Home Explore Project
Register Sign In
linux
/
acme.sh
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: a8f0fd1fff
Branches Tags
acme.sh
/
dnsapi
/
dns_nsupdate.sh

dns_nsupdate.sh 3.2 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 
  1. #!/usr/bin/env sh
    2. 

  2. 

  3. ########  Public functions #####################
    4. 

  4. 

  5. #Usage: dns_nsupdate_add   _acme-challenge.www.domain.com   "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
    6. 

  6. dns_nsupdate_add() {
    7. 

  7.   fulldomain=$1
    8. 

  8.   txtvalue=$2
    9. 

  9.   NSUPDATE_SERVER="${NSUPDATE_SERVER:-$(_readaccountconf_mutable NSUPDATE_SERVER)}"
    10. 

  10.   NSUPDATE_SERVER_PORT="${NSUPDATE_SERVER_PORT:-$(_readaccountconf_mutable NSUPDATE_SERVER_PORT)}"
    11. 

  11.   NSUPDATE_KEY="${NSUPDATE_KEY:-$(_readaccountconf_mutable NSUPDATE_KEY)}"
    12. 

  12.   NSUPDATE_ZONE="${NSUPDATE_ZONE:-$(_readaccountconf_mutable NSUPDATE_ZONE)}"
    13. 

  13. 

  14.   _checkKeyFile || return 1
    15. 

  15. 

  16.   # save the dns server and key to the account conf file.
    17. 

  17.   _saveaccountconf_mutable NSUPDATE_SERVER "${NSUPDATE_SERVER}"
    18. 

  18.   _saveaccountconf_mutable NSUPDATE_SERVER_PORT "${NSUPDATE_SERVER_PORT}"
    19. 

  19.   _saveaccountconf_mutable NSUPDATE_KEY "${NSUPDATE_KEY}"
    20. 

  20.   _saveaccountconf_mutable NSUPDATE_ZONE "${NSUPDATE_ZONE}"
    21. 

  21. 

  22.   [ -n "${NSUPDATE_SERVER}" ] || NSUPDATE_SERVER="localhost"
    23. 

  23.   [ -n "${NSUPDATE_SERVER_PORT}" ] || NSUPDATE_SERVER_PORT=53
    24. 

  24. 

  25.   _info "adding ${fulldomain}. 60 in txt \"${txtvalue}\""
    26. 

  26.   [ -n "$DEBUG" ] && [ "$DEBUG" -ge "$DEBUG_LEVEL_1" ] && nsdebug="-d"
    27. 

  27.   [ -n "$DEBUG" ] && [ "$DEBUG" -ge "$DEBUG_LEVEL_2" ] && nsdebug="-D"
    28. 

  28.   if [ -z "${NSUPDATE_ZONE}" ]; then
    29. 

  29.     nsupdate -k "${NSUPDATE_KEY}" $nsdebug <<EOF
    30. 

  30. server ${NSUPDATE_SERVER}  ${NSUPDATE_SERVER_PORT} 
    31. 

  31. update add ${fulldomain}. 60 in txt "${txtvalue}"
    32. 

  32. send
    33. 

  33. EOF
    34. 

  34.   else
    35. 

  35.     nsupdate -k "${NSUPDATE_KEY}" $nsdebug <<EOF
    36. 

  36. server ${NSUPDATE_SERVER}  ${NSUPDATE_SERVER_PORT}
    37. 

  37. zone ${NSUPDATE_ZONE}.
    38. 

  38. update add ${fulldomain}. 60 in txt "${txtvalue}"
    39. 

  39. send
    40. 

  40. EOF
    41. 

  41.   fi
    42. 

  42.   if [ $? -ne 0 ]; then
    43. 

  43.     _err "error updating domain"
    44. 

  44.     return 1
    45. 

  45.   fi
    46. 

  46. 

  47.   return 0
    48. 

  48. }
    49. 

  49. 

  50. #Usage: dns_nsupdate_rm   _acme-challenge.www.domain.com
    51. 

  51. dns_nsupdate_rm() {
    52. 

  52.   fulldomain=$1
    53. 

  53. 

  54.   NSUPDATE_SERVER="${NSUPDATE_SERVER:-$(_readaccountconf_mutable NSUPDATE_SERVER)}"
    55. 

  55.   NSUPDATE_SERVER_PORT="${NSUPDATE_SERVER_PORT:-$(_readaccountconf_mutable NSUPDATE_SERVER_PORT)}"
    56. 

  56.   NSUPDATE_KEY="${NSUPDATE_KEY:-$(_readaccountconf_mutable NSUPDATE_KEY)}"
    57. 

  57.   NSUPDATE_ZONE="${NSUPDATE_ZONE:-$(_readaccountconf_mutable NSUPDATE_ZONE)}"
    58. 

  58. 

  59.   _checkKeyFile || return 1
    60. 

  60.   [ -n "${NSUPDATE_SERVER}" ] || NSUPDATE_SERVER="localhost"
    61. 

  61.   [ -n "${NSUPDATE_SERVER_PORT}" ] || NSUPDATE_SERVER_PORT=53
    62. 

  62.   _info "removing ${fulldomain}. txt"
    63. 

  63.   [ -n "$DEBUG" ] && [ "$DEBUG" -ge "$DEBUG_LEVEL_1" ] && nsdebug="-d"
    64. 

  64.   [ -n "$DEBUG" ] && [ "$DEBUG" -ge "$DEBUG_LEVEL_2" ] && nsdebug="-D"
    65. 

  65.   if [ -z "${NSUPDATE_ZONE}" ]; then
    66. 

  66.     nsupdate -k "${NSUPDATE_KEY}" $nsdebug <<EOF
    67. 

  67. server ${NSUPDATE_SERVER}  ${NSUPDATE_SERVER_PORT} 
    68. 

  68. update delete ${fulldomain}. txt
    69. 

  69. send
    70. 

  70. EOF
    71. 

  71.   else
    72. 

  72.     nsupdate -k "${NSUPDATE_KEY}" $nsdebug <<EOF
    73. 

  73. server ${NSUPDATE_SERVER}  ${NSUPDATE_SERVER_PORT}
    74. 

  74. zone ${NSUPDATE_ZONE}.
    75. 

  75. update delete ${fulldomain}. txt
    76. 

  76. send
    77. 

  77. EOF
    78. 

  78.   fi
    79. 

  79.   if [ $? -ne 0 ]; then
    80. 

  80.     _err "error updating domain"
    81. 

  81.     return 1
    82. 

  82.   fi
    83. 

  83. 

  84.   return 0
    85. 

  85. }
    86. 

  86. 

  87. ####################  Private functions below ##################################
    88. 

  88. 

  89. _checkKeyFile() {
    90. 

  90.   if [ -z "${NSUPDATE_KEY}" ]; then
    91. 

  91.     _err "you must specify a path to the nsupdate key file"
    92. 

  92.     return 1
    93. 

  93.   fi
    94. 

  94.   if [ ! -r "${NSUPDATE_KEY}" ]; then
    95. 

  95.     _err "key ${NSUPDATE_KEY} is unreadable"
    96. 

  96.     return 1
    97. 

  97.   fi
    98. 

  98. }
    99.