|
|
#!/usr/bin/env sh
## DNS API for Versio.nl/Versio.eu/Versio.uk# Author: lebaned <github@bakker.cloud># Author: Tom Blauwendraat <tom@sunflowerweb.nl>######### Public functions #####################
#Usage: dns_versio_add _acme-challenge.www.domain.com "[txtvalue]"dns_versio_add() { fulldomain=$1 txtvalue=$2 _info "Using Versio" _debug fulldomain "$fulldomain" _debug txtvalue "$txtvalue"
if ! _get_configuration; then return 1 fi
_debug "First detect the root zone" if ! _get_root "$fulldomain"; then _err "invalid domain" return 1 fi
_info fulldomain "$fulldomain" _info _domain "$_domain" _info _sub_domain "$_sub_domain"
if ! _get_dns_records "$_domain"; then _err "invalid domain" return 1 fi
_debug "original dnsrecords" "$_dns_records" _add_dns_record "TXT" "$fulldomain." "\\\"$txtvalue\\\"" 0 300 _debug "dnsrecords after add record" "{\"dns_records\":[$_dns_records]}"
while [ "$j" -le 3 ]; do _versio_rest POST "domains/$_domain/update" "{\"dns_records\":[$_dns_records]}" if [ "$?" = "0" ]; then _debug "rest update response" "$response" _debug "changed dnsrecords" "$_dns_records" return 0 fi if [ "$?" != "2" ]; then break fi j=$((j + 1)) done
_err "Error!" return 1}
#Usage: fulldomain txtvalue#Remove the txt record after validation.dns_versio_rm() { fulldomain=$1 txtvalue=$2 _info "Using Versio" _debug fulldomain "$fulldomain" _debug txtvalue "$txtvalue"
if ! _get_configuration; then return 1 fi
_debug "First detect the root zone" if ! _get_root "$fulldomain"; then _err "invalid domain" return 1 fi
_debug fulldomain "$fulldomain" _debug _domain "$_domain" _debug _sub_domain "$_sub_domain"
if ! _get_dns_records "$_domain"; then _err "invalid domain" return 1 fi
_debug "original dnsrecords" "$_dns_records" _delete_dns_record "TXT" "$fulldomain." _debug "dnsrecords after deleted old record" "$_dns_records"
if _versio_rest POST "domains/$_domain/update" "{\"dns_records\":[$_dns_records]}"; then _debug "rest update response" "$response" _debug "changed dnsrecords" "$_dns_records" return 0 fi
_err "Error!" return 1
}
#################### Private functions below ##################################
#_acme-challenge.www.domain.com#returns# _sub_domain=_acme-challenge.www# _domain=domain.com_get_root() { domain=$1 i=1 p=1
if _versio_rest GET "domains?status=OK"; then response="$(echo "$response" | tr -d "\n")" while true; do h=$(printf "%s" "$domain" | cut -d . -f $i-100) _info h "$h" _debug h "$h" if [ -z "$h" ]; then #not valid return 1 fi hostedzone="$(echo "$response" | _egrep_o "{.*\"domain\":\s*\"$h\"")" if [ "$hostedzone" ]; then _sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p) _domain=$h return 0 fi p=$i i=$(_math "$i" + 1) done fi return 1}
#parameters: [record type] [record name]_delete_dns_record() { _dns_records=$(echo "$_dns_records" | sed 's/{"type":"'"$1"'","name":"'"$2"'"[^}]*}[,]\?//' | sed 's/,$//')}
#parameters: [type] [name] [value] [prio] [ttl]_add_dns_record() { _dns_records="$_dns_records,{\"type\":\"$1\",\"name\":\"$2\",\"value\":\"$3\",\"prio\":$4,\"ttl\":$5}"}
#parameters: [root domain]#returns# _dns_records_get_dns_records() { if _versio_rest GET "domains/$1?show_dns_records=true"; then _dns_records="$(echo "$response" | sed -n 's/.*\"dns\_records\":\[\([^][]*\).*/\1/p')" return 0 fi return 1}
#method uri qstr data_versio_rest() { mtd="$1" ep="$2" data="$3"
_debug mtd "$mtd" _debug ep "$ep"
VERSIO_API_URL="https://www.versio.nl/api/v1" VERSIO_CREDENTIALS_BASE64=$(printf "%s:%s" "$VERSIO_Username" "$VERSIO_Password" | _base64)
export _H1="Accept: application/json" export _H2="Authorization: Basic $VERSIO_CREDENTIALS_BASE64" export _H3="" export _H4="" export _H5=""
if [ "$mtd" != "GET" ]; then # both POST and DELETE. _debug data "$data" response="$(_post "$data" "$VERSIO_API_URL/$ep" "" "$mtd" "application/json")" else response="$(_get "$VERSIO_API_URL/$ep")" fi
# sleeping in order not to exceed rate limit if [ -n "$VERSIO_Slow_rate" ]; then _info "Sleeping $VERSIO_Slow_rate seconds to slow down hit rate on API" _sleep "$VERSIO_Slow_rate" fi
case $? in 0) if [ "$response" = "Rate limit exceeded" ]; then _err "Rate limit exceeded. Try again later." return 1 fi case $response in "<"*) _err "Invalid non-JSON response! $response" return 2 # retryable ;; "{\"error\":"*) _err "Error response! $response" return 1 ;; esac _debug response "$response" return 0 ;; 6) _err "Authentication failure. Check your Versio email address and password" return 1 ;; *) _err "Unknown error" return 1 ;; esac}
#parameters: []#returns:# VERSIO_Username# VERSIO_Password# VERSIO_Slow_rate_get_configuration() { VERSIO_Username="${VERSIO_Username:-$(_readaccountconf_mutable VERSIO_Username)}" VERSIO_Password="${VERSIO_Password:-$(_readaccountconf_mutable VERSIO_Password)}" if [ -z "$VERSIO_Username" ] || [ -z "$VERSIO_Password" ]; then VERSIO_Username="" VERSIO_Password="" _err "You don't specify Versio email address and/or password yet." _err "Example:" _err "export VERSIO_Username=[email address]" _err "export VERSIO_Password=[password]" return 1 fi VERSIO_Slow_rate="${VERSIO_Slow_rate:-$(_readaccountconf_mutable VERSIO_Slow_rate)}" _info "Using slowdown rate: $VERSIO_Slow_rate seconds" if [ -z "$VERSIO_Slow_rate" ]; then VERSIO_Slow_rate="" fi _saveaccountconf_mutable VERSIO_Username "$VERSIO_Username" _saveaccountconf_mutable VERSIO_Password "$VERSIO_Password" _saveaccountconf_mutable VERSIO_Slow_rate "$VERSIO_Slow_rate" return 0}
|
