robin.thoni
/
docker-pdns-server
Watch 1
Star 0
Fork 0
Code Issues 4 Pull Requests 0 Releases 8 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31 Commits
2 Branches
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
docker-pdns-server/poweradmin/poweradmin-2.1.7/edit_record.php

edit_record.php 7.0KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164 
  1. <?php

  2. 

  3. /*  Poweradmin, a friendly web-based admin tool for PowerDNS.

  4.  *  See <http://www.poweradmin.org> for more details.

  5.  *

  6.  *  Copyright 2007-2010  Rejo Zenger <rejo@zenger.nl>

  7.  *  Copyright 2010-2014  Poweradmin Development Team

  8.  *      <http://www.poweradmin.org/credits.html>

  9.  *

  10.  *  This program is free software: you can redistribute it and/or modify

  11.  *  it under the terms of the GNU General Public License as published by

  12.  *  the Free Software Foundation, either version 3 of the License, or

  13.  *  (at your option) any later version.

  14.  *

  15.  *  This program is distributed in the hope that it will be useful,

  16.  *  but WITHOUT ANY WARRANTY; without even the implied warranty of

  17.  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  18.  *  GNU General Public License for more details.

  19.  *

  20.  *  You should have received a copy of the GNU General Public License

  21.  *  along with this program.  If not, see <http://www.gnu.org/licenses/>.

  22.  */

  23. 

  24. /**

  25.  * Script that handles requests to edit zone records

  26.  *

  27.  * @package     Poweradmin

  28.  * @copyright   2007-2010 Rejo Zenger <rejo@zenger.nl>

  29.  * @copyright   2010-2014 Poweradmin Development Team

  30.  * @license     http://opensource.org/licenses/GPL-3.0 GPL

  31.  */

  32. require_once("inc/toolkit.inc.php");

  33. include_once("inc/header.inc.php");

  34. 

  35. global $pdnssec_use;

  36. 

  37. if (verify_permission('zone_content_view_others')) {

  38.     $perm_view = "all";

  39. } elseif (verify_permission('zone_content_view_own')) {

  40.     $perm_view = "own";

  41. } else {

  42.     $perm_view = "none";

  43. }

  44. 

  45. if (verify_permission('zone_content_edit_others')) {

  46.     $perm_content_edit = "all";

  47. } elseif (verify_permission('zone_content_edit_own')) {

  48.     $perm_content_edit = "own";

  49. } else {

  50.     $perm_content_edit = "none";

  51. }

  52. 

  53. if (verify_permission('zone_meta_edit_others')) {

  54.     $perm_meta_edit = "all";

  55. } elseif (verify_permission('zone_meta_edit_own')) {

  56.     $perm_meta_edit = "own";

  57. } else {

  58.     $perm_meta_edit = "none";

  59. }

  60. 

  61. $zid = get_zone_id_from_record_id($_GET['id']);

  62. 

  63. $user_is_zone_owner = verify_user_is_owner_zoneid($zid);

  64. $zone_type = get_domain_type($zid);

  65. $zone_name = get_zone_name_from_id($zid);

  66. 

  67. if (isset($_POST["commit"])) {

  68.     if ($zone_type == "SLAVE" || $perm_content_edit == "none" || $perm_content_edit == "own" && $user_is_zone_owner == "0") {

  69.         error(ERR_PERM_EDIT_RECORD);

  70.     } else {

  71.         $old_record_info = get_record_from_id($_POST["rid"]);

  72.         $ret_val = edit_record($_POST);

  73.         if ($ret_val == "1") {

  74.             if ($_POST['type'] != "SOA") {

  75.                 update_soa_serial($zid);

  76.             }

  77.             success(SUC_RECORD_UPD);

  78.             $new_record_info = get_record_from_id($_POST["rid"]);

  79.             log_info(sprintf('client_ip:%s user:%s operation:edit_record'

  80.                              .' old_record_type:%s old_record:%s old_content:%s old_ttl:%s old_priority:%s'

  81.                              .' record_type:%s record:%s content:%s ttl:%s priority:%s',

  82.                               $_SERVER['REMOTE_ADDR'], $_SESSION["userlogin"],

  83.                               $old_record_info['type'], $old_record_info['name'], $old_record_info['content'], $old_record_info['ttl'], $old_record_info['prio'], 

  84.                               $new_record_info['type'], $new_record_info['name'], $new_record_info['content'], $new_record_info['ttl'], $new_record_info['prio']));

  85. 

  86.             if ($pdnssec_use) {

  87.                 if (dnssec_rectify_zone($zid)) {

  88.                     success(SUC_EXEC_PDNSSEC_RECTIFY_ZONE);

  89.                 }

  90.             }

  91.         }

  92.     }

  93. }

  94. 

  95. echo "    <h2>" . _('Edit record in zone') . " \"<a href=\"edit.php?id=" . $zid . "\">" . $zone_name . "</a>\"</h2>\n";

  96. 

  97. if ($perm_view == "none" || $perm_view == "own" && $user_is_zone_owner == "0") {

  98.     error(ERR_PERM_VIEW_RECORD);

  99. } else {

  100.     $record = get_record_from_id($_GET["id"]);

  101.     echo "     <form method=\"post\" action=\"edit_record.php?domain=" . $zid . "&amp;id=" . $_GET["id"] . "\">\n";

  102.     echo "      <table>\n";

  103.     echo "       <tr>\n";

  104.     echo "        <th>" . _('Name') . "</th>\n";

  105.     echo "        <th>&nbsp;</th>\n";

  106.     echo "        <th>" . _('Type') . "</th>\n";

  107.     echo "        <th>" . _('Content') . "</th>\n";

  108.     echo "        <th>" . _('Priority') . "</th>\n";

  109.     echo "        <th>" . _('TTL') . "</th>\n";

  110.     echo "       </tr>\n";

  111. 

  112.     /*

  113.       Sanitize content due to SPF record quoting in PowerDNS

  114.      */

  115.     if ($record['type'] == "SRV" || $record['type'] == "SPF" || $record['type'] == "TXT") {

  116.         $clean_content = trim($record['content'], "\x22\x27");

  117.     } else {

  118.         $clean_content = $record['content'];

  119.     }

  120. 

  121.     if ($zone_type == "SLAVE" || $perm_content_edit == "none" || $perm_content_edit == "own" && $user_is_zone_owner == "0") {

  122.         echo "      <tr>\n";

  123.         echo "       <td>" . $record["name"] . "</td>\n";

  124.         echo "       <td>IN</td>\n";

  125.         echo "       <td>" . htmlspecialchars($record["type"]) . "</td>\n";

  126.         echo "       <td>" . htmlspecialchars($clean_content) . "</td>\n";

  127.         echo "       <td>" . htmlspecialchars($record["prio"]) . "</td>\n";

  128.         echo "       <td>" . htmlspecialchars($record["ttl"]) . "</td>\n";

  129.         echo "      </tr>\n";

  130.     } else {

  131.         echo "      <tr>\n";

  132.         echo "       <td><input type=\"hidden\" name=\"rid\" value=\"" . $_GET["id"] . "\">\n";

  133.         echo "       <input type=\"hidden\" name=\"zid\" value=\"" . $zid . "\">\n";

  134.         echo "       <input type=\"text\" name=\"name\" value=\"" . htmlspecialchars(trim(str_replace($zone_name, '', $record["name"]), '.')) . "\" class=\"input\">." . $zone_name . "</td>\n";

  135.         echo "       <td>IN</td>\n";

  136.         echo "       <td>\n";

  137.         echo "        <select name=\"type\">\n";

  138.         $found_selected_type = false;

  139.         foreach (get_record_types() as $type_available) {

  140.             if ($type_available == $record["type"]) {

  141.                 $add = " SELECTED";

  142.                 $found_selected_type = true;

  143.             } else {

  144.                 $add = "";

  145.             }

  146.             echo "         <option" . $add . " value=\"" . htmlspecialchars($type_available) . "\" >" . $type_available . "</option>\n";

  147.         }

  148.         if (!$found_selected_type)

  149.             echo "         <option SELECTED value=\"" . htmlspecialchars($record['type']) . "\"><i>" . $record['type'] . "</i></option>\n";

  150.         echo "        </select>\n";

  151.         echo "       </td>\n";

  152.         echo "       <td><input type=\"text\" name=\"content\" value=\"" . htmlspecialchars($clean_content) . "\" class=\"input\"></td>\n";

  153.         echo "       <td><input type=\"text\" name=\"prio\" value=\"" . htmlspecialchars($record["prio"]) . "\" class=\"sinput\"></td>\n";

  154.         echo "       <td><input type=\"text\" name=\"ttl\" value=\"" . htmlspecialchars($record["ttl"]) . "\" class=\"sinput\"></td>\n";

  155.         echo "      </tr>\n";

  156.     }

  157.     echo "      </table>\n";

  158.     echo "       <input type=\"submit\" name=\"commit\" value=\"" . _('Commit changes') . "\" class=\"button\">&nbsp;&nbsp;\n";

  159.     echo "       <input type=\"reset\" name=\"reset\" value=\"" . _('Reset changes') . "\" class=\"button\">&nbsp;&nbsp;\n";

  160.     echo "     </form>\n";

  161. }

  162. 

  163. 

  164. include_once("inc/footer.inc.php");