mirror of
https://github.com/maelgangloff/domain-watchdog.git
synced 2025-12-29 16:15:04 +00:00
198 lines
6.2 KiB
PHP
198 lines
6.2 KiB
PHP
<?php
|
|
|
|
namespace App\Config\Connector;
|
|
|
|
use App\Entity\Domain;
|
|
use Ovh\Api;
|
|
use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
|
|
use Symfony\Component\HttpKernel\Exception\HttpException;
|
|
|
|
readonly class OvhConnector implements ConnectorInterface
|
|
{
|
|
public const REQUIRED_ROUTES = [
|
|
[
|
|
'method' => 'GET',
|
|
'path' => '/order/cart',
|
|
], [
|
|
'method' => 'GET',
|
|
'path' => '/order/cart/*',
|
|
],
|
|
[
|
|
'method' => 'POST',
|
|
'path' => '/order/cart',
|
|
],
|
|
[
|
|
'method' => 'POST',
|
|
'path' => '/order/cart/*',
|
|
],
|
|
[
|
|
'method' => 'DELETE',
|
|
'path' => '/order/cart/*',
|
|
],
|
|
];
|
|
|
|
public function __construct(private array $authData)
|
|
{
|
|
}
|
|
|
|
/**
|
|
* Order a domain name with the OVH API.
|
|
*
|
|
* @throws \Exception
|
|
*/
|
|
public function orderDomain(Domain $domain, bool $dryRun = false): void
|
|
{
|
|
if (!$domain->getDeleted()) {
|
|
throw new \Exception('The domain name still appears in the WHOIS database');
|
|
}
|
|
|
|
$ldhName = $domain->getLdhName();
|
|
if (!$ldhName) {
|
|
throw new \Exception('Domain name cannot be null');
|
|
}
|
|
|
|
$authData = self::verifyAuthData($this->authData);
|
|
|
|
$acceptConditions = $authData['acceptConditions'];
|
|
$ownerLegalAge = $authData['ownerLegalAge'];
|
|
$waiveRetractationPeriod = $authData['waiveRetractationPeriod'];
|
|
|
|
$conn = new Api(
|
|
$authData['appKey'],
|
|
$authData['appSecret'],
|
|
$authData['apiEndpoint'],
|
|
$authData['consumerKey']
|
|
);
|
|
|
|
$cart = $conn->post('/order/cart', [
|
|
'ovhSubsidiary' => $authData['ovhSubsidiary'],
|
|
'description' => 'Domain Watchdog',
|
|
]);
|
|
$cartId = $cart['cartId'];
|
|
|
|
$offers = $conn->get("/order/cart/{$cartId}/domain", [
|
|
'domain' => $ldhName,
|
|
]);
|
|
$offer = array_filter($offers, fn ($offer) => 'create' === $offer['action']
|
|
&& true === $offer['orderable']
|
|
&& $offer['pricingMode'] === $authData['pricingMode']
|
|
);
|
|
if (empty($offer)) {
|
|
$conn->delete("/order/cart/{$cartId}");
|
|
throw new \Exception('Cannot buy this domain name');
|
|
}
|
|
|
|
$item = $conn->post("/order/cart/{$cartId}/domain", [
|
|
'domain' => $ldhName,
|
|
'duration' => 'P1Y',
|
|
]);
|
|
$itemId = $item['itemId'];
|
|
|
|
// $conn->get("/order/cart/{$cartId}/summary");
|
|
$conn->post("/order/cart/{$cartId}/assign");
|
|
$conn->get("/order/cart/{$cartId}/item/{$itemId}/requiredConfiguration");
|
|
|
|
$configuration = [
|
|
'ACCEPT_CONDITIONS' => $acceptConditions,
|
|
'OWNER_LEGAL_AGE' => $ownerLegalAge,
|
|
];
|
|
|
|
foreach ($configuration as $label => $value) {
|
|
$conn->post("/order/cart/{$cartId}/item/{$itemId}/configuration", [
|
|
'cartId' => $cartId,
|
|
'itemId' => $itemId,
|
|
'label' => $label,
|
|
'value' => $value,
|
|
]);
|
|
}
|
|
$conn->get("/order/cart/{$cartId}/checkout");
|
|
|
|
if ($dryRun) {
|
|
return;
|
|
}
|
|
$conn->post("/order/cart/{$cartId}/checkout", [
|
|
'autoPayWithPreferredPaymentMethod' => true,
|
|
'waiveRetractationPeriod' => $waiveRetractationPeriod,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @throws \Exception
|
|
*/
|
|
public static function verifyAuthData(array $authData): array
|
|
{
|
|
$appKey = $authData['appKey'];
|
|
$appSecret = $authData['appSecret'];
|
|
$apiEndpoint = $authData['apiEndpoint'];
|
|
$consumerKey = $authData['consumerKey'];
|
|
$ovhSubsidiary = $authData['ovhSubsidiary'];
|
|
$pricingMode = $authData['pricingMode'];
|
|
|
|
$acceptConditions = $authData['acceptConditions'];
|
|
$ownerLegalAge = $authData['ownerLegalAge'];
|
|
$waiveRetractationPeriod = $authData['waiveRetractationPeriod'];
|
|
|
|
if (!is_string($appKey) || empty($appKey)
|
|
|| !is_string($appSecret) || empty($appSecret)
|
|
|| !is_string($consumerKey) || empty($consumerKey)
|
|
|| !is_string($apiEndpoint) || empty($apiEndpoint)
|
|
|| !is_string($ovhSubsidiary) || empty($ovhSubsidiary)
|
|
|| !is_string($pricingMode) || empty($pricingMode)
|
|
) {
|
|
throw new BadRequestHttpException('Bad authData schema');
|
|
}
|
|
|
|
if (true !== $acceptConditions
|
|
|| true !== $ownerLegalAge
|
|
|| true !== $waiveRetractationPeriod) {
|
|
throw new HttpException(451, 'The user has not given explicit consent', null);
|
|
}
|
|
|
|
$conn = new Api(
|
|
$appKey,
|
|
$appSecret,
|
|
$apiEndpoint,
|
|
$consumerKey
|
|
);
|
|
|
|
$res = $conn->get('/auth/currentCredential');
|
|
if (null !== $res['expiration'] && new \DateTime($res['expiration']) < new \DateTime()) {
|
|
throw new \Exception('These credentials have expired');
|
|
}
|
|
|
|
$status = $res['status'];
|
|
if ('validated' !== $status) {
|
|
throw new \Exception("The status of these credentials is not valid ($status)");
|
|
}
|
|
|
|
foreach (self::REQUIRED_ROUTES as $requiredRoute) {
|
|
$ok = false;
|
|
|
|
foreach ($res['rules'] as $allowedRoute) {
|
|
if (
|
|
$requiredRoute['method'] === $allowedRoute['method']
|
|
&& fnmatch($allowedRoute['path'], $requiredRoute['path'])
|
|
) {
|
|
$ok = true;
|
|
}
|
|
}
|
|
|
|
if (!$ok) {
|
|
throw new BadRequestHttpException('The credentials provided do not have enough permissions to purchase a domain name.');
|
|
}
|
|
}
|
|
|
|
return [
|
|
'appKey' => $appKey,
|
|
'appSecret' => $appSecret,
|
|
'apiEndpoint' => $apiEndpoint,
|
|
'consumerKey' => $consumerKey,
|
|
'ovhSubsidiary' => $ovhSubsidiary,
|
|
'pricingMode' => $pricingMode,
|
|
'acceptConditions' => $acceptConditions,
|
|
'ownerLegalAge' => $ownerLegalAge,
|
|
'waiveRetractationPeriod' => $waiveRetractationPeriod,
|
|
];
|
|
}
|
|
}
|