You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

163 lines
4.9 KiB

#!/usr/bin/env sh
# JamoTech Customer Domain amce Helper
# This script is intended to be run via
# acme.sh on managed customer systems
# to allow customers to create and renew
# SSL certificates on their client
# subdomain e.g (client.jamo.tech)
# without the need for support staff
# to create TXT records.
# API Calls to be made
# _get("https://api.corp-jamo.tech/dns/v1/records/exists.php?access=accesskey&hostname=subdomain&target=10.8.0.1&type=A")
# _get("https://api.corp-jamo.tech/dns/v1/records/exists.php?access=accesskey&hostname=_acme-challenge.subdomain&target=ACMEKEY&type=TXT")
# _get("https://api.corp-jamo.tech/dns/v1/records/add.php?access=accesskey&hostname=subdomain&target=10.8.0.1&type=A")
# _get("https://api.corp-jamo.tech/dns/v1/records/add.php?access=accesskey&hostname=_acme-challenge.subdomain&target=ACMEKEY&type=TXT")
# _get("https://api.corp-jamo.tech/dns/v1/records/remove.php?access=accesskey&hostname=subdomain&target=10.8.0.1&type=A")
# _get("https://api.corp-jamo.tech/dns/v1/records/remove.php?access=accesskey&hostname=_acme-challenge.subdomain&target=ACMEKEY&type=TXT")
dns_jamotech_add() {
fulldomain=$1
txtvalue=$2
JTECH_ENDIP="${JTECH_ENDIP:-$(_readaccountconf_mutable JTECH_ENDIP)}"
JTECH_KEY="${JTECH_KEY:-$(_readaccountconf_mutable JTECH_KEY)}"
if [ "$JTECH_ENDIP" ]; then
_saveaccountconf_mutable JTECH_ENDIP "$JTECH_ENDIP"
else
_err "You need to specify an end IP by running 'export JTECH_ENDIP=IP'"
return 1
fi
if [ "$JTECH_KEY" ]; then
_saveaccountconf_mutable JTECH_KEY "$JTECH_KEY"
else
_err "You need to specify an API Key by running 'export JTECH_KEY=APIKEY'"
return 1
fi
_info "Using jamotech-register to add the TXT record"
_get_root
_create_record
_debug fulldomain "$fulldomain"
_debug txtvalue "$txtvalue"
}
dns_jamotech_rm() {
fulldomain=$1
txtvalue=$2
JTECH_ENDIP="${JTECH_ENDIP:-$(_readaccountconf_mutable JTECH_ENDIP)}"
JTECH_KEY="${JTECH_KEY:-$(_readaccountconf_mutable JTECH_KEY)}"
if [ "$JTECH_ENDIP" ]; then
_saveaccountconf_mutable JTECH_ENDIP "$JTECH_ENDIP"
else
_err "You need to specify an end IP by running 'export JTECH_ENDIP=IP'"
return 1
fi
if [ "$JTECH_KEY" ]; then
_saveaccountconf_mutable JTECH_KEY "$JTECH_KEY"
else
_err "You need to specify an API Key by running 'export JTECH_KEY=APIKEY'"
return 1
fi
_info "Using jamotech-clean to remove the TXT record"
_get_root
_remove_record
_debug fulldomain "$fulldomain"
_debug txtvalue "$txtvalue"
}
#################### Private functions below ##################################
_get_root() {
domain=$fulldomain
txtdomain=${domain%.jamo.tech}
subdomain=$(echo "$txtdomain" | cut -d'.' -f2-)
_debug "txtdomain = $txtdomain"
_debug "subdomain = $subdomain"
_debug "Domain: $domain TXTDomain: $txtdomain Subdomain: $subdomain"
if [ -z "$domain" ] || [ -z "$txtdomain" ] || [ -z "$subdomain" ]; then
_err "We weren't able to determine the records which need to be created."
return 1
fi
_txthost="$txtdomain"
_subhost="$subdomain"
_err "$domain not found"
return 1
}
_check_record() {
server_record="https://api.corp-jamo.tech/dns/v1/records/exists.php?access=$JTECH_KEY&hostname=$_subhost&target=$JTECH_ENDIP&type=A"
txt_record="https://api.corp-jamo.tech/dns/v1/records/exists.php?access=$JTECH_KEY&hostname=$_txthost&target=$txtvalue&type=TXT"
_debug "API ENDPOINTS $server_record $txt_record"
response="$(_get "$server_record")"
if [ "$?" != "0" ]; then
_err "error"
return 1
fi
if _contains "$response" '"exists":"true"}'; then
_err "Record already exists."
return 1
fi
response="$(_get "$txt_record")"
if [ "$?" != "0" ]; then
_err "error"
return 1
fi
if _contains "$response" '"exists":"true"}'; then
_err "Record already exists."
return 1
fi
}
_create_record() {
_check_record
server_record="https://api.corp-jamo.tech/dns/v1/records/add.php?access=$JTECH_KEY&hostname=$_subhost&target=$JTECH_ENDIP&type=A"
txt_record="https://api.corp-jamo.tech/dns/v1/records/add.php?access=$JTECH_KEY&hostname=$_txthost&target=$txtvalue&type=TXT"
_debug "API ENDPOINTS $server_record $txt_record"
response="$(_get "$server_record")"
if [ "$?" != "0" ]; then
_err "error"
return 1
fi
response="$(_get "$txt_record")"
if [ "$?" != "0" ]; then
_err "error"
return 1
fi
return 0
}
_remove_record() {
server_record="https://api.corp-jamo.tech/dns/v1/records/remove.php?access=$JTECH_KEY&hostname=$_subhost&target=$JTECH_ENDIP&type=A"
txt_record="https://api.corp-jamo.tech/dns/v1/records/remove.php?access=$JTECH_KEY&hostname=$_txthost&target=$txtvalue&type=TXT"
_debug "API ENDPOINTS $server_record $txt_record"
response="$(_get "$server_record")"
if [ "$?" != "0" ]; then
_err "error"
return 1
fi
response="$(_get "$txt_record")"
if [ "$?" != "0" ]; then
_err "error"
return 1
fi
return 0
}