|
|
@@ -10,18 +10,27 @@ RedBG="\033[41;37m"
|
|
|
Font="\033[0m"
|
|
|
# fonts color
|
|
|
|
|
|
-
|
|
|
DOMAIN=$(cat /conf/account.conf | awk -F= '{if($1~"DOMAIN")print $2}')
|
|
|
DNSAPI=$(cat /conf/account.conf | awk -F= '{if($1~"DNSAPI")print $2}')
|
|
|
|
|
|
acme (){
|
|
|
- cat /conf/account.conf > /acme.sh/account.conf
|
|
|
+ cat /conf/account.conf >/acme.sh/account.conf
|
|
|
/root/.acme.sh/acme.sh --upgrade
|
|
|
/root/.acme.sh/acme.sh --register-account -m [email protected] --server zerossl
|
|
|
/root/.acme.sh/acme.sh --issue $* --dns ${DNSAPI} -d ${DOMAIN} -d \*.${DOMAIN}
|
|
|
- cp /acme.sh/${DOMAIN}/fullchain.cer /ssl/${DOMAIN}.cer
|
|
|
- cp /acme.sh/${DOMAIN}/${DOMAIN}.key /ssl/${DOMAIN}.key
|
|
|
- mv /acme.sh/${DOMAIN} /acme.sh/${DOMAIN}-$(date +%Y)-$(date +%m)-$(date +%d)-${RANDOM}
|
|
|
+ rm -rf /acme.sh/ca
|
|
|
+ rm -rf /acme.sh/http.header
|
|
|
+ if [ -f /acme.sh/${DOMAIN}/fullchain.cer ] && [ -f /acme.sh/${DOMAIN}/${DOMAIN}.key ]; then
|
|
|
+ rm -rf /ssl/${DOMAIN}.cer
|
|
|
+ rm -rf /ssl/${DOMAIN}.key
|
|
|
+ cp /acme.sh/${DOMAIN}/fullchain.cer /ssl/${DOMAIN}.cer
|
|
|
+ cp /acme.sh/${DOMAIN}/${DOMAIN}.key /ssl/${DOMAIN}.key
|
|
|
+ mv /acme.sh/${DOMAIN} /acme.sh/${DOMAIN}-$(date +%Y)-$(date +%m)-$(date +%d)-${RANDOM}
|
|
|
+ else
|
|
|
+ echo "证书申请失败,已退出脚本,请重新尝试."
|
|
|
+ rm -rf /acme.sh/${DOMAIN}
|
|
|
+ exit 1
|
|
|
+ fi
|
|
|
}
|
|
|
|
|
|
if [ ! -n "${DOMAIN}" ] ; then
|
|
|
@@ -31,5 +40,5 @@ else
|
|
|
fi
|
|
|
|
|
|
cat >/var/spool/cron/crontabs/root<<EOF
|
|
|
-0 0 1 * * /conf/acme.sh >/dev/null 2>&1
|
|
|
+0 0 10 * * /conf/acme.sh >/dev/null 2>&1
|
|
|
EOF
|
Stille