@hasna/microservices 0.0.4 → 0.0.6

package/microservices/microservice-domains/src/cli/index.ts

@@ -19,7 +19,38 @@ import {
   createAlert,
   listAlerts,
   deleteAlert,
+  whoisLookup,
+  checkDnsPropagation,
+  checkSsl,
+  exportZoneFile,
+  importZoneFile,
+  discoverSubdomains,
+  validateDns,
+  exportPortfolio,
+  checkAllDomains,
+  getDomainByName,
 } from "../db/domains.js";
+import {
+  syncToLocalDb,
+  renewDomain as namecheapRenew,
+  checkAvailability as namecheapCheck,
+} from "../lib/namecheap.js";
+import {
+  syncToLocalDb as godaddySyncToLocalDb,
+  renewDomain as godaddyRenewDomain,
+} from "../lib/godaddy.js";
+import {
+  getAvailableProviders,
+  syncAll,
+  autoDetectRegistrar,
+  getProvider,
+} from "../lib/registrar.js";
+import {
+  monitorBrand,
+  getSimilarDomains,
+  getThreatAssessment,
+} from "../lib/brandsight.js";
+import { readFileSync, writeFileSync } from "node:fs";
 
 const program = new Command();
 
@@ -269,6 +300,109 @@ program
     }
   });
 
+// --- WHOIS Lookup ---
+
+program
+  .command("whois")
+  .description("Run WHOIS lookup for a domain and update DB record")
+  .argument("<name>", "Domain name (e.g. example.com)")
+  .option("--json", "Output as JSON", false)
+  .action((name, opts) => {
+    try {
+      const result = whoisLookup(name);
+      if (opts.json) {
+        console.log(JSON.stringify(result, null, 2));
+      } else {
+        console.log(`WHOIS for ${result.domain}:`);
+        console.log(`  Registrar: ${result.registrar || "unknown"}`);
+        console.log(`  Expires: ${result.expires_at || "unknown"}`);
+        if (result.nameservers.length > 0) {
+          console.log(`  Nameservers: ${result.nameservers.join(", ")}`);
+        }
+      }
+    } catch (error: unknown) {
+      console.error(`WHOIS lookup failed: ${error instanceof Error ? error.message : String(error)}`);
+      process.exit(1);
+    }
+  });
+
+// --- SSL Check ---
+
+program
+  .command("ssl-check")
+  .description("Check SSL certificate for a domain and update DB record")
+  .argument("<name>", "Domain name (e.g. example.com)")
+  .option("--json", "Output as JSON", false)
+  .action((name, opts) => {
+    const result = checkSsl(name);
+    if (opts.json) {
+      console.log(JSON.stringify(result, null, 2));
+    } else {
+      if (result.error) {
+        console.error(`SSL check failed: ${result.error}`);
+        process.exit(1);
+      }
+      console.log(`SSL Certificate for ${result.domain}:`);
+      console.log(`  Issuer: ${result.issuer || "unknown"}`);
+      console.log(`  Expires: ${result.expires_at || "unknown"}`);
+      if (result.subject) console.log(`  Subject: ${result.subject}`);
+    }
+  });
+
+// --- Portfolio Export ---
+
+program
+  .command("export")
+  .description("Export all domains as CSV or JSON")
+  .option("--format <format>", "Export format (csv or json)", "json")
+  .option("--output <file>", "Write to file instead of stdout")
+  .action((opts) => {
+    const format = opts.format === "csv" ? "csv" : "json";
+    const output = exportPortfolio(format as "csv" | "json");
+    if (opts.output) {
+      writeFileSync(opts.output, output, "utf-8");
+      console.log(`Exported to ${opts.output}`);
+    } else {
+      console.log(output);
+    }
+  });
+
+// --- Bulk Domain Check ---
+
+program
+  .command("check-all")
+  .description("Run WHOIS + SSL + DNS validation on all domains")
+  .option("--json", "Output as JSON", false)
+  .action((opts) => {
+    const results = checkAllDomains();
+    if (opts.json) {
+      console.log(JSON.stringify(results, null, 2));
+    } else {
+      if (results.length === 0) {
+        console.log("No domains to check.");
+        return;
+      }
+      for (const r of results) {
+        console.log(`\n${r.domain}:`);
+        if (r.whois) {
+          console.log(`  WHOIS: registrar=${r.whois.registrar || "?"}, expires=${r.whois.expires_at || "?"}`);
+          if (r.whois.error) console.log(`    Error: ${r.whois.error}`);
+        }
+        if (r.ssl) {
+          console.log(`  SSL: issuer=${r.ssl.issuer || "?"}, expires=${r.ssl.expires_at || "?"}`);
+          if (r.ssl.error) console.log(`    Error: ${r.ssl.error}`);
+        }
+        if (r.dns_validation) {
+          console.log(`  DNS: valid=${r.dns_validation.valid}, issues=${r.dns_validation.issue_count}`);
+          for (const e of r.dns_validation.errors) {
+            console.log(`    ${e}`);
+          }
+        }
+      }
+      console.log(`\nChecked ${results.length} domain(s)`);
+    }
+  });
+
 // --- DNS Records ---
 
 const dnsCmd = program
@@ -370,6 +504,145 @@ dnsCmd
     }
   });
 
+// --- DNS Propagation Check ---
+
+dnsCmd
+  .command("check-propagation")
+  .description("Check DNS propagation across multiple servers")
+  .argument("<domain>", "Domain name to check")
+  .option("--record <type>", "Record type (A/AAAA/CNAME/MX/TXT/NS)", "A")
+  .option("--json", "Output as JSON", false)
+  .action((domain, opts) => {
+    const result = checkDnsPropagation(domain, opts.record);
+    if (opts.json) {
+      console.log(JSON.stringify(result, null, 2));
+    } else {
+      console.log(`DNS Propagation for ${result.domain} (${result.record_type}):`);
+      console.log(`  Consistent: ${result.consistent ? "yes" : "NO"}`);
+      for (const s of result.servers) {
+        const values = s.values.length > 0 ? s.values.join(", ") : "(empty)";
+        const status = s.status === "error" ? ` [ERROR: ${s.error}]` : "";
+        console.log(`  ${s.name} (${s.server}): ${values}${status}`);
+      }
+    }
+  });
+
+// --- Zone File Export ---
+
+dnsCmd
+  .command("export")
+  .description("Export DNS records as BIND zone file")
+  .argument("<domain-id>", "Domain ID")
+  .option("--format <format>", "Export format (zone)", "zone")
+  .option("--output <file>", "Write to file instead of stdout")
+  .action((domainId, opts) => {
+    const zone = exportZoneFile(domainId);
+    if (!zone) {
+      console.error(`Domain '${domainId}' not found.`);
+      process.exit(1);
+    }
+    if (opts.output) {
+      writeFileSync(opts.output, zone, "utf-8");
+      console.log(`Exported zone file to ${opts.output}`);
+    } else {
+      console.log(zone);
+    }
+  });
+
+// --- Zone File Import ---
+
+dnsCmd
+  .command("import")
+  .description("Import DNS records from a BIND zone file")
+  .argument("<domain-id>", "Domain ID")
+  .requiredOption("--file <path>", "Path to zone file")
+  .option("--json", "Output as JSON", false)
+  .action((domainId, opts) => {
+    let content: string;
+    try {
+      content = readFileSync(opts.file, "utf-8");
+    } catch {
+      console.error(`Could not read file: ${opts.file}`);
+      process.exit(1);
+    }
+
+    const result = importZoneFile(domainId, content);
+    if (!result) {
+      console.error(`Domain '${domainId}' not found.`);
+      process.exit(1);
+    }
+
+    if (opts.json) {
+      console.log(JSON.stringify(result, null, 2));
+    } else {
+      console.log(`Imported ${result.imported} record(s), skipped ${result.skipped}`);
+      if (result.errors.length > 0) {
+        console.log("Errors:");
+        for (const e of result.errors) {
+          console.log(`  - ${e}`);
+        }
+      }
+    }
+  });
+
+// --- Subdomain Discovery ---
+
+dnsCmd
+  .command("discover-subdomains")
+  .description("Discover subdomains via certificate transparency logs (crt.sh)")
+  .argument("<domain>", "Domain name")
+  .option("--json", "Output as JSON", false)
+  .action(async (domain, opts) => {
+    const result = await discoverSubdomains(domain);
+    if (opts.json) {
+      console.log(JSON.stringify(result, null, 2));
+    } else {
+      if (result.error) {
+        console.error(`Discovery failed: ${result.error}`);
+        process.exit(1);
+      }
+      if (result.subdomains.length === 0) {
+        console.log(`No subdomains found for ${domain}.`);
+        return;
+      }
+      console.log(`Subdomains for ${domain} (source: ${result.source}):`);
+      for (const s of result.subdomains) {
+        console.log(`  ${s}`);
+      }
+      console.log(`\n${result.subdomains.length} subdomain(s) found`);
+    }
+  });
+
+// --- DNS Validation ---
+
+dnsCmd
+  .command("validate")
+  .description("Validate DNS records for common issues")
+  .argument("<domain-id>", "Domain ID")
+  .option("--json", "Output as JSON", false)
+  .action((domainId, opts) => {
+    const result = validateDns(domainId);
+    if (!result) {
+      console.error(`Domain '${domainId}' not found.`);
+      process.exit(1);
+    }
+
+    if (opts.json) {
+      console.log(JSON.stringify(result, null, 2));
+    } else {
+      console.log(`DNS Validation for ${result.domain_name}:`);
+      console.log(`  Valid: ${result.valid ? "yes" : "NO"}`);
+      if (result.issues.length === 0) {
+        console.log("  No issues found.");
+      } else {
+        for (const issue of result.issues) {
+          const prefix = issue.type === "error" ? "ERROR" : "WARN";
+          console.log(`  [${prefix}] ${issue.message}`);
+        }
+      }
+    }
+  });
+
 // --- Alerts ---
 
 const alertCmd = program
@@ -435,4 +708,404 @@ alertCmd
     }
   });
 
+// --- Namecheap Integration ---
+
+program
+  .command("sync")
+  .description("Sync domains from a provider to local DB")
+  .requiredOption("--provider <provider>", "Provider name (namecheap, godaddy)")
+  .option("--json", "Output as JSON", false)
+  .action(async (opts) => {
+    const provider = opts.provider.toLowerCase();
+
+    if (provider === "namecheap") {
+      try {
+        const result = await syncToLocalDb({
+          getDomainByName,
+          createDomain,
+          updateDomain,
+        });
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Synced ${result.synced} domain(s) from Namecheap`);
+          for (const d of result.domains) {
+            console.log(`  ${d}`);
+          }
+          if (result.errors.length > 0) {
+            console.log("Errors:");
+            for (const e of result.errors) {
+              console.log(`  - ${e}`);
+            }
+          }
+        }
+      } catch (error: unknown) {
+        console.error(`Sync failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else if (provider === "godaddy") {
+      try {
+        const result = await godaddySyncToLocalDb({
+          getDomainByName,
+          createDomain,
+          updateDomain,
+        });
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Synced ${result.synced} domain(s) from GoDaddy (created: ${result.created}, updated: ${result.updated})`);
+          if (result.errors.length > 0) {
+            console.log("Errors:");
+            for (const e of result.errors) {
+              console.log(`  - ${e}`);
+            }
+          }
+        }
+      } catch (error: unknown) {
+        console.error(`Sync failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else {
+      console.error(`Unsupported provider: ${opts.provider}. Supported: namecheap, godaddy`);
+      process.exit(1);
+    }
+  });
+
+program
+  .command("renew")
+  .description("Renew a domain via provider")
+  .argument("<name>", "Domain name (e.g. example.com)")
+  .requiredOption("--provider <provider>", "Provider name (namecheap, godaddy)")
+  .option("--years <n>", "Number of years to renew", "1")
+  .option("--json", "Output as JSON", false)
+  .action(async (name, opts) => {
+    const provider = opts.provider.toLowerCase();
+
+    if (provider === "namecheap") {
+      try {
+        const result = await namecheapRenew(name, parseInt(opts.years));
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Renewed ${result.domain} successfully`);
+          if (result.chargedAmount) console.log(`  Charged: $${result.chargedAmount}`);
+          if (result.orderId) console.log(`  Order ID: ${result.orderId}`);
+          if (result.transactionId) console.log(`  Transaction ID: ${result.transactionId}`);
+        }
+      } catch (error: unknown) {
+        console.error(`Renewal failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else if (provider === "godaddy") {
+      try {
+        const result = await godaddyRenewDomain(name);
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Renewed ${name} successfully via GoDaddy`);
+          if (result.orderId) console.log(`  Order ID: ${result.orderId}`);
+          if (result.total) console.log(`  Total: $${(result.total / 100).toFixed(2)}`);
+        }
+      } catch (error: unknown) {
+        console.error(`Renewal failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else {
+      console.error(`Unsupported provider: ${opts.provider}. Supported: namecheap, godaddy`);
+      process.exit(1);
+    }
+  });
+
+program
+  .command("check")
+  .description("Check domain availability")
+  .argument("<name>", "Domain name (e.g. example.com)")
+  .option("--json", "Output as JSON", false)
+  .action(async (name, opts) => {
+    try {
+      const result = await namecheapCheck(name);
+
+      if (opts.json) {
+        console.log(JSON.stringify(result, null, 2));
+      } else {
+        if (result.available) {
+          console.log(`${result.domain} is AVAILABLE`);
+        } else {
+          console.log(`${result.domain} is NOT available`);
+        }
+      }
+    } catch (error: unknown) {
+      console.error(`Availability check failed: ${error instanceof Error ? error.message : String(error)}`);
+      process.exit(1);
+    }
+  });
+
+// --- Unified Provider Commands ---
+
+program
+  .command("providers")
+  .description("Show which registrar providers are configured")
+  .option("--json", "Output as JSON", false)
+  .action((opts) => {
+    const providers = getAvailableProviders();
+
+    if (opts.json) {
+      console.log(JSON.stringify(providers, null, 2));
+    } else {
+      console.log("Registrar Providers:");
+      for (const p of providers) {
+        const status = p.configured ? "CONFIGURED" : "not configured";
+        console.log(`  ${p.name}: ${status}`);
+        if (!p.configured) {
+          console.log(`    Missing: ${p.envVars.join(", ")}`);
+        }
+      }
+    }
+  });
+
+// Override sync command to support --all flag
+program.commands = program.commands.filter((c) => c.name() !== "sync");
+
+program
+  .command("sync")
+  .description("Sync domains from a provider to local DB")
+  .option("--provider <provider>", "Provider name (namecheap, godaddy)")
+  .option("--all", "Sync from all configured providers")
+  .option("--json", "Output as JSON", false)
+  .action(async (opts) => {
+    if (opts.all) {
+      try {
+        const result = await syncAll({
+          getDomainByName,
+          createDomain,
+          updateDomain,
+        });
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Synced ${result.totalSynced} domain(s) from ${result.providers.length} provider(s)`);
+          for (const p of result.providers) {
+            console.log(`  ${p.name}: ${p.result.synced} synced`);
+          }
+          if (result.totalErrors.length > 0) {
+            console.log("Errors:");
+            for (const e of result.totalErrors) {
+              console.log(`  - ${e}`);
+            }
+          }
+        }
+      } catch (error: unknown) {
+        console.error(`Sync failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+      return;
+    }
+
+    const provider = (opts.provider || "").toLowerCase();
+    if (!provider) {
+      console.error("Specify --provider <name> or --all");
+      process.exit(1);
+    }
+
+    if (provider === "namecheap") {
+      try {
+        const result = await syncToLocalDb({
+          getDomainByName,
+          createDomain,
+          updateDomain,
+        });
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Synced ${result.synced} domain(s) from Namecheap`);
+          for (const d of result.domains) {
+            console.log(`  ${d}`);
+          }
+          if (result.errors.length > 0) {
+            console.log("Errors:");
+            for (const e of result.errors) {
+              console.log(`  - ${e}`);
+            }
+          }
+        }
+      } catch (error: unknown) {
+        console.error(`Sync failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else if (provider === "godaddy") {
+      try {
+        const result = await godaddySyncToLocalDb({
+          getDomainByName,
+          createDomain,
+          updateDomain,
+        });
+
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Synced ${result.synced} domain(s) from GoDaddy (created: ${result.created}, updated: ${result.updated})`);
+          if (result.errors.length > 0) {
+            console.log("Errors:");
+            for (const e of result.errors) {
+              console.log(`  - ${e}`);
+            }
+          }
+        }
+      } catch (error: unknown) {
+        console.error(`Sync failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else {
+      console.error(`Unsupported provider: ${provider}. Supported: namecheap, godaddy`);
+      process.exit(1);
+    }
+  });
+
+// Override renew command to support auto-detect
+program.commands = program.commands.filter((c) => c.name() !== "renew");
+
+program
+  .command("renew")
+  .description("Renew a domain via provider (auto-detects registrar from DB if --provider not given)")
+  .argument("<name>", "Domain name (e.g. example.com)")
+  .option("--provider <provider>", "Provider name (namecheap, godaddy)")
+  .option("--years <n>", "Number of years to renew", "1")
+  .option("--json", "Output as JSON", false)
+  .action(async (name, opts) => {
+    let provider = (opts.provider || "").toLowerCase();
+
+    if (!provider) {
+      const detected = autoDetectRegistrar(name, getDomainByName);
+      if (!detected) {
+        console.error(`Could not auto-detect registrar for '${name}'. Use --provider.`);
+        process.exit(1);
+      }
+      provider = detected;
+      console.log(`Auto-detected registrar: ${provider}`);
+    }
+
+    if (provider === "namecheap") {
+      try {
+        const result = await namecheapRenew(name, parseInt(opts.years));
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Renewed ${result.domain} successfully via Namecheap`);
+          if (result.chargedAmount) console.log(`  Charged: $${result.chargedAmount}`);
+          if (result.orderId) console.log(`  Order ID: ${result.orderId}`);
+        }
+      } catch (error: unknown) {
+        console.error(`Renewal failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else if (provider === "godaddy") {
+      try {
+        const result = await godaddyRenewDomain(name);
+        if (opts.json) {
+          console.log(JSON.stringify(result, null, 2));
+        } else {
+          console.log(`Renewed ${name} successfully via GoDaddy`);
+          if (result.orderId) console.log(`  Order ID: ${result.orderId}`);
+          if (result.total) console.log(`  Total: $${(result.total / 100).toFixed(2)}`);
+        }
+      } catch (error: unknown) {
+        console.error(`Renewal failed: ${error instanceof Error ? error.message : String(error)}`);
+        process.exit(1);
+      }
+    } else {
+      console.error(`Unsupported provider: ${provider}. Supported: namecheap, godaddy`);
+      process.exit(1);
+    }
+  });
+
+// --- Brandsight Commands ---
+
+program
+  .command("monitor")
+  .description("Monitor a brand for similar domain registrations (Brandsight)")
+  .argument("<brand>", "Brand name to monitor")
+  .option("--json", "Output as JSON", false)
+  .action(async (brand, opts) => {
+    try {
+      const result = await monitorBrand(brand);
+      if (opts.json) {
+        console.log(JSON.stringify(result, null, 2));
+      } else {
+        if (result.stub) console.log("(stub data — Brandsight API unreachable)");
+        console.log(`Brand monitoring for "${result.brand}":`);
+        if (result.alerts.length === 0) {
+          console.log("  No alerts.");
+        } else {
+          for (const a of result.alerts) {
+            console.log(`  [${a.type}] ${a.domain} — registered ${a.registered_at}`);
+          }
+        }
+        console.log(`\n${result.alerts.length} alert(s)`);
+      }
+    } catch (error: unknown) {
+      console.error(`Monitor failed: ${error instanceof Error ? error.message : String(error)}`);
+      process.exit(1);
+    }
+  });
+
+program
+  .command("similar")
+  .description("Find typosquat/competing domains similar to a domain (Brandsight)")
+  .argument("<domain>", "Domain to check")
+  .option("--json", "Output as JSON", false)
+  .action(async (domain, opts) => {
+    try {
+      const result = await getSimilarDomains(domain);
+      if (opts.json) {
+        console.log(JSON.stringify(result, null, 2));
+      } else {
+        if (result.stub) console.log("(stub data — Brandsight API unreachable)");
+        console.log(`Similar domains for ${result.domain}:`);
+        for (const d of result.similar) {
+          console.log(`  ${d}`);
+        }
+        console.log(`\n${result.similar.length} similar domain(s)`);
+      }
+    } catch (error: unknown) {
+      console.error(`Similar domains check failed: ${error instanceof Error ? error.message : String(error)}`);
+      process.exit(1);
+    }
+  });
+
+program
+  .command("threats")
+  .description("Get threat assessment for a domain (Brandsight)")
+  .argument("<domain>", "Domain to assess")
+  .option("--json", "Output as JSON", false)
+  .action(async (domain, opts) => {
+    try {
+      const result = await getThreatAssessment(domain);
+      if (opts.json) {
+        console.log(JSON.stringify(result, null, 2));
+      } else {
+        if (result.stub) console.log("(stub data — Brandsight API unreachable)");
+        console.log(`Threat Assessment for ${result.domain}:`);
+        console.log(`  Risk Level: ${result.risk_level}`);
+        if (result.threats.length > 0) {
+          console.log("  Threats:");
+          for (const t of result.threats) {
+            console.log(`    - ${t}`);
+          }
+        } else {
+          console.log("  Threats: none detected");
+        }
+        console.log(`  Recommendation: ${result.recommendation}`);
+      }
+    } catch (error: unknown) {
+      console.error(`Threat assessment failed: ${error instanceof Error ? error.message : String(error)}`);
+      process.exit(1);
+    }
+  });
+
 program.parse(process.argv);