mirror of
https://github.com/plantroon/acme.sh.git
synced 2024-11-15 19:01:44 +00:00
Add suggestions
This commit is contained in:
parent
b85c1a8861
commit
0b3ae1f972
@ -4,15 +4,19 @@
|
|||||||
#https://docs.opnsense.org/development/api.html
|
#https://docs.opnsense.org/development/api.html
|
||||||
#
|
#
|
||||||
#OPNs_Host="opnsense.example.com"
|
#OPNs_Host="opnsense.example.com"
|
||||||
#OPNs_Port="443"
|
#OPNs_Port="443" (optional, defaults to 443 if unset)
|
||||||
#OPNs_Key="qocfU9RSbt8vTIBcnW8bPqCrpfAHMDvj5OzadE7Str+rbjyCyk7u6yMrSCHtBXabgDDXx/dY0POUp7ZA"
|
#OPNs_Key="qocfU9RSbt8vTIBcnW8bPqCrpfAHMDvj5OzadE7Str+rbjyCyk7u6yMrSCHtBXabgDDXx/dY0POUp7ZA"
|
||||||
#OPNs_Token="pZEQ+3ce8dDlfBBdg3N8EpqpF5I1MhFqdxX06le6Gl8YzyQvYCfCzNaFX9O9+IOSyAs7X71fwdRiZ+Lv"
|
#OPNs_Token="pZEQ+3ce8dDlfBBdg3N8EpqpF5I1MhFqdxX06le6Gl8YzyQvYCfCzNaFX9O9+IOSyAs7X71fwdRiZ+Lv"
|
||||||
#OPNs_Api_Insecure=0 # Set 1 for insecure and 0 for secure -> difference is whether ssl cert is checked for validity (0) or whether it is just accepted (1)
|
#OPNs_Api_Insecure=0 (optional, defaults to 0 if unset) # Set 1 for insecure and 0 for secure -> difference is whether ssl cert is checked for validity (0) or whether it is just accepted (1)
|
||||||
|
|
||||||
######## Public functions #####################
|
######## Public functions #####################
|
||||||
#Usage: add _acme-challenge.www.domain.com "123456789ABCDEF0000000000000000000000000000000000000"
|
#Usage: add _acme-challenge.www.domain.com "123456789ABCDEF0000000000000000000000000000000000000"
|
||||||
#fulldomain
|
#fulldomain
|
||||||
#txtvalue
|
#txtvalue
|
||||||
|
OPNs_DefaultPort=443
|
||||||
|
OPNs_DefaultApi_Insecure=0
|
||||||
|
|
||||||
|
|
||||||
dns_opnsense_add() {
|
dns_opnsense_add() {
|
||||||
fulldomain=$1
|
fulldomain=$1
|
||||||
txtvalue=$2
|
txtvalue=$2
|
||||||
@ -168,7 +172,7 @@ _opns_rest() {
|
|||||||
key=$(echo "$OPNs_Key" | tr -d "\n\r" | _url_encode)
|
key=$(echo "$OPNs_Key" | tr -d "\n\r" | _url_encode)
|
||||||
token=$(echo "$OPNs_Token" | tr -d "\n\r" | _url_encode)
|
token=$(echo "$OPNs_Token" | tr -d "\n\r" | _url_encode)
|
||||||
|
|
||||||
opnsense_url="https://${key}:${token}@${OPNs_Host}:${OPNs_Port}/api/bind${ep}"
|
opnsense_url="https://${key}:${token}@${OPNs_Host}:${OPNs_Port:-$OPNs_DefaultPort}/api/bind${ep}"
|
||||||
export _H1="Content-Type: application/json"
|
export _H1="Content-Type: application/json"
|
||||||
if [ ! "$method" = "GET" ]; then
|
if [ ! "$method" = "GET" ]; then
|
||||||
_debug data "$data"
|
_debug data "$data"
|
||||||
@ -218,29 +222,30 @@ _opns_check_auth() {
|
|||||||
OPNs_Api_Insecure="${OPNs_Api_Insecure:-$(_readaccountconf_mutable OPNs_Api_Insecure)}"
|
OPNs_Api_Insecure="${OPNs_Api_Insecure:-$(_readaccountconf_mutable OPNs_Api_Insecure)}"
|
||||||
|
|
||||||
if [ -z "$OPNs_Host" ]; then
|
if [ -z "$OPNs_Host" ]; then
|
||||||
OPNs_Host="localhost"
|
|
||||||
_err "You don't specify OPNsense address."
|
_err "You don't specify OPNsense address."
|
||||||
return 1
|
return 1
|
||||||
else
|
else
|
||||||
_saveaccountconf_mutable OPNs_Host "$OPNs_Host"
|
_saveaccountconf_mutable OPNs_Host "$OPNs_Host"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if [ -z "$OPNs_Port" ]; then
|
if ! printf '%s' "$OPNs_Port" | grep -q '^[0-9]*$'; then
|
||||||
OPNs_Port="443"
|
_err 'OPNs_Port specified but not numeric value'
|
||||||
|
return 1
|
||||||
|
elif [ -z "$OPNs_Port" ]; then
|
||||||
|
_info "OPNSense port not specified. Defaulting to using port $OPNs_DefaultPort"
|
||||||
else
|
else
|
||||||
_saveaccountconf_mutable OPNs_Port "$OPNs_Port"
|
_saveaccountconf_mutable OPNs_Port "$OPNs_Port"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if [ -z "$OPNs_Api_Insecure" ]; then
|
if ! printf '%s' "$OPNs_Api_Insecure" | grep -q '^[01]$'; then
|
||||||
OPNs_Api_Insecure="0"
|
_err 'OPNs_Api_Insecure specified but not 0/1 value'
|
||||||
else
|
return 1
|
||||||
#save the api addr and key to the account conf file.
|
elif [ -n "$OPNs_Api_Insecure" ]; then
|
||||||
_saveaccountconf_mutable OPNs_Api_Insecure "$OPNs_Api_Insecure"
|
_saveaccountconf_mutable OPNs_Api_Insecure "$OPNs_Api_Insecure"
|
||||||
fi
|
fi
|
||||||
export HTTPS_INSECURE="${OPNs_Api_Insecure}"
|
export HTTPS_INSECURE="${OPNs_Api_Insecure:-$OPNs_DefaultApi_Insecure}"
|
||||||
|
|
||||||
if [ -z "$OPNs_Key" ]; then
|
if [ -z "$OPNs_Key" ]; then
|
||||||
OPNs_Key=""
|
|
||||||
_err "You don't specify OPNsense api key id."
|
_err "You don't specify OPNsense api key id."
|
||||||
_err "Please set you OPNs_Key and try again."
|
_err "Please set you OPNs_Key and try again."
|
||||||
return 1
|
return 1
|
||||||
@ -249,7 +254,6 @@ _opns_check_auth() {
|
|||||||
fi
|
fi
|
||||||
|
|
||||||
if [ -z "$OPNs_Token" ]; then
|
if [ -z "$OPNs_Token" ]; then
|
||||||
OPNs_Token=""
|
|
||||||
_err "You don't specify OPNsense token."
|
_err "You don't specify OPNsense token."
|
||||||
_err "Please create you OPNs_Token and try again."
|
_err "Please create you OPNs_Token and try again."
|
||||||
return 1
|
return 1
|
||||||
|
Loading…
Reference in New Issue
Block a user