Anton Avramov
3 weeks ago
1 changed files with 145 additions and 0 deletions
@ -0,0 +1,145 @@ |
|||||
|
#!/usr/bin/env sh |
||||
|
|
||||
|
# https://github.com/blueslow/sslcertzoneedit |
||||
|
|
||||
|
# Only need to export the credentials once, acme.sh will save for automatic renewal. |
||||
|
# export ZONEEDIT_ID="Your id" |
||||
|
# export ZONEEDIT_Token="Your token" |
||||
|
# acme.sh --issue --dns dns_zoneedit -d example.com -d www.example.com |
||||
|
|
||||
|
######## Public functions ##################### |
||||
|
|
||||
|
# Usage: dns_zoneedit_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
||||
|
dns_zoneedit_add() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using Zoneedit" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
|
||||
|
# Load the credentials from the account conf file |
||||
|
ZONEEDIT_ID="${ZONEEDIT_ID:-$(_readaccountconf_mutable ZONEEDIT_ID)}" |
||||
|
ZONEEDIT_Token="${ZONEEDIT_Token:-$(_readaccountconf_mutable ZONEEDIT_Token)}" |
||||
|
if [ -z "$ZONEEDIT_ID" ] || [ -z "$ZONEEDIT_Token" ]; then |
||||
|
ZONEEDIT_ID="" |
||||
|
ZONEEDIT_Token="" |
||||
|
_err "Please specify ZONEEDIT_ID and _Token." |
||||
|
_err "Please export as ZONEEDIT_ID and ZONEEDIT_Token then try again." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
# Save the credentials to the account conf file |
||||
|
_saveaccountconf_mutable ZONEEDIT_ID "$ZONEEDIT_ID" |
||||
|
_saveaccountconf_mutable ZONEEDIT_Token "$ZONEEDIT_Token" |
||||
|
|
||||
|
if _zoneedit_api "CREATE" "$fulldomain" "$txtvalue"; then |
||||
|
_info "Added, OK" |
||||
|
return 0 |
||||
|
else |
||||
|
_err "Add txt record error." |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
||||
|
|
||||
|
# Usage: dns_zoneedit_rm fulldomain txtvalue |
||||
|
dns_zoneedit_rm() { |
||||
|
fulldomain=$1 |
||||
|
txtvalue=$2 |
||||
|
_info "Using Zoneedit" |
||||
|
_debug fulldomain "$fulldomain" |
||||
|
_debug txtvalue "$txtvalue" |
||||
|
|
||||
|
# Load the credentials from the account conf file |
||||
|
ZONEEDIT_ID="${ZONEEDIT_ID:-$(_readaccountconf_mutable ZONEEDIT_ID)}" |
||||
|
ZONEEDIT_Token="${ZONEEDIT_Token:-$(_readaccountconf_mutable ZONEEDIT_Token)}" |
||||
|
if [ -z "$ZONEEDIT_ID" ] || [ -z "$ZONEEDIT_Token" ]; then |
||||
|
ZONEEDIT_ID="" |
||||
|
ZONEEDIT_Token="" |
||||
|
_err "Please specify ZONEEDIT_ID and _Token." |
||||
|
_err "Please export as ZONEEDIT_ID and ZONEEDIT_Token then try again." |
||||
|
return 1 |
||||
|
fi |
||||
|
|
||||
|
if _zoneedit_api "DELETE" "$fulldomain" "$txtvalue"; then |
||||
|
_info "Deleted, OK" |
||||
|
return 0 |
||||
|
else |
||||
|
_err "Delete txt record error." |
||||
|
return 1 |
||||
|
fi |
||||
|
} |
||||
|
|
||||
|
#################### Private functions below ################################## |
||||
|
|
||||
|
#Usage: _zoneedit_api <CREATE|DELETE> fulldomain txtvalue |
||||
|
_zoneedit_api() { |
||||
|
cmd=$1 |
||||
|
fulldomain=$2 |
||||
|
txtvalue=$3 |
||||
|
|
||||
|
# Construct basic authorization header |
||||
|
credentials=$(printf "%s:%s" "$ZONEEDIT_ID" "$ZONEEDIT_Token" | _base64) |
||||
|
export _H1="Authorization: Basic ${credentials}" |
||||
|
|
||||
|
# Generate request URL |
||||
|
case "$cmd" in |
||||
|
"CREATE") |
||||
|
# https://dynamic.zoneedit.com/txt-create.php?host=_acme-challenge.example.com&rdata=depE1VF_xshMm1IVY1Y56Kk9Zb_7jA2VFkP65WuNgu8W |
||||
|
geturl="https://dynamic.zoneedit.com/txt-create.php?host=${fulldomain}&rdata=${txtvalue}" |
||||
|
;; |
||||
|
"DELETE") |
||||
|
# https://dynamic.zoneedit.com/txt-delete.php?host=_acme-challenge.example.com&rdata=depE1VF_xshMm1IVY1Y56Kk9Zb_7jA2VFkP65WuNgu8W |
||||
|
geturl="https://dynamic.zoneedit.com/txt-delete.php?host=${fulldomain}&rdata=${txtvalue}" |
||||
|
ze_sleep=2 |
||||
|
;; |
||||
|
*) |
||||
|
_err "Unknown parameter : $cmd" |
||||
|
return 1 |
||||
|
;; |
||||
|
esac |
||||
|
|
||||
|
# Execute request |
||||
|
i=3 # Tries |
||||
|
while [ $i -gt 0 ]; do |
||||
|
i=$(_math "$i" - 1) |
||||
|
|
||||
|
if ! response=$(_get "$geturl"); then |
||||
|
_err "_get() failed ($response)" |
||||
|
return 1 |
||||
|
fi |
||||
|
_debug2 response "$response" |
||||
|
if _contains "$response" "SUCCESS.*200"; then |
||||
|
# Sleep (when needed) to work around a Zonedit API bug |
||||
|
# https://forum.zoneedit.com/threads/automating-changes-of-txt-records-in-dns.7394/page-2#post-23855 |
||||
|
if [ "$ze_sleep" ]; then _sleep "$ze_sleep"; fi |
||||
|
return 0 |
||||
|
elif _contains "$response" "ERROR.*Minimum.*seconds"; then |
||||
|
_info "Zoneedit responded with a rate limit of..." |
||||
|
ze_ratelimit=$(echo "$response" | sed -n 's/.*Minimum \([0-9]\+\) seconds.*/\1/p') |
||||
|
if [ "$ze_ratelimit" ] && [ ! "$(echo "$ze_ratelimit" | tr -d '0-9')" ]; then |
||||
|
_info "$ze_ratelimit seconds." |
||||
|
else |
||||
|
_err "$response" |
||||
|
_err "not a number, or blank ($ze_ratelimit), API change?" |
||||
|
unset ze_ratelimit |
||||
|
fi |
||||
|
else |
||||
|
_err "$response" |
||||
|
_err "Unknown response, API change?" |
||||
|
fi |
||||
|
|
||||
|
# Retry |
||||
|
if [ "$i" -lt 1 ]; then |
||||
|
_err "Tries exceeded, giving up." |
||||
|
return 1 |
||||
|
fi |
||||
|
if [ "$ze_ratelimit" ]; then |
||||
|
_info "Waiting $ze_ratelimit seconds..." |
||||
|
_sleep "$ze_ratelimit" |
||||
|
else |
||||
|
_err "Going to retry after 10 seconds..." |
||||
|
_sleep 10 |
||||
|
fi |
||||
|
done |
||||
|
return 1 |
||||
|
} |
||||
Write
Preview
Loading…
Cancel
Save
Reference in new issue