src/dns/gandi.js

'use strict';

exports = module.exports = {
    removePrivateFields,
    injectPrivateFields,
    upsert,
    get,
    del,
    wait,
    verifyDomainConfig
};

const assert = require('assert'),
    BoxError = require('../boxerror.js'),
    constants = require('../constants.js'),
    debug = require('debug')('box:dns/gandi'),
    dns = require('../dns.js'),
    superagent = require('superagent'),
    util = require('util'),
    waitForDns = require('./waitfordns.js');

const GANDI_API = 'https://dns.api.gandi.net/api/v5';

function formatError(response) {
    return util.format(`Gandi DNS error [${response.statusCode}] ${response.body.message}`);
}

function removePrivateFields(domainObject) {
    domainObject.config.token = constants.SECRET_PLACEHOLDER;
    return domainObject;
}

function injectPrivateFields(newConfig, currentConfig) {
    if (newConfig.token === constants.SECRET_PLACEHOLDER) newConfig.token = currentConfig.token;
}

function upsert(domainObject, location, type, values, callback) {
    assert.strictEqual(typeof domainObject, 'object');
    assert.strictEqual(typeof location, 'string');
    assert.strictEqual(typeof type, 'string');
    assert(Array.isArray(values));
    assert.strictEqual(typeof callback, 'function');

    const domainConfig = domainObject.config,
        zoneName = domainObject.zoneName,
        name = dns.getName(domainObject, location, type) || '@';

    debug(`upsert: ${name} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);

    var data = {
        'rrset_ttl': 300, // this is the minimum allowed
        'rrset_values': values // for mx records, value is already of the '<priority> <server>' format
    };

    superagent.put(`${GANDI_API}/domains/${zoneName}/records/${name}/${type}`)
        .set('X-Api-Key', domainConfig.token)
        .timeout(30 * 1000)
        .send(data)
        .end(function (error, result) {
            if (error && !error.response) return callback(new BoxError(BoxError.NETWORK_ERROR, error.message));
            if (result.statusCode === 403 || result.statusCode === 401) return callback(new BoxError(BoxError.ACCESS_DENIED, formatError(result)));
            if (result.statusCode === 400) return callback(new BoxError(BoxError.BAD_FIELD, formatError(result)));
            if (result.statusCode !== 201) return callback(new BoxError(BoxError.EXTERNAL_ERROR, formatError(result)));

            return callback(null);
        });
}

function get(domainObject, location, type, callback) {
    assert.strictEqual(typeof domainObject, 'object');
    assert.strictEqual(typeof location, 'string');
    assert.strictEqual(typeof type, 'string');
    assert.strictEqual(typeof callback, 'function');

    const domainConfig = domainObject.config,
        zoneName = domainObject.zoneName,
        name = dns.getName(domainObject, location, type) || '@';

    debug(`get: ${name} in zone ${zoneName} of type ${type}`);

    superagent.get(`${GANDI_API}/domains/${zoneName}/records/${name}/${type}`)
        .set('X-Api-Key', domainConfig.token)
        .timeout(30 * 1000)
        .end(function (error, result) {
            if (error && !error.response) return callback(new BoxError(BoxError.NETWORK_ERROR, error.message));
            if (result.statusCode === 403 || result.statusCode === 401) return callback(new BoxError(BoxError.ACCESS_DENIED, formatError(result)));
            if (result.statusCode === 404) return callback(null, [ ]);
            if (result.statusCode !== 200) return callback(new BoxError(BoxError.EXTERNAL_ERROR, formatError(result)));

            debug('get: %j', result.body);

            return callback(null, result.body.rrset_values);
        });
}

function del(domainObject, location, type, values, callback) {
    assert.strictEqual(typeof domainObject, 'object');
    assert.strictEqual(typeof location, 'string');
    assert.strictEqual(typeof type, 'string');
    assert(Array.isArray(values));
    assert.strictEqual(typeof callback, 'function');

    const domainConfig = domainObject.config,
        zoneName = domainObject.zoneName,
        name = dns.getName(domainObject, location, type) || '@';

    debug(`del: ${name} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);

    superagent.del(`${GANDI_API}/domains/${zoneName}/records/${name}/${type}`)
        .set('X-Api-Key', domainConfig.token)
        .timeout(30 * 1000)
        .end(function (error, result) {
            if (error && !error.response) return callback(new BoxError(BoxError.NETWORK_ERROR, error.message));
            if (result.statusCode === 404) return callback(null);
            if (result.statusCode === 403 || result.statusCode === 401) return callback(new BoxError(BoxError.ACCESS_DENIED, formatError(result)));
            if (result.statusCode !== 204) return callback(new BoxError(BoxError.EXTERNAL_ERROR, formatError(result)));

            debug('del: done');

            return callback(null);
        });
}

async function wait(domainObject, subdomain, type, value, options) {
    assert.strictEqual(typeof domainObject, 'object');
    assert.strictEqual(typeof subdomain, 'string');
    assert.strictEqual(typeof type, 'string');
    assert.strictEqual(typeof value, 'string');
    assert(options && typeof options === 'object'); // { interval: 5000, times: 50000 }

    const fqdn = dns.fqdn(subdomain, domainObject);

    await waitForDns(fqdn, domainObject.zoneName, type, value, options);
}

function verifyDomainConfig(domainObject, callback) {
    assert.strictEqual(typeof domainObject, 'object');
    assert.strictEqual(typeof callback, 'function');

    const domainConfig = domainObject.config,
        zoneName = domainObject.zoneName;

    if (!domainConfig.token || typeof domainConfig.token !== 'string') return callback(new BoxError(BoxError.BAD_FIELD, 'token must be a non-empty string', { field: 'token' }));

    var credentials = {
        token: domainConfig.token
    };

    const ip = '127.0.0.1';

    if (process.env.BOX_ENV === 'test') return callback(null, credentials); // this shouldn't be here

    dns.resolve(zoneName, 'NS', { timeout: 5000 }, function (error, nameservers) {
        if (error && error.code === 'ENOTFOUND') return callback(new BoxError(BoxError.BAD_FIELD, 'Unable to resolve nameservers for this domain', { field: 'nameservers' }));
        if (error || !nameservers) return callback(new BoxError(BoxError.BAD_FIELD, error ? error.message : 'Unable to get nameservers', { field: 'nameservers' }));

        if (!nameservers.every(function (n) { return n.toLowerCase().indexOf('.gandi.net') !== -1; })) {
            debug('verifyDomainConfig: %j does not contain Gandi NS', nameservers);
            return callback(new BoxError(BoxError.BAD_FIELD, 'Domain nameservers are not set to Gandi', { field: 'nameservers' }));
        }

        const location = 'cloudrontestdns';

        upsert(domainObject, location, 'A', [ ip ], function (error) {
            if (error) return callback(error);

            debug('verifyDomainConfig: Test A record added');

            del(domainObject, location, 'A', [ ip ], function (error) {
                if (error) return callback(error);

                debug('verifyDomainConfig: Test A record removed again');

                callback(null, credentials);
            });
        });
    });
}
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`'use strict';`

			`exports = module.exports = {`
merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`removePrivateFields,`
			`injectPrivateFields,`
			`upsert,`
			`get,`
			`del,`
			`wait,`
dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`verifyDomainConfig`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`};`

merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`const assert = require('assert'),`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`BoxError = require('../boxerror.js'),`
Always use constants.SECRET_PLACEHOLDER 2020-05-14 23:01:44 +02:00			`constants = require('../constants.js'),`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`debug = require('debug')('box:dns/gandi'),`
merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`dns = require('../dns.js'),`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`superagent = require('superagent'),`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`util = require('util'),`
			`waitForDns = require('./waitfordns.js');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`const GANDI_API = 'https://dns.api.gandi.net/api/v5';`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
			`function formatError(response) {`
gandi: more fixes 2018-05-06 20:58:11 -07:00			return util.format(`Gandi DNS error [${response.statusCode}] ${response.body.message}`);
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`}`

add provider specific removePrivateFields to redact tokens and secrets 2019-02-08 11:11:49 +01:00			`function removePrivateFields(domainObject) {`
Always use constants.SECRET_PLACEHOLDER 2020-05-14 23:01:44 +02:00			`domainObject.config.token = constants.SECRET_PLACEHOLDER;`
add provider specific removePrivateFields to redact tokens and secrets 2019-02-08 11:11:49 +01:00			`return domainObject;`
			`}`

Add dns interface api to inject hidden files for verification 2019-02-09 19:08:15 +01:00			`function injectPrivateFields(newConfig, currentConfig) {`
Always use constants.SECRET_PLACEHOLDER 2020-05-14 23:01:44 +02:00			`if (newConfig.token === constants.SECRET_PLACEHOLDER) newConfig.token = currentConfig.token;`
Add dns interface api to inject hidden files for verification 2019-02-09 19:08:15 +01:00			`}`

rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`function upsert(domainObject, location, type, values, callback) {`
			`assert.strictEqual(typeof domainObject, 'object');`
			`assert.strictEqual(typeof location, 'string');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`assert.strictEqual(typeof type, 'string');`
Use Array.isArray instead 2021-05-02 11:26:08 -07:00			`assert(Array.isArray(values));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`assert.strictEqual(typeof callback, 'function');`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`const domainConfig = domainObject.config,`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`zoneName = domainObject.zoneName,`
merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`name = dns.getName(domainObject, location, type) \|\| '@';`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			debug(`upsert: ${name} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
			`var data = {`
			`'rrset_ttl': 300, // this is the minimum allowed`
Add note on MX records 2018-05-06 22:14:39 -07:00			`'rrset_values': values // for mx records, value is already of the '<priority> <server>' format`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`};`

rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			superagent.put(`${GANDI_API}/domains/${zoneName}/records/${name}/${type}`)
dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`.set('X-Api-Key', domainConfig.token)`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`.timeout(30 * 1000)`
			`.send(data)`
			`.end(function (error, result) {`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`if (error && !error.response) return callback(new BoxError(BoxError.NETWORK_ERROR, error.message));`
			`if (result.statusCode === 403 \|\| result.statusCode === 401) return callback(new BoxError(BoxError.ACCESS_DENIED, formatError(result)));`
			`if (result.statusCode === 400) return callback(new BoxError(BoxError.BAD_FIELD, formatError(result)));`
			`if (result.statusCode !== 201) return callback(new BoxError(BoxError.EXTERNAL_ERROR, formatError(result)));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
Remove now unused dnsRecordId 2018-06-29 22:25:34 +02:00			`return callback(null);`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`});`
			`}`

rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`function get(domainObject, location, type, callback) {`
			`assert.strictEqual(typeof domainObject, 'object');`
			`assert.strictEqual(typeof location, 'string');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`assert.strictEqual(typeof type, 'string');`
			`assert.strictEqual(typeof callback, 'function');`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`const domainConfig = domainObject.config,`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`zoneName = domainObject.zoneName,`
merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`name = dns.getName(domainObject, location, type) \|\| '@';`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			debug(`get: ${name} in zone ${zoneName} of type ${type}`);
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			superagent.get(`${GANDI_API}/domains/${zoneName}/records/${name}/${type}`)
dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`.set('X-Api-Key', domainConfig.token)`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`.timeout(30 * 1000)`
			`.end(function (error, result) {`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`if (error && !error.response) return callback(new BoxError(BoxError.NETWORK_ERROR, error.message));`
			`if (result.statusCode === 403 \|\| result.statusCode === 401) return callback(new BoxError(BoxError.ACCESS_DENIED, formatError(result)));`
gandi: more fixes 2018-05-06 20:58:11 -07:00			`if (result.statusCode === 404) return callback(null, [ ]);`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`if (result.statusCode !== 200) return callback(new BoxError(BoxError.EXTERNAL_ERROR, formatError(result)));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
			`debug('get: %j', result.body);`

			`return callback(null, result.body.rrset_values);`
			`});`
			`}`

rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`function del(domainObject, location, type, values, callback) {`
			`assert.strictEqual(typeof domainObject, 'object');`
			`assert.strictEqual(typeof location, 'string');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`assert.strictEqual(typeof type, 'string');`
Use Array.isArray instead 2021-05-02 11:26:08 -07:00			`assert(Array.isArray(values));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`assert.strictEqual(typeof callback, 'function');`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`const domainConfig = domainObject.config,`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`zoneName = domainObject.zoneName,`
merge domaindb.js into domains.js 2021-08-13 17:22:28 -07:00			`name = dns.getName(domainObject, location, type) \|\| '@';`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			debug(`del: ${name} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			superagent.del(`${GANDI_API}/domains/${zoneName}/records/${name}/${type}`)
dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`.set('X-Api-Key', domainConfig.token)`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`.timeout(30 * 1000)`
			`.end(function (error, result) {`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`if (error && !error.response) return callback(new BoxError(BoxError.NETWORK_ERROR, error.message));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`if (result.statusCode === 404) return callback(null);`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`if (result.statusCode === 403 \|\| result.statusCode === 401) return callback(new BoxError(BoxError.ACCESS_DENIED, formatError(result)));`
			`if (result.statusCode !== 204) return callback(new BoxError(BoxError.EXTERNAL_ERROR, formatError(result)));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
			`debug('del: done');`

			`return callback(null);`
			`});`
			`}`

make waitForDns async 2022-02-03 16:15:14 -08:00			`async function wait(domainObject, subdomain, type, value, options) {`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`assert.strictEqual(typeof domainObject, 'object');`
make waitForDns async 2022-02-03 16:15:14 -08:00			`assert.strictEqual(typeof subdomain, 'string');`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`assert.strictEqual(typeof type, 'string');`
			`assert.strictEqual(typeof value, 'string');`
			`assert(options && typeof options === 'object'); // { interval: 5000, times: 50000 }`

make waitForDns async 2022-02-03 16:15:14 -08:00			`const fqdn = dns.fqdn(subdomain, domainObject);`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00
make waitForDns async 2022-02-03 16:15:14 -08:00			`await waitForDns(fqdn, domainObject.zoneName, type, value, options);`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`}`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`function verifyDomainConfig(domainObject, callback) {`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`assert.strictEqual(typeof domainObject, 'object');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`assert.strictEqual(typeof callback, 'function');`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`const domainConfig = domainObject.config,`
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`zoneName = domainObject.zoneName;`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`if (!domainConfig.token \|\| typeof domainConfig.token !== 'string') return callback(new BoxError(BoxError.BAD_FIELD, 'token must be a non-empty string', { field: 'token' }));`
validate dns config parameters 2018-06-17 21:44:08 -07:00
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`var credentials = {`
dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`token: domainConfig.token`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`};`

rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`const ip = '127.0.0.1';`

Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`if (process.env.BOX_ENV === 'test') return callback(null, credentials); // this shouldn't be here`

			`dns.resolve(zoneName, 'NS', { timeout: 5000 }, function (error, nameservers) {`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`if (error && error.code === 'ENOTFOUND') return callback(new BoxError(BoxError.BAD_FIELD, 'Unable to resolve nameservers for this domain', { field: 'nameservers' }));`
			`if (error \|\| !nameservers) return callback(new BoxError(BoxError.BAD_FIELD, error ? error.message : 'Unable to get nameservers', { field: 'nameservers' }));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
			`if (!nameservers.every(function (n) { return n.toLowerCase().indexOf('.gandi.net') !== -1; })) {`
dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`debug('verifyDomainConfig: %j does not contain Gandi NS', nameservers);`
Move DomainsError to BoxError 2019-10-23 10:02:04 -07:00			`return callback(new BoxError(BoxError.BAD_FIELD, 'Domain nameservers are not set to Gandi', { field: 'nameservers' }));`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`}`

rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`const location = 'cloudrontestdns';`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`upsert(domainObject, location, 'A', [ ip ], function (error) {`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`if (error) return callback(error);`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`debug('verifyDomainConfig: Test A record added');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
rework dns api to take domainObject 2019-01-04 18:44:54 -08:00			`del(domainObject, location, 'A', [ ip ], function (error) {`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00			`if (error) return callback(error);`

dnsConfig -> domainConfig 2022-01-05 22:41:41 -08:00			`debug('verifyDomainConfig: Test A record removed again');`
Add Gandi LiveDNS backend 2018-05-06 18:57:27 -07:00
			`callback(null, credentials);`
			`});`
			`});`
			`});`
			`}`