Merge f7b331f into e812e1d

AnalogJ · Sep 28, 2023 · 9f81b4e · 9f81b4e
2 parents e812e1d + f7b331f
commit 9f81b4e
Show file tree

Hide file tree

Showing 33 changed files with 17,050 additions and 24,432 deletions.
diff --git a/docs/providers/hover.rst b/docs/providers/hover.rst
@@ -2,3 +2,5 @@ hover
     * ``auth_username`` Specify username for authentication
 
     * ``auth_password`` Specify password for authentication
+
+    * ``auth_totp_secret`` Specify base32-encoded shared secret to generate an otp for authentication
diff --git a/poetry.lock b/poetry.lock
diff --git a/poetry.toml b/poetry.toml
@@ -1,2 +1,3 @@
 [virtualenvs]
 in-project = true
+prefer-active-python = true
diff --git a/pyproject.toml b/pyproject.toml
@@ -42,6 +42,7 @@ cryptography = ">=2"
 pyyaml = ">=3"
 requests = ">=2"
 beautifulsoup4 = ">=4"
+pyotp = ">=2"
 importlib-metadata = { version = ">=4.6", python = "<3.10" }
 # Optional dependencies required by some providers
 boto3 = { version = ">=1.28", optional = true }  # route53

diff --git a/src/lexicon/_private/providers/hover.py b/src/lexicon/_private/providers/hover.py
@@ -1,9 +1,11 @@
 """Module provider for Hover"""
 import json
 import logging
+import re
 from argparse import ArgumentParser
 from typing import List
 
+import pyotp
 import requests
 
 from lexicon.exceptions import AuthenticationError
@@ -27,24 +29,40 @@ def configure_parser(parser: ArgumentParser) -> None:
         parser.add_argument(
             "--auth-password", help="specify password for authentication"
         )
+        parser.add_argument(
+            "--auth-totp-secret",
+            help="specify base32-encoded shared secret to generate an OTP for authentication",
+        )
 
     def __init__(self, config):
         super(Provider, self).__init__(config)
         self.domain_id = None
         self.api_endpoint = "https://www.hover.com/api"
         self.cookies = {}
+        shared_secret = re.sub(r"\s*", "", self._get_provider_option("auth_totp_secret") or "")
+        self.totp = pyotp.TOTP(shared_secret)
 
-    def authenticate(self):
+    def authenticate(self) -> None:
         # Getting required cookies "hover_session" and "hoverauth"
         response = requests.get("https://www.hover.com/signin")
         self.cookies["hover_session"] = response.cookies["hover_session"]
 
+        # Part one, login credentials
         payload = {
             "username": self._get_provider_option("auth_username"),
             "password": self._get_provider_option("auth_password"),
         }
         response = requests.post(
-            "https://www.hover.com/api/login/", json=payload, cookies=self.cookies
+            "https://www.hover.com/signin/auth.json", json=payload, cookies=self.cookies
+        )
+        response.raise_for_status()
+
+        # Part two, 2fa
+        payload = {"code": self.totp.now()}
+        response = requests.post(
+            "https://www.hover.com/signin/auth2.json",
+            json=payload,
+            cookies=self.cookies,
         )
         response.raise_for_status()
 
@@ -85,11 +103,11 @@ def _list_domains(self):
     # type, name and content are used to filter records.
     # If possible filter during the query, otherwise filter after response is received.
     def list_records(self, rtype=None, name=None, content=None):
-        payload = self._get(f"/domains/{self.domain_id}/dns")
+        payload = self._get(f"/control_panel/dns/{self.domain}")
 
         # payload['domains'] should be a list of len 1
         try:
-            raw_records = payload["domains"][0]["entries"]
+            raw_records = payload["domain"]["dns"]
         except (KeyError, IndexError):
             raise Exception("Unexpected response")
 
@@ -132,14 +150,16 @@ def create_record(self, rtype, name, content):
 
         record = {"name": name, "type": rtype, "content": content}
         if self._get_lexicon_option("ttl"):
-            record["ttl"] = self._get_lexicon_option("ttl")
+            record["ttl"] = str(self._get_lexicon_option("ttl"))
 
         LOGGER.debug("create_record: %s", record)
-        payload = self._post(f"/domains/{self.domain_id}/dns", record)
-        return payload["succeeded"]
+        payload = {"id": f"domain-{self.domain}", "dns_record": record}
+        response = self._post("/control_panel/dns", payload)
+
+        return response["succeeded"]
 
     # Update a record. Hover cannot update name so we delete and recreate.
-    def update_record(self, identifier, rtype=None, name=None, content=None):
+    def update_record(self, identifier=None, rtype=None, name=None, content=None):
         if identifier:
             records = self.list_records()
             records = [r for r in records if r["id"] == identifier]
@@ -171,10 +191,9 @@ def delete_record(self, identifier=None, rtype=None, name=None, content=None):
             delete_record_ids.append(identifier)
 
         LOGGER.debug("delete_records: %s", delete_record_ids)
+        payload = {"domains": [{"id": f"domain-{self.domain}", "dns_records": delete_record_ids}]}
+        self._request("DELETE", "/control_panel/dns", payload)
 
-        for record_id in delete_record_ids:
-            self._delete(f"/dns/{record_id}")
-            LOGGER.debug("delete_record: %s", record_id)
         return True
 
     # Helpers

diff --git a/src/lexicon/interfaces.py b/src/lexicon/interfaces.py
@@ -185,7 +185,9 @@ def _patch(
     ) -> Any:
         return self._request("PATCH", url, data=data, query_params=query_params)
 
-    def _delete(self, url: str = "/", query_params: dict[str, Any] | None = None) -> Any:
+    def _delete(
+        self, url: str = "/", query_params: dict[str, Any] | None = None
+    ) -> Any:
         return self._request("DELETE", url, query_params=query_params)
 
     def _fqdn_name(self, record_name: str) -> str: