Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5538 Commits
8 Branches
42 Tags
22 MiB
Tree: fa3591f4f2
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'fa3591f4f2'
${ noResults }
acme.sh/dnsapi/dns_dyn.sh

338 lines
7.8 KiB
Raw Normal View History

Add 'dns_dyn' DNS challenge validation script for Dyn Managed DNS API dns_dyn.sh, remove empty line at end dns_dyn.sh, remove trailing spaces at end of line Replace 'head -n' with the '_head_n' function Update main README.md DNS API list
7 years ago
DNS provider API: structured description Instead of using comments declare info in a special variable. Then the variable can be used to print the DNS API provider usage. The usage can be parsed on UI and show all needed inputs for options. The info is stored in plain string that it's both human-readable and easy to parse: dns_example_info='API name An extended description. Multiline. Domains: list of alternative domains to find Site: the dns provider website e.g. example.com Docs: Link to ACME.sh wiki for the provider Options: VARIABLE1 Title for the option1. VARIABLE2 Title for the option2. Default "default value". VARIABLE3 Title for the option3. Description to show on UI. Optional. Issues: Link to a support ticket on https://github.com/acmesh-official/acme.sh Author: First Lastname <authoremail@example.com>, Another Author <https://github.com/example>; ' Here: VARIABLE1 will be required. VARIABLE2 will be required too but will be populated with a "default value". VARIABLE3 is optional and can be empty. A DNS provider may have alternative options like CloudFlare may use API KEY or API Token. You can use a second section OptionsAlt: section. Some providers may have alternative names or domains e.g. Aliyun and AlibabaCloud. Add them to Domains: section. Signed-off-by: Sergey Ponomarev <stokito@gmail.com>
10 months ago
Add 'dns_dyn' DNS challenge validation script for Dyn Managed DNS API dns_dyn.sh, remove empty line at end dns_dyn.sh, remove trailing spaces at end of line Replace 'head -n' with the '_head_n' function Update main README.md DNS API list
7 years ago
  1. #!/usr/bin/env sh
  2. # shellcheck disable=SC2034
  3. dns_dyn_info='Dyn.com
  4. Domains: dynect.net
  5. Site: Dyn.com
  6. Docs: github.com/acmesh-official/acme.sh/wiki/dnsapi#dns_dyn
  7. Options:
  8. DYN_Customer Customer
  9. DYN_Username API Username
  10. DYN_Password Secret
  11. Author: Gerd Naschenweng <https://github.com/magicdude4eva>
  12. '
  14. # Dyn Managed DNS API
  15. # https://help.dyn.com/dns-api-knowledge-base/
  16. #
  17. # It is recommended to add a "Dyn Managed DNS" user specific for API access.
  18. # The "Zones & Records Permissions" required by this script are:
  19. # --
  20. # RecordAdd
  21. # RecordUpdate
  22. # RecordDelete
  23. # RecordGet
  24. # ZoneGet
  25. # ZoneAddNode
  26. # ZoneRemoveNode
  27. # ZonePublish
  28. # --
  30. DYN_API="https://api.dynect.net/REST"
  32. #REST_API
  33. ######## Public functions #####################
  35. #Usage: add _acme-challenge.www.domain.com "Challenge-code"
  36. dns_dyn_add() {
  37. fulldomain="$1"
  38. txtvalue="$2"
  40. DYN_Customer="${DYN_Customer:-$(_readaccountconf_mutable DYN_Customer)}"
  41. DYN_Username="${DYN_Username:-$(_readaccountconf_mutable DYN_Username)}"
  42. DYN_Password="${DYN_Password:-$(_readaccountconf_mutable DYN_Password)}"
  43. if [ -z "$DYN_Customer" ] || [ -z "$DYN_Username" ] || [ -z "$DYN_Password" ]; then
  44. DYN_Customer=""
  45. DYN_Username=""
  46. DYN_Password=""
  47. _err "You must export variables: DYN_Customer, DYN_Username and DYN_Password"
  48. return 1
  49. fi
  51. #save the config variables to the account conf file.
  52. _saveaccountconf_mutable DYN_Customer "$DYN_Customer"
  53. _saveaccountconf_mutable DYN_Username "$DYN_Username"
  54. _saveaccountconf_mutable DYN_Password "$DYN_Password"
  56. if ! _dyn_get_authtoken; then
  57. return 1
  58. fi
  60. if [ -z "$_dyn_authtoken" ]; then
  61. _dyn_end_session
  62. return 1
  63. fi
  65. if ! _dyn_get_zone; then
  66. _dyn_end_session
  67. return 1
  68. fi
  70. if ! _dyn_add_record; then
  71. _dyn_end_session
  72. return 1
  73. fi
  75. if ! _dyn_publish_zone; then
  76. _dyn_end_session
  77. return 1
  78. fi
  80. _dyn_end_session
  82. return 0
  83. }
  85. #Usage: fulldomain txtvalue
  86. #Remove the txt record after validation.
  87. dns_dyn_rm() {
  88. fulldomain="$1"
  89. txtvalue="$2"
  91. DYN_Customer="${DYN_Customer:-$(_readaccountconf_mutable DYN_Customer)}"
  92. DYN_Username="${DYN_Username:-$(_readaccountconf_mutable DYN_Username)}"
  93. DYN_Password="${DYN_Password:-$(_readaccountconf_mutable DYN_Password)}"
  94. if [ -z "$DYN_Customer" ] || [ -z "$DYN_Username" ] || [ -z "$DYN_Password" ]; then
  95. DYN_Customer=""
  96. DYN_Username=""
  97. DYN_Password=""
  98. _err "You must export variables: DYN_Customer, DYN_Username and DYN_Password"
  99. return 1
  100. fi
  102. if ! _dyn_get_authtoken; then
  103. return 1
  104. fi
  106. if [ -z "$_dyn_authtoken" ]; then
  107. _dyn_end_session
  108. return 1
  109. fi
  111. if ! _dyn_get_zone; then
  112. _dyn_end_session
  113. return 1
  114. fi
  116. if ! _dyn_get_record_id; then
  117. _dyn_end_session
  118. return 1
  119. fi
  121. if [ -z "$_dyn_record_id" ]; then
  122. _dyn_end_session
  123. return 1
  124. fi
  126. if ! _dyn_rm_record; then
  127. _dyn_end_session
  128. return 1
  129. fi
  131. if ! _dyn_publish_zone; then
  132. _dyn_end_session
  133. return 1
  134. fi
  136. _dyn_end_session
  138. return 0
  139. }
  141. #################### Private functions below ##################################
  143. #get Auth-Token
  144. _dyn_get_authtoken() {
  146. _info "Start Dyn API Session"
  148. data="{\"customer_name\":\"$DYN_Customer\", \"user_name\":\"$DYN_Username\", \"password\":\"$DYN_Password\"}"
  149. dyn_url="$DYN_API/Session/"
  150. method="POST"
  152. _debug data "$data"
  153. _debug dyn_url "$dyn_url"
  155. export _H1="Content-Type: application/json"
  157. response="$(_post "$data" "$dyn_url" "" "$method")"
  158. sessionstatus="$(printf "%s\n" "$response" | _egrep_o '"status" *: *"[^"]*' | _head_n 1 | sed 's#^"status" *: *"##')"
  160. _debug response "$response"
  161. _debug sessionstatus "$sessionstatus"
  163. if [ "$sessionstatus" = "success" ]; then
  164. _dyn_authtoken="$(printf "%s\n" "$response" | _egrep_o '"token" *: *"[^"]*' | _head_n 1 | sed 's#^"token" *: *"##')"
  165. _info "Token received"
  166. _debug _dyn_authtoken "$_dyn_authtoken"
  167. return 0
  168. fi
  170. _dyn_authtoken=""
  171. _err "get token failed"
  172. return 1
  173. }
  175. #fulldomain=_acme-challenge.www.domain.com
  176. #returns
  177. # _dyn_zone=domain.com
  178. _dyn_get_zone() {
  179. i=2
  180. while true; do
  181. domain="$(printf "%s" "$fulldomain" | cut -d . -f "$i-100")"
  182. if [ -z "$domain" ]; then
  183. break
  184. fi
  186. dyn_url="$DYN_API/Zone/$domain/"
  188. export _H1="Auth-Token: $_dyn_authtoken"
  189. export _H2="Content-Type: application/json"
  191. response="$(_get "$dyn_url" "" "")"
  192. sessionstatus="$(printf "%s\n" "$response" | _egrep_o '"status" *: *"[^"]*' | _head_n 1 | sed 's#^"status" *: *"##')"
  194. _debug dyn_url "$dyn_url"
  195. _debug response "$response"
  196. _debug sessionstatus "$sessionstatus"
  198. if [ "$sessionstatus" = "success" ]; then
  199. _dyn_zone="$domain"
  200. return 0
  201. fi
  202. i=$(_math "$i" + 1)
  203. done
  205. _dyn_zone=""
  206. _err "get zone failed"
  207. return 1
  208. }
  210. #add TXT record
  211. _dyn_add_record() {
  213. _info "Adding TXT record"
  215. data="{\"rdata\":{\"txtdata\":\"$txtvalue\"},\"ttl\":\"300\"}"
  216. dyn_url="$DYN_API/TXTRecord/$_dyn_zone/$fulldomain/"
  217. method="POST"
  219. export _H1="Auth-Token: $_dyn_authtoken"
  220. export _H2="Content-Type: application/json"
  222. response="$(_post "$data" "$dyn_url" "" "$method")"
  223. sessionstatus="$(printf "%s\n" "$response" | _egrep_o '"status" *: *"[^"]*' | _head_n 1 | sed 's#^"status" *: *"##')"
  225. _debug response "$response"
  226. _debug sessionstatus "$sessionstatus"
  228. if [ "$sessionstatus" = "success" ]; then
  229. _info "TXT Record successfully added"
  230. return 0
  231. fi
  233. _err "add TXT record failed"
  234. return 1
  235. }
  237. #publish the zone
  238. _dyn_publish_zone() {
  240. _info "Publishing zone"
  242. data="{\"publish\":\"true\"}"
  243. dyn_url="$DYN_API/Zone/$_dyn_zone/"
  244. method="PUT"
  246. export _H1="Auth-Token: $_dyn_authtoken"
  247. export _H2="Content-Type: application/json"
  249. response="$(_post "$data" "$dyn_url" "" "$method")"
  250. sessionstatus="$(printf "%s\n" "$response" | _egrep_o '"status" *: *"[^"]*' | _head_n 1 | sed 's#^"status" *: *"##')"
  252. _debug response "$response"
  253. _debug sessionstatus "$sessionstatus"
  255. if [ "$sessionstatus" = "success" ]; then
  256. _info "Zone published"
  257. return 0
  258. fi
  260. _err "publish zone failed"
  261. return 1
  262. }
  264. #get record_id of TXT record so we can delete the record
  265. _dyn_get_record_id() {
  267. _info "Getting record_id of TXT record"
  269. dyn_url="$DYN_API/TXTRecord/$_dyn_zone/$fulldomain/"
  271. export _H1="Auth-Token: $_dyn_authtoken"
  272. export _H2="Content-Type: application/json"
  274. response="$(_get "$dyn_url" "" "")"
  275. sessionstatus="$(printf "%s\n" "$response" | _egrep_o '"status" *: *"[^"]*' | _head_n 1 | sed 's#^"status" *: *"##')"
  277. _debug response "$response"
  278. _debug sessionstatus "$sessionstatus"
  280. if [ "$sessionstatus" = "success" ]; then
  281. _dyn_record_id="$(printf "%s\n" "$response" | _egrep_o "\"data\" *: *\[\"/REST/TXTRecord/$_dyn_zone/$fulldomain/[^\"]*" | _head_n 1 | sed "s#^\"data\" *: *\[\"/REST/TXTRecord/$_dyn_zone/$fulldomain/##")"
  282. _debug _dyn_record_id "$_dyn_record_id"
  283. return 0
  284. fi
  286. _dyn_record_id=""
  287. _err "getting record_id failed"
  288. return 1
  289. }
  291. #delete TXT record
  292. _dyn_rm_record() {
  294. _info "Deleting TXT record"
  296. dyn_url="$DYN_API/TXTRecord/$_dyn_zone/$fulldomain/$_dyn_record_id/"
  297. method="DELETE"
  299. _debug dyn_url "$dyn_url"
  301. export _H1="Auth-Token: $_dyn_authtoken"
  302. export _H2="Content-Type: application/json"
  304. response="$(_post "" "$dyn_url" "" "$method")"
  305. sessionstatus="$(printf "%s\n" "$response" | _egrep_o '"status" *: *"[^"]*' | _head_n 1 | sed 's#^"status" *: *"##')"
  307. _debug response "$response"
  308. _debug sessionstatus "$sessionstatus"
  310. if [ "$sessionstatus" = "success" ]; then
  311. _info "TXT record successfully deleted"
  312. return 0
  313. fi
  315. _err "delete TXT record failed"
  316. return 1
  317. }
  319. #logout
  320. _dyn_end_session() {
  322. _info "End Dyn API Session"
  324. dyn_url="$DYN_API/Session/"
  325. method="DELETE"
  327. _debug dyn_url "$dyn_url"
  329. export _H1="Auth-Token: $_dyn_authtoken"
  330. export _H2="Content-Type: application/json"
  332. response="$(_post "" "$dyn_url" "" "$method")"
  334. _debug response "$response"
  336. _dyn_authtoken=""
  337. return 0
  338. }