acme.sh/deploy/cleverreach.sh

71 lines
2.4 KiB
Bash
Raw Normal View History

2020-08-28 11:21:20 +02:00
#!/usr/bin/env sh
# Here is the script to deploy the cert to your CleverReach Account using the CleverReach REST API.
# Your OAuth needs the right scope, please contact CleverReach support for that.
#
# Written by Jan-Philipp Benecke <github@bnck.me>
# Public domain, 2020
#
# Following environment variables must be set:
#
#export DEPLOY_CLEVERREACH_CLIENT_ID=myid
#export DEPLOY_CLEVERREACH_CLIENT_SECRET=mysecret
cleverreach_deploy() {
_cdomain="$1"
_ckey="$2"
_ccert="$3"
_cca="$4"
_cfullchain="$5"
_debug _cdomain "$_cdomain"
_debug _ckey "$_ckey"
_debug _ccert "$_ccert"
_debug _cca "$_cca"
_debug _cfullchain "$_cfullchain"
2020-10-28 13:50:40 +01:00
_getdeployconf DEPLOY_CLEVERREACH_CLIENT_ID
_getdeployconf DEPLOY_CLEVERREACH_CLIENT_SECRET
2020-08-28 11:21:20 +02:00
2020-10-28 13:50:40 +01:00
if [ -z "${DEPLOY_CLEVERREACH_CLIENT_ID}" ]; then
2020-08-28 11:21:20 +02:00
_err "CleverReach Client ID is not found, please define DEPLOY_CLEVERREACH_CLIENT_ID."
return 1
fi
2020-10-28 13:50:40 +01:00
if [ -z "${DEPLOY_CLEVERREACH_CLIENT_SECRET}" ]; then
2020-08-28 11:21:20 +02:00
_err "CleverReach client secret is not found, please define DEPLOY_CLEVERREACH_CLIENT_SECRET."
return 1
fi
2020-10-28 13:50:40 +01:00
_savedeployconf DEPLOY_CLEVERREACH_CLIENT_ID "${DEPLOY_CLEVERREACH_CLIENT_ID}"
_savedeployconf DEPLOY_CLEVERREACH_CLIENT_SECRET "${DEPLOY_CLEVERREACH_CLIENT_SECRET}"
2020-08-28 11:21:20 +02:00
_info "Obtaining a CleverReach access token"
2020-10-28 13:50:40 +01:00
_data="{\"grant_type\": \"client_credentials\", \"client_id\": \"${DEPLOY_CLEVERREACH_CLIENT_ID}\", \"client_secret\": \"${DEPLOY_CLEVERREACH_CLIENT_SECRET}\"}"
2020-08-28 11:21:20 +02:00
_auth_result="$(_post "$_data" "https://rest.cleverreach.com/oauth/token.php" "" "POST" "application/json")"
_debug _data "$_data"
_debug _auth_result "$_auth_result"
2020-10-28 13:50:40 +01:00
_regex=".*\"access_token\":\"\([-._0-9A-Za-z]*\)\".*$"
_debug _regex "$_regex"
_access_token=$(echo "$_auth_result" | _json_decode | sed -n "s/$_regex/\1/p")
2020-08-28 11:21:20 +02:00
_info "Uploading certificate and key to CleverReach"
2020-08-28 11:30:23 +02:00
_certData="{\"cert\":\"$(_json_encode <"$_cfullchain")\", \"key\":\"$(_json_encode <"$_ckey")\"}"
2020-08-28 11:21:20 +02:00
export _H1="Authorization: Bearer ${_access_token}"
2020-10-01 11:26:29 +02:00
_add_cert_result="$(_post "$_certData" "https://rest.cleverreach.com/v3/ssl" "" "POST" "application/json")"
2020-08-28 11:21:20 +02:00
_debug "Destroying token at CleverReach"
2020-08-28 11:28:06 +02:00
_post "" "https://rest.cleverreach.com/v3/oauth/token.json" "" "DELETE" "application/json"
2020-08-28 11:21:20 +02:00
if ! echo "$_add_cert_result" | grep '"error":' >/dev/null; then
_info "Uploaded certificate successfully"
return 0
else
_debug _add_cert_result "$_add_cert_result"
_err "Unable to update certificate"
return 1
fi
}