#!/usr/bin/env sh
#Godaddy domain api
+# Get API key and secret from https://developer.godaddy.com/
#
-#GD_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
+# GD_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
+# GD_Secret="asdfsdfsfsdfsdfdfsdf"
#
-#GD_Secret="asdfsdfsfsdfsdfdfsdf"
+# Ex.: acme.sh --issue --staging --dns dns_gd -d "*.s.example.com" -d "s.example.com"
GD_Api="https://api.godaddy.com/v1"
fulldomain=$1
txtvalue=$2
+ GD_Key="${GD_Key:-$(_readaccountconf_mutable GD_Key)}"
+ GD_Secret="${GD_Secret:-$(_readaccountconf_mutable GD_Secret)}"
if [ -z "$GD_Key" ] || [ -z "$GD_Secret" ]; then
GD_Key=""
GD_Secret=""
- _err "You don't specify godaddy api key and secret yet."
- _err "Please create you key and try again."
+ _err "You didn't specify godaddy api key and secret yet."
+ _err "Please create your key and try again."
return 1
fi
#save the api key and email to the account conf file.
- _saveaccountconf GD_Key "$GD_Key"
- _saveaccountconf GD_Secret "$GD_Secret"
+ _saveaccountconf_mutable GD_Key "$GD_Key"
+ _saveaccountconf_mutable GD_Secret "$GD_Secret"
_debug "First detect the root zone"
if ! _get_root "$fulldomain"; then
_debug _sub_domain "$_sub_domain"
_debug _domain "$_domain"
+ _debug "Getting existing records"
+ if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
+ return 1
+ fi
+
+ if _contains "$response" "$txtvalue"; then
+ _info "This record already exists, skipping"
+ return 0
+ fi
+
+ _add_data="{\"data\":\"$txtvalue\"}"
+ for t in $(echo "$response" | tr '{' "\n" | grep "\"name\":\"$_sub_domain\"" | tr ',' "\n" | grep '"data"' | cut -d : -f 2); do
+ _debug2 t "$t"
+ # ignore empty (previously removed) records, to prevent useless _acme-challenge TXT entries
+ if [ "$t" ] && [ "$t" != '""' ]; then
+ _add_data="$_add_data,{\"data\":$t}"
+ fi
+ done
+ _debug2 _add_data "$_add_data"
+
_info "Adding record"
- if _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[{\"data\":\"$txtvalue\"}]"; then
- if [ "$response" = "{}" ]; then
- _info "Added, sleeping 10 seconds"
- sleep 10
- #todo: check if the record takes effect
- return 0
- else
- _err "Add txt record error."
- _err "$response"
+ if _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[$_add_data]"; then
+ _debug "Checking updated records of '${fulldomain}'"
+
+ if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
+ _err "Validating TXT record for '${fulldomain}' with rest error [$?]." "$response"
return 1
fi
+
+ if ! _contains "$response" "$txtvalue"; then
+ _err "TXT record '${txtvalue}' for '${fulldomain}', value wasn't set!"
+ return 1
+ fi
+ else
+ _err "Add txt record error, value '${txtvalue}' for '${fulldomain}' was not set."
+ return 1
fi
- _err "Add txt record error."
+ _sleep 10
+ _info "Added TXT record '${txtvalue}' for '${fulldomain}'."
+ return 0
}
#fulldomain
dns_gd_rm() {
fulldomain=$1
+ txtvalue=$2
+
+ GD_Key="${GD_Key:-$(_readaccountconf_mutable GD_Key)}"
+ GD_Secret="${GD_Secret:-$(_readaccountconf_mutable GD_Secret)}"
+ _debug "First detect the root zone"
+ if ! _get_root "$fulldomain"; then
+ _err "invalid domain"
+ return 1
+ fi
+
+ _debug _sub_domain "$_sub_domain"
+ _debug _domain "$_domain"
+
+ _debug "Getting existing records"
+ if ! _gd_rest GET "domains/$_domain/records/TXT/$_sub_domain"; then
+ return 1
+ fi
+
+ if ! _contains "$response" "$txtvalue"; then
+ _info "The record does not exist, skip"
+ return 0
+ fi
+
+ _add_data=""
+ for t in $(echo "$response" | tr '{' "\n" | grep "\"name\":\"$_sub_domain\"" | tr ',' "\n" | grep '"data"' | cut -d : -f 2); do
+ _debug2 t "$t"
+ if [ "$t" ] && [ "$t" != "\"$txtvalue\"" ]; then
+ if [ "$_add_data" ]; then
+ _add_data="$_add_data,{\"data\":$t}"
+ else
+ _add_data="{\"data\":$t}"
+ fi
+ fi
+ done
+ if [ -z "$_add_data" ]; then
+ # delete empty record
+ _debug "Delete last record for '${fulldomain}'"
+ if ! _gd_rest DELETE "domains/$_domain/records/TXT/$_sub_domain"; then
+ _err "Cannot delete empty TXT record for '$fulldomain'"
+ return 1
+ fi
+ else
+ # remove specific TXT value, keeping other entries
+ _debug2 _add_data "$_add_data"
+ if ! _gd_rest PUT "domains/$_domain/records/TXT/$_sub_domain" "[$_add_data]"; then
+ _err "Cannot update TXT record for '$fulldomain'"
+ return 1
+ fi
+ fi
}
#################### Private functions below ##################################
data="$3"
_debug "$ep"
- _H1="Authorization: sso-key $GD_Key:$GD_Secret"
- _H2="Content-Type: application/json"
+ export _H1="Authorization: sso-key $GD_Key:$GD_Secret"
+ export _H2="Content-Type: application/json"
- if [ "$data" ]; then
- _debug data "$data"
+ if [ "$data" ] || [ "$m" = "DELETE" ]; then
+ _debug "data ($m): " "$data"
response="$(_post "$data" "$GD_Api/$ep" "" "$m")"
else
response="$(_get "$GD_Api/$ep")"
fi
if [ "$?" != "0" ]; then
- _err "error $ep"
+ _err "error on rest call ($m): $ep"
return 1
fi
_debug2 response "$response"
+ if _contains "$response" "UNABLE_TO_AUTHENTICATE"; then
+ _err "It seems that your api key or secret is not correct."
+ return 1
+ fi
return 0
}
projects / mirror_acme.sh.git / blobdiff