Validate DNS keys count

app/controllers/client/domains_controller.rb

@@ -32,6 +32,10 @@ class Client::DomainsController < ClientController
     end
   end
 
+  def show
+    @domain.all_dependencies_valid?
+  end
+
   def edit
     build_associations
   end
@@ -70,7 +74,7 @@ class Client::DomainsController < ClientController
       nameservers_attributes: [:id, :hostname, :ipv4, :ipv6, :_destroy],
       domain_contacts_attributes: [:id, :contact_type, :contact_id, :value_typeahead, :_destroy],
       domain_statuses_attributes: [:id, :value, :description, :_destroy],
-      dnskeys_attributes: [:id, :flags, :alg, :protocol, :public_key]
+      dnskeys_attributes: [:id, :flags, :alg, :protocol, :public_key, :_destroy]
     )
   end
 

app/models/domain.rb

@@ -49,6 +49,7 @@ class Domain < ActiveRecord::Base
   validate :validate_period
   validate :validate_nameservers_count
   validate :validate_admin_contacts_count
+  validate :validate_dnskeys_count
   validate :validate_nameservers_uniqueness
   validate :validate_tech_contacts_uniqueness
   validate :validate_admin_contacts_uniqueness
@@ -95,6 +96,13 @@ class Domain < ActiveRecord::Base
     errors.add(:admin_contacts, :out_of_range) if admin_contacts_count.zero?
   end
 
+  def validate_dnskeys_count
+    sg = SettingGroup.domain_validation
+    min, max = sg.setting(:dnskeys_min_count).value.to_i, sg.setting(:dnskeys_max_count).value.to_i
+    return if dnskeys.reject(&:marked_for_destruction?).length.between?(min, max)
+    errors.add(:dnskeys, :out_of_range, { min: min, max: max })
+  end
+
   def validate_nameservers_uniqueness
     validated = []
     nameservers.reject(&:marked_for_destruction?).each do |ns|
@@ -176,6 +184,7 @@ class Domain < ActiveRecord::Base
 
   def all_dependencies_valid?
     validate_nameservers_count
+    validate_dnskeys_count
     validate_admin_contacts_count
 
     errors.empty?

app/models/epp/epp_domain.rb

@@ -29,6 +29,12 @@ class Epp::EppDomain < Domain
             max: domain_validation_sg.setting(:ns_max_count).value
           }
         ],
+        [:dnskeys, :out_of_range,
+          {
+            min: domain_validation_sg.setting(:dnskeys_min_count).value,
+            max: domain_validation_sg.setting(:dnskeys_max_count).value
+          }
+        ],
         [:period, :out_of_range, { value: { obj: 'period', val: period } }]
       ],
       '2200' => [

app/models/ns_set.rb

@@ -1,5 +0,0 @@
-class NsSet < ActiveRecord::Base
-  belongs_to :registrar
-  has_many :domains
-  has_and_belongs_to_many :nameservers
-end

app/views/client/domains/form_partials/_dnskeys.haml

@@ -14,7 +14,7 @@
         .row
           .col-md-4
             .form-group
-              = key_fields.label :flags, t('shared.flag')
+              = key_fields.label :flags
               = key_fields.text_field :flags, class: 'form-control'
           .col-md-4
             .form-group

config/locales/en.yml

@@ -109,6 +109,7 @@ en:
             dnskeys:
               invalid: 'DNS keys are invalid'
               not_found: 'Dnskey was not found'
+              out_of_range: 'DNS keys count must be between %{min}-%{max}'
 
         domain:
           <<: *epp_domain_ar_attributes
@@ -211,6 +212,11 @@ en:
         nameservers: 'Nameservers'
       domain:
         <<: *epp_domain_attributes
+      dnskey:
+        flags: 'Flag'
+        protocol: 'Protocol'
+        alg: 'Algorithm'
+        public_key: 'Public key'
 
 
   errors:

db/migrate/20141006124904_add_dnskey_range_validation.rb

@@ -0,0 +1,7 @@
+class AddDnskeyRangeValidation < ActiveRecord::Migration
+  def change
+    sg = SettingGroup.find_by(code: 'domain_validation')
+    sg.settings << Setting.create(code: 'dnskeys_min_count'.underscore, value: '0')
+    sg.settings << Setting.create(code: 'dnskeys_max_count'.underscore, value: '9')
+  end
+end

db/schema.rb

@@ -11,7 +11,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20141001085322) do
+ActiveRecord::Schema.define(version: 20141006124904) do
 
   # These are extensions that must be enabled in order to support this database
   enable_extension "plpgsql"

spec/epp/domain_spec.rb

@@ -447,6 +447,38 @@ describe 'EPP Domain', epp: true do
         expect(response[:msg]).to eq('Public key already exists')
         expect(response[:results][0][:value]).to eq('700b97b591ed27ec2590d19f06f88bba700b97b591ed27ec2590d19f')
       end
+
+      it 'validated dnskeys count' do
+        s = Setting.find_by(code: 'dnskeys_max_count')
+        s.value = 1
+        s.save
+
+        xml = domain_create_xml({
+          dnssec: [
+            {
+              dnskey: {
+                flags: { value: '257' },
+                protocol: { value: '3' },
+                alg: { value: '3' },
+                pubKey: { value: 'AwEAAddt2AkLfYGKgiEZB5SmIF8EvrjxNMH6HtxWEA4RJ9Ao6LCWheg8' }
+              }
+            },
+            {
+              dnskey: {
+                flags: { value: '0' },
+                protocol: { value: '3' },
+                alg: { value: '5' },
+                pubKey: { value: '700b97b591ed27ec2590d19f06f88bba700b97b591ed27ec2590d19f' }
+              }
+            }
+          ]
+        })
+
+        response = epp_request(xml, :xml)
+
+        expect(response[:result_code]).to eq('2004')
+        expect(response[:msg]).to eq('DNS keys count must be between 0-1')
+      end
     end
 
     context 'with juridical persion as an owner' do

spec/fabricators/setting_group_fabricator.rb

@@ -13,7 +13,9 @@ Fabricator(:domain_validation_setting_group, from: :setting_group) do
   settings do
     [
       Fabricate(:setting, code: 'ns_min_count', value: 1),
-      Fabricate(:setting, code: 'ns_max_count', value: 13)
+      Fabricate(:setting, code: 'ns_max_count', value: 13),
+      Fabricate(:setting, code: 'dnskeys_min_count', value: 0),
+      Fabricate(:setting, code: 'dnskeys_max_count', value: 9)
     ]
   end
 end