[Web] Move DNS diagnostic to modal, some minor fixes

This commit is contained in:
andre.peters 2018-01-02 10:24:48 +01:00
parent a4c077db8f
commit d76d103c76
5 changed files with 101 additions and 52 deletions

View File

@ -34,4 +34,12 @@ table.footable>tbody>tr.footable-empty>td {
} }
.inputMissingAttr { .inputMissingAttr {
border-color: #FF4136; border-color: #FF4136;
} }
.dns-found {
max-width: 300px;
word-break: break-all;
}
.dns-recommended {
max-width: 150px;
word-break: break-all;
}

View File

@ -1,14 +1,13 @@
<?php <?php
require_once 'inc/prerequisites.inc.php'; require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/prerequisites.inc.php';
require_once 'inc/spf.inc.php'; require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/spf.inc.php';
define('state_good', "&#10003;"); define('state_good', '<span class="text-success">OK</span>');
define('state_missing', "&#x2717;"); define('state_missing', "&#x2717;");
define('state_nomatch', "?"); define('state_nomatch', "?");
define('state_optional', "(optional)"); define('state_optional', " <sup>2</sup>");
if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "admin") { if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "admin") {
require_once("inc/header.inc.php");
$ch = curl_init('http://ip4.mailcow.email'); $ch = curl_init('http://ip4.mailcow.email');
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4); curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4);
@ -80,7 +79,7 @@ foreach ($domains as $domain) {
$records[] = array('autoconfig.' . $domain, 'CNAME', $mailcow_hostname); $records[] = array('autoconfig.' . $domain, 'CNAME', $mailcow_hostname);
$records[] = array($domain, 'TXT', '<a href="http://www.openspf.org/SPF_Record_Syntax" target="_blank">SPF Record Syntax</a>', state_optional); $records[] = array($domain, 'TXT', '<a href="http://www.openspf.org/SPF_Record_Syntax" target="_blank">SPF Record Syntax</a>', state_optional);
$records[] = array('_dmarc.' . $domain, 'TXT', '<a href="http://www.kitterman.com/dmarc/assistant.html" target="_blank">DMARC Assistant</a>', state_optional); $records[] = array('_dmarc.' . $domain, 'TXT', '<a href="http://www.kitterman.com/dmarc/assistant.html" target="_blank">DMARC Assistant</a>', state_optional);
if (!empty($dkim = dkim('details', $domain))) { if (!empty($dkim = dkim('details', $domain))) {
$records[] = array($dkim['dkim_selector'] . '._domainkey.' . $domain, 'TXT', $dkim['dkim_txt']); $records[] = array($dkim['dkim_selector'] . '._domainkey.' . $domain, 'TXT', $dkim['dkim_txt']);
} }
@ -138,15 +137,11 @@ $data_field = array(
'TXT' => 'txt', 'TXT' => 'txt',
); );
?> ?>
<div class="container">
<h3><?=$lang['diagnostics']['dns_records'];?></h3>
<p><?=$lang['diagnostics']['dns_records_24hours'];?></p>
<div class="table-responsive" id="dnstable"> <div class="table-responsive" id="dnstable">
<table class="table table-striped"> <table class="table table-striped">
<tr> <th><?=$lang['diagnostics']['dns_records_name'];?></th> <th><?=$lang['diagnostics']['dns_records_type'];?></th> <th><?=$lang['diagnostics']['dns_records_data'];?></th ><th><?=$lang['diagnostics']['dns_records_status'];?></th> </tr> <tr> <th><?=$lang['diagnostics']['dns_records_name'];?></th> <th><?=$lang['diagnostics']['dns_records_type'];?></th> <th><?=$lang['diagnostics']['dns_records_data'];?></th ><th><?=$lang['diagnostics']['dns_records_status'];?></th> </tr>
<?php <?php
foreach ($records as $record) foreach ($records as $record) {
{
$record[1] = strtoupper($record[1]); $record[1] = strtoupper($record[1]);
$state = state_missing; $state = state_missing;
if ($record[1] == 'TLSA') { if ($record[1] == 'TLSA') {
@ -173,8 +168,15 @@ foreach ($records as $record)
} }
unset($current); unset($current);
} }
elseif ($record[1] == 'TXT') {
foreach ($currents as &$current) {
if ($current['host'] != $record[0]) {
$current['type'] = false;
}
}
}
} }
if ($record[1] == 'CNAME' && count($currents) == 0) { if ($record[1] == 'CNAME' && count($currents) == 0) {
// A and AAAA are also valid instead of CNAME // A and AAAA are also valid instead of CNAME
$a = dns_get_record($record[0], DNS_A); $a = dns_get_record($record[0], DNS_A);
@ -182,44 +184,51 @@ foreach ($records as $record)
if (count($a) > 0 && count($cname) > 0) { if (count($a) > 0 && count($cname) > 0) {
if ($a[0]['ip'] == $cname[0]['ip']) { if ($a[0]['ip'] == $cname[0]['ip']) {
$currents = array(array('host' => $record[0], 'class' => 'IN', 'type' => 'CNAME', 'target' => $record[2])); $currents = array(array('host' => $record[0], 'class' => 'IN', 'type' => 'CNAME', 'target' => $record[2]));
$aaaa = dns_get_record($record[0], DNS_AAAA); $aaaa = dns_get_record($record[0], DNS_AAAA);
$cname = dns_get_record($record[2], DNS_AAAA); $cname = dns_get_record($record[2], DNS_AAAA);
if (count($aaaa) == 0 || count($cname) == 0 || $aaaa[0]['ipv6'] != $cname[0]['ipv6']) { if (count($aaaa) == 0 || count($cname) == 0 || $aaaa[0]['ipv6'] != $cname[0]['ipv6']) {
$currents[0]['target'] = $aaaa[0]['ipv6']; $currents[0]['target'] = $aaaa[0]['ipv6'] . ' <sup>1</sup>';
} }
} else { }
$currents = array(array('host' => $record[0], 'class' => 'IN', 'type' => 'CNAME', 'target' => $a[0]['ip'])); else {
$currents = array(array('host' => $record[0], 'class' => 'IN', 'type' => 'CNAME', 'target' => $a[0]['ip'] . ' <sup>1</sup>'));
} }
} }
} }
foreach ($currents as &$current) { foreach ($currents as &$current) {
if ($current['type'] != $record[1]) if ($current['type'] != $record[1]) {
{ unset($current);
continue; continue;
} }
elseif ($current['type'] == 'TXT' &&
elseif ($current['type'] == 'TXT' && strpos($current['txt'], 'v=DMARC1') === 0) { stripos($current['txt'], 'v=dmarc') === 0 &&
$current['txt'] = str_replace(' ', '', $current['txt']); stripos($current['host'], '_dmarc') === 0) {
$state = state_optional . '<br />' . $current[$data_field[$current['type']]]; $current['txt'] = str_replace(' ', '', $current['txt']);
$state = state_optional . '<br />' . $current[$data_field[$current['type']]];
} }
else if ($current['type'] == 'TXT' && strpos($current['txt'], 'v=spf1') === 0) { elseif ($current['type'] == 'TXT' &&
$state = state_optional . '<br />' . $current[$data_field[$current['type']]]; stripos($current['host'], '_dmarc') !== 0 &&
stripos($current['txt'], 'v=spf') === 0) {
$state = state_optional . '<br />' . $current[$data_field[$current['type']]];
} }
else if ($current['type'] == 'TXT' && strpos($current['txt'], 'v=DKIM1') === 0) { elseif ($current['type'] == 'TXT' &&
$current['txt'] = str_replace(' ', '', $current['txt']); stripos($current['txt'], 'v=dkim') === 0) {
if ($current[$data_field[$current['type']]] == $record[2]) $current['txt'] = str_replace(' ', '', $current['txt']);
$state = state_good; if ($current[$data_field[$current['type']]] == $record[2]) {
$state = state_good;
}
} }
else if ($current['type'] != 'TXT' && isset($data_field[$current['type']]) && $state != state_good) { elseif ($current['type'] != 'TXT' &&
$state = state_nomatch; isset($data_field[$current['type']]) && $state != state_good) {
if ($current[$data_field[$current['type']]] == $record[2]) $state = state_nomatch;
$state = state_good; if ($current[$data_field[$current['type']]] == $record[2]) {
$state = state_good;
}
} }
} }
unset($current); unset($current);
if (isset($record[3]) && $record[3] == state_optional && ($state == state_missing || $state == state_nomatch)) { if (isset($record[3]) && $record[3] == state_optional && ($state == state_missing || $state == state_nomatch)) {
$state = state_optional; $state = state_optional;
} }
@ -231,15 +240,21 @@ foreach ($records as $record)
} }
$state = implode('<br />', $state); $state = implode('<br />', $state);
} }
echo sprintf('<tr>
echo sprintf('<tr><td>%s</td><td>%s</td><td style="max-width: 300px; word-break: break-all">%s</td><td style="max-width: 150px; word-break: break-all">%s</td></tr>', $record[0], $record[1], $record[2], $state); <td>%s</td>
<td>%s</td>
<td class="dns-found">%s</td>
<td class="dns-recommended">%s</td>
</tr>', $record[0], $record[1], $record[2], $state);
} }
?> ?>
</table> </table>
</div> </div>
</div> <p class="help-block">
<sup>1</sup> Found A/AAAA record instead of a CNAME. This is supported as long as the A records destination points to the correct resource.<br />
<sup>2</sup> This record is optional.
</p>
<?php <?php
require_once("inc/footer.inc.php");
} else { } else {
header('Location: index.php'); header('Location: index.php');
exit(); exit();

View File

@ -75,15 +75,15 @@ function generate_tlsa_digest($hostname, $port, $starttls = null) {
} }
if (empty($starttls)) { if (empty($starttls)) {
$context = stream_context_create(array("ssl" => array("capture_peer_cert" => true, 'verify_peer' => false, 'allow_self_signed' => true))); $context = stream_context_create(array("ssl" => array("capture_peer_cert" => true, 'verify_peer' => false, 'allow_self_signed' => true)));
$stream = stream_socket_client('tls://' . $hostname . ':' . $port, $error_nr, $error_msg, 5, STREAM_CLIENT_CONNECT, $context); $stream = stream_socket_client('ssl://' . $hostname . ':' . $port, $error_nr, $error_msg, 5, STREAM_CLIENT_CONNECT, $context);
// error_nr can be 0, so checking against error_msg if (!$stream) {
if ($error_msg) { $error_msg = isset($error_msg) ? $error_msg : '-';
return $error_nr . ': ' . $error_msg; return $error_nr . ': ' . $error_msg;
} }
} }
else { else {
$stream = stream_socket_client('tcp://' . $hostname . ':' . $port, $error_nr, $error_msg, 5); $stream = stream_socket_client('tcp://' . $hostname . ':' . $port, $error_nr, $error_msg, 5);
if ($error_msg) { if (!$stream) {
return $error_nr . ': ' . $error_msg; return $error_nr . ': ' . $error_msg;
} }
$banner = fread($stream, 512 ); $banner = fread($stream, 512 );

View File

@ -55,6 +55,22 @@ $(document).ready(function() {
}); });
}); });
// Log modal
$('#dnsInfoModal').on('show.bs.modal', function(e) {
var domain = $(e.relatedTarget).data('domain');
$.ajax({
url: '/inc/ajax/dns_diagnostics.php',
data: { domain: domain },
dataType: 'text',
success: function(data){
$('.dns-modal-body').html(data);
},
error: function(xhr, status, error) {
$('.dns-modal-body').html(xhr.responseText);
}
});
});
// Sieve data modal // Sieve data modal
$('#sieveDataModal').on('show.bs.modal', function(e) { $('#sieveDataModal').on('show.bs.modal', function(e) {
var sieveScript = $(e.relatedTarget).data('sieve-script'); var sieveScript = $(e.relatedTarget).data('sieve-script');
@ -154,7 +170,7 @@ jQuery(function($){
{"name":"max_quota_for_mbox","title":lang.mailbox_quota,"breakpoints":"xs sm"}, {"name":"max_quota_for_mbox","title":lang.mailbox_quota,"breakpoints":"xs sm"},
{"name":"backupmx","filterable": false,"style":{"maxWidth":"120px","width":"120px"},"title":lang.backup_mx,"breakpoints":"xs sm"}, {"name":"backupmx","filterable": false,"style":{"maxWidth":"120px","width":"120px"},"title":lang.backup_mx,"breakpoints":"xs sm"},
{"name":"active","filterable": false,"style":{"maxWidth":"80px","width":"80px"},"title":lang.active}, {"name":"active","filterable": false,"style":{"maxWidth":"80px","width":"80px"},"title":lang.active},
{"name":"action","filterable": false,"sortable": false,"style":{"text-align":"right","maxWidth":"180px","width":"180px"},"type":"html","title":lang.action,"breakpoints":"xs sm"} {"name":"action","filterable": false,"sortable": false,"style":{"text-align":"right","maxWidth":"240px","width":"240px"},"type":"html","title":lang.action,"breakpoints":"xs sm"}
], ],
"rows": $.ajax({ "rows": $.ajax({
dataType: 'json', dataType: 'json',
@ -170,17 +186,15 @@ jQuery(function($){
item.quota = item.quota_used_in_domain + "/" + item.max_quota_for_domain; item.quota = item.quota_used_in_domain + "/" + item.max_quota_for_domain;
item.max_quota_for_mbox = humanFileSize(item.max_quota_for_mbox); item.max_quota_for_mbox = humanFileSize(item.max_quota_for_mbox);
item.chkbox = '<input type="checkbox" data-id="domain" name="multi_select" value="' + item.domain_name + '" />'; item.chkbox = '<input type="checkbox" data-id="domain" name="multi_select" value="' + item.domain_name + '" />';
item.action = '<div class="btn-group">';
if (role == "admin") { if (role == "admin") {
item.action = '<div class="btn-group">' + item.action += '<a href="/edit.php?domain=' + encodeURI(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
'<a href="/edit.php?domain=' + encodeURI(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' + '<a href="#" id="delete_selected" data-id="single-domain" data-api-url="delete/domain" data-item="' + encodeURI(item.domain_name) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>';
'<a href="#" id="delete_selected" data-id="single-domain" data-api-url="delete/domain" data-item="' + encodeURI(item.domain_name) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
'</div>';
} }
else { else {
item.action = '<div class="btn-group">' + item.action += '<a href="/edit.php?domain=' + encodeURI(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>';
'<a href="/edit.php?domain=' + encodeURI(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
'</div>';
} }
item.action += '<a href="#dnsInfoModal" class="btn btn-xs btn-info" data-toggle="modal" data-domain="' + encodeURI(item.domain_name) + '"><span class="glyphicon glyphicon-question-sign"></span> DNS</a></div>';
}); });
} }
}), }),

View File

@ -584,3 +584,15 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
</div> </div>
</div> </div>
</div><!-- log modal --> </div><!-- log modal -->
<!-- DNS info modal -->
<div class="modal fade" id="dnsInfoModal" tabindex="-1" role="dialog" aria-labelledby="dnsInfoModalLabel">
<div class="modal-dialog modal-lg" role="document">
<div class="modal-content">
<div class="modal-header"><h4 class="modal-title"><?=$lang['diagnostics']['dns_records'];?></h4></div>
<div class="modal-body">
<p><?=$lang['diagnostics']['dns_records_24hours'];?></p>
<div class="dns-modal-body"></div>
</div>
</div>
</div>
</div><!-- DNS info modal -->