WebServiceApi: updated ResolveQueryAsync() to detect if new primary zone is to be created.

2023-09-23 18:12:41 +05:30 · 2023-09-23 18:12:41 +05:30 · 85b4ff4152
commit 85b4ff4152
parent 3d43c9894d
1 changed files with 21 additions and 1 deletions
--- a/DnsServerCore/WebServiceApi.cs
+++ b/DnsServerCore/WebServiceApi.cs
@ -321,8 +321,28 @@ namespace DnsServerCore

            if (importResponse)
            {
+                bool isZoneImport = false;
+
+                if (type == DnsResourceRecordType.AXFR)
+                {
+                    isZoneImport = true;
+                }
+                else
+                {
+                    foreach (DnsResourceRecord record in dnsResponse.Answer)
+                    {
+                        if (record.Type == DnsResourceRecordType.SOA)
+                        {
+                            if (record.Name.Equals(domain, StringComparison.OrdinalIgnoreCase))
+                                isZoneImport = true;
+
+                            break;
+                        }
+                    }
+                }
+
                AuthZoneInfo zoneInfo = _dnsWebService.DnsServer.AuthZoneManager.FindAuthZoneInfo(domain);
-                if ((zoneInfo is null) || ((zoneInfo.Type == AuthZoneType.Secondary) && !zoneInfo.Name.Equals(domain, StringComparison.OrdinalIgnoreCase)))
+                if ((zoneInfo is null) || ((zoneInfo.Type != AuthZoneType.Primary) && !zoneInfo.Name.Equals(domain, StringComparison.OrdinalIgnoreCase)) || (isZoneImport && !zoneInfo.Name.Equals(domain, StringComparison.OrdinalIgnoreCase)))
                {
                    if (!_dnsWebService._authManager.IsPermitted(PermissionSection.Zones, session.User, PermissionFlag.Modify))
                        throw new DnsWebServiceException("Access was denied.");