]> git.proxmox.com Git - mirror_acme.sh.git/blame - dnsapi/dns_knot.sh
projects / mirror_acme.sh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge pull request #4658 from Justman10000/master
[mirror_acme.sh.git] / dnsapi / dns_knot.sh
CommitLineData
9c87a589 1#!/usr/bin/env sh
2
3######## Public functions #####################
4
5#Usage: dns_knot_add _acme-challenge.www.domain.com "XKrxpRBosdIKFzxW_CT3KLZNf6q0HG9i01zxXp5CPBs"
6dns_knot_add() {
7 fulldomain=$1
8 txtvalue=$2
9 _checkKey || return 1
10 [ -n "${KNOT_SERVER}" ] || KNOT_SERVER="localhost"
11 # save the dns server and key to the account.conf file.
12 _saveaccountconf KNOT_SERVER "${KNOT_SERVER}"
13 _saveaccountconf KNOT_KEY "${KNOT_KEY}"
14
15 if ! _get_root "$fulldomain"; then
16 _err "Domain does not exist."
17 return 1
18 fi
19
20 _info "Adding ${fulldomain}. 60 TXT \"${txtvalue}\""
21
dac7a3d2 22 knsupdate <<EOF
9c87a589 23server ${KNOT_SERVER}
dac7a3d2 24key ${KNOT_KEY}
9c87a589 25zone ${_domain}.
26update add ${fulldomain}. 60 TXT "${txtvalue}"
27send
28quit
29EOF
30
31 if [ $? -ne 0 ]; then
32 _err "Error updating domain."
33 return 1
34 fi
35
36 _info "Domain TXT record successfully added."
37 return 0
38}
39
40#Usage: dns_knot_rm _acme-challenge.www.domain.com
41dns_knot_rm() {
42 fulldomain=$1
43 _checkKey || return 1
44 [ -n "${KNOT_SERVER}" ] || KNOT_SERVER="localhost"
45
46 if ! _get_root "$fulldomain"; then
47 _err "Domain does not exist."
48 return 1
49 fi
50
51 _info "Removing ${fulldomain}. TXT"
52
dac7a3d2 53 knsupdate <<EOF
9c87a589 54server ${KNOT_SERVER}
dac7a3d2 55key ${KNOT_KEY}
9c87a589 56zone ${_domain}.
57update del ${fulldomain}. TXT
58send
59quit
60EOF
61
62 if [ $? -ne 0 ]; then
63 _err "error updating domain"
64 return 1
65 fi
66
67 _info "Domain TXT record successfully deleted."
68 return 0
69}
70
71#################### Private functions below ##################################
72# _acme-challenge.www.domain.com
73# returns
74# _domain=domain.com
75_get_root() {
76 domain=$1
77 i="$(echo "$fulldomain" | tr '.' ' ' | wc -w)"
f589a1d2 78 i=$(_math "$i" - 1)
9c87a589 79
80 while true; do
f589a1d2 81 h=$(printf "%s" "$domain" | cut -d . -f "$i"-100)
9c87a589 82 if [ -z "$h" ]; then
83 return 1
84 fi
85 _domain="$h"
86 return 0
87 done
88 _debug "$domain not found"
89 return 1
90}
91
92_checkKey() {
93 if [ -z "${KNOT_KEY}" ]; then
94 _err "You must specify a TSIG key to authenticate the request."
95 return 1
96 fi
97}
acme.sh DNS challenge mirror