generated from nathanwoodburn/python-webserver-template
This commit is contained in:
@@ -22,9 +22,10 @@ function getSSL() {
|
|||||||
history.pushState(null, null, url);
|
history.pushState(null, null, url);
|
||||||
|
|
||||||
// Add a loading spinner
|
// Add a loading spinner
|
||||||
document.getElementById("results").innerHTML = `<div class="spinner-border text-primary" role="status">
|
document.getElementById("ssl-results").innerHTML = `<div style="text-align: center;">
|
||||||
|
<div class="spinner-border text-primary" role="status">
|
||||||
<span class="visually-hidden">Loading...</span>
|
<span class="visually-hidden">Loading...</span>
|
||||||
</div>`;
|
</div></div>`;
|
||||||
|
|
||||||
|
|
||||||
// Send a GET request to the API
|
// Send a GET request to the API
|
||||||
@@ -34,7 +35,7 @@ function getSSL() {
|
|||||||
// Check if the request was successful
|
// Check if the request was successful
|
||||||
if (data.success) {
|
if (data.success) {
|
||||||
// Display the results
|
// Display the results
|
||||||
document.getElementById("results").innerHTML = `
|
document.getElementById("ssl-results").innerHTML = `
|
||||||
<div class="card shadow-sm p-4" style="max-width: 950px;margin: auto;">
|
<div class="card shadow-sm p-4" style="max-width: 950px;margin: auto;">
|
||||||
<h2 class="mb-3">SSL Certificate Details</h2>
|
<h2 class="mb-3">SSL Certificate Details</h2>
|
||||||
<ul class="list-group">
|
<ul class="list-group">
|
||||||
@@ -93,7 +94,7 @@ function getSSL() {
|
|||||||
</button>
|
</button>
|
||||||
</div>
|
</div>
|
||||||
<div class="dnssec-details mt-2" style="display:none;">
|
<div class="dnssec-details mt-2" style="display:none;">
|
||||||
<div class="card card-body bg-light"><pre class="mb-0" style="white-space: pre-wrap; text-align: left;">${data.dnssec.errors}${data.dnssec.output}</pre>
|
<div class="card card-body bg-light"><pre class="mb-0" style="white-space: pre-wrap; text-align: left;">${data.dnssec.output}</pre>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
</li>
|
</li>
|
||||||
@@ -140,13 +141,13 @@ document.querySelector('.dnssec-toggle').addEventListener('click', function() {
|
|||||||
|
|
||||||
} else {
|
} else {
|
||||||
// Display an error message
|
// Display an error message
|
||||||
document.getElementById("results").innerHTML = `<h2>Error</h2>
|
document.getElementById("ssl-results").innerHTML = `<h2>Error</h2>
|
||||||
<p>${data.message}</p>`;
|
<p>${data.message}</p>`;
|
||||||
}
|
}
|
||||||
})
|
})
|
||||||
.catch(error => {
|
.catch(error => {
|
||||||
// Display an error message
|
// Display an error message
|
||||||
document.getElementById("results").innerHTML = `<h2>Error</h2>
|
document.getElementById("ssl-results").innerHTML = `<h2>Error</h2>
|
||||||
<p>${error.message}</p>`;
|
<p>${error.message}</p>`;
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|||||||
@@ -12,16 +12,53 @@
|
|||||||
</head>
|
</head>
|
||||||
|
|
||||||
<body>
|
<body>
|
||||||
<div class="centre" style="margin-top: 20px;">
|
<div class="container py-5">
|
||||||
<h1>HNS Tools</h1>
|
<!-- Header Section -->
|
||||||
<h2>Nathan.Woodburn/</h2>
|
<div class="text-center mb-5">
|
||||||
|
<h1 class="display-4 fw-bold text-primary"><a href="/" class="text-decoration-none text-reset">HNS Tools</a></h1>
|
||||||
|
<h2 class="h4 fw-light text-secondary"><a href="https://nathan.woodburn.au" target="_blank" class="text-decoration-none text-reset">Nathan.Woodburn/</a></h2>
|
||||||
|
<div class="border-bottom mt-4 w-50 mx-auto"></div>
|
||||||
</div>
|
</div>
|
||||||
<div class="centre">
|
|
||||||
<h2>SSL/DANE Checker</h2>
|
<!-- Tool Card -->
|
||||||
<input type="text" id="domain" placeholder="Domain to check">
|
<div class="row justify-content-center">
|
||||||
<button id="ssl">Validate SSL</button>
|
<div class="col-md-8">
|
||||||
<div id="results" style="margin-top: 20px;"></div>
|
<div class="card shadow border-0 rounded-lg mb-5">
|
||||||
|
<div class="card-header bg-primary text-white py-3">
|
||||||
|
<h2 class="h4 mb-0 text-center">SSL/DANE Checker</h2>
|
||||||
</div>
|
</div>
|
||||||
</body>
|
<div class="card-body p-4">
|
||||||
|
<p class="text-muted mb-4 text-center">Validate SSL certificates and DANE records for any domain</p>
|
||||||
|
|
||||||
|
<div class="input-group mb-3 shadow-sm">
|
||||||
|
<input
|
||||||
|
type="text"
|
||||||
|
id="domain"
|
||||||
|
placeholder="Enter domain name (e.g., nathan.woodburn firewallet)"
|
||||||
|
class="form-control form-control-lg"
|
||||||
|
aria-label="Domain to check"
|
||||||
|
>
|
||||||
|
<button class="btn btn-primary px-4" id="ssl">
|
||||||
|
<i class="bi bi-shield-check me-2"></i>Validate
|
||||||
|
</button>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<div class="text-center text-muted small">
|
||||||
|
Enter a complete domain name without any slashes or leading .
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<!-- Results Container -->
|
||||||
|
<div id="ssl-results" class="animate__animated animate__fadeIn"></div>
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<!-- Footer -->
|
||||||
|
<footer class="text-center mt-5 pt-4 text-muted">
|
||||||
|
<small>© 2025 <a href="https://nathan.woodburn.au" target="_blank" class="text-decoration-none text-reset">Nathan.Woodburn/</a> - Handshake Name Services Tools</small>
|
||||||
|
</footer>
|
||||||
|
</div>
|
||||||
|
</body>
|
||||||
|
|
||||||
</html>
|
</html>
|
||||||
34
tools.py
34
tools.py
@@ -55,8 +55,21 @@ def check_ssl(domain: str):
|
|||||||
certificates = [cert[cert.find("-----BEGIN CERTIFICATE-----"):] for cert in certificates]
|
certificates = [cert[cert.find("-----BEGIN CERTIFICATE-----"):] for cert in certificates]
|
||||||
|
|
||||||
if not certificates:
|
if not certificates:
|
||||||
returns["message"] = "No certificate found on remote webserver"
|
returns["cert"] = {
|
||||||
return returns
|
"cert":"",
|
||||||
|
"domains": [],
|
||||||
|
"domain": False,
|
||||||
|
"expired": False,
|
||||||
|
"valid": False,
|
||||||
|
"expiry_date": ""
|
||||||
|
}
|
||||||
|
returns["tlsa"] = {
|
||||||
|
"server": "",
|
||||||
|
"nameserver": "",
|
||||||
|
"match": False
|
||||||
|
}
|
||||||
|
|
||||||
|
else:
|
||||||
|
|
||||||
cert = certificates[0]
|
cert = certificates[0]
|
||||||
returns["cert"] = {"cert": cert}
|
returns["cert"] = {"cert": cert}
|
||||||
@@ -121,9 +134,6 @@ def check_ssl(domain: str):
|
|||||||
|
|
||||||
returns["cert"]["expiry_date"] = expiry_date.strftime("%d %B %Y %H:%M:%S")
|
returns["cert"]["expiry_date"] = expiry_date.strftime("%d %B %Y %H:%M:%S")
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
try:
|
try:
|
||||||
# Check for TLSA record
|
# Check for TLSA record
|
||||||
response = resolver.resolve("_443._tcp."+domain, "TLSA")
|
response = resolver.resolve("_443._tcp."+domain, "TLSA")
|
||||||
@@ -131,18 +141,12 @@ def check_ssl(domain: str):
|
|||||||
for record in response:
|
for record in response:
|
||||||
tlsa_records.append(str(record))
|
tlsa_records.append(str(record))
|
||||||
|
|
||||||
if not tlsa_records:
|
if tlsa_records:
|
||||||
returns["message"] = "No TLSA record found on DNS"
|
|
||||||
return returns
|
|
||||||
|
|
||||||
returns["tlsa"]["nameserver"] = tlsa_records[0]
|
returns["tlsa"]["nameserver"] = tlsa_records[0]
|
||||||
if tlsa_server == tlsa_records[0]:
|
if tlsa_server == tlsa_records[0]:
|
||||||
returns["tlsa"]["match"] = True
|
returns["tlsa"]["match"] = True
|
||||||
|
|
||||||
|
|
||||||
except:
|
except:
|
||||||
returns["message"] = "No TLSA record found on DNS"
|
returns["tlsa"]["error"] = "No TLSA record found on DNS"
|
||||||
return returns
|
|
||||||
|
|
||||||
# Check if valid
|
# Check if valid
|
||||||
if returns["cert"]["valid"] and returns["tlsa"]["match"] and returns["dnssec"]["valid"]:
|
if returns["cert"]["valid"] and returns["tlsa"]["match"] and returns["dnssec"]["valid"]:
|
||||||
@@ -164,6 +168,6 @@ def validate_dnssec(domain):
|
|||||||
command = f"delv @{resolverIP} -a hsd-ksk {domain} A +rtrace +vtrace"
|
command = f"delv @{resolverIP} -a hsd-ksk {domain} A +rtrace +vtrace"
|
||||||
result = subprocess.run(command, shell=True, capture_output=True, text=True)
|
result = subprocess.run(command, shell=True, capture_output=True, text=True)
|
||||||
if "; fully validated" in result.stdout:
|
if "; fully validated" in result.stdout:
|
||||||
return {"valid": True, "message": "DNSSEC is valid", "output": result.stdout, "errors": result.stderr}
|
return {"valid": True, "message": "DNSSEC is valid", "output": result.stderr + result.stdout}
|
||||||
else:
|
else:
|
||||||
return {"valid": False, "message": "DNSSEC is not valid", "output": result.stdout, "errors": result.stderr}
|
return {"valid": False, "message": "DNSSEC is not valid", "output": result.stderr + result.stdout}
|
||||||
Reference in New Issue
Block a user