acme.sh/dnsapi/dns_gd.sh

199 lines
5.0 KiB
Bash
Raw Normal View History

2016-07-29 10:07:16 +00:00
#!/usr/bin/env sh
#Godaddy domain api
#
#GD_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
#
#GD_Secret="asdfsdfsfsdfsdfdfsdf"
GD_Api="https://api.godaddy.com/v1"
######## Public functions #####################
#Usage: add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
2016-11-09 11:30:39 +00:00
dns_gd_add() {
2016-07-29 10:07:16 +00:00
fulldomain=$1
txtvalue=$2
2016-11-09 11:30:39 +00:00
2018-02-14 14:31:02 +00:00
GD_Key="${GD_Key:-$(_readaccountconf_mutable GD_Key)}"
GD_Secret="${GD_Secret:-$(_readaccountconf_mutable GD_Secret)}"
2016-11-09 11:30:39 +00:00
if [ -z "$GD_Key" ] || [ -z "$GD_Secret" ]; then
2016-11-12 03:13:40 +00:00
GD_Key=""
GD_Secret=""
2016-07-29 10:07:16 +00:00
_err "You don't specify godaddy api key and secret yet."
_err "Please create you key and try again."
return 1
fi
2016-11-09 11:30:39 +00:00
2016-07-29 10:07:16 +00:00
#save the api key and email to the account conf file.
2018-02-14 14:31:02 +00:00
_saveaccountconf_mutable GD_Key "$GD_Key"
_saveaccountconf_mutable GD_Secret "$GD_Secret"
2016-11-09 11:30:39 +00:00
2016-07-29 10:07:16 +00:00
_debug "First detect the root zone"
2016-11-11 15:30:14 +00:00
if ! _get_root "$fulldomain"; then
2016-07-29 10:07:16 +00:00
_err "invalid domain"
return 1
fi
2016-11-11 16:50:44 +00:00
2016-07-29 10:07:16 +00:00
_debug _sub_domain "$_sub_domain"
_debug _domain "$_domain"
2018-02-14 14:31:02 +00:00
_debug "Getting existing records"
if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
return 1
fi
if _contains "$response" "$txtvalue"; then
_info "The record is existing, skip"
2018-02-14 14:36:17 +00:00
return 0
2018-02-14 14:31:02 +00:00
fi
_add_data="{\"data\":\"$txtvalue\"}"
2018-02-14 14:36:17 +00:00
for t in $(echo "$response" | tr '{' "\n" | grep "\"name\":\"$_sub_domain\"" | tr ',' "\n" | grep '"data"' | cut -d : -f 2); do
2018-02-14 14:31:02 +00:00
_debug2 t "$t"
# ignore empty (previously removed) records, to prevent useless _acme-challenge TXT entries
if [ "$t" ] && [ "$t" != '""' ]; then
2018-02-14 14:31:02 +00:00
_add_data="$_add_data,{\"data\":$t}"
fi
done
_debug2 _add_data "$_add_data"
2016-07-29 10:07:16 +00:00
_info "Adding record"
2018-02-14 14:31:02 +00:00
if _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[$_add_data]"; then
_debug "Checking updated records of '${fulldomain}'"
if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
_err "Validating TXT record for '${fulldomain}' with rest error [$?]." "$response"
return 1
fi
if ! _contains "$response" "$txtvalue"; then
_err "TXT record '${txtvalue}' for '${fulldomain}', value wasn't set!"
return 1
fi
else
_err "Add txt record error, value '${txtvalue}' for '${fulldomain}' was not set."
return 1
2016-07-29 10:07:16 +00:00
fi
_sleep 10
_info "Added TXT record '${txtvalue}' for '${fulldomain}'."
return 0
2016-11-09 11:30:39 +00:00
}
2016-07-29 10:07:16 +00:00
#fulldomain
dns_gd_rm() {
fulldomain=$1
2018-02-14 14:31:02 +00:00
txtvalue=$2
GD_Key="${GD_Key:-$(_readaccountconf_mutable GD_Key)}"
GD_Secret="${GD_Secret:-$(_readaccountconf_mutable GD_Secret)}"
_debug "First detect the root zone"
if ! _get_root "$fulldomain"; then
_err "invalid domain"
return 1
fi
_debug _sub_domain "$_sub_domain"
_debug _domain "$_domain"
_debug "Getting existing records"
if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
return 1
fi
if ! _contains "$response" "$txtvalue"; then
_info "The record does not exist, skip"
2018-02-14 14:36:17 +00:00
return 0
2018-02-14 14:31:02 +00:00
fi
_add_data=""
2018-02-14 14:36:17 +00:00
for t in $(echo "$response" | tr '{' "\n" | grep "\"name\":\"$_sub_domain\"" | tr ',' "\n" | grep '"data"' | cut -d : -f 2); do
2018-02-14 14:31:02 +00:00
_debug2 t "$t"
if [ "$t" ] && [ "$t" != "\"$txtvalue\"" ]; then
if [ "$_add_data" ]; then
_add_data="$_add_data,{\"data\":$t}"
else
_add_data="{\"data\":$t}"
fi
fi
done
if [ -z "$_add_data" ]; then
# delete empty record
_debug "Delete last record for '${fulldomain}'"
if ! _gd_rest DELETE "domains/$_domain/records/TXT/$_sub_domain"; then
_err "Cannot delete empty TXT record for '$fulldomain'"
return 1
fi
else
# remove specific TXT value, keeping other entries
_debug2 _add_data "$_add_data"
if ! _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[$_add_data]"; then
_err "Cannot update TXT record for '$fulldomain'"
return 1
fi
2018-02-14 14:31:02 +00:00
fi
}
2016-12-14 20:32:24 +00:00
#################### Private functions below ##################################
2016-07-29 10:07:16 +00:00
#_acme-challenge.www.domain.com
#returns
# _sub_domain=_acme-challenge.www
# _domain=domain.com
_get_root() {
domain=$1
i=2
p=1
2016-11-11 15:30:14 +00:00
while true; do
h=$(printf "%s" "$domain" | cut -d . -f $i-100)
2016-11-09 11:30:39 +00:00
if [ -z "$h" ]; then
2016-07-29 10:07:16 +00:00
#not valid
2016-11-09 11:30:39 +00:00
return 1
2016-07-29 10:07:16 +00:00
fi
2016-11-09 11:30:39 +00:00
if ! _gd_rest GET "domains/$h"; then
2016-07-29 10:07:16 +00:00
return 1
fi
2016-11-09 11:30:39 +00:00
2016-11-11 15:30:14 +00:00
if _contains "$response" '"code":"NOT_FOUND"'; then
2016-07-29 10:07:16 +00:00
_debug "$h not found"
else
2016-11-11 15:30:14 +00:00
_sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p)
_domain="$h"
2016-07-29 10:07:16 +00:00
return 0
fi
2016-11-11 16:06:34 +00:00
p="$i"
i=$(_math "$i" + 1)
2016-07-29 10:07:16 +00:00
done
return 1
}
_gd_rest() {
m=$1
ep="$2"
data="$3"
2016-11-11 15:30:14 +00:00
_debug "$ep"
2016-11-09 11:30:39 +00:00
export _H1="Authorization: sso-key $GD_Key:$GD_Secret"
export _H2="Content-Type: application/json"
2016-11-09 11:30:39 +00:00
if [ "$data" ] || [ "$m" = "DELETE" ]; then
_debug "data ($m): " "$data"
2016-11-11 16:09:45 +00:00
response="$(_post "$data" "$GD_Api/$ep" "" "$m")"
2016-07-29 10:07:16 +00:00
else
response="$(_get "$GD_Api/$ep")"
fi
2016-11-09 11:30:39 +00:00
if [ "$?" != "0" ]; then
_err "error on rest call ($m): $ep"
2016-07-29 10:07:16 +00:00
return 1
fi
_debug2 response "$response"
2018-06-12 13:19:27 +00:00
if _contains "$response" "UNABLE_TO_AUTHENTICATE"; then
_err "It seems that your api key or secret is not correct."
return 1
fi
2016-07-29 10:07:16 +00:00
return 0
}