<?php
/*
* OIDplus 2.0
* Copyright 2019 - 2022 Daniel Marschall, ViaThinkSoft
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
class OIDplusOIDIP {
protected $XML_SCHEMA_URN;
protected $XML_SCHEMA_URL;
protected $JSON_SCHEMA_URN;
protected $JSON_SCHEMA_URL;
public function __construct() {
// NOTES:
// - XML_SCHEMA_URN must be equal to the string in the .xsd file!
// - the schema file names and draft version are also written in OIDplusPagePublicWhois.class.php
$this->XML_SCHEMA_URN = 'urn:ietf:id:draft-viathinksoft-oidip-04';
$this->XML_SCHEMA_URL = OIDplus::webpath(__DIR__,OIDplus::PATH_ABSOLUTE).'whois/draft-viathinksoft-oidip-04.xsd';
$this->JSON_SCHEMA_URN = 'urn:ietf:id:draft-viathinksoft-oidip-04';
$this->JSON_SCHEMA_URL = OIDplus::webpath(__DIR__,OIDplus::PATH_ABSOLUTE).'whois/draft-viathinksoft-oidip-04.json';
}
public function oidipQuery($query) {
$out_type = null;
$out_content = '';
// Split input into query and arguments
$original_query = $query;
foreach ($chunks as $chunk) {
if (strpos($chunk,'=') === false) continue;
//if (!preg_match('@^[a-z0-9]+$@', $tmp[0], $m)) continue; // be strict with the names. They must be lowercase (TODO: show "Service error" message?)
$tmp[0] = strtolower($tmp[0]); // be tolerant instead
$arguments[$tmp[0]] = $tmp[1];
}
$query = str_replace('oid:.', 'oid:', $query); // allow leading dot
if (isset($arguments['format'])) { $format = $arguments['format'];
} else {
$format = 'text'; // default
}
if (isset($arguments['auth'])) { $authTokens = explode(',', $arguments['auth']); } else {
}
// $lang= is not implemented, since we don't know in which language the OID descriptions are written by the site operator
/*
if (isset($arguments['lang'])) {
$languages = explode(',', $arguments['lang']);
} else {
$languages = array();
}
*/
$unimplemented_format = ($format != 'text') && ($format != 'json') && ($format != 'xml');
if ($unimplemented_format) {
$format = 'text';
}
// Step 1: Collect data
// ATTENTION: THE ORDER IS IMPORTANT FOR THE XML VALIDATION!
// The order of the RFC is the same as in the XSD
$out[] = $this->_oidip_attr('query', $original_query);
$query = OIDplus::prefilterQuery($query, false);
if ($unimplemented_format) {
$out[] = $this->_oidip_attr('result', 'Service error');
$out[] = $this->_oidip_attr('message', 'Format is not implemented');
$out[] = $this->_oidip_attr('lang', 'en-US');
} else {
$distance = null;
$found = null;
try {
$obj = OIDplusObject::findFitting($query);
if (!$obj) $obj = OIDplusObject::parse($query); // in case we didn't find anything fitting, we take it as it is and later use getParent() to find something else
$query = $obj->nodeId();
} catch (Exception $e) {
$obj = null;
}
$only_wellknown_ids_found = false;
$continue = false;
if (!$obj) {
$out[] = $this->_oidip_attr('result', 'Not found'); // DO NOT TRANSLATE!
$continue = false;
$res = null;
} else {
$obj = null;
$distance = 0;
$init_query = $query;
while (true) {
$res = OIDplus
::db()->query("select * from ###objects where id = ?", array($query)); if ($res->any()) {
$obj = OIDplusObject::parse($query);
if ($distance > 0) {
$out[] = $this->_oidip_attr('result', 'Not found; superior object found'); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('distance', $distance); // DO NOT TRANSLATE
} else {
$out[] = $this->_oidip_attr('result', 'Found'); // DO NOT TRANSLATE!
}
$continue = true;
break;
} else {
$alts = OIDplusPagePublicObjects::getAlternativesForQuery($query);
foreach ($alts as $alt) {
$res = OIDplus
::db()->query("select * from ###objects where id = ?", array($alt)); if ($res->any()) {
$query = $alt;
$obj = OIDplusObject::parse($alt);
if ($distance > 0) {
$out[] = $this->_oidip_attr('result', 'Not found; superior object found'); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('distance', $distance); // DO NOT TRANSLATE
} else {
$out[] = $this->_oidip_attr('result', 'Found'); // DO NOT TRANSLATE!
}
$continue = true;
break 2;
}
}
}
if (substr($query,0,4) === 'oid:') { $query_prev = $query;
$query = 'oid:'.oid_up
(explode(':',$query,2)[1]); if ($query == $query_prev) break;
$distance++;
} else {
// getParent() will find the parent which DOES exist in the DB.
// It does not need to be the direct parent (like ->one_up() does)
$obj = OIDplusObject::parse($query)->getParent(); // For objects, we assume that they are parents of each other
if ($obj) {
$res = OIDplus
::db()->query("select * from ###objects where id = ?", array($obj->nodeId())); $distance = $obj->distance($query);
$query = $obj->nodeId();
}
if ($distance > 0) {
$out[] = $this->_oidip_attr('result', 'Not found; superior object found'); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('distance', $distance); // DO NOT TRANSLATE
}
$continue = true;
break;
}
}
if ((substr($query,0,4) === 'oid:') && (!$obj)) { $query = $init_query;
$distance = 0;
while (true) {
$res = OIDplus
::db()->query("select * from ###asn1id where oid = ? union select * from ###iri where oid = ?", array($query, $query)); if ($res->any()) {
$obj = OIDplusObject::parse($query);
$res = null;
if ($distance > 0) {
$out[] = $this->_oidip_attr('result', 'Not found; superior object found'); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('distance', $distance); // DO NOT TRANSLATE
} else {
$out[] = $this->_oidip_attr('result', 'Found'); // DO NOT TRANSLATE!
}
$only_wellknown_ids_found = true; // Information partially available
$continue = true;
break;
}
$query_prev = $query;
$query = 'oid:'.oid_up
(explode(':',$query,2)[1]); if ($query == $query_prev) break;
$distance++;
}
}
if (!$obj) {
$out[] = $this->_oidip_attr('result', 'Not found'); // DO NOT TRANSLATE!
$continue = false;
}
$found = $distance == 0;
}
if ($continue) {
$out[] = '';
// ATTENTION: THE ORDER IS IMPORTANT FOR THE XML VALIDATION!
// The order of the RFC is the same as in the XSD
$out[] = $this->_oidip_attr('object', $query); // DO NOT TRANSLATE!
if (!$this->allowObjectView($obj, $authTokens)) {
$out[] = $this->_oidip_attr('status', 'Information unavailable'); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('attribute', 'confidential'); // DO NOT TRANSLATE!
} else {
if ($only_wellknown_ids_found) {
$out[] = $this->_oidip_attr('status', 'Information partially available'); // DO NOT TRANSLATE!
} else {
$out[] = $this->_oidip_attr('status', 'Information available'); // DO NOT TRANSLATE!
}
// $this->_oidip_attr('lang', ...); // not implemented (since we don't know the language of the texts written by the page operator)
$row = $res ? $res->fetch_object() : null;
$out[] = $this->_oidip_attr('name', $row->title); // DO NOT TRANSLATE!
$cont = $row->description;
$cont = preg_replace('@<a[^>]+href\s*=\s*["\']([^\'"]+)["\'][^>]*>(.+)<\s*/\s*a\s*>@ismU', '\2 (\1)', $cont); }
// $this->_oidip_attr('information', ...); Not used. Contains additional information, e.g. Management Information Base (MIB) definitions.
if ($only_wellknown_ids_found) {
if (substr($query,0,4) === 'oid:') { // Since it is well-known, oid-info.com will most likely have it described
$out[] = $this->_oidip_attr('url', 'http://www.oid-info.com/get/'.$obj->nodeId(false));
}
} else {
$out[] = $this->_oidip_attr
('url', OIDplus
::webpath(null,OIDplus
::PATH_ABSOLUTE).'?goto='.urlencode($obj->nodeId(true))); }
if (substr($query,0,4) === 'oid:') { $out[] = $this->_oidip_attr('asn1-notation', $obj->getAsn1Notation(false)); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('iri-notation', $obj->getIriNotation(false)); // DO NOT TRANSLATE!
$res2 = OIDplus
::db()->query("select * from ###asn1id where oid = ?", array($obj->nodeId())); while ($row2 = $res2->fetch_object()) {
$out[] = $this->_oidip_attr('identifier', $row2->name); // DO NOT TRANSLATE!
}
$res2 = OIDplus
::db()->query("select * from ###asn1id where standardized = ? and oid = ?", array(true, $obj->nodeId())); while ($row2 = $res2->fetch_object()) {
$out[] = $this->_oidip_attr('standardized-id', $row2->name); // DO NOT TRANSLATE!
}
$res2 = OIDplus
::db()->query("select * from ###iri where oid = ?", array($obj->nodeId())); while ($row2 = $res2->fetch_object()) {
$out[] = $this->_oidip_attr('unicode-label', $row2->name); // DO NOT TRANSLATE!
}
$res2 = OIDplus
::db()->query("select * from ###iri where longarc = ? and oid = ?", array(true, $obj->nodeId())); while ($row2 = $res2->fetch_object()) {
$out[] = $this->_oidip_attr('long-arc', $row2->name); // DO NOT TRANSLATE!
}
}
// $this->_oidip_attr('oidip-service', ...); Not used.
if ($obj->implementsFeature('1.3.6.1.4.1.37476.2.5.2.3.4')) {
// Also ask $obj for extra attributes:
// This way we could add various additional information, e.g. IPv4/6 range analysis, interpretation of GUID, etc.
$obj->whoisObjectAttributes($obj->nodeId(), $out);
}
foreach (OIDplus::getPagePlugins() as $plugin) {
if ($plugin->implementsFeature('1.3.6.1.4.1.37476.2.5.2.3.4')) {
$plugin->whoisObjectAttributes($obj->nodeId(), $out);
}
}
if ($obj->isConfidential()) { // yes, we use isConfidential() instead of $this->allowObjectView()!
$out[] = $this->_oidip_attr('attribute', 'confidential'); // DO NOT TRANSLATE!
}
if (substr($query,0,4) === 'oid:') { $sParent = 'oid:'.oid_up
(explode(':',$query,2)[1]);
$objTest = OIDplusObject::parse($sParent);
if ($this->allowObjectView($objTest, $authTokens)) {
$out[] = $this->_oidip_attr('parent', $sParent.$this->show_asn1_appendix($sParent)); // DO NOT TRANSLATE!
} else {
$out[] = $this->_oidip_attr('parent', $sParent); // DO NOT TRANSLATE!
}
} else if (!is_null($row) && !empty($row->parent) && (!$this->is_root($row->parent))) { $sParent = $row->parent;
$out[] = $this->_oidip_attr('parent', $row->parent); // DO NOT TRANSLATE!
}
$res2 = OIDplus
::db()->query("select * from ###objects where parent = ? order by ".OIDplus
::db()->natOrder('id'), array($obj->nodeId())); while ($row2 = $res2->fetch_object()) {
$objTest = OIDplusObject::parse($row2->id);
if ($this->allowObjectView($objTest, $authTokens)) {
$out[] = $this->_oidip_attr('subordinate', $row2->id.$this->show_asn1_appendix($row2->id)); // DO NOT TRANSLATE!
} else {
$out[] = $this->_oidip_attr('subordinate', $row2->id); // DO NOT TRANSLATE!
}
}
if ($row->created) $out[] = $this->_oidip_attr
('created', date('Y-m-d H:i:s', strtotime($row->created))); // DO NOT TRANSLATE! if ($row->updated) $out[] = $this->_oidip_attr
('updated', date('Y-m-d H:i:s', strtotime($row->updated))); // DO NOT TRANSLATE! }
$out[] = '';
// ATTENTION: THE ORDER IS IMPORTANT FOR THE XML VALIDATION!
// The order of the RFC is the same as in the XSD
$res2 = OIDplus
::db()->query("select * from ###ra where email = ?", array(is_null($row) ?
'' : $row->ra_email)); if ($row2 = $res2->fetch_object()) {
$out[] = $this->_oidip_attr
('ra', (!empty($row2->ra_name) ?
$row2->ra_name : (!empty($row2->email) ?
$row2->email : /*_L*/('Unknown')))); // DO NOT TRANSLATE!
if (!$this->allowRAView($row2, $authTokens)) {
$out[] = $this->_oidip_attr('ra-status', 'Information partially available'); // DO NOT TRANSLATE!
} else {
$out[] = $this->_oidip_attr('ra-status', 'Information available'); // DO NOT TRANSLATE!
}
// $this->_oidip_attr('ra-lang', ...); // not implemented (since we don't know the language of the texts written by the page operator)
if (!empty($row2->office)) $tmp[] = $row2->office; if (!empty($row2->organization)) $tmp[] = $row2->organization;
$out[] = $this->_oidip_attr
('ra-contact-name', $row2->personal_name.(!empty($tmp) ?
" ($tmp)" : '')); // DO NOT TRANSLATE! if (!$this->allowRAView($row2, $authTokens)) {
if (!empty($row2->street) || !empty($row2->zip_town) || !empty($row2->country)) { $out[] = $this->_oidip_attr('ra-address', /*_L*/('(redacted)')); // DO NOT TRANSLATE!
}
$out[] = $this->_oidip_attr
('ra-phone', (!empty($row2->phone) ?
/*_L*/('(redacted)') : '')); // DO NOT TRANSLATE! $out[] = $this->_oidip_attr
('ra-mobile', (!empty($row2->mobile) ?
/*_L*/('(redacted)') : '')); // DO NOT TRANSLATE! $out[] = $this->_oidip_attr
('ra-fax', (!empty($row2->fax) ?
/*_L*/('(redacted)') : '')); // DO NOT TRANSLATE! } else {
if (!empty($row2->street)) $address[] = $row2->street; // DO NOT TRANSLATE! if (!empty($row2->zip_town)) $address[] = $row2->zip_town; // DO NOT TRANSLATE! if (!empty($row2->country)) $address[] = $row2->country; // DO NOT TRANSLATE! if (count($address) > 0) $out[] = $this->_oidip_attr
('ra-address', implode("\n",$address)); $out[] = $this->_oidip_attr('ra-phone', $row2->phone); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('ra-mobile', $row2->mobile); // DO NOT TRANSLATE!
$out[] = $this->_oidip_attr('ra-fax', $row2->fax); // DO NOT TRANSLATE!
}
$out[] = $this->_oidip_attr('ra-email', $row->ra_email); // DO NOT TRANSLATE!
// $this->_oidip_attr('ra-url', ...); Not used.
$ra = new OIDplusRA($row->ra_email);
if ($ra->implementsFeature('1.3.6.1.4.1.37476.2.5.2.3.4')) {
$ra->whoisRaAttributes($row->ra_email, $out); /** @phpstan-ignore-line */
}
foreach (OIDplus::getPagePlugins() as $plugin) {
if ($plugin->implementsFeature('1.3.6.1.4.1.37476.2.5.2.3.4')) {
$plugin->whoisRaAttributes($row->ra_email, $out);
}
}
// yes, we use row2->privacy() instead of $this->allowRAView(), becuase $this->allowRAView=true if auth token is given; and we want to inform the person that they content they are viewing is confidential!
if ($row2->privacy) {
$out[] = $this->_oidip_attr('ra-attribute', 'confidential'); // DO NOT TRANSLATE!
}
if ($row2->registered) $out[] = $this->_oidip_attr
('ra-created', date('Y-m-d H:i:s', strtotime($row2->registered))); // DO NOT TRANSLATE! if ($row2->updated) $out[] = $this->_oidip_attr
('ra-updated', date('Y-m-d H:i:s', strtotime($row2->updated))); // DO NOT TRANSLATE! } else {
$out[] = $this->_oidip_attr
('ra', (!is_null($row) && !empty($row->ra_email) ?
$row->ra_email : /*_L*/('Unknown'))); // DO NOT TRANSLATE! foreach (OIDplus::getPagePlugins() as $plugin) {
if ($plugin->implementsFeature('1.3.6.1.4.1.37476.2.5.2.3.4')) {
$plugin->whoisRaAttributes($row->ra_email, $out);
}
}
}
$out[] = $this->_oidip_attr('ra-status', 'Information unavailable'); // DO NOT TRANSLATE!
}
}
}
}
// Upgrade legacy $out to extended $out format
$this->_oidip_newout_format($out);
// Trim all values
foreach ($out as &$tmp) {
$tmp['value'] = trim($tmp['value']); }
// Step 2: Format output
if ($format == 'text') {
$out_type = 'text/plain; charset=UTF-8';
$longest_key = 0;
foreach ($out as $data) {
}
//$out_content .= '% ' . str_repeat('*', OIDplus::config()->getValue('webwhois_output_format_max_line_length', 80)-2)."\r\n";
foreach ($out as $data) {
if ($data['name'] == '') {
$out_content .= "\r\n";
continue;
}
$key = $data['name'];
$value = $data['value'];
// Normalize line-breaks to \r\n, otherwise mb_wordwrap won't work correctly
$value = mb_wordwrap
($value, OIDplus
::config()->getValue('webwhois_output_format_max_line_length', 80) - $longest_key - strlen(':') - OIDplus
::config()->getValue('webwhois_output_format_spacer', 2), "\r\n");
$out_content .= $key.':' . str_repeat(' ', $longest_key-strlen($key)) . str_repeat(' ', OIDplus
::config()->getValue('webwhois_output_format_spacer', 2)) . $value . "\r\n"; }
}
//$out_content .= '% ' . str_repeat('*', OIDplus::config()->getValue('webwhois_output_format_max_line_length', 80)-2)."\r\n";
$out_content .= $cont;
if (OIDplus::getPkiStatus()) {
$signature = '';
if (@openssl_sign($cont, $signature, OIDplus
::getSystemPrivateKey())) { $signature = mb_wordwrap
($signature, OIDplus
::config()->getValue('webwhois_output_format_max_line_length', 80) - strlen('% '), "\r\n", true); $signature = "% -----BEGIN RSA SIGNATURE-----\r\n".
"% -----END RSA SIGNATURE-----\r\n";
$out_content .= $signature;
}
}
}
if ($format == 'json') {
$current_section = array(); $ary[] = &$current_section;
foreach ($out as $data) {
if ($data['name'] == '') {
$current_section = array(); $ary[] = &$current_section;
} else {
$key = $data['name'];
$val = trim($data['value']); if (!isset($current_section[$key])) { $current_section[$key] = $val;
} elseif (is_array($current_section[$key])) { $current_section[$key][] = $val;
} else {
$current_section[$key] = array($current_section[$key], $val); }
}
}
}
// Change $ary=[["query",...], ["object",...], ["ra",...]]
// to $bry=["querySection"=>["query",...], "objectsection"=>["object",...], "raSection"=>["ra",...]]
foreach ($ary as $cry) {
if (count($dry) == 0) continue; $bry[$dry[0].'Section'] = $cry; /** @phpstan-ignore-line */ // PHPStan thinks that count($dry) is always 0
}
// Remove 'ra-', 'ra1-', ... field prefixes from JSON (the prefix is only for the text view)
foreach ($bry as $section_name => &$cry) { /** @phpstan-ignore-line */ // PHPStan thinks that $bry is empty
if (preg_match('@^(ra\d*)\\Section@', $section_name, $m)) { foreach ($cry as $name => $val) {
if ($name == $ra_id) $name = 'ra'; // First field is always 'ra' even in 'ra1Section' etc.
$dry[$name] = $val;
}
$cry = $dry;
}
}
// We use the URN here, because $id of the schema also uses the URN
'$schema' => $this->JSON_SCHEMA_URN,
// we need this NAMED root, otherwise PHP will name the sections "0", "1", "2" if the array is not sequencial (e.g. because "signature" is added)
'oidip' => $bry
);
if (OIDplus::getPkiStatus()) {
try {
require_once __DIR__.'/whois/json/security.inc.php';
$json = oidplus_json_sign($json, OIDplus::getSystemPrivateKey(), OIDplus::getSystemPublicKey());
} catch (Exception $e) {
// die($e->getMessage());
}
}
// Good JSON schema validator here: https://www.jsonschemavalidator.net
$out_type = 'application/json; charset=UTF-8';
$out_content .= $json;
}
if ($format == 'xml') {
$xml_oidip = '<oidip><section>';
foreach ($out as $data) {
if ($data['name'] == '') {
$xml_oidip .= '</section><section>';
} else {
if ($data['xmlns'] != '') {
$key = $data['xmlns'].':'.$data['name'];
} else {
$key = $data['name'];
}
$val = trim($data['value']); if (strpos($val,"\n") !== false) { $val = str_replace(']]>', ']]]]><![CDATA[>', $val); // Escape ']]>' $xml_oidip .= "<$key><![CDATA[$val]]></$key>";
} else {
}
}
}
}
$xml_oidip .= '</section></oidip>';
$xml_oidip = preg_replace('@<section><(.+)>(.+)</section>@ismU', '<\\1Section><\\1>\\2</\\1Section>', $xml_oidip);
// Remove 'ra-', 'ra1-', ... field prefixes from XML (the prefix is only for the text view)
$xml_oidip = preg_replace('@<(/{0,1})ra\\d*-@', '<\\1', $xml_oidip);
// <ra1Section><ra1>...</ra1> => <ra1Section><ra>...</ra>
$xml_oidip = preg_replace('@<ra(\\d+)Section><ra\\1>(.+)</ra\\1>@U', '<ra\\1Section><ra>\\2</ra>', $xml_oidip);
/* Debug:
$out_type = 'application/xml; charset=UTF-8';
$out_content .= $xml_oidip;
die();
*/
// Very good XSD validator here: https://www.liquid-technologies.com/online-xsd-validator
// Also good: https://www.utilities-online.info/xsdvalidation (but does not accept & or " results in "Premature end of data in tag description line ...")
// Note:
// - These do not support XSD 1.1
// - You need to host http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/xmldsig-core-schema.xsd yourself, otherwise there will be a timeout in the validation!!!
$extra_schemas = array(); foreach ($out as $data) {
if (isset($data['xmlns']) && ($data['xmlns'] != '') && !isset($extra_schemas[$data['xmlns']])) { $extra_schemas[$data['xmlns']] = array($data['xmlschema'], $data['xmlschemauri']); }
}
$xml = '<?xml version="1.0" encoding="UTF-8" standalone="yes" ?'.'>'."\n";
$xml .= '<root xmlns="'.$this->XML_SCHEMA_URN.'"'."\n";
$xml .= ' xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"'."\n";
foreach ($extra_schemas as $xmlns => list($schema,$schemauri)) { $xml .= ' xmlns:'.$xmlns.'="'.$schema.'"'."\n";
}
$xml .= ' xsi:schemaLocation="'.$this->XML_SCHEMA_URN.' '.$this->XML_SCHEMA_URL;
foreach ($extra_schemas as $xmlns => list($schema,$schemauri)) { $xml .= ' '.$schema.' '.$schemauri;
}
$xml .= '">'."\n";
$xml .= $xml_oidip."\n";
$xml .= '</root>';
if (!OIDplus::getPkiStatus()) {
$xml .= '<!-- Cannot add signature: OIDplus PKI is not initialized (OpenSSL missing?) -->';
$xml .= '<!-- Cannot add signature: "PHP-XML" extension not installed -->';
} else {
try {
require_once __DIR__.'/whois/xml/security.inc.php';
$xml = oidplus_xml_sign($xml, OIDplus::getSystemPrivateKey(), OIDplus::getSystemPublicKey());
} catch (Exception $e) {
$xml .= '<!-- Cannot add signature: '.$e.' -->';
}
}
$out_type = 'application/xml; charset=UTF-8';
$out_content .= $xml;
}
return array($out_content, $out_type); }
protected function show_asn1_appendix($id) {
if (substr($id,0,4) === 'oid:') { $appendix_asn1ids = array(); $res3 = OIDplus
::db()->query("select * from ###asn1id where oid = ?", array($id)); while ($row3 = $res3->fetch_object()) {
$appendix_asn1ids[] = $row3->name;
}
$appendix = implode(', ', $appendix_asn1ids); if (!empty($appendix)) $appendix = " ($appendix)"; } else {
$appendix = '';
}
return $appendix;
}
protected function is_root($id) {
}
protected function authTokenAccepted($content, $authTokens) {
foreach ($authTokens as $token) {
if (OIDplusPagePublicWhois::genWhoisAuthToken($content) == $token) return true;
}
return false;
}
protected function allowObjectView($obj, $authTokens) {
// Master auth token (TODO: Have an object-master-token and a ra-master-token?)
$authToken = trim(OIDplus
::config()->getValue('whois_auth_token')); if (empty($authToken)) $authToken = false; if ($authToken && in_array($authToken, $authTokens)) return true;
// Per-OID auth tokens
$curid = $obj->nodeId();
while (($res = OIDplus
::db()->query("select parent, confidential from ###objects where id = ?", array($curid)))->any()) { $row = $res->fetch_array();
// Example: You have an auth Token for 2.999.1.2.3
// This allows you to view 2.999.1.2.3 and all of its children,
// as long as they are not confidential (then you need their auth token).
// 2, 2.999, 2.999.1 and 2.999.1.2 are visible,
// (because their existence is now obvious).
if ($row['confidential'] && !$this->authTokenAccepted($curid, $authTokens)) return false;
$curid = $row['parent'];
}
// Allow
return true;
}
protected function allowRAView($row, $authTokens) {
// Master auth token (TODO: Have an object-master-token and a ra-master-token?)
$authToken = trim(OIDplus
::config()->getValue('whois_auth_token')); if (empty($authToken)) $authToken = false; if ($authToken && in_array($authToken, $authTokens)) return true;
// Per-RA auth tokens
if ($row->privacy && !$this->authTokenAccepted('ra:'.$row->ra_name, $authTokens)) return false;
// Allow
return true;
}
protected function _oidip_attr($name, $value) {
'xmlns' => '',
'xmlschema' => '',
'xmlschemauri' => '',
'name' => $name,
'value' => $value
);
}
protected function _oidip_newout_format(&$out) {
foreach ($out as &$line) {
$value = isset($ary[1]) ?
trim($ary[1]) : '';
'xmlns' => '',
'xmlschema' => '',
'xmlschemauri' => '',
'name' => $key,
'value' => $value
);
if (!isset($line['xmlns'])) $line['xmlns'] = ''; if (!isset($line['xmlschema'])) $line['xmlschema'] = ''; if (!isset($line['xmlschemauri'])) $line['xmlschemauri'] = ''; if (!isset($line['name'])) $line['name'] = ''; if (!isset($line['value'])) $line['value'] = ''; } else {
}
}
}
}