Home Explore Help
Register Sign In
Apq
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Files Issues 0 Wiki
Branch: dev
Branches Tags
acme.sh
/
dnsapi
/
dns_curanet.sh

dns_curanet.sh 4.8 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165 
  1. #!/usr/bin/env sh
    2. 

  2. # shellcheck disable=SC2034
    3. 

  3. dns_curanet_info='Curanet.dk
    4. 

  4. Domains: scannet.dk wannafind.dk dandomain.dk
    5. 

  5. Site: Curanet.dk
    6. 

  6. Docs: github.com/acmesh-official/acme.sh/wiki/dnsapi2#dns_curanet
    7. 

  7. Options:
    8. 

  8.  CURANET_AUTHCLIENTID Auth ClientID. Requires scope dns
    9. 

  9.  CURANET_AUTHSECRET Auth Secret
    10. 

  10. Issues: github.com/acmesh-official/acme.sh/issues/3933
    11. 

  11. Author: Peter L. Hansen <[email protected]>
    12. 

  12. '
    13. 

  13. 

  14. CURANET_REST_URL="https://api.curanet.dk/dns/v1/Domains"
    15. 

  15. CURANET_AUTH_URL="https://apiauth.dk.team.blue/auth/realms/Curanet/protocol/openid-connect/token"
    16. 

  16. CURANET_ACCESS_TOKEN=""
    17. 

  17. 

  18. ########  Public functions #####################
    19. 

  19. 

  20. #Usage: dns_curanet_add   _acme-challenge.www.domain.com   "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
    21. 

  21. dns_curanet_add() {
    22. 

  22.   fulldomain=$1
    23. 

  23.   txtvalue=$2
    24. 

  24.   _info "Using curanet"
    25. 

  25.   _debug fulldomain "$fulldomain"
    26. 

  26.   _debug txtvalue "$txtvalue"
    27. 

  27. 

  28.   CURANET_AUTHCLIENTID="${CURANET_AUTHCLIENTID:-$(_readaccountconf_mutable CURANET_AUTHCLIENTID)}"
    29. 

  29.   CURANET_AUTHSECRET="${CURANET_AUTHSECRET:-$(_readaccountconf_mutable CURANET_AUTHSECRET)}"
    30. 

  30.   if [ -z "$CURANET_AUTHCLIENTID" ] || [ -z "$CURANET_AUTHSECRET" ]; then
    31. 

  31.     CURANET_AUTHCLIENTID=""
    32. 

  32.     CURANET_AUTHSECRET=""
    33. 

  33.     _err "You don't specify curanet api client and secret."
    34. 

  34.     _err "Please create your auth info and try again."
    35. 

  35.     return 1
    36. 

  36.   fi
    37. 

  37. 

  38.   #save the credentials to the account conf file.
    39. 

  39.   _saveaccountconf_mutable CURANET_AUTHCLIENTID "$CURANET_AUTHCLIENTID"
    40. 

  40.   _saveaccountconf_mutable CURANET_AUTHSECRET "$CURANET_AUTHSECRET"
    41. 

  41. 

  42.   if ! _get_token; then
    43. 

  43.     _err "Unable to get token"
    44. 

  44.     return 1
    45. 

  45.   fi
    46. 

  46. 

  47.   if ! _get_root "$fulldomain"; then
    48. 

  48.     _err "Invalid domain"
    49. 

  49.     return 1
    50. 

  50.   fi
    51. 

  51. 

  52.   export _H1="Content-Type: application/json-patch+json"
    53. 

  53.   export _H2="Accept: application/json"
    54. 

  54.   export _H3="Authorization: Bearer $CURANET_ACCESS_TOKEN"
    55. 

  55.   data="{\"name\": \"$fulldomain\",\"type\": \"TXT\",\"ttl\": 60,\"priority\": 0,\"data\": \"$txtvalue\"}"
    56. 

  56.   response="$(_post "$data" "$CURANET_REST_URL/${_domain}/Records" "" "")"
    57. 

  57. 

  58.   if _contains "$response" "$txtvalue"; then
    59. 

  59.     _debug "TXT record added OK"
    60. 

  60.   else
    61. 

  61.     _err "Unable to add TXT record"
    62. 

  62.     return 1
    63. 

  63.   fi
    64. 

  64. 

  65.   return 0
    66. 

  66. }
    67. 

  67. 

  68. #Usage: fulldomain txtvalue
    69. 

  69. #Remove the txt record after validation.
    70. 

  70. dns_curanet_rm() {
    71. 

  71.   fulldomain=$1
    72. 

  72.   txtvalue=$2
    73. 

  73.   _info "Using curanet"
    74. 

  74.   _debug fulldomain "$fulldomain"
    75. 

  75.   _debug txtvalue "$txtvalue"
    76. 

  76. 

  77.   CURANET_AUTHCLIENTID="${CURANET_AUTHCLIENTID:-$(_readaccountconf_mutable CURANET_AUTHCLIENTID)}"
    78. 

  78.   CURANET_AUTHSECRET="${CURANET_AUTHSECRET:-$(_readaccountconf_mutable CURANET_AUTHSECRET)}"
    79. 

  79. 

  80.   if ! _get_token; then
    81. 

  81.     _err "Unable to get token"
    82. 

  82.     return 1
    83. 

  83.   fi
    84. 

  84. 

  85.   if ! _get_root "$fulldomain"; then
    86. 

  86.     _err "Invalid domain"
    87. 

  87.     return 1
    88. 

  88.   fi
    89. 

  89. 

  90.   _debug "Getting current record list to identify TXT to delete"
    91. 

  91. 

  92.   export _H1="Content-Type: application/json"
    93. 

  93.   export _H2="Accept: application/json"
    94. 

  94.   export _H3="Authorization: Bearer $CURANET_ACCESS_TOKEN"
    95. 

  95. 

  96.   response="$(_get "$CURANET_REST_URL/${_domain}/Records" "" "")"
    97. 

  97. 

  98.   if ! _contains "$response" "$txtvalue"; then
    99. 

  99.     _err "Unable to delete record (does not contain $txtvalue )"
    100. 

  100.     return 1
    101. 

  101.   fi
    102. 

  102. 

  103.   recordid=$(echo "$response" | _egrep_o "{\"id\":[0-9]+,\"name\":\"$fulldomain\",\"type\":\"TXT\",\"ttl\":60,\"priority\":0,\"data\":\"..$txtvalue" | _egrep_o "id\":[0-9]+" | cut -c 5-)
    104. 

  104. 

  105.   if [ -z "$recordid" ]; then
    106. 

  106.     _err "Unable to get recordid"
    107. 

  107.     _debug "regex {\"id\":[0-9]+,\"name\":\"$fulldomain\",\"type\":\"TXT\",\"ttl\":60,\"priority\":0,\"data\":\"..$txtvalue"
    108. 

  108.     _debug "response $response"
    109. 

  109.     return 1
    110. 

  110.   fi
    111. 

  111. 

  112.   _debug "Deleting recordID $recordid"
    113. 

  113.   response="$(_post "" "$CURANET_REST_URL/${_domain}/Records/$recordid" "" "DELETE")"
    114. 

  114.   return 0
    115. 

  115. }
    116. 

  116. 

  117. ####################  Private functions below ##################################
    118. 

  118. 

  119. _get_token() {
    120. 

  120.   response="$(_post "grant_type=client_credentials&client_id=$CURANET_AUTHCLIENTID&client_secret=$CURANET_AUTHSECRET&scope=dns" "$CURANET_AUTH_URL" "" "")"
    121. 

  121.   if ! _contains "$response" "access_token"; then
    122. 

  122.     _err "Unable get access token"
    123. 

  123.     return 1
    124. 

  124.   fi
    125. 

  125.   CURANET_ACCESS_TOKEN=$(echo "$response" | _egrep_o "\"access_token\":\"[^\"]+" | cut -c 17-)
    126. 

  126. 

  127.   if [ -z "$CURANET_ACCESS_TOKEN" ]; then
    128. 

  128.     _err "Unable to get token"
    129. 

  129.     return 1
    130. 

  130.   fi
    131. 

  131. 

  132.   return 0
    133. 

  133. 

  134. }
    135. 

  135. 

  136. #_acme-challenge.www.domain.com
    137. 

  137. #returns
    138. 

  138. # _domain=domain.com
    139. 

  139. # _domain_id=sdjkglgdfewsdfg
    140. 

  140. _get_root() {
    141. 

  141.   domain=$1
    142. 

  142.   i=1
    143. 

  143. 

  144.   while true; do
    145. 

  145.     h=$(printf "%s" "$domain" | cut -d . -f "$i"-100)
    146. 

  146.     _debug h "$h"
    147. 

  147.     if [ -z "$h" ]; then
    148. 

  148.       #not valid
    149. 

  149.       return 1
    150. 

  150.     fi
    151. 

  151. 

  152.     export _H1="Content-Type: application/json"
    153. 

  153.     export _H2="Accept: application/json"
    154. 

  154.     export _H3="Authorization: Bearer $CURANET_ACCESS_TOKEN"
    155. 

  155.     response="$(_get "$CURANET_REST_URL/$h/Records" "" "")"
    156. 

  156. 

  157.     if [ ! "$(echo "$response" | _egrep_o "Entity not found")" ]; then
    158. 

  158.       _domain=$h
    159. 

  159.       return 0
    160. 

  160.     fi
    161. 

  161. 

  162.     i=$(_math "$i" + 1)
    163. 

  163.   done
    164. 

  164.   return 1
    165. 

  165. }
    166.