Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3393 Commits
9 Branches
44 Tags
15 MiB
Tree: f5411ac9ab
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f5411ac9ab'
${ noResults }
acme.sh/dnsapi/dns_dynv6.sh

290 lines
8.8 KiB
Raw Normal View History

fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
Added support for custom domains
5 years ago
first attempt to make travis happy
5 years ago
Added support for custom domains
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
fixed dynv6 dns validation
5 years ago
no supporting HTTP API as well
5 years ago
  1. #!/usr/bin/env sh
  2. #Author StefanAbl
  3. #Usage specify a private keyfile to use with dynv6 'export KEY="path/to/keyfile"'
  4. #or use the HTTP REST API by by specifying a token 'export DYNV6_TOKEN="value"
  5. #if no keyfile is specified, you will be asked if you want to create one in /home/$USER/.ssh/dynv6 and /home/$USER/.ssh/dynv6.pub
  7. dynv6_api="https://dynv6.com/api/v2"
  8. ######## Public functions #####################
  9. # Please Read this guide first: https://github.com/Neilpang/acme.sh/wiki/DNS-API-Dev-Guide
  10. #Usage: dns_dynv6_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
  11. dns_dynv6_add() {
  12. fulldomain=$1
  13. txtvalue=$2
  14. _info "Using dynv6 api"
  15. _debug fulldomain "$fulldomain"
  16. _debug txtvalue "$txtvalue"
  17. _get_authentication
  18. if [ "$dynv6_token" ]; then
  19. _dns_dynv6_add_http
  20. return $?
  21. else
  22. _info "using key file $dynv6_keyfile"
  23. _your_hosts="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts)"
  24. if ! _get_domain "$fulldomain" "$_your_hosts"; then
  25. _err "Host not found on your account"
  26. return 1
  27. fi
  28. _debug "found host on your account"
  29. returnval="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts \""$_host"\" records set \""$_record"\" txt data \""$txtvalue"\")"
  30. _debug "Dynv6 returned this after record was added: $returnval"
  31. if _contains "$returnval" "created"; then
  32. return 0
  33. elif _contains "$returnval" "updated"; then
  34. return 0
  35. else
  36. _err "Something went wrong! it does not seem like the record was added successfully"
  37. return 1
  38. fi
  39. return 1
  40. fi
  41. return 1
  42. }
  43. #Usage: fulldomain txtvalue
  44. #Remove the txt record after validation.
  45. dns_dynv6_rm() {
  46. fulldomain=$1
  47. txtvalue=$2
  48. _info "Using dynv6 API"
  49. _debug fulldomain "$fulldomain"
  50. _debug txtvalue "$txtvalue"
  51. _get_authentication
  52. if [ "$dynv6_token" ]; then
  53. _dns_dynv6_rm_http
  54. return $?
  55. else
  56. _info "using key file $dynv6_keyfile"
  57. _your_hosts="$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts)"
  58. if ! _get_domain "$fulldomain" "$_your_hosts"; then
  59. _err "Host not found on your account"
  60. return 1
  61. fi
  62. _debug "found host on your account"
  63. _info "$(ssh -i "$dynv6_keyfile" api@dynv6.com hosts "\"$_host\"" records del "\"$_record\"" txt)"
  64. return 0
  65. fi
  66. }
  67. #################### Private functions below ##################################
  68. #Usage: No Input required
  69. #returns
  70. #dynv6_keyfile the path to the new key file that has been generated
  71. _generate_new_key() {
  72. dynv6_keyfile="$(eval echo ~"$USER")/.ssh/dynv6"
  73. _info "Path to key file used: $dynv6_keyfile"
  74. if [ ! -f "$dynv6_keyfile" ] && [ ! -f "$dynv6_keyfile.pub" ]; then
  75. _debug "generating key in $dynv6_keyfile and $dynv6_keyfile.pub"
  76. ssh-keygen -f "$dynv6_keyfile" -t ssh-ed25519 -N ''
  77. else
  78. _err "There is already a file in $dynv6_keyfile or $dynv6_keyfile.pub"
  79. return 1
  80. fi
  81. }
  83. #Usage: _acme-challenge.www.example.dynv6.net "$_your_hosts"
  84. #where _your_hosts is the output of ssh -i ~/.ssh/dynv6.pub api@dynv6.com hosts
  85. #returns
  86. #_host= example.dynv6.net
  87. #_record=_acme-challenge.www
  88. #aborts if not a valid domain
  89. _get_domain() {
  90. #_your_hosts="$(ssh -i ~/.ssh/dynv6.pub api@dynv6.com hosts)"
  91. _full_domain="$1"
  92. _your_hosts="$2"
  94. _your_hosts="$(echo "$_your_hosts" | awk '/\./ {print $1}')"
  95. for l in $_your_hosts; do
  96. #echo "host: $l"
  97. if test "${_full_domain#*$l}" != "$_full_domain"; then
  98. _record="${_full_domain%.$l}"
  99. _host=$l
  100. _debug "The host is $_host and the record $_record"
  101. return 0
  102. fi
  103. done
  104. _err "Either their is no such host on your dnyv6 account or it cannot be accessed with this key"
  105. return 1
  106. }
  108. # Usage: No input required
  109. #returns
  110. #dynv6_keyfile path to the key that will be used
  111. _get_authentication() {
  112. if [ "$DYNV6_TOKEN" ]; then
  113. _debug "Going to use the HTTP Token you specifed and saving it for futur use"
  114. _saveaccountconf_mutable dynv6_token "$DYNV6_TOKEN"
  115. dynv6_token="$DYNV6_TOKEN"
  116. elif [ "$(_readaccountconf_mutable dynv6_token)" ]; then
  117. _debug "Found a previously used HTTP token going to use that"
  118. dynv6_token="$(_readaccountconf_mutable dynv6_token)"
  119. else
  120. _debug "no HTTP token found. Looking for an SSH key"
  121. dynv6_keyfile="${dynv6_keyfile:-$(_readaccountconf_mutable dynv6_keyfile)}"
  122. _debug "Your key is $dynv6_keyfile"
  123. if [ -z "$dynv6_keyfile" ]; then
  124. if [ -z "$KEY" ]; then
  125. _err "You did not specify a key to use with dynv6"
  126. _info "Creating new dynv6 API key to add to dynv6.com"
  127. _generate_new_key
  128. _info "Please add this key to dynv6.com $(cat "$dynv6_keyfile.pub")"
  129. _info "Hit Enter to continue"
  130. read -r _
  131. #save the credentials to the account conf file.
  132. else
  133. dynv6_keyfile="$KEY"
  134. fi
  135. _saveaccountconf_mutable dynv6_keyfile "$dynv6_keyfile"
  136. fi
  137. fi
  138. }
  142. _dns_dynv6_add_http(){
  143. _debug "Got HTTP token form _get_authentication method. Going to use the HTTP API"
  144. if ! _get_zone_id "$fulldomain" ;then
  145. _err "Could not find a matching zone for $fulldomain. Maybe your HTTP Token is not authorized to access the zone"
  146. return 1
  147. fi
  148. _get_zone_name "$_zone_id"
  149. record="${fulldomain%%.$_zone_name}"
  150. _set_record TXT "$record" "$txtvalue"
  151. if _contains "$response" "$txtvalue"; then
  152. _info "Successfully added record"
  153. return 0
  154. else
  155. _err "Something went wrong while adding the record"
  156. return 1
  157. fi
  158. }
  160. _dns_dynv6_rm_http(){
  161. _debug "Got HTTP token form _get_authentication method. Going to use the HTTP API"
  162. if ! _get_zone_id "$fulldomain" ;then
  163. _err "Could not find a matching zone for $fulldomain. Maybe your HTTP Token is not authorized to access the zone"
  164. return 1
  165. fi
  166. _get_zone_name "$_zone_id"
  167. record="${fulldomain%%.$_zone_name}"
  168. _get_record_id "$_zone_id" "$record" "$txtvalue"
  169. _del_record "$_zone_id" "$_record_id"
  170. if [ -z "$response" ] ; then
  171. _info "Successfully deleted record"
  172. return 0
  173. else
  174. _err "Something went wrong while deleting the record"
  175. return 1
  176. fi
  177. }
  180. #get the zoneid for a specifc record or zone
  181. #usage: _get_zone_id §record
  182. #where $record is the record to get the id for
  183. #returns _zone_id the id of the zone
  184. _get_zone_id(){
  185. record="$1"
  186. _debug "getting zone id for $record"
  187. _dynv6_rest GET zones
  189. zones="$(echo "$response" | tr '}' '\n' | tr ',' '\n' | grep name | sed 's/\[//g' | tr -d '{' | tr -d '"')"
  190. #echo $zones
  192. selected=""
  193. for z in $zones; do
  194. z="${z#name:}"
  195. _debug zone: "$z"
  196. if _contains "$record" "$z"; then
  197. _debug "$z found in $record"
  198. selected="$z"
  199. fi
  200. done
  201. if [ -z "$selected" ]; then
  202. _err "no zone found"
  203. return 1
  204. fi
  206. zone_id="$(echo "$response" | tr '}' '\n' | grep "$selected" | tr ',' '\n' | grep id | tr -d '"')"
  207. _zone_id="${zone_id#id:}"
  208. _debug "zone id: $_zone_id"
  209. }
  211. _get_zone_name(){
  212. _zone_id="$1"
  213. _dynv6_rest GET zones/"$_zone_id"
  214. _zone_name="$(echo "$response" | tr ',' '\n'| tr -d '{'|grep name|tr -d '"')"
  215. _zone_name="${_zone_name#name:}"
  216. }
  218. #usaage _get_record_id $zone_id $record
  219. # where zone_id is thevalue returned by _get_zone_id
  220. # and record ist in the form _acme.www for an fqdn of _acme.www.example.com
  221. # returns _record_id
  222. _get_record_id(){
  223. _zone_id="$1"
  224. record="$2"
  225. value="$3"
  226. _dynv6_rest GET "zones/$_zone_id/records"
  227. if ! _get_record_id_from_response "$response" ; then
  228. _err "no such record $record found in zone $_zone_id"
  229. return 1
  230. fi
  231. }
  233. _get_record_id_from_response(){
  234. response="$1"
  235. _record_id="$(echo "$response" | tr '}' '\n' | grep "\"name\":\"$record\"" | grep "\"data\":\"$value\"" | tr ',' '\n' | grep id |tr -d '"'|tr -d 'id:')"
  236. #_record_id="${_record_id#id:}"
  237. if [ -z "$_record_id" ]; then
  238. _err "no such record: $record found in zone $_zone_id"
  239. return 1
  240. fi
  241. _debug "record id: $_record_id"
  242. return 0
  243. }
  244. #usage: _set_record TXT _acme_challenge.www longvalue 12345678
  245. #zone id is optional can also be set as vairable bevor calling this method
  246. _set_record(){
  247. type="$1"
  248. record="$2"
  249. value="$3"
  250. if [ "$4" ]; then
  251. _zone_id="$4"
  252. fi
  253. data="{\"name\": \"$record\", \"data\": \"$value\", \"type\": \"$type\"}"
  254. #data='{ "name": "acme.test.thorn.dynv6.net", "type": "A", "data": "192.168.0.1"}'
  255. echo "$data"
  256. #"{\"type\":\"TXT\",\"name\":\"$fulldomain\",\"content\":\"$txtvalue\",\"ttl\":120}"
  257. _dynv6_rest POST "zones/$_zone_id/records" "$data"
  258. }
  259. _del_record(){
  260. _zone_id=$1
  261. _record_id=$2
  262. _dynv6_rest DELETE zones/"$_zone_id"/records/"$_record_id"
  263. }
  265. _dynv6_rest() {
  266. m=$1 #method GET,POST,DELETE or PUT
  267. ep="$2" #the endpoint
  268. data="$3"
  269. _debug "$ep"
  271. token_trimmed=$(echo "$dynv6_token" | tr -d '"')
  273. export _H1="Authorization: Bearer $token_trimmed"
  274. export _H2="Content-Type: application/json"
  276. if [ "$m" != "GET" ]; then
  277. _debug data "$data"
  278. response="$(_post "$data" "$dynv6_api/$ep" "" "$m")"
  279. else
  280. response="$(_get "$dynv6_api/$ep")"
  281. fi
  283. if [ "$?" != "0" ]; then
  284. _err "error $ep"
  285. return 1
  286. fi
  287. _debug2 response "$response"
  288. return 0
  289. }