From 0e63757d19b88cfe5b0f4364f1852af40b88454c Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Mon, 3 Apr 2017 09:47:38 +0200
Subject: [PATCH 1/9] Implement CAA-records. Please note that pdns requires
 quotes around the third field: https://github.com/PowerDNS/pdns/issues/4937.
 Closes #141

---
 index.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/index.php b/index.php
index ea7e841..301478d 100644
--- a/index.php
+++ b/index.php
@@ -146,6 +146,7 @@ if ($blocklogin === TRUE) {
             <option value="SRV">SRV</option>
             <option value="SSHFP">SSHFP</option>
             <option value="TLSA">TLSA</option>
+            <option value="CAA">CAA</option>
             <option value="TXT">TXT</option>
         </select><br></td></tr>
         <tr><td>Content:</td><td><input type="text" id ="searchzone-content"></td></tr>
@@ -616,6 +617,7 @@ $(document).ready(function () {
                                             'SRV': 'SRV',
                                             'SSHFP': 'SSHFP',
                                             'TLSA': 'TLSA',
+                                            'CAA': 'CAA',
                                             'DNAME': 'DNAME',
                                             'DS': 'DS'
                                         };
@@ -637,6 +639,7 @@ $(document).ready(function () {
                                         'SRV': 'SRV',
                                         'SSHFP': 'SSHFP',
                                         'TLSA': 'TLSA',
+                                        'CAA': 'CAA',
                                         'TXT': 'TXT',
                                     };
                                 },

From 4d4e536d52d93cf41b25bbfe530775dd10c51df9 Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Thu, 20 Apr 2017 11:45:33 +0200
Subject: [PATCH 2/9] Deduplicate the api-url

---
 includes/class/ApiHandler.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/includes/class/ApiHandler.php b/includes/class/ApiHandler.php
index aa349b4..f21a0ac 100644
--- a/includes/class/ApiHandler.php
+++ b/includes/class/ApiHandler.php
@@ -91,6 +91,7 @@ class ApiHandler {
                 break;
         }
 
+        $this->url = str_replace($this->apiurl, '', $this->url);
         curl_setopt($this->curlh, CURLOPT_URL, $this->baseurl().$this->url);
 
         //print "Here we go:\n";

From 9d27a140d79a14da7872c20bccc9305c1ec18208 Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Thu, 20 Apr 2017 11:46:55 +0200
Subject: [PATCH 3/9] Fix proto in logo url

---
 includes/misc.inc.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/includes/misc.inc.php b/includes/misc.inc.php
index e56b55d..274b638 100644
--- a/includes/misc.inc.php
+++ b/includes/misc.inc.php
@@ -35,7 +35,7 @@ if (isset($defaults['primaryns'])) {
 }
 
 if (!isset($logo) or empty($logo)) {
-    $logo = 'http://www.tuxis.nl/uploads/images/nsedit.png';
+    $logo = 'https://www.tuxis.nl/uploads/images/nsedit.png';
 }
 
 

From f67fa04d8519f1a5122f443b51be7aabe5fbe3ee Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Fri, 28 Apr 2017 12:32:01 +0200
Subject: [PATCH 4/9] This fixes the issues with the newer pdns, which suddenly
 includes the whole API url in the returned json.

Closes #145. In response to https://github.com/tuxis-ie/nsedit/commit/4d4e536d52d93cf41b25bbfe530775dd10c51df9
---
 includes/class/ApiHandler.php | 16 ++++------------
 1 file changed, 4 insertions(+), 12 deletions(-)

diff --git a/includes/class/ApiHandler.php b/includes/class/ApiHandler.php
index f21a0ac..07b6cdf 100644
--- a/includes/class/ApiHandler.php
+++ b/includes/class/ApiHandler.php
@@ -91,15 +91,8 @@ class ApiHandler {
                 break;
         }
 
-        $this->url = str_replace($this->apiurl, '', $this->url);
         curl_setopt($this->curlh, CURLOPT_URL, $this->baseurl().$this->url);
 
-        //print "Here we go:\n";
-        //print "Request: ".$this->method.' '.$this->baseurl().$this->url."\n";
-        //if ($this->content != '') {
-        //    print "Content: ".$this->content."\n";
-        //}
-
         $return = curl_exec($this->curlh);
         $code = curl_getinfo($this->curlh, CURLINFO_HTTP_CODE);
         $json = json_decode($return, 1);
@@ -117,12 +110,11 @@ class ApiHandler {
     }
 
     public function call() {
-        if (substr($this->url, 0, 1) == '/') {
-            $this->apiurl();
-        } else {
-            $this->apiurl = '/';
+        if (substr($this->url, 0, 1) != '/') {
+            $this->url = '/'.$this->url;
         }
-
+        $this->apiurl();
+        $this->url = str_replace($this->apiurl, '', $this->url);
         $this->go();
     }
 }

From 6be5f2f29c48756017d29c867f64ffe395a2d995 Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Fri, 28 Apr 2017 13:09:31 +0200
Subject: [PATCH 5/9] Fix updating the password, and store if we have local
 auth, we can't change passwords if we don't have local auth

---
 includes/session.inc.php | 22 ++++++++++++++++++----
 index.php                |  5 ++++-
 2 files changed, 22 insertions(+), 5 deletions(-)

diff --git a/includes/session.inc.php b/includes/session.inc.php
index 996f052..9b359c3 100644
--- a/includes/session.inc.php
+++ b/includes/session.inc.php
@@ -9,11 +9,13 @@ global $current_user;
 $current_user = false;
 
 // session startup
-function _set_current_user($username, $is_admin = false, $has_csrf_token = false, $is_api = false) {
+function _set_current_user($username, $userid, $localauth = true, $is_admin = false, $has_csrf_token = false, $is_api = false) {
     global $current_user;
 
     $current_user = array(
         'username' => $username,
+        'id' => $userid,
+        'localauth' => $localauth,
         'is_admin' => $is_admin,
         'has_csrf_token' => $has_csrf_token,
         'is_api' => $is_api,
@@ -177,7 +179,7 @@ function _try_login($username, $password) {
         writelog("Failed to find user!", $username);
         return false;
     } else {
-        _set_current_user($username, (bool) $user['isadmin']);
+        _set_current_user($username, $user['id'], (bool) $do_local_auth, (bool) $user['isadmin']);
 
         if (session_id()) {
             session_unset();
@@ -187,6 +189,8 @@ function _try_login($username, $password) {
         session_regenerate_id(true) or die('session failure: regenerated id failed');
         session_unset();
         $_SESSION['username'] = $username;
+        $_SESSION['localauth'] = $do_local_auth;
+        $_SESSION['userid'] = $user['id'];
 
         # requires session:
         _check_csrf_token($user);
@@ -206,7 +210,7 @@ function _check_session() {
             and $_POST['adminapikey'] === $adminapikey)
         {
             # Allow this request, fake that we're logged in as user.
-            return _set_current_user('admin', true, true, true);
+            return _set_current_user('admin', 1, false, true, true, true);
         }
         else
         {
@@ -222,7 +226,7 @@ function _check_session() {
                 session_destroy();
                 session_unset();
             } else {
-                _set_current_user($_SESSION['username'], (bool) $user['isadmin']);
+                _set_current_user($_SESSION['username'], $_SESSION['userid'], (bool) $_SESSION['localauth'], (bool) $user['isadmin']);
                 _check_csrf_token($user);
                 return;
             }
@@ -281,6 +285,16 @@ function get_sess_user() {
     return $current_user ? $current_user['username'] : null;
 }
 
+function get_sess_userid() {
+    global $current_user;
+    return $current_user ? $current_user['id'] : null;
+}
+
+function has_local_auth() {
+    global $current_user;
+    return $current_user ? $current_user['localauth'] : null;
+}
+
 function logout() {
     @session_destroy();
     @session_unset();
diff --git a/index.php b/index.php
index 301478d..be46ae4 100644
--- a/index.php
+++ b/index.php
@@ -20,7 +20,7 @@ if (!is_logged_in() and isset($_POST['formname']) and $_POST['formname'] === "lo
 
 if (is_logged_in() and isset($_POST['formname']) and $_POST['formname'] === "changepwform") {
     if (get_sess_user() == $_POST['username']) {
-        if (!update_user(get_sess_user(), is_adminuser(), $_POST['password'])) {
+        if (!update_user(get_sess_userid(), is_adminuser(), $_POST['password'])) {
             $errormsg = "Unable to update password!\n";
         }
     } else {
@@ -208,6 +208,7 @@ if ($blocklogin === TRUE) {
     </div>
     <?php } ?>
 
+    <?php if (has_local_auth()) { ?>
     <div id="AboutMe">
         <div class="tables">
             <p>Hi <?php echo get_sess_user(); ?>. You can change your password here.</p>
@@ -232,9 +233,11 @@ if ($blocklogin === TRUE) {
                     </tr>
                 </table>
                 <input type="hidden" name="formname" value="changepwform">
+                <input type="hidden" name="id" value="<?php echo get_sess_userid(); ?>">
             </form>
         </div>
     </div>
+    <?php } ?>
 </div>
 <script type="text/javascript">
 window.csrf_token = '<?php echo CSRF_TOKEN ?>';

From 382ca51db155a3d446965812c52fcfb0ca623289 Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Fri, 28 Apr 2017 13:37:22 +0200
Subject: [PATCH 6/9] Allow ALIAS records. Closes #138

---
 index.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/index.php b/index.php
index be46ae4..9ddabb3 100644
--- a/index.php
+++ b/index.php
@@ -136,6 +136,7 @@ if ($blocklogin === TRUE) {
             <option value="AAAA">AAAA</option>
             <option value="CERT">CERT</option>
             <option value="CNAME">CNAME</option>
+            <option value="ALIAS">ALIAS</option>
             <option value="LOC">LOC</option>
             <option value="MX">MX</option>
             <option value="NAPTR">NAPTR</option>
@@ -614,6 +615,7 @@ $(document).ready(function () {
                                             'AAAA': 'AAAA',
                                             'CERT': 'CERT',
                                             'CNAME': 'CNAME',
+                                            'ALIAS': 'ALIAS',
                                             'LOC': 'LOC',
                                             'NAPTR': 'NAPTR',
                                             'SPF': 'SPF',
@@ -631,6 +633,7 @@ $(document).ready(function () {
                                         'CERT': 'CERT',
                                         'CNAME': 'CNAME',
                                         'DNAME': 'DNAME',
+                                        'ALIAS': 'ALIAS',
                                         'DS': 'DS',
                                         'LOC': 'LOC',
                                         'MX': 'MX',

From 1f2225cf6d936b25d685e47d3eaa84551f6ccd40 Mon Sep 17 00:00:00 2001
From: Daniel Eiland <daniel@webvanced.nl>
Date: Tue, 11 Jul 2017 09:24:44 +0200
Subject: [PATCH 7/9] Added support for CNAME's to zone in templates

---
 includes/config.inc.php-dist | 16 ++++++++++++----
 zones.php                    |  1 +
 2 files changed, 13 insertions(+), 4 deletions(-)

diff --git a/includes/config.inc.php-dist b/includes/config.inc.php-dist
index bc00616..8991b81 100644
--- a/includes/config.inc.php-dist
+++ b/includes/config.inc.php-dist
@@ -35,10 +35,18 @@ $templates[] = array(
     'name' => 'Tuxis',
     'owner' => 'username', # Set to 'public' to make it available to all users
     'records' => array(
-        array(
-            'name'      => '',
-            'type'      => 'MX',
-            'content'   => '200 mx2.tuxis.nl')
+    array(
+        'name'      => '',
+        'type'      => 'MX',
+        'content'   => '200 mx2.tuxis.nl'),
+    array(
+        'name'      => '',
+        'type'      => 'A',
+        'content'   => '1.2.3.4'),
+    array(
+        'name'      => 'www',
+        'type'      => 'CNAME',
+        'content'   => '[zonename]')
     )
 );
 */
diff --git a/zones.php b/zones.php
index 528710f..9215b1a 100644
--- a/zones.php
+++ b/zones.php
@@ -331,6 +331,7 @@ case "create":
 
             foreach ($template['records'] as $record) {
                 $name = $record['name'] != '' ? join(Array($record['name'],'.',$zonename)) : $zonename;
+                $record['content'] = str_replace("[zonename]", $zonename, $record['content']);
                 $zone->addRecord($name, $record['type'], $record['content']);
             }
 

From 18fa97373e19345868911c7916e04cbd7f127116 Mon Sep 17 00:00:00 2001
From: Mark Schouten <mark@tuxis.nl>
Date: Mon, 7 Aug 2017 10:30:52 +0200
Subject: [PATCH 8/9] Add other ways of installation to the README

---
 README.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/README.md b/README.md
index 2758077..957936b 100644
--- a/README.md
+++ b/README.md
@@ -56,6 +56,12 @@ Installing
 
 Have fun ;)
 
+Other methods of installation (Unsupported)
+===========================================
+
+* Baji Zsolt created a Suse image: https://susestudio.com/a/vvnMqa/powerdns-with-nsedit
+* Yury Evtikhov created the Docker file: https://github.com/tuxis-ie/nsedit/blob/master/Dockerfile
+
 Configuring PowerDNS
 ====================
 Minimal cofiguration of PowerDNS for supporting nsedit has to include 3 directives:

From 0c1183e716a2f7526bdf9e1372538477fa6255cb Mon Sep 17 00:00:00 2001
From: maltris <m@maltris.org>
Date: Mon, 14 Aug 2017 10:22:04 +0200
Subject: [PATCH 9/9] Separated RUN-commands, changed a sed-command because the
 matching did not work

---
 Dockerfile | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index aebdb24..44d6b48 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -3,9 +3,7 @@ MAINTAINER Yury Evtikhov <yury@evtikhov.info>
 #
 # This Dockerfile is intended only for test/development use.
 # It will be a really BAD idea to use it for production or public services.
-# 
-
-
+#
 
 ENV DEBIAN_FRONTEND noninteractive
 
@@ -19,14 +17,15 @@ ENV PDNSAPIPORT 8081
 # Update and Upgrade system
 RUN apt-get -y update && \
     apt-get -y install curl git-core php5-cli php5-curl php5-json php5-sqlite && \
-    mkdir /app && \
-    git clone --recursive https://github.com/tuxis-ie/nsedit.git /app/nsedit && \
-    cp /app/nsedit/includes/config.inc.php-dist /app/nsedit/includes/config.inc.php && \
-    sed "s/\$apipass = ''/\$apipass = '$PDNSAPIPWD'/" -i /app/nsedit/includes/config.inc.php && \
+    rm -rf /var/lib/apt/lists/*
+RUN mkdir /app
+RUN git clone --recursive https://github.com/tuxis-ie/nsedit.git /app/nsedit
+RUN cp /app/nsedit/includes/config.inc.php-dist /app/nsedit/includes/config.inc.php
+RUN sed "s/\$apipass = ''/\$apipass = '$PDNSAPIPWD'/" -i /app/nsedit/includes/config.inc.php && \
     sed "s/\$apiip   = ''/\$apiip = '$PDNSAPIIP'/" -i /app/nsedit/includes/config.inc.php && \
-    sed "s/\$apiport = ''/\$apiport = '$PDNSAPIPORT'/" -i /app/nsedit/includes/config.inc.php && \
+    sed "s/\$apiport = '8081'/\$apiport = '$PDNSAPIPORT'/" -i /app/nsedit/includes/config.inc.php && \
     sed "s/\$authdb  = \"\.\.\/etc\/pdns\.users\.sqlite3\"/\$authdb  = \"\/app\/pdns\.users\.sqlite3\"/" -i /app/nsedit/includes/config.inc.php
-  
+
 # Define working directory.
 VOLUME /app/nsedit
 WORKDIR /app/nsedit