ThaMunsta/itflow
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add domain history

Browse Source
This commit is contained in:
wrongecho
2025-01-15 18:04:56 +00:00
parent e4a4687e8c
commit 99c4f9b92d
10 changed files with 178 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
ajax.php
View File

@@ -71,7 +71,7 @@ if (isset($_GET['certificate_get_json_details'])) {
* Looks up info for a given domain ID from the database, used to dynamically populate modal fields * Looks up info for a given domain ID from the database, used to dynamically populate modal fields
*/ */
if (isset($_GET['domain_get_json_details'])) { if (isset($_GET['domain_get_json_details'])) {
validateTechRole(); enforceUserPermission('module_support');
$domain_id = intval($_GET['domain_id']); $domain_id = intval($_GET['domain_id']);
$client_id = intval($_GET['client_id']); $client_id = intval($_GET['client_id']);
@@ -88,6 +88,24 @@ if (isset($_GET['domain_get_json_details'])) {
$response['vendors'][] = $row; $response['vendors'][] = $row;
} }
// Get domain history
$history_sql = mysqli_query($mysqli, "SELECT * FROM domain_history WHERE domain_history_domain_id = $domain_id");
$history_html = "<table class='table table-borderless'>";
$history_html .= "<tr><th>Date</th><th>Column</th><th>Old Value</th><th>New Value</th></tr>";
while ($row = mysqli_fetch_array($history_sql)) {
// Fetch data from the query and create table rows
$history_html .= "<tr>";
$history_html .= "<td>" . htmlspecialchars(date('Y-m-d', strtotime($row['domain_history_modified_at']))) . "</td>";
$history_html .= "<td>" . htmlspecialchars($row['domain_history_column']) . "</td>";
$history_html .= "<td>" . htmlspecialchars($row['domain_history_old_value']) . "</td>";
$history_html .= "<td>" . htmlspecialchars($row['domain_history_new_value']) . "</td>";
$history_html .= "</tr>";
}
$history_html .= "</table>";
// Return the HTML content to JavaScript
$response['history'] = $history_html;
echo json_encode($response); echo json_encode($response);
} }

4
client_domains.php
View File

@@ -154,7 +154,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
$domain_expire = nullable_htmlentities($row['domain_expire']); $domain_expire = nullable_htmlentities($row['domain_expire']);
$domain_expire_ago = timeAgo($domain_expire); $domain_expire_ago = timeAgo($domain_expire);
// Convert the expiry date to a timestamp // Convert the expiry date to a timestamp
$domain_expire_timestamp = strtotime($row['domain_expire']); $domain_expire_timestamp = strtotime($row['domain_expire'] ?? '');
$current_timestamp = time(); // Get current timestamp $current_timestamp = time(); // Get current timestamp
// Calculate the difference in days // Calculate the difference in days
@@ -228,12 +228,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
<a class="dropdown-item text-info confirm-link" href="post.php?unarchive_domain=<?php echo $domain_id; ?>"> <a class="dropdown-item text-info confirm-link" href="post.php?unarchive_domain=<?php echo $domain_id; ?>">
<i class="fas fa-fw fa-redo mr-2"></i>Unarchive <i class="fas fa-fw fa-redo mr-2"></i>Unarchive
</a> </a>
<?php if ($config_destructive_deletes_enable) { ?>
<div class="dropdown-divider"></div> <div class="dropdown-divider"></div>
<a class="dropdown-item text-danger text-bold confirm-link" href="post.php?delete_domain=<?php echo $domain_id; ?>"> <a class="dropdown-item text-danger text-bold confirm-link" href="post.php?delete_domain=<?php echo $domain_id; ?>">
<i class="fas fa-fw fa-trash mr-2"></i>Delete <i class="fas fa-fw fa-trash mr-2"></i>Delete
</a> </a>
<?php } ?>
<?php } else { ?> <?php } else { ?>
<div class="dropdown-divider"></div> <div class="dropdown-divider"></div>
<a class="dropdown-item text-danger confirm-link" href="post.php?archive_domain=<?php echo $domain_id; ?>"> <a class="dropdown-item text-danger confirm-link" href="post.php?archive_domain=<?php echo $domain_id; ?>">

15
database_updates.php
View File

@@ -2411,16 +2411,23 @@ if (LATEST_DATABASE_VERSION > CURRENT_DATABASE_VERSION) {
} }
if (CURRENT_DATABASE_VERSION == '1.7.6') { if (CURRENT_DATABASE_VERSION == '1.7.6') {
// Create a field to show connected interfae of a foreign asset // Create a field to show connected interface of a foreign asset
mysqli_query($mysqli, "ALTER TABLE `asset_interfaces` ADD `interface_connected_asset_interface` INT(11) NOT NULL DEFAULT 0 AFTER `interface_network_id`"); mysqli_query($mysqli, "ALTER TABLE `asset_interfaces` ADD `interface_connected_asset_interface` INT(11) NOT NULL DEFAULT 0 AFTER `interface_network_id`");
mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '1.7.7'"); mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '1.7.7'");
} }
// if (CURRENT_DATABASE_VERSION == '1.7.7') { if (CURRENT_DATABASE_VERSION == '1.7.7') {
// // Insert queries here required to update to DB version 1.7.8 // Domain history
mysqli_query($mysqli, "CREATE TABLE `domain_history` (`domain_history_id` INT(11) NOT NULL AUTO_INCREMENT , `domain_history_column` VARCHAR(200) NOT NULL , `domain_history_old_value` TEXT NOT NULL , `domain_history_new_value` TEXT NOT NULL , `domain_history_domain_id` INT(11) NOT NULL , `domain_history_modified_at` DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP , PRIMARY KEY (`domain_history_id`)) ENGINE = InnoDB CHARSET=utf8mb4 COLLATE utf8mb4_unicode_ci;");
mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '1.7.8'");
}
// if (CURRENT_DATABASE_VERSION == '1.7.8') {
// // Insert queries here required to update to DB version 1.7.9
// // Then, update the database to the next sequential version // // Then, update the database to the next sequential version
// mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '1.7.8'"); // mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '1.7.9'");
// } // }
} else { } else {

2
database_version.php
View File

@@ -5,4 +5,4 @@
* It is used in conjunction with database_updates.php * It is used in conjunction with database_updates.php
*/ */
DEFINE("LATEST_DATABASE_VERSION", "1.7.7"); DEFINE("LATEST_DATABASE_VERSION", "1.7.8");

18
db.sql
View File

@@ -682,6 +682,24 @@ CREATE TABLE `domains` (
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_general_ci; ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_general_ci;
/*!40101 SET character_set_client = @saved_cs_client */; /*!40101 SET character_set_client = @saved_cs_client */;
--
-- Table structure for table `domain_history`
--
DROP TABLE IF EXISTS `domain_history`;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!40101 SET character_set_client = utf8 */;
CREATE TABLE `domain_history` (
`domain_history_id` int(11) NOT NULL AUTO_INCREMENT,
`domain_history_column` varchar(200) NOT NULL,
`domain_history_old_value` text NOT NULL,
`domain_history_new_value` text NOT NULL,
`domain_history_domain_id` int(11) NOT NULL,
`domain_history_modified_at` datetime NOT NULL DEFAULT current_timestamp(),
PRIMARY KEY (`domain_history_id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
-- --
-- Table structure for table `email_queue` -- Table structure for table `email_queue`
-- --

53
functions.php
View File

@@ -404,7 +404,6 @@ function apiEncryptLoginEntry(#[\SensitiveParameter]$credential_cleartext, $api_
// Get domain general info (whois + NS/A/MX records) // Get domain general info (whois + NS/A/MX records)
function getDomainRecords($name) function getDomainRecords($name)
{ {
$records = array(); $records = array();
// Only run if we think the domain is valid // Only run if we think the domain is valid
@@ -417,11 +416,53 @@ function getDomainRecords($name)
} }
$domain = escapeshellarg(str_replace('www.', '', $name)); $domain = escapeshellarg(str_replace('www.', '', $name));
$records['a'] = substr(trim(strip_tags(shell_exec("dig +short $domain"))), 0, 254);
$records['ns'] = substr(trim(strip_tags(shell_exec("dig +short NS $domain"))), 0, 254); // Get A, NS, MX, TXT, and WHOIS records
$records['mx'] = substr(trim(strip_tags(shell_exec("dig +short MX $domain"))), 0, 254); $records['a'] = trim(strip_tags(shell_exec("dig +short $domain")));
$records['txt'] = substr(trim(strip_tags(shell_exec("dig +short TXT $domain"))), 0, 254); $records['ns'] = trim(strip_tags(shell_exec("dig +short NS $domain")));
$records['whois'] = substr(trim(strip_tags(shell_exec("whois -H $domain | sed 's/ //g' | head -30"))), 0, 254); $records['mx'] = trim(strip_tags(shell_exec("dig +short MX $domain")));
$records['txt'] = trim(strip_tags(shell_exec("dig +short TXT $domain")));
$records['whois'] = substr(trim(strip_tags(shell_exec("whois -H $domain | sed 's/ //g' | head -30"))), 0, 255);
// Sort A records (if multiple records exist)
if (!empty($records['a'])) {
$aRecords = explode("\n", $records['a']);
array_walk($aRecords, function(&$record) {
$record = trim($record);
});
sort($aRecords);
$records['a'] = implode("\n", $aRecords);
}
// Sort NS records (if multiple records exist)
if (!empty($records['ns'])) {
$nsRecords = explode("\n", $records['ns']);
array_walk($nsRecords, function(&$record) {
$record = trim($record);
});
sort($nsRecords);
$records['ns'] = implode("\n", $nsRecords);
}
// Sort MX records (if multiple records exist)
if (!empty($records['mx'])) {
$mxRecords = explode("\n", $records['mx']);
array_walk($mxRecords, function(&$record) {
$record = trim($record);
});
sort($mxRecords);
$records['mx'] = implode("\n", $mxRecords);
}
// Sort TXT records (if multiple records exist)
if (!empty($records['txt'])) {
$txtRecords = explode("\n", $records['txt']);
array_walk($txtRecords, function(&$record) {
$record = trim($record);
});
sort($txtRecords);
$records['txt'] = implode("\n", $txtRecords);
}
return $records; return $records;
} }

4
js/domain_edit_modal.js
View File

@@ -12,6 +12,7 @@ function populateDomainEditModal(client_id, domain_id) {
// Access the domain info (one), registrars (multiple) and webhosts (multiple) // Access the domain info (one), registrars (multiple) and webhosts (multiple)
const domain = response.domain[0]; const domain = response.domain[0];
const vendors = response.vendors; const vendors = response.vendors;
const history = response.history;
// Populate the domain modal fields // Populate the domain modal fields
document.getElementById("editDomainHeader").innerText = domain.domain_name; document.getElementById("editDomainHeader").innerText = domain.domain_name;
@@ -112,6 +113,9 @@ function populateDomainEditModal(client_id, domain_id) {
} }
}); });
// Domain History
document.getElementById('editDomainHistoryContainer').innerHTML = history;
} }
); );
} }

11
modals/client_domain_edit_modal.php
View File

@@ -22,6 +22,9 @@
<li class="nav-item"> <li class="nav-item">
<a class="nav-link" data-toggle="pill" href="#pillsEditNotes">Notes</a> <a class="nav-link" data-toggle="pill" href="#pillsEditNotes">Notes</a>
</li> </li>
<li class="nav-item">
<a class="nav-link" data-toggle="pill" href="#pillsEditHistory">History</a>
</li>
</ul> </ul>
<hr> <hr>
@@ -166,6 +169,14 @@
</div> </div>
</div> </div>
<div class="tab-pane fade" id="pillsEditHistory">
<div style="overflow: auto">
<div class="table-responsive-sm">
<div id="editDomainHistoryContainer"></div>
</div>
</div>
</div>
</div> </div>
</div> </div>

51
post/user/domain.php
View File

@@ -77,8 +77,8 @@ if (isset($_POST['edit_domain'])) {
// Set/check/lookup expiry date // Set/check/lookup expiry date
if (strtotime($expire) && (new DateTime($expire)) > (new DateTime())) { if (strtotime($expire) && (new DateTime($expire)) > (new DateTime())) {
$expire = "'" . $expire . "'"; $expire = "'" . $expire . "'";
}
else { } else {
$expire = getDomainExpirationDate($name); $expire = getDomainExpirationDate($name);
if (strtotime($expire)) { if (strtotime($expire)) {
$expire = "'" . $expire . "'"; $expire = "'" . $expire . "'";
@@ -97,8 +97,53 @@ if (isset($_POST['edit_domain'])) {
$txt = sanitizeInput($records['txt']); $txt = sanitizeInput($records['txt']);
$whois = sanitizeInput($records['whois']); $whois = sanitizeInput($records['whois']);
// Current domain info
$original_domain_info = mysqli_fetch_assoc(mysqli_query($mysqli,"
SELECT
domains.*,
registrar.vendor_name AS registrar_name,
dnshost.vendor_name AS dnshost_name,
mailhost.vendor_name AS mailhost_name,
webhost.vendor_name AS webhost_name
FROM domains
LEFT JOIN vendors AS registrar ON domains.domain_registrar = registrar.vendor_id
LEFT JOIN vendors AS dnshost ON domains.domain_dnshost = dnshost.vendor_id
LEFT JOIN vendors AS mailhost ON domains.domain_mailhost = mailhost.vendor_id
LEFT JOIN vendors AS webhost ON domains.domain_webhost = webhost.vendor_id
WHERE domain_id = $domain_id
"));
// Update domain
mysqli_query($mysqli,"UPDATE domains SET domain_name = '$name', domain_description = '$description', domain_registrar = $registrar, domain_webhost = $webhost, domain_dnshost = $dnshost, domain_mailhost = $mailhost, domain_expire = $expire, domain_ip = '$a', domain_name_servers = '$ns', domain_mail_servers = '$mx', domain_txt = '$txt', domain_raw_whois = '$whois', domain_notes = '$notes' WHERE domain_id = $domain_id"); mysqli_query($mysqli,"UPDATE domains SET domain_name = '$name', domain_description = '$description', domain_registrar = $registrar, domain_webhost = $webhost, domain_dnshost = $dnshost, domain_mailhost = $mailhost, domain_expire = $expire, domain_ip = '$a', domain_name_servers = '$ns', domain_mail_servers = '$mx', domain_txt = '$txt', domain_raw_whois = '$whois', domain_notes = '$notes' WHERE domain_id = $domain_id");
// Fetch updated info
$new_domain_info = mysqli_fetch_assoc(mysqli_query($mysqli,"
SELECT
domains.*,
registrar.vendor_name AS registrar_name,
dnshost.vendor_name AS dnshost_name,
mailhost.vendor_name AS mailhost_name,
webhost.vendor_name AS webhost_name
FROM domains
LEFT JOIN vendors AS registrar ON domains.domain_registrar = registrar.vendor_id
LEFT JOIN vendors AS dnshost ON domains.domain_dnshost = dnshost.vendor_id
LEFT JOIN vendors AS mailhost ON domains.domain_mailhost = mailhost.vendor_id
LEFT JOIN vendors AS webhost ON domains.domain_webhost = webhost.vendor_id
WHERE domain_id = $domain_id
"));
// Compare/log changes
$ignored_columns = ["domain_updated_at", "domain_accessed_at", "domain_registrar", "domain_webhost", "domain_dnshost", "domain_mailhost"];
foreach ($original_domain_info as $column => $old_value) {
$new_value = $new_domain_info[$column];
if ($old_value != $new_value && !in_array($column, $ignored_columns)) {
$column = sanitizeInput($column);
$old_value = sanitizeInput($old_value);
$new_value = sanitizeInput($new_value);
mysqli_query($mysqli,"INSERT INTO domain_history SET domain_history_column = '$column', domain_history_old_value = '$old_value', domain_history_new_value = '$new_value', domain_history_domain_id = $domain_id");
}
}
// Logging // Logging
logAction("Domain", "Edit", "$session_name edited domain $name", $client_id, $domain_id); logAction("Domain", "Edit", "$session_name edited domain $name", $client_id, $domain_id);
@@ -167,6 +212,8 @@ if (isset($_GET['delete_domain'])) {
mysqli_query($mysqli,"DELETE FROM domains WHERE domain_id = $domain_id"); mysqli_query($mysqli,"DELETE FROM domains WHERE domain_id = $domain_id");
mysqli_query($mysqli, "DELETE FROM domain_history WHERE domain_history_domain_id = $domain_id");#
// Logging // Logging
logAction("Domain", "Delete", "$session_name deleted domain $domain_name", $client_id); logAction("Domain", "Delete", "$session_name deleted domain $domain_name", $client_id);

17
scripts/cron.php
View File

@@ -145,6 +145,23 @@ mysqli_query($mysqli, "DELETE FROM app_logs WHERE app_log_created_at < CURDATE()
// Cleanup old auth logs // Cleanup old auth logs
mysqli_query($mysqli, "DELETE FROM auth_logs WHERE auth_log_created_at < CURDATE() - INTERVAL $config_log_retention DAY"); mysqli_query($mysqli, "DELETE FROM auth_logs WHERE auth_log_created_at < CURDATE() - INTERVAL $config_log_retention DAY");
// CLeanup old domain history
$sql = mysqli_query($mysqli, "SELECT domain_id FROM domains");
while ($row = mysqli_fetch_array($sql)) {
$domain_id = intval($row['domain_id']);
mysqli_query($mysqli, "
DELETE FROM domain_history
WHERE domain_history_id NOT IN (
SELECT domain_history_id FROM (
SELECT domain_history_id FROM domain_history
WHERE domain_history_domain_id = $domain_id
ORDER BY domain_history_modified_at DESC
LIMIT 25
) AS recent_entries
) AND domain_history_domain_id = $domain_id
");
}
// Logging // Logging
// logAction("Cron", "Task", "Cron cleaned up old data"); // logAction("Cron", "Task", "Cron cleaned up old data");