Home Explore Project
Register Sign In
linux
/
acme.sh
3
0
Fork 0
Files Issues 2 Pull Requests 0 Wiki
Browse Source

added NS1. support

nytral 8 years ago
parent
2587639914
commit
7d0452c7e3
3 changed files with 171 additions and 0 deletions
Unified View Show Diff Stats
  1. 1 0
      README.md
  2. 11 0
      dnsapi/README.md
  3. 159 0
      dnsapi/dns_nsone.sh

+ 1 - 0
README.md
View File 

@@ -308,6 +308,7 @@ You don't have to do anything manually!
 
 1. Domain-Offensive/Resellerinterface/Domainrobot API
 
 1. Domain-Offensive/Resellerinterface/Domainrobot API
 
 1. Gandi LiveDNS API
 
 1. Gandi LiveDNS API
 
 1. Knot DNS API
 
 1. Knot DNS API
 
+1. NS1. API
 
 
 
 **More APIs coming soon...**
 
 **More APIs coming soon...**

+ 11 - 0
dnsapi/README.md
View File 

@@ -394,6 +394,17 @@ acme.sh --issue --dns dns_knot -d example.com -d www.example.com
 
 
 
 The `KNOT_SERVER` and `KNOT_KEY` settings will be saved in `~/.acme.sh/account.conf` and will be reused when needed.
 
 The `KNOT_SERVER` and `KNOT_KEY` settings will be saved in `~/.acme.sh/account.conf` and will be reused when needed.
 
 
 
+## 20. Use NS1. API
 
+
 
+```
 
+export NS1_Key="fdmlfsdklmfdkmqsdfk"
 
+```
 
+
 
+Ok, let's issue a cert now:
 
+```
 
+acme.sh --issue --dns dns_nsone -d example.com -d www.example.com
 
+```
 
+
 
 # Use custom API
 
 # Use custom API
 
 
 
 If your API is not supported yet, you can write your own DNS API.
 
 If your API is not supported yet, you can write your own DNS API.

+ 159 - 0
dnsapi/dns_nsone.sh
View File 

@@ -0,0 +1,159 @@
 
+#!/usr/bin/env sh
 
+
 
+# bug reports to dev@1e.ca
 
+
 
+#
 
+#NS1_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
 
+#
 
+#NS1_Email="user@luadns.net"
 
+
 
+NS1_Api="https://api.nsone.net/v1"
 
+
 
+########  Public functions #####################
 
+
 
+#Usage: add  _acme-challenge.www.domain.com   "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
 
+dns_nsone_add() {
 
+  fulldomain=$1
 
+  txtvalue=$2
 
+
 
+  if [ -z "$NS1_Key" ]; then
 
+    NS1_Key=""
 
+    _err "You didn't specify nsone dns api key yet."
 
+    _err "Please create you key and try again."
 
+    return 1
 
+  fi
 
+
 
+  #save the api key and email to the account conf file.
 
+  _saveaccountconf NS1_Key "$NS1_Key"
 
+
 
+  _debug "First detect the root zone"
 
+  if ! _get_root "$fulldomain"; then
 
+    _err "invalid domain"
 
+    return 1
 
+  fi
 
+  _debug _sub_domain "$_sub_domain"
 
+  _debug _domain "$_domain"
 
+
 
+  _debug "Getting txt records"
 
+  _nsone_rest GET "zones/${_domain}"
 
+
 
+  if ! _contains "$response" "\"records\":"; then
 
+    _err "Error"
 
+    return 1
 
+  fi
 
+
 
+  count=$(printf "%s\n" "$response" | _egrep_o "\"domain\":\"$fulldomain.\",[^{]*\"type\":\"TXT\"" | wc -l | tr -d " ")
 
+  _debug count "$count"
 
+  if [ "$count" = "0" ]; then
 
+    _info "Adding record"
 
+	
+    if _nsone_rest PUT "zones/$_domain/$fulldomain/TXT" "{\"answers\":[{\"answer\":[\"$txtvalue\"]}],\"type\":\"TXT\",\"domain\":\"$fulldomain\",\"zone\":\"$_domain\"}"; then
 
+      if _contains "$response" "$fulldomain"; then
 
+        _info "Added"
 
+        #todo: check if the record takes effect
 
+        return 0
 
+      else
 
+        _err "Add txt record error."
 
+        return 1
 
+      fi
 
+    fi
 
+    _err "Add txt record error."
 
+  else
 
+    _info "Updating record"
 
+    record_id=$(printf "%s\n" "$response" | _egrep_o "\"domain\":\"$fulldomain.\",[^{]*\"type\":\"TXT\",\"id\":\"[^,]*\"" | _head_n 1 | cut -d: -f7 | cut -d, -f1)
 
+    _debug "record_id" "$record_id"
 
+
 
+    _nsone_rest POST "zones/$_domain_/$fulldomain/TXT" "{\"answers\": [{\"answer\": [\"$txtvalue\"]}],\"type\": \"TXT\",\"domain\":\"$fulldomain\",\"zone\": \"$_domain\"}"
 
+    if [ "$?" = "0" ] && _contains "$response" "$fulldomain"; then
 
+      _info "Updated!"
 
+      #todo: check if the record takes effect
 
+      return 0
 
+    fi
 
+    _err "Update error"
 
+    return 1
 
+  fi
 
+
 
+}
 
+
 
+#fulldomain
 
+dns_nsone_rm() {
 
+  fulldomain=$1
 
+  txtvalue=$2
 
+  _debug "First detect the root zone"
 
+  if ! _get_root "$fulldomain"; then
 
+    _err "invalid domain"
 
+    return 1
 
+  fi
 
+  _debug _sub_domain "$_sub_domain"
 
+  _debug _domain "$_domain"
 
+
 
+  _debug "Getting txt records"
 
+  _nsone_rest GET "zones/${_domain}/$fulldomain/TXT"
 
+
 
+  count=$(printf "%s\n" "$response" | _egrep_o "\"domain\":\"$fulldomain\",.*\"type\":\"TXT\"" | wc -l | tr -d " ")
 
+  _debug count "$count"
 
+  if [ "$count" = "0" ]; then
 
+    _info "Don't need to remove."
 
+  else
 
+    if ! _nsone_rest DELETE "zones/${_domain}/$fulldomain/TXT"; then
 
+      _err "Delete record error."
 
+      return 1
 
+    fi
 
+    _contains "$response" ""
 
+  fi
 
+}
 
+
 
+####################  Private functions below ##################################
 
+#_acme-challenge.www.domain.com
 
+#returns
 
+# _sub_domain=_acme-challenge.www
 
+# _domain=domain.com
 
+# _domain_id=sdjkglgdfewsdfg
 
+_get_root() {
 
+  domain=$1
 
+  i=2
 
+  p=1
 
+  if ! _nsone_rest GET "zones"; then
 
+    return 1
 
+  fi
 
+  while true; do
 
+    h=$(printf "%s" "$domain" | cut -d . -f $i-100)
 
+    _debug h "$h"
 
+    if [ -z "$h" ]; then
 
+      #not valid
 
+      return 1
 
+    fi
 
+
 
+    if _contains "$response" "\"zone\":\"$h\""; then
 
+		_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p)
 
+		_domain="$h"
 
+    return 0
 
+    fi
 
+    p=$i
 
+    i=$(_math "$i" + 1)
 
+  done
 
+  return 1
 
+}
 
+
 
+_nsone_rest() {
 
+  m=$1
 
+  ep="$2"
 
+  data="$3"
 
+  _debug "$ep"
 
+
 
+  export _H1="Accept: application/json"
 
+  export _H2="X-NSONE-Key: $NS1_Key"
 
+  if [ "$m" != "GET" ]; then
 
+    _debug data "$data"
 
+    response="$(_post "$data" "$NS1_Api/$ep" "" "$m")"
 
+  else
 
+    response="$(_get "$NS1_Api/$ep")"
 
+  fi
 
+
 
+  if [ "$?" != "0" ]; then
 
+    _err "error $ep"
 
+    return 1
 
+  fi
 
+  _debug2 response "$response"
 
+  return 0
 
+}