File: /var/www/html/tmpr/../tmpr/../tmpr/../tmpr/../tmpr/../tools/app/controllers/DomainCreate.php
<?php
/*
* Copyright (c) 2026 AltumCode (https://altumcode.com/)
*
* This software is licensed exclusively by AltumCode and is sold only via https://altumcode.com/.
* Unauthorized distribution, modification, or use of this software without a valid license is not permitted and may be subject to applicable legal actions.
*
* 🌍 View all other existing AltumCode projects via https://altumcode.com/
* 📧 Get in touch for support or general queries via https://altumcode.com/contact
* 📤 Download the latest version via https://altumcode.com/downloads
*
* 🐦 X/Twitter: https://x.com/AltumCode
* 📘 Facebook: https://facebook.com/altumcode
* 📸 Instagram: https://instagram.com/altumcode
*/
namespace Altum\Controllers;
use Altum\Alerts;
defined('ALTUMCODE') || die();
class DomainCreate extends Controller {
public function index() {
if(!settings()->links->domains_is_enabled) {
throw_404();
}
\Altum\Authentication::guard();
/* Team checks */
if(\Altum\Teams::is_delegated() && !\Altum\Teams::has_access('create.domains')) {
Alerts::add_error(l('global.info_message.team_no_access'));
redirect('domains');
}
/* Check for the plan limit */
$total_rows = database()->query("SELECT COUNT(*) AS `total` FROM `domains` WHERE `user_id` = {$this->user->user_id}")->fetch_object()->total ?? 0;
if($this->user->plan_settings->domains_limit != -1 && $total_rows >= $this->user->plan_settings->domains_limit) {
Alerts::add_error(l('global.info_message.plan_feature_limit') . (settings()->payment->is_enabled ? ' <a href="' . url('plan') . '" class="font-weight-bold text-reset">' . l('global.info_message.plan_upgrade') . '.</a>' : null));
redirect('domains');
}
if(!empty($_POST)) {
$_POST['scheme'] = isset($_POST['scheme']) && in_array($_POST['scheme'], ['http://', 'https://']) ? query_clean($_POST['scheme']) : 'https://';
$_POST['host'] = str_replace(' ', '', mb_strtolower(input_clean($_POST['host'], 128)));
$_POST['host'] = string_starts_with('http://', $_POST['host']) || string_starts_with('https://', $_POST['host']) ? parse_url($_POST['host'], PHP_URL_HOST) : $_POST['host'];
$_POST['host'] = string_starts_with('http://', $_POST['host']) || string_starts_with('https://', $_POST['host']) ? parse_url($_POST['host'], PHP_URL_HOST) : $_POST['host'];
$_POST['custom_index_url'] = get_url($_POST['custom_index_url'], 256);
$_POST['custom_not_found_url'] = get_url($_POST['custom_not_found_url'], 256);
$type = 0;
//ALTUMCODE:DEMO if(DEMO) if($this->user->user_id == 1) Alerts::add_error('Please create an account on the demo to test out this function.');
/* Check for any errors */
$required_fields = ['host'];
foreach($required_fields as $field) {
if(!isset($_POST[$field]) || trim($_POST[$field]) === '') {
Alerts::add_field_error($field, l('global.error_message.empty_field'));
}
}
if(!\Altum\Csrf::check()) {
Alerts::add_error(l('global.error_message.invalid_csrf_token'));
}
if(in_array($_POST['host'], settings()->links->blacklisted_domains)) {
Alerts::add_field_error('host', l('link.error_message.blacklisted_domain'));
}
if(!empty($_POST['custom_index_url']) && in_array(get_domain_from_url($_POST['custom_index_url']), settings()->links->blacklisted_domains)) {
Alerts::add_field_error('custom_index_url', get_domain_from_url($_POST['custom_index_url']) . l('link.error_message.blacklisted_domain'));
}
if(!empty($_POST['custom_not_found_url']) && in_array(get_domain_from_url($_POST['custom_not_found_url']), settings()->links->blacklisted_domains)) {
Alerts::add_field_error('custom_not_found_url', l('link.error_message.blacklisted_domain'));
}
if(db()->where('host', $_POST['host'])->where('is_enabled', 1)->has('domains')) {
Alerts::add_error(l('domains.error_message.host_exists'));
}
if(!Alerts::has_field_errors() && !Alerts::has_errors()) {
/* Database query */
$domain_id = db()->insert('domains', [
'user_id' => $this->user->user_id,
'scheme' => $_POST['scheme'],
'host' => $_POST['host'],
'custom_index_url' => $_POST['custom_index_url'],
'custom_not_found_url' => $_POST['custom_not_found_url'],
'type' => $type,
'datetime' => get_date(),
'is_enabled' => 0,
]);
/* Clear the cache */
cache()->deleteItems([
'domains?user_id=' . $this->user->user_id,
'domains_total?user_id=' . $this->user->user_id
]);
/* Set a nice success message */
Alerts::add_success(l('domain_create.success_message'));
/* Send notification to admin if needed */
if(settings()->email_notifications->new_domain && !empty(settings()->email_notifications->emails)) {
/* Prepare the email */
$email_template = get_email_template(
[],
l('global.emails.admin_new_domain_notification.subject'),
[
'{{ADMIN_DOMAIN_UPDATE_LINK}}' => url('admin/domain-update/' . $domain_id),
'{{DOMAIN_HOST}}' => $_POST['host'],
'{{NAME}}' => $this->user->name,
'{{EMAIL}}' => $this->user->email,
],
l('global.emails.admin_new_domain_notification.body')
);
send_mail(explode(',', settings()->email_notifications->emails), $email_template->subject, $email_template->body);
}
/* Send webhook notification if needed */
if(settings()->webhooks->domain_new) {
fire_and_forget('post', settings()->webhooks->domain_new, [
'user_id' => $this->user->user_id,
'domain_id' => $domain_id,
'host' => $_POST['host'],
'datetime' => get_date(),
], signature: true);
}
redirect('domains');
}
}
/* Set default values */
$values = [
'host' => $_POST['host'] ?? '',
'custom_index_url' => $_POST['custom_index_url'] ?? '',
'custom_not_found_url' => $_POST['custom_not_found_url'] ?? '',
];
/* Prepare the view */
$data = [
'values' => $values
];
$view = new \Altum\View('domain-create/index', (array) $this);
$this->add_view_content('content', $view->run($data));
}
}