summaryrefslogtreecommitdiff
path: root/api
diff options
context:
space:
mode:
Diffstat (limited to 'api')
-rw-r--r--api/dns.go18
1 files changed, 16 insertions, 2 deletions
diff --git a/api/dns.go b/api/dns.go
index a1739d3..ad41103 100644
--- a/api/dns.go
+++ b/api/dns.go
@@ -2,6 +2,7 @@ package api
import (
"database/sql"
+ "fmt"
"log"
"net/http"
"strconv"
@@ -20,10 +21,23 @@ type FormError struct {
func userCanFuckWithDNSRecord(dbConn *sql.DB, user *database.User, record *database.DNSRecord) bool {
ownedByUser := (user.ID == record.UserID)
+ if !ownedByUser {
+ return false
+ }
if !record.Internal {
- publicallyOwnedByUser := (record.Name == user.Username || strings.HasSuffix(record.Name, "."+user.Username))
- return ownedByUser && publicallyOwnedByUser
+ userOwnedDomains := []string{
+ fmt.Sprintf("%s", user.Username),
+ fmt.Sprintf("%s.endpoints", user.Username),
+ }
+
+ for _, domain := range userOwnedDomains {
+ isInSubDomain := strings.HasSuffix(record.Name, "."+domain)
+ if domain == record.Name || isInSubDomain {
+ return true
+ }
+ }
+ return false
}
owner, err := database.FindFirstDomainOwnerId(dbConn, record.Name)
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2025-12-30 16:48:11 +0000