├── .github
    └── FUNDING.yml
├── .gitignore
├── LICENSE
├── README.md
├── add_domain.php
├── auth.php
├── cf.class.php
├── config.php
├── delete_domain.php
├── domains.php
├── edit_record.php
├── footer.php
├── header.php
├── index.php
└── manage_domain.php


/.github/FUNDING.yml:
--------------------------------------------------------------------------------
 1 | # These are supported funding model platforms
 2 | 
 3 | github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
 4 | patreon: # Replace with a single Patreon username
 5 | open_collective: # Replace with a single Open Collective username
 6 | ko_fi: # Replace with a single Ko-fi username
 7 | tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
 8 | community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
 9 | liberapay: # Replace with a single Liberapay username
10 | issuehunt: # Replace with a single IssueHunt username
11 | otechie: # Replace with a single Otechie username
12 | custom: ['https://blog.yuzu.im/donate'] # Replace with up to 4 custom sponsorship URLs e.g., ['link1', 'link2']
13 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | .idea
2 | config.php


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2018 131
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # CFPMP
 2 | Cloudflare Partner Management Panel
 3 | 
 4 | 打开config.php，根据里面的注释进行设置后即可使用
 5 | 
 6 | ## 功能
 7 | * CNAME接入
 8 | * reCAPTCHA
 9 | * 设置回源地址为IP（基于sslip.io）（默认关闭此功能）
10 | * 通过 TXT 记录验证域名是否受用户控制
11 | 
12 | 可用实例：[https://cf.yuzu.im/](https://cf.yuzu.im/)  
13 | 


--------------------------------------------------------------------------------
/add_domain.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | include_once("cf.class.php");
 3 | 
 4 | $cloudflare->is_login();
 5 | 
 6 | function msg($s)
 7 | {
 8 |     $_SESSION["msg"] = $s;
 9 |     header("Location: domains.php");
10 |     exit(0);
11 | }
12 | 
13 | if (empty($_POST["domain"])) {
14 |     msg("域名不能为空");
15 | }
16 | 
17 | if (Enable_TXT_Verification){
18 |     if (!$cloudflare->check_txt_record($_POST["domain"])){
19 |         msg("TXT 记录验证失败");
20 |     }
21 | }
22 | 
23 | $r = $cloudflare->zone_set($_POST["domain"], $_POST["domain"], "www:" . $_POST["domain"]);
24 | 
25 | if ($r["result"] == "success") {
26 |     msg("添加成功");
27 | } else {
28 |     if (empty($r["msg"])) {
29 |         msg("请刷新本页面以确认域名是否添加成功");
30 |     } else {
31 |         msg("添加失败：" . $r["msg"]);
32 |     }
33 | }
34 | 


--------------------------------------------------------------------------------
/auth.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | include_once("cf.class.php");
 4 | 
 5 | function msg($s)
 6 | {
 7 |     $_SESSION["login_msg"] = $s;
 8 |     header("Location: index.php");
 9 |     exit(0);
10 | }
11 | 
12 | if (Enable_reCAPTCHA) {
13 |     if (!empty($_POST["g-recaptcha-response"])) {
14 |         if (!($cloudflare->reCAPTCHA($_POST["g-recaptcha-response"]))) {
15 |             msg("请完成验证码");
16 |         }
17 |     } else {
18 |         msg("请完成验证码");
19 |     }
20 | }
21 | 
22 | if ((!empty($_POST["email"])) && (!empty($_POST["password"]))) {
23 |     $r = $cloudflare->login($_POST["email"], $_POST["password"]);
24 |     if ($r["result"] == "success") {
25 |         $_SESSION["user_key"] = $r["response"]["user_key"];
26 |         $_SESSION["email"] = $r["response"]["cloudflare_email"];
27 |         $_SESSION["api_key"] = $r["response"]["user_api_key"];
28 |         //if (Enable_TXT_Verification) $_SESSION["txt_verification"] = password_hash(Random_String.$_SESSION["email"],PASSWORD_BCRYPT );
29 |         header("Location: domains.php");
30 |     } else {
31 |         msg("失败：" . $r["msg"]);
32 |     }
33 | } else {
34 |     msg("用户名和密码不能为空");
35 | }
36 | 


--------------------------------------------------------------------------------
/cf.class.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | include_once("config.php");
  4 | 
  5 | if (Enable_TXT_Verification&&(strlen(Random_String)<64)){
  6 |     die("Please set Random_String in config.php or disable TXT record verification");
  7 | }
  8 | 
  9 | session_start();
 10 | 
 11 | class CF
 12 | {
 13 |     public function post($data)
 14 |     {
 15 |         $data["host_key"] = HOST_KEY;
 16 |         $ch = curl_init();
 17 |         curl_setopt($ch, CURLOPT_URL, "https://api.cloudflare.com/host-gw.html");
 18 |         curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
 19 |         curl_setopt($ch, CURLOPT_TIMEOUT, 10);
 20 |         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
 21 |         $r = curl_exec($ch);
 22 |         curl_close($ch);
 23 |         return json_decode($r, true);
 24 |     }
 25 | 
 26 |     public function user_api_get($url){
 27 |         $ch = curl_init();
 28 |         curl_setopt($ch, CURLOPT_URL, $url);
 29 |         curl_setopt($ch, CURLOPT_TIMEOUT, 10);
 30 |         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
 31 |         curl_setopt($ch, CURLOPT_HTTPHEADER, array(
 32 |             'Content-Type: application/json',
 33 |             'X-Auth-Email: ' . $_SESSION['email'],
 34 |             'X-Auth-Key: ' . $_SESSION['api_key'],
 35 |         ));
 36 |         $r = curl_exec($ch);
 37 |         curl_close($ch);
 38 |         return json_decode($r, true);
 39 |     }
 40 | 
 41 |     public function user_api_post($url, $data, $method = 'POST')
 42 |     {
 43 |         $ch = curl_init();
 44 |         $json = json_encode($data);
 45 |         curl_setopt($ch, CURLOPT_URL, $url);
 46 |         curl_setopt($ch, CURLOPT_HEADER, false);
 47 |         curl_setopt($ch, CURLOPT_POST, true);
 48 |         curl_setopt($ch, CURLOPT_POSTFIELDS, $json);
 49 |         curl_setopt($ch, CURLOPT_CUSTOMREQUEST, $method);
 50 |         curl_setopt($ch, CURLOPT_TIMEOUT, 10);
 51 |         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
 52 |         curl_setopt($ch, CURLOPT_HTTPHEADER, array(
 53 |             'Content-Type: application/json',
 54 |             'X-Auth-Email: ' . $_SESSION['email'],
 55 |             'X-Auth-Key: ' . $_SESSION['api_key'],
 56 |         ));
 57 |         $r = curl_exec($ch);
 58 |         curl_close($ch);
 59 |         return json_decode($r, true);
 60 |     }
 61 | 
 62 |     public function login($email, $password)
 63 |     {
 64 |         $data["act"] = (Allow_Register ? "user_create" : "user_auth");
 65 |         $data["cloudflare_email"] = $email;
 66 |         $data["cloudflare_pass"] = $password;
 67 |         $data["unique_id"] = NULL;
 68 |         return self::post($data);
 69 |     }
 70 | 
 71 |     public function logout()
 72 |     {
 73 |         if (!empty($_SESSION["email"])) {
 74 |             unset($_SESSION["email"]);
 75 |         }
 76 |         if (!empty($_SESSION["user_key"])) {
 77 |             unset($_SESSION["user_key"]);
 78 |         }
 79 |         if (!empty($_SESSION["api_key"])) {
 80 |             unset($_SESSION["api_key"]);
 81 |         }
 82 |     }
 83 | 
 84 |     public function is_login()
 85 |     {
 86 |         if ((empty($_SESSION["email"])) || (empty($_SESSION["user_key"])) || (empty($_SESSION["api_key"]))) {
 87 |             header("Location: index.php");
 88 |             exit(0);
 89 |         }
 90 |     }
 91 | 
 92 |     public function user_lookup()
 93 |     {
 94 |         $data["act"] = "user_lookup";
 95 |         $data["cloudflare_email"] = $_SESSION["email"];
 96 |         return self::post($data);
 97 |     }
 98 | 
 99 |     public function zone_set($zone_name, $resolve_to, $subdomains)
100 |     {
101 |         $data["act"] = "zone_set";
102 |         $data["user_key"] = $_SESSION["user_key"];
103 |         $data["zone_name"] = $zone_name;
104 |         $data["resolve_to"] = $resolve_to;
105 |         $data["subdomains"] = $subdomains;
106 |         return self::post($data);
107 |     }
108 | 
109 |     public function zone_delete($zone_name)
110 |     {
111 |         $data["act"] = "zone_delete";
112 |         $data["user_key"] = $_SESSION["user_key"];
113 |         $data["zone_name"] = $zone_name;
114 |         return self::post($data);
115 |     }
116 | 
117 |     public function zone_lookup($zone_name)
118 |     {
119 |         $data["act"] = "zone_lookup";
120 |         $data["user_key"] = $_SESSION["user_key"];
121 |         $data["zone_name"] = $zone_name;
122 |         return self::post($data);
123 |     }
124 | 
125 |     public function get_zone_id($zone_name)
126 |     {
127 |         return self::user_api_get("https://api.cloudflare.com/client/v4/zones?name=$zone_name")['result'][0]['id'];
128 |     }
129 | 
130 |     public function get_proxied_records($zone_name){
131 |         $zone_id = self::get_zone_id($zone_name);
132 |         return self::user_api_get("https://api.cloudflare.com/client/v4/zones/$zone_id/dns_records?type=CNAME&proxied=true&page=1&per_page=100&order=name&direction=asc&match=all");
133 |     }
134 | 
135 |     public function add_record($zone_id, $name, $content){
136 |         return self::user_api_post("https://api.cloudflare.com/client/v4/zones/$zone_id/dns_records", [
137 |             "type" => "CNAME",
138 |             "name" => $name,
139 |             "content" => self::add_suffix_for_ip($content),
140 |             "ttl" => 1,
141 |             "proxied" => true
142 |         ]);
143 |     }
144 | 
145 |     public function edit_record($zone_id, $record_id, $name, $content){
146 |         return self::user_api_post("https://api.cloudflare.com/client/v4/zones/$zone_id/dns_records/$record_id", [
147 |             'type' => 'CNAME',
148 |             'name' => $name,
149 |             'content' => self::add_suffix_for_ip($content),
150 |             'ttl' => 1,
151 |             "proxied" => true
152 |         ], "PUT");
153 |     }
154 | 
155 |     public function delete_record($zone_id, $record_id){
156 |         $data = self::user_api_post("https://api.cloudflare.com/client/v4/zones/$zone_id/dns_records/$record_id", [], "DELETE");
157 |         $data['result']['id']==$record_id ? $data['success'] = true : $data['success'] = false;
158 |         return $data;
159 |     }
160 | 
161 |     public function add_suffix_for_ip($content){
162 |         if (Enable_A_Record&&(filter_var($content, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4))){
163 |             return $content.".sslip.io";
164 |         }else{
165 |             return $content;
166 |         }
167 |     }
168 | 
169 |     public function reCAPTCHA($response)
170 |     {
171 |         $url = "https://www.recaptcha.net/recaptcha/api/siteverify";
172 |         $data = array(
173 |             "secret" => reCAPTCHA_Secret,
174 |             "response" => $response
175 |         );
176 |         $ch = curl_init();
177 |         curl_setopt($ch, CURLOPT_URL, $url);
178 |         curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
179 |         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
180 |         curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10);
181 |         $r = curl_exec($ch);
182 |         curl_close($ch);
183 |         $re = json_decode($r, true);
184 |         if (!empty($re["success"])) {
185 |             if ($re["success"] == "true") {
186 |                 return true;
187 |             } else {
188 |                 return false;
189 |             }
190 |         } else {
191 |             return false;
192 |         }
193 |     }
194 | 
195 |     public function check_txt_record($domain){
196 |         foreach(dns_get_record("cfpmp.".$domain, DNS_TXT) as $v){
197 |             if (password_verify(Random_String.$_SESSION["email"], $v["txt"])) return true;
198 |         }
199 |         return false;
200 |     }
201 | }
202 | 
203 | $cloudflare = new CF();


--------------------------------------------------------------------------------
/config.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | // Cloudflare Partners host key 
 4 | define("HOST_KEY", "");
 5 | 
 6 | // 站点名称
 7 | define("SITE_NAME", "");
 8 | 
 9 | // reCAPTCHA配置
10 | define("Enable_reCAPTCHA", false);
11 | define("reCAPTCHA_Site", "");
12 | define("reCAPTCHA_Secret", "");
13 | 
14 | //A记录解析（基于sslip.io）
15 | define("Enable_A_Record", false);
16 | 
17 | //允许用户通过面板直接注册
18 | define("Allow_Register", false);
19 | 
20 | //域名添加时验证 TXT 记录
21 | define("Enable_TXT_Verification", true);
22 | define("Random_String", "");  // 请务必设置，且保证至少64位并足够复杂


--------------------------------------------------------------------------------
/delete_domain.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | include_once("cf.class.php");
 3 | 
 4 | $cloudflare->is_login();
 5 | 
 6 | function msg($s)
 7 | {
 8 |     $_SESSION["msg"] = $s;
 9 |     header("Location: domains.php");
10 |     exit(0);
11 | }
12 | 
13 | if (empty($_POST["domain"])) {
14 |     msg("域名不能为空");
15 | }
16 | 
17 | $r = $cloudflare->zone_delete($_POST["domain"]);
18 | 
19 | if ($r["result"] == "success") {
20 |     msg("删除成功");
21 | } else {
22 |     msg("删除失败：" . $r["msg"]);
23 | }


--------------------------------------------------------------------------------
/domains.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | include_once("cf.class.php");
  4 | 
  5 | $cloudflare->is_login();
  6 | 
  7 | $r = $cloudflare->user_lookup();
  8 | 
  9 | include_once("header.php");
 10 | 
 11 | $output = '';
 12 | ?>
 13 | 
 14 | <div style="margin-top:25px" class="mdui-container">
 15 |     <div class="mdui-row">
 16 |         <div class="mdui-col-xs-12 mdui-col-sm-12 mdui-col-md-10 mdui-col-offset-md-1">
 17 | 
 18 |             <div class="mdui-container mdui-typo">
 19 |                 <div style="float:left">
 20 |                     <a href="./">Cloudflare Partners :
 21 |                         <?= SITE_NAME ?>
 22 |                     </a> >
 23 |                     <span>域名管理</span>
 24 |                     <br/>
 25 |                     <br/>
 26 |                 </div>
 27 |                 <div style="float:right">
 28 |                     <?= $_SESSION["email"] ?>.
 29 |                     <a href="./">登出</a>
 30 |                 </div>
 31 |             </div>
 32 | 
 33 | 
 34 |             <div class="mdui-card mdui-shadow-5">
 35 |                 <div class="mdui-card-content">
 36 |                     <div class="mdui-container mdui-typo">
 37 |                         <button mdui-dialog="{target: '#add_domain'}" style="display:inline"
 38 |                                 class="mdui-btn mdui-ripple mdui-shadow-4">添加域名
 39 |                         </button>
 40 | 
 41 |                         <?php if (($r["result"] == "success") && (!empty($r["response"]["hosted_zones"]))): ?>
 42 |                             <br/>
 43 |                             <br/>
 44 |                             <div class="mdui-table-fluid">
 45 |                                 <table class="mdui-table">
 46 |                                     <thead>
 47 |                                     <tr>
 48 |                                         <th>域名</th>
 49 |                                         <th class="mdui-table-col-numeric"></th>
 50 |                                         <th class="mdui-table-col-numeric"></th>
 51 |                                     </tr>
 52 |                                     </thead>
 53 |                                     <tbody>
 54 |                                     <?php
 55 |                                     foreach ($r["response"]["hosted_zones"] as $value) {
 56 |                                         $output .= '
 57 |             <tr>
 58 |             <td>' . $value . '</td>
 59 |             <td><a href="manage_domain.php?domain=' . $value . '">管理</a></td>
 60 |             <td><a href="" onclick="javascript:delete_domain(\'' . $value . '\');return false;">删除</a></td>
 61 |             </tr>
 62 |             ';
 63 |                                     }
 64 |                                     echo $output;
 65 |                                     ?>
 66 |                                     </tbody>
 67 |                                 </table>
 68 |                             </div>
 69 | 
 70 |                         <?php elseif ($r["result"] == "error"): ?>
 71 |                             <p>查询失败：
 72 |                             <?= $r["msg"]; ?>
 73 | 
 74 |                         <?php else: ?>
 75 |                             <p>无域名，赶紧添加一个吧！</p>
 76 |                         <?php endif; ?>
 77 | 
 78 |                     </div>
 79 |                 </div>
 80 |             </div>
 81 | 
 82 |         </div>
 83 |     </div>
 84 | </div>
 85 | 
 86 | <div class="mdui-dialog" id="add_domain">
 87 |     <div class="mdui-dialog-title">添加域名</div>
 88 |     <form method="post" action="add_domain.php" autocomplete="off">
 89 |         <div class="mdui-dialog-content">
 90 |             <div class="mdui-textfield mdui-textfield-floating-label">
 91 |                 <label class="mdui-textfield-label">域名</label>
 92 |                 <input class="mdui-textfield-input" name="domain" required/>
 93 |             </div>
 94 |             <?php if (Enable_TXT_Verification): ?>
 95 |             <p class="mdui-typo" style="text-align: center;">
 96 |                 请在此域名添加名称为 cfpmp 的 TXT 记录<code style="display: block;"><?=password_hash(Random_String.$_SESSION["email"],PASSWORD_BCRYPT)?></code>此记录可在验证完毕后删除
 97 |             </p>
 98 |             <p class="mdui-typo" style="text-align: center; color: red;">
 99 |                 因 Cloudflare Host API 更新，可能无法添加新域名。
100 |             </p>
101 |             <?php endif; ?>
102 |         </div>
103 |         <div class="mdui-dialog-actions">
104 |             <button type="button" class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
105 |             <input type="submit" class="mdui-btn mdui-ripple" value="添加"/>
106 |         </div>
107 |     </form>
108 | </div>
109 | 
110 | <div class="mdui-dialog" id="delete_domain">
111 |     <div class="mdui-dialog-title">删除域名</div>
112 |     <form method="post" action="delete_domain.php" autocomplete="off">
113 |         <div class="mdui-dialog-content">
114 |             <input type="hidden" value="" name="domain" id="delete_domainname1"/> 你确定要删除域名
115 |             <strong>
116 |                 <span id="delete_domainname2"></span>
117 |             </strong>吗？
118 |         </div>
119 |         <div class="mdui-dialog-actions">
120 |             <button type="button" class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
121 |             <input type="submit" class="mdui-btn mdui-ripple" value="确定"/>
122 |         </div>
123 |     </form>
124 | </div>
125 | 
126 | <div class="mdui-dialog" id="msg_dialog">
127 |     <div class="mdui-dialog-content">
128 |         <?php
129 |         if (!empty($_SESSION["msg"])) {
130 |             echo $_SESSION["msg"];
131 |         }
132 |         ?>
133 |     </div>
134 |     <div class="mdui-dialog-actions">
135 |         <button class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
136 |     </div>
137 | </div>
138 | 
139 | <script>
140 |     function delete_domain(domain) {
141 |         document.getElementById("delete_domainname2").innerHTML = domain;
142 |         document.getElementById("delete_domainname1").value = domain;
143 |         var inst = new mdui.Dialog("#delete_domain", {
144 |             history: false
145 |         });
146 |         inst.open();
147 |     }
148 | </script>
149 | 
150 | <?php
151 | $msg_script = <<<SCRIPT
152 | <script>
153 | var inst = new mdui.Dialog("#msg_dialog",{
154 |     history: false
155 | });
156 | inst.open();
157 | </script>
158 | SCRIPT;
159 | if (!empty($_SESSION["msg"])) {
160 |     echo $msg_script;
161 |     unset($_SESSION["msg"]);
162 | }
163 | 
164 | include_once("footer.php");
165 | ?>
166 | 


--------------------------------------------------------------------------------
/edit_record.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | include_once("cf.class.php");
 3 | 
 4 | $cloudflare->is_login();
 5 | 
 6 | function msg($s)
 7 | {
 8 |     $_SESSION["mng_msg"] = $s;
 9 |     header("Location: manage_domain.php?domain=" . $_POST["domain"]);
10 |     exit(0);
11 | }
12 | 
13 | if (empty($_POST["zone_id"])) {
14 |     $_SESSION["msg"] = "域名不能为空";
15 |     header("Location: domains.php");
16 |     exit(0);
17 | }
18 | 
19 | if (empty($_POST["action"])) {
20 |     msg("操作不存在");
21 | }
22 | 
23 | if (empty($_POST["record"])&&empty($_POST["record_id"])) {
24 |     msg("记录不能为空");
25 | }
26 | 
27 | $re = $cloudflare->zone_lookup($_POST["domain"]);
28 | if ($re["result"] != "success") {
29 |     msg("操作失败：" . $re["msg"]);
30 | }
31 | if ($re["response"]["zone_exists"] != true) {
32 |     msg("该域名未在Cloudflare接入");
33 | }
34 | if ($re["response"]["zone_hosted"] != true) {
35 |     msg("该域名未在" . SITE_NAME . "接入");
36 | }
37 | 
38 | if ($_POST["action"] == "delete") {
39 |     if (!empty($_POST["record_id"])) {
40 |         $result = $cloudflare->delete_record($_POST["zone_id"], $_POST["record_id"]);
41 |         if ($result["success"]) {
42 |             msg("删除成功");
43 |         } else {
44 |             msg("删除失败");
45 |         }
46 |     } else {
47 |         msg("缺少参数");
48 |     }
49 | } elseif ($_POST["action"] == "edit") {
50 |     if (!empty($_POST["record_id"])&&!empty($_POST["value"])&&!empty($_POST["record"])) {
51 |         $result = $cloudflare->edit_record($_POST["zone_id"], $_POST["record_id"], $_POST["record"], $_POST["value"]);
52 |         if ($result["success"]) {
53 |             msg("更新成功");
54 |         } else {
55 |             msg("更新失败：" . $result["errors"][0]["message"]);
56 |         }
57 |     } else {
58 |         msg("缺少参数");
59 |     }
60 | } elseif ($_POST["action"] == "add") {
61 |     if (!empty($_POST["value"])&&!empty($_POST["record"])) {
62 |         $result = $cloudflare->add_record($_POST["zone_id"], $_POST["record"], $_POST["value"]);
63 |         if ($result["success"]) {
64 |             msg("添加成功");
65 |         } else {
66 |             msg("添加失败：" . $result["errors"][0]["message"]);
67 |         }
68 |     } else {
69 |         msg("缺少参数");
70 |     }
71 | }
72 | 


--------------------------------------------------------------------------------
/footer.php:
--------------------------------------------------------------------------------
 1 | <br/>
 2 | <div class="mdui-typo">
 3 |     <center>
 4 |         <span>Supported by
 5 |             <a>
 6 |                 <?php echo SITE_NAME; ?>
 7 |             </a>.</span>
 8 |         <br/>
 9 |         <span>
10 |             <a href="https://github.com/Netrvin/CFPMP" target="_blank">CFPMP</a> v0.3.2</span> | <a href="https://github.com/Netrvin/CFPMP/wiki/Help" target="_blank">Help</a>
11 |     </center>
12 | </div>
13 | </body>
14 | 
15 | </html>
16 | 


--------------------------------------------------------------------------------
/header.php:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | 
 3 | <html>
 4 | 
 5 | <head>
 6 |     <title><?php echo SITE_NAME; ?> - Cloudflare Partners</title>
 7 |     <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
 8 |     <meta http-equiv="X-UA-Compatible" content="IE=edge, chrome=1"/>
 9 |     <meta name="renderer" content="webkit"/>
10 |     <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"/>
11 |     <meta itemprop="name" property="og:title" content="<?php echo SITE_NAME; ?> - Cloudflare Partners"/>
12 |     <meta name="description" itemprop="description" property="og:description" content="CNAME接入Cloudflare"/>
13 |     <meta name="description" content="<?php echo SITE_NAME; ?> - Cloudflare Partners, CNAME接入Cloudflare"/>
14 |     <meta name="keywords" content="<?php echo SITE_NAME; ?>,cloudflare,partner,partners,cname"/>
15 |     <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/mdui/0.4.0/css/mdui.min.css" integrity="sha512-+yIDKwPJNKAWsLPtQicDlRWuD69Dubc+qedGn9Ln5tfXBEPRPq5gJymgJMcTaSWIOOEjcsGI1j7Ug/p6hUYPJg==" crossorigin="anonymous" referrerpolicy="no-referrer" />
16 |     <script src="https://cdnjs.cloudflare.com/ajax/libs/mdui/0.4.0/js/mdui.min.js" integrity="sha512-cKJamv6BNekOACcKvq1s+rbCw1FdUrWSWjnRdHjySEUHBhLfSK4SyPAOgKJticgLbgri9wzIqkhMm4LydXUjAQ==" crossorigin="anonymous" referrerpolicy="no-referrer"></script>
17 |     <script src="https://www.recaptcha.net/recaptcha/api.js" async defer></script>
18 | </head>
19 | 
20 | <body class="mdui-theme-primary-blue mdui-theme-accent-light-blue mdui-color-grey-100">
21 | 


--------------------------------------------------------------------------------
/index.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | include_once("cf.class.php");
 4 | 
 5 | $cloudflare->logout();
 6 | 
 7 | include_once("header.php");
 8 | ?>
 9 | 
10 |     <div style="margin-top:25px" class="mdui-container">
11 |         <div class="mdui-row">
12 |             <div class="mdui-col-xs-12 mdui-col-offset-sm-3 mdui-col-offset-md-4 mdui-col-sm-6 mdui-col-md-4">
13 | 
14 |                 <div class="mdui-container mdui-typo">
15 |                     <div style="float:left">
16 |                         Cloudflare Partners :
17 |                         <?= SITE_NAME ?>
18 |                         <br/>
19 |                         <br/>
20 |                     </div>
21 |                 </div>
22 | 
23 |                 <div class="mdui-card mdui-shadow-5">
24 |                     <div class="mdui-card-content">
25 |                         <div class="mdui-container mdui-typo">
26 |                             <form method="post" action="auth.php">
27 | 
28 |                                 <center>
29 |                                     <h2>登入
30 |                                         <?php echo SITE_NAME; ?>
31 |                                     </h2>
32 |                                 </center>
33 |                                 <div class="mdui-textfield mdui-textfield-floating-label">
34 |                                     <label class="mdui-textfield-label">Cloudflare 邮箱</label>
35 |                                     <input class="mdui-textfield-input" name="email" type="email"/>
36 |                                 </div>
37 | 
38 |                                 <div class="mdui-textfield mdui-textfield-floating-label">
39 |                                     <label class="mdui-textfield-label">Cloudflare 密码</label>
40 |                                     <input class="mdui-textfield-input" name="password" type="password"/>
41 |                                 </div>
42 | 
43 |                                 <?php if (Enable_reCAPTCHA): ?>
44 |                                     <div class="g-recaptcha" data-sitekey="<?php echo reCAPTCHA_Site; ?>"></div>
45 |                                 <?php endif; ?>
46 | 
47 |                                 <div class="mdui-row-xs-1">
48 |                                     <div class="mdui-col">
49 |                                         <input type="submit" class="mdui-btn mdui-btn-block mdui-btn-raised mdui-ripple"
50 |                                                value="登录<?php if (Allow_Register): ?> / 注册<?php endif; ?>"/>
51 |                                     </div>
52 |                                 </div>
53 | 
54 |                             </form>
55 |                         </div>
56 |                     </div>
57 |                 </div>
58 | 
59 |             </div>
60 |         </div>
61 |     </div>
62 | 
63 |     <div class="mdui-dialog" id="error">
64 |         <div class="mdui-dialog-content">
65 |             <?php if (!empty($_SESSION["login_msg"])) {
66 |                 echo $_SESSION["login_msg"];
67 |             } ?>
68 |         </div>
69 |         <div class="mdui-dialog-actions">
70 |             <button class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
71 |         </div>
72 |     </div>
73 | 
74 | <?php
75 | $error = <<<SCRIPT
76 | <script>
77 | var inst = new mdui.Dialog("#error",{
78 |     history: false
79 | });
80 | inst.open();
81 | </script>
82 | SCRIPT;
83 | if (!empty($_SESSION["login_msg"])) {
84 |     echo $error;
85 |     unset($_SESSION["login_msg"]);
86 | }
87 | include_once("footer.php");
88 | ?>


--------------------------------------------------------------------------------
/manage_domain.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | include_once("cf.class.php");
  4 | 
  5 | $cloudflare->is_login();
  6 | 
  7 | function msg($s)
  8 | {
  9 |     $_SESSION["msg"] = $s;
 10 |     header("Location: domains.php");
 11 |     exit(0);
 12 | }
 13 | 
 14 | if (empty($_GET["domain"])) {
 15 |     msg("域名不能为空");
 16 | }
 17 | 
 18 | $re = $cloudflare->zone_lookup($_GET["domain"]);
 19 | if ($re["result"] != "success") {
 20 |     msg("查询失败：" . $re["msg"]);
 21 | }
 22 | if ($re["response"]["zone_exists"] != true) {
 23 |     msg("该域名未在Cloudflare接入");
 24 | }
 25 | if ($re["response"]["zone_hosted"] != true) {
 26 |     msg("该域名未在" . SITE_NAME . "接入");
 27 | }
 28 | 
 29 | $r = $cloudflare->get_proxied_records($_GET["domain"]);
 30 | $zone_id = $cloudflare->get_zone_id($_GET["domain"]);
 31 | 
 32 | if (!$r["success"]) {
 33 |     msg("查询失败：" . $r["errors"][0]["message"]);
 34 | }
 35 | 
 36 | include_once("header.php");
 37 | ?>
 38 | 
 39 | <div style="margin-top:25px" class="mdui-container">
 40 |     <div class="mdui-row">
 41 |         <div class="mdui-col-xs-12 mdui-col-sm-12 mdui-col-md-10 mdui-col-offset-md-1">
 42 | 
 43 |             <div class="mdui-container mdui-typo">
 44 |                 <div style="float:left">
 45 |                     <a href="./">Cloudflare Partners :
 46 |                         <?= SITE_NAME ?>
 47 |                     </a> >
 48 |                     <a href="domains.php">域名管理</a> >
 49 |                     <span>
 50 |             <?= $re['response']["zone_name"] ?>
 51 |           </span>
 52 |                     <br/>
 53 |                     <br/>
 54 |                 </div>
 55 |                 <div style="float:right">
 56 |                     <?= $_SESSION["email"] ?>.
 57 |                     <a href="./">登出</a>
 58 |                 </div>
 59 |             </div>
 60 | 
 61 |             <div class="mdui-card mdui-shadow-5">
 62 |                 <div class="mdui-card-content">
 63 |                     <div class="mdui-container mdui-typo">
 64 | 
 65 |                         <div class="mdui-table-fluid">
 66 |                             <table class="mdui-table mdui-table-hoverable">
 67 |                                 <thead>
 68 |                                 <tr>
 69 |                                     <th>
 70 |                                         <button style="display:inline;"
 71 |                                                 class="mdui-btn mdui-btn-icon mdui-ripple mdui-shadow-3"
 72 |                                                 onclick="javascript:add_record()"><i class="mdui-icon material-icons">&#xe145;</i>
 73 |                                         </button>
 74 |                                     </th>
 75 |                                     <th>记录</th>
 76 |                                     <th>CNAME记录</th>
 77 |                                     <th>回源地址</th>
 78 |                                 </tr>
 79 |                                 </thead>
 80 |                                 <tbody>
 81 |                                 <?php
 82 |                                 foreach ($r["result"] as $index => $data) {
 83 |                                     if ((Enable_A_Record) && (filter_var(str_replace('.sslip.io', '', $data['content']), FILTER_VALIDATE_IP, FILTER_FLAG_IPV4))) {
 84 |                                         $data['content'] = str_replace('.sslip.io', '', $data['content']);
 85 |                                     }
 86 |                                     echo "<tr>" .
 87 |                                         '<td><button style="display:inline;" class="mdui-btn mdui-btn-icon mdui-shadow-3 ';
 88 |                                     if ($is_ssl) {
 89 |                                         echo 'mdui-color-grey" mdui-tooltip="{content: \'请勿修改SSL配置记录\'}"';
 90 |                                     } else {
 91 |                                         echo 'mdui-ripple mdui-color-indigo" onclick="javascript:edit_record(\'' . $data['id'] . '\',\'' . substr($data['name'],0,strlen($data['name'])-strlen($data['zone_name'])-1) . '\',\'' . $data['content'] . '\')"';
 92 |                                     }
 93 |                                     echo '><i class="mdui-icon material-icons">&#xe3c9;</i></button><button onclick="javascript:delete_record(\'' . $data['id'] . '\',\'' . $data['name'] .'\')" style="display:inline;" class="mdui-btn mdui-btn-icon mdui-ripple mdui-shadow-3 mdui-color-red-900"><i class="mdui-icon material-icons">&#xe92b;</i></button></td>' .
 94 |                                         "<td>" . substr($data['name'],0,strlen($data['name'])-strlen($data['zone_name'])-1) . "</td><td>";
 95 |                                     echo $data['name'].'.cdn.cloudflare.net';
 96 |                                     echo '</td><td>' . $data['content'] . '</td></tr>';
 97 |                                 }
 98 |                                 ?>
 99 |                                 </tbody>
100 |                             </table>
101 |                         </div>
102 |                         <p>
103 |                             注
104 |                             (1)：必须设置一个<strong>www</strong>记录，否则会自动设置一个回源地址为<strong><?= $r["zone_name"] ?></strong>的<strong>www</strong>记录。本记录可不在DNS服务商配置
105 |                         </p>
106 |                         <?php if (!Enable_A_Record): ?>
107 |                             <p>
108 |                                 注 (3)：回源地址以<strong>CNAME</strong>形式填写，暂时不支持<strong>A</strong>记录和<strong>AAAA</strong>记录
109 |                             </p>
110 |                         <?php endif; ?>
111 |                     </div>
112 |                 </div>
113 |             </div>
114 | 
115 |         </div>
116 |     </div>
117 | </div>
118 | 
119 | <div class="mdui-dialog" id="delete_record">
120 |     <div class="mdui-dialog-title">删除记录</div>
121 |     <form method="post" action="edit_record.php" autocomplete="off">
122 |         <div class="mdui-dialog-content">
123 |             <input type="hidden" value="delete" name="action"/>
124 |             <input type="hidden" value="<?= $zone_id ?>" name="zone_id"/>
125 |             <input type="hidden" value="<?= $re['response']["zone_name"] ?>" name="domain"/>
126 |             <input type="hidden" value="" id="delete_record_id" name="record_id"/>
127 |             <input type="hidden" value="" name="record" id="delete_record1"/> 你确定要删除记录
128 |             <strong>
129 |                 <span id="delete_record2"></span>
130 |             </strong>吗？
131 |         </div>
132 |         <div class="mdui-dialog-actions">
133 |             <button type="button" class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
134 |             <input type="submit" class="mdui-btn mdui-ripple mdui-color-red-900" value="确定"/>
135 |         </div>
136 |     </form>
137 | </div>
138 | 
139 | <div class="mdui-dialog" id="edit_record">
140 |     <div class="mdui-dialog-title" id="edit_record_title">修改记录</div>
141 |     <form method="post" action="edit_record.php" autocomplete="off">
142 |         <div class="mdui-dialog-content">
143 |             <input type="hidden" value="edit" id="edit_record_type" name="action"/>
144 |             <input type="hidden" value="<?= $zone_id ?>" name="zone_id"/>
145 |             <input type="hidden" value="<?= $re['response']["zone_name"] ?>" name="domain"/>
146 |             <input type="hidden" value="" id="edit_record_id" name="record_id"/>
147 |             <div class="mdui-textfield mdui-textfield-floating-label">
148 |                 <label class="mdui-textfield-label">记录</label>
149 |                 <input class="mdui-textfield-input" id="edit_record1" name="record" required/>
150 |             </div>
151 |             <div class="mdui-textfield mdui-textfield-floating-label">
152 |                 <label class="mdui-textfield-label">回源地址</label>
153 |                 <input class="mdui-textfield-input" id="edit_record2" name="value" required/>
154 |             </div>
155 |         </div>
156 |         <div class="mdui-dialog-actions">
157 |             <button type="button" class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
158 |             <input type="submit" class="mdui-btn mdui-ripple mdui-color-green mdui-text-color-white" value="确定"/>
159 |         </div>
160 |     </form>
161 | </div>
162 | 
163 | <script>
164 |     function delete_record(id, record) {
165 |         document.getElementById("delete_record2").innerHTML = record;
166 |         document.getElementById("delete_record1").value = record;
167 |         document.getElementById("delete_record_id").value = id;
168 |         var inst = new mdui.Dialog("#delete_record", {
169 |             history: false
170 |         });
171 |         inst.open();
172 |     }
173 | 
174 |     function add_record() {
175 |         document.getElementById("edit_record_title").innerHTML = "添加记录";
176 |         document.getElementById("edit_record1").value = "";
177 |         document.getElementById("edit_record2").value = "";
178 |         document.getElementById("edit_record_type").value = "add";
179 |         //document.getElementById("edit_record1").removeAttribute("disabled");
180 |         mdui.updateTextFields();
181 |         var inst = new mdui.Dialog("#edit_record", {
182 |             history: false
183 |         });
184 |         inst.open();
185 |     }
186 | 
187 |     function edit_record(id, record, value) {
188 |         document.getElementById("edit_record_title").innerHTML = "修改记录";
189 |         document.getElementById("edit_record1").value = record;
190 |         //document.getElementById("edit_record1").setAttribute("disabled", "true");
191 |         document.getElementById("edit_record2").value = value;
192 |         document.getElementById("edit_record_id").value = id;
193 |         document.getElementById("edit_record_type").value = "edit";
194 |         mdui.updateTextFields();
195 |         var inst = new mdui.Dialog("#edit_record", {
196 |             history: false
197 |         });
198 |         inst.open();
199 |     }
200 | </script>
201 | 
202 | <div class="mdui-dialog" id="msg_dialog">
203 |     <div class="mdui-dialog-content">
204 |         <?php
205 |         if (!empty($_SESSION["mng_msg"])) {
206 |             echo $_SESSION["mng_msg"];
207 |         }
208 |         ?>
209 |     </div>
210 |     <div class="mdui-dialog-actions">
211 |         <button class="mdui-btn mdui-ripple" mdui-dialog-close>关闭</button>
212 |     </div>
213 | </div>
214 | 
215 | <?php
216 | $msg_script = <<<SCRIPT
217 | <script>
218 | var inst = new mdui.Dialog("#msg_dialog",{
219 |     history: false
220 | });
221 | inst.open();
222 | </script>
223 | SCRIPT;
224 | if (!empty($_SESSION["mng_msg"])) {
225 |     echo $msg_script;
226 |     unset($_SESSION["mng_msg"]);
227 | }
228 | 
229 | include_once("footer.php");
230 | ?>
231 | 


--------------------------------------------------------------------------------