lc
9 years ago
1 changed files with 195 additions and 0 deletions
@ -0,0 +1,195 @@ |
|||
#!/usr/bin/env bash |
|||
|
|||
Ali_API='https://alidns.aliyuncs.com/' |
|||
|
|||
|
|||
#Usage: dns_ali_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs" |
|||
dns_ali_add() { |
|||
fulldomain=$1 |
|||
txtvalue=$2 |
|||
|
|||
if [ -z "$Ali_Key" ] || [ -z "$Ali_Secret" ]; then |
|||
Ali_Key="" |
|||
Ali_Secret="" |
|||
_err "You don't specify aliyun api key and secret yet." |
|||
return 1 |
|||
fi |
|||
|
|||
#save the api key and secret to the account conf file. |
|||
_saveaccountconf Ali_Key "$Ali_Key" |
|||
_saveaccountconf Ali_Secret "$Ali_Secret" |
|||
|
|||
_debug "First detect the root zone" |
|||
if ! _get_root "$fulldomain"; then |
|||
return 1 |
|||
fi |
|||
|
|||
_check_exist_query "$_domain" "$_sub_domain" |
|||
|
|||
_rest |
|||
|
|||
record_id=`_process_check_result` |
|||
|
|||
if [ $record_id == 0 ];then |
|||
#Add |
|||
_add_record_query "$_domain" "$_sub_domain" "$txtvalue" |
|||
else |
|||
#Update |
|||
_update_record_query "$record_id" "$_sub_domain" "$txtvalue" |
|||
fi |
|||
|
|||
_rest |
|||
|
|||
echo $response |
|||
|
|||
return 0 |
|||
} |
|||
|
|||
dns_ali_rm() { |
|||
fulldomain=$1 |
|||
} |
|||
|
|||
#################### Private functions bellow ################################## |
|||
|
|||
_get_root() { |
|||
domain=$1 |
|||
i=2 |
|||
p=1 |
|||
while true; do |
|||
h=$(printf "%s" "$domain" | cut -d . -f $i-100) |
|||
if [ -z "$h" ]; then |
|||
#not valid |
|||
return 1 |
|||
fi |
|||
|
|||
_describe_records_query $h |
|||
if ! _rest; then |
|||
return 1 |
|||
fi |
|||
|
|||
|
|||
if _contains "$response" "PageNumber"; then |
|||
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p) |
|||
_debug _sub_domain "$_sub_domain" |
|||
_domain="$h" |
|||
_debug _domain "$_domain" |
|||
return 0 |
|||
fi |
|||
p="$i" |
|||
i=$(_math "$i" + 1) |
|||
done |
|||
return 1 |
|||
} |
|||
|
|||
_rest() { |
|||
signature=`_sign $query` |
|||
signature=`_urlencode $signature` |
|||
url=${Ali_API}?${query}'&Signature='$signature |
|||
|
|||
response="$(_get "$url")" |
|||
|
|||
if [ "$?" != "0" ]; then |
|||
_err "error!" |
|||
return 1 |
|||
fi |
|||
_debug2 response "$response" |
|||
return 0 |
|||
} |
|||
|
|||
_urlencode(){ |
|||
python -c "import sys, urllib as ul;print ul.quote_plus('$1')" |
|||
} |
|||
|
|||
|
|||
_check_exist_query(){ |
|||
query='' |
|||
query=$query'AccessKeyId='$Ali_Key |
|||
query=$query'&Action=DescribeDomainRecords' |
|||
query=$query'&DomainName='$1 |
|||
query=$query'&Format=json' |
|||
query=$query'&RRKeyWord='$2 |
|||
query=$query'&SignatureMethod=HMAC-SHA1' |
|||
query=$query'&SignatureNonce='$RANDOM |
|||
query=$query'&SignatureVersion=1.0' |
|||
query=$query'&Timestamp='`_time` |
|||
query=$query'&TypeKeyWord=TXT' |
|||
query=$query'&Version=2015-01-09' |
|||
} |
|||
|
|||
_add_record_query(){ |
|||
query='' |
|||
query=$query'AccessKeyId='$Ali_Key |
|||
query=$query'&Action=AddDomainRecord' |
|||
query=$query'&DomainName='$1 |
|||
query=$query'&Format=json' |
|||
query=$query'&RR='$2 |
|||
query=$query'&SignatureMethod=HMAC-SHA1' |
|||
query=$query'&SignatureNonce='$RANDOM |
|||
query=$query'&SignatureVersion=1.0' |
|||
query=$query'&Timestamp='`_time` |
|||
query=$query'&Type=TXT' |
|||
query=$query'&Value='$3 |
|||
query=$query'&Version=2015-01-09' |
|||
} |
|||
|
|||
_update_record_query(){ |
|||
query='' |
|||
query=$query'AccessKeyId='$Ali_Key |
|||
query=$query'&Action=UpdateDomainRecord' |
|||
query=$query'&Format=json' |
|||
query=$query'&RecordId='$1 |
|||
query=$query'&RR='$2 |
|||
query=$query'&SignatureMethod=HMAC-SHA1' |
|||
query=$query'&SignatureNonce='$RANDOM |
|||
query=$query'&SignatureVersion=1.0' |
|||
query=$query'&Timestamp='`_time` |
|||
query=$query'&Type=TXT' |
|||
query=$query'&Value='$3 |
|||
query=$query'&Version=2015-01-09' |
|||
} |
|||
|
|||
_describe_records_query(){ |
|||
query='' |
|||
query=$query'AccessKeyId='$Ali_Key |
|||
query=$query'&Action=DescribeDomainRecords' |
|||
query=$query'&DomainName='$1 |
|||
query=$query'&Format=json' |
|||
query=$query'&SignatureMethod=HMAC-SHA1' |
|||
query=$query'&SignatureNonce='$RANDOM |
|||
query=$query'&SignatureVersion=1.0' |
|||
query=$query'&Timestamp='`_time` |
|||
query=$query'&Version=2015-01-09' |
|||
} |
|||
|
|||
_time(){ |
|||
zone=`date +%Z` |
|||
sec=`date +%s` |
|||
t=`date -d "1970-01-01 $zone $sec sec" +%Y-%m-%dT%H:%M:%SZ` |
|||
t=`_urlencode $t` |
|||
echo $t |
|||
} |
|||
|
|||
_sign(){ |
|||
StringToSign='GET&'`_urlencode '/'`'&' |
|||
StringToSign=$StringToSign`_urlencode $1` |
|||
echo -n $StringToSign | openssl sha1 -hmac $Ali_Secret'&' -binary | openssl base64 |
|||
} |
|||
|
|||
|
|||
_process_check_result(){ |
|||
python -c \ |
|||
" |
|||
import json; |
|||
result=json.loads('$response'); |
|||
if result.has_key('Message'): |
|||
print(result['Message']); |
|||
quit(1); |
|||
records=result['DomainRecords']['Record']; |
|||
for r in result['DomainRecords']['Record']: |
|||
if r['RR'] == '_acme-challenge.passport': |
|||
print(r['RecordId']); |
|||
quit(); |
|||
print(0); |
|||
" |
|||
} |
|||
|
|||
Write
Preview
Loading…
Cancel
Save
Reference in new issue