Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2969 Commits
9 Branches
44 Tags
15 MiB
Tree: 835f9aad91
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '835f9aad91'
${ noResults }
acme.sh/dnsapi/dns_miab.sh

236 lines
8.3 KiB
Raw Normal View History

dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Cleanup/ removed private function _get_root Function _get_root() copied from acme.sh and is not needed here. Other cleanup as recommended by acme.sh test bot.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Um that's a wee bit of nit pick. 'Errant' space removed on blank line on line 147.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
Fixed weird spacing on line 180 Um, fixed.
5 years ago
dnsapi/dns_miab.sh MIAB DNS-01 Validation Know I'm new to contorting to this project. I i've broke conventions please let me know what I've screwed up and I'll set it right as quickly as possible. Propose this as a new DNS-01 validation script to dynamically add challenge DNS records to MailinaBox (MIAB) DNS. MIAB uses a custom DNS API to manage external DNS records. The script was originally written by Darven Dissek and can be found in his repository: https://framagit.org/DarvenDissek/acme.sh-MIAB-DNS-API/). This has been forked and some slight cleanup applied and change shebang to UNIx shell. The forked repository can be found here: https://github.com/billgertz/MIAB_dns_api. Wrote to Darven but received no reply. Support for this script has been submitted to the OPNsense project via this pull request: https://github.com/opnsense/plugins/pull/1531
5 years ago
  1. #!/usr/bin/env sh
  3. # Name: dns_miab.sh
  4. #
  5. # Authors:
  6. # Darven Dissek 2018
  7. # William Gertz 2019
  8. #
  9. # Thanks to Neil Pang for the code reused from acme.sh from HTTP-01 validation
  10. # used to communicate with the MailintheBox Custom DNS API
  11. # Report Bugs here:
  12. # https://github.com/billgertz/MIAB_dns_api (for dns_miab.sh)
  13. # https://github.com/Neilpang/acme.sh (for acme.sh)
  14. #
  15. ######## Public functions #####################
  17. #Usage: dns_miab_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
  18. dns_miab_add() {
  19. fulldomain=$1
  20. txtvalue=$2
  21. _info "Using miab"
  22. _debug fulldomain "$fulldomain"
  23. _debug txtvalue "$txtvalue"
  25. MIAB_Username="${MIAB_Username:-$(_readaccountconf_mutable MIAB_Username)}"
  26. MIAB_Password="${MIAB_Password:-$(_readaccountconf_mutable MIAB_Password)}"
  27. MIAB_Server="${MIAB_Server:-$(_readaccountconf_mutable MIAB_Server)}"
  29. #debug log the environmental variables
  30. _debug MIAB_Username "$MIAB_Username"
  31. _debug MIAB_Password "$MIAB_Password"
  32. _debug MIAB_Server "$MIAB_Server"
  34. if [ -z "$MIAB_Username" ] || [ -z "$MIAB_Password" ] || [ -z "$MIAB_Server" ]; then
  35. MIAB_Username=""
  36. MIAB_Password=""
  37. MIAB_Server=""
  38. _err "You didn't specify MIAB_Username or MIAB_Password or MIAB_Server."
  39. _err "Please try again."
  40. return 1
  41. fi
  43. #save the credentials to the account conf file.
  44. _saveaccountconf_mutable MIAB_Username "$MIAB_Username"
  45. _saveaccountconf_mutable MIAB_Password "$MIAB_Password"
  46. _saveaccountconf_mutable MIAB_Server "$MIAB_Server"
  48. baseurl="https://$MIAB_Server/admin/dns/custom/$fulldomain/txt"
  50. #Add the challenge record
  51. result="$(_miab_post "$txtvalue" "$baseurl" "" "POST" "" "$MIAB_Username" "$MIAB_Password")"
  53. _debug result "$result"
  55. #check if result was good
  56. if _contains "$result" "updated DNS"; then
  57. _info "Successfully created the txt record"
  58. return 0
  59. else
  60. _err "Error encountered during record addition"
  61. _err "$result"
  62. return 1
  63. fi
  64. }
  66. #Usage: fulldomain txtvalue
  67. #Remove the txt record after validation.
  68. dns_miab_rm() {
  69. fulldomain=$1
  70. txtvalue=$2
  71. _info "Using miab"
  72. _debug fulldomain "$fulldomain"
  73. _debug txtvalue "$txtvalue"
  75. MIAB_Username="${MIAB_Username:-$(_readaccountconf_mutable MIAB_Username)}"
  76. MIAB_Password="${MIAB_Password:-$(_readaccountconf_mutable MIAB_Password)}"
  77. MIAB_Server="${MIAB_Server:-$(_readaccountconf_mutable MIAB_Server)}"
  79. #debug log the environmental variables
  80. _debug MIAB_Username "$MIAB_Username"
  81. _debug MIAB_Password "$MIAB_Password"
  82. _debug MIAB_Server "$MIAB_Server"
  84. if [ -z "$MIAB_Username" ] || [ -z "$MIAB_Password" ] || [ -z "$MIAB_Server" ]; then
  85. MIAB_Username=""
  86. MIAB_Password=""
  87. MIAB_Server=""
  88. _err "You didn't specify MIAB_Username or MIAB_Password or MIAB_Server."
  89. _err "Please try again."
  90. return 1
  91. fi
  93. #save the credentials to the account conf file.
  94. _saveaccountconf_mutable MIAB_Username "$MIAB_Username"
  95. _saveaccountconf_mutable MIAB_Password "$MIAB_Password"
  96. _saveaccountconf_mutable MIAB_Server "$MIAB_Server"
  98. baseurl="https://$MIAB_Server/admin/dns/custom/$fulldomain/txt"
  100. #Remove the challenge record
  101. result="$(_miab_post "$txtvalue" "$baseurl" "" "DELETE" "" "$MIAB_Username" "$MIAB_Password")"
  103. _debug result "$result"
  105. #check if result was good
  106. if _contains "$result" "updated DNS"; then
  107. _info "Successfully created the txt record"
  108. return 0
  109. else
  110. _err "Error encountered during record addition"
  111. _err "$result"
  112. return 1
  113. fi
  114. }
  116. #################### Private functions below ##################################
  117. #
  118. # post changes to MIAB dns (taken from acme.sh)
  119. _miab_post() {
  120. body="$1"
  121. _post_url="$2"
  122. needbase64="$3"
  123. httpmethod="$4"
  124. _postContentType="$5"
  125. username="$6"
  126. password="$7"
  128. if [ -z "$httpmethod" ]; then
  129. httpmethod="POST"
  130. fi
  132. _debug $httpmethod
  133. _debug "_post_url" "$_post_url"
  134. _debug2 "body" "$body"
  135. _debug2 "_postContentType" "$_postContentType"
  137. _inithttp
  139. if [ "$_ACME_CURL" ] && [ "${ACME_USE_WGET:-0}" = "0" ]; then
  140. _CURL="$_ACME_CURL"
  142. if [ "$HTTPS_INSECURE" ]; then
  143. _CURL="$_CURL --insecure "
  144. fi
  146. _debug "_CURL" "$_CURL"
  148. if [ "$needbase64" ]; then
  149. if [ "$_postContentType" ]; then
  150. response="$($_CURL --user-agent "$USER_AGENT" -X $httpmethod --user "$username:$password" -H "Content-Type: $_postContentType" -H "$_H1" -H "$_H2" -H "$_H3" -H "$_H4" -H "$_H5" --data "$body" "$_post_url" | _base64)"
  151. else
  152. response="$($_CURL --user-agent "$USER_AGENT" -X $httpmethod --user "$username:$password" -H "$_H1" -H "$_H2" -H "$_H3" -H "$_H4" -H "$_H5" --data "$body" "$_post_url" | _base64)"
  153. fi
  154. else
  155. if [ "$_postContentType" ]; then
  156. response="$($_CURL --user-agent "$USER_AGENT" -X $httpmethod --user "$username:$password" -H "Content-Type: $_postContentType" -H "$_H1" -H "$_H2" -H "$_H3" -H "$_H4" -H "$_H5" --data "$body" "$_post_url")"
  157. else
  158. response="$($_CURL --user-agent "$USER_AGENT" -X $httpmethod --user "$username:$password" -H "$_H1" -H "$_H2" -H "$_H3" -H "$_H4" -H "$_H5" --data "$body" "$_post_url")"
  159. fi
  160. fi
  162. _ret="$?"
  164. if [ "$_ret" != "0" ]; then
  165. _err "Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: $_ret"
  166. if [ "$DEBUG" ] && [ "$DEBUG" -ge "2" ]; then
  167. _err "Here is the curl dump log:"
  168. _err "$(cat "$_CURL_DUMP")"
  169. fi
  170. fi
  172. elif [ "$_ACME_WGET" ]; then
  173. _WGET="$_ACME_WGET"
  175. if [ "$HTTPS_INSECURE" ]; then
  176. _WGET="$_WGET --no-check-certificate "
  177. fi
  179. _debug "_WGET" "$_WGET"
  181. if [ "$needbase64" ]; then
  183. if [ "$httpmethod" = "POST" ]; then
  184. if [ "$_postContentType" ]; then
  185. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --header "Content-Type: $_postContentType" --post-data="$body" "$_post_url" 2>"$HTTP_HEADER" | _base64)"
  186. else
  187. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --post-data="$body" "$_post_url" 2>"$HTTP_HEADER" | _base64)"
  188. fi
  189. else
  190. if [ "$_postContentType" ]; then
  191. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --header "Content-Type: $_postContentType" --method $httpmethod --body-data="$body" "$_post_url" 2>"$HTTP_HEADER" | _base64)"
  192. else
  193. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --method $httpmethod --body-data="$body" "$_post_url" 2>"$HTTP_HEADER" | _base64)"
  194. fi
  195. fi
  197. else
  199. if [ "$httpmethod" = "POST" ]; then
  200. if [ "$_postContentType" ]; then
  201. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --header "Content-Type: $_postContentType" --post-data="$body" "$_post_url" 2>"$HTTP_HEADER")"
  202. else
  203. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --post-data="$body" "$_post_url" 2>"$HTTP_HEADER")"
  204. fi
  205. else
  206. if [ "$_postContentType" ]; then
  207. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --header "Content-Type: $_postContentType" --method $httpmethod --body-data="$body" "$_post_url" 2>"$HTTP_HEADER")"
  208. else
  209. response="$($_WGET -S -O - --user-agent="$USER_AGENT" --header "$_H5" --header "$_H4" --header "$_H3" --header "$_H2" --header "$_H1" --method $httpmethod --body-data="$body" "$_post_url" 2>"$HTTP_HEADER")"
  210. fi
  211. fi
  213. fi
  215. _ret="$?"
  217. if [ "$_ret" = "8" ]; then
  218. _ret=0
  219. _debug "wget returns 8, the server returns a 'Bad request' response, lets process the response later."
  220. fi
  222. if [ "$_ret" != "0" ]; then
  223. _err "Please refer to https://www.gnu.org/software/wget/manual/html_node/Exit-Status.html for error code: $_ret"
  224. fi
  226. _sed_i "s/^ *//g" "$HTTP_HEADER"
  228. else
  229. _ret="$?"
  230. _err "Neither curl nor wget was found, cannot do $httpmethod."
  231. fi
  233. _debug "_ret" "$_ret"
  234. printf "%s" "$response"
  235. return $_ret
  236. }