', $v4);
|
|
|
|
return $v4;
|
|
}
|
|
|
|
function normalize_v6_address($v6) {
|
|
// Upper case any alphabetics
|
|
$v6 = strtoupper($v6);
|
|
|
|
// Remove leading zeros from the first word
|
|
$v6 = preg_replace('/^0+([\dA-F])/', '$1', $v6);
|
|
|
|
// Remove leading zeros from successive words
|
|
$v6 = preg_replace('/:0+([\dA-F])/', ':$1', $v6);
|
|
|
|
// Introduce a :: if there isn't one already
|
|
if (strpos($v6, '::') === false) {
|
|
$v6 = preg_replace('/:0:0:/', '::', $v6);
|
|
}
|
|
|
|
// Remove initial zero word before a ::
|
|
$v6 = preg_replace('/^0+::/', '::', $v6);
|
|
|
|
// Remove other zero words before a ::
|
|
$v6 = preg_replace('/(:0)+::/', '::', $v6);
|
|
|
|
// Remove zero words following a ::
|
|
$v6 = preg_replace('/:(:0)+/', ':', $v6);
|
|
|
|
return $v6;
|
|
}
|
|
|
|
function createTransaction($db, $clid, $clTRID, $clTRIDframe) {
|
|
// Prepare the statement for insertion
|
|
$stmt = $db->prepare("INSERT INTO `registryTransaction`.`transaction_identifier` (`registrar_id`,`clTRID`,`clTRIDframe`,`cldate`,`clmicrosecond`) VALUES(?,?,?,?,?)");
|
|
|
|
// Get date and microsecond for cl transaction
|
|
$dateForClTransaction = microtime(true);
|
|
$cldate = date("Y-m-d H:i:s", $dateForClTransaction);
|
|
$clmicrosecond = sprintf("%06d", ($dateForClTransaction - floor($dateForClTransaction)) * 1000000);
|
|
|
|
// Execute the statement
|
|
if (!$stmt->execute([
|
|
$clid,
|
|
$clTRID,
|
|
$clTRIDframe,
|
|
$cldate,
|
|
$clmicrosecond
|
|
])) {
|
|
throw new Exception("Failed to execute createTransaction: " . implode(", ", $stmt->errorInfo()));
|
|
}
|
|
|
|
// Return the ID of the newly created transaction
|
|
return $db->lastInsertId();
|
|
}
|
|
|
|
function updateTransaction($db, $cmd, $obj_type, $obj_id, $code, $msg, $svTRID, $svTRIDframe, $transaction_id) {
|
|
// Prepare the statement
|
|
$stmt = $db->prepare("UPDATE `registryTransaction`.`transaction_identifier` SET `cmd` = ?, `obj_type` = ?, `obj_id` = ?, `code` = ?, `msg` = ?, `svTRID` = ?, `svTRIDframe` = ?, `svdate` = ?, `svmicrosecond` = ? WHERE `id` = ?");
|
|
|
|
// Get date and microsecond for sv transaction
|
|
$dateForSvTransaction = microtime(true);
|
|
$svdate = date("Y-m-d H:i:s", $dateForSvTransaction);
|
|
$svmicrosecond = sprintf("%06d", ($dateForSvTransaction - floor($dateForSvTransaction)) * 1000000);
|
|
|
|
// Execute the statement
|
|
if (!$stmt->execute([
|
|
$cmd,
|
|
$obj_type,
|
|
$obj_id,
|
|
$code,
|
|
$msg,
|
|
$svTRID,
|
|
$svTRIDframe,
|
|
$svdate,
|
|
$svmicrosecond,
|
|
$transaction_id
|
|
])) {
|
|
throw new Exception("Failed to execute updateTransaction: " . implode(", ", $stmt->errorInfo()));
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
function getClid(PDO $db, string $clid): ?int {
|
|
$stmt = $db->prepare("SELECT id FROM registrar WHERE clid = :clid LIMIT 1");
|
|
$stmt->bindParam(':clid', $clid, PDO::PARAM_STR);
|
|
$stmt->execute();
|
|
|
|
$result = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
|
|
return $result ? (int)$result['id'] : null;
|
|
} |