src/dns/godaddy.js

'use strict';

exports = module.exports = {
    upsert: upsert,
    get: get,
    del: del,
    waitForDns: require('./waitfordns.js'),
    verifyDnsConfig: verifyDnsConfig
};

var assert = require('assert'),
    debug = require('debug')('box:dns/godaddy'),
    dns = require('../native-dns.js'),
    DomainsError = require('../domains.js').DomainsError,
    superagent = require('superagent'),
    util = require('util');

// const GODADDY_API_OTE = 'https://api.ote-godaddy.com/v1/domains';
const GODADDY_API = 'https://api.godaddy.com/v1/domains';

// this is a workaround for godaddy not having a delete API
// https://stackoverflow.com/questions/39347464/delete-record-libcloud-godaddy-api
const GODADDY_INVALID_IP = '0.0.0.0';

function formatError(response) {
    return util.format(`GoDaddy DNS error [${response.statusCode}] ${response.body.message}`);
}

function upsert(dnsConfig, zoneName, subdomain, type, values, callback) {
    assert.strictEqual(typeof dnsConfig, 'object');
    assert.strictEqual(typeof zoneName, 'string');
    assert.strictEqual(typeof subdomain, 'string');
    assert.strictEqual(typeof type, 'string');
    assert(util.isArray(values));
    assert.strictEqual(typeof callback, 'function');

    subdomain = subdomain || '@';

    debug(`upsert: ${subdomain} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);

    var records = [ ];
    values.forEach(function (value) {
        var record = { ttl: 600 }; // 600 is the min ttl

        if (type === 'MX') {
            record.priority = parseInt(value.split(' ')[0], 10);
            record.data = value.split(' ')[1];
        } else {
            record.data = value;
        }

        records.push(record);
    });

    superagent.put(`${GODADDY_API}/${zoneName}/records/${type}/${subdomain}`)
        .set('Authorization', `sso-key ${dnsConfig.apiKey}:${dnsConfig.apiSecret}`)
        .timeout(30 * 1000)
        .send(records)
        .end(function (error, result) {
            if (error && !error.response) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, util.format('Network error %s', error.message)));
            if (result.statusCode === 403 || result.statusCode === 401) return callback(new DomainsError(DomainsError.ACCESS_DENIED, formatError(result)));
            if (result.statusCode === 400) return callback(new DomainsError(DomainsError.BAD_FIELD, formatError(result))); // no such zone
            if (result.statusCode === 422) return callback(new DomainsError(DomainsError.BAD_FIELD, formatError(result))); // conflict
            if (result.statusCode !== 200) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, formatError(result)));

            return callback(null);
        });
}

function get(dnsConfig, zoneName, subdomain, type, callback) {
    assert.strictEqual(typeof dnsConfig, 'object');
    assert.strictEqual(typeof zoneName, 'string');
    assert.strictEqual(typeof subdomain, 'string');
    assert.strictEqual(typeof type, 'string');
    assert.strictEqual(typeof callback, 'function');

    subdomain = subdomain || '@';

    debug(`get: ${subdomain} in zone ${zoneName} of type ${type}`);

    superagent.get(`${GODADDY_API}/${zoneName}/records/${type}/${subdomain}`)
        .set('Authorization', `sso-key ${dnsConfig.apiKey}:${dnsConfig.apiSecret}`)
        .timeout(30 * 1000)
        .end(function (error, result) {
            if (error && !error.response) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, util.format('Network error %s', error.message)));
            if (result.statusCode === 403 || result.statusCode === 401) return callback(new DomainsError(DomainsError.ACCESS_DENIED, formatError(result)));
            if (result.statusCode === 404) return callback(null, [ ]);
            if (result.statusCode !== 200) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, formatError(result)));

            debug('get: %j', result.body);

            var values = result.body.map(function (record) { return record.data; });

            if (values.length === 1 && values[0] === GODADDY_INVALID_IP) return callback(null, [ ]); // pretend this record doesn't exist

            return callback(null, values);
        });
}

function del(dnsConfig, zoneName, subdomain, type, values, callback) {
    assert.strictEqual(typeof dnsConfig, 'object');
    assert.strictEqual(typeof zoneName, 'string');
    assert.strictEqual(typeof subdomain, 'string');
    assert.strictEqual(typeof type, 'string');
    assert(util.isArray(values));
    assert.strictEqual(typeof callback, 'function');

    subdomain = subdomain || '@';

    debug(`get: ${subdomain} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);

    if (type !== 'A') return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, new Error('Record deletion is not supported by GoDaddy API')));

    // check if the record exists at all so that we don't insert the "Dead" record for no reason
    get(dnsConfig, zoneName, subdomain, type, function (error, values) {
        if (error) return callback(error);
        if (values.length === 0) return callback();

        // godaddy does not have a delete API. so fill it up with an invalid IP that we can ignore in future get()
        var records = [{
            ttl: 600,
            data: GODADDY_INVALID_IP
        }];

        superagent.put(`${GODADDY_API}/${zoneName}/records/${type}/${subdomain}`)
            .set('Authorization', `sso-key ${dnsConfig.apiKey}:${dnsConfig.apiSecret}`)
            .send(records)
            .timeout(30 * 1000)
            .end(function (error, result) {
                if (error && !error.response) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, util.format('Network error %s', error.message)));
                if (result.statusCode === 404) return callback(null);
                if (result.statusCode === 403 || result.statusCode === 401) return callback(new DomainsError(DomainsError.ACCESS_DENIED, formatError(result)));
                if (result.statusCode !== 200) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, formatError(result)));

                debug('del: done');

                return callback(null);
            });
    });
}

function verifyDnsConfig(dnsConfig, fqdn, zoneName, ip, callback) {
    assert.strictEqual(typeof dnsConfig, 'object');
    assert.strictEqual(typeof fqdn, 'string');
    assert.strictEqual(typeof zoneName, 'string');
    assert.strictEqual(typeof ip, 'string');
    assert.strictEqual(typeof callback, 'function');

    if (!dnsConfig.apiKey || typeof dnsConfig.apiKey !== 'string') return callback(new DomainsError(DomainsError.BAD_FIELD, 'apiKey must be a non-empty string'));
    if (!dnsConfig.apiSecret || typeof dnsConfig.apiSecret !== 'string') return callback(new DomainsError(DomainsError.BAD_FIELD, 'apiSecret must be a non-empty string'));

    var credentials = {
        apiKey: dnsConfig.apiKey,
        apiSecret: dnsConfig.apiSecret
    };

    if (process.env.BOX_ENV === 'test') return callback(null, credentials); // this shouldn't be here

    dns.resolve(zoneName, 'NS', { timeout: 5000 }, function (error, nameservers) {
        if (error && error.code === 'ENOTFOUND') return callback(new DomainsError(DomainsError.BAD_FIELD, 'Unable to resolve nameservers for this domain'));
        if (error || !nameservers) return callback(new DomainsError(DomainsError.BAD_FIELD, error ? error.message : 'Unable to get nameservers'));

        if (!nameservers.every(function (n) { return n.toLowerCase().indexOf('.domaincontrol.com') !== -1; })) {
            debug('verifyDnsConfig: %j does not contain GoDaddy NS', nameservers);
            return callback(new DomainsError(DomainsError.BAD_FIELD, 'Domain nameservers are not set to GoDaddy'));
        }

        const testSubdomain = 'cloudrontestdns';

        upsert(credentials, zoneName, testSubdomain, 'A', [ ip ], function (error, changeId) {
            if (error) return callback(error);

            debug('verifyDnsConfig: Test A record added with change id %s', changeId);

            del(dnsConfig, zoneName, testSubdomain, 'A', [ ip ], function (error) {
                if (error) return callback(error);

                debug('verifyDnsConfig: Test A record removed again');

                callback(null, credentials);
            });
        });
    });
}
Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`'use strict';`

			`exports = module.exports = {`
			`upsert: upsert,`
			`get: get,`
			`del: del,`
			`waitForDns: require('./waitfordns.js'),`
			`verifyDnsConfig: verifyDnsConfig`
			`};`

			`var assert = require('assert'),`
			`debug = require('debug')('box:dns/godaddy'),`
			`dns = require('../native-dns.js'),`
			`DomainsError = require('../domains.js').DomainsError,`
			`superagent = require('superagent'),`
			`util = require('util');`

			`// const GODADDY_API_OTE = 'https://api.ote-godaddy.com/v1/domains';`
			`const GODADDY_API = 'https://api.godaddy.com/v1/domains';`

godaddy: workaround issue where there is no del record API 2018-05-07 08:17:56 -07:00			`// this is a workaround for godaddy not having a delete API`
			`// https://stackoverflow.com/questions/39347464/delete-record-libcloud-godaddy-api`
			`const GODADDY_INVALID_IP = '0.0.0.0';`

Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`function formatError(response) {`
			return util.format(`GoDaddy DNS error [${response.statusCode}] ${response.body.message}`);
			`}`

			`function upsert(dnsConfig, zoneName, subdomain, type, values, callback) {`
			`assert.strictEqual(typeof dnsConfig, 'object');`
			`assert.strictEqual(typeof zoneName, 'string');`
			`assert.strictEqual(typeof subdomain, 'string');`
			`assert.strictEqual(typeof type, 'string');`
			`assert(util.isArray(values));`
			`assert.strictEqual(typeof callback, 'function');`

			`subdomain = subdomain \|\| '@';`

			debug(`upsert: ${subdomain} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);

			`var records = [ ];`
			`values.forEach(function (value) {`
			`var record = { ttl: 600 }; // 600 is the min ttl`

			`if (type === 'MX') {`
			`record.priority = parseInt(value.split(' ')[0], 10);`
			`record.data = value.split(' ')[1];`
			`} else {`
			`record.data = value;`
			`}`

			`records.push(record);`
			`});`

			superagent.put(`${GODADDY_API}/${zoneName}/records/${type}/${subdomain}`)
			.set('Authorization', `sso-key ${dnsConfig.apiKey}:${dnsConfig.apiSecret}`)
			`.timeout(30 * 1000)`
			`.send(records)`
			`.end(function (error, result) {`
			`if (error && !error.response) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, util.format('Network error %s', error.message)));`
			`if (result.statusCode === 403 \|\| result.statusCode === 401) return callback(new DomainsError(DomainsError.ACCESS_DENIED, formatError(result)));`
			`if (result.statusCode === 400) return callback(new DomainsError(DomainsError.BAD_FIELD, formatError(result))); // no such zone`
			`if (result.statusCode === 422) return callback(new DomainsError(DomainsError.BAD_FIELD, formatError(result))); // conflict`
			`if (result.statusCode !== 200) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, formatError(result)));`

Remove now unused dnsRecordId 2018-06-29 22:25:34 +02:00			`return callback(null);`
Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`});`
			`}`

			`function get(dnsConfig, zoneName, subdomain, type, callback) {`
			`assert.strictEqual(typeof dnsConfig, 'object');`
			`assert.strictEqual(typeof zoneName, 'string');`
			`assert.strictEqual(typeof subdomain, 'string');`
			`assert.strictEqual(typeof type, 'string');`
			`assert.strictEqual(typeof callback, 'function');`

			`subdomain = subdomain \|\| '@';`

			debug(`get: ${subdomain} in zone ${zoneName} of type ${type}`);

			superagent.get(`${GODADDY_API}/${zoneName}/records/${type}/${subdomain}`)
			.set('Authorization', `sso-key ${dnsConfig.apiKey}:${dnsConfig.apiSecret}`)
			`.timeout(30 * 1000)`
			`.end(function (error, result) {`
			`if (error && !error.response) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, util.format('Network error %s', error.message)));`
			`if (result.statusCode === 403 \|\| result.statusCode === 401) return callback(new DomainsError(DomainsError.ACCESS_DENIED, formatError(result)));`
			`if (result.statusCode === 404) return callback(null, [ ]);`
			`if (result.statusCode !== 200) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, formatError(result)));`

			`debug('get: %j', result.body);`

			`var values = result.body.map(function (record) { return record.data; });`

godaddy: workaround issue where there is no del record API 2018-05-07 08:17:56 -07:00			`if (values.length === 1 && values[0] === GODADDY_INVALID_IP) return callback(null, [ ]); // pretend this record doesn't exist`

Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`return callback(null, values);`
			`});`
			`}`

			`function del(dnsConfig, zoneName, subdomain, type, values, callback) {`
			`assert.strictEqual(typeof dnsConfig, 'object');`
			`assert.strictEqual(typeof zoneName, 'string');`
			`assert.strictEqual(typeof subdomain, 'string');`
			`assert.strictEqual(typeof type, 'string');`
			`assert(util.isArray(values));`
			`assert.strictEqual(typeof callback, 'function');`

			`subdomain = subdomain \|\| '@';`

			debug(`get: ${subdomain} in zone ${zoneName} of type ${type} with values ${JSON.stringify(values)}`);

acme2: Display any errors when cleaning up challenge 2018-09-28 14:32:59 -07:00			`if (type !== 'A') return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, new Error('Record deletion is not supported by GoDaddy API')));`
godaddy: workaround issue where there is no del record API 2018-05-07 08:17:56 -07:00
			`// check if the record exists at all so that we don't insert the "Dead" record for no reason`
			`get(dnsConfig, zoneName, subdomain, type, function (error, values) {`
			`if (error) return callback(error);`
			`if (values.length === 0) return callback();`

			`// godaddy does not have a delete API. so fill it up with an invalid IP that we can ignore in future get()`
			`var records = [{`
			`ttl: 600,`
			`data: GODADDY_INVALID_IP`
			`}];`

			superagent.put(`${GODADDY_API}/${zoneName}/records/${type}/${subdomain}`)
			.set('Authorization', `sso-key ${dnsConfig.apiKey}:${dnsConfig.apiSecret}`)
			`.send(records)`
			`.timeout(30 * 1000)`
			`.end(function (error, result) {`
			`if (error && !error.response) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, util.format('Network error %s', error.message)));`
			`if (result.statusCode === 404) return callback(null);`
			`if (result.statusCode === 403 \|\| result.statusCode === 401) return callback(new DomainsError(DomainsError.ACCESS_DENIED, formatError(result)));`
			`if (result.statusCode !== 200) return callback(new DomainsError(DomainsError.EXTERNAL_ERROR, formatError(result)));`

			`debug('del: done');`

			`return callback(null);`
			`});`
			`});`
Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`}`

			`function verifyDnsConfig(dnsConfig, fqdn, zoneName, ip, callback) {`
			`assert.strictEqual(typeof dnsConfig, 'object');`
			`assert.strictEqual(typeof fqdn, 'string');`
			`assert.strictEqual(typeof zoneName, 'string');`
			`assert.strictEqual(typeof ip, 'string');`
			`assert.strictEqual(typeof callback, 'function');`

validate dns config parameters 2018-06-17 21:44:08 -07:00			`if (!dnsConfig.apiKey \|\| typeof dnsConfig.apiKey !== 'string') return callback(new DomainsError(DomainsError.BAD_FIELD, 'apiKey must be a non-empty string'));`
			`if (!dnsConfig.apiSecret \|\| typeof dnsConfig.apiSecret !== 'string') return callback(new DomainsError(DomainsError.BAD_FIELD, 'apiSecret must be a non-empty string'));`

Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`var credentials = {`
			`apiKey: dnsConfig.apiKey,`
consolidate hyphenatedSubdomains handling 2018-09-11 21:24:04 -07:00			`apiSecret: dnsConfig.apiSecret`
Add GoDaddy Domain API 2018-05-06 22:22:42 -07:00			`};`

			`if (process.env.BOX_ENV === 'test') return callback(null, credentials); // this shouldn't be here`

			`dns.resolve(zoneName, 'NS', { timeout: 5000 }, function (error, nameservers) {`
			`if (error && error.code === 'ENOTFOUND') return callback(new DomainsError(DomainsError.BAD_FIELD, 'Unable to resolve nameservers for this domain'));`
			`if (error \|\| !nameservers) return callback(new DomainsError(DomainsError.BAD_FIELD, error ? error.message : 'Unable to get nameservers'));`

			`if (!nameservers.every(function (n) { return n.toLowerCase().indexOf('.domaincontrol.com') !== -1; })) {`
			`debug('verifyDnsConfig: %j does not contain GoDaddy NS', nameservers);`
			`return callback(new DomainsError(DomainsError.BAD_FIELD, 'Domain nameservers are not set to GoDaddy'));`
			`}`

			`const testSubdomain = 'cloudrontestdns';`

			`upsert(credentials, zoneName, testSubdomain, 'A', [ ip ], function (error, changeId) {`
			`if (error) return callback(error);`

			`debug('verifyDnsConfig: Test A record added with change id %s', changeId);`

			`del(dnsConfig, zoneName, testSubdomain, 'A', [ ip ], function (error) {`
			`if (error) return callback(error);`

			`debug('verifyDnsConfig: Test A record removed again');`

			`callback(null, credentials);`
			`});`
			`});`
			`});`
			`}`