#!/usr/bin/env sh # -*- mode: sh; tab-width: 2; indent-tabs-mode: s; coding: utf-8 -*- # one.com ui wrapper for acme.sh # Author: github: @diseq # Created: 2018-04-15 # # export ONECOM_USER="username" # export ONECOM_PASSWORD="password" # # Usage: # acme.sh --issue --dns dns_one -d example.com # # only single domain supported atm dns_one_add() { mysubdomain=$(printf -- "%s" "$1" | rev | cut -d"." -f3- | rev) mydomain=$(printf -- "%s" "$1" | rev | cut -d"." -f1-2 | rev) txtvalue=$2 # get credentials ONECOM_USER="${ONECOM_USER:-$(_readaccountconf_mutable ONECOM_USER)}" ONECOM_PASSWORD="${ONECOM_PASSWORD:-$(_readaccountconf_mutable ONECOM_PASSWORD)}" if [ -z "$ONECOM_USER" ] || [ -z "$ONECOM_PASSWORD" ]; then ONECOM_USER="" ONECOM_PASSWORD="" _err "You didn't specify a cloudflare api key and email yet." _err "Please create the key and try again." return 1 fi #save the api key and email to the account conf file. _saveaccountconf_mutable ONECOM_USER "$ONECOM_USER" _saveaccountconf_mutable ONECOM_PASSWORD "$ONECOM_PASSWORD" # Login with user and password postdata="loginDomain=true" postdata="$postdata&displayUsername=$ONECOM_USER" postdata="$postdata&username=$ONECOM_USER" postdata="$postdata&targetDomain=" postdata="$postdata&password1=$ONECOM_PASSWORD" postdata="$postdata&loginTarget=" _debug postdata "$postdata" response="$(_post "$postdata" "https://www.one.com/admin/login.do" "" "POST")" _debug response "$response" JSESSIONID="$(grep "JSESSIONID=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'JSESSIONID=[^;]*;' | tr -d ';')" export _H1="Cookie: ${JSESSIONID}" # check for domain name response="$(_get "https://www.one.com/admin/dns-overview.do")" CSRF_G_TOKEN="$(grep "CSRF_G_TOKEN=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'CSRF_G_TOKEN=[^;]*;' | tr -d ';')" export _H2="Cookie: ${CSRF_G_TOKEN}" mycsrft=$(echo "${CSRF_G_TOKEN}" | sed -n 's/CSRF_G_TOKEN=\(.*\)/\1/p') # Update the IP address for domain entry postdata="csrft=$mycsrft" response="$(_post "$postdata" "https://www.one.com/admin/ajax-dns-entries.do" "" "POST")" response="$(echo "$response" | _normalizeJson)" _debug response "$response" domain=$(printf -- "%s" "$response" | sed -n "s/.*,\"nsView\":{[^}]*,\"domain\":\"\([^\"]*\)\".*/\1/p") if [ "$mydomain" = "$domain" ]; then _debug "domain matches" else _err "requested domain does not match." return 1 fi response="$(_get "https://www.one.com/admin/dns-overview.do")" _debug response "$response" CSRF_G_TOKEN="$(grep "CSRF_G_TOKEN=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'CSRF_G_TOKEN=[^;]*;' | tr -d ';')" export _H2="Cookie: ${CSRF_G_TOKEN}" mycsrft=$(echo "${CSRF_G_TOKEN}" | sed -n 's/CSRF_G_TOKEN=\(.*\)/\1/p') # create txt record postdata="cmd=create" postdata="$postdata&subDomain=$mysubdomain" postdata="$postdata&priority=" postdata="$postdata&ttl=600" postdata="$postdata&type=TXT" postdata="$postdata&value=$txtvalue" postdata="$postdata&csrft=$mycsrft" response="$(_post "$postdata" "https://www.one.com/admin/dns-web-handler.do" "" "POST")" _debug response "$response" if printf -- "%s" "$response" | grep "\"success\":true" >/dev/null; then _info "Added, OK" return 0 else _err "Add txt record error." return 1 fi } dns_one_rm() { mysubdomain=$(printf -- "%s" "$1" | rev | cut -d"." -f3- | rev) mydomain=$(printf -- "%s" "$1" | rev | cut -d"." -f1-2 | rev) txtvalue=$2 # get credentials ONECOM_USER="${ONECOM_USER:-$(_readaccountconf_mutable ONECOM_USER)}" ONECOM_PASSWORD="${ONECOM_PASSWORD:-$(_readaccountconf_mutable ONECOM_PASSWORD)}" if [ -z "$ONECOM_USER" ] || [ -z "$ONECOM_PASSWORD" ]; then ONECOM_USER="" ONECOM_PASSWORD="" _err "You didn't specify a cloudflare api key and email yet." _err "Please create the key and try again." return 1 fi # Login with user and password postdata="loginDomain=true" postdata="$postdata&displayUsername=$ONECOM_USER" postdata="$postdata&username=$ONECOM_USER" postdata="$postdata&targetDomain=" postdata="$postdata&password1=$ONECOM_PASSWORD" postdata="$postdata&loginTarget=" response="$(_post "$postdata" "https://www.one.com/admin/login.do" "" "POST")" JSESSIONID="$(grep "JSESSIONID=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'JSESSIONID=[^;]*;' | tr -d ';')" export _H1="Cookie: ${JSESSIONID}" # check for domain name response="$(_get "https://www.one.com/admin/dns-overview.do")" CSRF_G_TOKEN="$(grep "CSRF_G_TOKEN=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'CSRF_G_TOKEN=[^;]*;' | tr -d ';')" export _H2="Cookie: ${CSRF_G_TOKEN}" mycsrft=$(echo "${CSRF_G_TOKEN}" | sed -n 's/CSRF_G_TOKEN=\(.*\)/\1/p') # Update the IP address for domain entry postdata="csrft=$mycsrft" response="$(_post "$postdata" "https://www.one.com/admin/ajax-dns-entries.do" "" "POST")" response="$(echo "$response" | _normalizeJson)" _debug response "$response" domain=$(printf -- "%s" "$response" | sed -n "s/.*,\"nsView\":{[^}]*,\"domain\":\"\([^\"]*\)\".*/\1/p") if [ "$mydomain" = "$domain" ]; then _debug "domain matches" else _err "requested domain does not match." return 1 fi # remove _acme-challenge subdomain mysubdomainid=$(printf -- "%s" "$response" | sed -n "s/.*{\"subDomain\":\"$mysubdomain\"[^}]*,\"value\":\"$txtvalue\",\"id\":\"\([0-9][0-9]*\)\"}.*/\1/p") if [ "$mysubdomainid" ]; then _debug mysubdomainid "$mysubdomainid" response="$(_get "https://www.one.com/admin/dns-overview.do")" CSRF_G_TOKEN="$(grep "CSRF_G_TOKEN=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'CSRF_G_TOKEN=[^;]*;' | tr -d ';')" export _H2="Cookie: ${CSRF_G_TOKEN}" mycsrft=$(echo "${CSRF_G_TOKEN}" | sed -n 's/CSRF_G_TOKEN=\(.*\)/\1/p') # delete txt record postdata="cmd=delete" postdata="$postdata&subDomain=$mysubdomain" postdata="$postdata&priority=" postdata="$postdata&ttl=600" postdata="$postdata&type=TXT" postdata="$postdata&id=$mysubdomainid" postdata="$postdata&csrft=$mycsrft" response="$(_post "$postdata" "https://www.one.com/admin/dns-web-handler.do" "" "POST")" _debug "$response" if printf -- "%s" "$response" | grep "\"success\":true" >/dev/null; then _info "Removed, OK" return 0 else _err "Removing txt record error." return 1 fi fi _err "Removing txt record error. (not existing)" return 1 }