Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3633 Commits
9 Branches
44 Tags
15 MiB
Tree: 3cd7a2e6d6
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '3cd7a2e6d6'
${ noResults }
acme.sh/dnsapi/dns_dynv6.sh

327 lines
10 KiB
Raw Normal View History

fixed dynv6 dns validation
5 years ago
formatting
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
first attempt to make travis happy
5 years ago
fixed dynv6 dns validation
5 years ago
formatting
5 years ago
fixed dynv6 dns validation
5 years ago
formatting
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
first attempt to make travis happy
5 years ago
formatting
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
first attempt to make travis happy
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
formatting
5 years ago
fixed dynv6 dns validation
5 years ago
travis
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
travis
5 years ago
fixed dynv6 dns validation
5 years ago
formatting
5 years ago
fixed dynv6 dns validation
5 years ago
  1. #!/usr/bin/env sh
  2. #Author StefanAbl
  3. #Usage specify a private keyfile to use with dynv6 'export KEY="path/to/keyfile"'
  4. #if no keyfile is specified, you will be asked if you want to create one in /home/$USER/.ssh/dynv6 and /home/$USER/.ssh/dynv6.pub
  5. ######## Public functions #####################
  6. # Please Read this guide first: https://github.com/Neilpang/acme.sh/wiki/DNS-API-Dev-Guide
  7. #Usage: dns_myapi_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
  8. dns_dynv6_add() {
  9. fulldomain=$1
  10. txtvalue=$2
  11. _info "Using dynv6 api"
  12. _debug fulldomain "$fulldomain"
  13. _debug txtvalue "$txtvalue"
  14. <<<<<<< HEAD
  15. _get_keyfile
  16. _info "using keyfile $dynv6_keyfile"
  17. _your_hosts="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts)"
  18. if ! _get_domain "$fulldomain" "$_your_hosts"; then
  19. _err "Host not found on your account"
  20. return 1
  21. fi
  22. _debug "found host on your account"
  23. returnval="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts \""$_host"\" records set \""$_record"\" txt data \""$txtvalue"\")"
  24. _debug "Dynv6 returend this after record was added: $returnval"
  25. if _contains "$returnval" "created"; then
  26. return 0
  27. elif _contains "$returnval" "updated"; then
  28. return 0
  29. else
  30. _err "Something went wrong! it does not seem like the record was added succesfully"
  31. =======
  32. _get_authentication
  33. if [ "$dynv6_token" ]; then
  34. _dns_dynv6_add_http
  35. return $?
  36. else
  37. _info "using key file $dynv6_keyfile"
  38. _your_hosts="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts)"
  39. if ! _get_domain "$fulldomain" "$_your_hosts"; then
  40. _err "Host not found on your account"
  41. return 1
  42. fi
  43. _debug "found host on your account"
  44. returnval="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts \""$_host"\" records set \""$_record"\" txt data \""$txtvalue"\")"
  45. _debug "Dynv6 returned this after record was added: $returnval"
  46. if _contains "$returnval" "created"; then
  47. return 0
  48. elif _contains "$returnval" "updated"; then
  49. return 0
  50. else
  51. _err "Something went wrong! it does not seem like the record was added successfully"
  52. return 1
  53. fi
  54. >>>>>>> formatting
  55. return 1
  56. fi
  57. return 1
  58. }
  59. #Usage: fulldomain txtvalue
  60. #Remove the txt record after validation.
  61. dns_dynv6_rm() {
  62. fulldomain=$1
  63. txtvalue=$2
  64. _info "Using dynv6 api"
  65. _debug fulldomain "$fulldomain"
  66. _debug txtvalue "$txtvalue"
  67. <<<<<<< HEAD
  68. _get_keyfile
  69. _info "using keyfile $dynv6_keyfile"
  70. _your_hosts="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts)"
  71. if ! _get_domain "$fulldomain" "$_your_hosts"; then
  72. _err "Host not found on your account"
  73. return 1
  74. =======
  75. _get_authentication
  76. if [ "$dynv6_token" ]; then
  77. _dns_dynv6_rm_http
  78. return $?
  79. else
  80. _info "using key file $dynv6_keyfile"
  81. _your_hosts="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts)"
  82. if ! _get_domain "$fulldomain" "$_your_hosts"; then
  83. _err "Host not found on your account"
  84. return 1
  85. fi
  86. _debug "found host on your account"
  87. _info "$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts "\"$_host\"" records del "\"$_record\"" txt)"
  88. return 0
  89. >>>>>>> formatting
  90. fi
  91. _debug "found host on your account"
  92. _info "$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts "\"$_host\"" records del "\"$_record\"" txt)"
  93. return 0
  94. }
  95. #################### Private functions below ##################################
  96. #Usage: No Input required
  97. #returns
  98. #dynv6_keyfile the path to the new keyfile that has been generated
  99. _generate_new_key() {
  100. dynv6_keyfile="$(eval echo ~"$USER")/.ssh/dynv6"
  101. _info "Path to key file used: $dynv6_keyfile"
  102. if [ ! -f "$dynv6_keyfile" ] && [ ! -f "$dynv6_keyfile.pub" ]; then
  103. _debug "generating key in $dynv6_keyfile and $dynv6_keyfile.pub"
  104. ssh-keygen -f "$dynv6_keyfile" -t ssh-ed25519 -N ''
  105. else
  106. _err "There is already a file in $dynv6_keyfile or $dynv6_keyfile.pub"
  107. return 1
  108. fi
  109. }
  111. #Usage: _acme-challenge.www.example.dynv6.net "$_your_hosts"
  112. #where _your_hosts is the output of ssh -i ~/.ssh/dynv6.pub api@dynv6.com hosts
  113. #returns
  114. #_host= example.dynv6.net
  115. #_record=_acme-challenge.www
  116. #aborts if not a valid domain
  117. _get_domain() {
  118. #_your_hosts="$(ssh -i ~/.ssh/dynv6.pub api@dynv6.com hosts)"
  119. _full_domain="$1"
  120. _your_hosts="$2"
  122. _your_hosts="$(echo "$_your_hosts" | awk '/\./ {print $1}')"
  123. for l in $_your_hosts; do
  124. #echo "host: $l"
  125. if test "${_full_domain#*$l}" != "$_full_domain"; then
  126. _record="${_full_domain%.$l}"
  127. _host=$l
  128. _debug "The host is $_host and the record $_record"
  129. return 0
  130. fi
  131. done
  132. _err "Either their is no such host on your dnyv6 account or it cannot be accessed with this key"
  133. return 1
  134. }
  136. # Usage: No input required
  137. #returns
  138. #dynv6_keyfile path to the key that will be used
  139. <<<<<<< HEAD
  140. _get_keyfile() {
  141. _debug "get keyfile method called"
  142. dynv6_keyfile="${dynv6_keyfile:-$(_readaccountconf_mutable dynv6_keyfile)}"
  143. _debug "Your key is $dynv6_keyfile"
  144. if [ -z "$dynv6_keyfile" ]; then
  145. if [ -z "$KEY" ]; then
  146. _err "You did not specify a key to use with dynv6"
  147. _info "Creating new dynv6 api key to add to dynv6.com"
  148. _generate_new_key
  149. _info "Please add this key to dynv6.com $(cat "$dynv6_keyfile.pub")"
  150. _info "Hit Enter to contiue"
  151. read -r _
  152. #save the credentials to the account conf file.
  153. else
  154. dynv6_keyfile="$KEY"
  155. fi
  156. _saveaccountconf_mutable dynv6_keyfile "$dynv6_keyfile"
  157. =======
  158. _get_authentication() {
  159. if [ "$DYNV6_TOKEN" ]; then
  160. _debug "Going to use the HTTP Token you specifed and saving it for futur use"
  161. _saveaccountconf_mutable dynv6_token "$DYNV6_TOKEN"
  162. dynv6_token="$DYNV6_TOKEN"
  163. elif [ "$(_readaccountconf_mutable dynv6_token)" ]; then
  164. _debug "Found a previously used HTTP token going to use that"
  165. dynv6_token="$(_readaccountconf_mutable dynv6_token)"
  166. else
  167. _debug "no HTTP token found. Looking for an SSH key"
  168. dynv6_keyfile="${dynv6_keyfile:-$(_readaccountconf_mutable dynv6_keyfile)}"
  169. _debug "Your key is $dynv6_keyfile"
  170. if [ -z "$dynv6_keyfile" ]; then
  171. if [ -z "$KEY" ]; then
  172. _err "You did not specify a key to use with dynv6"
  173. _info "Creating new dynv6 API key to add to dynv6.com"
  174. _generate_new_key
  175. _info "Please add this key to dynv6.com $(cat "$dynv6_keyfile.pub")"
  176. _info "Hit Enter to continue"
  177. read -r _
  178. #save the credentials to the account conf file.
  179. else
  180. dynv6_keyfile="$KEY"
  181. fi
  182. _saveaccountconf_mutable dynv6_keyfile "$dynv6_keyfile"
  183. fi
  184. fi
  185. }
  187. _dns_dynv6_add_http() {
  188. _debug "Got HTTP token form _get_authentication method. Going to use the HTTP API"
  189. if ! _get_zone_id "$fulldomain"; then
  190. _err "Could not find a matching zone for $fulldomain. Maybe your HTTP Token is not authorized to access the zone"
  191. return 1
  192. fi
  193. _get_zone_name "$_zone_id"
  194. record="${fulldomain%%.$_zone_name}"
  195. _set_record TXT "$record" "$txtvalue"
  196. if _contains "$response" "$txtvalue"; then
  197. _info "Successfully added record"
  198. return 0
  199. else
  200. _err "Something went wrong while adding the record"
  201. return 1
  202. fi
  203. }
  205. _dns_dynv6_rm_http() {
  206. _debug "Got HTTP token form _get_authentication method. Going to use the HTTP API"
  207. if ! _get_zone_id "$fulldomain"; then
  208. _err "Could not find a matching zone for $fulldomain. Maybe your HTTP Token is not authorized to access the zone"
  209. return 1
  210. fi
  211. _get_zone_name "$_zone_id"
  212. record="${fulldomain%%.$_zone_name}"
  213. _get_record_id "$_zone_id" "$record" "$txtvalue"
  214. _del_record "$_zone_id" "$_record_id"
  215. if [ -z "$response" ]; then
  216. _info "Successfully deleted record"
  217. return 0
  218. else
  219. _err "Something went wrong while deleting the record"
  220. return 1
  221. fi
  222. }
  224. #get the zoneid for a specifc record or zone
  225. #usage: _get_zone_id §record
  226. #where $record is the record to get the id for
  227. #returns _zone_id the id of the zone
  228. _get_zone_id() {
  229. record="$1"
  230. _debug "getting zone id for $record"
  231. _dynv6_rest GET zones
  233. zones="$(echo "$response" | tr '}' '\n' | tr ',' '\n' | grep name | sed 's/\[//g' | tr -d '{' | tr -d '"')"
  234. #echo $zones
  236. selected=""
  237. for z in $zones; do
  238. z="${z#name:}"
  239. _debug zone: "$z"
  240. if _contains "$record" "$z"; then
  241. _debug "$z found in $record"
  242. selected="$z"
  243. fi
  244. done
  245. if [ -z "$selected" ]; then
  246. _err "no zone found"
  247. return 1
  248. fi
  250. zone_id="$(echo "$response" | tr '}' '\n' | grep "$selected" | tr ',' '\n' | grep id | tr -d '"')"
  251. _zone_id="${zone_id#id:}"
  252. _debug "zone id: $_zone_id"
  253. }
  255. _get_zone_name() {
  256. _zone_id="$1"
  257. _dynv6_rest GET zones/"$_zone_id"
  258. _zone_name="$(echo "$response" | tr ',' '\n' | tr -d '{' | grep name | tr -d '"')"
  259. _zone_name="${_zone_name#name:}"
  260. }
  262. #usaage _get_record_id $zone_id $record
  263. # where zone_id is thevalue returned by _get_zone_id
  264. # and record ist in the form _acme.www for an fqdn of _acme.www.example.com
  265. # returns _record_id
  266. _get_record_id() {
  267. _zone_id="$1"
  268. record="$2"
  269. value="$3"
  270. _dynv6_rest GET "zones/$_zone_id/records"
  271. if ! _get_record_id_from_response "$response"; then
  272. _err "no such record $record found in zone $_zone_id"
  273. return 1
  274. fi
  275. }
  277. _get_record_id_from_response() {
  278. response="$1"
  279. _record_id="$(echo "$response" | tr '}' '\n' | grep "\"name\":\"$record\"" | grep "\"data\":\"$value\"" | tr ',' '\n' | grep id | tr -d '"' | tr -d 'id:')"
  280. #_record_id="${_record_id#id:}"
  281. if [ -z "$_record_id" ]; then
  282. _err "no such record: $record found in zone $_zone_id"
  283. return 1
  284. fi
  285. _debug "record id: $_record_id"
  286. return 0
  287. }
  288. #usage: _set_record TXT _acme_challenge.www longvalue 12345678
  289. #zone id is optional can also be set as vairable bevor calling this method
  290. _set_record() {
  291. type="$1"
  292. record="$2"
  293. value="$3"
  294. if [ "$4" ]; then
  295. _zone_id="$4"
  296. fi
  297. data="{\"name\": \"$record\", \"data\": \"$value\", \"type\": \"$type\"}"
  298. #data='{ "name": "acme.test.thorn.dynv6.net", "type": "A", "data": "192.168.0.1"}'
  299. echo "$data"
  300. #"{\"type\":\"TXT\",\"name\":\"$fulldomain\",\"content\":\"$txtvalue\",\"ttl\":120}"
  301. _dynv6_rest POST "zones/$_zone_id/records" "$data"
  302. }
  303. _del_record() {
  304. _zone_id=$1
  305. _record_id=$2
  306. _dynv6_rest DELETE zones/"$_zone_id"/records/"$_record_id"
  307. }
  309. _dynv6_rest() {
  310. m=$1 #method GET,POST,DELETE or PUT
  311. ep="$2" #the endpoint
  312. data="$3"
  313. _debug "$ep"
  315. token_trimmed=$(echo "$dynv6_token" | tr -d '"')
  317. export _H1="Authorization: Bearer $token_trimmed"
  318. export _H2="Content-Type: application/json"
  320. if [ "$m" != "GET" ]; then
  321. _debug data "$data"
  322. response="$(_post "$data" "$dynv6_api/$ep" "" "$m")"
  323. else
  324. response="$(_get "$dynv6_api/$ep")"
  325. >>>>>>> formatting
  326. fi
  327. }