hatecomputers.club/api/dns.go

package api

import (
	"database/sql"
	"log"
	"net/http"
	"strconv"
	"strings"

	"git.hatecomputers.club/hatecomputers/hatecomputers.club/adapters/cloudflare"
	"git.hatecomputers.club/hatecomputers/hatecomputers.club/database"
	"git.hatecomputers.club/hatecomputers/hatecomputers.club/utils"
)

const MAX_USER_RECORDS = 65

type FormError struct {
	Errors []string
}

func userCanFuckWithDNSRecord(dbConn *sql.DB, user *database.User, record *database.DNSRecord) bool {
	ownedByUser := (user.ID == record.UserID)

	if !record.Internal {
		publicallyOwnedByUser := (record.Name == user.Username || strings.HasSuffix(record.Name, "."+user.Username))
		return ownedByUser && publicallyOwnedByUser
	}

	owner, err := database.FindFirstDomainOwnerId(dbConn, record.Name)
	if err != nil {
		log.Println(err)
		return false
	}

	userIsOwnerOfDomain := owner == user.ID
	return ownedByUser && userIsOwnerOfDomain
}

func ListDNSRecordsContinuation(context *RequestContext, req *http.Request, resp http.ResponseWriter) ContinuationChain {
	return func(success Continuation, failure Continuation) ContinuationChain {
		dnsRecords, err := database.GetUserDNSRecords(context.DBConn, context.User.ID)
		if err != nil {
			log.Println(err)
			resp.WriteHeader(http.StatusInternalServerError)
			return failure(context, req, resp)
		}

		(*context.TemplateData)["DNSRecords"] = dnsRecords
		return success(context, req, resp)
	}
}

func CreateDNSRecordContinuation(context *RequestContext, req *http.Request, resp http.ResponseWriter) ContinuationChain {
	return func(success Continuation, failure Continuation) ContinuationChain {
		formErrors := FormError{
			Errors: []string{},
		}

		internal := req.FormValue("internal") == "on"
		name := req.FormValue("name")
		if internal && !strings.HasSuffix(name, ".") {
			name += "."
		}

		recordType := req.FormValue("type")
		recordType = strings.ToUpper(recordType)

		recordContent := req.FormValue("content")
		ttl := req.FormValue("ttl")
		ttlNum, err := strconv.Atoi(ttl)
		if err != nil {
			formErrors.Errors = append(formErrors.Errors, "invalid ttl")
		}

		dnsRecordCount, err := database.CountUserDNSRecords(context.DBConn, context.User.ID)
		if err != nil {
			log.Println(err)
			resp.WriteHeader(http.StatusInternalServerError)
			return failure(context, req, resp)
		}
		if dnsRecordCount >= MAX_USER_RECORDS {
			formErrors.Errors = append(formErrors.Errors, "max records reached")
		}

		dnsRecord := &database.DNSRecord{
			UserID:   context.User.ID,
			Name:     name,
			Type:     recordType,
			Content:  recordContent,
			TTL:      ttlNum,
			Internal: internal,
		}
		if !userCanFuckWithDNSRecord(context.DBConn, context.User, dnsRecord) {
			formErrors.Errors = append(formErrors.Errors, "'name' must end with "+context.User.Username+" or you must be a domain owner for internal domains")
		}

		if len(formErrors.Errors) == 0 {
			if dnsRecord.Internal {
				dnsRecord.ID = utils.RandomId()
			} else {
				cloudflareRecordId, err := cloudflare.CreateDNSRecord(context.Args.CloudflareZone, context.Args.CloudflareToken, dnsRecord)
				if err != nil {
					log.Println(err)
					formErrors.Errors = append(formErrors.Errors, err.Error())
				}

				dnsRecord.ID = cloudflareRecordId
			}
		}

		if len(formErrors.Errors) == 0 {
			_, err := database.SaveDNSRecord(context.DBConn, dnsRecord)
			if err != nil {
				log.Println(err)
				formErrors.Errors = append(formErrors.Errors, "error saving record")
			}
		}

		if len(formErrors.Errors) == 0 {
			http.Redirect(resp, req, "/dns", http.StatusFound)
			return success(context, req, resp)
		}

		(*context.TemplateData)["FormError"] = &formErrors
		(*context.TemplateData)["RecordForm"] = dnsRecord

		resp.WriteHeader(http.StatusBadRequest)
		return failure(context, req, resp)
	}
}

func DeleteDNSRecordContinuation(context *RequestContext, req *http.Request, resp http.ResponseWriter) ContinuationChain {
	return func(success Continuation, failure Continuation) ContinuationChain {
		recordId := req.FormValue("id")
		record, err := database.GetDNSRecord(context.DBConn, recordId)
		if err != nil {
			log.Println(err)
			resp.WriteHeader(http.StatusInternalServerError)
			return failure(context, req, resp)
		}

		if !userCanFuckWithDNSRecord(context.DBConn, context.User, record) {
			resp.WriteHeader(http.StatusUnauthorized)
			return failure(context, req, resp)
		}

		if !record.Internal {
			err = cloudflare.DeleteDNSRecord(context.Args.CloudflareZone, context.Args.CloudflareToken, recordId)
			if err != nil {
				log.Println(err)
				resp.WriteHeader(http.StatusInternalServerError)
				return failure(context, req, resp)
			}
		}

		err = database.DeleteDNSRecord(context.DBConn, recordId)
		if err != nil {
			resp.WriteHeader(http.StatusInternalServerError)
			return failure(context, req, resp)
		}

		http.Redirect(resp, req, "/dns", http.StatusFound)
		return success(context, req, resp)
	}
}
add dns form 2024-03-28 00:55:22 -04:00			`package api`

			`import (`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`"database/sql"`
add dns form 2024-03-28 00:55:22 -04:00			`"log"`
			`"net/http"`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`"strconv"`
			`"strings"`
add dns form 2024-03-28 00:55:22 -04:00
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/adapters/cloudflare"`
add dns form 2024-03-28 00:55:22 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/database"`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/utils"`
add dns form 2024-03-28 00:55:22 -04:00			`)`

internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`const MAX_USER_RECORDS = 65`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
			`type FormError struct {`
			`Errors []string`
			`}`

internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`func userCanFuckWithDNSRecord(dbConn sql.DB, user database.User, record *database.DNSRecord) bool {`
			`ownedByUser := (user.ID == record.UserID)`

			`if !record.Internal {`
			`publicallyOwnedByUser := (record.Name == user.Username \|\| strings.HasSuffix(record.Name, "."+user.Username))`
			`return ownedByUser && publicallyOwnedByUser`
			`}`

			`owner, err := database.FindFirstDomainOwnerId(dbConn, record.Name)`
			`if err != nil {`
			`log.Println(err)`
			`return false`
			`}`

			`userIsOwnerOfDomain := owner == user.ID`
			`return ownedByUser && userIsOwnerOfDomain`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`

add dns form 2024-03-28 00:55:22 -04:00			`func ListDNSRecordsContinuation(context RequestContext, req http.Request, resp http.ResponseWriter) ContinuationChain {`
			`return func(success Continuation, failure Continuation) ContinuationChain {`
			`dnsRecords, err := database.GetUserDNSRecords(context.DBConn, context.User.ID)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`

			`(*context.TemplateData)["DNSRecords"] = dnsRecords`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`return success(context, req, resp)`
			`}`
			`}`

			`func CreateDNSRecordContinuation(context RequestContext, req http.Request, resp http.ResponseWriter) ContinuationChain {`
			`return func(success Continuation, failure Continuation) ContinuationChain {`
			`formErrors := FormError{`
			`Errors: []string{},`
			`}`

internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`internal := req.FormValue("internal") == "on"`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`name := req.FormValue("name")`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if internal && !strings.HasSuffix(name, ".") {`
			`name += "."`
			`}`

dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`recordType := req.FormValue("type")`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`recordType = strings.ToUpper(recordType)`

dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`recordContent := req.FormValue("content")`
			`ttl := req.FormValue("ttl")`
			`ttlNum, err := strconv.Atoi(ttl)`
			`if err != nil {`
			`formErrors.Errors = append(formErrors.Errors, "invalid ttl")`
			`}`

guestbook! 2024-03-29 18:35:04 -04:00			`dnsRecordCount, err := database.CountUserDNSRecords(context.DBConn, context.User.ID)`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
guestbook! 2024-03-29 18:35:04 -04:00			`if dnsRecordCount >= MAX_USER_RECORDS {`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`formErrors.Errors = append(formErrors.Errors, "max records reached")`
			`}`

guestbook! 2024-03-29 18:35:04 -04:00			`dnsRecord := &database.DNSRecord{`
			`UserID: context.User.ID,`
			`Name: name,`
			`Type: recordType,`
			`Content: recordContent,`
			`TTL: ttlNum,`
			`Internal: internal,`
			`}`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if !userCanFuckWithDNSRecord(context.DBConn, context.User, dnsRecord) {`
			`formErrors.Errors = append(formErrors.Errors, "'name' must end with "+context.User.Username+" or you must be a domain owner for internal domains")`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`

			`if len(formErrors.Errors) == 0 {`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if dnsRecord.Internal {`
			`dnsRecord.ID = utils.RandomId()`
			`} else {`
			`cloudflareRecordId, err := cloudflare.CreateDNSRecord(context.Args.CloudflareZone, context.Args.CloudflareToken, dnsRecord)`
			`if err != nil {`
			`log.Println(err)`
			`formErrors.Errors = append(formErrors.Errors, err.Error())`
			`}`

			`dnsRecord.ID = cloudflareRecordId`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`
			`}`

			`if len(formErrors.Errors) == 0 {`
			`_, err := database.SaveDNSRecord(context.DBConn, dnsRecord)`
			`if err != nil {`
			`log.Println(err)`
			`formErrors.Errors = append(formErrors.Errors, "error saving record")`
			`}`
			`}`

			`if len(formErrors.Errors) == 0 {`
			`http.Redirect(resp, req, "/dns", http.StatusFound)`
			`return success(context, req, resp)`
			`}`

			`(*context.TemplateData)["FormError"] = &formErrors`
			`(*context.TemplateData)["RecordForm"] = dnsRecord`

			`resp.WriteHeader(http.StatusBadRequest)`
			`return failure(context, req, resp)`
			`}`
			`}`

			`func DeleteDNSRecordContinuation(context RequestContext, req http.Request, resp http.ResponseWriter) ContinuationChain {`
			`return func(success Continuation, failure Continuation) ContinuationChain {`
			`recordId := req.FormValue("id")`
			`record, err := database.GetDNSRecord(context.DBConn, recordId)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`

internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if !userCanFuckWithDNSRecord(context.DBConn, context.User, record) {`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`resp.WriteHeader(http.StatusUnauthorized)`
			`return failure(context, req, resp)`
			`}`

internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if !record.Internal {`
			`err = cloudflare.DeleteDNSRecord(context.Args.CloudflareZone, context.Args.CloudflareToken, recordId)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`

			`err = database.DeleteDNSRecord(context.DBConn, recordId)`
			`if err != nil {`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
add dns form 2024-03-28 00:55:22 -04:00
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`http.Redirect(resp, req, "/dns", http.StatusFound)`
add dns form 2024-03-28 00:55:22 -04:00			`return success(context, req, resp)`
			`}`
			`}`