zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-05-11 09:18:35 +02:00
Code Issues Projects Releases Packages Wiki Activity
getnamingo-registry/epp/epp.php
Pinga 1c85258493 More EPP updates
2023-08-04 10:20:35 +03:00

322 lines
No EOL
9.7 KiB
PHP
Raw Blame History

<?php
require 'vendor/autoload.php';
use Swoole\Coroutine\Server;
use Swoole\Coroutine\Server\Connection;
use Swoole\Table;
use PDO;
$table = new Table(1024);
$table->column('logged_in', Table::TYPE_INT, 1);
$table->create();
$db = new PDO('mysql:host=localhost;dbname=epp', 'username', 'password');
$server = new Server('0.0.0.0', 700);
$server->handle(function (Connection $conn) use ($table, $db) {
$lengthData = $conn->recv(4);
if ($lengthData === false || strlen($lengthData) !== 4) {
sendEppError($conn, 2100, 'Framing error');
return;
}
$length = unpack('N', $lengthData)[1];
$data = $conn->recv($length - 4);
if ($data === false || strlen($data) !== $length - 4) {
sendEppError($conn, 2100, 'Framing error');
return;
}
$xml = simplexml_load_string($data);
if ($xml === false) {
sendEppError($conn, 2001, 'Invalid XML');
return;
}
$clID = (string) $xml->command->clTRID;
$isLoggedIn = $table->get($clID, 'logged_in');
// Parsing a login command
if ($xml->getName() == 'epp' && isset($xml->command->login)) {
$clID = (string) $xml->command->login->clID;
$pw = (string) $xml->command->login->pw;
if (checkLogin($db, $clID, $pw)) {
$table->set($clID, ['logged_in' => 1]);
$conn->send('Login success!');
} else {
sendEppError($conn, 2200, 'Authentication error');
}
return;
}
// Parsing a logout command
if ($xml->getName() == 'epp' && isset($xml->command->logout)) {
$table->del($clID);
$conn->send('Logout success!');
return;
}
if (!$isLoggedIn) {
sendEppError($conn, 2202, 'Authorization error');
return;
}
// Parsing a contact:create command
if ($xml->getName() == 'epp' && isset($xml->command->{'create'}->{'contact:create'})) {
processContactCreate($conn, $db, $xml);
return;
}
// Parsing a contact:check command
if ($xml->getName() == 'epp' && isset($xml->command->{'check'}->{'contact:check'})) {
processContactCheck($conn, $db, $xml);
return;
}
// Parsing a contact:info command
if ($xml->getName() == 'epp' && isset($xml->command->{'info'}->{'contact:info'})) {
processContactInfo($conn, $db, $xml);
return;
}
// Parsing a domain:info command
if ($xml->getName() == 'epp' && isset($xml->command->{'info'}->{'domain:info'})) {
processDomainInfo($conn, $db, $xml);
return;
}
// Parsing a domain:check command
if ($xml->getName() == 'epp' && isset($xml->command->{'check'}->{'domain:check'})) {
processDomainCheck($conn, $db, $xml);
return;
}
sendEppError($conn, 2100, 'Unknown command');
});
$server->start();
function processContactCheck($conn, $db, $xml) {
$contactIDs = $xml->command->{'check'}->{'contact:check'}->{'contact:id'};
$results = [];
foreach ($contactIDs as $contactID) {
$contactID = (string)$contactID;
// Validation for contact ID
if (!ctype_alnum($contactID) || strlen($contactID) > 255) {
sendEppError($conn, 2005, 'Invalid contact ID');
return;
}
$stmt = $db->prepare("SELECT 1 FROM contacts WHERE id = :id");
$stmt->execute(['id' => $contactID]);
$results[$contactID] = $stmt->fetch() ? '0' : '1'; // 0 if exists, 1 if not
}
$checkResults = '';
foreach ($results as $id => $available) {
$checkResults .= "<contact:cd><contact:id avail=\"$available\">$id</contact:id></contact:cd>";
}
$response = <<<XML
<?xml version="1.0" encoding="UTF-8"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="1000">
<msg>Contact check completed</msg>
</result>
<resData>
<contact:chkData xmlns:contact="urn:ietf:params:xml:ns:contact-1.0">
$checkResults
</contact:chkData>
</resData>
</response>
</epp>
XML;
$conn->send($response);
}
function processContactInfo($conn, $db, $xml) {
$contactID = (string) $xml->command->{'info'}->{'contact:info'}->{'contact:id'};
// Validation for contact ID
if (!ctype_alnum($contactID) || strlen($contactID) > 255) {
sendEppError($conn, 2005, 'Invalid contact ID');
return;
}
try {
$stmt = $db->prepare("SELECT * FROM contacts WHERE id = :id");
$stmt->execute(['id' => $contactID]);
$contact = $stmt->fetch(PDO::FETCH_ASSOC);
if (!$contact) {
sendEppError($conn, 2303, 'Object does not exist');
return;
}
$response = <<<XML
<?xml version="1.0" encoding="UTF-8"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="1000">
<msg>Contact information retrieved successfully</msg>
</result>
<!-- Add contact details here -->
</response>
</epp>
XML;
// You can customize the response to include the specific details you want
$conn->send($response);
} catch (PDOException $e) {
sendEppError($conn, 2400, 'Database error');
}
}
function processContactCreate($conn, $db, $xml) {
if (!isset($xml->command->create->{'contact:create'})) {
sendEppError($conn, 2005, 'Syntax error');
return;
}
$contactCreate = $xml->command->create->{'contact:create'};
$contactID = (string) $contactCreate->{'contact:id'};
$postalInfo = $contactCreate->{'contact:postalInfo'};
$email = (string) $contactCreate->{'contact:email'};
$voice = (string) $contactCreate->{'contact:voice'};
$fax = (string) $contactCreate->{'contact:fax'};
$password = (string) $contactCreate->{'contact:authInfo'}->{'contact:pw'};
$name = (string) $postalInfo->{'contact:name'};
$org = (string) $postalInfo->{'contact:org'};
$addr = $postalInfo->{'contact:addr'};
$street = (string) $addr->{'contact:street'};
$city = (string) $addr->{'contact:city'};
$sp = (string) $addr->{'contact:sp'};
$pc = (string) $addr->{'contact:pc'};
$cc = (string) $addr->{'contact:cc'};
try {
$stmt = $db->prepare("INSERT INTO contacts (id, name, org, street, city, state_province, postal_code, country_code, email, voice, fax, password) VALUES (:id, :name, :org, :street, :city, :sp, :pc, :cc, :email, :voice, :fax, :password)");
$stmt->execute([
'id' => $contactID,
'name' => $name,
'org' => $org,
'street' => $street,
'city' => $city,
'sp' => $sp,
'pc' => $pc,
'cc' => $cc,
'email' => $email,
'voice' => $voice,
'fax' => $fax,
'password' => password_hash($password, PASSWORD_DEFAULT)
]);
$response = <<<XML
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="1000">
<msg>Contact created successfully</msg>
</result>
</response>
</epp>
XML;
$conn->send($response);
} catch (PDOException $e) {
sendEppError($conn, 2400, 'Database error');
}
}
function processDomainCheck($conn, $db, $xml) {
$domains = $xml->command->{'check'}->{'domain:check'}->children('domain', true);
$response = '<epp xmlns="urn:ietf:params:xml:ns:epp-1.0"><response><result code="1000"><msg>Command completed successfully</msg></result><resData><domain:chkData xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">';
foreach ($domains as $domain) {
$domainName = (string) $domain;
$availability = $db->query("SELECT availability FROM domains WHERE domain_name = '$domainName'")->fetchColumn();
$availString = $availability ? 'available' : 'unavailable';
$response .= "<domain:cd><domain:name avail=\"$availability\">$domainName</domain:name></domain:cd>";
}
$response .= '</domain:chkData></resData></response></epp>';
$length = strlen($response) + 4; // Total length including the 4-byte header
$lengthData = pack('N', $length); // Pack the length into 4 bytes
$conn->send($lengthData . $response);
}
function processDomainInfo($conn, $db, $xml) {
$domainName = (string) $xml->command->{'info'}->{'domain:info'}->{'domain:name'};
// Validation for domain name
if (!filter_var($domainName, FILTER_VALIDATE_DOMAIN)) {
sendEppError($conn, 2005, 'Invalid domain name');
return;
}
try {
$stmt = $db->prepare("SELECT * FROM domains WHERE name = :name");
$stmt->execute(['name' => $domainName]);
$domain = $stmt->fetch(PDO::FETCH_ASSOC);
if (!$domain) {
sendEppError($conn, 2303, 'Object does not exist');
return;
}
$response = <<<XML
<?xml version="1.0" encoding="UTF-8"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="1000">
<msg>Domain information retrieved successfully</msg>
</result>
<!-- Add domain details here -->
</response>
</epp>
XML;
// You can customize the response to include the specific details you want
$conn->send($response);
} catch (PDOException $e) {
sendEppError($conn, 2400, 'Database error');
}
}
function checkLogin($db, $clID, $pw) {
$stmt = $db->prepare("SELECT password FROM users WHERE username = :username");
$stmt->execute(['username' => $clID]);
$hashedPassword = $stmt->fetchColumn();
return password_verify($pw, $hashedPassword);
}
function sendEppError($conn, $code, $msg) {
$errorResponse = <<<XML
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<response>
<result code="$code">
<msg>$msg</msg>
</result>
</response>
</epp>
XML;
$conn->send($errorResponse);
}
Reference in a new issue View git blame Copy permalink