Changeset 545 for branches/stable/dns-rpc.cgi

Timestamp:

12/10/13 17:47:44 (11 years ago)

Author:

Kris Deugau

Message:

/branches/stable

Merge reverse DNS and location work; 2 of mumble

• from r263 through r416

Numerous conflicts due to hand-copy or partial merges

Location:

branches/stable

Files:

• . (modified) (1 prop)
• dns-rpc.cgi (modified) (20 diffs)

branches/stable/dns-rpc.cgi

@@ -3 +3 @@
 ##
 # $Id$
-# Copyright 2011 Kris Deugau <kdeugau@deepnet.cx>
+# Copyright 2012 Kris Deugau <kdeugau@deepnet.cx>
 # 
 #    This program is free software: you can redistribute it and/or modify
@@ -39 +39 @@
 #package main;
 
-loadConfig();
+DNSDB::loadConfig(rpcflag => 1);
 
 # need to create a DNSDB object too
@@ -49 +49 @@
 my $methods = {
         'dnsdb.addDomain'       => \&addDomain,
-        'dnsdb.delDomain'       => \&delDomain,
+        'dnsdb.delZone'         => \&delZone,
+        'dnsdb.addRDNS'         => \&addRDNS,
         'dnsdb.addGroup'        => \&addGroup,
         'dnsdb.delGroup'        => \&delGroup,
@@ -60 +61 @@
         'dnsdb.getRecCount'     => \&getRecCount,
         'dnsdb.addRec'          => \&addRec,
+        'dnsdb.updateRec'       => \&updateRec,
         'dnsdb.delRec'          => \&delRec,
-        'dnsdb.domStatus'       => \&domStatus,
+        'dnsdb.zoneStatus'      => \&zoneStatus,
 
         'dnsdb.getMethods'      => \&get_method_list
@@ -71 +73 @@
 
 # "Can't do that" errors
-##fixme:  this MUST be loaded from a config file!  Also must support multiple IPs
-if ($ENV{REMOTE_ADDR} ne '192.168.2.116') {
-  print "Content-type: text/xml\n\n".$res->{_decode}->encode_fault(5, "Access denied");
-  exit;
-}
 if (!$dbh) {
   print "Content-type: text/xml\n\n".$res->{_decode}->encode_fault(5, $msg);
@@ -89 +86 @@
 ## Subs below here
 ##
+
+# Utility subs
+sub _aclcheck {
+  my $subsys = shift;
+  return 1 if grep /$ENV{REMOTE_ADDR}/, @{$DNSDB::config{rpcacl}{$subsys}};
+  return 0;
+}
+
+# Let's see if we can factor these out of the RPC method subs
+sub _commoncheck {
+  my $argref = shift;
+  my $needslog = shift;
+
+  die "Missing remote system name\n" if !$argref->{rpcsystem};
+  die "Access denied\n" if !_aclcheck($argref->{rpcsystem});
+  if ($needslog) {
+    die "Missing remote username\n" if !$argref->{rpcuser};
+    die "Couldn't set userdata for logging\n"
+        unless DNSDB::initRPC($dbh, (username => $argref->{rpcuser}, rpcsys => $argref->{rpcsystem},
+                fullname => ($argref->{fullname} ? $argref->{fullname} : $argref->{rpcuser}) ) );
+  }
+}
 
 #sub connectDB {
@@ -103 +122 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
+  _commoncheck(\%args, 'y');
 
   my ($code, $msg) = DNSDB::addDomain($dbh, $args{domain}, $args{group}, $args{state});
@@ -112 +129 @@
 }
 
-sub delDomain {
-  my %args = @_;
-
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
+sub delZone {
+  my %args = @_;
+
+  _commoncheck(\%args, 'y');
+  die "Need forward/reverse zone flag\n" if !$args{revrec};
 
   my ($code,$msg);
-  # Let's be nice;  delete based on domid OR domain name.  Saves an RPC call round-trip, maybe.
-  if ($args{domain} =~ /^\d+$/) {
-    ($code,$msg) = DNSDB::delDomain($dbh, $args{domain});
+  # Let's be nice;  delete based on zone id OR zone name.  Saves an RPC call round-trip, maybe.
+  if ($args{zone} =~ /^\d+$/) {
+    ($code,$msg) = DNSDB::delZone($dbh, $args{zone}, $args{revrec});
   } else {
-    my $domid = DNSDB::domainID($dbh, $args{domain});
-    die "Can't find domain" if !$domid;
-    ($code,$msg) = DNSDB::delDomain($dbh, $domid);
-  }
-  die $msg if $code eq 'FAIL';
-}
-
-#sub domainName {
-#sub domainID {
+    my $zoneid;
+    $zoneid = DNSDB::domainID($dbh, $args{zone}) if $args{revrec} eq 'n';
+    $zoneid = DNSDB::revID($dbh, $args{zone}) if $args{revrec} eq 'y';
+    die "Can't find zone: $DNSDB::errstr\n" if !$zoneid;
+    ($code,$msg) = DNSDB::delZone($dbh, $zoneid, $args{revrec});
+  }
+  die $msg if $code eq 'FAIL';
+  return $msg;
+}
+
+#sub domainName {}
+#sub revName {}
+#sub domainID {}
+#sub revID {}
+
+sub addRDNS {
+  my %args = @_;
+
+  _commoncheck(\%args, 'y');
+
+  my ($code, $msg) = DNSDB::addRDNS($dbh, $args{revzone}, $args{revpatt}, $args{group}, $args{state});
+  die $msg if $code eq 'FAIL';
+  return $msg;  # domain ID
+}
+
+#sub getZoneCount {}
+#sub getZoneList {}
+#sub getZoneLocation {}
 
 sub addGroup {
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-# not sure how to usefully represent permissions from any further out from DNSDB.pm :/
+  _commoncheck(\%args, 'y');
+  die "Missing new group name\n" if !$args{groupname};
+  die "Missing parent group ID\n" if !$args{parent_id};
+
+# not sure how to usefully represent permissions via RPC.  :/
 # not to mention, permissions are checked at the UI layer, not the DB layer.
   my $perms = {domain_edit => 1, domain_create => 1, domain_delete => 1,
@@ -155 +190 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
+  _commoncheck(\%args, 'y');
+  die "Missing group ID or name to remove\n" if !$args{group};
 
   my ($code,$msg);
@@ -165 +199 @@
   } else {
     my $grpid = DNSDB::groupID($dbh, $args{group});
-    die "Can't find group" if !$grpid;
+    die "Can't find group\n" if !$grpid;
     ($code,$msg) = DNSDB::delGroup($dbh, $grpid);
   }
   die $msg if $code eq 'FAIL';
-}
-
-#sub getChildren {
-#sub groupName {
-#sub groupID {
+  return $msg;
+}
+
+#sub getChildren {}
+#sub groupName {}
+#sub getGroupCount {}
+#sub getGroupList {}
+#sub groupID {}
 
 sub addUser {
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-# not sure how to usefully represent permissions from any further out from DNSDB.pm :/
+  _commoncheck(\%args, 'y');
+
+# not sure how to usefully represent permissions via RPC.  :/
 # not to mention, permissions are checked at the UI layer, not the DB layer.
-  my $perms = {domain_edit => 1, domain_create => 1, domain_delete => 1,
-        record_edit => 1, record_create => 1, record_delete => 1
-        };
   # bend and twist;  get those arguments in in the right order!
   $args{type} = 'u' if !$args{type};
@@ -200 +232 @@
 }
 
-#sub checkUser {
+#sub getUserCount {}
+#sub getUserList {}
+#sub getUserDropdown {}
+#sub checkUser {}
 
 sub updateUser {
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  die "Missing UID" if !$args{uid};
-
-# not sure how to usefully represent permissions from any further out from DNSDB.pm :/
-# not to mention, permissions are checked at the UI layer, not the DB layer.
-  my $perms = {domain_edit => 1, domain_create => 1, domain_delete => 1,
-        record_edit => 1, record_create => 1, record_delete => 1
-        };
+  _commoncheck(\%args, 'y');
+
+  die "Missing UID\n" if !$args{uid};
+
   # bend and twist;  get those arguments in in the right order!
+  $args{type} = 'u' if !$args{type};
   my @userargs = ($args{uid}, $args{username}, $args{group}, $args{pass}, $args{state}, $args{type});
   for my $argname ('fname','lname','phone') {
@@ -224 +253 @@
 ##fixme:  also underlying in DNSDB::updateUser():  no way to just update this or that attribute;
 #         have to pass them all in to be overwritten
-  my ($code,$msg) = DNSDB::addUser($dbh, @userargs);
-  die $msg if $code eq 'FAIL';
+  my ($code,$msg) = DNSDB::updateUser($dbh, @userargs);
+  die $msg if $code eq 'FAIL';
+  return $msg;
 }
 
@@ -231 +261 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  die "Missing UID" if !$args{uid};
+  _commoncheck(\%args, 'y');
+
+  die "Missing UID\n" if !$args{uid};
   my ($code,$msg) = DNSDB::delUser($dbh, $args{uid});
   die $msg if $code eq 'FAIL';
-}
-
-#sub userFullName {
-#sub userStatus {
-#sub getUserData {
+  return $msg;
+}
+
+#sub userFullName {}
+#sub userStatus {}
+#sub getUserData {}
+
+#sub addLoc {}
+#sub updateLoc {}
+#sub delLoc {}
+#sub getLoc {}
+#sub getLocCount {}
+#sub getLocList {}
+#sub getLocDropdown {}
 
 sub getSOA {
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  my %ret = DNSDB::getSOA($dbh, $args{def}, $args{id});
-  if (!$ret{recid}) {
-    if ($args{def} eq 'y') {
-      die "No default SOA record in group";
+  _commoncheck(\%args);
+
+  my $ret = DNSDB::getSOA($dbh, $args{defrec}, $args{revrec}, $args{id});
+  if (!$ret) {
+    if ($args{defrec} eq 'y') {
+      die "No default SOA record in group\n";
     } else {
-      die "No SOA record in domain";
+      die "No SOA record in zone\n";
     }
   }
-  return \%ret;
-}
+  return $ret;
+}
+
+#sub updateSOA {}
 
 sub getRecLine {
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  my $ret = DNSDB::getRecLine($dbh, $args{def}, $args{id});
+  _commoncheck(\%args);
+
+  my $ret = DNSDB::getRecLine($dbh, $args{defrec}, $args{revrec}, $args{id});
 
   die $DNSDB::errstr if !$ret;
@@ -279 +314 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-#bleh
+  _commoncheck(\%args);
+
+  # set some optional args
   $args{nrecs} = 'all' if !$args{nrecs};
   $args{nstart} = 0 if !$args{nstart};
@@ -290 +323 @@
   $args{direction} = 'ASC' if !$args{direction};
 
-  my $ret = DNSDB::getDomRecs($dbh, $args{def}, $args{id}, $args{nrecs}, $args{nstart}, $args{order}, $args{direction});
+  my $ret = DNSDB::getDomRecs($dbh, (defrec => $args{defrec}, revrec => $args{revrec}, id => $args{id},
+        offset => $args{offset}, sortby => $args{sortby}, sortorder => $args{sortorder},
+        filter => $args{filter}) );
 
   die $DNSDB::errstr if !$ret;
@@ -300 +335 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  return DNSDB::getRecCount($dbh, $id);
+  _commoncheck(\%args);
+
+  # set some optional args
+  $args{nrecs} = 'all' if !$args{nrecs};
+  $args{nstart} = 0 if !$args{nstart};
+## for order, need to map input to column names
+  $args{order} = 'host' if !$args{order};
+  $args{direction} = 'ASC' if !$args{direction};
+
+  my $ret = DNSDB::getRecCount($dbh, $args{defrec}, $args{revrec}, $args{id}, $args{filter});
+
+  die $DNSDB::errstr if !$ret;
+
+  return $ret;
 }
 
@@ -310 +354 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  # note dist, weight, port are not reequired on all types;  will be ignored if not needed.
-  my ($code, $msg) = DNSDB::addRec($dbh, $args{def}, $args{domid}, $args{host}, $typemap{$args{type}},
+  _commoncheck(\%args, 'y');
+
+  # note dist, weight, port are not required on all types;  will be ignored if not needed.
+  my ($code, $msg) = DNSDB::addRec($dbh, $args{def}, $args{domid}, $args{host}, $DNSDB::typemap{$args{type}},
         $args{val}, $args{ttl}, $args{dist}, $args{weight}, $args{port});
 
@@ -324 +366 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  # note dist, weight, port are not reequired on all types;  will be ignored if not needed.
-  my ($code, $msg) = DNSDB::updateRec($dbh, $args{def}, $args{recid}, $args{host}, $typemap{$args{type}},
+  _commoncheck(\%args, 'y');
+
+  # note dist, weight, port are not required on all types;  will be ignored if not needed.
+  my ($code, $msg) = DNSDB::updateRec($dbh, $args{def}, $args{recid}, $args{host}, $DNSDB::typemap{$args{type}},
         $args{val}, $args{ttl}, $args{dist}, $args{weight}, $args{port});
 
@@ -338 +378 @@
   my %args = @_;
 
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  # note dist, weight, port are not reequired on all types;  will be ignored if not needed.
+  _commoncheck(\%args, 'y');
+
   my ($code, $msg) = DNSDB::delRec($dbh, $args{def}, $args{recid});
 
@@ -348 +385 @@
 }
 
-#sub getParents {
-
-sub domStatus {
-  my %args = @_;
-
-  # Make sure we've got all the local bits we need
-  die "Missing remote username" if !$args{rpcuser};             # for logging
-  die "Missing remote system name" if !$args{rpcsystem};        # for logging
-
-  my @arglist = ($dbh, $args{domid});
+#sub getLogCount {}
+#sub getLogEntries {}
+#sub getTypelist {}
+#sub parentID {}
+#sub isParent {}
+
+sub zoneStatus {
+  my %args = @_;
+
+  _commoncheck(\%args, 'y');
+
+  my @arglist = ($dbh, $args{zoneid});
   push @arglist, $args{status} if defined($args{status});
 
-  my $status = DNSDB::domStatus(@arglist);
-}
-
-#sub importAXFR {
-#sub export {
-#sub __export_tiny {
+  my $status = DNSDB::zoneStatus(@arglist);
+}
+
+#sub importAXFR {}
+#sub importBIND {}
+#sub import_tinydns {}
+#sub export {}
+#sub __export_tiny {}
+#sub _printrec_tiny {}
+#sub mailNotify {}
 
 sub get_method_list {