zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-05-19 10:59:18 +02:00
Code Issues Projects Releases Packages Wiki Activity
getnamingo-registry/epp/epp.php
Pinga 274760f2c5 PgSQL updates in other components
2023-08-15 13:08:43 +03:00

624 lines
No EOL
21 KiB
PHP
Raw Blame History

<?php
//require 'vendor/autoload.php';
global $c;
$c = require_once 'config.php';
require_once 'EppWriter.php';
use Swoole\Coroutine\Server;
use Swoole\Coroutine\Server\Connection;
use Swoole\Table;
$table = new Table(1024);
$table->column('clid', Table::TYPE_STRING, 64);
$table->column('logged_in', Table::TYPE_INT, 1);
$table->create();
$dsn = "{$c['db_type']}:host={$c['db_host']};dbname={$c['db_database']};port={$c['db_port']}";
$db = new PDO($dsn, $c['db_username'], $c['db_password']);
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
Swoole\Runtime::enableCoroutine();
$server = new Server($c['epp_host'], $c['epp_port']);
$server->set([
'enable_coroutine' => true,
'log_file' => '/var/log/epp/epp.log',
'log_level' => SWOOLE_LOG_INFO,
'worker_num' => swoole_cpu_num() * 4,
'pid_file' => $c['epp_pid'],
'tcp_user_timeout' => 10,
'max_request' => 1000,
'open_tcp_nodelay' => true,
'max_conn' => 10000,
'heartbeat_check_interval' => 60,
'heartbeat_idle_time' => 120,
'open_ssl' => true,
'ssl_cert_file' => $c['ssl_cert'],
'ssl_key_file' => $c['ssl_key'],
'ssl_verify_peer' => false,
'ssl_allow_self_signed' => false,
'ssl_protocols' => SWOOLE_SSL_TLSv1_2 | SWOOLE_SSL_TLSv1_3,
]);
$server->handle(function (Connection $conn) use ($table, $db) {
echo "Client connected.\n";
sendGreeting($conn);
while (true) {
$data = $conn->recv();
$connId = spl_object_id($conn);
if ($data === false || strlen($data) < 4) {
sendEppError($conn, 2100, 'Data reception error');
break;
}
$length = unpack('N', substr($data, 0, 4))[1];
$xmlData = substr($data, 4, $length - 4);
// If you're using PHP < 8.0
libxml_disable_entity_loader(true);
libxml_use_internal_errors(true);
$xml = simplexml_load_string($xmlData);
$xml->registerXPathNamespace('e', 'urn:ietf:params:xml:ns:epp-1.0');
$xml->registerXPathNamespace('xsi', 'http://www.w3.org/2001/XMLSchema-instance');
$xml->registerXPathNamespace('domain', 'urn:ietf:params:xml:ns:domain-1.0');
$xml->registerXPathNamespace('contact', 'urn:ietf:params:xml:ns:contact-1.0');
$xml->registerXPathNamespace('host', 'urn:ietf:params:xml:ns:host-1.0');
if ($xml === false) {
sendEppError($conn, 2001, 'Invalid XML');
break;
}
if ($xml->getName() != 'epp') {
continue; // Skip this iteration if not an EPP command
}
switch (true) {
case isset($xml->command->login):
{
$clID = (string) $xml->command->login->clID;
$pw = (string) $xml->command->login->pw;
$clTRID = (string) $xml->command->clTRID;
if (checkLogin($db, $clID, $pw)) {
$table->set($connId, ['clid' => $clID, 'logged_in' => 1]);
$response = [
'command' => 'login',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Login successful',
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
} else {
sendEppError($conn, 2200, 'Authentication error');
}
break;
}
case isset($xml->command->logout):
{
$table->del($connId);
$clTRID = (string) $xml->command->clTRID;
$response = [
'command' => 'logout',
'resultCode' => 1500,
'lang' => 'en-US',
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
$conn->close();
break;
}
case isset($xml->hello):
{
sendGreeting($conn);
break;
}
case isset($xml->command->check) && isset($xml->command->check->children('urn:ietf:params:xml:ns:contact-1.0')->check):
{
$data = $table->get($connId);
if (!$data || $data['logged_in'] !== 1) {
sendEppError($conn, 2202, 'Authorization error');
$conn->close();
}
processContactCheck($conn, $db, $xml);
break;
}
case isset($xml->command->create) && isset($xml->command->create->children('urn:ietf:params:xml:ns:contact-1.0')->create):
{
$data = $table->get($connId);
if (!$data || $data['logged_in'] !== 1) {
sendEppError($conn, 2202, 'Authorization error');
$conn->close();
}
processContactCreate($conn, $db, $xml);
break;
}
case isset($xml->command->info) && isset($xml->command->info->children('urn:ietf:params:xml:ns:contact-1.0')->info):
{
$data = $table->get($connId);
if (!$data || $data['logged_in'] !== 1) {
sendEppError($conn, 2202, 'Authorization error');
$conn->close();
}
processContactInfo($conn, $db, $xml);
break;
}
case isset($xml->command->check) && isset($xml->command->check->children('urn:ietf:params:xml:ns:domain-1.0')->check):
{
$data = $table->get($connId);
if (!$data || $data['logged_in'] !== 1) {
sendEppError($conn, 2202, 'Authorization error');
$conn->close();
}
processDomainCheck($conn, $db, $xml);
break;
}
case isset($xml->command->info) && isset($xml->command->info->children('urn:ietf:params:xml:ns:domain-1.0')->info):
{
$data = $table->get($connId);
if (!$data || $data['logged_in'] !== 1) {
sendEppError($conn, 2202, 'Authorization error');
$conn->close();
}
processDomainInfo($conn, $db, $xml);
break;
}
default:
{
sendEppError($conn, 2102, 'Unrecognized command');
break;
}
}
}
sendEppError($conn, 2100, 'Unknown command');
echo "Client disconnected.\n";
});
echo "Namingo EPP server started.\n";
Swoole\Coroutine::create(function () use ($server) {
$server->start();
});
function sendEppResponse($conn, $response) {
$length = strlen($response) + 4; // Total length including the 4-byte header
$lengthData = pack('N', $length); // Pack the length into 4 bytes
$conn->send($lengthData . $response);
}
function generateSvTRID($prefix = "Namingo") {
// Get current timestamp
$timestamp = time();
// Generate a random 5-character alphanumeric string
$randomString = bin2hex(random_bytes(5));
// Combine the prefix, timestamp, and random string to form the svTRID
$svTRID = "{$prefix}-{$timestamp}-{$randomString}";
return $svTRID;
}
function getRegistrarClid(PDO $db, $id) {
$stmt = $db->prepare("SELECT clid FROM registrar WHERE id = :id");
$stmt->execute([':id' => $id]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
return $result['clid'] ?? null; // Return the clid if found, otherwise return null
}
function getContactIdentifier(PDO $db, $id) {
$stmt = $db->prepare("SELECT identifier FROM contact WHERE id = :id");
$stmt->execute([':id' => $id]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
return $result['identifier'] ?? null; // Return the identifier if found, otherwise return null
}
function getHost(PDO $db, $id) {
$stmt = $db->prepare("SELECT name FROM host WHERE id = :id");
$stmt->execute([':id' => $id]);
$result = $stmt->fetch(PDO::FETCH_ASSOC);
return $result['name'] ?? null; // Return the name if found, otherwise return null
}
function processContactCheck($conn, $db, $xml) {
$contactIDs = $xml->command->check->children('urn:ietf:params:xml:ns:contact-1.0')->check->{'id'};
$clTRID = (string) $xml->command->clTRID;
$results = [];
foreach ($contactIDs as $contactID) {
$contactID = (string)$contactID;
// Validation for contact ID
if (!ctype_alnum($contactID) || strlen($contactID) > 255) {
sendEppError($conn, 2005, 'Invalid contact ID');
return;
}
$stmt = $db->prepare("SELECT 1 FROM contact WHERE id = :id");
$stmt->execute(['id' => $contactID]);
$results[$contactID] = $stmt->fetch() ? '0' : '1'; // 0 if exists, 1 if not
}
$ids = [];
foreach ($results as $id => $available) {
$entry = [$id, $available];
// Check if the contact is unavailable
if (!$available) {
$entry[] = "Contact ID already registered";
}
$ids[] = $entry;
}
$response = [
'command' => 'check_contact',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Command completed successfully',
'ids' => $ids,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
function processContactInfo($conn, $db, $xml) {
$contactID = (string) $xml->command->info->children('urn:ietf:params:xml:ns:contact-1.0')->info->{'id'};
$clTRID = (string) $xml->command->clTRID;
// Validation for contact ID
if (!ctype_alnum($contactID) || strlen($contactID) > 255) {
sendEppError($conn, 2005, 'Invalid contact ID');
return;
}
try {
$stmt = $db->prepare("SELECT * FROM contact WHERE id = :id");
$stmt->execute(['id' => $contactID]);
$contact = $stmt->fetch(PDO::FETCH_ASSOC);
if (!$contact) {
sendEppError($conn, 2303, 'Object does not exist');
return;
}
// Fetch authInfo
$stmt = $db->prepare("SELECT * FROM contact_authInfo WHERE contact_id = :id");
$stmt->execute(['id' => $contactID]);
$authInfo = $stmt->fetch(PDO::FETCH_ASSOC);
// Fetch status
$stmt = $db->prepare("SELECT * FROM contact_status WHERE contact_id = :id");
$stmt->execute(['id' => $contactID]);
$statuses = $stmt->fetchAll(PDO::FETCH_ASSOC);
$statusArray = [];
foreach($statuses as $status) {
$statusArray[] = [$status['status']];
}
// Fetch postal_info
$stmt = $db->prepare("SELECT * FROM contact_postalInfo WHERE contact_id = :id");
$stmt->execute(['id' => $contactID]);
$postals = $stmt->fetchAll(PDO::FETCH_ASSOC);
$postalArray = [];
foreach ($postals as $postal) {
$postalType = $postal['type']; // 'int' or 'loc'
$postalArray[$postalType] = [
'name' => $postal['name'],
'org' => $postal['org'],
'street' => [$postal['street1'], $postal['street2'], $postal['street3']],
'city' => $postal['city'],
'sp' => $postal['sp'],
'pc' => $postal['pc'],
'cc' => $postal['cc']
];
}
$response = [
'command' => 'info_contact',
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
'resultCode' => 1000,
'msg' => 'Command completed successfully',
'id' => $contact['id'],
'roid' => $contact['identifier'],
'status' => $statusArray,
'postal' => $postalArray,
'voice' => $contact['voice'],
'fax' => $contact['fax'],
'email' => $contact['email'],
'clID' => getRegistrarClid($db, $contact['clid']),
'crID' => getRegistrarClid($db, $contact['crid']),
'crDate' => $contact['crdate'],
'upID' => getRegistrarClid($db, $contact['upid']),
'upDate' => $contact['update'],
'authInfo' => 'valid',
'authInfo_type' => $authInfo['authtype'],
'authInfo_val' => $authInfo['authinfo']
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
} catch (PDOException $e) {
sendEppError($conn, 2400, 'Database error');
}
}
function processContactCreate($conn, $db, $xml) {
if (!isset($xml->command->create->{'contact:create'})) {
sendEppError($conn, 2005, 'Syntax error');
return;
}
$contactCreate = $xml->command->create->{'contact:create'};
$contactID = (string) $contactCreate->{'contact:id'};
$postalInfo = $contactCreate->{'contact:postalInfo'};
$email = (string) $contactCreate->{'contact:email'};
$voice = (string) $contactCreate->{'contact:voice'};
$fax = (string) $contactCreate->{'contact:fax'};
$password = (string) $contactCreate->{'contact:authInfo'}->{'contact:pw'};
$name = (string) $postalInfo->{'contact:name'};
$org = (string) $postalInfo->{'contact:org'};
$addr = $postalInfo->{'contact:addr'};
$street = (string) $addr->{'contact:street'};
$city = (string) $addr->{'contact:city'};
$sp = (string) $addr->{'contact:sp'};
$pc = (string) $addr->{'contact:pc'};
$cc = (string) $addr->{'contact:cc'};
try {
$stmt = $db->prepare("INSERT INTO contacts (id, name, org, street, city, state_province, postal_code, country_code, email, voice, fax, password) VALUES (:id, :name, :org, :street, :city, :sp, :pc, :cc, :email, :voice, :fax, :password)");
$stmt->execute([
'id' => $contactID,
'name' => $name,
'org' => $org,
'street' => $street,
'city' => $city,
'sp' => $sp,
'pc' => $pc,
'cc' => $cc,
'email' => $email,
'voice' => $voice,
'fax' => $fax,
'password' => password_hash($password, PASSWORD_DEFAULT)
]);
$response = <<<XML
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="1000">
<msg>Contact created successfully</msg>
</result>
</response>
</epp>
XML;
$length = strlen($response) + 4; // Total length including the 4-byte header
$lengthData = pack('N', $length); // Pack the length into 4 bytes
$conn->send($lengthData . $response);
} catch (PDOException $e) {
sendEppError($conn, 2400, 'Database error');
}
}
function processDomainCheck($conn, $db, $xml) {
$domains = $xml->command->check->children('urn:ietf:params:xml:ns:domain-1.0')->check->name;
$clTRID = (string) $xml->command->clTRID;
$names = [];
foreach ($domains as $domain) {
$domainName = (string) $domain;
$availability = $db->query("SELECT name FROM domain WHERE name = '$domainName'")->fetchColumn();
// Convert the DB result into a boolean '0' or '1'
$availability = $availability ? '0' : '1';
// Initialize a new domain entry with the domain name and its availability
$domainEntry = [$domainName, $availability];
// If there's a reason for unavailability, add it to the domain entry
if ($availability === '0') {
$domainEntry[] = 'Domain is already registered';
}
// Append this domain entry to names
$names[] = $domainEntry;
}
$response = [
'command' => 'check_domain',
'resultCode' => 1000,
'lang' => 'en-US',
'message' => 'Command completed successfully',
'names' => $names,
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
function processDomainInfo($conn, $db, $xml) {
$domainName = $xml->command->info->children('urn:ietf:params:xml:ns:domain-1.0')->info->name;
$clTRID = (string) $xml->command->clTRID;
// Validation for domain name
if (!filter_var($domainName, FILTER_VALIDATE_DOMAIN)) {
sendEppError($conn, 2005, 'Invalid domain name');
return;
}
try {
$stmt = $db->prepare("SELECT * FROM domain WHERE name = :name");
$stmt->execute(['name' => $domainName]);
$domain = $stmt->fetch(PDO::FETCH_ASSOC);
if (!$domain) {
sendEppError($conn, 2303, 'Object does not exist');
return;
}
// Fetch contacts
$stmt = $db->prepare("SELECT * FROM domain_contact_map WHERE domain_id = :id");
$stmt->execute(['id' => $domain['id']]);
$contacts = $stmt->fetchAll(PDO::FETCH_ASSOC);
$transformedContacts = [];
foreach ($contacts as $contact) {
$transformedContacts[] = [$contact['type'], getContactIdentifier($db, $contact['contact_id'])];
}
// Fetch hosts
$stmt = $db->prepare("SELECT * FROM domain_host_map WHERE domain_id = :id");
$stmt->execute(['id' => $domain['id']]);
$hosts = $stmt->fetchAll(PDO::FETCH_ASSOC);
$transformedHosts = [];
foreach ($hosts as $host) {
$transformedHosts[] = [getHost($db, $host['host_id'])];
}
// Fetch authInfo
$stmt = $db->prepare("SELECT * FROM domain_authInfo WHERE domain_id = :id");
$stmt->execute(['id' => $domain['id']]);
$authInfo = $stmt->fetch(PDO::FETCH_ASSOC);
// Fetch status
$stmt = $db->prepare("SELECT * FROM domain_status WHERE domain_id = :id");
$stmt->execute(['id' => $domain['id']]);
$statuses = $stmt->fetchAll(PDO::FETCH_ASSOC);
$statusArray = [];
foreach($statuses as $status) {
$statusArray[] = [$status['status']];
}
$response = [
'command' => 'info_domain',
'clTRID' => $clTRID,
'svTRID' => generateSvTRID(),
'resultCode' => 1000,
'msg' => 'Command completed successfully',
'name' => $domain['name'],
'roid' => $domain['id'],
'status' => $statusArray,
'registrant' => $domain['registrant'],
'contact' => $transformedContacts,
'hostObj' => $transformedHosts,
'clID' => getRegistrarClid($db, $domain['clid']),
'crID' => getRegistrarClid($db, $domain['crid']),
'crDate' => $domain['crdate'],
'upID' => getRegistrarClid($db, $domain['upid']),
'upDate' => $domain['update'],
'exDate' => $domain['exdate'],
'trDate' => $domain['trdate'],
'authInfo' => 'valid',
'authInfo_type' => $authInfo['authtype'],
'authInfo_val' => $authInfo['authinfo']
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
} catch (PDOException $e) {
sendEppError($conn, 2400, 'Database error');
}
}
function checkLogin($db, $clID, $pw) {
$stmt = $db->prepare("SELECT pw FROM registrar WHERE clid = :username");
$stmt->execute(['username' => $clID]);
$hashedPassword = $stmt->fetchColumn();
return password_verify($pw, $hashedPassword);
}
function sendGreeting($conn) {
global $c;
$currentDate = gmdate('Y-m-d\TH:i:s\Z');
$response = [
'command' => 'greeting',
'svID' => $c['epp_greeting'],
'svDate' => $currentDate,
'version' => '1.0',
'lang' => 'en',
'services' => [
'urn:ietf:params:xml:ns:domain-1.0',
'urn:ietf:params:xml:ns:contact-1.0',
'urn:ietf:params:xml:ns:host-1.0'
],
'extensions' => [
'http://www.namingo.org/epp/nBalance-1.0',
'http://www.namingo.org/epp/nIdent-1.0',
'urn:ietf:params:xml:ns:secDNS-1.1',
'urn:ietf:params:xml:ns:rgp-1.0',
'urn:ietf:params:xml:ns:launch-1.0',
'urn:ietf:params:xml:ns:idn-1.0',
'urn:ietf:params:xml:ns:epp:fee-1.0',
'urn:ar:params:xml:ns:price-1.1'
],
'dcp' => [ // Data Collection Policy (optional)
'access' => ['all'],
'statement' => [
'purpose' => ['admin', 'prov'],
'recipient' => ['ours'],
'retention' => ['stated']
]
]
];
$epp = new EPP\EppWriter();
$xml = $epp->epp_writer($response);
sendEppResponse($conn, $xml);
}
function sendEppError($conn, $code, $msg) {
$errorResponse = <<<XML
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="$code">
<msg>$msg</msg>
</result>
</response>
</epp>
XML;
sendEppResponse($conn, $errorResponse);
}
Reference in a new issue View git blame Copy permalink