Validate user role and DNSSEC_ADMINS_ONLY config on DNSSEC related routes

2025-07-03 04:37:46 +00:00 · 2018-06-07 09:28:14 +07:00
parent 6f54b1a9de
commit 2958ae663c
4 changed files with 18 additions and 3 deletions
--- a/app/models.py
+++ b/app/models.py
@ -849,7 +849,7 @@ class Domain(db.Model):
            try:
                jdata = utils.fetch_json(urljoin(PDNS_STATS_URL, API_EXTENDED_URL + '/servers/localhost/zones/{0}/cryptokeys'.format(domain.name)), headers=headers, method='POST',data=post_data)
                if 'error' in jdata:
-                    return {'status': 'error', 'msg': 'DNSSEC is not enabled for this domain', 'jdata' : jdata}
+                    return {'status': 'error', 'msg': 'Cannot enable DNSSEC for this domain. Error: {0}'.format(jdata['error']), 'jdata' : jdata}
                else:
                    return {'status': 'ok'}
            except:
@ -871,7 +871,7 @@ class Domain(db.Model):
            try:
                jdata = utils.fetch_json(urljoin(PDNS_STATS_URL, API_EXTENDED_URL + url), headers=headers, method='DELETE')
                if 'error' in jdata:
-                    return {'status': 'error', 'msg': 'DNSSEC is not disabled for this domain', 'jdata' : jdata}
+                    return {'status': 'error', 'msg': 'Cannot disable DNSSEC for this domain. Error: {0}'.format(jdata['error']), 'jdata' : jdata}
                else:
                    return {'status': 'ok'}
            except: