oiov
140 lines
3.9 KiB
TypeScript
140 lines
3.9 KiB
TypeScript
import { TeamPlanQuota } from "@/config/team";
|
|
import { createDNSRecord } from "@/lib/cloudflare";
|
|
import {
|
|
createUserRecord,
|
|
getUserRecordByTypeNameContent,
|
|
getUserRecordCount,
|
|
} from "@/lib/dto/cloudflare-dns-record";
|
|
import { getDomainsByFeature } from "@/lib/dto/domains";
|
|
import { checkUserStatus, getUserByEmail } from "@/lib/dto/user";
|
|
import { reservedDomains } from "@/lib/enums";
|
|
import { getCurrentUser } from "@/lib/session";
|
|
import { generateSecret } from "@/lib/utils";
|
|
|
|
export async function POST(req: Request) {
|
|
try {
|
|
const user = checkUserStatus(await getCurrentUser());
|
|
if (user instanceof Response) return user;
|
|
if (user.role !== "ADMIN") {
|
|
return Response.json("Unauthorized", {
|
|
status: 401,
|
|
statusText: "Admin access required",
|
|
});
|
|
}
|
|
|
|
const zones = await getDomainsByFeature("enable_dns", true);
|
|
if (!zones.length) {
|
|
return Response.json("Please add at least one domain", {
|
|
status: 400,
|
|
statusText: "Please add at least one domain",
|
|
});
|
|
}
|
|
|
|
const { records, email } = await req.json();
|
|
const target_user = await getUserByEmail(email);
|
|
if (!target_user) {
|
|
return Response.json("User not found", {
|
|
status: 404,
|
|
statusText: "User not found",
|
|
});
|
|
}
|
|
|
|
const { total } = await getUserRecordCount(target_user.id);
|
|
if (total >= TeamPlanQuota[target_user.team!].RC_NewRecords) {
|
|
return Response.json("Your records have reached the free limit.", {
|
|
status: 409,
|
|
});
|
|
}
|
|
|
|
const record = {
|
|
...records[0],
|
|
id: generateSecret(16),
|
|
};
|
|
|
|
let record_name = ["A", "CNAME"].includes(record.type)
|
|
? record.name
|
|
: `${record.name}.${record.zone_name}`;
|
|
|
|
let matchedZone;
|
|
|
|
for (const zone of zones) {
|
|
if (record.zone_name === zone.domain_name) {
|
|
matchedZone = zone;
|
|
break;
|
|
}
|
|
}
|
|
|
|
if (!matchedZone) {
|
|
return Response.json(
|
|
`No matching zone found for domain: ${record_name}`,
|
|
{
|
|
status: 400,
|
|
statusText: "Invalid domain",
|
|
},
|
|
);
|
|
}
|
|
|
|
if (reservedDomains.includes(record_name)) {
|
|
return Response.json("Domain name is reserved", {
|
|
status: 403,
|
|
});
|
|
}
|
|
|
|
const user_record = await getUserRecordByTypeNameContent(
|
|
target_user.id,
|
|
record.type,
|
|
record_name,
|
|
record.content,
|
|
1,
|
|
);
|
|
if (user_record && user_record.length > 0) {
|
|
return Response.json("Record already exists", {
|
|
status: 403,
|
|
});
|
|
}
|
|
|
|
const data = await createDNSRecord(
|
|
matchedZone.cf_zone_id,
|
|
matchedZone.cf_api_key,
|
|
matchedZone.cf_email,
|
|
record,
|
|
);
|
|
|
|
if (!data.success || !data.result?.id) {
|
|
// console.log("[data]", data);
|
|
return Response.json(data.messages, {
|
|
status: 501,
|
|
});
|
|
} else {
|
|
const res = await createUserRecord(target_user.id, {
|
|
record_id: data.result.id,
|
|
zone_id: matchedZone.cf_zone_id,
|
|
zone_name: matchedZone.domain_name,
|
|
name: data.result.name,
|
|
type: data.result.type,
|
|
content: data.result.content,
|
|
proxied: data.result.proxied,
|
|
proxiable: data.result.proxiable,
|
|
ttl: data.result.ttl,
|
|
comment: data.result.comment ?? "",
|
|
tags: data.result.tags?.join("") ?? "",
|
|
created_on: data.result.created_on,
|
|
modified_on: data.result.modified_on,
|
|
active: 0,
|
|
});
|
|
|
|
if (res.status !== "success") {
|
|
return Response.json(res.status, {
|
|
status: 502,
|
|
});
|
|
}
|
|
return Response.json(res.data);
|
|
}
|
|
} catch (error) {
|
|
console.error("[错误]", error);
|
|
return Response.json(error, {
|
|
status: error?.status || 500,
|
|
});
|
|
}
|
|
}
|