tiennm99/is-a-dev
1
0
Fork 0
mirror of https://github.com/tiennm99/is-a-dev.git synced 2026-05-20 05:27:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #17073 from is-a-dev/validation

Browse Source 
feat(ci): validation
This commit is contained in:
William Harrison
2024-11-09 23:15:23 +11:00
committed by GitHub
parent 54ccd161e1 f9770f63f6
commit f4e60cab35
30 changed files with 3121 additions and 65 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/CODEOWNERS
+1 -5
View File
@@ -1,8 +1,4 @@
* @phenax @wdhdev
* @wdhdev
/.github/ @wdhdev
/domains/ @is-a-dev/maintainers
*.md @is-a-dev/maintainers
/LICENSE @phenax
/dnsconfig.js @wdhdev
.github/workflows/validate.yml → .github/workflows/validation.yml
+8 -9
View File
@@ -7,7 +7,9 @@ on:
branches: [main]
paths:
- "domains/*"
- ".github/workflows/validation.yml"
- "tests/*"
- "utils/*"
- ".github/workflows/validate.yml"
- "dnsconfig.js"
workflow_dispatch:
@@ -28,15 +30,12 @@ jobs:
with:
args: check
json:
name: JSON
tests:
name: Tests
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: JSON Syntax Check
uses: limitusus/json-syntax-check@v2
with:
pattern: "\\.json$"
env:
BASE: "domains/"
- run: npm install
- run: npm test
.gitignore
+130
View File
@@ -0,0 +1,130 @@
# Logs
logs
*.log
npm-debug.log*
yarn-debug.log*
yarn-error.log*
lerna-debug.log*
.pnpm-debug.log*
# Diagnostic reports (https://nodejs.org/api/report.html)
report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
# Runtime data
pids
*.pid
*.seed
*.pid.lock
# Directory for instrumented libs generated by jscoverage/JSCover
lib-cov
# Coverage directory used by tools like istanbul
coverage
*.lcov
# nyc test coverage
.nyc_output
# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)
.grunt
# Bower dependency directory (https://bower.io/)
bower_components
# node-waf configuration
.lock-wscript
# Compiled binary addons (https://nodejs.org/api/addons.html)
build/Release
# Dependency directories
node_modules/
jspm_packages/
# Snowpack dependency directory (https://snowpack.dev/)
web_modules/
# TypeScript cache
*.tsbuildinfo
# Optional npm cache directory
.npm
# Optional eslint cache
.eslintcache
# Optional stylelint cache
.stylelintcache
# Microbundle cache
.rpt2_cache/
.rts2_cache_cjs/
.rts2_cache_es/
.rts2_cache_umd/
# Optional REPL history
.node_repl_history
# Output of 'npm pack'
*.tgz
# Yarn Integrity file
.yarn-integrity
# dotenv environment variable files
.env
.env.development.local
.env.test.local
.env.production.local
.env.local
# parcel-bundler cache (https://parceljs.org/)
.cache
.parcel-cache
# Next.js build output
.next
out
# Nuxt.js build / generate output
.nuxt
dist
# Gatsby files
.cache/
# Comment in the public line in if your project uses Gatsby and not Next.js
# https://nextjs.org/blog/next-9-1#public-directory-support
# public
# vuepress build output
.vuepress/dist
# vuepress v2.x temp and cache directory
.temp
.cache
# Docusaurus cache and generated files
.docusaurus
# Serverless directories
.serverless/
# FuseBox cache
.fusebox/
# DynamoDB Local files
.dynamodb/
# TernJS port file
.tern-port
# Stores VSCode versions used for testing VSCode extensions
.vscode-test
# yarn v2
.yarn/cache
.yarn/unplugged
.yarn/build-state.yml
.yarn/install-state.gz
.pnp.*
dnsconfig.js
+12 -10
View File
@@ -75,15 +75,18 @@ for (var subdomain in domains) {
// Handle DS records
if (domainData.record.DS) {
records.push(
DS(
subdomainName,
domainData.record.DS.key_tag,
domainData.record.DS.algorithm,
domainData.record.DS.digest_type,
domainData.record.DS.digest
)
);
for (var ds in domainData.record.DS) {
var dsRecord = domainData.record.DS[ds];
records.push(
DS(
subdomainName,
dsRecord.key_tag,
dsRecord.algorithm,
dsRecord.digest_type,
dsRecord.digest
)
);
}
}
// Handle MX records
@@ -151,7 +154,6 @@ var options = {
var ignored = [
IGNORE("@", "MX,TXT"),
IGNORE("\\*"),
IGNORE("_acme-challenge", "TXT"),
IGNORE("_autodiscover._tcp", "SRV"),
IGNORE("_dmarc", "TXT"),
domains/_github-pages-challenge-charmingdisorder.alexey.json
+1 -2
View File
@@ -1,7 +1,6 @@
{
"owner": {
"username": "charmingdisorder",
"email": "null"
"username": "charmingdisorder"
},
"record": {
"TXT": "8045a0394db9ecae4e8f4a76f5c17c"
domains/_vercel.exigent-app.json
+1 -1
View File
@@ -1,6 +1,6 @@
{
"owner": {
"usernme": "Exigent07",
"username": "Exigent07",
"discord": "exigent07"
},
"record": {
domains/abiapp789.json
+1
View File
@@ -1,6 +1,7 @@
{
"domain": "abiapp1789.is-a.dev",
"owner": {
"username": "abiapp789",
"email": "abiapp2024@gmail.com"
},
"record": {
domains/bracketproto.json
-1
View File
@@ -1,6 +1,5 @@
{
"owner": {
"email": "not specified, refer to discord.",
"username": "not specified, refer to discord.",
"discord": "oxmc7769"
},
domains/carmelo.json
-1
View File
@@ -3,7 +3,6 @@
"repo": "https://github.com/2dvisio/2dvisio.github.io",
"owner": {
"username": "2dvisio",
"email": "[name.lastname]@gmail.com",
"twitter": "2dvisio"
},
"record": {
domains/email.ps.json
+1 -3
View File
@@ -1,9 +1,7 @@
{
"owner": {
"username": "PrivacySecured",
"email": "https://email.ps.is-a.dev/",
"OWL": "eyJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiYWxnIjoiUlNBLU9BRVAiLCJraWQiOiJaa1VsRmRqVThiUEstLXVVM2JJR09PVHFYYVFFS1ZINFVXOW53MTR6WTJnIn0.VoJDQtbSUW3kYsQ0IuIE4CTIomV-e8GVUO2wS0fZp_-DkO6QltgcnKL_mAqMH5Salut7IGMZy48HExbambDrl11jQWwYHBAqqyAuAlxsqnUh83KGY3UKYfQzA8eRkdCPTth1pxvyXfUFnAnjEtmJLMNTSCds-J8fmcIkNEu-xT2UMEjxPQkoN8sJ7EA8YTHn4t3078D8tMr3AV5DJ1rg0QnuFwjra5FbjuJGHeYenEzS-Tdha7LTUyTEbKrdqdxYNpN4pv45sNrVpsDZPt3sR1CgOnXNSsfVwjUm-5DRweNquJHUxSpNZblJnbWBErWyg9_NZvISrClpJZ4We48oDg.YdsO9C1ulWhtaJYei-z-Zg.8p4HE12styyP4JSTFrlLWMmfIUAOw1kDQWrAcqSOlqbbtujr4Ww-QyBuUBIQojGvuFKs3jflF5tuvIjOgU8hTOWxB2uS4KItHwpIsFeQo9i1OHSTzj0glP2ly-XMY1Wi.99kVL134lF7knduFKnqfGQ",
"notes": "I rarely go on my emails. If I do its because I needed a verification code."
"OWL": "eyJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiYWxnIjoiUlNBLU9BRVAiLCJraWQiOiJaa1VsRmRqVThiUEstLXVVM2JJR09PVHFYYVFFS1ZINFVXOW53MTR6WTJnIn0.VoJDQtbSUW3kYsQ0IuIE4CTIomV-e8GVUO2wS0fZp_-DkO6QltgcnKL_mAqMH5Salut7IGMZy48HExbambDrl11jQWwYHBAqqyAuAlxsqnUh83KGY3UKYfQzA8eRkdCPTth1pxvyXfUFnAnjEtmJLMNTSCds-J8fmcIkNEu-xT2UMEjxPQkoN8sJ7EA8YTHn4t3078D8tMr3AV5DJ1rg0QnuFwjra5FbjuJGHeYenEzS-Tdha7LTUyTEbKrdqdxYNpN4pv45sNrVpsDZPt3sR1CgOnXNSsfVwjUm-5DRweNquJHUxSpNZblJnbWBErWyg9_NZvISrClpJZ4We48oDg.YdsO9C1ulWhtaJYei-z-Zg.8p4HE12styyP4JSTFrlLWMmfIUAOw1kDQWrAcqSOlqbbtujr4Ww-QyBuUBIQojGvuFKs3jflF5tuvIjOgU8hTOWxB2uS4KItHwpIsFeQo9i1OHSTzj0glP2ly-XMY1Wi.99kVL134lF7knduFKnqfGQ"
},
"record": {
"URL": "http://scr.im/PrivSec"
domains/exigent-app.json
+1 -1
View File
@@ -1,6 +1,6 @@
{
"owner": {
"usernme": "Exigent07",
"username": "Exigent07",
"discord": "exigent07"
},
"record": {
domains/mail.boolean44.json
-10
View File
@@ -1,10 +0,0 @@
{
"owner": {
"username": "boolean44-repos",
"email": "serenitypalmer10@gmail.com"
},
"record": {
"MX": ["mx1.forwardemail.net", "mx2.forwardemail.net"],
"TXT": ["forward-email=palmerowen100@gmail.com"]
}
}
domains/mebius-.json → domains/mebius.json
View File
domains/naffy.json
-1
View File
@@ -3,7 +3,6 @@
"repo": "https://github.com/knownasnaffy/knownasnaffy.github.io",
"owner": {
"username": "knownasnaffy",
"email": "email@address",
"twitter": "dharni_naffy"
},
"record": {
domains/nicol.json
+1 -3
View File
@@ -2,9 +2,7 @@
"description": "Lina website",
"repo": "https://github.com/Linadevv/Linadevv.github.io",
"owner": {
"username": "Linadevv",
"email": "any@email",
"twitter": "Lina"
"username": "Linadevv"
},
"record": {
"CNAME": "Linadevv.github.io"
domains/pearlcz.json
+2 -2
View File
@@ -2,11 +2,11 @@
"description": "Making a website about me and my projects.",
"repo": "https://github.com/0pearlcz0/is-a.dev",
"owner": {
"username": "0pearl_cz0",
"username": "0pearlcz0",
"email": "vitekjurcik@gmail.com",
"twitter": "pearl_czoffic"
},
"record": {
"CNAME": "0pearl_cz0.github.io"
"CNAME": "0pearlcz0.github.io"
}
}
domains/ps.json
+1 -3
View File
@@ -1,9 +1,7 @@
{
"owner": {
"username": "PrivacySecured",
"email": "https://email.ps.is-a.dev/",
"OWL": "eyJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiYWxnIjoiUlNBLU9BRVAiLCJraWQiOiJaa1VsRmRqVThiUEstLXVVM2JJR09PVHFYYVFFS1ZINFVXOW53MTR6WTJnIn0.VoJDQtbSUW3kYsQ0IuIE4CTIomV-e8GVUO2wS0fZp_-DkO6QltgcnKL_mAqMH5Salut7IGMZy48HExbambDrl11jQWwYHBAqqyAuAlxsqnUh83KGY3UKYfQzA8eRkdCPTth1pxvyXfUFnAnjEtmJLMNTSCds-J8fmcIkNEu-xT2UMEjxPQkoN8sJ7EA8YTHn4t3078D8tMr3AV5DJ1rg0QnuFwjra5FbjuJGHeYenEzS-Tdha7LTUyTEbKrdqdxYNpN4pv45sNrVpsDZPt3sR1CgOnXNSsfVwjUm-5DRweNquJHUxSpNZblJnbWBErWyg9_NZvISrClpJZ4We48oDg.YdsO9C1ulWhtaJYei-z-Zg.8p4HE12styyP4JSTFrlLWMmfIUAOw1kDQWrAcqSOlqbbtujr4Ww-QyBuUBIQojGvuFKs3jflF5tuvIjOgU8hTOWxB2uS4KItHwpIsFeQo9i1OHSTzj0glP2ly-XMY1Wi.99kVL134lF7knduFKnqfGQ",
"notes": "I rarely go on my emails. If I do its because I needed a verification code."
"OWL": "eyJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiYWxnIjoiUlNBLU9BRVAiLCJraWQiOiJaa1VsRmRqVThiUEstLXVVM2JJR09PVHFYYVFFS1ZINFVXOW53MTR6WTJnIn0.VoJDQtbSUW3kYsQ0IuIE4CTIomV-e8GVUO2wS0fZp_-DkO6QltgcnKL_mAqMH5Salut7IGMZy48HExbambDrl11jQWwYHBAqqyAuAlxsqnUh83KGY3UKYfQzA8eRkdCPTth1pxvyXfUFnAnjEtmJLMNTSCds-J8fmcIkNEu-xT2UMEjxPQkoN8sJ7EA8YTHn4t3078D8tMr3AV5DJ1rg0QnuFwjra5FbjuJGHeYenEzS-Tdha7LTUyTEbKrdqdxYNpN4pv45sNrVpsDZPt3sR1CgOnXNSsfVwjUm-5DRweNquJHUxSpNZblJnbWBErWyg9_NZvISrClpJZ4We48oDg.YdsO9C1ulWhtaJYei-z-Zg.8p4HE12styyP4JSTFrlLWMmfIUAOw1kDQWrAcqSOlqbbtujr4Ww-QyBuUBIQojGvuFKs3jflF5tuvIjOgU8hTOWxB2uS4KItHwpIsFeQo9i1OHSTzj0glP2ly-XMY1Wi.99kVL134lF7knduFKnqfGQ"
},
"record": {
"CNAME": "privacysecured.github.io"
domains/sandbox.json
+8 -6
View File
@@ -9,11 +9,13 @@
"blue.foundationdns.net",
"blue.foundationdns.org"
],
"DS": {
"key_tag": 2371,
"algorithm": 13,
"digest_type": 2,
"digest": "023DD50C657C5F2471728B76127008F244CFB45F32AA0CE1978C0182D363EF12"
}
"DS": [
{
"key_tag": 2371,
"algorithm": 13,
"digest_type": 2,
"digest": "023DD50C657C5F2471728B76127008F244CFB45F32AA0CE1978C0182D363EF12"
}
]
}
}
domains/sdheeraj.json
+1 -1
View File
@@ -1,7 +1,7 @@
{
"owner": {
"username": "17sdheeraj",
"email": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJkYXRhIjp7InVzZXJfaWQiOiIxMzE4NDk3NjUiLCJ1c2VybmFtZSI6IjE3c2RoZWVyYWoiLCJlbWFpbCI6IjE3c2RoZWVyYWpAd2luZ2Fyci5ldS5vcmcifSwiZXhwaXJlc0luIjoiOTk5OXkiLCJpYXQiOjE3MjE1MzM2ODJ9.7wMG7oM75_RVLS7uWP0b0gqJOP_v9jsfxRq-UcqPlgM"
"OWL": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJkYXRhIjp7InVzZXJfaWQiOiIxMzE4NDk3NjUiLCJ1c2VybmFtZSI6IjE3c2RoZWVyYWoiLCJlbWFpbCI6IjE3c2RoZWVyYWpAd2luZ2Fyci5ldS5vcmcifSwiZXhwaXJlc0luIjoiOTk5OXkiLCJpYXQiOjE3MjE1MzM2ODJ9.7wMG7oM75_RVLS7uWP0b0gqJOP_v9jsfxRq-UcqPlgM"
},
"record": {
"CNAME": "17sdheeraj.github.io"
domains/tim.json
+1 -2
View File
@@ -1,8 +1,7 @@
{
"description": "Tim is a Dev",
"owner": {
"username": "xorob0",
"email": "xorob0@toum"
"username": "xorob0"
},
"repo": "https://github.com/xorob0/register",
"record": {
domains/xabdoat.json
-1
View File
@@ -3,7 +3,6 @@
"repo": "https://github.com/xAbdoAT/xAbdoAT.github.io",
"owner": {
"username": "xAbdoAT",
"email": "email@address",
"twitter": "xAbdoAT"
},
"record": {
domains/zaid.json
+1 -1
View File
@@ -3,7 +3,7 @@
"repo": "https://github.com/zaidmukaddam/zaidmukaddam.github.io",
"owner": {
"username": "zaidmukaddam",
"email": "zaidlunatic1@gmail",
"email": "zaidlunatic1@gmail.com",
"twitter": "Zaid08079154"
},
"record": {
domains/zer0.json
-1
View File
@@ -1,7 +1,6 @@
{
"owner": {
"username": "Zer0Dev-exe",
"email": "zero",
"discord": "817515739711406140"
},
"record": {
domains/zerotwo.json
+1 -1
View File
@@ -3,7 +3,7 @@
"repo": "https://github.com/ZeroTwoDiscord/zerotwodiscord.github.io",
"owner": {
"username": "ConnorDoesDev",
"email": "connordoesdev@gmail.com / connor@zerotwo.sytes.net"
"email": "connordoesdev@gmail.com"
},
"record": {
"CNAME": "zerotwodiscord.github.io"
package-lock.json
Generated
+2437
View File
File diff suppressed because it is too large Load Diff
package.json
+9
View File
@@ -0,0 +1,9 @@
{
"devDependencies": {
"ava": "^6.2.0",
"fs-extra": "^11.2.0"
},
"scripts": {
"test": "npx ava tests/*.test.js"
}
}
tests/domains.test.js
+40
View File
@@ -0,0 +1,40 @@
const t = require("ava");
const fs = require("fs-extra");
const path = require("path");
const domainsPath = path.resolve("domains");
const files = fs.readdirSync(domainsPath);
// Nested subdomains should not exist if the parent subdomain does not exist
t("Nested subdomains should not exist without a parent subdomain", (t) => {
files.forEach((file) => {
const subdomain = file.replace(".json", "");
if (subdomain.split(".").length > 1) {
const parentSubdomain = subdomain.split(".").pop();
t.true(
files.includes(`${parentSubdomain}.json`),
`${file}: Parent subdomain does not exist`
);
}
});
t.pass();
});
// Nested subdomains should not exist if the parent subdomain has NS records
t("Nested subdomains should not exist if the parent subdomain has NS records", (t) => {
files.forEach((file) => {
const subdomain = file.replace(".json", "");
if (subdomain.split(".").length > 1) {
const parentSubdomain = subdomain.split(".").pop();
const parentDomain = fs.readJsonSync(path.join(domainsPath, `${parentSubdomain}.json`));
t.is(parentDomain.record.NS, undefined, `${file}: Parent subdomain has NS records`);
}
});
t.pass();
});
tests/json.test.js
+107
View File
@@ -0,0 +1,107 @@
const t = require("ava");
const fs = require("fs-extra");
const path = require("path");
const requiredFields = {
owner: "object",
record: "object",
};
const optionalFields = {
proxied: "boolean",
reserved: "boolean",
};
const requiredOwnerFields = {
username: "string",
};
const optionalOwnerFields = {
email: "string",
};
const emailRegex = /^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$/;
const hostnameRegex =
/^(?=.{1,253}$)(?:(?:[_a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)\.)+[a-zA-Z]{2,63}$/;
const domainsPath = path.resolve("domains");
const files = fs.readdirSync(domainsPath);
const validateRequiredFields = (t, obj, requiredFields, file) => {
Object.keys(requiredFields).forEach((key) => {
t.true(obj.hasOwnProperty(key), `${file}: Missing required field: ${key}`);
t.is(
typeof obj[key],
requiredFields[key],
`${file}: Field ${key} should be of type ${requiredFields[key]}`
);
});
};
const validateOptionalFields = (t, obj, optionalFields, file) => {
Object.keys(optionalFields).forEach((key) => {
if (obj.hasOwnProperty(key)) {
t.is(
typeof obj[key],
optionalFields[key],
`${file}: Field ${key} should be of type ${optionalFields[key]}`
);
}
});
};
// Ensure all files are valid JSON
t("All files should be valid JSON", (t) => {
files.forEach((file) => {
t.notThrows(() => fs.readJsonSync(path.join(domainsPath, file)), `${file}: Invalid JSON file`);
});
});
// Ensure all files have the required fields
t("All files should have valid file names", (t) => {
files.forEach((file) => {
t.true(file.endsWith(".json"), `${file}: File does not have .json extension`);
t.false(file.includes(".is-a.dev"), `${file}: File name should not contain .is-a.dev`);
// Ignore root domain
if (file !== "@.json") {
t.regex(
file.replace(/\.json$/, "") + ".is-a.dev",
hostnameRegex,
`${file}: FQDN must be 1-253 characters, use letters, numbers, dots, or hyphens, and not start or end with a hyphen.`
);
}
});
});
// Ensure all files have the required fields
t("All files should have the required fields", (t) => {
files.forEach((file) => {
const data = fs.readJsonSync(path.join(domainsPath, file));
validateRequiredFields(t, data, requiredFields, file);
validateRequiredFields(t, data.owner, requiredOwnerFields, file);
if (!data.reserved) {
t.true(Object.keys(data.record).length > 0, `${file}: No record types found`);
}
});
});
// Validate the optional fields
t("All files should have valid optional fields", (t) => {
files.forEach((file) => {
const data = fs.readJsonSync(path.join(domainsPath, file));
validateOptionalFields(t, data, optionalFields, file);
validateOptionalFields(t, data.owner, optionalOwnerFields, file);
if (data.owner.email) {
t.regex(
data.owner.email,
emailRegex,
`${file}: Owner email should be a valid email address`
);
}
});
});
tests/records.test.js
+290
View File
@@ -0,0 +1,290 @@
const t = require("ava");
const fs = require("fs-extra");
const path = require("path");
const { expandIPv6, isPublicIPv4, isPublicIPv6 } = require("../utils/functions");
const validRecordTypes = ["A", "AAAA", "CAA", "CNAME", "DS", "MX", "NS", "SRV", "TXT", "URL"];
const hostnameRegex =
/^(?=.{1,253}$)(?:(?:[_a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)\.)+[a-zA-Z]{2,63}$/;
const ipv4Regex =
/^(25[0-5]|2[0-4][0-9]|1[0-9]{2}|[1-9]?[0-9])(\.(25[0-5]|2[0-4][0-9]|1[0-9]{2}|[1-9]?[0-9])){3}$/;
const ipv6Regex =
/^(?:[0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}$|^::(?:[0-9a-fA-F]{1,4}:){0,6}[0-9a-fA-F]{1,4}$|^(?:[0-9a-fA-F]{1,4}:){1,7}:$|^(?:[0-9a-fA-F]{1,4}:){0,6}::(?:[0-9a-fA-F]{1,4}:){0,5}[0-9a-fA-F]{1,4}$/;
const domainsPath = path.resolve("domains");
const files = fs.readdirSync(domainsPath);
// Validate the record object key names
t("All files should have valid record types", (t) => {
files.forEach((file) => {
const data = fs.readJsonSync(path.join(domainsPath, file));
const recordKeys = Object.keys(data.record);
recordKeys.forEach((key) => {
t.true(validRecordTypes.includes(key), `${file}: Invalid record type: ${key}`);
});
// CNAME records cannot be combined with any other record type
if (recordKeys.includes("CNAME")) {
t.is(recordKeys.length, Number(1), `${file}: CNAME records cannot be combined with other records`);
}
// NS records cannot be combined with any other record type, except for DS records
if (recordKeys.includes("NS")) {
t.true(
recordKeys.length === 1 || recordKeys.length === 2 && recordKeys.includes("DS"),
`${file}: NS records cannot be combined with other records, except for DS records`
);
}
// DS records must be combined with NS records
if (recordKeys.includes("DS")) {
t.true(
recordKeys.includes("NS"),
`${file}: DS records must be combined with NS records`
);
}
});
});
// Ensure there are no duplicate keys in the record object
t("All files should not have duplicate record keys", (t) => {
files.forEach((file) => {
const data = fs.readJsonSync(path.join(domainsPath, file));
const recordKeys = Object.keys(data.record);
const uniqueRecordKeys = new Set(recordKeys);
t.is(recordKeys.length, uniqueRecordKeys.size, `${file}: Duplicate record keys found`);
});
});
// Validate the values of the record object's keys
t("All files should have valid record values", (t) => {
files.forEach((file) => {
const data = fs.readJsonSync(path.join(domainsPath, file));
Object.keys(data.record).forEach((key) => {
const value = data.record[key];
// These records must be an array of strings
if (["A", "AAAA", "MX", "NS"].includes(key)) {
t.true(Array.isArray(value), `${file}: Record value should be an array for ${key}`);
value.forEach((record) => {
t.true(
typeof record === "string",
`${file}: Record value should be a string for ${key}`
);
});
if (key === "A") {
value.forEach((record) => {
t.regex(
record,
ipv4Regex,
`${file}: Record value should be a valid IPv4 address for ${key} at index ${value.indexOf(
record
)}`
);
t.true(
isPublicIPv4(record, data.proxied),
`${file}: Record value should be a public IPv4 address for ${key} at index ${value.indexOf(
record
)}`
);
});
}
if (key === "AAAA") {
value.forEach((record) => {
t.regex(
expandIPv6(record),
ipv6Regex,
`${file}: Record value should be a valid IPv6 address for ${key} at index ${value.indexOf(
record
)}`
);
t.true(
isPublicIPv6(record),
`${file}: Record value should be a public IPv6 address for ${key} at index ${value.indexOf(
record
)}`
);
});
}
if (["MX", "NS"].includes(key)) {
value.forEach((record) => {
t.regex(
record,
hostnameRegex,
`${file}: Record value should be a valid hostname for ${key} at index ${value.indexOf(
record
)}`
);
});
}
}
// These records must be strings
if (["CNAME", "URL"].includes(key)) {
t.true(
typeof value === "string",
`${file}: Record value should be a string for ${key}`
);
if (key === "CNAME") {
t.regex(
value,
hostnameRegex,
`${file}: Record value should be a valid hostname for ${key}`
);
}
if (key === "URL") {
try {
new URL(value);
} catch (error) {
t.fail(`${file}: Record value should be a valid URL for ${key}`);
}
}
}
// These records must be arrays of objects
if (["CAA", "DS", "SRV"].includes(key)) {
t.true(Array.isArray(value), `${file}: Record value should be an array for ${key}`);
value.forEach((record) => {
t.true(
typeof record === "object",
`${file}: Record value should be an object for ${key} at index ${value.indexOf(
record
)}`
);
});
if (key === "CAA") {
value.forEach((record) => {
t.true(
typeof record.flags === "number",
`${file}: CAA record value should have a number for flags at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.tag === "string",
`${file}: CAA record value should have a string for tag at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.value === "string",
`${file}: CAA record value should have a string for value at index ${value.indexOf(
record
)}`
);
});
}
if (key === "DS") {
value.forEach((record) => {
t.true(
typeof record.key_tag === "number",
`${file}: DS record value should have a number for key_tag at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.algorithm === "number",
`${file}: DS record value should have a number for algorithm at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.digest_type === "number",
`${file}: DS record value should have a number for digest_type at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.digest === "string",
`${file}: DS record value should have a string for digest at index ${value.indexOf(
record
)}`
);
});
}
if (key === "SRV") {
value.forEach((record) => {
t.true(
typeof record.priority === "number",
`${file}: SRV record value should have a number for priority at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.weight === "number",
`${file}: SRV record value should have a number for weight at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.port === "number",
`${file}: SRV record value should have a number for port at index ${value.indexOf(
record
)}`
);
t.true(
typeof record.target === "string",
`${file}: SRV record value should have a string for target at index ${value.indexOf(
record
)}`
);
t.regex(
value.target,
hostnameRegex,
`${file}: SRV record value should be a valid hostname for target at index ${value.indexOf(
record
)}`
);
});
}
}
// TXT records must be either a string or array of strings
if (key === "TXT") {
if (Array.isArray(value)) {
value.forEach((record) => {
t.true(
typeof record === "string",
`${file}: Record value should be a string for ${key} at index ${value.indexOf(
record
)}`
);
});
} else {
t.true(
typeof value === "string",
`${file}: Record value should be a string for ${key}`
);
}
}
});
});
});
utils/functions.js
+66
View File
@@ -0,0 +1,66 @@
module.exports.expandIPv6 = function (ip) {
// Split into segments by ":"
let segments = ip.split(":");
// Count the number of segments that are empty due to "::" shorthand
const emptyIndex = segments.indexOf("");
if (emptyIndex !== -1) {
// Calculate how many "0000" segments are missing
const nonEmptySegments = segments.filter((seg) => seg !== "");
const missingSegments = 8 - nonEmptySegments.length;
// Insert the missing "0000" segments into the position of the empty segment
segments = [...nonEmptySegments.slice(0, emptyIndex), ...Array(missingSegments).fill("0000"), ...nonEmptySegments.slice(emptyIndex)];
}
// Expand each segment to 4 characters, padding with leading zeros
const expandedSegments = segments.map((segment) => segment.padStart(4, "0"));
// Join the segments back together
return expandedSegments.join(":");
};
module.exports.isPublicIPv4 = function (ip, proxied) {
const parts = ip.split('.').map(Number);
// Validate IPv4 address format
if (parts.length !== 4 || parts.some(part => isNaN(part) || part < 0 || part > 255)) {
return false;
}
// Exception for 192.0.2.1, assuming the domain is proxied
if (ip === "192.0.2.1" && proxied) {
return true;
}
// Check for private and reserved IPv4 ranges
return !(
// Private ranges
parts[0] === 10 ||
(parts[0] === 172 && parts[1] >= 16 && parts[1] <= 31) ||
(parts[0] === 192 && parts[1] === 168) ||
// Reserved or special-use ranges
(parts[0] === 100 && parts[1] >= 64 && parts[1] <= 127) || // Carrier-grade NAT
(parts[0] === 169 && parts[1] === 254) || // Link-local
(parts[0] === 192 && parts[1] === 0 && parts[2] === 0) || // IETF Protocol Assignments
(parts[0] === 192 && parts[1] === 0 && parts[2] === 2) || // Documentation (TEST-NET-1)
(parts[0] === 198 && parts[1] === 18) || // Network Interconnect Devices
(parts[0] === 198 && parts[1] === 51 && parts[2] === 100) || // Documentation (TEST-NET-2)
(parts[0] === 203 && parts[1] === 0 && parts[2] === 113) || // Documentation (TEST-NET-3)
(parts[0] >= 224) // Multicast and reserved ranges
);
};
module.exports.isPublicIPv6 = function (ip) {
const normalizedIP = ip.toLowerCase();
// Check for private or special-use IPv6 ranges
return !(
normalizedIP.startsWith("fc") || // Unique Local Address (ULA)
normalizedIP.startsWith("fd") || // Unique Local Address (ULA)
normalizedIP.startsWith("fe80") || // Link-local
normalizedIP.startsWith("::1") || // Loopback address (::1)
normalizedIP.startsWith("2001:db8") // Documentation range
);
};