Home Explore Help
Register Sign In
Apq
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

feat: Add custom filename for panos

Antoni Company 2 weeks ago
parent
90e6c9b87b
commit
3d3053f427
1 changed files with 20 additions and 4 deletions
Split View Show Diff Stats
  1. 20 4
      deploy/panos.sh

+ 20 - 4
deploy/panos.sh
View File 

@@ -16,6 +16,7 @@
 
 #    export PANOS_TEMPLATE="" # Template Name of panorama managed devices
 
 #    export PANOS_TEMPLATE_STACK="" # set a Template Stack if certificate should also be pushed automatically
 
 #    export PANOS_VSYS="Shared"  # name of the vsys to import the certificate
 
+#    export PANOS_FILENAME="" # use a custom filename to work around Panorama's 31-character limit
 
 #
 
 # The script will automatically generate a new API key if
 
 # no key is found, or if a saved key has expired or is invalid.
 
@@ -89,7 +90,7 @@ deployer() {
 
     if [ "$type" = 'cert' ]; then
 
       panos_url="${panos_url}?type=import"
 
       content="--$delim${nl}Content-Disposition: form-data; name=\"category\"\r\n\r\ncertificate"
 
-      content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"certificate-name\"\r\n\r\n$_cdomain"
 
+      content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"certificate-name\"\r\n\r\n$_panos_filename"
 
       content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"key\"\r\n\r\n$_panos_key"
 
       content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"format\"\r\n\r\npem"
 
       content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"file\"; filename=\"$(basename "$_cfullchain")\"${nl}Content-Type: application/octet-stream${nl}${nl}$(cat "$_cfullchain")"
 
@@ -103,11 +104,11 @@ deployer() {
 
     if [ "$type" = 'key' ]; then
 
       panos_url="${panos_url}?type=import"
 
       content="--$delim${nl}Content-Disposition: form-data; name=\"category\"\r\n\r\nprivate-key"
 
-      content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"certificate-name\"\r\n\r\n$_cdomain"
 
+      content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"certificate-name\"\r\n\r\n$_panos_filename"
 
       content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"key\"\r\n\r\n$_panos_key"
 
       content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"format\"\r\n\r\npem"
 
       content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"passphrase\"\r\n\r\n123456"
 
-      content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"file\"; filename=\"$(basename "$_cdomain.key")\"${nl}Content-Type: application/octet-stream${nl}${nl}$(cat "$_ckey")"
 
+      content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"file\"; filename=\"$(basename "$_panos_filename.key")\"${nl}Content-Type: application/octet-stream${nl}${nl}$(cat "$_ckey")"
 
       if [ "$_panos_template" ]; then
 
         content="$content${nl}--$delim${nl}Content-Disposition: form-data; name=\"target-tpl\"\r\n\r\n$_panos_template"
 
       fi
 
@@ -168,7 +169,6 @@ deployer() {
 
 
 # This is the main function that will call the other functions to deploy everything.
 
 panos_deploy() {
 
-  _cdomain=$(echo "$1" | sed 's/*/WILDCARD_/g') #Wildcard Safe Filename
 
   _ckey="$2"
 
   _cfullchain="$5"
 
 
@@ -242,6 +242,15 @@ panos_deploy() {
 
     _getdeployconf PANOS_VSYS
 
   fi
 
 
+  # PANOS_FILENAME
 
+  if [ "$PANOS_FILENAME" ]; then
 
+    _debug "Detected ENV variable PANOS_FILENAME. Saving to file."
 
+    _savedeployconf PANOS_FILENAME "$PANOS_FILENAME" 1
 
+  else
 
+    _debug "Attempting to load variable PANOS_FILENAME from file."
 
+    _getdeployconf PANOS_FILENAME
 
+  fi
 
+
 
   #Store variables
 
   _panos_host=$PANOS_HOST
 
   _panos_user=$PANOS_USER
 
@@ -249,6 +258,7 @@ panos_deploy() {
 
   _panos_template=$PANOS_TEMPLATE
 
   _panos_template_stack=$PANOS_TEMPLATE_STACK
 
   _panos_vsys=$PANOS_VSYS
 
+  _panos_filename=$PANOS_FILENAME
 
 
   #Test API Key if found.  If the key is invalid, the variable _panos_key will be unset.
 
   if [ "$_panos_host" ] && [ "$_panos_key" ]; then
 
@@ -267,6 +277,12 @@ panos_deploy() {
 
     _err "No password found. If this is your first time deploying, please set PANOS_PASS in ENV variables. You can delete it after you have successfully deployed the certs."
 
     return 1
 
   else
 
+    # Use filename based on the first domain on the certificate if no custom filename is set
 
+    if [ -z "$_panos_filename" ]; then
 
+      _panos_filename=$(echo "$1" | sed 's/*/WILDCARD_/g') #Wildcard Safe Filename
 
+      _savedeployconf PANOS_FILENAME "$_panos_filename" 1
 
+    fi
 
+
 
     # Generate a new API key if no valid API key is found
 
     if [ -z "$_panos_key" ]; then
 
       _debug "**** Generating new PANOS API KEY ****"