commit
c0cb3945f1
29
.github/workflows/Ubuntu.yml
vendored
29
.github/workflows/Ubuntu.yml
vendored
@ -30,6 +30,20 @@ jobs:
|
|||||||
CA: "ZeroSSL RSA Domain Secure Site CA"
|
CA: "ZeroSSL RSA Domain Secure Site CA"
|
||||||
CA_EMAIL: "githubtest@acme.sh"
|
CA_EMAIL: "githubtest@acme.sh"
|
||||||
TEST_PREFERRED_CHAIN: ""
|
TEST_PREFERRED_CHAIN: ""
|
||||||
|
- TEST_ACME_Server: "https://localhost:9000/acme/acme/directory"
|
||||||
|
CA_ECDSA: "Smallstep Intermediate CA"
|
||||||
|
CA: "Smallstep Intermediate CA"
|
||||||
|
CA_EMAIL: ""
|
||||||
|
TEST_PREFERRED_CHAIN: ""
|
||||||
|
NO_REVOKE: 1
|
||||||
|
- TEST_ACME_Server: "https://localhost:9000/acme/acme/directory"
|
||||||
|
CA_ECDSA: "Smallstep Intermediate CA"
|
||||||
|
CA: "Smallstep Intermediate CA"
|
||||||
|
CA_EMAIL: ""
|
||||||
|
TEST_PREFERRED_CHAIN: ""
|
||||||
|
NO_REVOKE: 1
|
||||||
|
TEST_IPCERT: 1
|
||||||
|
TestingDomain: "172.17.0.1"
|
||||||
|
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
env:
|
env:
|
||||||
@ -40,10 +54,25 @@ jobs:
|
|||||||
CA_EMAIL: ${{ matrix.CA_EMAIL }}
|
CA_EMAIL: ${{ matrix.CA_EMAIL }}
|
||||||
NO_ECC_384: ${{ matrix.NO_ECC_384 }}
|
NO_ECC_384: ${{ matrix.NO_ECC_384 }}
|
||||||
TEST_PREFERRED_CHAIN: ${{ matrix.TEST_PREFERRED_CHAIN }}
|
TEST_PREFERRED_CHAIN: ${{ matrix.TEST_PREFERRED_CHAIN }}
|
||||||
|
NO_REVOKE: ${{ matrix.NO_REVOKE }}
|
||||||
|
TEST_IPCERT: ${{ matrix.TEST_IPCERT }}
|
||||||
|
TestingDomain: ${{ matrix.TestingDomain }}
|
||||||
steps:
|
steps:
|
||||||
- uses: actions/checkout@v2
|
- uses: actions/checkout@v2
|
||||||
- name: Install tools
|
- name: Install tools
|
||||||
run: sudo apt-get install -y socat
|
run: sudo apt-get install -y socat
|
||||||
|
- name: Start StepCA
|
||||||
|
if: ${{ matrix.TEST_ACME_Server=='https://localhost:9000/acme/acme/directory' }}
|
||||||
|
run: |
|
||||||
|
docker run --rm -d \
|
||||||
|
-p 9000:9000 \
|
||||||
|
-e "DOCKER_STEPCA_INIT_NAME=Smallstep" \
|
||||||
|
-e "DOCKER_STEPCA_INIT_DNS_NAMES=localhost,$(hostname -f)" \
|
||||||
|
--name stepca \
|
||||||
|
smallstep/step-ca \
|
||||||
|
&& sleep 5 && docker exec stepca step ca provisioner add acme --type ACME \
|
||||||
|
&& docker exec stepca kill -1 1 \
|
||||||
|
&& docker exec stepca cat /home/step/certs/root_ca.crt | sudo bash -c "cat - >>/etc/ssl/certs/ca-certificates.crt"
|
||||||
- name: Clone acmetest
|
- name: Clone acmetest
|
||||||
run: |
|
run: |
|
||||||
cd .. \
|
cd .. \
|
||||||
|
34
acme.sh
34
acme.sh
@ -1272,9 +1272,17 @@ _createcsr() {
|
|||||||
_csr_cn="$(_idn "$domain")"
|
_csr_cn="$(_idn "$domain")"
|
||||||
_debug2 _csr_cn "$_csr_cn"
|
_debug2 _csr_cn "$_csr_cn"
|
||||||
if _contains "$(uname -a)" "MINGW"; then
|
if _contains "$(uname -a)" "MINGW"; then
|
||||||
${ACME_OPENSSL_BIN:-openssl} req -new -sha256 -key "$csrkey" -subj "//CN=$_csr_cn" -config "$csrconf" -out "$csr"
|
if _isIP "$_csr_cn"; then
|
||||||
|
${ACME_OPENSSL_BIN:-openssl} req -new -sha256 -key "$csrkey" -subj "//O=$PROJECT_NAME" -config "$csrconf" -out "$csr"
|
||||||
|
else
|
||||||
|
${ACME_OPENSSL_BIN:-openssl} req -new -sha256 -key "$csrkey" -subj "//CN=$_csr_cn" -config "$csrconf" -out "$csr"
|
||||||
|
fi
|
||||||
else
|
else
|
||||||
${ACME_OPENSSL_BIN:-openssl} req -new -sha256 -key "$csrkey" -subj "/CN=$_csr_cn" -config "$csrconf" -out "$csr"
|
if _isIP "$_csr_cn"; then
|
||||||
|
${ACME_OPENSSL_BIN:-openssl} req -new -sha256 -key "$csrkey" -subj "/O=$PROJECT_NAME" -config "$csrconf" -out "$csr"
|
||||||
|
else
|
||||||
|
${ACME_OPENSSL_BIN:-openssl} req -new -sha256 -key "$csrkey" -subj "/CN=$_csr_cn" -config "$csrconf" -out "$csr"
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -1623,6 +1631,24 @@ _stat() {
|
|||||||
return 1 #error, 'stat' not found
|
return 1 #error, 'stat' not found
|
||||||
}
|
}
|
||||||
|
|
||||||
|
#keyfile
|
||||||
|
_isRSA() {
|
||||||
|
keyfile=$1
|
||||||
|
if grep "BEGIN RSA PRIVATE KEY" "$keyfile" >/dev/null 2>&1 || ${ACME_OPENSSL_BIN:-openssl} rsa -in "$keyfile" -noout -text | grep "^publicExponent:" >/dev/null 2>&1; then
|
||||||
|
return 0
|
||||||
|
fi
|
||||||
|
return 1
|
||||||
|
}
|
||||||
|
|
||||||
|
#keyfile
|
||||||
|
_isEcc() {
|
||||||
|
keyfile=$1
|
||||||
|
if grep "BEGIN EC PRIVATE KEY" "$keyfile" >/dev/null 2>&1 || ${ACME_OPENSSL_BIN:-openssl} ec -in "$keyfile" -noout -text 2>/dev/null | grep "^NIST CURVE:" >/dev/null 2>&1; then
|
||||||
|
return 0
|
||||||
|
fi
|
||||||
|
return 1
|
||||||
|
}
|
||||||
|
|
||||||
#keyfile
|
#keyfile
|
||||||
_calcjwk() {
|
_calcjwk() {
|
||||||
keyfile="$1"
|
keyfile="$1"
|
||||||
@ -1636,7 +1662,7 @@ _calcjwk() {
|
|||||||
return 0
|
return 0
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if grep "BEGIN RSA PRIVATE KEY" "$keyfile" >/dev/null 2>&1; then
|
if _isRSA "$keyfile"; then
|
||||||
_debug "RSA key"
|
_debug "RSA key"
|
||||||
pub_exp=$(${ACME_OPENSSL_BIN:-openssl} rsa -in "$keyfile" -noout -text | grep "^publicExponent:" | cut -d '(' -f 2 | cut -d 'x' -f 2 | cut -d ')' -f 1)
|
pub_exp=$(${ACME_OPENSSL_BIN:-openssl} rsa -in "$keyfile" -noout -text | grep "^publicExponent:" | cut -d '(' -f 2 | cut -d 'x' -f 2 | cut -d ')' -f 1)
|
||||||
if [ "${#pub_exp}" = "5" ]; then
|
if [ "${#pub_exp}" = "5" ]; then
|
||||||
@ -1658,7 +1684,7 @@ _calcjwk() {
|
|||||||
JWK_HEADER='{"alg": "RS256", "jwk": '$jwk'}'
|
JWK_HEADER='{"alg": "RS256", "jwk": '$jwk'}'
|
||||||
JWK_HEADERPLACE_PART1='{"nonce": "'
|
JWK_HEADERPLACE_PART1='{"nonce": "'
|
||||||
JWK_HEADERPLACE_PART2='", "alg": "RS256"'
|
JWK_HEADERPLACE_PART2='", "alg": "RS256"'
|
||||||
elif grep "BEGIN EC PRIVATE KEY" "$keyfile" >/dev/null 2>&1; then
|
elif _isEcc "$keyfile"; then
|
||||||
_debug "EC key"
|
_debug "EC key"
|
||||||
crv="$(${ACME_OPENSSL_BIN:-openssl} ec -in "$keyfile" -noout -text 2>/dev/null | grep "^NIST CURVE:" | cut -d ":" -f 2 | tr -d " \r\n")"
|
crv="$(${ACME_OPENSSL_BIN:-openssl} ec -in "$keyfile" -noout -text 2>/dev/null | grep "^NIST CURVE:" | cut -d ":" -f 2 | tr -d " \r\n")"
|
||||||
_debug3 crv "$crv"
|
_debug3 crv "$crv"
|
||||||
|
@ -56,12 +56,23 @@ vault_deploy() {
|
|||||||
export _H1="X-Vault-Token: $VAULT_TOKEN"
|
export _H1="X-Vault-Token: $VAULT_TOKEN"
|
||||||
|
|
||||||
if [ -n "$FABIO" ]; then
|
if [ -n "$FABIO" ]; then
|
||||||
_post "{\"cert\": \"$_cfullchain\", \"key\": \"$_ckey\"}" "$URL"
|
if [ -n "$VAULT_KV_V2" ]; then
|
||||||
|
_post "{ \"data\": {\"cert\": \"$_cfullchain\", \"key\": \"$_ckey\"} }" "$URL"
|
||||||
|
else
|
||||||
|
_post "{\"cert\": \"$_cfullchain\", \"key\": \"$_ckey\"}" "$URL"
|
||||||
|
fi
|
||||||
else
|
else
|
||||||
_post "{\"value\": \"$_ccert\"}" "$URL/cert.pem"
|
if [ -n "$VAULT_KV_V2" ]; then
|
||||||
_post "{\"value\": \"$_ckey\"}" "$URL/cert.key"
|
_post "{\"data\": {\"value\": \"$_ccert\"}}" "$URL/cert.pem"
|
||||||
_post "{\"value\": \"$_cca\"}" "$URL/chain.pem"
|
_post "{\"data\": {\"value\": \"$_ckey\"}}" "$URL/cert.key"
|
||||||
_post "{\"value\": \"$_cfullchain\"}" "$URL/fullchain.pem"
|
_post "{\"data\": {\"value\": \"$_cca\"}}" "$URL/chain.pem"
|
||||||
|
_post "{\"data\": {\"value\": \"$_cfullchain\"}}" "$URL/fullchain.pem"
|
||||||
|
else
|
||||||
|
_post "{\"value\": \"$_ccert\"}" "$URL/cert.pem"
|
||||||
|
_post "{\"value\": \"$_ckey\"}" "$URL/cert.key"
|
||||||
|
_post "{\"value\": \"$_cca\"}" "$URL/chain.pem"
|
||||||
|
_post "{\"value\": \"$_cfullchain\"}" "$URL/fullchain.pem"
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
|
|
||||||
}
|
}
|
||||||
|
63
dnsapi/dns_acmedns.sh
Normal file → Executable file
63
dnsapi/dns_acmedns.sh
Normal file → Executable file
@ -1,31 +1,70 @@
|
|||||||
#!/usr/bin/env sh
|
#!/usr/bin/env sh
|
||||||
#
|
#
|
||||||
#Author: Wolfgang Ebner
|
#Author: Wolfgang Ebner
|
||||||
#Report Bugs here: https://github.com/webner/acme.sh
|
#Author: Sven Neubuaer
|
||||||
|
#Report Bugs here: https://github.com/dampfklon/acme.sh
|
||||||
|
#
|
||||||
|
# Usage:
|
||||||
|
# export ACMEDNS_BASE_URL="https://auth.acme-dns.io"
|
||||||
|
#
|
||||||
|
# You can optionally define an already existing account:
|
||||||
|
#
|
||||||
|
# export ACMEDNS_USERNAME="<username>"
|
||||||
|
# export ACMEDNS_PASSWORD="<password>"
|
||||||
|
# export ACMEDNS_SUBDOMAIN="<subdomain>"
|
||||||
#
|
#
|
||||||
######## Public functions #####################
|
######## Public functions #####################
|
||||||
|
|
||||||
#Usage: dns_acmedns_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
|
#Usage: dns_acmedns_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
|
||||||
|
# Used to add txt record
|
||||||
dns_acmedns_add() {
|
dns_acmedns_add() {
|
||||||
fulldomain=$1
|
fulldomain=$1
|
||||||
txtvalue=$2
|
txtvalue=$2
|
||||||
_info "Using acme-dns"
|
_info "Using acme-dns"
|
||||||
_debug fulldomain "$fulldomain"
|
_debug "fulldomain $fulldomain"
|
||||||
_debug txtvalue "$txtvalue"
|
_debug "txtvalue $txtvalue"
|
||||||
|
|
||||||
ACMEDNS_UPDATE_URL="${ACMEDNS_UPDATE_URL:-$(_readaccountconf_mutable ACMEDNS_UPDATE_URL)}"
|
#for compatiblity from account conf
|
||||||
ACMEDNS_USERNAME="${ACMEDNS_USERNAME:-$(_readaccountconf_mutable ACMEDNS_USERNAME)}"
|
ACMEDNS_USERNAME="${ACMEDNS_USERNAME:-$(_readaccountconf_mutable ACMEDNS_USERNAME)}"
|
||||||
|
_clearaccountconf_mutable ACMEDNS_USERNAME
|
||||||
ACMEDNS_PASSWORD="${ACMEDNS_PASSWORD:-$(_readaccountconf_mutable ACMEDNS_PASSWORD)}"
|
ACMEDNS_PASSWORD="${ACMEDNS_PASSWORD:-$(_readaccountconf_mutable ACMEDNS_PASSWORD)}"
|
||||||
|
_clearaccountconf_mutable ACMEDNS_PASSWORD
|
||||||
ACMEDNS_SUBDOMAIN="${ACMEDNS_SUBDOMAIN:-$(_readaccountconf_mutable ACMEDNS_SUBDOMAIN)}"
|
ACMEDNS_SUBDOMAIN="${ACMEDNS_SUBDOMAIN:-$(_readaccountconf_mutable ACMEDNS_SUBDOMAIN)}"
|
||||||
|
_clearaccountconf_mutable ACMEDNS_SUBDOMAIN
|
||||||
|
|
||||||
if [ "$ACMEDNS_UPDATE_URL" = "" ]; then
|
ACMEDNS_BASE_URL="${ACMEDNS_BASE_URL:-$(_readdomainconf ACMEDNS_BASE_URL)}"
|
||||||
ACMEDNS_UPDATE_URL="https://auth.acme-dns.io/update"
|
ACMEDNS_USERNAME="${ACMEDNS_USERNAME:-$(_readdomainconf ACMEDNS_USERNAME)}"
|
||||||
|
ACMEDNS_PASSWORD="${ACMEDNS_PASSWORD:-$(_readdomainconf ACMEDNS_PASSWORD)}"
|
||||||
|
ACMEDNS_SUBDOMAIN="${ACMEDNS_SUBDOMAIN:-$(_readdomainconf ACMEDNS_SUBDOMAIN)}"
|
||||||
|
|
||||||
|
if [ "$ACMEDNS_BASE_URL" = "" ]; then
|
||||||
|
ACMEDNS_BASE_URL="https://auth.acme-dns.io"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
_saveaccountconf_mutable ACMEDNS_UPDATE_URL "$ACMEDNS_UPDATE_URL"
|
ACMEDNS_UPDATE_URL="$ACMEDNS_BASE_URL/update"
|
||||||
_saveaccountconf_mutable ACMEDNS_USERNAME "$ACMEDNS_USERNAME"
|
ACMEDNS_REGISTER_URL="$ACMEDNS_BASE_URL/register"
|
||||||
_saveaccountconf_mutable ACMEDNS_PASSWORD "$ACMEDNS_PASSWORD"
|
|
||||||
_saveaccountconf_mutable ACMEDNS_SUBDOMAIN "$ACMEDNS_SUBDOMAIN"
|
if [ -z "$ACMEDNS_USERNAME" ] || [ -z "$ACMEDNS_PASSWORD" ]; then
|
||||||
|
response="$(_post "" "$ACMEDNS_REGISTER_URL" "" "POST")"
|
||||||
|
_debug response "$response"
|
||||||
|
ACMEDNS_USERNAME=$(echo "$response" | sed -n 's/^{.*\"username\":[ ]*\"\([^\"]*\)\".*}/\1/p')
|
||||||
|
_debug "received username: $ACMEDNS_USERNAME"
|
||||||
|
ACMEDNS_PASSWORD=$(echo "$response" | sed -n 's/^{.*\"password\":[ ]*\"\([^\"]*\)\".*}/\1/p')
|
||||||
|
_debug "received password: $ACMEDNS_PASSWORD"
|
||||||
|
ACMEDNS_SUBDOMAIN=$(echo "$response" | sed -n 's/^{.*\"subdomain\":[ ]*\"\([^\"]*\)\".*}/\1/p')
|
||||||
|
_debug "received subdomain: $ACMEDNS_SUBDOMAIN"
|
||||||
|
ACMEDNS_FULLDOMAIN=$(echo "$response" | sed -n 's/^{.*\"fulldomain\":[ ]*\"\([^\"]*\)\".*}/\1/p')
|
||||||
|
_info "##########################################################"
|
||||||
|
_info "# Create $fulldomain CNAME $ACMEDNS_FULLDOMAIN DNS entry #"
|
||||||
|
_info "##########################################################"
|
||||||
|
_info "Press enter to continue... "
|
||||||
|
read -r _
|
||||||
|
fi
|
||||||
|
|
||||||
|
_savedomainconf ACMEDNS_BASE_URL "$ACMEDNS_BASE_URL"
|
||||||
|
_savedomainconf ACMEDNS_USERNAME "$ACMEDNS_USERNAME"
|
||||||
|
_savedomainconf ACMEDNS_PASSWORD "$ACMEDNS_PASSWORD"
|
||||||
|
_savedomainconf ACMEDNS_SUBDOMAIN "$ACMEDNS_SUBDOMAIN"
|
||||||
|
|
||||||
export _H1="X-Api-User: $ACMEDNS_USERNAME"
|
export _H1="X-Api-User: $ACMEDNS_USERNAME"
|
||||||
export _H2="X-Api-Key: $ACMEDNS_PASSWORD"
|
export _H2="X-Api-Key: $ACMEDNS_PASSWORD"
|
||||||
@ -48,8 +87,8 @@ dns_acmedns_rm() {
|
|||||||
fulldomain=$1
|
fulldomain=$1
|
||||||
txtvalue=$2
|
txtvalue=$2
|
||||||
_info "Using acme-dns"
|
_info "Using acme-dns"
|
||||||
_debug fulldomain "$fulldomain"
|
_debug "fulldomain $fulldomain"
|
||||||
_debug txtvalue "$txtvalue"
|
_debug "txtvalue $txtvalue"
|
||||||
}
|
}
|
||||||
|
|
||||||
#################### Private functions below ##################################
|
#################### Private functions below ##################################
|
||||||
|
@ -2,11 +2,14 @@
|
|||||||
|
|
||||||
# Author: Boyan Peychev <boyan at cloudns dot net>
|
# Author: Boyan Peychev <boyan at cloudns dot net>
|
||||||
# Repository: https://github.com/ClouDNS/acme.sh/
|
# Repository: https://github.com/ClouDNS/acme.sh/
|
||||||
|
# Editor: I Komang Suryadana
|
||||||
|
|
||||||
#CLOUDNS_AUTH_ID=XXXXX
|
#CLOUDNS_AUTH_ID=XXXXX
|
||||||
#CLOUDNS_SUB_AUTH_ID=XXXXX
|
#CLOUDNS_SUB_AUTH_ID=XXXXX
|
||||||
#CLOUDNS_AUTH_PASSWORD="YYYYYYYYY"
|
#CLOUDNS_AUTH_PASSWORD="YYYYYYYYY"
|
||||||
CLOUDNS_API="https://api.cloudns.net"
|
CLOUDNS_API="https://api.cloudns.net"
|
||||||
|
DOMAIN_TYPE=
|
||||||
|
DOMAIN_MASTER=
|
||||||
|
|
||||||
######## Public functions #####################
|
######## Public functions #####################
|
||||||
|
|
||||||
@ -61,6 +64,15 @@ dns_cloudns_rm() {
|
|||||||
host="$(echo "$1" | sed "s/\.$zone\$//")"
|
host="$(echo "$1" | sed "s/\.$zone\$//")"
|
||||||
record=$2
|
record=$2
|
||||||
|
|
||||||
|
_dns_cloudns_get_zone_info "$zone"
|
||||||
|
|
||||||
|
_debug "Type" "$DOMAIN_TYPE"
|
||||||
|
_debug "Cloud Master" "$DOMAIN_MASTER"
|
||||||
|
if _contains "$DOMAIN_TYPE" "cloud"; then
|
||||||
|
zone=$DOMAIN_MASTER
|
||||||
|
fi
|
||||||
|
_debug "ZONE" "$zone"
|
||||||
|
|
||||||
_dns_cloudns_http_api_call "dns/records.json" "domain-name=$zone&host=$host&type=TXT"
|
_dns_cloudns_http_api_call "dns/records.json" "domain-name=$zone&host=$host&type=TXT"
|
||||||
if ! _contains "$response" "\"id\":"; then
|
if ! _contains "$response" "\"id\":"; then
|
||||||
return 1
|
return 1
|
||||||
@ -134,6 +146,18 @@ _dns_cloudns_init_check() {
|
|||||||
return 0
|
return 0
|
||||||
}
|
}
|
||||||
|
|
||||||
|
_dns_cloudns_get_zone_info() {
|
||||||
|
zone=$1
|
||||||
|
_dns_cloudns_http_api_call "dns/get-zone-info.json" "domain-name=$zone"
|
||||||
|
if ! _contains "$response" "\"status\":\"Failed\""; then
|
||||||
|
DOMAIN_TYPE=$(echo "$response" | _egrep_o '"type":"[^"]*"' | cut -d : -f 2 | tr -d '"')
|
||||||
|
if _contains "$DOMAIN_TYPE" "cloud"; then
|
||||||
|
DOMAIN_MASTER=$(echo "$response" | _egrep_o '"cloud-master":"[^"]*"' | cut -d : -f 2 | tr -d '"')
|
||||||
|
fi
|
||||||
|
fi
|
||||||
|
return 0
|
||||||
|
}
|
||||||
|
|
||||||
_dns_cloudns_get_zone_name() {
|
_dns_cloudns_get_zone_name() {
|
||||||
i=2
|
i=2
|
||||||
while true; do
|
while true; do
|
||||||
|
87
dnsapi/dns_dnshome.sh
Executable file
87
dnsapi/dns_dnshome.sh
Executable file
@ -0,0 +1,87 @@
|
|||||||
|
#!/usr/bin/env sh
|
||||||
|
|
||||||
|
# dnsHome.de API for acme.sh
|
||||||
|
#
|
||||||
|
# This Script adds the necessary TXT record to a Subdomain
|
||||||
|
#
|
||||||
|
# Author dnsHome.de (https://github.com/dnsHome-de)
|
||||||
|
#
|
||||||
|
# Report Bugs to https://github.com/acmesh-official/acme.sh/issues/3819
|
||||||
|
#
|
||||||
|
# export DNSHOME_Subdomain=""
|
||||||
|
# export DNSHOME_SubdomainPassword=""
|
||||||
|
|
||||||
|
# Usage: add subdomain.ddnsdomain.tld "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
|
||||||
|
# Used to add txt record
|
||||||
|
dns_dnshome_add() {
|
||||||
|
txtvalue=$2
|
||||||
|
|
||||||
|
DNSHOME_Subdomain="${DNSHOME_Subdomain:-$(_readdomainconf DNSHOME_Subdomain)}"
|
||||||
|
DNSHOME_SubdomainPassword="${DNSHOME_SubdomainPassword:-$(_readdomainconf DNSHOME_SubdomainPassword)}"
|
||||||
|
|
||||||
|
if [ -z "$DNSHOME_Subdomain" ] || [ -z "$DNSHOME_SubdomainPassword" ]; then
|
||||||
|
DNSHOME_Subdomain=""
|
||||||
|
DNSHOME_SubdomainPassword=""
|
||||||
|
_err "Please specify/export your dnsHome.de Subdomain and Password"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
#save the credentials to the account conf file.
|
||||||
|
_savedomainconf DNSHOME_Subdomain "$DNSHOME_Subdomain"
|
||||||
|
_savedomainconf DNSHOME_SubdomainPassword "$DNSHOME_SubdomainPassword"
|
||||||
|
|
||||||
|
DNSHOME_Api="https://$DNSHOME_Subdomain:$DNSHOME_SubdomainPassword@www.dnshome.de/dyndns.php"
|
||||||
|
|
||||||
|
_DNSHOME_rest POST "acme=add&txt=$txtvalue"
|
||||||
|
if ! echo "$response" | grep 'successfully' >/dev/null; then
|
||||||
|
_err "Error"
|
||||||
|
_err "$response"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
return 0
|
||||||
|
}
|
||||||
|
|
||||||
|
# Usage: txtvalue
|
||||||
|
# Used to remove the txt record after validation
|
||||||
|
dns_dnshome_rm() {
|
||||||
|
txtvalue=$2
|
||||||
|
|
||||||
|
DNSHOME_Subdomain="${DNSHOME_Subdomain:-$(_readdomainconf DNSHOME_Subdomain)}"
|
||||||
|
DNSHOME_SubdomainPassword="${DNSHOME_SubdomainPassword:-$(_readdomainconf DNSHOME_SubdomainPassword)}"
|
||||||
|
|
||||||
|
DNSHOME_Api="https://$DNSHOME_Subdomain:$DNSHOME_SubdomainPassword@www.dnshome.de/dyndns.php"
|
||||||
|
|
||||||
|
if [ -z "$DNSHOME_Subdomain" ] || [ -z "$DNSHOME_SubdomainPassword" ]; then
|
||||||
|
DNSHOME_Subdomain=""
|
||||||
|
DNSHOME_SubdomainPassword=""
|
||||||
|
_err "Please specify/export your dnsHome.de Subdomain and Password"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
_DNSHOME_rest POST "acme=rm&txt=$txtvalue"
|
||||||
|
if ! echo "$response" | grep 'successfully' >/dev/null; then
|
||||||
|
_err "Error"
|
||||||
|
_err "$response"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
return 0
|
||||||
|
}
|
||||||
|
|
||||||
|
#################### Private functions below ##################################
|
||||||
|
_DNSHOME_rest() {
|
||||||
|
method=$1
|
||||||
|
data="$2"
|
||||||
|
_debug "$data"
|
||||||
|
|
||||||
|
_debug data "$data"
|
||||||
|
response="$(_post "$data" "$DNSHOME_Api" "" "$method")"
|
||||||
|
|
||||||
|
if [ "$?" != "0" ]; then
|
||||||
|
_err "error $data"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
_debug2 response "$response"
|
||||||
|
return 0
|
||||||
|
}
|
62
notify/gotify.sh
Normal file
62
notify/gotify.sh
Normal file
@ -0,0 +1,62 @@
|
|||||||
|
#!/usr/bin/env sh
|
||||||
|
|
||||||
|
#Support Gotify
|
||||||
|
|
||||||
|
#GOTIFY_URL="https://gotify.example.com"
|
||||||
|
#GOTIFY_TOKEN="123456789ABCDEF"
|
||||||
|
|
||||||
|
#optional
|
||||||
|
#GOTIFY_PRIORITY=0
|
||||||
|
|
||||||
|
# subject content statusCode
|
||||||
|
gotify_send() {
|
||||||
|
_subject="$1"
|
||||||
|
_content="$2"
|
||||||
|
_statusCode="$3" #0: success, 1: error 2($RENEW_SKIP): skipped
|
||||||
|
_debug "_subject" "$_subject"
|
||||||
|
_debug "_content" "$_content"
|
||||||
|
_debug "_statusCode" "$_statusCode"
|
||||||
|
|
||||||
|
GOTIFY_URL="${GOTIFY_URL:-$(_readaccountconf_mutable GOTIFY_URL)}"
|
||||||
|
if [ -z "$GOTIFY_URL" ]; then
|
||||||
|
GOTIFY_URL=""
|
||||||
|
_err "You didn't specify the gotify server url GOTIFY_URL."
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
_saveaccountconf_mutable GOTIFY_URL "$GOTIFY_URL"
|
||||||
|
|
||||||
|
GOTIFY_TOKEN="${GOTIFY_TOKEN:-$(_readaccountconf_mutable GOTIFY_TOKEN)}"
|
||||||
|
if [ -z "$GOTIFY_TOKEN" ]; then
|
||||||
|
GOTIFY_TOKEN=""
|
||||||
|
_err "You didn't specify the gotify token GOTIFY_TOKEN."
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
_saveaccountconf_mutable GOTIFY_TOKEN "$GOTIFY_TOKEN"
|
||||||
|
|
||||||
|
GOTIFY_PRIORITY="${GOTIFY_PRIORITY:-$(_readaccountconf_mutable GOTIFY_PRIORITY)}"
|
||||||
|
if [ -z "$GOTIFY_PRIORITY" ]; then
|
||||||
|
GOTIFY_PRIORITY=0
|
||||||
|
else
|
||||||
|
_saveaccountconf_mutable GOTIFY_PRIORITY "$GOTIFY_PRIORITY"
|
||||||
|
fi
|
||||||
|
|
||||||
|
export _H1="X-Gotify-Key: ${GOTIFY_TOKEN}"
|
||||||
|
export _H2="Content-Type: application/json"
|
||||||
|
|
||||||
|
_content=$(echo "$_content" | _json_encode)
|
||||||
|
_subject=$(echo "$_subject" | _json_encode)
|
||||||
|
|
||||||
|
_data="{\"title\": \"${_subject}\", \"message\": \"${_content}\", \"priority\": ${GOTIFY_PRIORITY}}"
|
||||||
|
|
||||||
|
response="$(_post "${_data}" "${GOTIFY_URL}/message" "" "POST" "application/json")"
|
||||||
|
|
||||||
|
if [ "$?" != "0" ]; then
|
||||||
|
_err "Failed to send message"
|
||||||
|
_err "$response"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
_debug2 response "$response"
|
||||||
|
|
||||||
|
return 0
|
||||||
|
}
|
Loading…
Reference in New Issue
Block a user