beenull/pdnsmanager
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
99 commits 12 branches 14 tags 1.1 MiB
Commit graph

49 commits

Author SHA1 Message Date
Maurice Meyer 016183f244
Now displaying error when admin user can't be created 2017-07-21 17:53:45 +02:00
Maurice Meyer 4c4269c1fa Fix #34, now showing an error message 2017-07-21 17:48:53 +02:00
Maurice Meyer b1a06a8684 Removed spaces from empty lines 2017-07-20 16:22:46 +02:00
Lukas Metzger ccc423291c Fixing possible remote code executuin vulnerability introduced by commit 
3bf4e2874a

Thanks to RedTeam Pentesting for pointing out this issue
 2017-06-29 15:18:45 +02:00
Maurice Meyer 1d7086dc6c Added drop and readd of foreign key on user ->userid (#33) 
This fixes the issue that the upgrade seems to work but the change from permissions.user to permissions.userid is not applied because of the foreign key.
 2017-03-08 11:23:15 +01:00
Lukas Metzger 5c9f0da3aa Adding unique constraint on update 2017-02-19 12:52:40 +01:00
Lukas Metzger 77fa9a926d Fixed upgrade 2017-02-19 12:10:53 +01:00
Lukas Metzger a105edc4ab Fixed whitespace errors, removed unneccessary tables 2017-02-05 17:12:38 +01:00
lamclennan 61d7ea9a51 Final Fixes 2017-01-08 14:34:35 +10:00
lamclennan d9f4b20448 Updated upgrade scripts for MySQL 
Renamed the user table to users and added a unique key to it so
duplicate users can't be created.

Upgrade scripts delete duplicates and keep the lowest id (which is what
would have been used for authentication anyway, i.e. other users were
useless).

Added upgrade script to put domains names and records names to lower
case text as is required by postgres.
 2017-01-08 14:15:31 +10:00
lamclennan b9efd906e5 Postgres SQL Fixes 
A few commands changed to suit postgres and the "user" table.
 2017-01-08 02:51:16 +10:00
lamclennan 47f3f9939e Bugs 
Fixed a few code bugs. Added text to strip whitespace from records (i.e.
name, master, email)
 2017-01-07 23:59:03 +10:00
lamclennan 5d5f8c4af7 Added some trimming around some VARCHAR records 2017-01-07 20:29:36 +10:00
lamclennan 7972a197ee PDO Conversion 2017-01-07 20:18:39 +10:00
lamclennan 1aaa24280f Started Work Again 2017-01-07 18:37:13 +10:00
lamclennan 3bf4e2874a PDO Conversion/Pg Support Started 
Early commit.
 2016-12-13 08:19:00 +10:00
Maurice Meyer 788c0d1d19 Added pagination (#19) 
* Added initial functionality for pagination

* Display of pagination now works for total page number greater than 8. Note that the actual pagination is not yet implemented

* Pagination is now functional and loads the requested sites

* Added cursor pointer to pagination

* page parameter is now set to 1 if not a number or smaller than 1

* page parameter is now checked with isset to prevent errors if it is not supplied

* Changed default number of domains per page to 15

* Added isset check to $input->page to prevent errors if it is not set
 2016-06-07 19:00:35 +02:00
Alexander Dormann dc8fab4d42 Implement ONLY_FULL_GROUP_BY compatibility (#15) (#16) 
SQL92 requires that all columns (except aggregates) in the select clause
is part of the group by clause. SQL99 loosens this restriction a bit and
states that all columns in the select clause must be functionally
dependent of the group by clause.

This commit fixes all partial GROUP BY queries to be compatible with
SQL92. Previously, when MySQLs sql_mode included ONLY_FULL_GROUP_BY,
aggregating queries failed, resulting in an empty domain listing.
 2016-05-14 12:03:06 +02:00
Lukas Metzger c72806708b Removed unneccessary debug output 2016-05-06 18:15:15 +02:00
Lukas Metzger 3a3855e939 Added functionality for native zones 2016-05-03 17:42:34 +02:00
Maurice Meyer ab84439c1a Fixed the getIP command so that the clients IP is always returned, even behind multiple proxies. 
Fixed indentation.
 2016-04-20 14:59:06 +02:00
Maurice Meyer c7ff6326ee Changed the GetIP command of the API so that it returns the X-Forwarded-For header if it is set 2016-04-19 18:19:37 +02:00
Lukas Metzger 869ba131ef Added getIp action to remote.php 2016-03-26 13:11:02 +01:00
Lukas Metzger e894493cd1 Changed databaseschema for newer pdns versions 2016-02-14 12:44:53 +01:00
Lukas Metzger 4fb70354ce Updated database schema with additional foreign keys and ON DELETE CASCADE to secure consistency 2016-02-10 17:06:56 +01:00
Lukas Metzger 3ce4af18af Fixed bug when deleting domain 2016-02-07 18:48:05 +01:00
Lukas Metzger 0ed2a3dfa1 Fixed bug in installer 2016-02-06 20:11:01 +01:00
Lukas Metzger 6d93cbd628 Added upgrade.php and version checks 2016-02-06 13:23:28 +01:00
Lukas Metzger d13ea918cc Added remote.php API now working 2016-02-06 11:28:27 +01:00
Lukas Metzger 31b1a8d55f Added user interface functions for adding remote permissions 2016-02-05 17:14:49 +01:00
Lukas Metzger a37a616967 Fixed bug in install.php 2016-02-02 21:05:37 +01:00
Lukas Metzger f628e147cd Added csrf protection 2016-01-29 16:52:23 +01:00
Lukas Metzger 243e9b045f Added more protection against session theft 2016-01-29 15:39:40 +01:00
Lukas Metzger 4e753118b9 Added installer 2016-01-25 19:39:25 +01:00
Lukas Metzger 1f59e8e87c Disallowed user creating a new domain 2016-01-25 18:36:55 +01:00
Lukas Metzger ea9868f908 Added function of password.php 2016-01-25 17:15:27 +01:00
Lukas Metzger 8df9c384c3 Added permission managment 2016-01-24 20:23:20 +01:00
Lukas Metzger 386480890b Added edit-user.php, no permissions yet 2016-01-24 17:58:04 +01:00
Lukas Metzger 54c00cbe8b Added function of users.php 2016-01-24 17:01:32 +01:00
Lukas Metzger 9db78f23df Added add-domain.php 2016-01-24 15:13:33 +01:00
Lukas Metzger fe77022836 Fixed ttl update bug in soa edit 2016-01-23 21:23:47 +01:00
Lukas Metzger 3f8156939e Added function to delete a complete domain 2016-01-23 20:38:01 +01:00
Lukas Metzger 17e3cf908d Added working implementation for edit-master.php, validity checks are required 2016-01-23 17:05:13 +01:00
Lukas Metzger 5b23d5ae95 Enabled fetching of soa data 2016-01-20 21:48:17 +01:00
Lukas Metzger dfab14b517 Added record table to edit-master.php, working inclusive filter and data 2016-01-20 20:46:14 +01:00
Lukas Metzger 818cb9fbc5 Fixed possible bux if multiple persons can acces one domain 2016-01-16 16:25:56 +01:00
Lukas Metzger 9415367dfb Checked permissions when retriving domains 2016-01-16 16:13:14 +01:00
Lukas Metzger a3ebd21541 Implemented domain overview, permissions are still ignored 2016-01-16 15:46:43 +01:00
Lukas Metzger dbdda4e2cb Initial commit working login mechanism 2016-01-15 21:17:21 +01:00