Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4987 Commits
8 Branches
42 Tags
22 MiB
Tree: 019291fcdc
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '019291fcdc'
${ noResults }
acme.sh/dnsapi/dns_he_dyntxt.sh

86 lines
2.6 KiB
Raw Normal View History

Add dns_he_dyntxt, a simpler dns.he.net API. These are the pros and cons of dns_he_dyntxt, compared to dns_he: Pros: - No need to store a dns.he.net account password on your server - Uses a very simple write-only API Cons: - You must manually create placeholder _acme-challenge TXT records, and generate/copy the same DDNS key across all records. - This script WILL FAIL to issue both a domain and its wildcard, because '-d example.com -d *.example.com' requires multiple TXT records. Switch to 'dns_he' if you need this feature.
2 years ago
  1. #!/usr/bin/env sh
  3. ########################################################################
  4. # Hurricane Electric hook script for acme.sh (dynamic TXT API)
  5. #
  6. # These are the pros and cons of dns_he_dyntxt, compared to dns_he:
  7. # Pros:
  8. # - No need to store a dns.he.net account password on your server
  9. # - Uses a very simple write-only API
  10. # Cons:
  11. # - You must manually create placeholder _acme-challenge TXT records,
  12. # and generate/copy the same DDNS key across all records.
  13. # - This script WILL FAIL to issue both a domain and its wildcard, because
  14. # '-d example.com -d *.example.com' requires multiple TXT records.
  15. # Switch to 'dns_he' if you need this feature.
  16. #
  17. # Environment variable:
  18. # HE_DynTXT_Key - DDNS key for all _acme-challenge TXT records
  19. ########################################################################
  21. # Cheat sheet for passing the DNS.yml API test:
  22. # - Set TEST_DNS_NO_WILDCARD=1
  23. # - Create placeholder TXT records for the following domain names:
  24. # - _acme-challenge.$TestingDomain
  25. # - acmetestXyzRandomName.$TestingDomain
  27. HE_DynTXT_Api="https://dyn.dns.he.net/nic/update"
  29. ######## Public functions #####################
  31. #Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
  32. dns_he_dyntxt_add() {
  33. fulldomain=$1
  34. txtvalue=$2
  36. HE_DynTXT_Key="${HE_DynTXT_Key:-$(_readaccountconf_mutable HE_DynTXT_Key)}"
  38. if [ -z "$HE_DynTXT_Key" ]; then
  39. HE_DynTXT_Key=""
  40. _err "Missing HE_DynTXT_Key. See dnsapi/dns_he_dyntxt.sh for instructions."
  41. return 1
  42. fi
  44. #save the DDNS key to the account conf file.
  45. _saveaccountconf_mutable HE_DynTXT_Key "$HE_DynTXT_Key"
  47. _info "Updating record $fulldomain"
  48. _he_dyntxt_post "$fulldomain" "$txtvalue"
  49. return "$?"
  50. }
  52. dns_he_dyntxt_rm() {
  53. fulldomain=$1
  54. txtvalue='""' # The record is just cleared, not removed.
  56. HE_DynTXT_Key="${HE_DynTXT_Key:-$(_readaccountconf_mutable HE_DynTXT_Key)}"
  58. _info "Clearing record $fulldomain"
  59. _he_dyntxt_post "$fulldomain" "$txtvalue"
  60. return "$?"
  61. }
  63. ##################### Private functions below ##################################
  65. _he_dyntxt_post() {
  66. hostname=$1
  67. txt=$2
  68. response="$(_post "hostname=$hostname&password=$HE_DynTXT_Key&txt=$txt" "$HE_DynTXT_Api")"
  70. if [ "$?" != "0" ]; then
  71. _err "POST failed"
  72. return 1
  73. fi
  74. _debug2 response "$response"
  76. if _contains "$response" "good" || _contains "$response" "nochg"; then
  77. _info "Updated, OK"
  78. return 0
  79. elif _contains "$response" "badauth"; then
  80. _err "'$hostname' missing placeholder TXT record, or DDNS key incorrect"
  81. return 1
  82. else
  83. _err "Unknown POST response: $response"
  84. return 1
  85. fi
  86. }