acme.sh/dnsapi/dns_azion.sh

259 lines
7.4 KiB
Bash
Raw Normal View History

2021-06-10 14:45:53 +00:00
#!/usr/bin/env sh
#
#AZION_Username=""
#AZION_Password=""
#AZION_Token=""
#AZION_ZoneID=""
#
AZION_Api="https://api.azionapi.net"
######## Public functions ########
# Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
# Used to add txt record
dns_azion_add() {
fulldomain=$1
txtvalue=$2
AZION_Username="${AZION_Username:-$(_readaccountconf_mutable AZION_Username)}"
AZION_Password="${AZION_Password:-$(_readaccountconf_mutable AZION_Password)}"
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
AZION_ZoneID="${AZION_ZoneID:-$(_readaccountconf_mutable AZION_ZoneID)}"
if ! _contains "$AZION_Username" "@"; then
_err "It seems that the AZION_Username is not a valid email address. Revalidate your environments."
return 1
fi
if [ -z "$AZION_Token" ]; then
if [ -z "$AZION_Username" ] || [ -z "$AZION_Password" ]; then
_err "You didn't specified a AZION_Username/AZION_Password to generate Azion token."
return 1
fi
_get_token
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
fi
_saveaccountconf_mutable AZION_Username "$AZION_Username"
_saveaccountconf_mutable AZION_Password "$AZION_Password"
_saveaccountconf_mutable AZION_Token "$AZION_Token"
_saveaccountconf_mutable AZION_ZoneID "$AZION_ZoneID"
_debug "Detect the root zone"
if ! _get_root "$fulldomain"; then
_err "Domain not found"
return 1
fi
_debug _sub_domain "$_sub_domain"
_debug _domain "$_domain"
_debug _domain_id "$_domain_id"
_info "Add or update record"
_get_record "$_sub_domain"
if [ "$record_id" ]; then
_payload="{\"record_type\": \"TXT\", \"entry\": \"$_sub_domain\", \"answers_list\": [$answers_list, \"$txtvalue\"], \"ttl\": 20}"
if _azion_rest PUT "intelligent_dns/$_domain_id/records/$record_id" "$_payload"; then
if _contains "$response" "$txtvalue"; then
_info "Record updated."
return 0
fi
fi
else
_payload="{\"record_type\": \"TXT\", \"entry\": \"$_sub_domain\", \"answers_list\": [\"$txtvalue\"], \"ttl\": 20}"
if _azion_rest POST "intelligent_dns/$_domain_id/records" "$_payload"; then
if _contains "$response" "$txtvalue"; then
_info "Record added."
return 0
fi
fi
fi
_err "Failed to add or update record."
return 1
}
# Usage: fulldomain txtvalue
# Used to remove the txt record after validation
dns_azion_rm() {
fulldomain=$1
txtvalue=$2
AZION_Username="${AZION_Username:-$(_readaccountconf_mutable AZION_Username)}"
AZION_Password="${AZION_Password:-$(_readaccountconf_mutable AZION_Password)}"
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
AZION_ZoneID="${AZION_ZoneID:-$(_readaccountconf_mutable AZION_ZoneID)}"
if ! _contains "$AZION_Username" "@"; then
_err "It seems that the AZION_Username is not a valid email address. Revalidate your environments."
return 1
fi
if [ -z "$AZION_Token" ]; then
if [ -z "$AZION_Username" ] || [ -z "$AZION_Password" ]; then
_err "You didn't specified a AZION_Username/AZION_Password to generate Azion token."
return 1
fi
_get_token
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
fi
_debug "Detect the root zone"
if ! _get_root "$fulldomain"; then
_err "Domain not found"
return 1
fi
_debug _sub_domain "$_sub_domain"
_debug _domain "$_domain"
_debug _domain_id "$_domain_id"
_info "Removing record"
_get_record "$_sub_domain"
if [ "$record_id" ]; then
if _azion_rest DELETE "intelligent_dns/$_domain_id/records/$record_id"; then
_info "Record removed."
return 0
else
_err "Failed to remove record."
return 1
fi
else
_info "Record not found or already removed."
return 0
fi
}
#################### Private functions below ##################################
# Usage: _acme-challenge.www.domain.com
# returns
# _sub_domain=_acme-challenge.www
# _domain=domain.com
# _domain_id=sdjkglgdfewsdfg
_get_root() {
domain=$1
i=1
p=1
# Use Zone ID directly if provided
if [ "$AZION_ZoneID" ]; then
if ! _azion_rest GET "intelligent_dns/$AZION_ZoneID"; then
return 1
else
if _contains "$response" "\"domain\":\"" >/dev/null; then
_domain=$(echo "$response" | _egrep_o "\"domain\":\"[^\"]*\"" | cut -d : -f 2 | _head_n 1 | tr -d \")
if [ "$_domain" ]; then
_cutlength=$((${#domain} - ${#_domain} - 1))
_sub_domain=$(printf "%s" "$domain" | cut -c "1-$_cutlength")
_domain_id=$AZION_ZoneID
return 0
else
return 1
fi
else
return 1
fi
fi
fi
if ! _azion_rest GET "intelligent_dns"; then
return 1
fi
while true; do
h=$(printf "%s" "$domain" | cut -d . -f $i-100)
_debug h "$h"
if [ -z "$h" ]; then
# not valid
return 1
fi
if _contains "$response" "\"domain\":\"$h\""; then
_domain_id=$(echo "$response" | tr '{' "\n" | grep "\"domain\":\"$h\"" | _egrep_o "\"id\":[0-9]*" | _head_n 1 | cut -d : -f 2 | tr -d \")
_debug _domain_id "$_domain_id"
if [ "$_domain_id" ]; then
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p)
_domain=$h
_saveaccountconf_mutable AZION_ZoneID "$_domain_id"
return 0
fi
return 1
fi
p=$i
i=$(_math "$i" + 1)
done
return 1
}
_get_record() {
_record=$1
AZION_ZoneID="${AZION_ZoneID:-$(_readaccountconf_mutable AZION_ZoneID)}"
if ! _azion_rest GET "intelligent_dns/$AZION_ZoneID/records"; then
return 1
fi
if _contains "$response" "\"entry\":\"$_record\""; then
_json_record=$(echo "$response" | tr '{}' "\n" | grep "\"entry\":\"$_record\"")
if [ "$_json_record" ]; then
record_id=$(echo "$_json_record" | _egrep_o "\"record_id\":[0-9]*" | _head_n 1 | cut -d : -f 2 | tr -d \")
answers_list=$(echo "$_json_record" | _egrep_o "\"answers_list\":\[.*\]" | _head_n 1 | cut -d : -f 2 | tr -d \[\])
return 0
fi
return 1
fi
return 1
}
_get_token() {
AZION_Username="${AZION_Username:-$(_readaccountconf_mutable AZION_Username)}"
AZION_Password="${AZION_Password:-$(_readaccountconf_mutable AZION_Password)}"
_basic_auth=$(printf "%s:%s" "$AZION_Username" "$AZION_Password" | _base64)
_debug _basic_auth "$_basic_auth"
export _H1="Accept: application/json; version=3"
export _H2="Content-Type: application/json"
export _H3="Authorization: Basic $_basic_auth"
response="$(_post "" "$AZION_Api/tokens" "" "POST")"
_debug2 response "$response"
if _contains "$response" "\"token\":\"" >/dev/null; then
_azion_token=$(echo "$response" | _egrep_o "\"token\":\"[^\"]*\"" | cut -d : -f 2 | tr -d \")
_debug _azion_token "$_azion_token"
_saveaccountconf_mutable AZION_Token "$_azion_token"
else
_err "Failed to generate Azion token"
return 1
fi
}
_azion_rest() {
_method=$1
_uri="$2"
_data="$3"
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
export _H1="Accept: application/json; version=3"
export _H2="Content-Type: application/json"
export _H3="Authorization: token $AZION_Token"
if [ "$_method" != "GET" ]; then
_debug _data "$_data"
response="$(_post "$_data" "$AZION_Api/$_uri" "" "$_method")"
else
response="$(_get "$AZION_Api/$_uri")"
fi
_debug2 response "$response"
if [ "$?" != "0" ]; then
_err "error $_method $_uri $_data"
return 1
fi
return 0
}