mirror of
https://github.com/plantroon/acme.sh.git
synced 2024-11-12 17:31:47 +00:00
259 lines
7.4 KiB
Bash
259 lines
7.4 KiB
Bash
|
#!/usr/bin/env sh
|
||
|
|
|
||
|
|
#
|
||
|
|
#AZION_Username=""
|
||
|
|
#AZION_Password=""
|
||
|
|
#AZION_Token=""
|
||
|
|
#AZION_ZoneID=""
|
||
|
|
#
|
||
|
|
|
||
|
|
AZION_Api="https://api.azionapi.net"
|
||
|
|
|
||
|
|
######## Public functions ########
|
||
|
|
|
||
|
|
# Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
|
||
|
|
# Used to add txt record
|
||
|
|
dns_azion_add() {
|
||
|
|
fulldomain=$1
|
||
|
|
txtvalue=$2
|
||
|
|
|
||
|
|
AZION_Username="${AZION_Username:-$(_readaccountconf_mutable AZION_Username)}"
|
||
|
|
AZION_Password="${AZION_Password:-$(_readaccountconf_mutable AZION_Password)}"
|
||
|
|
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
|
||
|
|
AZION_ZoneID="${AZION_ZoneID:-$(_readaccountconf_mutable AZION_ZoneID)}"
|
||
|
|
|
||
|
|
if ! _contains "$AZION_Username" "@"; then
|
||
|
|
_err "It seems that the AZION_Username is not a valid email address. Revalidate your environments."
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
if [ -z "$AZION_Token" ]; then
|
||
|
|
if [ -z "$AZION_Username" ] || [ -z "$AZION_Password" ]; then
|
||
|
|
_err "You didn't specified a AZION_Username/AZION_Password to generate Azion token."
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
_get_token
|
||
|
|
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
|
||
|
|
fi
|
||
|
|
|
||
|
|
_saveaccountconf_mutable AZION_Username "$AZION_Username"
|
||
|
|
_saveaccountconf_mutable AZION_Password "$AZION_Password"
|
||
|
|
_saveaccountconf_mutable AZION_Token "$AZION_Token"
|
||
|
|
_saveaccountconf_mutable AZION_ZoneID "$AZION_ZoneID"
|
||
|
|
|
||
|
|
_debug "Detect the root zone"
|
||
|
|
if ! _get_root "$fulldomain"; then
|
||
|
|
_err "Domain not found"
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
_debug _sub_domain "$_sub_domain"
|
||
|
|
_debug _domain "$_domain"
|
||
|
|
_debug _domain_id "$_domain_id"
|
||
|
|
|
||
|
|
_info "Add or update record"
|
||
|
|
_get_record "$_sub_domain"
|
||
|
|
if [ "$record_id" ]; then
|
||
|
|
_payload="{\"record_type\": \"TXT\", \"entry\": \"$_sub_domain\", \"answers_list\": [$answers_list, \"$txtvalue\"], \"ttl\": 20}"
|
||
|
|
if _azion_rest PUT "intelligent_dns/$_domain_id/records/$record_id" "$_payload"; then
|
||
|
|
if _contains "$response" "$txtvalue"; then
|
||
|
|
_info "Record updated."
|
||
|
|
return 0
|
||
|
|
fi
|
||
|
|
fi
|
||
|
|
else
|
||
|
|
_payload="{\"record_type\": \"TXT\", \"entry\": \"$_sub_domain\", \"answers_list\": [\"$txtvalue\"], \"ttl\": 20}"
|
||
|
|
if _azion_rest POST "intelligent_dns/$_domain_id/records" "$_payload"; then
|
||
|
|
if _contains "$response" "$txtvalue"; then
|
||
|
|
_info "Record added."
|
||
|
|
return 0
|
||
|
|
fi
|
||
|
|
fi
|
||
|
|
fi
|
||
|
|
_err "Failed to add or update record."
|
||
|
|
return 1
|
||
|
|
}
|
||
|
|
|
||
|
|
# Usage: fulldomain txtvalue
|
||
|
|
# Used to remove the txt record after validation
|
||
|
|
dns_azion_rm() {
|
||
|
|
fulldomain=$1
|
||
|
|
txtvalue=$2
|
||
|
|
|
||
|
|
AZION_Username="${AZION_Username:-$(_readaccountconf_mutable AZION_Username)}"
|
||
|
|
AZION_Password="${AZION_Password:-$(_readaccountconf_mutable AZION_Password)}"
|
||
|
|
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
|
||
|
|
AZION_ZoneID="${AZION_ZoneID:-$(_readaccountconf_mutable AZION_ZoneID)}"
|
||
|
|
|
||
|
|
if ! _contains "$AZION_Username" "@"; then
|
||
|
|
_err "It seems that the AZION_Username is not a valid email address. Revalidate your environments."
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
if [ -z "$AZION_Token" ]; then
|
||
|
|
if [ -z "$AZION_Username" ] || [ -z "$AZION_Password" ]; then
|
||
|
|
_err "You didn't specified a AZION_Username/AZION_Password to generate Azion token."
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
_get_token
|
||
|
|
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
|
||
|
|
fi
|
||
|
|
|
||
|
|
_debug "Detect the root zone"
|
||
|
|
if ! _get_root "$fulldomain"; then
|
||
|
|
_err "Domain not found"
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
_debug _sub_domain "$_sub_domain"
|
||
|
|
_debug _domain "$_domain"
|
||
|
|
_debug _domain_id "$_domain_id"
|
||
|
|
|
||
|
|
_info "Removing record"
|
||
|
|
_get_record "$_sub_domain"
|
||
|
|
if [ "$record_id" ]; then
|
||
|
|
if _azion_rest DELETE "intelligent_dns/$_domain_id/records/$record_id"; then
|
||
|
|
_info "Record removed."
|
||
|
|
return 0
|
||
|
|
else
|
||
|
|
_err "Failed to remove record."
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
else
|
||
|
|
_info "Record not found or already removed."
|
||
|
|
return 0
|
||
|
|
fi
|
||
|
|
}
|
||
|
|
|
||
|
|
#################### Private functions below ##################################
|
||
|
|
# Usage: _acme-challenge.www.domain.com
|
||
|
|
# returns
|
||
|
|
# _sub_domain=_acme-challenge.www
|
||
|
|
# _domain=domain.com
|
||
|
|
# _domain_id=sdjkglgdfewsdfg
|
||
|
|
_get_root() {
|
||
|
|
domain=$1
|
||
|
|
i=1
|
||
|
|
p=1
|
||
|
|
|
||
|
|
# Use Zone ID directly if provided
|
||
|
|
if [ "$AZION_ZoneID" ]; then
|
||
|
|
if ! _azion_rest GET "intelligent_dns/$AZION_ZoneID"; then
|
||
|
|
return 1
|
||
|
|
else
|
||
|
|
if _contains "$response" "\"domain\":\"" >/dev/null; then
|
||
|
|
_domain=$(echo "$response" | _egrep_o "\"domain\":\"[^\"]*\"" | cut -d : -f 2 | _head_n 1 | tr -d \")
|
||
|
|
if [ "$_domain" ]; then
|
||
|
|
_cutlength=$((${#domain} - ${#_domain} - 1))
|
||
|
|
_sub_domain=$(printf "%s" "$domain" | cut -c "1-$_cutlength")
|
||
|
|
_domain_id=$AZION_ZoneID
|
||
|
|
return 0
|
||
|
|
else
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
else
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
fi
|
||
|
|
fi
|
||
|
|
|
||
|
|
if ! _azion_rest GET "intelligent_dns"; then
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
while true; do
|
||
|
|
h=$(printf "%s" "$domain" | cut -d . -f $i-100)
|
||
|
|
_debug h "$h"
|
||
|
|
if [ -z "$h" ]; then
|
||
|
|
# not valid
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
if _contains "$response" "\"domain\":\"$h\""; then
|
||
|
|
_domain_id=$(echo "$response" | tr '{' "\n" | grep "\"domain\":\"$h\"" | _egrep_o "\"id\":[0-9]*" | _head_n 1 | cut -d : -f 2 | tr -d \")
|
||
|
|
_debug _domain_id "$_domain_id"
|
||
|
|
if [ "$_domain_id" ]; then
|
||
|
|
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p)
|
||
|
|
_domain=$h
|
||
|
|
_saveaccountconf_mutable AZION_ZoneID "$_domain_id"
|
||
|
|
return 0
|
||
|
|
fi
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
p=$i
|
||
|
|
i=$(_math "$i" + 1)
|
||
|
|
done
|
||
|
|
return 1
|
||
|
|
}
|
||
|
|
|
||
|
|
_get_record() {
|
||
|
|
_record=$1
|
||
|
|
|
||
|
|
AZION_ZoneID="${AZION_ZoneID:-$(_readaccountconf_mutable AZION_ZoneID)}"
|
||
|
|
|
||
|
|
if ! _azion_rest GET "intelligent_dns/$AZION_ZoneID/records"; then
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
|
||
|
|
if _contains "$response" "\"entry\":\"$_record\""; then
|
||
|
|
_json_record=$(echo "$response" | tr '{}' "\n" | grep "\"entry\":\"$_record\"")
|
||
|
|
if [ "$_json_record" ]; then
|
||
|
|
record_id=$(echo "$_json_record" | _egrep_o "\"record_id\":[0-9]*" | _head_n 1 | cut -d : -f 2 | tr -d \")
|
||
|
|
answers_list=$(echo "$_json_record" | _egrep_o "\"answers_list\":\[.*\]" | _head_n 1 | cut -d : -f 2 | tr -d \[\])
|
||
|
|
return 0
|
||
|
|
fi
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
return 1
|
||
|
|
}
|
||
|
|
|
||
|
|
_get_token() {
|
||
|
|
AZION_Username="${AZION_Username:-$(_readaccountconf_mutable AZION_Username)}"
|
||
|
|
AZION_Password="${AZION_Password:-$(_readaccountconf_mutable AZION_Password)}"
|
||
|
|
|
||
|
|
_basic_auth=$(printf "%s:%s" "$AZION_Username" "$AZION_Password" | _base64)
|
||
|
|
_debug _basic_auth "$_basic_auth"
|
||
|
|
|
||
|
|
export _H1="Accept: application/json; version=3"
|
||
|
|
export _H2="Content-Type: application/json"
|
||
|
|
export _H3="Authorization: Basic $_basic_auth"
|
||
|
|
|
||
|
|
response="$(_post "" "$AZION_Api/tokens" "" "POST")"
|
||
|
|
_debug2 response "$response"
|
||
|
|
if _contains "$response" "\"token\":\"" >/dev/null; then
|
||
|
|
_azion_token=$(echo "$response" | _egrep_o "\"token\":\"[^\"]*\"" | cut -d : -f 2 | tr -d \")
|
||
|
|
_debug _azion_token "$_azion_token"
|
||
|
|
_saveaccountconf_mutable AZION_Token "$_azion_token"
|
||
|
|
else
|
||
|
|
_err "Failed to generate Azion token"
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
}
|
||
|
|
|
||
|
|
_azion_rest() {
|
||
|
|
_method=$1
|
||
|
|
_uri="$2"
|
||
|
|
_data="$3"
|
||
|
|
|
||
|
|
AZION_Token="${AZION_Token:-$(_readaccountconf_mutable AZION_Token)}"
|
||
|
|
|
||
|
|
export _H1="Accept: application/json; version=3"
|
||
|
|
export _H2="Content-Type: application/json"
|
||
|
|
export _H3="Authorization: token $AZION_Token"
|
||
|
|
|
||
|
|
if [ "$_method" != "GET" ]; then
|
||
|
|
_debug _data "$_data"
|
||
|
|
response="$(_post "$_data" "$AZION_Api/$_uri" "" "$_method")"
|
||
|
|
else
|
||
|
|
response="$(_get "$AZION_Api/$_uri")"
|
||
|
|
fi
|
||
|
|
|
||
|
|
_debug2 response "$response"
|
||
|
|
|
||
|
|
if [ "$?" != "0" ]; then
|
||
|
|
_err "error $_method $_uri $_data"
|
||
|
|
return 1
|
||
|
|
fi
|
||
|
|
return 0
|
||
|
|
}
|