acme.sh/dnsapi/dns-cf.sh

159 lines
3.4 KiB
Bash
Raw Normal View History

2016-01-30 14:00:36 +01:00
#!/bin/bash
#
#CF_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
#
#CF_Email="xxxx@sss.com"
CF_Api="https://api.cloudflare.com/client/v4/"
2016-01-30 15:34:35 +01:00
######## Public functions #####################
#Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
2016-01-30 14:00:36 +01:00
dns-cf-add() {
fulldomain=$1
txtvalue=$2
2016-01-30 15:11:09 +01:00
_debug "First detect the root zone"
if ! _get_root $fulldomain ; then
2016-01-30 14:00:36 +01:00
_err "invalid domain"
return 1
fi
2016-01-30 15:11:09 +01:00
_debug "Getting txt records"
2016-01-30 14:00:36 +01:00
_cf_rest GET "/zones/$_domain_id/dns_records?type=TXT&name=$fulldomain"
if [ "$?" != "0" ] || ! printf $response | grep \"success\":true > /dev/null ; then
_err "Error"
return 1
fi
count=$(printf $response | grep -o \"count\":[^,]* | cut -d : -f 2)
if [ "$count" == "0" ] ; then
_info "Adding record"
2016-01-30 15:11:09 +01:00
if _cf_rest POST "/zones/$_domain_id/dns_records" "{\"type\":\"TXT\",\"name\":\"$fulldomain\",\"content\":\"$txtvalue\",\"ttl\":120}"; then
2016-01-30 15:34:35 +01:00
if printf $response | grep $fulldomain > /dev/null ; then
_info "Added, sleeping 10 seconds"
sleep 10
#todo: check if the record takes effect
2016-01-30 15:34:35 +01:00
return 0
else
_err "Add txt record error."
return 1
fi
2016-01-30 14:00:36 +01:00
fi
_err "Add txt record error."
else
_info "Updating record"
record_id=$(printf $response | grep -o \"id\":\"[^\"]*\" | cut -d : -f 2 | tr -d \")
2016-01-30 15:34:35 +01:00
_debug "record_id" $record_id
2016-01-30 14:00:36 +01:00
_cf_rest PUT "/zones/$_domain_id/dns_records/$record_id" "{\"id\":\"$record_id\",\"type\":\"TXT\",\"name\":\"$fulldomain\",\"content\":\"$txtvalue\",\"zone_id\":\"$_domain_id\",\"zone_name\":\"$_domain\"}"
if [ "$?" == "0" ]; then
_info "Updated, sleeping 10 seconds"
sleep 10
#todo: check if the record takes effect
2016-01-30 14:00:36 +01:00
return 0;
fi
_err "Update error"
return 1
fi
}
2016-01-30 15:34:35 +01:00
#################### Private functions bellow ##################################
2016-01-30 14:00:36 +01:00
#_acme-challenge.www.domain.com
2016-01-30 15:11:09 +01:00
#returns
2016-01-30 14:00:36 +01:00
# _sub_domain=_acme-challenge.www
# _domain=domain.com
# _domain_id=sdjkglgdfewsdfg
_get_root() {
domain=$1
i=2
p=1
while [ '1' ] ; do
h=$(printf $domain | cut -d . -f $i-100)
if [ -z "$h" ] ; then
#not valid
return 1;
fi
2016-01-30 15:11:09 +01:00
if ! _cf_rest GET "zones?name=$h" ; then
2016-01-30 14:00:36 +01:00
return 1
fi
if printf $response | grep \"name\":\"$h\" ; then
_domain_id=$(printf $response | grep -o \"id\":\"[^\"]*\" | cut -d : -f 2 | tr -d \")
if [ "$_domain_id" ] ; then
_sub_domain=$(printf $domain | cut -d . -f 1-$p)
_domain=$h
return 0
fi
return 1
fi
p=$i
let "i+=1"
done
return 1
}
_cf_rest() {
m=$1
ep="$2"
2016-01-30 15:34:35 +01:00
_debug $ep
2016-01-30 14:00:36 +01:00
if [ "$3" ] ; then
2016-01-30 15:34:35 +01:00
data="$3"
2016-01-30 15:11:09 +01:00
_debug data "$data"
2016-01-30 15:34:35 +01:00
response="$(curl --silent -X $m "$CF_Api/$ep" -H "X-Auth-Email: $CF_Email" -H "X-Auth-Key: $CF_Key" -H "Content-Type: application/json" --data $data)"
else
response="$(curl --silent -X $m "$CF_Api/$ep" -H "X-Auth-Email: $CF_Email" -H "X-Auth-Key: $CF_Key" -H "Content-Type: application/json")"
2016-01-30 14:00:36 +01:00
fi
2016-01-30 15:34:35 +01:00
2016-01-30 14:00:36 +01:00
if [ "$?" != "0" ] ; then
2016-01-30 15:34:35 +01:00
_err "error $ep"
2016-01-30 14:00:36 +01:00
return 1
fi
2016-01-30 15:34:35 +01:00
_debug response "$response"
2016-01-30 14:00:36 +01:00
return 0
}
_debug() {
if [ -z "$DEBUG" ] ; then
return
fi
if [ -z "$2" ] ; then
echo $1
else
echo "$1"="$2"
fi
}
_info() {
if [ -z "$2" ] ; then
echo "$1"
else
echo "$1"="$2"
fi
}
_err() {
if [ -z "$2" ] ; then
echo "$1" >&2
else
echo "$1"="$2" >&2
fi
}