forked from Github/acme.sh
neilpang
6 years ago
16 changed files with 1497 additions and 68 deletions
-
6README.md
-
1acme.sh
-
21deploy/README.md
-
12deploy/fritzbox.sh
-
80deploy/gitlab.sh
-
6deploy/ssh.sh
-
119dnsapi/README.md
-
14dnsapi/dns_aws.sh
-
253dnsapi/dns_conoha.sh
-
161dnsapi/dns_dpi.sh
-
167dnsapi/dns_gcloud.sh
-
168dnsapi/dns_gdnsdk.sh
-
55dnsapi/dns_lexicon.sh
-
308dnsapi/dns_namecheap.sh
-
133dnsapi/dns_netcup.sh
-
61dnsapi/dns_unoeuro.sh
@ -0,0 +1,80 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
|
||||
|
# Script to deploy certificate to a Gitlab hosted page |
||||
|
|
||||
|
# The following variables exported from environment will be used. |
||||
|
# If not set then values previously saved in domain.conf file are used. |
||||
|
|
||||
|
# All the variables are required |
||||
|
|
||||
|
# export GITLAB_TOKEN="xxxxxxx" |
||||
|
# export GITLAB_PROJECT_ID=012345 |
||||
|
# export GITLAB_DOMAIN="mydomain.com" |
||||
|
|
||||
|
gitlab_deploy() { |
||||
|
_cdomain="$1" |
||||
|
_ckey="$2" |
||||
|
_ccert="$3" |
||||
|
_cca="$4" |
||||
|
_cfullchain="$5" |
||||
|
|
||||
|
_debug _cdomain "$_cdomain" |
||||
|
_debug _ckey "$_ckey" |
||||
|
_debug _ccert "$_ccert" |
||||
|
_debug _cca "$_cca" |
||||
|
_debug _cfullchain "$_cfullchain" |
||||
|
|
||||
|
if [ -z "$GITLAB_TOKEN" ]; then |
||||
|
if [ -z "$Le_Deploy_gitlab_token" ]; then |
||||
|
_err "GITLAB_TOKEN not defined." |
||||
|
return 1 |
||||
|
fi |
||||
|
else |
||||
|
Le_Deploy_gitlab_token="$GITLAB_TOKEN" |
||||
|
_savedomainconf Le_Deploy_gitlab_token "$Le_Deploy_gitlab_token" |
||||
|
fi |
||||
|
|
||||
|
if [ -z "$GITLAB_PROJECT_ID" ]; then |
||||
|
if [ -z "$Le_Deploy_gitlab_project_id" ]; then |
||||
|
_err "GITLAB_PROJECT_ID not defined." |
||||
|
return 1 |
||||
|
fi |
||||
|
else |
||||
|
Le_Deploy_gitlab_project_id="$GITLAB_PROJECT_ID" |
||||
|
_savedomainconf Le_Deploy_gitlab_project_id "$Le_Deploy_gitlab_project_id" |
||||
|
fi |
||||
|
|
||||
|
if [ -z "$GITLAB_DOMAIN" ]; then |
||||
|
if [ -z "$Le_Deploy_gitlab_domain" ]; then |
||||
|
_err "GITLAB_DOMAIN not defined." |
||||
|
return 1 |
||||
|
fi |
||||
|
else |
||||
|
Le_Deploy_gitlab_domain="$GITLAB_DOMAIN" |
||||
|
_savedomainconf Le_Deploy_gitlab_domain "$Le_Deploy_gitlab_domain" |
||||
|
fi |
||||
|
|
||||
|
string_fullchain=$(_url_encode <"$_cfullchain") |
||||
|
string_key=$(_url_encode <"$_ckey") |
||||
|
|
||||
|
body="certificate=$string_fullchain&key=$string_key" |
||||
|
|
||||
|
export _H1="PRIVATE-TOKEN: $Le_Deploy_gitlab_token" |
||||
|
|
||||
|
gitlab_url="https://gitlab.com/api/v4/projects/$Le_Deploy_gitlab_project_id/pages/domains/$Le_Deploy_gitlab_domain" |
||||
|
|
||||
|
_response=$(_post "$body" "$gitlab_url" 0 PUT | _dbase64 "multiline") |
||||
|
|
||||
|
error_response="error" |
||||
|
|
||||
|
if test "${_response#*$error_response}" != "$_response"; then |
||||
|
_err "Error in deploying certificate:" |
||||
|
_err "$_response" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug response "$_response" |
||||
|
_info "Certificate successfully deployed" |
||||
|
|
||||
|
return 0 |
||||
|
} |
@ -0,0 +1,253 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
|
||||
|
CONOHA_DNS_EP_PREFIX_REGEXP="https://dns-service\." |
||||
|
|
||||
|
######## Public functions ##################### |
||||
|
|
||||
|
#Usage: dns_conoha_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
dns_conoha_add() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using conoha" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
|
||||
|
_debug "Check uesrname and password" |
||||
|
CONOHA_Username="${CONOHA_Username:-$(_readaccountconf_mutable CONOHA_Username)}" |
||||
|
CONOHA_Password="${CONOHA_Password:-$(_readaccountconf_mutable CONOHA_Password)}" |
||||
|
CONOHA_TenantId="${CONOHA_TenantId:-$(_readaccountconf_mutable CONOHA_TenantId)}" |
||||
|
CONOHA_IdentityServiceApi="${CONOHA_IdentityServiceApi:-$(_readaccountconf_mutable CONOHA_IdentityServiceApi)}" |
||||
|
if [ -z "$CONOHA_Username" ] || [ -z "$CONOHA_Password" ] || [ -z "$CONOHA_TenantId" ] || [ -z "$CONOHA_IdentityServiceApi" ]; then |
||||
|
CONOHA_Username="" |
||||
|
CONOHA_Password="" |
||||
|
CONOHA_TenantId="" |
||||
|
CONOHA_IdentityServiceApi="" |
||||
|
_err "You didn't specify a conoha api username and password yet." |
||||
|
_err "Please create the user and try again." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_saveaccountconf_mutable CONOHA_Username "$CONOHA_Username" |
||||
|
_saveaccountconf_mutable CONOHA_Password "$CONOHA_Password" |
||||
|
_saveaccountconf_mutable CONOHA_TenantId "$CONOHA_TenantId" |
||||
|
_saveaccountconf_mutable CONOHA_IdentityServiceApi "$CONOHA_IdentityServiceApi" |
||||
|
|
||||
|
if token="$(_conoha_get_accesstoken "$CONOHA_IdentityServiceApi/tokens" "$CONOHA_Username" "$CONOHA_Password" "$CONOHA_TenantId")"; then |
||||
|
accesstoken="$(printf "%s" "$token" | sed -n 1p)" |
||||
|
CONOHA_Api="$(printf "%s" "$token" | sed -n 2p)" |
||||
|
else |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug "First detect the root zone" |
||||
|
if ! _get_root "$fulldomain" "$CONOHA_Api" "$accesstoken"; then |
||||
|
_err "invalid domain" |
||||
|
return 1 |
||||
|
fi |
||||
|
_debug _domain_id "$_domain_id" |
||||
|
_debug _sub_domain "$_sub_domain" |
||||
|
_debug _domain "$_domain" |
||||
|
|
||||
|
_info "Adding record" |
||||
|
body="{\"type\":\"TXT\",\"name\":\"$fulldomain.\",\"data\":\"$txtvalue\",\"ttl\":60}" |
||||
|
if _conoha_rest POST "$CONOHA_Api/v1/domains/$_domain_id/records" "$body" "$accesstoken"; then |
||||
|
if _contains "$response" '"data":"'"$txtvalue"'"'; then |
||||
|
_info "Added, OK" |
||||
|
return 0 |
||||
|
else |
||||
|
_err "Add txt record error." |
||||
|
return 1 |
||||
|
fi |
||||
|
fi |
||||
|
|
||||
|
_err "Add txt record error." |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
#Usage: fulldomain txtvalue |
||||
|
#Remove the txt record after validation. |
||||
|
dns_conoha_rm() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using conoha" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
|
||||
|
_debug "Check uesrname and password" |
||||
|
CONOHA_Username="${CONOHA_Username:-$(_readaccountconf_mutable CONOHA_Username)}" |
||||
|
CONOHA_Password="${CONOHA_Password:-$(_readaccountconf_mutable CONOHA_Password)}" |
||||
|
CONOHA_TenantId="${CONOHA_TenantId:-$(_readaccountconf_mutable CONOHA_TenantId)}" |
||||
|
CONOHA_IdentityServiceApi="${CONOHA_IdentityServiceApi:-$(_readaccountconf_mutable CONOHA_IdentityServiceApi)}" |
||||
|
if [ -z "$CONOHA_Username" ] || [ -z "$CONOHA_Password" ] || [ -z "$CONOHA_TenantId" ] || [ -z "$CONOHA_IdentityServiceApi" ]; then |
||||
|
CONOHA_Username="" |
||||
|
CONOHA_Password="" |
||||
|
CONOHA_TenantId="" |
||||
|
CONOHA_IdentityServiceApi="" |
||||
|
_err "You didn't specify a conoha api username and password yet." |
||||
|
_err "Please create the user and try again." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_saveaccountconf_mutable CONOHA_Username "$CONOHA_Username" |
||||
|
_saveaccountconf_mutable CONOHA_Password "$CONOHA_Password" |
||||
|
_saveaccountconf_mutable CONOHA_TenantId "$CONOHA_TenantId" |
||||
|
_saveaccountconf_mutable CONOHA_IdentityServiceApi "$CONOHA_IdentityServiceApi" |
||||
|
|
||||
|
if token="$(_conoha_get_accesstoken "$CONOHA_IdentityServiceApi/tokens" "$CONOHA_Username" "$CONOHA_Password" "$CONOHA_TenantId")"; then |
||||
|
accesstoken="$(printf "%s" "$token" | sed -n 1p)" |
||||
|
CONOHA_Api="$(printf "%s" "$token" | sed -n 2p)" |
||||
|
else |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug "First detect the root zone" |
||||
|
if ! _get_root "$fulldomain" "$CONOHA_Api" "$accesstoken"; then |
||||
|
_err "invalid domain" |
||||
|
return 1 |
||||
|
fi |
||||
|
_debug _domain_id "$_domain_id" |
||||
|
_debug _sub_domain "$_sub_domain" |
||||
|
_debug _domain "$_domain" |
||||
|
|
||||
|
_debug "Getting txt records" |
||||
|
if ! _conoha_rest GET "$CONOHA_Api/v1/domains/$_domain_id/records" "" "$accesstoken"; then |
||||
|
_err "Error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
record_id=$(printf "%s" "$response" | _egrep_o '{[^}]*}' \ |
||||
|
| grep '"type":"TXT"' | grep "\"data\":\"$txtvalue\"" | _egrep_o "\"id\":\"[^\"]*\"" \ |
||||
|
| _head_n 1 | cut -d : -f 2 | tr -d \") |
||||
|
if [ -z "$record_id" ]; then |
||||
|
_err "Can not get record id to remove." |
||||
|
return 1 |
||||
|
fi |
||||
|
_debug record_id "$record_id" |
||||
|
|
||||
|
_info "Removing the txt record" |
||||
|
if ! _conoha_rest DELETE "$CONOHA_Api/v1/domains/$_domain_id/records/$record_id" "" "$accesstoken"; then |
||||
|
_err "Delete record error." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
#################### Private functions below ################################## |
||||
|
|
||||
|
_conoha_rest() { |
||||
|
m="$1" |
||||
|
ep="$2" |
||||
|
data="$3" |
||||
|
accesstoken="$4" |
||||
|
|
||||
|
export _H1="Accept: application/json" |
||||
|
export _H2="Content-Type: application/json" |
||||
|
if [ -n "$accesstoken" ]; then |
||||
|
export _H3="X-Auth-Token: $accesstoken" |
||||
|
fi |
||||
|
|
||||
|
_debug "$ep" |
||||
|
if [ "$m" != "GET" ]; then |
||||
|
_secure_debug2 data "$data" |
||||
|
response="$(_post "$data" "$ep" "" "$m")" |
||||
|
else |
||||
|
response="$(_get "$ep")" |
||||
|
fi |
||||
|
_ret="$?" |
||||
|
_secure_debug2 response "$response" |
||||
|
if [ "$_ret" != "0" ]; then |
||||
|
_err "error $ep" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
response="$(printf "%s" "$response" | _normalizeJson)" |
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_conoha_get_accesstoken() { |
||||
|
ep="$1" |
||||
|
username="$2" |
||||
|
password="$3" |
||||
|
tenantId="$4" |
||||
|
|
||||
|
accesstoken="$(_readaccountconf_mutable conoha_accesstoken)" |
||||
|
expires="$(_readaccountconf_mutable conoha_tokenvalidto)" |
||||
|
CONOHA_Api="$(_readaccountconf_mutable conoha_dns_ep)" |
||||
|
|
||||
|
# can we reuse the access token? |
||||
|
if [ -n "$accesstoken" ] && [ -n "$expires" ] && [ -n "$CONOHA_Api" ]; then |
||||
|
utc_date="$(_utc_date | sed "s/ /T/")" |
||||
|
if expr "$utc_date" "<" "$expires" >/dev/null; then |
||||
|
# access token is still valid - reuse it |
||||
|
_debug "reusing access token" |
||||
|
printf "%s\n%s\n" "$accesstoken" "$CONOHA_Api" |
||||
|
return 0 |
||||
|
else |
||||
|
_debug "access token expired" |
||||
|
fi |
||||
|
fi |
||||
|
_debug "getting new access token" |
||||
|
|
||||
|
body="$(printf '{"auth":{"passwordCredentials":{"username":"%s","password":"%s"},"tenantId":"%s"}}' "$username" "$password" "$tenantId")" |
||||
|
if ! _conoha_rest POST "$ep" "$body" ""; then |
||||
|
_err error "$response" |
||||
|
return 1 |
||||
|
fi |
||||
|
accesstoken=$(printf "%s" "$response" | _egrep_o "\"id\":\"[^\"]*\"" | _head_n 1 | cut -d : -f 2 | tr -d \") |
||||
|
expires=$(printf "%s" "$response" | _egrep_o "\"expires\":\"[^\"]*\"" | _head_n 1 | cut -d : -f 2-4 | tr -d \" | tr -d Z) #expect UTC |
||||
|
if [ -z "$accesstoken" ] || [ -z "$expires" ]; then |
||||
|
_err "no acccess token received. Check your Conoha settings see $WIKI" |
||||
|
return 1 |
||||
|
fi |
||||
|
_saveaccountconf_mutable conoha_accesstoken "$accesstoken" |
||||
|
_saveaccountconf_mutable conoha_tokenvalidto "$expires" |
||||
|
|
||||
|
CONOHA_Api=$(printf "%s" "$response" | _egrep_o 'publicURL":"'"$CONOHA_DNS_EP_PREFIX_REGEXP"'[^"]*"' | _head_n 1 | cut -d : -f 2-3 | tr -d \") |
||||
|
if [ -z "$CONOHA_Api" ]; then |
||||
|
_err "failed to get conoha dns endpoint url" |
||||
|
return 1 |
||||
|
fi |
||||
|
_saveaccountconf_mutable conoha_dns_ep "$CONOHA_Api" |
||||
|
|
||||
|
printf "%s\n%s\n" "$accesstoken" "$CONOHA_Api" |
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
#_acme-challenge.www.domain.com |
||||
|
#returns |
||||
|
# _sub_domain=_acme-challenge.www |
||||
|
# _domain=domain.com |
||||
|
# _domain_id=sdjkglgdfewsdfg |
||||
|
_get_root() { |
||||
|
domain="$1" |
||||
|
ep="$2" |
||||
|
accesstoken="$3" |
||||
|
i=2 |
||||
|
p=1 |
||||
|
while true; do |
||||
|
h=$(printf "%s" "$domain" | cut -d . -f $i-100). |
||||
|
_debug h "$h" |
||||
|
if [ -z "$h" ]; then |
||||
|
#not valid |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _conoha_rest GET "$ep/v1/domains?name=$h" "" "$accesstoken"; then |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if _contains "$response" "\"name\":\"$h\"" >/dev/null; then |
||||
|
_domain_id=$(printf "%s\n" "$response" | _egrep_o "\"id\":\"[^\"]*\"" | head -n 1 | cut -d : -f 2 | tr -d \") |
||||
|
if [ "$_domain_id" ]; then |
||||
|
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p) |
||||
|
_domain=$h |
||||
|
return 0 |
||||
|
fi |
||||
|
return 1 |
||||
|
fi |
||||
|
p=$i |
||||
|
i=$(_math "$i" + 1) |
||||
|
done |
||||
|
return 1 |
||||
|
} |
@ -0,0 +1,161 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
|
||||
|
# Dnspod.com Domain api |
||||
|
# |
||||
|
#DPI_Id="1234" |
||||
|
# |
||||
|
#DPI_Key="sADDsdasdgdsf" |
||||
|
|
||||
|
REST_API="https://api.dnspod.com" |
||||
|
|
||||
|
######## Public functions ##################### |
||||
|
|
||||
|
#Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
dns_dpi_add() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
|
||||
|
DPI_Id="${DPI_Id:-$(_readaccountconf_mutable DPI_Id)}" |
||||
|
DPI_Key="${DPI_Key:-$(_readaccountconf_mutable DPI_Key)}" |
||||
|
if [ -z "$DPI_Id" ] || [ -z "$DPI_Key" ]; then |
||||
|
DPI_Id="" |
||||
|
DPI_Key="" |
||||
|
_err "You don't specify dnspod api key and key id yet." |
||||
|
_err "Please create you key and try again." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
#save the api key and email to the account conf file. |
||||
|
_saveaccountconf_mutable DPI_Id "$DPI_Id" |
||||
|
_saveaccountconf_mutable DPI_Key "$DPI_Key" |
||||
|
|
||||
|
_debug "First detect the root zone" |
||||
|
if ! _get_root "$fulldomain"; then |
||||
|
_err "invalid domain" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
add_record "$_domain" "$_sub_domain" "$txtvalue" |
||||
|
|
||||
|
} |
||||
|
|
||||
|
#fulldomain txtvalue |
||||
|
dns_dpi_rm() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
|
||||
|
DPI_Id="${DPI_Id:-$(_readaccountconf_mutable DPI_Id)}" |
||||
|
DPI_Key="${DPI_Key:-$(_readaccountconf_mutable DPI_Key)}" |
||||
|
|
||||
|
_debug "First detect the root zone" |
||||
|
if ! _get_root "$fulldomain"; then |
||||
|
_err "invalid domain" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _rest POST "Record.List" "user_token=$DPI_Id,$DPI_Key&format=json&domain_id=$_domain_id&sub_domain=$_sub_domain"; then |
||||
|
_err "Record.Lis error." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if _contains "$response" 'No records'; then |
||||
|
_info "Don't need to remove." |
||||
|
return 0 |
||||
|
fi |
||||
|
|
||||
|
record_id=$(echo "$response" | _egrep_o '{[^{]*"value":"'"$txtvalue"'"' | cut -d , -f 1 | cut -d : -f 2 | tr -d \") |
||||
|
_debug record_id "$record_id" |
||||
|
if [ -z "$record_id" ]; then |
||||
|
_err "Can not get record id." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _rest POST "Record.Remove" "user_token=$DPI_Id,$DPI_Key&format=json&domain_id=$_domain_id&record_id=$record_id"; then |
||||
|
_err "Record.Remove error." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_contains "$response" "Action completed successful" |
||||
|
|
||||
|
} |
||||
|
|
||||
|
#add the txt record. |
||||
|
#usage: root sub txtvalue |
||||
|
add_record() { |
||||
|
root=$1 |
||||
|
sub=$2 |
||||
|
txtvalue=$3 |
||||
|
fulldomain="$sub.$root" |
||||
|
|
||||
|
_info "Adding record" |
||||
|
|
||||
|
if ! _rest POST "Record.Create" "user_token=$DPI_Id,$DPI_Key&format=json&domain_id=$_domain_id&sub_domain=$_sub_domain&record_type=TXT&value=$txtvalue&record_line=default"; then |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_contains "$response" "Action completed successful" || _contains "$response" "Domain record already exists" |
||||
|
} |
||||
|
|
||||
|
#################### Private functions below ################################## |
||||
|
#_acme-challenge.www.domain.com |
||||
|
#returns |
||||
|
# _sub_domain=_acme-challenge.www |
||||
|
# _domain=domain.com |
||||
|
# _domain_id=sdjkglgdfewsdfg |
||||
|
_get_root() { |
||||
|
domain=$1 |
||||
|
i=2 |
||||
|
p=1 |
||||
|
while true; do |
||||
|
h=$(printf "%s" "$domain" | cut -d . -f $i-100) |
||||
|
if [ -z "$h" ]; then |
||||
|
#not valid |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _rest POST "Domain.Info" "user_token=$DPI_Id,$DPI_Key&format=json&domain=$h"; then |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if _contains "$response" "Action completed successful"; then |
||||
|
_domain_id=$(printf "%s\n" "$response" | _egrep_o "\"id\":\"[^\"]*\"" | cut -d : -f 2 | tr -d \") |
||||
|
_debug _domain_id "$_domain_id" |
||||
|
if [ "$_domain_id" ]; then |
||||
|
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p) |
||||
|
_debug _sub_domain "$_sub_domain" |
||||
|
_domain="$h" |
||||
|
_debug _domain "$_domain" |
||||
|
return 0 |
||||
|
fi |
||||
|
return 1 |
||||
|
fi |
||||
|
p="$i" |
||||
|
i=$(_math "$i" + 1) |
||||
|
done |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
#Usage: method URI data |
||||
|
_rest() { |
||||
|
m="$1" |
||||
|
ep="$2" |
||||
|
data="$3" |
||||
|
_debug "$ep" |
||||
|
url="$REST_API/$ep" |
||||
|
|
||||
|
_debug url "$url" |
||||
|
|
||||
|
if [ "$m" = "GET" ]; then |
||||
|
response="$(_get "$url" | tr -d '\r')" |
||||
|
else |
||||
|
_debug2 data "$data" |
||||
|
response="$(_post "$data" "$url" | tr -d '\r')" |
||||
|
fi |
||||
|
|
||||
|
if [ "$?" != "0" ]; then |
||||
|
_err "error $ep" |
||||
|
return 1 |
||||
|
fi |
||||
|
_debug2 response "$response" |
||||
|
return 0 |
||||
|
} |
@ -0,0 +1,167 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
|
||||
|
# Author: Janos Lenart <janos@lenart.io> |
||||
|
|
||||
|
######## Public functions ##################### |
||||
|
|
||||
|
# Usage: dns_gcloud_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
dns_gcloud_add() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using gcloud" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
|
||||
|
_dns_gcloud_find_zone || return $? |
||||
|
|
||||
|
# Add an extra RR |
||||
|
_dns_gcloud_start_tr || return $? |
||||
|
_dns_gcloud_get_rrdatas || return $? |
||||
|
echo "$rrdatas" | _dns_gcloud_remove_rrs || return $? |
||||
|
printf "%s\n%s\n" "$rrdatas" "\"$txtvalue\"" | grep -v '^$' | _dns_gcloud_add_rrs || return $? |
||||
|
_dns_gcloud_execute_tr || return $? |
||||
|
|
||||
|
_info "$fulldomain record added" |
||||
|
} |
||||
|
|
||||
|
# Usage: dns_gcloud_rm _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
# Remove the txt record after validation. |
||||
|
dns_gcloud_rm() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using gcloud" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
|
||||
|
_dns_gcloud_find_zone || return $? |
||||
|
|
||||
|
# Remove one RR |
||||
|
_dns_gcloud_start_tr || return $? |
||||
|
_dns_gcloud_get_rrdatas || return $? |
||||
|
echo "$rrdatas" | _dns_gcloud_remove_rrs || return $? |
||||
|
echo "$rrdatas" | grep -F -v "\"$txtvalue\"" | _dns_gcloud_add_rrs || return $? |
||||
|
_dns_gcloud_execute_tr || return $? |
||||
|
|
||||
|
_info "$fulldomain record added" |
||||
|
} |
||||
|
|
||||
|
#################### Private functions below ################################## |
||||
|
|
||||
|
_dns_gcloud_start_tr() { |
||||
|
if ! trd=$(mktemp -d); then |
||||
|
_err "_dns_gcloud_start_tr: failed to create temporary directory" |
||||
|
return 1 |
||||
|
fi |
||||
|
tr="$trd/tr.yaml" |
||||
|
_debug tr "$tr" |
||||
|
|
||||
|
if ! gcloud dns record-sets transaction start \ |
||||
|
--transaction-file="$tr" \ |
||||
|
--zone="$managedZone"; then |
||||
|
rm -r "$trd" |
||||
|
_err "_dns_gcloud_start_tr: failed to execute transaction" |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
||||
|
|
||||
|
_dns_gcloud_execute_tr() { |
||||
|
if ! gcloud dns record-sets transaction execute \ |
||||
|
--transaction-file="$tr" \ |
||||
|
--zone="$managedZone"; then |
||||
|
_debug tr "$(cat "$tr")" |
||||
|
rm -r "$trd" |
||||
|
_err "_dns_gcloud_execute_tr: failed to execute transaction" |
||||
|
return 1 |
||||
|
fi |
||||
|
rm -r "$trd" |
||||
|
|
||||
|
for i in $(seq 1 120); do |
||||
|
if gcloud dns record-sets changes list \ |
||||
|
--zone="$managedZone" \ |
||||
|
--filter='status != done' \ |
||||
|
| grep -q '^.*'; then |
||||
|
_info "_dns_gcloud_execute_tr: waiting for transaction to be comitted ($i/120)..." |
||||
|
sleep 5 |
||||
|
else |
||||
|
return 0 |
||||
|
fi |
||||
|
done |
||||
|
|
||||
|
_err "_dns_gcloud_execute_tr: transaction is still pending after 10 minutes" |
||||
|
rm -r "$trd" |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
_dns_gcloud_remove_rrs() { |
||||
|
if ! xargs --no-run-if-empty gcloud dns record-sets transaction remove \ |
||||
|
--name="$fulldomain." \ |
||||
|
--ttl="$ttl" \ |
||||
|
--type=TXT \ |
||||
|
--zone="$managedZone" \ |
||||
|
--transaction-file="$tr"; then |
||||
|
_debug tr "$(cat "$tr")" |
||||
|
rm -r "$trd" |
||||
|
_err "_dns_gcloud_remove_rrs: failed to remove RRs" |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
||||
|
|
||||
|
_dns_gcloud_add_rrs() { |
||||
|
ttl=60 |
||||
|
if ! xargs --no-run-if-empty gcloud dns record-sets transaction add \ |
||||
|
--name="$fulldomain." \ |
||||
|
--ttl="$ttl" \ |
||||
|
--type=TXT \ |
||||
|
--zone="$managedZone" \ |
||||
|
--transaction-file="$tr"; then |
||||
|
_debug tr "$(cat "$tr")" |
||||
|
rm -r "$trd" |
||||
|
_err "_dns_gcloud_add_rrs: failed to add RRs" |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
||||
|
|
||||
|
_dns_gcloud_find_zone() { |
||||
|
# Prepare a filter that matches zones that are suiteable for this entry. |
||||
|
# For example, _acme-challenge.something.domain.com might need to go into something.domain.com or domain.com; |
||||
|
# this function finds the longest postfix that has a managed zone. |
||||
|
part="$fulldomain" |
||||
|
filter="dnsName=( " |
||||
|
while [ "$part" != "" ]; do |
||||
|
filter="$filter$part. " |
||||
|
part="$(echo "$part" | sed 's/[^.]*\.*//')" |
||||
|
done |
||||
|
filter="$filter)" |
||||
|
_debug filter "$filter" |
||||
|
|
||||
|
# List domains and find the longest match (in case of some levels of delegation) |
||||
|
if ! match=$(gcloud dns managed-zones list \ |
||||
|
--format="value(name, dnsName)" \ |
||||
|
--filter="$filter" \ |
||||
|
| while read -r dnsName name; do |
||||
|
printf "%s\t%s\t%s\n" "${#dnsName}" "$dnsName" "$name" |
||||
|
done \ |
||||
|
| sort -n -r | _head_n 1 | cut -f2,3 | grep '^.*'); then |
||||
|
_err "_dns_gcloud_find_zone: Can't find a matching managed zone! Perhaps wrong project or gcloud credentials?" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
dnsName=$(echo "$match" | cut -f2) |
||||
|
_debug dnsName "$dnsName" |
||||
|
managedZone=$(echo "$match" | cut -f1) |
||||
|
_debug managedZone "$managedZone" |
||||
|
} |
||||
|
|
||||
|
_dns_gcloud_get_rrdatas() { |
||||
|
if ! rrdatas=$(gcloud dns record-sets list \ |
||||
|
--zone="$managedZone" \ |
||||
|
--name="$fulldomain." \ |
||||
|
--type=TXT \ |
||||
|
--format="value(ttl,rrdatas)"); then |
||||
|
_err "_dns_gcloud_get_rrdatas: Failed to list record-sets" |
||||
|
rm -r "$trd" |
||||
|
return 1 |
||||
|
fi |
||||
|
ttl=$(echo "$rrdatas" | cut -f1) |
||||
|
rrdatas=$(echo "$rrdatas" | cut -f2 | sed 's/","/"\n"/g') |
||||
|
} |
@ -0,0 +1,168 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
#Author: Herman Sletteng |
||||
|
#Report Bugs here: https://github.com/loial/acme.sh |
||||
|
# |
||||
|
# |
||||
|
# Note, gratisdns requires a login first, so the script needs to handle |
||||
|
# temporary cookies. Since acme.sh _get/_post currently don't directly support |
||||
|
# cookies, I've defined wrapper functions _myget/_mypost to set the headers |
||||
|
|
||||
|
GDNSDK_API="https://admin.gratisdns.com" |
||||
|
######## Public functions ##################### |
||||
|
#Usage: dns_gdnsdk_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
dns_gdnsdk_add() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using gratisdns.dk" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
if ! _gratisdns_login; then |
||||
|
_err "Login failed!" |
||||
|
return 1 |
||||
|
fi |
||||
|
#finding domain zone |
||||
|
if ! _get_domain; then |
||||
|
_err "No matching root domain for $fulldomain found" |
||||
|
return 1 |
||||
|
fi |
||||
|
# adding entry |
||||
|
_info "Adding the entry" |
||||
|
_mypost "action=dns_primary_record_added_txt&user_domain=$_domain&name=$fulldomain&txtdata=$txtvalue&ttl=1" |
||||
|
if _successful_update; then return 0; fi |
||||
|
_err "Couldn't create entry!" |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
#Usage: fulldomain txtvalue |
||||
|
#Remove the txt record after validation. |
||||
|
dns_gdnsdk_rm() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using gratisdns.dk" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
if ! _gratisdns_login; then |
||||
|
_err "Login failed!" |
||||
|
return 1 |
||||
|
fi |
||||
|
if ! _get_domain; then |
||||
|
_err "No matching root domain for $fulldomain found" |
||||
|
return 1 |
||||
|
fi |
||||
|
_findentry "$fulldomain" "$txtvalue" |
||||
|
if [ -z "$_id" ]; then |
||||
|
_info "Entry doesn't exist, nothing to delete" |
||||
|
return 0 |
||||
|
fi |
||||
|
_debug "Deleting record..." |
||||
|
_mypost "action=dns_primary_delete_txt&user_domain=$_domain&id=$_id" |
||||
|
# removing entry |
||||
|
|
||||
|
if _successful_update; then return 0; fi |
||||
|
_err "Couldn't delete entry!" |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
#################### Private functions below ################################## |
||||
|
|
||||
|
_checkcredentials() { |
||||
|
GDNSDK_Username="${GDNSDK_Username:-$(_readaccountconf_mutable GDNSDK_Username)}" |
||||
|
GDNSDK_Password="${GDNSDK_Password:-$(_readaccountconf_mutable GDNSDK_Password)}" |
||||
|
|
||||
|
if [ -z "$GDNSDK_Username" ] || [ -z "$GDNSDK_Password" ]; then |
||||
|
GDNSDK_Username="" |
||||
|
GDNSDK_Password="" |
||||
|
_err "You haven't specified gratisdns.dk username and password yet." |
||||
|
_err "Please add credentials and try again." |
||||
|
return 1 |
||||
|
fi |
||||
|
#save the credentials to the account conf file. |
||||
|
_saveaccountconf_mutable GDNSDK_Username "$GDNSDK_Username" |
||||
|
_saveaccountconf_mutable GDNSDK_Password "$GDNSDK_Password" |
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_checkcookie() { |
||||
|
GDNSDK_Cookie="${GDNSDK_Cookie:-$(_readaccountconf_mutable GDNSDK_Cookie)}" |
||||
|
if [ -z "$GDNSDK_Cookie" ]; then |
||||
|
_debug "No cached cookie found" |
||||
|
return 1 |
||||
|
fi |
||||
|
_myget "action=" |
||||
|
if (echo "$_result" | grep -q "logmeout"); then |
||||
|
_debug "Cached cookie still valid" |
||||
|
return 0 |
||||
|
fi |
||||
|
_debug "Cached cookie no longer valid" |
||||
|
GDNSDK_Cookie="" |
||||
|
_saveaccountconf_mutable GDNSDK_Cookie "$GDNSDK_Cookie" |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
_gratisdns_login() { |
||||
|
if ! _checkcredentials; then return 1; fi |
||||
|
|
||||
|
if _checkcookie; then |
||||
|
_debug "Already logged in" |
||||
|
return 0 |
||||
|
fi |
||||
|
_debug "Logging into GratisDNS with user $GDNSDK_Username" |
||||
|
|
||||
|
if ! _mypost "login=$GDNSDK_Username&password=$GDNSDK_Password&action=logmein"; then |
||||
|
_err "GratisDNS login failed for user $GDNSDK_Username bad RC from _post" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
GDNSDK_Cookie="$(grep -A 15 '302 Found' "$HTTP_HEADER" | _egrep_o 'Cookie: [^;]*' | _head_n 1 | cut -d ' ' -f2)" |
||||
|
|
||||
|
if [ -z "$GDNSDK_Cookie" ]; then |
||||
|
_err "GratisDNS login failed for user $GDNSDK_Username. Check $HTTP_HEADER file" |
||||
|
return 1 |
||||
|
fi |
||||
|
export GDNSDK_Cookie |
||||
|
_saveaccountconf_mutable GDNSDK_Cookie "$GDNSDK_Cookie" |
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_myget() { |
||||
|
#Adds cookie to request |
||||
|
export _H1="Cookie: $GDNSDK_Cookie" |
||||
|
_result=$(_get "$GDNSDK_API?$1") |
||||
|
} |
||||
|
_mypost() { |
||||
|
#Adds cookie to request |
||||
|
export _H1="Cookie: $GDNSDK_Cookie" |
||||
|
_result=$(_post "$1" "$GDNSDK_API") |
||||
|
} |
||||
|
|
||||
|
_get_domain() { |
||||
|
_myget 'action=dns_primarydns' |
||||
|
_domains=$(echo "$_result" | _egrep_o ' domain="[[:alnum:].-_]+' | sed 's/^.*"//') |
||||
|
if [ -z "$_domains" ]; then |
||||
|
_err "Primary domain list not found!" |
||||
|
return 1 |
||||
|
fi |
||||
|
for _domain in $_domains; do |
||||
|
if (_endswith "$fulldomain" "$_domain"); then |
||||
|
_debug "Root domain: $_domain" |
||||
|
return 0 |
||||
|
fi |
||||
|
done |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
_successful_update() { |
||||
|
if (echo "$_result" | grep -q 'table-success'); then return 0; fi |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
_findentry() { |
||||
|
#returns id of dns entry, if it exists |
||||
|
_myget "action=dns_primary_changeDNSsetup&user_domain=$_domain" |
||||
|
_id=$(echo "$_result" | _egrep_o "<td>$1</td>\s*<td>$2</td>[^?]*[^&]*&id=[^&]*" | sed 's/^.*=//') |
||||
|
if [ -n "$_id" ]; then |
||||
|
_debug "Entry found with _id=$_id" |
||||
|
return 0 |
||||
|
fi |
||||
|
return 1 |
||||
|
} |
@ -0,0 +1,308 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
|
||||
|
# Namecheap API |
||||
|
# https://www.namecheap.com/support/api/intro.aspx |
||||
|
# |
||||
|
# Requires Namecheap API key set in NAMECHEAP_API_KEY, NAMECHEAP_SOURCEIP and NAMECHEAP_USERNAME set as environment variable |
||||
|
# Due to Namecheap's API limitation all the records of your domain will be read and re applied, make sure to have a backup of your records you could apply if any issue would arise. |
||||
|
|
||||
|
######## Public functions ##################### |
||||
|
|
||||
|
if [ "$STAGE" -eq 1 ]; then |
||||
|
NAMECHEAP_API="https://api.sandbox.namecheap.com/xml.response" |
||||
|
else |
||||
|
NAMECHEAP_API="https://api.namecheap.com/xml.response" |
||||
|
fi |
||||
|
|
||||
|
#Usage: dns_namecheap_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
dns_namecheap_add() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
|
||||
|
if ! _namecheap_check_config; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _namecheap_set_publicip; then |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug "First detect the root zone" |
||||
|
if ! _get_root "$fulldomain"; then |
||||
|
_err "invalid domain" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
_debug domain "$_domain" |
||||
|
_debug sub_domain "$_sub_domain" |
||||
|
|
||||
|
_set_namecheap_TXT "$_domain" "$_sub_domain" "$txtvalue" |
||||
|
} |
||||
|
|
||||
|
#Usage: fulldomain txtvalue |
||||
|
#Remove the txt record after validation. |
||||
|
dns_namecheap_rm() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
|
||||
|
if ! _namecheap_set_publicip; then |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _namecheap_check_config; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug "First detect the root zone" |
||||
|
if ! _get_root "$fulldomain"; then |
||||
|
_err "invalid domain" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
_debug domain "$_domain" |
||||
|
_debug sub_domain "$_sub_domain" |
||||
|
|
||||
|
_del_namecheap_TXT "$_domain" "$_sub_domain" "$txtvalue" |
||||
|
} |
||||
|
|
||||
|
#################### Private functions below ################################## |
||||
|
#_acme-challenge.www.domain.com |
||||
|
#returns |
||||
|
# _sub_domain=_acme-challenge.www |
||||
|
# _domain=domain.com |
||||
|
_get_root() { |
||||
|
domain=$1 |
||||
|
|
||||
|
if ! _namecheap_post "namecheap.domains.getList"; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
i=2 |
||||
|
p=1 |
||||
|
|
||||
|
while true; do |
||||
|
|
||||
|
h=$(printf "%s" "$domain" | cut -d . -f $i-100) |
||||
|
_debug h "$h" |
||||
|
if [ -z "$h" ]; then |
||||
|
#not valid |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if ! _contains "$response" "$h"; then |
||||
|
_debug "$h not found" |
||||
|
else |
||||
|
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p) |
||||
|
_domain="$h" |
||||
|
return 0 |
||||
|
fi |
||||
|
p="$i" |
||||
|
i=$(_math "$i" + 1) |
||||
|
done |
||||
|
return 1 |
||||
|
} |
||||
|
|
||||
|
_namecheap_set_publicip() { |
||||
|
|
||||
|
if [ -z "$NAMECHEAP_SOURCEIP" ]; then |
||||
|
_err "No Source IP specified for Namecheap API." |
||||
|
_err "Use your public ip address or an url to retrieve it (e.g. https://ipconfig.co/ip) and export it as NAMECHEAP_SOURCEIP" |
||||
|
return 1 |
||||
|
else |
||||
|
_saveaccountconf NAMECHEAP_SOURCEIP "$NAMECHEAP_SOURCEIP" |
||||
|
_debug sourceip "$NAMECHEAP_SOURCEIP" |
||||
|
|
||||
|
ip=$(echo "$NAMECHEAP_SOURCEIP" | _egrep_o '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}') |
||||
|
addr=$(echo "$NAMECHEAP_SOURCEIP" | _egrep_o '(http|https)://.*') |
||||
|
|
||||
|
_debug2 ip "$ip" |
||||
|
_debug2 addr "$addr" |
||||
|
|
||||
|
if [ -n "$ip" ]; then |
||||
|
_publicip="$ip" |
||||
|
elif [ -n "$addr" ]; then |
||||
|
_publicip=$(_get "$addr") |
||||
|
else |
||||
|
_err "No Source IP specified for Namecheap API." |
||||
|
_err "Use your public ip address or an url to retrieve it (e.g. https://ipconfig.co/ip) and export it as NAMECHEAP_SOURCEIP" |
||||
|
return 1 |
||||
|
fi |
||||
|
fi |
||||
|
|
||||
|
_debug publicip "$_publicip" |
||||
|
|
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_namecheap_post() { |
||||
|
command=$1 |
||||
|
data="ApiUser=${NAMECHEAP_USERNAME}&ApiKey=${NAMECHEAP_API_KEY}&ClientIp=${_publicip}&UserName=${NAMECHEAP_USERNAME}&Command=${command}" |
||||
|
|
||||
|
response="$(_post "$data" "$NAMECHEAP_API" "" "POST")" |
||||
|
_debug2 response "$response" |
||||
|
|
||||
|
if _contains "$response" "Status=\"ERROR\"" >/dev/null; then |
||||
|
error=$(echo "$response" | _egrep_o ">.*<\\/Error>" | cut -d '<' -f 1 | tr -d '>') |
||||
|
_err "error $error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_namecheap_parse_host() { |
||||
|
_host=$1 |
||||
|
_debug _host "$_host" |
||||
|
|
||||
|
_hostid=$(echo "$_host" | _egrep_o '\sHostId="[^"]*' | cut -d '"' -f 2) |
||||
|
_hostname=$(echo "$_host" | _egrep_o '\sName="[^"]*' | cut -d '"' -f 2) |
||||
|
_hosttype=$(echo "$_host" | _egrep_o '\sType="[^"]*' | cut -d '"' -f 2) |
||||
|
_hostaddress=$(echo "$_host" | _egrep_o '\sAddress="[^"]*' | cut -d '"' -f 2) |
||||
|
_hostmxpref=$(echo "$_host" | _egrep_o '\sMXPref="[^"]*' | cut -d '"' -f 2) |
||||
|
_hostttl=$(echo "$_host" | _egrep_o '\sTTL="[^"]*' | cut -d '"' -f 2) |
||||
|
|
||||
|
_debug hostid "$_hostid" |
||||
|
_debug hostname "$_hostname" |
||||
|
_debug hosttype "$_hosttype" |
||||
|
_debug hostaddress "$_hostaddress" |
||||
|
_debug hostmxpref "$_hostmxpref" |
||||
|
_debug hostttl "$_hostttl" |
||||
|
} |
||||
|
|
||||
|
_namecheap_check_config() { |
||||
|
|
||||
|
if [ -z "$NAMECHEAP_API_KEY" ]; then |
||||
|
_err "No API key specified for Namecheap API." |
||||
|
_err "Create your key and export it as NAMECHEAP_API_KEY" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if [ -z "$NAMECHEAP_USERNAME" ]; then |
||||
|
_err "No username key specified for Namecheap API." |
||||
|
_err "Create your key and export it as NAMECHEAP_USERNAME" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_saveaccountconf NAMECHEAP_API_KEY "$NAMECHEAP_API_KEY" |
||||
|
_saveaccountconf NAMECHEAP_USERNAME "$NAMECHEAP_USERNAME" |
||||
|
|
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_set_namecheap_TXT() { |
||||
|
subdomain=$2 |
||||
|
txt=$3 |
||||
|
tld=$(echo "$1" | cut -d '.' -f 2) |
||||
|
sld=$(echo "$1" | cut -d '.' -f 1) |
||||
|
request="namecheap.domains.dns.getHosts&SLD=$sld&TLD=$tld" |
||||
|
|
||||
|
if ! _namecheap_post "$request"; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
hosts=$(echo "$response" | _egrep_o '<host[^>]*') |
||||
|
_debug hosts "$hosts" |
||||
|
|
||||
|
if [ -z "$hosts" ]; then |
||||
|
_error "Hosts not found" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_namecheap_reset_hostList |
||||
|
|
||||
|
while read -r host; do |
||||
|
if _contains "$host" "<host"; then |
||||
|
_namecheap_parse_host "$host" |
||||
|
_namecheap_add_host "$_hostname" "$_hosttype" "$_hostaddress" "$_hostmxpref" "$_hostttl" |
||||
|
fi |
||||
|
done <<EOT |
||||
|
echo "$hosts" |
||||
|
EOT |
||||
|
|
||||
|
_namecheap_add_host "$subdomain" "TXT" "$txt" 10 120 |
||||
|
|
||||
|
_debug hostrequestfinal "$_hostrequest" |
||||
|
|
||||
|
request="namecheap.domains.dns.setHosts&SLD=${sld}&TLD=${tld}${_hostrequest}" |
||||
|
|
||||
|
if ! _namecheap_post "$request"; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_del_namecheap_TXT() { |
||||
|
subdomain=$2 |
||||
|
txt=$3 |
||||
|
tld=$(echo "$1" | cut -d '.' -f 2) |
||||
|
sld=$(echo "$1" | cut -d '.' -f 1) |
||||
|
request="namecheap.domains.dns.getHosts&SLD=$sld&TLD=$tld" |
||||
|
|
||||
|
if ! _namecheap_post "$request"; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
hosts=$(echo "$response" | _egrep_o '<host[^>]*') |
||||
|
_debug hosts "$hosts" |
||||
|
|
||||
|
if [ -z "$hosts" ]; then |
||||
|
_error "Hosts not found" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
_namecheap_reset_hostList |
||||
|
|
||||
|
found=0 |
||||
|
|
||||
|
while read -r host; do |
||||
|
if _contains "$host" "<host"; then |
||||
|
_namecheap_parse_host "$host" |
||||
|
if [ "$_hosttype" = "TXT" ] && [ "$_hostname" = "$subdomain" ] && [ "$_hostaddress" = "$txt" ]; then |
||||
|
_debug "TXT entry found" |
||||
|
found=1 |
||||
|
else |
||||
|
_namecheap_add_host "$_hostname" "$_hosttype" "$_hostaddress" "$_hostmxpref" "$_hostttl" |
||||
|
fi |
||||
|
fi |
||||
|
done <<EOT |
||||
|
echo "$hosts" |
||||
|
EOT |
||||
|
|
||||
|
if [ $found -eq 0 ]; then |
||||
|
_debug "TXT entry not found" |
||||
|
return 0 |
||||
|
fi |
||||
|
|
||||
|
_debug hostrequestfinal "$_hostrequest" |
||||
|
|
||||
|
request="namecheap.domains.dns.setHosts&SLD=${sld}&TLD=${tld}${_hostrequest}" |
||||
|
|
||||
|
if ! _namecheap_post "$request"; then |
||||
|
_err "$error" |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
return 0 |
||||
|
} |
||||
|
|
||||
|
_namecheap_reset_hostList() { |
||||
|
_hostindex=0 |
||||
|
_hostrequest="" |
||||
|
} |
||||
|
|
||||
|
#Usage: _namecheap_add_host HostName RecordType Address MxPref TTL |
||||
|
_namecheap_add_host() { |
||||
|
_hostindex=$(_math "$_hostindex" + 1) |
||||
|
_hostrequest=$(printf '%s&HostName%d=%s&RecordType%d=%s&Address%d=%s&MXPref%d=%d&TTL%d=%d' "$_hostrequest" "$_hostindex" "$1" "$_hostindex" "$2" "$_hostindex" "$3" "$_hostindex" "$4" "$_hostindex" "$5") |
||||
|
} |
@ -0,0 +1,133 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
#developed by linux-insideDE |
||||
|
|
||||
|
NC_Apikey="${NC_Apikey:-$(_readaccountconf_mutable NC_Apikey)}" |
||||
|
NC_Apipw="${NC_Apipw:-$(_readaccountconf_mutable NC_Apipw)}" |
||||
|
NC_CID="${NC_CID:-$(_readaccountconf_mutable NC_CID)}" |
||||
|
end="https://ccp.netcup.net/run/webservice/servers/endpoint.php?JSON" |
||||
|
client="" |
||||
|
|
||||
|
dns_netcup_add() { |
||||
|
login |
||||
|
if [ "$NC_Apikey" = "" ] || [ "$NC_Apipw" = "" ] || [ "$NC_CID" = "" ]; then |
||||
|
_err "No Credentials given" |
||||
|
return 1 |
||||
|
fi |
||||
|
_saveaccountconf_mutable NC_Apikey "$NC_Apikey" |
||||
|
_saveaccountconf_mutable NC_Apipw "$NC_Apipw" |
||||
|
_saveaccountconf_mutable NC_CID "$NC_CID" |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
domain="" |
||||
|
exit=$(echo "$fulldomain" | tr -dc '.' | wc -c) |
||||
|
exit=$(_math "$exit" + 1) |
||||
|
i=$exit |
||||
|
|
||||
|
while |
||||
|
[ "$exit" -gt 0 ] |
||||
|
do |
||||
|
tmp=$(echo "$fulldomain" | cut -d'.' -f"$exit") |
||||
|
if [ "$(_math "$i" - "$exit")" -eq 0 ]; then |
||||
|
domain="$tmp" |
||||
|
else |
||||
|
domain="$tmp.$domain" |
||||
|
fi |
||||
|
if [ "$(_math "$i" - "$exit")" -ge 1 ]; then |
||||
|
msg=$(_post "{\"action\": \"updateDnsRecords\", \"param\": {\"apikey\": \"$NC_Apikey\", \"apisessionid\": \"$sid\", \"customernumber\": \"$NC_CID\",\"clientrequestid\": \"$client\" , \"domainname\": \"$domain\", \"dnsrecordset\": { \"dnsrecords\": [ {\"id\": \"\", \"hostname\": \"$fulldomain.\", \"type\": \"TXT\", \"priority\": \"\", \"destination\": \"$txtvalue\", \"deleterecord\": \"false\", \"state\": \"yes\"} ]}}}" "$end" "" "POST") |
||||
|
_debug "$msg" |
||||
|
if [ "$(_getfield "$msg" "5" | sed 's/"statuscode"://g')" != 5028 ]; then |
||||
|
if [ "$(_getfield "$msg" "4" | sed s/\"status\":\"//g | sed s/\"//g)" != "success" ]; then |
||||
|
_err "$msg" |
||||
|
return 1 |
||||
|
else |
||||
|
break |
||||
|
fi |
||||
|
fi |
||||
|
fi |
||||
|
exit=$(_math "$exit" - 1) |
||||
|
done |
||||
|
logout |
||||
|
} |
||||
|
|
||||
|
dns_netcup_rm() { |
||||
|
login |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
|
||||
|
domain="" |
||||
|
exit=$(echo "$fulldomain" | tr -dc '.' | wc -c) |
||||
|
exit=$(_math "$exit" + 1) |
||||
|
i=$exit |
||||
|
rec="" |
||||
|
|
||||
|
while |
||||
|
[ "$exit" -gt 0 ] |
||||
|
do |
||||
|
tmp=$(echo "$fulldomain" | cut -d'.' -f"$exit") |
||||
|
if [ "$(_math "$i" - "$exit")" -eq 0 ]; then |
||||
|
domain="$tmp" |
||||
|
else |
||||
|
domain="$tmp.$domain" |
||||
|
fi |
||||
|
if [ "$(_math "$i" - "$exit")" -ge 1 ]; then |
||||
|
msg=$(_post "{\"action\": \"infoDnsRecords\", \"param\": {\"apikey\": \"$NC_Apikey\", \"apisessionid\": \"$sid\", \"customernumber\": \"$NC_CID\", \"domainname\": \"$domain\"}}" "$end" "" "POST") |
||||
|
rec=$(echo "$msg" | sed 's/\[//g' | sed 's/\]//g' | sed 's/{\"serverrequestid\".*\"dnsrecords\"://g' | sed 's/},{/};{/g' | sed 's/{//g' | sed 's/}//g') |
||||
|
_debug "$msg" |
||||
|
if [ "$(_getfield "$msg" "5" | sed 's/"statuscode"://g')" != 5028 ]; then |
||||
|
if [ "$(_getfield "$msg" "4" | sed s/\"status\":\"//g | sed s/\"//g)" != "success" ]; then |
||||
|
_err "$msg" |
||||
|
return 1 |
||||
|
else |
||||
|
break |
||||
|
fi |
||||
|
fi |
||||
|
fi |
||||
|
exit=$(_math "$exit" - 1) |
||||
|
done |
||||
|
|
||||
|
ida=0000 |
||||
|
idv=0001 |
||||
|
ids=0000000000 |
||||
|
i=1 |
||||
|
while |
||||
|
[ "$i" -ne 0 ] |
||||
|
do |
||||
|
specrec=$(_getfield "$rec" "$i" ";") |
||||
|
idv="$ida" |
||||
|
ida=$(_getfield "$specrec" "1" "," | sed 's/\"id\":\"//g' | sed 's/\"//g') |
||||
|
txtv=$(_getfield "$specrec" "5" "," | sed 's/\"destination\":\"//g' | sed 's/\"//g') |
||||
|
i=$(_math "$i" + 1) |
||||
|
if [ "$txtvalue" = "$txtv" ]; then |
||||
|
i=0 |
||||
|
ids="$ida" |
||||
|
fi |
||||
|
if [ "$ida" = "$idv" ]; then |
||||
|
i=0 |
||||
|
fi |
||||
|
done |
||||
|
msg=$(_post "{\"action\": \"updateDnsRecords\", \"param\": {\"apikey\": \"$NC_Apikey\", \"apisessionid\": \"$sid\", \"customernumber\": \"$NC_CID\",\"clientrequestid\": \"$client\" , \"domainname\": \"$domain\", \"dnsrecordset\": { \"dnsrecords\": [ {\"id\": \"$ids\", \"hostname\": \"$fulldomain.\", \"type\": \"TXT\", \"priority\": \"\", \"destination\": \"$txtvalue\", \"deleterecord\": \"TRUE\", \"state\": \"yes\"} ]}}}" "$end" "" "POST") |
||||
|
_debug "$msg" |
||||
|
if [ "$(_getfield "$msg" "4" | sed s/\"status\":\"//g | sed s/\"//g)" != "success" ]; then |
||||
|
_err "$msg" |
||||
|
return 1 |
||||
|
fi |
||||
|
logout |
||||
|
} |
||||
|
|
||||
|
login() { |
||||
|
tmp=$(_post "{\"action\": \"login\", \"param\": {\"apikey\": \"$NC_Apikey\", \"apipassword\": \"$NC_Apipw\", \"customernumber\": \"$NC_CID\"}}" "$end" "" "POST") |
||||
|
sid=$(_getfield "$tmp" "8" | sed s/\"responsedata\":\{\"apisessionid\":\"//g | sed 's/\"\}\}//g') |
||||
|
_debug "$tmp" |
||||
|
if [ "$(_getfield "$msg" "4" | sed s/\"status\":\"//g | sed s/\"//g)" != "success" ]; then |
||||
|
_err "$msg" |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
||||
|
logout() { |
||||
|
tmp=$(_post "{\"action\": \"logout\", \"param\": {\"apikey\": \"$NC_Apikey\", \"apisessionid\": \"$sid\", \"customernumber\": \"$NC_CID\"}}" "$end" "" "POST") |
||||
|
_debug "$tmp" |
||||
|
if [ "$(_getfield "$msg" "4" | sed s/\"status\":\"//g | sed s/\"//g)" != "success" ]; then |
||||
|
_err "$msg" |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
Write
Preview
Loading…
Cancel
Save
Reference in new issue