blob: 3ac3e9d7d6b94756c868ee091ec9dbb28900b837 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
#!/bin/sh
# Copyright (C) 2019-2024 Nicola Di Lieto <nicola.dilieto@gmail.com>
#
# This file is part of uacme.
#
# uacme is free software: you can redistribute it and/or modify it
# under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# uacme is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# General Public License for more details.
#
# Part of this is copied from acme.sh
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
ARGS=5
E_BADARGS=85
LOG_TAG=acme-uacme-dnshook
if test $# -ne "$ARGS"
then
echo "Usage: $(basename "$0") method type ident token auth" 1>&2
exit $E_BADARGS
fi
METHOD=$1
TYPE=$2
IDENT=$3
TOKEN=$4
AUTH=$5
if [ "$TYPE" != "dns-01" ]; then
echo "skipping $TYPE" 1>&2
exit 1
fi
# shellcheck source=net/acme/files/functions.sh
. /usr/lib/acme/functions.sh
. /usr/lib/acme/client/dnsapi_helper.sh
ACCOUNT_CONF_PATH=$UACME_CONFDIR/accounts.conf
DOMAIN_CONF_DIR=$UACME_CONFDIR/$IDENT
DOMAIN_CONF=$DOMAIN_CONF_DIR/dnsapi.conf
ACMESH_DNSSCIRPT_DIR=${ACMESH_DNSSCIRPT_DIR:-/usr/lib/acme/client/dnsapi}
#import dns hook script
dns=${dns:-$(head -n 1 $DOMAIN_CONF_DIR/selected_api)} # use different file to not hurt acme.sh config file struct
if [ ! -f "$ACMESH_DNSSCIRPT_DIR/$dns.sh" ]; then
echo "dns file $dns doesn't exit" 1>&2
exit 1
fi
. /usr/lib/acme/client/dnsapi/$dns.sh
echo $dns > "$DOMAIN_CONF_DIR/selected_api"
TXTDOMAIN=_acme-challenge.$IDENT
if [ "$dalias" ]; then
TXTDOMAIN=$dalias
elif [ "$calias" ]; then
TXTDOMAIN=_acme-challenge.$calias
fi
case "$METHOD" in
"begin")
(umask 077 ; touch -a "$DOMAIN_CONF")
log info logging $DOMAIN_CONF
${dns}_add $TXTDOMAIN $AUTH
RESULT=$?
if [ $RESULT -eq 0 ]; then
sleep ${dns_wait:-"30s"}
exit 0
else
exit $RESULT
fi
;;
"done"|"failed")
${dns}_rm $TXTDOMAIN $AUTH
exit $?
;;
*)
echo "$0: invalid method" 1>&2
exit 1
;;
esac
|
