Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4310 Commits
8 Branches
42 Tags
22 MiB
Tree: 1a1eb66150
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1a1eb66150'
${ noResults }
acme.sh/dnsapi/dns_knot.sh

106 lines
2.3 KiB
Raw Normal View History

Add support for Knot DNS API The script is actually an adapted version of the `dns_nsupdate.sh` script, as the `knsupdate` utility is quite similar to `nsupdate`.
8 years ago
knot plugin: find responsible DNS zone by SOA queries
3 years ago
Add support for Knot DNS API The script is actually an adapted version of the `dns_nsupdate.sh` script, as the `knsupdate` utility is quite similar to `nsupdate`.
8 years ago
knot plugin: find responsible DNS zone by SOA queries
3 years ago
Add support for Knot DNS API The script is actually an adapted version of the `dns_nsupdate.sh` script, as the `knsupdate` utility is quite similar to `nsupdate`.
8 years ago
knot plugin: find responsible DNS zone by SOA queries
3 years ago
Add support for Knot DNS API The script is actually an adapted version of the `dns_nsupdate.sh` script, as the `knsupdate` utility is quite similar to `nsupdate`.
8 years ago
  1. #!/usr/bin/env sh
  3. ######## Public functions #####################
  5. #Usage: dns_knot_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
  6. dns_knot_add() {
  7. fulldomain=$1
  8. txtvalue=$2
  9. _checkKey || return 1
  10. [ -n "${KNOT_SERVER}" ] || KNOT_SERVER="localhost"
  11. # save the dns server and key to the account.conf file.
  12. _saveaccountconf KNOT_SERVER "${KNOT_SERVER}"
  13. _saveaccountconf KNOT_KEY "${KNOT_KEY}"
  15. if ! _get_root "$fulldomain"; then
  16. _err "Domain does not exist."
  17. return 1
  18. fi
  20. _info "Adding ${fulldomain}. 60 TXT \"${txtvalue}\""
  22. knsupdate -y "${KNOT_KEY}" <<EOF
  23. server ${KNOT_SERVER}
  24. zone ${_domain}.
  25. update add ${fulldomain}. 60 TXT "${txtvalue}"
  26. send
  27. quit
  28. EOF
  30. if [ $? -ne 0 ]; then
  31. _err "Error updating domain."
  32. return 1
  33. fi
  35. _info "Domain TXT record successfully added."
  36. return 0
  37. }
  39. #Usage: dns_knot_rm _acme-challenge.www.domain.com
  40. dns_knot_rm() {
  41. fulldomain=$1
  42. _checkKey || return 1
  43. [ -n "${KNOT_SERVER}" ] || KNOT_SERVER="localhost"
  45. if ! _get_root "$fulldomain"; then
  46. _err "Domain does not exist."
  47. return 1
  48. fi
  50. _info "Removing ${fulldomain}. TXT"
  52. knsupdate -y "${KNOT_KEY}" <<EOF
  53. server ${KNOT_SERVER}
  54. zone ${_domain}.
  55. update del ${fulldomain}. TXT
  56. send
  57. quit
  58. EOF
  60. if [ $? -ne 0 ]; then
  61. _err "error updating domain"
  62. return 1
  63. fi
  65. _info "Domain TXT record successfully deleted."
  66. return 0
  67. }
  69. #################### Private functions below ##################################
  70. # _acme-challenge.www.domain.com
  71. # returns
  72. # _domain=domain.com
  73. _get_root() {
  74. ancestor="${1}."
  76. while true; do # loops over all ancestors of $1
  78. # count labels
  79. num_labels="$(echo "$ancestor" | tr '.' ' ' | wc -w)"
  81. # abort if empty
  82. if [ "$num_labels" -eq "0" ]; then
  83. # error: could not find SOA record anywhere
  84. _debug "no SOA record found in any ancestor of $1"
  85. return 1
  86. fi
  88. # query for SOA at current ancestor
  89. if [ -n "$(dig SOA +short "${ancestor}")" ]; then
  90. # found SOA record
  91. _info "found SOA at $ancestor"
  92. _domain="${ancestor%?}"
  93. return 0
  94. fi
  96. # cut one label from the left
  97. ancestor=$(printf "%s" "${ancestor}" | cut -d . -f 2-)
  98. done
  99. }
  101. _checkKey() {
  102. if [ -z "${KNOT_KEY}" ]; then
  103. _err "You must specify a TSIG key to authenticate the request."
  104. return 1
  105. fi
  106. }