1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
|
using PKISharp.WACS.Clients;
using PKISharp.WACS.Clients.DNS;
using PKISharp.WACS.Plugins.Interfaces;
using PKISharp.WACS.Services;
using System.Threading.Tasks;
namespace PKISharp.WACS.Plugins.ValidationPlugins.Dns
{
internal class Script : DnsValidation<Script>
{
private readonly ScriptClient _scriptClient;
private readonly ScriptOptions _options;
internal const string DefaultCreateArguments = "create {Identifier} {RecordName} {Token}";
internal const string DefaultDeleteArguments = "delete {Identifier} {RecordName} {Token}";
public Script(
ScriptOptions options,
LookupClientProvider dnsClient,
ScriptClient client,
ILogService log,
ISettingsService settings) :
base(dnsClient, log, settings)
{
_options = options;
_scriptClient = client;
}
public override async Task<bool> CreateRecord(ValidationContext context, string recordName, string token)
{
var script = _options.Script ?? _options.CreateScript;
if (!string.IsNullOrWhiteSpace(script))
{
var args = DefaultCreateArguments;
if (!string.IsNullOrWhiteSpace(_options.CreateScriptArguments))
{
args = _options.CreateScriptArguments;
}
await _scriptClient.RunScript(script, ProcessArguments(context.Identifier, recordName, token, args, script.EndsWith(".ps1")));
return true;
}
else
{
_log.Error("No create script configured");
return false;
}
}
public override async Task DeleteRecord(ValidationContext context, string recordName, string token)
{
var script = _options.Script ?? _options.DeleteScript;
if (!string.IsNullOrWhiteSpace(script))
{
var args = DefaultDeleteArguments;
if (!string.IsNullOrWhiteSpace(_options.DeleteScriptArguments))
{
args = _options.DeleteScriptArguments;
}
await _scriptClient.RunScript(script, ProcessArguments(context.Identifier, recordName, token, args, script.EndsWith(".ps1")));
}
else
{
_log.Warning("No delete script configured, validation record remains");
}
}
private string ProcessArguments(string identifier, string recordName, string token, string args, bool escapeToken)
{
var ret = args;
ret = ret.Replace("{Identifier}", identifier);
ret = ret.Replace("{RecordName}", recordName);
// Some tokens start with - which confuses Powershell. We did not want to
// make a breaking change for .bat or .exe files, so instead escape the
// token with double quotes, as Powershell discards the quotes anyway and
// thus it's functionally equivalant.
if (escapeToken && (ret.Contains(" {Token} ") || ret.EndsWith(" {Token}")))
{
ret.Replace("{Token}", "\"{Token}\"");
}
ret = ret.Replace("{Token}", token);
return ret;
}
}
}
|
