mirror of
https://github.com/StackExchange/dnscontrol.git
synced 2024-05-11 05:55:12 +00:00
b0f2945510
This should enable the diff2 code to be inserted with good "git blame" results for new code. I'm adding this early to catch any problems early.
258 lines
6.8 KiB
Go
258 lines
6.8 KiB
Go
package transip
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"strings"
|
|
|
|
"github.com/StackExchange/dnscontrol/v3/models"
|
|
"github.com/StackExchange/dnscontrol/v3/pkg/diff"
|
|
"github.com/StackExchange/dnscontrol/v3/pkg/diff2"
|
|
"github.com/StackExchange/dnscontrol/v3/providers"
|
|
"github.com/transip/gotransip/v6"
|
|
"github.com/transip/gotransip/v6/domain"
|
|
"github.com/transip/gotransip/v6/repository"
|
|
)
|
|
|
|
/*
|
|
|
|
TransIP DNS Provider (transip.nl)
|
|
|
|
Info required in `creds.json`
|
|
- AccessToken
|
|
|
|
*/
|
|
|
|
type transipProvider struct {
|
|
client *repository.Client
|
|
domains *domain.Repository
|
|
}
|
|
|
|
var features = providers.DocumentationNotes{
|
|
providers.CanAutoDNSSEC: providers.Cannot(),
|
|
providers.CanGetZones: providers.Can(),
|
|
providers.CanUseAlias: providers.Can(),
|
|
providers.CanUseCAA: providers.Can(),
|
|
providers.CanUseDS: providers.Cannot(),
|
|
providers.CanUseDSForChildren: providers.Cannot(),
|
|
providers.CanUseNAPTR: providers.Can(),
|
|
providers.CanUseSRV: providers.Can(),
|
|
providers.CanUseSSHFP: providers.Can(),
|
|
providers.CanUseTLSA: providers.Can(),
|
|
providers.DocCreateDomains: providers.Cannot(),
|
|
providers.DocOfficiallySupported: providers.Cannot(),
|
|
}
|
|
|
|
// NewTransip creates a new TransIP provider.
|
|
func NewTransip(m map[string]string, metadata json.RawMessage) (providers.DNSServiceProvider, error) {
|
|
|
|
if m["AccessToken"] == "" && m["PrivateKey"] == "" {
|
|
return nil, fmt.Errorf("no TransIP AccessToken or PrivateKey provided")
|
|
}
|
|
|
|
if m["PrivateKey"] != "" && m["AccountName"] == "" {
|
|
return nil, fmt.Errorf("no AccountName given, required for authenticating with PrivateKey")
|
|
}
|
|
|
|
client, err := gotransip.NewClient(gotransip.ClientConfiguration{
|
|
Token: m["AccessToken"],
|
|
AccountName: m["AccountName"],
|
|
PrivateKeyReader: strings.NewReader(m["PrivateKey"]),
|
|
})
|
|
|
|
if err != nil {
|
|
return nil, fmt.Errorf("TransIP client fail %s", err.Error())
|
|
}
|
|
|
|
api := &transipProvider{}
|
|
api.client = &client
|
|
api.domains = &domain.Repository{Client: client}
|
|
|
|
return api, nil
|
|
}
|
|
|
|
func init() {
|
|
fns := providers.DspFuncs{
|
|
Initializer: NewTransip,
|
|
RecordAuditor: AuditRecords,
|
|
}
|
|
providers.RegisterDomainServiceProviderType("TRANSIP", fns, features)
|
|
}
|
|
|
|
func (n *transipProvider) GetDomainCorrections(dc *models.DomainConfig) ([]*models.Correction, error) {
|
|
|
|
curRecords, err := n.GetZoneRecords(dc.Name)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if err := dc.Punycode(); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
removeOtherNS(dc)
|
|
|
|
models.PostProcessRecords(curRecords)
|
|
|
|
var corrections []*models.Correction
|
|
if !diff2.EnableDiff2 || true { // Remove "|| true" when diff2 version arrives
|
|
|
|
differ := diff.New(dc)
|
|
_, create, del, modify, err := differ.IncrementalDiff(curRecords)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
for _, del := range del {
|
|
entry, err := recordToNative(del.Existing)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
corrections = append(corrections, &models.Correction{
|
|
Msg: del.String(),
|
|
F: func() error { return n.domains.RemoveDNSEntry(dc.Name, entry) },
|
|
})
|
|
}
|
|
|
|
for _, cre := range create {
|
|
entry, err := recordToNative(cre.Desired)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
corrections = append(corrections, &models.Correction{
|
|
Msg: cre.String(),
|
|
F: func() error { return n.domains.AddDNSEntry(dc.Name, entry) },
|
|
})
|
|
}
|
|
|
|
for _, mod := range modify {
|
|
targetEntry, err := recordToNative(mod.Desired)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// TransIP identifies records by (Label, TTL Type), we can only update it if only the contents
|
|
// has changed. Otherwise we delete the old record and create the new one
|
|
if canUpdateDNSEntry(mod.Desired, mod.Existing) {
|
|
corrections = append(corrections, &models.Correction{
|
|
Msg: mod.String(),
|
|
F: func() error { return n.domains.UpdateDNSEntry(dc.Name, targetEntry) },
|
|
})
|
|
} else {
|
|
oldEntry, err := recordToNative(mod.Existing)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
corrections = append(corrections,
|
|
&models.Correction{
|
|
Msg: mod.String() + "[1/2]",
|
|
F: func() error { return n.domains.RemoveDNSEntry(dc.Name, oldEntry) },
|
|
},
|
|
&models.Correction{
|
|
Msg: mod.String() + "[2/2]",
|
|
F: func() error { return n.domains.AddDNSEntry(dc.Name, targetEntry) },
|
|
},
|
|
)
|
|
}
|
|
|
|
}
|
|
|
|
return corrections, nil
|
|
}
|
|
|
|
// Insert Future diff2 version here.
|
|
|
|
return corrections, nil
|
|
}
|
|
|
|
func canUpdateDNSEntry(desired *models.RecordConfig, existing *models.RecordConfig) bool {
|
|
return desired.Name == existing.Name && desired.TTL == existing.TTL && desired.Type == existing.Type
|
|
}
|
|
|
|
func (n *transipProvider) GetZoneRecords(domainName string) (models.Records, error) {
|
|
|
|
entries, err := n.domains.GetDNSEntries(domainName)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var existingRecords = []*models.RecordConfig{}
|
|
for _, entry := range entries {
|
|
rts, err := nativeToRecord(entry, domainName)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
existingRecords = append(existingRecords, rts)
|
|
}
|
|
|
|
return existingRecords, nil
|
|
}
|
|
|
|
func (n *transipProvider) GetNameservers(domainName string) ([]*models.Nameserver, error) {
|
|
var nss []string
|
|
|
|
entries, err := n.domains.GetNameservers(domainName)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
for _, entry := range entries {
|
|
nss = append(nss, entry.Hostname)
|
|
}
|
|
|
|
return models.ToNameservers(nss)
|
|
}
|
|
|
|
func recordToNative(config *models.RecordConfig) (domain.DNSEntry, error) {
|
|
return domain.DNSEntry{
|
|
Name: config.Name,
|
|
Expire: int(config.TTL),
|
|
Type: config.Type,
|
|
Content: getTargetRecordContent(config),
|
|
}, nil
|
|
}
|
|
|
|
func nativeToRecord(entry domain.DNSEntry, origin string) (*models.RecordConfig, error) {
|
|
rc := &models.RecordConfig{
|
|
TTL: uint32(entry.Expire),
|
|
Type: entry.Type,
|
|
Original: entry,
|
|
}
|
|
rc.SetLabel(entry.Name, origin)
|
|
if err := rc.PopulateFromString(entry.Type, entry.Content, origin); err != nil {
|
|
return nil, fmt.Errorf("unparsable record received from TransIP: %w", err)
|
|
}
|
|
|
|
return rc, nil
|
|
}
|
|
|
|
func removeOtherNS(dc *models.DomainConfig) {
|
|
newList := make([]*models.RecordConfig, 0, len(dc.Records))
|
|
for _, rec := range dc.Records {
|
|
if rec.Type == "NS" && (strings.HasPrefix(rec.GetTargetField(), "ns0.transip") ||
|
|
strings.HasPrefix(rec.GetTargetField(), "ns1.transip") ||
|
|
strings.HasPrefix(rec.GetTargetField(), "ns2.transip")) {
|
|
continue
|
|
}
|
|
newList = append(newList, rec)
|
|
}
|
|
dc.Records = newList
|
|
}
|
|
|
|
func getTargetRecordContent(rc *models.RecordConfig) string {
|
|
switch rtype := rc.Type; rtype {
|
|
case "CAA":
|
|
return rc.GetTargetCombined()
|
|
case "SSHFP":
|
|
return fmt.Sprintf("%d %d %s", rc.SshfpAlgorithm, rc.SshfpFingerprint, rc.GetTargetField())
|
|
case "DS":
|
|
return fmt.Sprintf("%d %d %d %s", rc.DsKeyTag, rc.DsAlgorithm, rc.DsDigestType, rc.DsDigest)
|
|
case "SRV":
|
|
return fmt.Sprintf("%d %d %s", rc.SrvWeight, rc.SrvPort, rc.GetTargetField())
|
|
default:
|
|
return rc.GetTargetCombined()
|
|
}
|
|
}
|