hatecomputers.club/api/dns/dns.go

package dns

import (
	"database/sql"
	"fmt"
	"log"
	"net/http"
	"strconv"
	"strings"

	"git.hatecomputers.club/hatecomputers/hatecomputers.club/adapters"
	"git.hatecomputers.club/hatecomputers/hatecomputers.club/api/types"
	"git.hatecomputers.club/hatecomputers/hatecomputers.club/database"
	"git.hatecomputers.club/hatecomputers/hatecomputers.club/utils"
)

func userCanFuckWithDNSRecord(dbConn *sql.DB, user *database.User, record *database.DNSRecord, ownedInternalDomainFormats []string) bool {
	ownedByUser := (user.ID == record.UserID)
	if !ownedByUser {
		return false
	}

	if !record.Internal {
		for _, format := range ownedInternalDomainFormats {
			domain := fmt.Sprintf(format, user.Username)

			isInSubDomain := strings.HasSuffix(record.Name, "."+domain)
			if domain == record.Name || isInSubDomain {
				return true
			}
		}
		return false
	}

	owner, err := database.FindFirstDomainOwnerId(dbConn, record.Name)
	if err != nil {
		log.Println(err)
		return false
	}

	userIsOwnerOfDomain := owner == user.ID
	return ownedByUser && userIsOwnerOfDomain
}

func ListDNSRecordsContinuation(context *types.RequestContext, req *http.Request, resp http.ResponseWriter) types.ContinuationChain {
	return func(success types.Continuation, failure types.Continuation) types.ContinuationChain {
		dnsRecords, err := database.GetUserDNSRecords(context.DBConn, context.User.ID)
		if err != nil {
			log.Println(err)
			resp.WriteHeader(http.StatusInternalServerError)
			return failure(context, req, resp)
		}

		(*context.TemplateData)["DNSRecords"] = dnsRecords
		return success(context, req, resp)
	}
}

func CreateDNSRecordContinuation(dnsAdapter external_dns.ExternalDNSAdapter, maxUserRecords int, allowedUserDomainFormats []string) func(context *types.RequestContext, req *http.Request, resp http.ResponseWriter) types.ContinuationChain {
	return func(context *types.RequestContext, req *http.Request, resp http.ResponseWriter) types.ContinuationChain {
		return func(success types.Continuation, failure types.Continuation) types.ContinuationChain {
			formErrors := types.FormError{
				Errors: []string{},
			}

			internal := req.FormValue("internal") == "on" || req.FormValue("internal") == "true"
			name := req.FormValue("name")
			if internal && !strings.HasSuffix(name, ".") {
				name += "."
			}

			recordType := req.FormValue("type")
			recordType = strings.ToUpper(recordType)

			recordContent := req.FormValue("content")
			ttl := req.FormValue("ttl")
			ttlNum, err := strconv.Atoi(ttl)
			if err != nil {
				resp.WriteHeader(http.StatusBadRequest)
				formErrors.Errors = append(formErrors.Errors, "invalid ttl")
			}

			dnsRecordCount, err := database.CountUserDNSRecords(context.DBConn, context.User.ID)
			if err != nil {
				log.Println(err)
				resp.WriteHeader(http.StatusInternalServerError)
				return failure(context, req, resp)
			}
			if dnsRecordCount >= maxUserRecords {
				resp.WriteHeader(http.StatusTooManyRequests)
				formErrors.Errors = append(formErrors.Errors, "max records reached")
			}

			dnsRecord := &database.DNSRecord{
				UserID:   context.User.ID,
				Name:     name,
				Type:     recordType,
				Content:  recordContent,
				TTL:      ttlNum,
				Internal: internal,
			}

			if !userCanFuckWithDNSRecord(context.DBConn, context.User, dnsRecord, allowedUserDomainFormats) {
				resp.WriteHeader(http.StatusUnauthorized)
				formErrors.Errors = append(formErrors.Errors, "'name' must end with "+context.User.Username+" or you must be a domain owner for internal domains")
			}

			if len(formErrors.Errors) == 0 {
				if dnsRecord.Internal {
					dnsRecord.ID = utils.RandomId()
				} else {
					dnsRecord.ID, err = dnsAdapter.CreateDNSRecord(dnsRecord)
					if err != nil {
						log.Println(err)
						resp.WriteHeader(http.StatusInternalServerError)
						formErrors.Errors = append(formErrors.Errors, err.Error())
					}
				}
			}

			if len(formErrors.Errors) == 0 {
				_, err := database.SaveDNSRecord(context.DBConn, dnsRecord)
				if err != nil {
					log.Println(err)
					formErrors.Errors = append(formErrors.Errors, "error saving record")
				}
			}

			if len(formErrors.Errors) == 0 {
				return success(context, req, resp)
			}

			(*context.TemplateData)["FormError"] = &formErrors
			(*context.TemplateData)["RecordForm"] = dnsRecord
			return failure(context, req, resp)
		}
	}
}

func DeleteDNSRecordContinuation(dnsAdapter external_dns.ExternalDNSAdapter) func(context *types.RequestContext, req *http.Request, resp http.ResponseWriter) types.ContinuationChain {
	return func(context *types.RequestContext, req *http.Request, resp http.ResponseWriter) types.ContinuationChain {
		return func(success types.Continuation, failure types.Continuation) types.ContinuationChain {
			recordId := req.FormValue("id")
			record, err := database.GetDNSRecord(context.DBConn, recordId)
			if err != nil {
				log.Println(err)
				resp.WriteHeader(http.StatusInternalServerError)
				return failure(context, req, resp)
			}

			if !(record.UserID == context.User.ID) {
				resp.WriteHeader(http.StatusUnauthorized)
				return failure(context, req, resp)
			}

			if !record.Internal {
				err = dnsAdapter.DeleteDNSRecord(recordId)
				if err != nil {
					log.Println(err)
					resp.WriteHeader(http.StatusInternalServerError)
					return failure(context, req, resp)
				}
			}

			err = database.DeleteDNSRecord(context.DBConn, recordId)
			if err != nil {
				resp.WriteHeader(http.StatusInternalServerError)
				return failure(context, req, resp)
			}

			return success(context, req, resp)
		}
	}
}
make it compile 2024-04-03 19:53:50 -04:00			`package dns`
add dns form 2024-03-28 00:55:22 -04:00
			`import (`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`"database/sql"`
allow user to fuck with <user>.endpoints 2024-04-02 16:33:11 -04:00			`"fmt"`
add dns form 2024-03-28 00:55:22 -04:00			`"log"`
			`"net/http"`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`"strconv"`
			`"strings"`
add dns form 2024-03-28 00:55:22 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/adapters"`
make it compile 2024-04-03 19:53:50 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/api/types"`
add dns form 2024-03-28 00:55:22 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/database"`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`"git.hatecomputers.club/hatecomputers/hatecomputers.club/utils"`
add dns form 2024-03-28 00:55:22 -04:00			`)`

checkpoint to save work; had to get on the bus 2024-04-03 18:22:19 -04:00			`func userCanFuckWithDNSRecord(dbConn sql.DB, user database.User, record *database.DNSRecord, ownedInternalDomainFormats []string) bool {`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`ownedByUser := (user.ID == record.UserID)`
allow user to fuck with <user>.endpoints 2024-04-02 16:33:11 -04:00			`if !ownedByUser {`
			`return false`
			`}`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00
			`if !record.Internal {`
checkpoint to save work; had to get on the bus 2024-04-03 18:22:19 -04:00			`for _, format := range ownedInternalDomainFormats {`
			`domain := fmt.Sprintf(format, user.Username)`
allow user to fuck with <user>.endpoints 2024-04-02 16:33:11 -04:00
			`isInSubDomain := strings.HasSuffix(record.Name, "."+domain)`
			`if domain == record.Name \|\| isInSubDomain {`
			`return true`
			`}`
			`}`
			`return false`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`}`

			`owner, err := database.FindFirstDomainOwnerId(dbConn, record.Name)`
			`if err != nil {`
			`log.Println(err)`
			`return false`
			`}`

			`userIsOwnerOfDomain := owner == user.ID`
			`return ownedByUser && userIsOwnerOfDomain`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`

make it compile 2024-04-03 19:53:50 -04:00			`func ListDNSRecordsContinuation(context types.RequestContext, req http.Request, resp http.ResponseWriter) types.ContinuationChain {`
			`return func(success types.Continuation, failure types.Continuation) types.ContinuationChain {`
add dns form 2024-03-28 00:55:22 -04:00			`dnsRecords, err := database.GetUserDNSRecords(context.DBConn, context.User.ID)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`

			`(*context.TemplateData)["DNSRecords"] = dnsRecords`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`return success(context, req, resp)`
			`}`
			`}`

dns api tests 2024-04-04 17:08:50 -04:00			`func CreateDNSRecordContinuation(dnsAdapter external_dns.ExternalDNSAdapter, maxUserRecords int, allowedUserDomainFormats []string) func(context types.RequestContext, req http.Request, resp http.ResponseWriter) types.ContinuationChain {`
make it compile 2024-04-03 19:53:50 -04:00			`return func(context types.RequestContext, req http.Request, resp http.ResponseWriter) types.ContinuationChain {`
			`return func(success types.Continuation, failure types.Continuation) types.ContinuationChain {`
			`formErrors := types.FormError{`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`Errors: []string{},`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
dns api tests 2024-04-04 17:08:50 -04:00			`internal := req.FormValue("internal") == "on" \|\| req.FormValue("internal") == "true"`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`name := req.FormValue("name")`
			`if internal && !strings.HasSuffix(name, ".") {`
			`name += "."`
			`}`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`recordType := req.FormValue("type")`
			`recordType = strings.ToUpper(recordType)`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`recordContent := req.FormValue("content")`
			`ttl := req.FormValue("ttl")`
			`ttlNum, err := strconv.Atoi(ttl)`
			`if err != nil {`
dns api tests 2024-04-04 17:08:50 -04:00			`resp.WriteHeader(http.StatusBadRequest)`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`formErrors.Errors = append(formErrors.Errors, "invalid ttl")`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`dnsRecordCount, err := database.CountUserDNSRecords(context.DBConn, context.User.ID)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
dns api tests 2024-04-04 17:08:50 -04:00			`if dnsRecordCount >= maxUserRecords {`
			`resp.WriteHeader(http.StatusTooManyRequests)`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`formErrors.Errors = append(formErrors.Errors, "max records reached")`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`dnsRecord := &database.DNSRecord{`
			`UserID: context.User.ID,`
			`Name: name,`
			`Type: recordType,`
			`Content: recordContent,`
			`TTL: ttlNum,`
			`Internal: internal,`
			`}`

dns api tests 2024-04-04 17:08:50 -04:00			`if !userCanFuckWithDNSRecord(context.DBConn, context.User, dnsRecord, allowedUserDomainFormats) {`
			`resp.WriteHeader(http.StatusUnauthorized)`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`formErrors.Errors = append(formErrors.Errors, "'name' must end with "+context.User.Username+" or you must be a domain owner for internal domains")`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`if len(formErrors.Errors) == 0 {`
			`if dnsRecord.Internal {`
			`dnsRecord.ID = utils.RandomId()`
			`} else {`
			`dnsRecord.ID, err = dnsAdapter.CreateDNSRecord(dnsRecord)`
			`if err != nil {`
			`log.Println(err)`
dns api tests 2024-04-04 17:08:50 -04:00			`resp.WriteHeader(http.StatusInternalServerError)`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`formErrors.Errors = append(formErrors.Errors, err.Error())`
			`}`
			`}`
			`}`

			`if len(formErrors.Errors) == 0 {`
			`_, err := database.SaveDNSRecord(context.DBConn, dnsRecord)`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if err != nil {`
			`log.Println(err)`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`formErrors.Errors = append(formErrors.Errors, "error saving record")`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`

abstract dns adapter 2024-04-03 16:27:55 -04:00			`if len(formErrors.Errors) == 0 {`
			`return success(context, req, resp)`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`

abstract dns adapter 2024-04-03 16:27:55 -04:00			`(*context.TemplateData)["FormError"] = &formErrors`
			`(*context.TemplateData)["RecordForm"] = dnsRecord`
			`return failure(context, req, resp)`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`
			`}`

make it compile 2024-04-03 19:53:50 -04:00			`func DeleteDNSRecordContinuation(dnsAdapter external_dns.ExternalDNSAdapter) func(context types.RequestContext, req http.Request, resp http.ResponseWriter) types.ContinuationChain {`
			`return func(context types.RequestContext, req http.Request, resp http.ResponseWriter) types.ContinuationChain {`
			`return func(success types.Continuation, failure types.Continuation) types.ContinuationChain {`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`recordId := req.FormValue("id")`
			`record, err := database.GetDNSRecord(context.DBConn, recordId)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
dns api tests 2024-04-04 17:08:50 -04:00			`if !(record.UserID == context.User.ID) {`
abstract dns adapter 2024-04-03 16:27:55 -04:00			`resp.WriteHeader(http.StatusUnauthorized)`
			`return failure(context, req, resp)`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`if !record.Internal {`
			`err = dnsAdapter.DeleteDNSRecord(recordId)`
			`if err != nil {`
			`log.Println(err)`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
			`}`

			`err = database.DeleteDNSRecord(context.DBConn, recordId)`
internal recursive dns server (#2) Co-authored-by: Lizzy Hunt <lizzy.hunt@usu.edu> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/2 2024-03-28 16:58:07 -04:00			`if err != nil {`
			`resp.WriteHeader(http.StatusInternalServerError)`
			`return failure(context, req, resp)`
			`}`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00
abstract dns adapter 2024-04-03 16:27:55 -04:00			`return success(context, req, resp)`
dns api (#1) Co-authored-by: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> Reviewed-on: https://git.hatecomputers.club/hatecomputers/hatecomputers.club/pulls/1 2024-03-28 12:57:35 -04:00			`}`
add dns form 2024-03-28 00:55:22 -04:00			`}`
			`}`