[PR #2432] [MERGED] feat(integration): add domain CRUD endpoints to integration API #13820

New Issue

Closed

opened 2026-05-13 19:07:24 -05:00 by GiteaMirror · 0 comments

GiteaMirror commented 2026-05-13 19:07:24 -05:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/fosrl/pangolin/pull/2432
Author: @ChanningHe
Created: 2/8/2026
Status: ✅ Merged
Merged: 3/1/2026
Merged by: @oschwartz10612

Base: dev ← Head: feat-integration-api-domain-crud

---

📝 Commits (1)

• 52f2639 feat(integration): add domain CRUD endpoints to integration API

📊 Changes

5 files changed (+159 additions, -2 deletions)

View changed files

📝 messages/en-US.json (+6 -0)
📝 server/middlewares/integration/index.ts (+1 -0)
➕ server/middlewares/integration/verifyApiKeyDomainAccess.ts (+90 -0)
📝 server/routers/integration.ts (+52 -1)
📝 src/components/PermissionsSelectBox.tsx (+10 -1)

📄 Description

Community Contribution License Agreement

By creating this pull request, I grant the project maintainers an unlimited,
perpetual license to use, modify, and redistribute these contributions under any terms they
choose, including both the AGPLv3 and the Fossorial Commercial license terms. I
represent that I have the right to grant this license for all contributed content.

Description

• Add 6 domain CRUD endpoints to integration API (get, create, update, delete, dns-records, restart)
• Create verifyApiKeyDomainAccess middleware for domain-org ownership validation
• Enable API key holders to fully manage domains programmatically

How to test?

API_KEY="xxxxxx"
ORG_ID="test-org"
BASE_URL="http://localhost:3003/v1"

# --- 1. Create a domain (PUT) ---
curl -s -X PUT "$BASE_URL/org/$ORG_ID/domain" \
  -H "Authorization: Bearer $API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"type": "wildcard", "baseDomain": "test.example.com"}'
# Expected: 201 Created, response includes domainId

# --- 2. Get a domain (GET) ---
DOMAIN_ID="<domainId from step 1>"
curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \
  -H "Authorization: Bearer $API_KEY"
# Expected: 200 OK, returns domain details

# --- 3. Get DNS records (GET) ---
curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID/dns-records" \
  -H "Authorization: Bearer $API_KEY"
# Expected: 200 OK, returns array of DNS records

# --- 4. Update a domain (PATCH) ---
curl -s -X PATCH "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \
  -H "Authorization: Bearer $API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"preferWildcardCert": true}'
# Expected: 200 OK, returns updated domain

# --- 5. Restart a domain (POST) ---
curl -s -X POST "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID/restart" \
  -H "Authorization: Bearer $API_KEY"
# Expected: 200 OK

# --- 6. Delete a domain (DELETE) ---
curl -s -X DELETE "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \
  -H "Authorization: Bearer $API_KEY"
# Expected: 200 OK

# --- 7. Verify deletion (GET should return 404) ---
curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \
  -H "Authorization: Bearer $API_KEY"
# Expected: 404 Not Found

# --- Security tests ---

# No auth → 401
curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID"
# Expected: 401 Unauthorized

# Wrong org → 403
curl -s "$BASE_URL/org/wrong-org/domain/$DOMAIN_ID" \
  -H "Authorization: Bearer $API_KEY"
# Expected: 403 Forbidden

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/fosrl/pangolin/pull/2432 **Author:** [@ChanningHe](https://github.com/ChanningHe) **Created:** 2/8/2026 **Status:** ✅ Merged **Merged:** 3/1/2026 **Merged by:** [@oschwartz10612](https://github.com/oschwartz10612) **Base:** `dev` ← **Head:** `feat-integration-api-domain-crud` --- ### 📝 Commits (1) - [`52f2639`](https://github.com/fosrl/pangolin/commit/52f26396ac81a169cfb2cb93e816c8ff2fe9461f) feat(integration): add domain CRUD endpoints to integration API ### 📊 Changes **5 files changed** (+159 additions, -2 deletions) <details> <summary>View changed files</summary> 📝 `messages/en-US.json` (+6 -0) 📝 `server/middlewares/integration/index.ts` (+1 -0) ➕ `server/middlewares/integration/verifyApiKeyDomainAccess.ts` (+90 -0) 📝 `server/routers/integration.ts` (+52 -1) 📝 `src/components/PermissionsSelectBox.tsx` (+10 -1) </details> ### 📄 Description ## Community Contribution License Agreement By creating this pull request, I grant the project maintainers an unlimited, perpetual license to use, modify, and redistribute these contributions under any terms they choose, including both the AGPLv3 and the Fossorial Commercial license terms. I represent that I have the right to grant this license for all contributed content. ## Description - Add 6 domain CRUD endpoints to integration API (get, create, update, delete, dns-records, restart) - Create `verifyApiKeyDomainAccess` middleware for domain-org ownership validation - Enable API key holders to fully manage domains programmatically ## How to test? ``` API_KEY="xxxxxx" ORG_ID="test-org" BASE_URL="http://localhost:3003/v1" # --- 1. Create a domain (PUT) --- curl -s -X PUT "$BASE_URL/org/$ORG_ID/domain" \ -H "Authorization: Bearer $API_KEY" \ -H "Content-Type: application/json" \ -d '{"type": "wildcard", "baseDomain": "test.example.com"}' # Expected: 201 Created, response includes domainId # --- 2. Get a domain (GET) --- DOMAIN_ID="<domainId from step 1>" curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \ -H "Authorization: Bearer $API_KEY" # Expected: 200 OK, returns domain details # --- 3. Get DNS records (GET) --- curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID/dns-records" \ -H "Authorization: Bearer $API_KEY" # Expected: 200 OK, returns array of DNS records # --- 4. Update a domain (PATCH) --- curl -s -X PATCH "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \ -H "Authorization: Bearer $API_KEY" \ -H "Content-Type: application/json" \ -d '{"preferWildcardCert": true}' # Expected: 200 OK, returns updated domain # --- 5. Restart a domain (POST) --- curl -s -X POST "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID/restart" \ -H "Authorization: Bearer $API_KEY" # Expected: 200 OK # --- 6. Delete a domain (DELETE) --- curl -s -X DELETE "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \ -H "Authorization: Bearer $API_KEY" # Expected: 200 OK # --- 7. Verify deletion (GET should return 404) --- curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" \ -H "Authorization: Bearer $API_KEY" # Expected: 404 Not Found # --- Security tests --- # No auth → 401 curl -s "$BASE_URL/org/$ORG_ID/domain/$DOMAIN_ID" # Expected: 401 Unauthorized # Wrong org → 403 curl -s "$BASE_URL/org/wrong-org/domain/$DOMAIN_ID" \ -H "Authorization: Bearer $API_KEY" # Expected: 403 Forbidden ``` --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

GiteaMirror added the pull-request label 2026-05-13 19:07:24 -05:00

GiteaMirror closed this issue 2026-05-13 19:07:24 -05:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dependabot/npm_and_yarn/prod-patch-updates-94425a55d0

dependabot/npm_and_yarn/dev-minor-updates-4aaf4dbce4

dependabot/go_modules/install/minor-updates-a249525a56

crowdin_dev

auto-update

dev

fix-site-delete

fix-3104

exit-node-reconnect

fix-logoUrl

button-to-rebuild-association

rdp-ssh

dependabot/npm_and_yarn/brace-expansion-5.0.6

copilot/fix-documentation-input-output-types

dependabot/github_actions/sigstore/cosign-installer-4.1.2

redis

resource-policies

dependabot/npm_and_yarn/next-15.5.18

dependabot/npm_and_yarn/fast-uri-3.1.2

s3

dependabot/npm_and_yarn/fast-xml-builder-1.2.0

dependabot/npm_and_yarn/axios-1.15.2

dependabot/npm_and_yarn/next-intl-4.9.2

dependabot/docker/node-26-alpine

dependabot/docker/docker/library/node-26-slim

dependabot/npm_and_yarn/multi-7bdfbe8666

dependabot/npm_and_yarn/multi-d2fd79378c

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/postcss-8.5.10

dependabot/github_actions/actions/setup-node-6.4.0

dependabot/npm_and_yarn/next-16.2.1

dependabot/npm_and_yarn/recharts-3.8.1

cross-org-idp

breakout-sites-tables

ssh

delete-account

msg-delivery

org-only-idp

cicd

patch

site-targets-auto-login

1.18.4

1.18.3

1.18.2

1.18.1

1.18.0

1.18.0-rc.0

1.17.1

1.17.0

1.17.0-rc.0

1.16.2

1.16.1

1.16.0

1.16.0-rc.0

1.15.4

1.15.3

1.15.2

1.15.1

1.15.0

1.15.0-rc.0

1.14.1

1.14.0

1.14.0-rc.0

1.13.1

1.13.0

1.13.0-rc.0

1.12.3

1.12.2

1.12.1

1.12.0

1.12.0-rc.0

1.11.1

1.11.0

1.10.3

1.10.2

1.10.1

1.10.0

1.9.4

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.3

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.0

1.3.2

1.3.1

1.3.0

1.2.0

1.1.0

1.0.1

1.0.0

1.0.0-beta.15

1.0.0-beta.14

1.0.0-beta.13

1.0.0-beta.12

1.0.0-beta.11

1.0.0-beta.10

1.0.0-beta.9

1.0.0-beta.8

1.0.0-beta.7

1.0.0-beta.6

1.0.0-beta.5

1.0.0-beta.4

1.0.0-beta.3

1.0.0-beta.2

1.0.0-beta.1

Labels

Clear labels

api

authentication

bug

config

dependencies

docker

documentation

enhancement

good first issue

help wanted

Improvement

Look Into

needs investigating

networking

new feature

non-critical bug

potential bug

pull-request

Mirrored from GitHub Pull Request

question

reverse proxy

Security

stale

ui

wontfix

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/pangolin#13820