maketank/Froxlor
2
0
Fork 0
Code Pull Requests Releases Activity

allow domain-redirect to internal-ipaddress

Browse Source 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
This commit is contained in:
Michael Kaufmann
2022-12-20 17:20:40 +01:00
parent 24fa1d39ed
commit 2dd226c96c
4 changed files with 31 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
lib/Froxlor/Api/Commands/SubDomains.php
View File

@@ -538,7 +538,7 @@ class SubDomains extends ApiCommand implements ResourceEntity
{ {
// check whether an URL was specified // check whether an URL was specified
$_doredirect = false; $_doredirect = false;
if (!empty($url) && Validate::validateUrl($url)) { if (!empty($url) && Validate::validateUrl($url, true)) {
$path = $url; $path = $url;
$_doredirect = true; $_doredirect = true;
} else { } else {
@@ -546,7 +546,7 @@ class SubDomains extends ApiCommand implements ResourceEntity
} }
// check whether path is a real path // check whether path is a real path
if (!preg_match('/^https?\:\/\//', $path) || !Validate::validateUrl($path)) { if (!preg_match('/^https?\:\/\//', $path) || !Validate::validateUrl($path, true)) {
if (strstr($path, ":") !== false) { if (strstr($path, ":") !== false) {
Response::standardError('pathmaynotcontaincolon', '', true); Response::standardError('pathmaynotcontaincolon', '', true);
} }

10
lib/Froxlor/Validate/Validate.php
View File

@@ -181,10 +181,12 @@ class Validate
* *
* @param string $url * @param string $url
* URL to be tested * URL to be tested
* @param bool $allow_private_ip
* optional, default is false
* *
* @return bool * @return bool
*/ */
public static function validateUrl($url) public static function validateUrl(string $url, bool $allow_private_ip = false)
{ {
if (strtolower(substr($url, 0, 7)) != "http://" && strtolower(substr($url, 0, 8)) != "https://") { if (strtolower(substr($url, 0, 7)) != "http://" && strtolower(substr($url, 0, 8)) != "https://") {
$url = 'http://' . $url; $url = 'http://' . $url;
@@ -198,7 +200,11 @@ class Validate
return false; return false;
} }
$pattern = '%^(?:(?:https?)://)(?:\S+(?::\S*)?@)?(?:(?!10(?:\.\d{1,3}){3})(?!127(?:\.\d{1,3}){3})(?!169\.254(?:\.\d{1,3}){2})(?!192\.168(?:\.\d{1,3}){2})(?!172\.(?:1[6-9]|2\d|3[0-1])(?:\.\d{1,3}){2})(?:[1-9]\d?|1\d\d|2[01]\d|22[0-3])(?:\.(?:1?\d{1,2}|2[0-4]\d|25[0-5])){2}(?:\.(?:[1-9]\d?|1\d\d|2[0-4]\d|25[0-4]))|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]+-?)*[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]+-?)*[a-z\x{00a1}-\x{ffff}0-9]+)*(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,})))(?::\d{2,5})?(?:/[^\s]*)?$%iuS'; if ($allow_private_ip) {
$pattern = '%^(?:(?:https?):\/\/)(?:\S+(?::\S*)?@)?(?:(?:[1-9]\d?|1\d\d|2[01]\d|22[0-3])(?:\.(?:1?\d{1,2}|2[0-4]\d|25[0-5])){2}(?:\.(?:[1-9]\d?|1\d\d|2[0-4]\d|25[0-4]))|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]+-?)*[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]+-?)*[a-z\x{00a1}-\x{ffff}0-9]+)*(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,})))(?::\d{2,5})?(?:\/[^\s]*)?$%iuS';
} else {
$pattern = '%^(?:(?:https?):\/\/)(?:\S+(?::\S*)?@)?(?:(?!10(?:\.\d{1,3}){3})(?!127(?:\.\d{1,3}){3})(?!169\.254(?:\.\d{1,3}){2})(?!192\.168(?:\.\d{1,3}){2})(?!172\.(?:1[6-9]|2\d|3[0-1])(?:\.\d{1,3}){2})(?:[1-9]\d?|1\d\d|2[01]\d|22[0-3])(?:\.(?:1?\d{1,2}|2[0-4]\d|25[0-5])){2}(?:\.(?:[1-9]\d?|1\d\d|2[0-4]\d|25[0-4]))|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]+-?)*[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]+-?)*[a-z\x{00a1}-\x{ffff}0-9]+)*(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,})))(?::\d{2,5})?(?:/[^\s]*)?$%iuS';
}
if (preg_match($pattern, $url)) { if (preg_match($pattern, $url)) {
return true; return true;
} }

11
lib/configfiles/focal.xml
View File

@@ -2824,6 +2824,17 @@ service dict {
#group = #group =
} }
} }
service stats {
unix_listener stats-reader {
group = vmail
mode = 0666
}
unix_listener stats-writer {
group = vmail
mode = 0666
}
}
]]> ]]>
</content> </content>
</file> </file>

10
tests/Froxlor/ValidateTest.php
View File

@@ -120,18 +120,28 @@ class ValidateTest extends TestCase
{ {
$result = Validate::validateUrl("https://froxlor.org/"); $result = Validate::validateUrl("https://froxlor.org/");
$this->assertTrue($result); $this->assertTrue($result);
$result = Validate::validateUrl("https://froxlor.org/", true);
$this->assertTrue($result);
$result = Validate::validateUrl("http://forum.froxlor.org/"); $result = Validate::validateUrl("http://forum.froxlor.org/");
$this->assertTrue($result); $this->assertTrue($result);
$result = Validate::validateUrl("https://api.froxlor.org/doc/0.10.0/index.php"); $result = Validate::validateUrl("https://api.froxlor.org/doc/0.10.0/index.php");
$this->assertTrue($result); $this->assertTrue($result);
$result = Validate::validateUrl("https://api.froxlor.org/doc/0.10.0/index.php", true);
$this->assertTrue($result);
$result = Validate::validateUrl("#froxlor"); $result = Validate::validateUrl("#froxlor");
$this->assertFalse($result); $this->assertFalse($result);
$result = Validate::validateUrl("https://82.149.225.211/"); $result = Validate::validateUrl("https://82.149.225.211/");
$this->assertTrue($result); $this->assertTrue($result);
$result = Validate::validateUrl("https://82.149.225.211/", true);
$this->assertTrue($result);
$result = Validate::validateUrl("https://82.149.225.300"); $result = Validate::validateUrl("https://82.149.225.300");
$this->assertFalse($result); $this->assertFalse($result);
$result = Validate::validateUrl("82.149.225.211:443"); $result = Validate::validateUrl("82.149.225.211:443");
$this->assertTrue($result); $this->assertTrue($result);
$result = Validate::validateUrl("172.16.0.1:8080");
$this->assertFalse($result);
$result = Validate::validateUrl("172.16.0.1:8080", true);
$this->assertTrue($result);
} }
public function testValidateDomain() public function testValidateDomain()