2016-07-29 12:07:16 +02:00
|
|
|
#!/usr/bin/env sh
|
|
|
|
|
|
|
|
#Godaddy domain api
|
2022-08-13 05:34:05 +02:00
|
|
|
# Get API key and secret from https://developer.godaddy.com/
|
2016-07-29 12:07:16 +02:00
|
|
|
#
|
2022-08-13 05:34:05 +02:00
|
|
|
# GD_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
|
|
|
|
# GD_Secret="asdfsdfsfsdfsdfdfsdf"
|
2016-07-29 12:07:16 +02:00
|
|
|
#
|
2022-08-13 05:34:05 +02:00
|
|
|
# Ex.: acme.sh --issue --staging --dns dns_gd -d "*.s.example.com" -d "s.example.com"
|
2016-07-29 12:07:16 +02:00
|
|
|
|
|
|
|
GD_Api="https://api.godaddy.com/v1"
|
|
|
|
|
|
|
|
######## Public functions #####################
|
|
|
|
|
|
|
|
#Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
|
2016-11-09 12:30:39 +01:00
|
|
|
dns_gd_add() {
|
2016-07-29 12:07:16 +02:00
|
|
|
fulldomain=$1
|
|
|
|
txtvalue=$2
|
2016-11-09 12:30:39 +01:00
|
|
|
|
2018-02-14 15:31:02 +01:00
|
|
|
GD_Key="${GD_Key:-$(_readaccountconf_mutable GD_Key)}"
|
|
|
|
GD_Secret="${GD_Secret:-$(_readaccountconf_mutable GD_Secret)}"
|
2016-11-09 12:30:39 +01:00
|
|
|
if [ -z "$GD_Key" ] || [ -z "$GD_Secret" ]; then
|
2016-11-12 04:13:40 +01:00
|
|
|
GD_Key=""
|
|
|
|
GD_Secret=""
|
2016-07-29 12:07:16 +02:00
|
|
|
_err "You don't specify godaddy api key and secret yet."
|
|
|
|
_err "Please create you key and try again."
|
|
|
|
return 1
|
|
|
|
fi
|
2016-11-09 12:30:39 +01:00
|
|
|
|
2016-07-29 12:07:16 +02:00
|
|
|
#save the api key and email to the account conf file.
|
2018-02-14 15:31:02 +01:00
|
|
|
_saveaccountconf_mutable GD_Key "$GD_Key"
|
|
|
|
_saveaccountconf_mutable GD_Secret "$GD_Secret"
|
2016-11-09 12:30:39 +01:00
|
|
|
|
2016-07-29 12:07:16 +02:00
|
|
|
_debug "First detect the root zone"
|
2016-11-11 16:30:14 +01:00
|
|
|
if ! _get_root "$fulldomain"; then
|
2016-07-29 12:07:16 +02:00
|
|
|
_err "invalid domain"
|
|
|
|
return 1
|
|
|
|
fi
|
2016-11-11 17:50:44 +01:00
|
|
|
|
2016-07-29 12:07:16 +02:00
|
|
|
_debug _sub_domain "$_sub_domain"
|
|
|
|
_debug _domain "$_domain"
|
|
|
|
|
2018-02-14 15:31:02 +01:00
|
|
|
_debug "Getting existing records"
|
|
|
|
if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
|
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
|
|
|
|
if _contains "$response" "$txtvalue"; then
|
|
|
|
_info "The record is existing, skip"
|
2018-02-14 15:36:17 +01:00
|
|
|
return 0
|
2018-02-14 15:31:02 +01:00
|
|
|
fi
|
|
|
|
|
|
|
|
_add_data="{\"data\":\"$txtvalue\"}"
|
2018-02-14 15:36:17 +01:00
|
|
|
for t in $(echo "$response" | tr '{' "\n" | grep "\"name\":\"$_sub_domain\"" | tr ',' "\n" | grep '"data"' | cut -d : -f 2); do
|
2018-02-14 15:31:02 +01:00
|
|
|
_debug2 t "$t"
|
2022-08-13 05:02:12 +02:00
|
|
|
# ignore empty (previously removed) records, to prevent useless _acme-challenge TXT entries
|
|
|
|
if [ "$t" ] && [ "$t" != '""' ]; then
|
2018-02-14 15:31:02 +01:00
|
|
|
_add_data="$_add_data,{\"data\":$t}"
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
_debug2 _add_data "$_add_data"
|
|
|
|
|
2016-07-29 12:07:16 +02:00
|
|
|
_info "Adding record"
|
2018-02-14 15:31:02 +01:00
|
|
|
if _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[$_add_data]"; then
|
2022-08-13 05:02:12 +02:00
|
|
|
_debug "Checking updated records of '${fulldomain}'"
|
|
|
|
|
|
|
|
if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
|
|
|
|
_err "Validating TXT record for '${fulldomain}' with rest error [$?]." "$response"
|
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
|
|
|
|
if ! _contains "$response" "$txtvalue"; then
|
|
|
|
_err "TXT record '${txtvalue}' for '${fulldomain}', value wasn't set!"
|
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
else
|
|
|
|
_err "Add txt record error, value '${txtvalue}' for '${fulldomain}' was not set."
|
|
|
|
return 1
|
2016-07-29 12:07:16 +02:00
|
|
|
fi
|
2022-08-13 05:02:12 +02:00
|
|
|
|
|
|
|
_sleep 10
|
|
|
|
_info "Added TXT record '${txtvalue}' for '${fulldomain}'."
|
|
|
|
return 0
|
2016-11-09 12:30:39 +01:00
|
|
|
}
|
2016-07-29 12:07:16 +02:00
|
|
|
|
2016-10-25 17:08:02 +02:00
|
|
|
#fulldomain
|
|
|
|
dns_gd_rm() {
|
|
|
|
fulldomain=$1
|
2018-02-14 15:31:02 +01:00
|
|
|
txtvalue=$2
|
|
|
|
|
|
|
|
GD_Key="${GD_Key:-$(_readaccountconf_mutable GD_Key)}"
|
|
|
|
GD_Secret="${GD_Secret:-$(_readaccountconf_mutable GD_Secret)}"
|
|
|
|
|
|
|
|
_debug "First detect the root zone"
|
|
|
|
if ! _get_root "$fulldomain"; then
|
|
|
|
_err "invalid domain"
|
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
|
|
|
|
_debug _sub_domain "$_sub_domain"
|
|
|
|
_debug _domain "$_domain"
|
|
|
|
|
|
|
|
_debug "Getting existing records"
|
|
|
|
if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
|
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
|
|
|
|
if ! _contains "$response" "$txtvalue"; then
|
2020-06-29 20:29:10 +02:00
|
|
|
_info "The record does not exist, skip"
|
2018-02-14 15:36:17 +01:00
|
|
|
return 0
|
2018-02-14 15:31:02 +01:00
|
|
|
fi
|
|
|
|
|
|
|
|
_add_data=""
|
2018-02-14 15:36:17 +01:00
|
|
|
for t in $(echo "$response" | tr '{' "\n" | grep "\"name\":\"$_sub_domain\"" | tr ',' "\n" | grep '"data"' | cut -d : -f 2); do
|
2018-02-14 15:31:02 +01:00
|
|
|
_debug2 t "$t"
|
|
|
|
if [ "$t" ] && [ "$t" != "\"$txtvalue\"" ]; then
|
|
|
|
if [ "$_add_data" ]; then
|
|
|
|
_add_data="$_add_data,{\"data\":$t}"
|
|
|
|
else
|
|
|
|
_add_data="{\"data\":$t}"
|
|
|
|
fi
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
if [ -z "$_add_data" ]; then
|
2022-08-13 05:02:12 +02:00
|
|
|
# delete empty record
|
|
|
|
_debug "Delete last record for '${fulldomain}'"
|
|
|
|
if ! _gd_rest DELETE "domains/$_domain/records/TXT/$_sub_domain"; then
|
|
|
|
_err "Cannot delete empty TXT record for '$fulldomain'"
|
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
else
|
|
|
|
# remove specific TXT value, keeping other entries
|
|
|
|
_debug2 _add_data "$_add_data"
|
|
|
|
if ! _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[$_add_data]"; then
|
|
|
|
_err "Cannot update TXT record for '$fulldomain'"
|
|
|
|
return 1
|
|
|
|
fi
|
2018-02-14 15:31:02 +01:00
|
|
|
fi
|
2016-10-25 17:08:02 +02:00
|
|
|
}
|
|
|
|
|
2016-12-14 21:32:24 +01:00
|
|
|
#################### Private functions below ##################################
|
2016-07-29 12:07:16 +02:00
|
|
|
#_acme-challenge.www.domain.com
|
|
|
|
#returns
|
|
|
|
# _sub_domain=_acme-challenge.www
|
|
|
|
# _domain=domain.com
|
|
|
|
_get_root() {
|
|
|
|
domain=$1
|
|
|
|
i=2
|
|
|
|
p=1
|
2016-11-11 16:30:14 +01:00
|
|
|
while true; do
|
|
|
|
h=$(printf "%s" "$domain" | cut -d . -f $i-100)
|
2016-11-09 12:30:39 +01:00
|
|
|
if [ -z "$h" ]; then
|
2016-07-29 12:07:16 +02:00
|
|
|
#not valid
|
2016-11-09 12:30:39 +01:00
|
|
|
return 1
|
2016-07-29 12:07:16 +02:00
|
|
|
fi
|
2016-11-09 12:30:39 +01:00
|
|
|
|
|
|
|
if ! _gd_rest GET "domains/$h"; then
|
2016-07-29 12:07:16 +02:00
|
|
|
return 1
|
|
|
|
fi
|
2016-11-09 12:30:39 +01:00
|
|
|
|
2016-11-11 16:30:14 +01:00
|
|
|
if _contains "$response" '"code":"NOT_FOUND"'; then
|
2016-07-29 12:07:16 +02:00
|
|
|
_debug "$h not found"
|
|
|
|
else
|
2016-11-11 16:30:14 +01:00
|
|
|
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p)
|
|
|
|
_domain="$h"
|
2016-07-29 12:07:16 +02:00
|
|
|
return 0
|
|
|
|
fi
|
2016-11-11 17:06:34 +01:00
|
|
|
p="$i"
|
|
|
|
i=$(_math "$i" + 1)
|
2016-07-29 12:07:16 +02:00
|
|
|
done
|
|
|
|
return 1
|
|
|
|
}
|
|
|
|
|
|
|
|
_gd_rest() {
|
|
|
|
m=$1
|
|
|
|
ep="$2"
|
|
|
|
data="$3"
|
2016-11-11 16:30:14 +01:00
|
|
|
_debug "$ep"
|
2016-11-09 12:30:39 +01:00
|
|
|
|
2017-01-09 17:04:09 +01:00
|
|
|
export _H1="Authorization: sso-key $GD_Key:$GD_Secret"
|
|
|
|
export _H2="Content-Type: application/json"
|
2016-11-09 12:30:39 +01:00
|
|
|
|
2022-08-13 05:02:12 +02:00
|
|
|
if [ "$data" ] || [ "$m" = "DELETE" ]; then
|
|
|
|
_debug "data ($m): " "$data"
|
2016-11-11 17:09:45 +01:00
|
|
|
response="$(_post "$data" "$GD_Api/$ep" "" "$m")"
|
2016-07-29 12:07:16 +02:00
|
|
|
else
|
|
|
|
response="$(_get "$GD_Api/$ep")"
|
|
|
|
fi
|
2016-11-09 12:30:39 +01:00
|
|
|
|
|
|
|
if [ "$?" != "0" ]; then
|
2022-08-13 05:02:12 +02:00
|
|
|
_err "error on rest call ($m): $ep"
|
2016-07-29 12:07:16 +02:00
|
|
|
return 1
|
|
|
|
fi
|
|
|
|
_debug2 response "$response"
|
2018-06-12 15:19:27 +02:00
|
|
|
if _contains "$response" "UNABLE_TO_AUTHENTICATE"; then
|
|
|
|
_err "It seems that your api key or secret is not correct."
|
|
|
|
return 1
|
|
|
|
fi
|
2016-07-29 12:07:16 +02:00
|
|
|
return 0
|
|
|
|
}
|