Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2323 Commits
9 Branches
44 Tags
15 MiB
Tree: 2e87cff035
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '2e87cff035'
${ noResults }
acme.sh/deploy/ali_slb.sh.bk

106 lines
2.8 KiB
Raw Normal View History

modify ali_slb.sh, set_slb_server_certificate
6 years ago
  1. #!/bin/bash
  2. ######## Public functions #####################
  3. # 参考: https://github.com/Neilpang/acme.sh/wiki/DNS-API-Dev-Guide
  4. #domain keyfile certfile cafile fullchain
  5. #Ali_Region="cn-hangzhou"
  6. #Ali_Api_Key=""
  7. #Ali_Api_Secret=""
  8. Ali_Api="https://slb.aliyuncs.com/"
  10. ali_slb_deploy() {
  11. _cdomain="$1"
  12. _ckey="$2"
  13. _ccert="$3"
  14. _cca="$4"
  15. _cfullchain="$5"
  17. if [ -z "$Ali_Api_Key" ] || [ -z "$Ali_Api_Secret" ]; then
  18. Ali_Api_Key=""
  19. Ali_Api_Secret=""
  20. _err "You don't specify aliyun api key and secret yet."
  21. return 1
  22. fi
  24. #save the api key and secret to the account conf file.
  25. _saveaccountconf Ali_Api_Key "$Ali_Api_Key"
  26. _saveaccountconf Ali_Api_Secret "$Ali_Api_Secret"
  28. #_ali_regions && _ali_rest "Regions"
  29. _add_slb_ca_query "$_ckey" "$_cfullchain" && _ali_rest "Upload Server Certificate"
  31. #returns 0 means success, otherwise error.
  32. return 0
  33. }
  35. ######## Private functions #####################
  36. _ali_rest() {
  38. signature=$(printf "%s" "GET&%2F&$(_ali_urlencode "$query")" | _hmac "sha1" "$(printf "%s" "$Ali_Api_Secret&" | _hex_dump | tr -d " ")" | _base64)
  39. signature=$(_ali_urlencode "$signature")
  40. url="$Ali_Api?$query&Signature=$signature"
  41. if ! response="$(_get "$url" "" 3000)"; then
  42. _err "Error <$1>"
  43. return 1
  44. fi
  46. if [ -z "$2" ]; then
  47. message="$(printf "%s" "$response" | _egrep_o "\"Message\":\"[^\"]*\"" | cut -d : -f 2 | tr -d \")"
  48. if [ -n "$message" ]; then
  49. _err "$message"
  50. return 1
  51. fi
  52. fi
  54. _debug response "$response"
  55. return 0
  56. }
  58. _ali_urlencode() {
  59. echo $(php -r "echo str_replace(['+','*','%7E'], ['%20','%2A','~'], urlencode(\"$1\"));")
  60. }
  62. _ali_nonce() {
  63. date +"%s%N"
  64. }
  66. _ali_regions() {
  67. query=''
  68. query=$query'AccessKeyId='$Ali_Api_Key
  69. query=$query'&Action=DescribeRegions'
  70. query=$query'&Format=json'
  71. query=$query'&SignatureMethod=HMAC-SHA1'
  72. query=$query'&SignatureNonce='$(_ali_nonce)
  73. query=$query'&SignatureVersion=1.0'
  74. query=$query'&Timestamp='$(_timestamp)
  75. query=$query'&Version=2014-05-15'
  76. }
  78. #_add_slb_ca_query "$_ckey" "$_cfullchain"
  79. _add_slb_ca_query() {
  80. ca_key=$(_readfile "$1")
  81. ca_cert=$(_readfile "$2")
  82. query=''
  83. query=$query'AccessKeyId='$Ali_Api_Key
  84. query=$query'&Action=UploadServerCertificate'
  85. query=$query'&Format=json'
  86. query=$query'&PrivateKey='$ca_key
  87. query=$query'&RegionId='$Ali_Region
  88. query=$query'&ServerCertificate='$ca_cert
  89. query=$query'&ServerCertificateName='$(_date)
  90. query=$query'&SignatureMethod=HMAC-SHA1'
  91. query=$query'&SignatureNonce='$(_ali_nonce)
  92. query=$query'&SignatureVersion=1.0'
  93. query=$query'&Timestamp='$(_timestamp)
  94. query=$query'&Version=2014-05-15'
  95. }
  97. _readfile() {
  98. echo $(php -r "echo str_replace(['+','*','%7E'], ['%20','%2A','~'], urlencode(file_get_contents(\"$1\")));")
  99. }
  101. _timestamp() {
  102. date -u +"%Y-%m-%dT%H%%3A%M%%3A%SZ"
  103. }
  105. _date() {
  106. date -u +"%Y%m%d"
  107. }