[mirror_acme.sh.git] / dnsapi / dns_one.sh

#!/usr/bin/env sh
# -*- mode: sh; tab-width: 2; indent-tabs-mode: s; coding: utf-8 -*-

# one.com ui wrapper for acme.sh
# Author: github: @diseq
# Created: 2019-02-17
# Fixed by: @der-berni
# Modified: 2020-04-07
#
#     export ONECOM_User="username"
#     export ONECOM_Password="password"
#
# Usage:
#     acme.sh --issue --dns dns_one -d example.com
#
#     only single domain supported atm

dns_one_add() {
  fulldomain=$1
  txtvalue=$2

  if ! _dns_one_login; then
    _err "login failed"
    return 1
  fi

  _debug "detect the root domain"
  if ! _get_root "$fulldomain"; then
    _err "root domain not found"
    return 1
  fi
  
  subdomain="${_sub_domain}"
  maindomain=${_domain}
  
  useProxy=0
  if [ "${_sub_domain}" = "_acme-challenge" ]; then
    subdomain="proxy${_sub_domain}"
    useProxy=1
  fi
  
  _debug subdomain "$subdomain"
  _debug maindomain "$maindomain"
  
  if [ $useProxy -eq 1 ]; then
    #Check if the CNAME exists
    _dns_one_getrecord "CNAME" "$_sub_domain" "$subdomain.$maindomain"
    if [ -z "$id" ]; then
      _info "$(__red "Add CNAME Proxy record: '$(__green "\"$_sub_domain\" => \"$subdomain.$maindomain\"")'")"
      _dns_one_addrecord "CNAME" "$_sub_domain" "$subdomain.$maindomain"
	  
      _info "Not valid yet, let's wait 1 hour to take effect."
      _sleep 3600
    fi
  fi
  
  #Check if the TXT exists
  _dns_one_getrecord "TXT" "$subdomain" "$txtvalue"
  if [ ! -z "$id" ]; then
    _info "$(__green "Txt record with the same value found. Skip adding.")"
    return 0
  fi
  
  _dns_one_addrecord "TXT" "$subdomain" "$txtvalue"
  if [ -z "$id" ]; then
    _err "Add CNAME record error."
    return 1
  else
    _info "$(__green "Added, OK ($id)")"
    return 0
  fi
}

dns_one_rm() {
  fulldomain=$1
  txtvalue=$2

  if ! _dns_one_login; then
    _err "login failed"
    return 1
  fi

  _debug "detect the root domain"
  if ! _get_root "$fulldomain"; then
    _err "root domain not found"
    return 1
  fi

  subdomain="${_sub_domain}"
  maindomain=${_domain}
  
  useProxy=0
  if [ "${_sub_domain}" = "_acme-challenge" ]; then
    subdomain="proxy${_sub_domain}"
    useProxy=1
  fi
  
  _debug subdomain "$subdomain"
  _debug maindomain "$maindomain"
  if [ $useProxy -eq 1 ]; then
      if [ "$ONECOM_KeepCnameProxy" = "1" ]; then
        _info "$(__red "Keeping CNAME Proxy record: '$(__green "\"$_sub_domain\" => \"$subdomain.$maindomain\"")'")"
      else
        #Check if the CNAME exists
        _dns_one_getrecord "CNAME" "$_sub_domain" "$subdomain.$maindomain"
        if [ ! -z "$id" ]; then
		  _info "$(__red "Removing CNAME Proxy record: '$(__green "\"$_sub_domain\" => \"$subdomain.$maindomain\"")'")"
          _dns_one_delrecord "$id"
        fi
      fi
  fi
  
  #Check if the TXT exists
  _dns_one_getrecord "TXT" "$subdomain" "$txtvalue"
  if [ -z "$id" ]; then
    _err "Txt record not found."
    return 1
  fi
  
  # delete entry
  
  if _dns_one_delrecord "$id"; then
   _info "$(__green Removed, OK)"
   return 0
  else
   _err "Removing txt record error."
   return 1
  fi
}

#_acme-challenge.www.domain.com
#returns
# _sub_domain=_acme-challenge.www
# _domain=domain.com
_get_root() {
  domain="$1"
  i=2
  p=1
  while true; do
    h=$(printf "%s" "$domain" | cut -d . -f $i-100)

    if [ -z "$h" ]; then
      #not valid
      return 1
    fi

    response="$(_get "https://www.one.com/admin/api/domains/$h/dns/custom_records")"

    if ! _contains "$response" "CRMRST_000302"; then
      _sub_domain=$(printf "%s" "$domain" | cut -d . -f 1-$p)
      _domain="$h"
      return 0
    fi
    p=$i
    i=$(_math "$i" + 1)
  done
  _err "Unable to parse this domain"
  return 1
}

_dns_one_login() {

  # get credentials
  ONECOM_KeepCnameProxy="${ONECOM_KeepCnameProxy:-$(_readaccountconf_mutable ONECOM_KeepCnameProxy)}"
  ONECOM_User="${ONECOM_User:-$(_readaccountconf_mutable ONECOM_User)}"
  ONECOM_Password="${ONECOM_Password:-$(_readaccountconf_mutable ONECOM_Password)}"
  if [ -z "$ONECOM_User" ] || [ -z "$ONECOM_Password" ]; then
    ONECOM_User=""
    ONECOM_Password=""
    _err "You didn't specify a one.com username and password yet."
    _err "Please create the key and try again."
    return 1
  fi

  #save the api key and email to the account conf file.
  _saveaccountconf_mutable ONECOM_User "$ONECOM_User"
  _saveaccountconf_mutable ONECOM_Password "$ONECOM_Password"

  # Login with user and password
  postdata="loginDomain=true"
  postdata="$postdata&displayUsername=$ONECOM_User"
  postdata="$postdata&username=$ONECOM_User"
  postdata="$postdata&targetDomain="
  postdata="$postdata&password1=$ONECOM_Password"
  postdata="$postdata&loginTarget="
  #_debug postdata "$postdata"

  response="$(_post "$postdata" "https://www.one.com/admin/login.do" "" "POST" "application/x-www-form-urlencoded")"
  #_debug response "$response"

  # Get SessionID
  JSESSIONID="$(grep "OneSIDCrmAdmin" "$HTTP_HEADER" | grep "^[Ss]et-[Cc]ookie:" | _head_n 1 | _egrep_o 'OneSIDCrmAdmin=[^;]*;' | tr -d ';')"
  _debug jsessionid "$JSESSIONID"

  if [ -z "$JSESSIONID" ]; then
    _err "error sessionid cookie not found"
    return 1
  fi

  export _H1="Cookie: ${JSESSIONID}"

  return 0
}

_dns_one_getrecord() {
  type="$1"
  name="$2"
  value="$3"
  if [ -z "$type" ]; then
   type="TXT"
  fi
  if [ -z "$name" ]; then
   _err "Record name is empty."
   return 1
  fi
  
  response="$(_get "https://www.one.com/admin/api/domains/$maindomain/dns/custom_records")"
  response="$(echo "$response" | _normalizeJson)"
  _debug response "$response"
  
  if [ -z "${value}" ]; then
    id=$(printf -- "%s" "$response" | sed -n "s/.*{\"type\":\"dns_custom_records\",\"id\":\"\([^\"]*\)\",\"attributes\":{\"prefix\":\"${name}\",\"type\":\"${type}\",\"content\":\"[^\"]*\",\"priority\":0,\"ttl\":600}.*/\1/p")
    response=$(printf -- "%s" "$response" | sed -n "s/.*{\"type\":\"dns_custom_records\",\"id\":\"[^\"]*\",\"attributes\":{\"prefix\":\"${name}\",\"type\":\"${type}\",\"content\":\"\([^\"]*\)\",\"priority\":0,\"ttl\":600}.*/\1/p")
  else
    id=$(printf -- "%s" "$response" | sed -n "s/.*{\"type\":\"dns_custom_records\",\"id\":\"\([^\"]*\)\",\"attributes\":{\"prefix\":\"${name}\",\"type\":\"${type}\",\"content\":\"${value}\",\"priority\":0,\"ttl\":600}.*/\1/p")
  fi
  if [ -z "$id" ]; then
    _err "Record not found."
    return 1
  fi
  return 0
}

_dns_one_addrecord() {
  type="$1"
  name="$2"
  value="$3"
  if [ -z "$type" ]; then
   type="TXT"
  fi
  if [ -z "$name" ]; then
   _err "Record name is empty."
   return 1
  fi
  
  postdata="{\"type\":\"dns_custom_records\",\"attributes\":{\"priority\":0,\"ttl\":600,\"type\":\"${type}\",\"prefix\":\"${name}\",\"content\":\"${value}\"}}"
  _debug postdata "$postdata"
  response="$(_post "$postdata" "https://www.one.com/admin/api/domains/$maindomain/dns/custom_records" "" "POST" "application/json")"
  response="$(echo "$response" | _normalizeJson)"
  _debug response "$response"

  id=$(echo "$response" | sed -n "s/{\"result\":{\"data\":{\"type\":\"dns_custom_records\",\"id\":\"\([^\"]*\)\",\"attributes\":{\"prefix\":\"$subdomain\",\"type\":\"TXT\",\"content\":\"$txtvalue\",\"priority\":0,\"ttl\":600}}},\"metadata\":null}/\1/p")

  if [ -z "$id" ]; then
    return 1
  else
    return 0
  fi
}

_dns_one_delrecord() {
  id="$1"
  if [ -z "$id" ]; then
   return 1
  fi
  
  response="$(_post "" "https://www.one.com/admin/api/domains/$maindomain/dns/custom_records/$id" "" "DELETE" "application/json")"
  response="$(echo "$response" | _normalizeJson)"
  _debug response "$response"

  if [ "$response" = '{"result":null,"metadata":null}' ]; then
   return 0
  else
   return 1
  fi
}
Commit	Line	Data
9ff6d6e7	1	#!/usr/bin/env sh
	2	# -- mode: sh; tab-width: 2; indent-tabs-mode: s; coding: utf-8 --
	3
	4	# one.com ui wrapper for acme.sh
	5	# Author: github: @diseq
	6	# Created: 2019-02-17
68b42a00	7	# Fixed by: @der-berni
5fac282e	8	# Modified: 2020-04-07
9ff6d6e7	9	#
e340593a	10	# export ONECOM_User="username"
e340593a	11	# export ONECOM_Password="password"
9ff6d6e7	12	#
	13	# Usage:
	14	# acme.sh --issue --dns dns_one -d example.com
	15	#
	16	# only single domain supported atm
	17
	18	dns_one_add() {
68b42a00	19	fulldomain=$1
9ff6d6e7	20	txtvalue=$2
937d5b54	21
a3089a71	22	if ! _dns_one_login; then
	23	_err "login failed"
	24	return 1
	25	fi
	26
	27	_debug "detect the root domain"
68b42a00	28	if ! _get_root "$fulldomain"; then
a3089a71	29	_err "root domain not found"
68b42a00	30	return 1
68b42a00	31	fi
5fac282e	32
	33	subdomain="${_sub_domain}"
	34	maindomain=${_domain}
	35
	36	useProxy=0
	37	if [ "${_sub_domain}" = "_acme-challenge" ]; then
	38	subdomain="proxy${_sub_domain}"
	39	useProxy=1
	40	fi
	41
	42	_debug subdomain "$subdomain"
	43	_debug maindomain "$maindomain"
	44
	45	if [ $useProxy -eq 1 ]; then
	46	#Check if the CNAME exists
	47	_dns_one_getrecord "CNAME" "$_sub_domain" "$subdomain.$maindomain"
	48	if [ -z "$id" ]; then
	49	_info "$(__red "Add CNAME Proxy record: '$(__green "\"$_sub_domain\" => \"$subdomain.$maindomain\"")'")"
	50	_dns_one_addrecord "CNAME" "$_sub_domain" "$subdomain.$maindomain"
	51
	52	_info "Not valid yet, let's wait 1 hour to take effect."
	53	_sleep 3600
	54	fi
	55	fi
	56
	57	#Check if the TXT exists
	58	_dns_one_getrecord "TXT" "$subdomain" "$txtvalue"
	59	if [ ! -z "$id" ]; then
	60	_info "$(__green "Txt record with the same value found. Skip adding.")"
	61	return 0
	62	fi
	63
	64	_dns_one_addrecord "TXT" "$subdomain" "$txtvalue"
9ff6d6e7	65	if [ -z "$id" ]; then
5fac282e	66	_err "Add CNAME record error."
9ff6d6e7	67	return 1
9ff6d6e7	68	else
5fac282e	69	_info "$(__green "Added, OK ($id)")"
9ff6d6e7	70	return 0
9ff6d6e7	71	fi
9ff6d6e7	72	}
	73
	74	dns_one_rm() {
68b42a00	75	fulldomain=$1
9ff6d6e7	76	txtvalue=$2
937d5b54	77
a3089a71	78	if ! _dns_one_login; then
	79	_err "login failed"
	80	return 1
	81	fi
	82
	83	_debug "detect the root domain"
68b42a00	84	if ! _get_root "$fulldomain"; then
a3089a71	85	_err "root domain not found"
68b42a00	86	return 1
68b42a00	87	fi
937d5b54	88
5fac282e	89	subdomain="${_sub_domain}"
	90	maindomain=${_domain}
	91
	92	useProxy=0
	93	if [ "${_sub_domain}" = "_acme-challenge" ]; then
	94	subdomain="proxy${_sub_domain}"
	95	useProxy=1
	96	fi
	97
	98	_debug subdomain "$subdomain"
	99	_debug maindomain "$maindomain"
	100	if [ $useProxy -eq 1 ]; then
	101	if [ "$ONECOM_KeepCnameProxy" = "1" ]; then
	102	_info "$(__red "Keeping CNAME Proxy record: '$(__green "\"$_sub_domain\" => \"$subdomain.$maindomain\"")'")"
	103	else
	104	#Check if the CNAME exists
	105	_dns_one_getrecord "CNAME" "$_sub_domain" "$subdomain.$maindomain"
	106	if [ ! -z "$id" ]; then
	107	_info "$(__red "Removing CNAME Proxy record: '$(__green "\"$_sub_domain\" => \"$subdomain.$maindomain\"")'")"
	108	_dns_one_delrecord "$id"
	109	fi
	110	fi
	111	fi
	112
	113	#Check if the TXT exists
	114	_dns_one_getrecord "TXT" "$subdomain" "$txtvalue"
9ff6d6e7	115	if [ -z "$id" ]; then
	116	_err "Txt record not found."
	117	return 1
	118	fi
5fac282e	119
9ff6d6e7	120	# delete entry
5fac282e	121
	122	if _dns_one_delrecord "$id"; then
	123	_info "$(__green Removed, OK)"
	124	return 0
ed3f2646	125	else
5fac282e	126	_err "Removing txt record error."
5fac282e	127	return 1
9ff6d6e7	128	fi
0bb746ba	129	}
68b42a00	130
	131	#_acme-challenge.www.domain.com
	132	#returns
	133	# _sub_domain=_acme-challenge.www
	134	# _domain=domain.com
	135	_get_root() {
1a5279bd	136	domain="$1"
68b42a00	137	i=2
	138	p=1
	139	while true; do
	140	h=$(printf "%s" "$domain" \| cut -d . -f $i-100)
1a5279bd	141
68b42a00	142	if [ -z "$h" ]; then
	143	#not valid
	144	return 1
	145	fi
1a5279bd	146
a3089a71	147	response="$(_get "https://www.one.com/admin/api/domains/$h/dns/custom_records")"
1a5279bd	148
89e73594	149	if ! _contains "$response" "CRMRST_000302"; then
68b42a00	150	_sub_domain=$(printf "%s" "$domain" \| cut -d . -f 1-$p)
	151	_domain="$h"
	152	return 0
	153	fi
	154	p=$i
	155	i=$(_math "$i" + 1)
	156	done
	157	_err "Unable to parse this domain"
	158	return 1
	159	}
a3089a71	160
	161	_dns_one_login() {
	162
	163	# get credentials
5fac282e	164	ONECOM_KeepCnameProxy="${ONECOM_KeepCnameProxy:-$(_readaccountconf_mutable ONECOM_KeepCnameProxy)}"
a3089a71	165	ONECOM_User="${ONECOM_User:-$(_readaccountconf_mutable ONECOM_User)}"
	166	ONECOM_Password="${ONECOM_Password:-$(_readaccountconf_mutable ONECOM_Password)}"
	167	if [ -z "$ONECOM_User" ] \|\| [ -z "$ONECOM_Password" ]; then
	168	ONECOM_User=""
	169	ONECOM_Password=""
	170	_err "You didn't specify a one.com username and password yet."
	171	_err "Please create the key and try again."
	172	return 1
	173	fi
	174
	175	#save the api key and email to the account conf file.
	176	_saveaccountconf_mutable ONECOM_User "$ONECOM_User"
	177	_saveaccountconf_mutable ONECOM_Password "$ONECOM_Password"
	178
	179	# Login with user and password
	180	postdata="loginDomain=true"
	181	postdata="$postdata&displayUsername=$ONECOM_User"
	182	postdata="$postdata&username=$ONECOM_User"
	183	postdata="$postdata&targetDomain="
	184	postdata="$postdata&password1=$ONECOM_Password"
	185	postdata="$postdata&loginTarget="
	186	#_debug postdata "$postdata"
1a5279bd	187
a3089a71	188	response="$(_post "$postdata" "https://www.one.com/admin/login.do" "" "POST" "application/x-www-form-urlencoded")"
a3089a71	189	#_debug response "$response"
1a5279bd	190
a3089a71	191	# Get SessionID
	192	JSESSIONID="$(grep "OneSIDCrmAdmin" "$HTTP_HEADER" \| grep "^[Ss]et-[Cc]ookie:" \| _head_n 1 \| _egrep_o 'OneSIDCrmAdmin=[^;]*;' \| tr -d ';')"
	193	_debug jsessionid "$JSESSIONID"
1a5279bd	194
a3089a71	195	if [ -z "$JSESSIONID" ]; then
	196	_err "error sessionid cookie not found"
	197	return 1
	198	fi
1a5279bd	199
a3089a71	200	export _H1="Cookie: ${JSESSIONID}"
1a5279bd	201
a3089a71	202	return 0
937d5b54	203	}
5fac282e	204
	205	_dns_one_getrecord() {
	206	type="$1"
	207	name="$2"
	208	value="$3"
	209	if [ -z "$type" ]; then
	210	type="TXT"
	211	fi
	212	if [ -z "$name" ]; then
	213	_err "Record name is empty."
	214	return 1
	215	fi
	216
	217	response="$(_get "https://www.one.com/admin/api/domains/$maindomain/dns/custom_records")"
	218	response="$(echo "$response" \| _normalizeJson)"
	219	_debug response "$response"
	220
	221	if [ -z "${value}" ]; then
	222	id=$(printf -- "%s" "$response" \| sed -n "s/.{\"type\":\"dns_custom_records\",\"id\":\"\([^\"]\)\",\"attributes\":{\"prefix\":\"${name}\",\"type\":\"${type}\",\"content\":\"[^\"]\",\"priority\":0,\"ttl\":600}./\1/p")
	223	response=$(printf -- "%s" "$response" \| sed -n "s/.{\"type\":\"dns_custom_records\",\"id\":\"[^\"]\",\"attributes\":{\"prefix\":\"${name}\",\"type\":\"${type}\",\"content\":\"\([^\"]\)\",\"priority\":0,\"ttl\":600}./\1/p")
	224	else
	225	id=$(printf -- "%s" "$response" \| sed -n "s/.{\"type\":\"dns_custom_records\",\"id\":\"\([^\"]\)\",\"attributes\":{\"prefix\":\"${name}\",\"type\":\"${type}\",\"content\":\"${value}\",\"priority\":0,\"ttl\":600}.*/\1/p")
	226	fi
	227	if [ -z "$id" ]; then
	228	_err "Record not found."
	229	return 1
	230	fi
	231	return 0
	232	}
	233
	234	_dns_one_addrecord() {
	235	type="$1"
	236	name="$2"
	237	value="$3"
	238	if [ -z "$type" ]; then
	239	type="TXT"
	240	fi
	241	if [ -z "$name" ]; then
	242	_err "Record name is empty."
	243	return 1
	244	fi
	245
	246	postdata="{\"type\":\"dns_custom_records\",\"attributes\":{\"priority\":0,\"ttl\":600,\"type\":\"${type}\",\"prefix\":\"${name}\",\"content\":\"${value}\"}}"
	247	_debug postdata "$postdata"
	248	response="$(_post "$postdata" "https://www.one.com/admin/api/domains/$maindomain/dns/custom_records" "" "POST" "application/json")"
	249	response="$(echo "$response" \| _normalizeJson)"
	250	_debug response "$response"
	251
	252	id=$(echo "$response" \| sed -n "s/{\"result\":{\"data\":{\"type\":\"dns_custom_records\",\"id\":\"\([^\"]*\)\",\"attributes\":{\"prefix\":\"$subdomain\",\"type\":\"TXT\",\"content\":\"$txtvalue\",\"priority\":0,\"ttl\":600}}},\"metadata\":null}/\1/p")
	253
	254	if [ -z "$id" ]; then
	255	return 1
	256	else
	257	return 0
	258	fi
	259	}
	260
	261	_dns_one_delrecord() {
	262	id="$1"
	263	if [ -z "$id" ]; then
	264	return 1
	265	fi
	266
	267	response="$(_post "" "https://www.one.com/admin/api/domains/$maindomain/dns/custom_records/$id" "" "DELETE" "application/json")"
268	response="$(echo "$response" \| _normalizeJson)"
269	_debug response "$response"
270
271	if [ "$response" = '{"result":null,"metadata":null}' ]; then
272	return 0
273	else
274	return 1
275	fi
276	}