forked from TrueCloudLab/lego
209 lines
4.8 KiB
Go
209 lines
4.8 KiB
Go
package internal
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net/http"
|
|
"net/url"
|
|
"strconv"
|
|
"strings"
|
|
|
|
"github.com/xenolf/lego/challenge/dns01"
|
|
)
|
|
|
|
const defaultBaseURL = "https://api.cloudns.net/dns/"
|
|
|
|
type Zone struct {
|
|
Name string
|
|
Type string
|
|
Zone string
|
|
Status string // is an integer, but cast as string
|
|
}
|
|
|
|
// TXTRecord a TXT record
|
|
type TXTRecord struct {
|
|
ID int `json:"id,string"`
|
|
Type string `json:"type"`
|
|
Host string `json:"host"`
|
|
Record string `json:"record"`
|
|
Failover int `json:"failover,string"`
|
|
TTL int `json:"ttl,string"`
|
|
Status int `json:"status"`
|
|
}
|
|
|
|
type TXTRecords map[string]TXTRecord
|
|
|
|
// NewClient creates a ClouDNS client
|
|
func NewClient(authID string, authPassword string) (*Client, error) {
|
|
if authID == "" {
|
|
return nil, fmt.Errorf("ClouDNS: credentials missing: authID")
|
|
}
|
|
|
|
if authPassword == "" {
|
|
return nil, fmt.Errorf("ClouDNS: credentials missing: authPassword")
|
|
}
|
|
|
|
baseURL, err := url.Parse(defaultBaseURL)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &Client{
|
|
authID: authID,
|
|
authPassword: authPassword,
|
|
HTTPClient: &http.Client{},
|
|
BaseURL: baseURL,
|
|
}, nil
|
|
}
|
|
|
|
// Client ClouDNS client
|
|
type Client struct {
|
|
authID string
|
|
authPassword string
|
|
HTTPClient *http.Client
|
|
BaseURL *url.URL
|
|
}
|
|
|
|
// GetZone Get domain name information for a FQDN
|
|
func (c *Client) GetZone(authFQDN string) (*Zone, error) {
|
|
authZone, err := dns01.FindZoneByFqdn(authFQDN)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
authZoneName := dns01.UnFqdn(authZone)
|
|
|
|
reqURL := *c.BaseURL
|
|
reqURL.Path += "get-zone-info.json"
|
|
|
|
q := reqURL.Query()
|
|
q.Add("domain-name", authZoneName)
|
|
reqURL.RawQuery = q.Encode()
|
|
|
|
result, err := c.doRequest(http.MethodGet, &reqURL)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var zone Zone
|
|
|
|
if len(result) > 0 {
|
|
if err = json.Unmarshal(result, &zone); err != nil {
|
|
return nil, fmt.Errorf("ClouDNS: zone unmarshaling error: %v", err)
|
|
}
|
|
}
|
|
|
|
if zone.Name == authZoneName {
|
|
return &zone, nil
|
|
}
|
|
|
|
return nil, fmt.Errorf("ClouDNS: zone %s not found for authFQDN %s", authZoneName, authFQDN)
|
|
}
|
|
|
|
// FindTxtRecord return the TXT record a zone ID and a FQDN
|
|
func (c *Client) FindTxtRecord(zoneName, fqdn string) (*TXTRecord, error) {
|
|
host := dns01.UnFqdn(strings.TrimSuffix(dns01.UnFqdn(fqdn), zoneName))
|
|
|
|
reqURL := *c.BaseURL
|
|
reqURL.Path += "records.json"
|
|
|
|
q := reqURL.Query()
|
|
q.Add("domain-name", zoneName)
|
|
q.Add("host", host)
|
|
q.Add("type", "TXT")
|
|
reqURL.RawQuery = q.Encode()
|
|
|
|
result, err := c.doRequest(http.MethodGet, &reqURL)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var records TXTRecords
|
|
if err = json.Unmarshal(result, &records); err != nil {
|
|
return nil, fmt.Errorf("ClouDNS: TXT record unmarshaling error: %v", err)
|
|
}
|
|
|
|
for _, record := range records {
|
|
if record.Host == host && record.Type == "TXT" {
|
|
return &record, nil
|
|
}
|
|
}
|
|
|
|
return nil, fmt.Errorf("ClouDNS: no existing record found for %q", fqdn)
|
|
}
|
|
|
|
// AddTxtRecord add a TXT record
|
|
func (c *Client) AddTxtRecord(zoneName string, fqdn, value string, ttl int) error {
|
|
host := dns01.UnFqdn(strings.TrimSuffix(dns01.UnFqdn(fqdn), zoneName))
|
|
|
|
reqURL := *c.BaseURL
|
|
reqURL.Path += "add-record.json"
|
|
|
|
q := reqURL.Query()
|
|
q.Add("domain-name", zoneName)
|
|
q.Add("host", host)
|
|
q.Add("record", value)
|
|
q.Add("ttl", strconv.Itoa(ttl))
|
|
q.Add("record-type", "TXT")
|
|
reqURL.RawQuery = q.Encode()
|
|
|
|
_, err := c.doRequest(http.MethodPost, &reqURL)
|
|
return err
|
|
}
|
|
|
|
// RemoveTxtRecord remove a TXT record
|
|
func (c *Client) RemoveTxtRecord(recordID int, zoneName string) error {
|
|
reqURL := *c.BaseURL
|
|
reqURL.Path += "delete-record.json"
|
|
|
|
q := reqURL.Query()
|
|
q.Add("domain-name", zoneName)
|
|
q.Add("record-id", strconv.Itoa(recordID))
|
|
reqURL.RawQuery = q.Encode()
|
|
|
|
_, err := c.doRequest(http.MethodPost, &reqURL)
|
|
return err
|
|
}
|
|
|
|
func (c *Client) doRequest(method string, url *url.URL) (json.RawMessage, error) {
|
|
req, err := c.buildRequest(method, url)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
resp, err := c.HTTPClient.Do(req)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("ClouDNS: %v", err)
|
|
}
|
|
|
|
defer resp.Body.Close()
|
|
|
|
content, err := ioutil.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("ClouDNS: %s", toUnreadableBodyMessage(req, content))
|
|
}
|
|
|
|
if resp.StatusCode != 200 {
|
|
return nil, fmt.Errorf("ClouDNS: invalid code (%v), error: %s", resp.StatusCode, content)
|
|
}
|
|
return content, nil
|
|
}
|
|
|
|
func (c *Client) buildRequest(method string, url *url.URL) (*http.Request, error) {
|
|
q := url.Query()
|
|
q.Add("auth-id", c.authID)
|
|
q.Add("auth-password", c.authPassword)
|
|
url.RawQuery = q.Encode()
|
|
|
|
req, err := http.NewRequest(method, url.String(), nil)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("ClouDNS: invalid request: %v", err)
|
|
}
|
|
|
|
return req, nil
|
|
}
|
|
|
|
func toUnreadableBodyMessage(req *http.Request, rawBody []byte) string {
|
|
return fmt.Sprintf("the request %s sent a response with a body which is an invalid format: %q", req.URL, string(rawBody))
|
|
}
|