diff -r 2cd8c1649ba9 -r 58094faf794d inc/BAKrecord.inc.php --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/inc/BAKrecord.inc.php Tue Apr 10 22:40:43 2007 +0000 @@ -0,0 +1,1084 @@ + trancer nl> | +// | Sjeemz sjeemz nl> | +// +--------------------------------------------------------------------+ + +// Filename: record.inc.php +// Startdate: 26-10-2002 +// This file is ought to edit the records in the database. +// Records are domains aswell, they also belong here. +// All database functions are associative. +// use nextID first to get a new id. Then insert it into the database. +// do not rely on auto_increment (see above). +// use dns.inc.php for validation functions. +// +// $Id: record.inc.php,v 1.21 2003/05/10 20:21:01 azurazu Exp $ +// + + +function update_soa_serial($domain_id) +{ + global $db; + /* + * THIS CODE ISNT TESTED THROUGH MUCH YET! + * !!!!!!! BETACODE !!!!!!!!!! + * Code committed by DeViCeD, Thanks a lot! + * Heavily hax0red by Trancer/azurazu + * + * First we have to check, wheather current searial number + * was already updated on the other nameservers. + * If field 'notified_serial' is NULL, then I guess domain is + * NATIVE and we don't have any secondary nameservers for this domain. + * NOTICE: Serial number *will* be RFC1912 compilant after update + * NOTICE: This function will allow only 100 DNS zone transfers ;-) + * YYYYMMDDnn + */ + + $sqlq = "SELECT `notified_serial` FROM `domains` WHERE `id` = '".$domain_id."'"; + $notified_serial = $db->getOne($sqlq); + + $sqlq = "SELECT `content` FROM `records` WHERE `type` = 'SOA' AND `domain_id` = '".$domain_id."'"; + $content = $db->getOne($sqlq); + $need_to_update = false; + + // Getting the serial field. + $soa = explode(" ", $content); + + if(empty($notified_serial)) + { + // Ok native replication, so we have to update. + $need_to_update = true; + } + elseif($notified_serial >= $soa[2]) + { + $need_to_update = true; + } + elseif(strlen($soa[2]) != 10) + { + $need_to_update = true; + } + else + { + $need_to_update = false; + } + if($need_to_update) + { + // Ok so we have to update it seems. + $current_serial = $soa[2]; + + /* + * What we need here (for RFC1912) is YEAR, MONTH and DAY + * so let's get it ... + */ + $new_serial = date('Ymd'); // we will add revision number later + + if(strncmp($new_serial, $current_serial, 8) === 0) + { + /* + * Ok, so we already made updates tonight + * let's just increase the revision number + */ + $revision_number = (int) substr($current_serial, -2); + if ($revision_number == 99) return false; // ok, we cannot update anymore tonight + ++$revision_number; + // here it is ... same date, new revision + $new_serial .= str_pad($revision_number, 2, "0", STR_PAD_LEFT); + } + else + { + /* + * Current serial is not RFC1912 compilant, so let's make a new one + */ + $new_serial .= '00'; + } + $soa[2] = $new_serial; // change serial in SOA array + $new_soa = ""; + // build new soa and update SQL after that + for ($i = 0; $i < count($soa); $i++) + { + $new_soa .= $soa[$i] . " "; + } + $sqlq = "UPDATE `records` SET `content` = '".$new_soa."' WHERE `domain_id` = '".$domain_id."' AND `type` = 'SOA' LIMIT 1"; + $db->Query($sqlq); + return true; + } +} + +/* + * Edit a record. + * This function validates it if correct it inserts it into the database. + * return values: true if succesful. + */ +function edit_record($recordid, $zoneid, $name, $type, $content, $ttl, $prio) +{ + global $db; + if($content == "") + { + error(ERR_RECORD_EMPTY_CONTENT); + } + // Edits the given record (validates specific stuff first) + if (!xs(recid_to_domid($recordid))) + { + error(ERR_RECORD_ACCESS_DENIED); + } + if (is_numeric($zoneid)) + { + validate_input($recordid, $zoneid, $type, $content, $name, $prio, $ttl); + $change = time(); + $db->query("UPDATE records set name='$name', type='$type', content='$content', ttl='$ttl', prio='$prio', change_date='$change' WHERE id=$recordid"); + + /* + * Added by DeViCeD - Update SOA Serial number + * There should be more checks + */ + if ($type != 'SOA') + { + update_soa_serial($zoneid); + } + return true; + } + else + { + error(sprintf(ERR_INV_ARGC, "edit_record", "no zoneid given")); + } + +} + + +/* + * Adds a record. + * This function validates it if correct it inserts it into the database. + * return values: true if succesful. + */ +function add_record($zoneid, $name, $type, $content, $ttl, $prio) +{ + global $db; + if (!xs($zoneid)) + { + error(ERR_RECORD_ACCESS_DENIED); + } + if (is_numeric($zoneid)) + { + + // Get the Insert ID, we can not rely on auto_increment + $idrecords = $db->nextID('records'); + + // Check the user input. + validate_input($idrecords, $zoneid, $type, $content, $name, $prio, $ttl); + + // Generate new timestamp for the Daemon + $change = time(); + + // Execute query. + $db->query("INSERT INTO records (id, domain_id, name, type, content, ttl, prio, change_date) VALUES ($idrecords, $zoneid, '$name', '$type', '$content', $ttl, '$prio', $change)"); + if ($type != 'SOA') + { + update_soa_serial($zoneid); + } + return true; + } + else + { + error(sprintf(ERR_INV_ARG, "add_record")); + } +} + + +/* + * Delete a record by a given id. + * return values: true, this function is always succesful. + */ +function delete_record($id) +{ + global $db; + + // Check if the user has access. + if (!xs(recid_to_domid($id))) + { + error(ERR_RECORD_ACCESS_DENIED); + } + + // Retrieve the type of record to see if we can actually remove it. + $recordtype = get_recordtype_from_id($id); + + // If the record type is NS and the user tries to delete it while ALLOW_NS_EDIT is set to 0 + // OR + // check if the name of the record isnt the domain name (if so it should delete all records) + // OR + // check if we are dealing with a SOA field (same story as NS) + if (($recordtype == "NS" && $GLOBALS["ALLOW_NS_EDIT"] != 1 && (get_name_from_record_id($id) == get_domain_name_from_id(recid_to_domid($id)))) || ($recordtype == "SOA" && $GLOBALS["ALLOW_SOA_EDIT"] != 1)) + { + error(sprintf(ERR_RECORD_DELETE_TYPE_DENIED, $recordtype)); + + } + if (is_numeric($id)) + { + $did = recid_to_domid($id); + $db->query('DELETE FROM records WHERE id=' . $id . ' LIMIT 1'); + if ($type != 'SOA') + { + update_soa_serial($did); + } + // $id doesnt exist in database anymore so its deleted or just not there which means "true" + return true; + } + else + { + error(sprintf(ERR_INV_ARG, "delete_record")); + } +} + + +/* + * Add a domain to the database. + * A domain is name obligatory, so is an owner. + * return values: true when succesful. + * Empty means templates dont have to be applied. + * -------------------------------------------------------------------------- + * This functions eats a template and by that it inserts various records. + * first we start checking if something in an arpa record + * remember to request nextID's from the database to be able to insert record. + * if anything is invalid the function will error + */ +function add_domain($domain, $owner, $webip, $mailip, $empty, $type) +{ + + global $db; + + if (!level(5)) + { + error(ERR_LEVEL_5); + } + + // If domain, owner and mailip are given + // OR + // empty is given and owner and domain + // OR + // the domain is an arpa record and owner is given + // THAN + // Continue this function + if (($domain && $owner && $webip && $mailip) || ($empty && $owner && $domain) || (eregi('in-addr.arpa', $domain) && $owner)) + { + // Retrieve next zones id. + $idzones = $db->nextID('zones'); + $iddomains = $db->nextID('domains'); + + $db->query("INSERT INTO zones (id, domain_id, owner) VALUES ('$idzones', '$iddomains', $owner)"); + + /* + * TODO : NATIVE OPERATION ONLY FOR NOW + */ + + $db->query("INSERT INTO domains (id, name, type) VALUES ('$iddomains', '$domain', '$type')"); + + // Generate new timestamp. We need this one anyhow. + $now = time(); + + if ($empty && $iddomains) + { + // If we come into this if statement we dont want to apply templates. + // Retrieve configuration settings. + $ns1 = $GLOBALS["NS1"]; + $hm = $GLOBALS["HOSTMASTER"]; + $ttl = $GLOBALS["DEFAULT_TTL"]; + + // Retrieve next records id + $idrecords = $db->nextID('records'); + + // Build and execute query + $sql = "INSERT INTO records (id, domain_id, name, content, type, ttl, prio, change_date) VALUES ('$idrecords', '$iddomains', '$domain', '$ns1 $hm 1', 'SOA', $ttl, '', '$now')"; + $db->query($sql); + + // Done + return true; + } + elseif ($iddomains) + { + // If we are here we want to apply templates. + global $template; + + // Iterate over the template and apply it for each field. + foreach ($template as $r) + { + // Same type of if statement as previous. + if ((eregi('in-addr.arpa', $domain) && ($r["type"] == "NS" || $r["type"] == "SOA")) || (!eregi('in-addr.arpa', $domain))) + { + // Parse the template. + $name = parse_template_value($r["name"], $domain, $webip, $mailip); + $type = $r["type"]; + $content = parse_template_value($r["content"], $domain, $webip, $mailip); + $ttl = $r["ttl"]; + $prio = $r["prio"]; + + // If no ttl is given, use the default. + if (!$ttl) + { + $ttl = $GLOBALS["DEFAULT_TTL"]; + } + + // Retrieve new record id; + $idrecords = $db->nextID('records'); + $sql = "INSERT INTO records (id, domain_id, name, content, type, ttl, prio, change_date) VALUES ('$idrecords', '$iddomains', '$name','$content','$type','$ttl','$prio','$now')"; + $db->query($sql); + } + } + // All done. + return true; + } + else + { + error(sprintf(ERR_INV_ARGC, "add_domain", "could not create zone")); + } + } + else + { + error(sprintf(ERR_INV_ARG, "add_domain")); + } +} + + +/* + * Deletes a domain by a given id. + * Function always succeeds. If the field is not found in the database, thats what we want anyway. + */ +function delete_domain($id) +{ + global $db; + + if (!level(5)) + { + error(ERR_LEVEL_5); + } + + // See if the ID is numeric. + if (is_numeric($id)) + { + $db->query("DELETE FROM zones WHERE domain_id=$id"); + $db->query("DELETE FROM domains WHERE id=$id"); + $db->query("DELETE FROM records WHERE domain_id=$id"); + // Nothing in the database. If the delete deleted 0 records it means the id is just not there. + // therefore the is no need to check the affectedRows values. + return true; + } + else + { + error(sprintf(ERR_INV_ARGC, "delete_domain", "id must be a number")); + } +} + + +/* + * Gets the id of the domain by a given record id. + * return values: the domain id that was requested. + */ +function recid_to_domid($id) +{ + global $db; + if (is_numeric($id)) + { + $result = $db->query("SELECT domain_id FROM records WHERE id=$id"); + $r = $result->fetchRow(); + return $r["domain_id"]; + } + else + { + error(sprintf(ERR_INV_ARGC, "recid_to_domid", "id must be a number")); + } +} + + +/* + * Sorts a zone by records. + * return values: the sorted zone. + */ +function sort_zone($records) +{ + $ar_so = array(); + $ar_ns = array(); + $ar_mx = array(); + $ar_mb = array(); + $ar_ur = array(); + $ar_ov = array(); + foreach ($records as $c) + { + switch(strtoupper($c['type'])) + { + case "SOA": + $ar_so[] = $c; + break; + case "NS": + $ar_ns[] = $c; + break; + case "MX": + $ar_mx[] = $c; + break; + case "MBOXFW": + $ar_mb[] = $c; + break; + case "URL": + $ar_ur[] = $c; + break; + default: + $ar_ov[] = $c; + break; + } + } + + $res = array_merge($ar_so, $ar_ns, $ar_mx, $ar_mb, $ar_ur, $ar_ov); + + if (count($records) == count($res)) + { + $records = $res; + } + else + { + error(sprintf(ERR_INV_ARGC, "sort_zone", "records sorting failed!")); + } + return $records; +} + + +/* + * Change owner of a domain. + * Function should actually be in users.inc.php. But its more of a record modification than a user modification + * return values: true when succesful. + */ +function add_owner($domain, $newowner) +{ + global $db; + + if (!level(5)) + { + error(ERR_LEVEL_5); + } + + if (is_numeric($domain) && is_numeric($newowner) && is_valid_user($newowner)) + { + $iid = $db->nextID('zones'); + if($db->getOne("SELECT COUNT(id) FROM zones WHERE owner=$newowner AND domain_id=$domain") == 0) + { + $db->query("INSERT INTO zones(id, domain_id, owner) VALUES($iid, $domain, $newowner)"); + } + return true; + } + else + { + error(sprintf(ERR_INV_ARGC, "change_owner", "$domain / $newowner")); + } +} + + +function delete_owner($domain, $owner) +{ + global $db; + if($db->getOne("SELECT COUNT(id) FROM zones WHERE owner=$owner AND domain_id=$domain") != 0) + { + $db->query("DELETE FROM zones WHERE owner=$owner AND domain_id=$domain"); + } + return true; +} + +/* + * Retrieves all supported dns record types + * This function might be deprecated. + * return values: array of types in string form. + */ +function get_record_types() +{ + global $rtypes; + return $rtypes; +} + + +/* + * Retrieve all records by a given type and domain id. + * Example: get all records that are of type A from domain id 1 + * return values: a DB class result object + */ +function get_records_by_type_from_domid($type, $recid) +{ + global $rtypes; + global $db; + + // Does this type exist? + if(!in_array(strtoupper($type), $rtypes)) + { + error(sprintf(ERR_INV_ARGC, "get_records_from_type", "this is not a supported record")); + } + + // Get the domain id. + $domid = recid_to_domid($recid); + + $result = $db->query("select id, type from records where domain_id=$recid and type='$type'"); + return $result; +} + + +/* + * Retrieves the type of a record from a given id. + * return values: the type of the record (one of the records types in $rtypes assumable). + */ +function get_recordtype_from_id($id) +{ + global $db; + if (is_numeric($id)) + { + $result = $db->query("SELECT type FROM records WHERE id=$id"); + $r = $result->fetchRow(); + return $r["type"]; + } + else + { + error(sprintf(ERR_INV_ARG, "get_recordtype_from_id")); + } +} + + +/* + * Retrieves the name (e.g. bla.test.com) of a record by a given id. + * return values: the name associated with the id. + */ +function get_name_from_record_id($id) +{ + global $db; + if (is_numeric($id)) + { + $result = $db->query("SELECT name FROM records WHERE id=$id"); + $r = $result->fetchRow(); + return $r["name"]; + } + else + { + error(sprintf(ERR_INV_ARG, "get_name_from_record_id")); + } +} + + +/* + * Get all the domains from a database of which the user is the owner. + * return values: an array with the id of the domain and its name. + */ +function get_domains_from_userid($id) +{ + global $db; + if (is_numeric($id)) + { + $result = $db->query("SELECT domains.id AS domain_id, domains.name AS name FROM domains LEFT JOIN zones ON domains.id=zones.domain_id WHERE owner=$id"); + + $ret = array(); + + // Put all the information in a big array. + while ($r = $result->fetchRow()) + { + $ret[] = array( + "id" => $r["domain_id"], + "name" => $r["name"] + ); + } + return $ret; + } + else + { + error(sprintf(ERR_INV_ARGC, "get_domains_from_userid", "This is not a valid userid: $id")); + } +} + + +/* + * Get domain name from a given id + * return values: the name of the domain associated with the id. + */ +function get_domain_name_from_id($id) +{ + global $db; + if (!xs($id)) + { + error(ERR_RECORD_ACCESS_DENIED); + } + if (is_numeric($id)) + { + $result = $db->query("SELECT name FROM domains WHERE id=$id"); + if ($result->numRows() == 1) + { + $r = $result->fetchRow(); + return $r["name"]; + } + else + { + error(sprintf(ERR_INV_ARGC, "get_domain_name_from_id", "more than one domain found?! whaaa! BAD! BAD! Contact admin!")); + } + } + else + { + error(sprintf(ERR_INV_ARGC, "get_domain_name_from_id", "Not a valid domainid: $id")); + } +} + + +/* + * Get information about a domain name from a given domain id. + * the function looks up the domainname, the owner of the domain and the number of records in it. + * return values: an array containing the information. + */ +function get_domain_info_from_id($id) +{ + global $db; + if (!xs($id)) + { + error(ERR_RECORD_ACCESS_DENIED); + } + if (is_numeric($id)) + { + + if ($_SESSION[$id."_ispartial"] == 1) { + + $sqlq = "SELECT domains.name AS name, + users.fullname AS owner, + count(record_owners.id) AS aantal + FROM domains, users, record_owners, records + + WHERE record_owners.user_id = ".$_SESSION["userid"]." + AND record_owners.record_id = records.id + AND records.domain_id = ".$id." + + GROUP BY name, owner, users.fullname + ORDER BY name"; + + $result = $db->getRow($sqlq); + + $ret = array( + "name" => $result["name"], + "ownerid" => $_SESSION["userid"], + "owner" => $result["owner"], + "numrec" => $result["aantal"] + ); + + return $ret; + + } else{ + + // Query that retrieves the information we need. + $sqlq = "SELECT domains.name AS name, + min(zones.owner) AS ownerid, + users.fullname AS owner, + count(records.domain_id) AS aantal + FROM domains + LEFT JOIN records ON domains.id=records.domain_id + LEFT JOIN zones ON domains.id=zones.domain_id + LEFT JOIN users ON zones.owner=users.id + WHERE domains.id=$id + GROUP BY name, owner, users.fullname + ORDER BY zones.id"; + + // Put the first occurence in an array and return it. + $result = $db->getRow($sqlq); + + //$result["ownerid"] = ($result["ownerid"] == NULL) ? $db->getOne("select min(id) from users where users.level=10") : $result["ownerid"]; + + $ret = array( + "name" => $result["name"], + "ownerid" => $result["ownerid"], + "owner" => $result["owner"], + "numrec" => $result["aantal"] + ); + return $ret; + } + + } + else + { + error(sprintf(ERR_INV_ARGC, "get_domain_num_records_from_id", "This is not a valid domainid: $id")); + } +} + + +/* + * Check if a domain is already existing. + * return values: true if existing, false if it doesnt exist. + */ +function domain_exists($domain) +{ + global $db; + + if (!level(5)) + { + error(ERR_LEVEL_5); + } + if (is_valid_domain($domain)) + { + $result = $db->query("SELECT id FROM domains WHERE name='$domain'"); + if ($result->numRows() == 0) + { + return false; + } + elseif ($result->numRows() >= 1) + { + return true; + } + } + else + { + error(ERR_DOMAIN_INVALID); + } +} + + +/* + * Get all domains from the database. + * This function gets all the domains from the database unless a user id is below 5. + * if a user id is below 5 this function will only retrieve records for that user. + * return values: the array of domains or -1 if nothing is found. + */ +function get_domains($userid=true,$letterstart=all,$rowstart=0,$rowamount=999999) +{ + global $db; + if((!level(5) || !$userid) && !level(10) && !level(5)) + { + $add = " AND zones.owner=".$_SESSION["userid"]; + } + else + { + $add = ""; + } + + $sqlq = "SELECT domains.id AS domain_id, + min(zones.owner) AS owner, + count(DISTINCT records.id) AS aantal, + domains.name AS domainname + FROM domains + LEFT JOIN zones ON domains.id=zones.domain_id + LEFT JOIN records ON records.domain_id=domains.id + WHERE 1 $add "; + if ($letterstart!=all && $letterstart!=1) { + $sqlq.=" AND domains.name LIKE '".$letterstart."%' "; + } elseif ($letterstart==1) { + $sqlq.=" AND "; + for ($i=0;$i<=9;$i++) { + $sqlq.="domains.name LIKE '".$i."%'"; + if ($i!=9) $sqlq.=" OR "; + } + } + $sqlq.=" GROUP BY domainname, domain_id + ORDER BY domainname + LIMIT $rowstart,$rowamount"; + + $result = $db->query($sqlq); + $result2 = $db->query($sqlq); + + $andnot=""; + while($r = $result2->fetchRow()) { + $andnot.=" AND domains.id!= '".$r["domain_id"]."' "; + } + + $sqlq = "SELECT domains.id AS domain_id, + count(DISTINCT record_owners.record_id) AS aantal, + domains.name AS domainname + FROM domains, record_owners,records, zones + WHERE record_owners.user_id = '".$_SESSION["userid"]."' + AND (records.id = record_owners.record_id + AND domains.id = records.domain_id) + $andnot "; + + if ($letterstart!=all && $letterstart!=1) { + $sqlq.=" AND domains.name LIKE '".$letterstart."%' "; + } // elseif ($letterstart==1) { +/* + $sqlq.=" AND "; + for ($i=0;$i<=9;$i++) { + $sqlq.="domains.name LIKE '".$i."%'"; + if ($i!=9) $sqlq.=" OR "; + } + } +*/ + + $sqlq.= " AND (zones.domain_id != records.domain_id AND zones.owner!='".$_SESSION["userid"]."') + GROUP BY domainname, domain_id + ORDER BY domainname"; + + $result_extra = $db->query($sqlq); + + if ($result->numRows() == 0) + { + // Nothing found. + return -1; + } + + while($r = $result->fetchRow()) + { + $r["owner"] = ($r["owner"] == NULL) ? $db->getOne("select min(id) from users where users.level=10") : $r["owner"]; + $ret[$r["domainname"]] = array( + "name" => $r["domainname"], + "id" => $r["domain_id"], + "owner" => $r["owner"], + "numrec" => $r["aantal"] + ); + } + + while($r = $result_extra->fetchRow()) + { + $ret[$r["domainname"]] = array( + "name" => $r["domainname"]."*", + "id" => $r["domain_id"], + "owner" => $_SESSION["userid"], + "numrec" => $r["aantal"] + ); + } + + sort($ret); + + return $ret; +} + + +/* + * Get a record from an id. + * Retrieve all fields of the record and send it back to the function caller. + * return values: the array with information, or -1 is nothing is found. + */ +function get_record_from_id($id) +{ + global $db; + if (is_numeric($id)) + { + $result = $db->query("SELECT id, domain_id, name, type, content, ttl, prio, change_date FROM records WHERE id=$id"); + if($result->numRows() == 0) + { + return -1; + } + elseif ($result->numRows() == 1) + { + $r = $result->fetchRow(); + $ret = array( + "id" => $r["id"], + "domain_id" => $r["domain_id"], + "name" => $r["name"], + "type" => $r["type"], + "content" => $r["content"], + "ttl" => $r["ttl"], + "prio" => $r["prio"], + "change_date" => $r["change_date"] + ); + return $ret; + } + else + { + error(sprintf(ERR_INV_ARGC, "get_record_from_id", "More than one row returned! This is bad!")); + } + } + else + { + error(sprintf(ERR_INV_ARG, "get_record_from_id")); + } +} + + +/* + * Get all records from a domain id. + * Retrieve all fields of the records and send it back to the function caller. + * return values: the array with information, or -1 is nothing is found. + */ +function get_records_from_domain_id($id,$rowstart=0,$rowamount=999999) +{ + global $db; + if (is_numeric($id)) + { + if ($_SESSION[$id."_ispartial"] == 1) { + + $result = $db->query("SELECT record_owners.record_id as id + FROM record_owners,domains,records + WHERE record_owners.user_id = ".$_SESSION["userid"]." + AND record_owners.record_id = records.id + AND records.domain_id = ".$id." + GROUP bY record_owners.record_id + LIMIT $rowstart,$rowamount"); + + $ret = array(); + if($result->numRows() == 0) + { + return -1; + } + else + { + $ret[] = array(); + $retcount = 0; + while($r = $result->fetchRow()) + { + // Call get_record_from_id for each row. + $ret[$retcount] = get_record_from_id($r["id"]); + $retcount++; + } + return $ret; + } + + } else { + + $result = $db->query("SELECT id FROM records WHERE domain_id=$id LIMIT $rowstart,$rowamount"); + $ret = array(); + if($result->numRows() == 0) + { + return -1; + } + else + { + $ret[] = array(); + $retcount = 0; + while($r = $result->fetchRow()) + { + // Call get_record_from_id for each row. + $ret[$retcount] = get_record_from_id($r["id"]); + $retcount++; + } + return $ret; + } + + } + } + else + { + error(sprintf(ERR_INV_ARG, "get_records_from_domain_id")); + } +} + + +function get_users_from_domain_id($id) +{ + global $db; + $result = $db->getCol("SELECT owner FROM zones WHERE domain_id=$id"); + $ret = array(); + foreach($result as $uid) + { + $fullname = $db->getOne("SELECT fullname FROM users WHERE id=$uid"); + $ret[] = array( + "id" => $uid, + "fullname" => $fullname + ); + } + return $ret; +} + +function search_record($question) +{ + global $db; + $question = trim($question); + if (empty($question)) + { + $S_INPUT_TYPE = -1; + } + + /* now for some input-type searching */ + if (is_valid_ip($question) || is_valid_ip6($question)) + { + $S_INPUT_TYPE = 0; + } + elseif(is_valid_domain($question) || + is_valid_hostname($question) || + is_valid_mboxfw($question)) // I guess this one can appear in records table too (content?!) + { + $S_INPUT_TYPE = 1; + } + else + { + $S_INPUT_TYPE = -1; + } + switch($S_INPUT_TYPE) + { + case '0': + $sqlq = "SELECT * FROM `records` WHERE `content` = '".$question."' ORDER BY `type` DESC"; + $result = $db->query($sqlq); + $ret_r = array(); + while ($r = $result->fetchRow()) + { + if(xs($r['domain_id'])) + { + $ret_r[] = array( + 'id' => $r['id'], + 'domain_id' => $r['domain_id'], + 'name' => $r['name'], + 'type' => $r['type'], + 'content' => $r['content'], + 'ttl' => $r['ttl'], + 'prio' => $r['prio'], + 'change_date' => $r['change_date'] + ); + } + } + break; + + case '1' : + $sqlq = "SELECT `domains`.*, count(`records`.`id`) AS `numrec`, `zones`.`owner` + FROM `domains`, `records`, `zones` + WHERE `domains`.`id` = `records`.`domain_id` + AND `zones`.`domain_id` = `domains`.`id` + AND `domains`.`name` = '".$question."' + GROUP BY (`domains`.`id`)"; + + $result = $db->query($sqlq); + $ret_d = array(); + while ($r = $result->fetchRow()) + { + if(xs($r['domain_id'])) + { + $ret_d[] = array( + 'id' => $r['id'], + 'name' => $r['name'], + 'numrec' => $r['numrec'], + 'owner' => $r['owner'] + ); + } + } + + $sqlq = "SELECT * FROM `records` WHERE `name` = '".$question."' OR `content` = '".$question."' ORDER BY `type` DESC"; + $result = $db->query($sqlq); + while ($r = $result->fetchRow()) + { + if(xs($r['domain_id'])) + { + $ret_r[] = array( + 'id' => $r['id'], + 'domain_id' => $r['domain_id'], + 'name' => $r['name'], + 'type' => $r['type'], + 'content' => $r['content'], + 'ttl' => $r['ttl'], + 'prio' => $r['prio'], + ); + } + } + break; + } + if($S_INPUT_TYPE == 1) + { + return array('domains' => $ret_d, 'records' => $ret_r); + } + return array('records' => $ret_r); +} + +function get_domain_type($id) +{ + global $db; + $type = $db->getOne("SELECT `type` FROM `domains` WHERE `id` = '".$id."'"); + if($type == "") + { + $type = "NATIVE"; + } + return $type; + +} + +function change_domain_type($type, $id) +{ + global $db; + $result = $db->query("UPDATE `domains` SET `type` = '" .$type. "' WHERE `id` = '".$id."'"); +} +?>