You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
42 lines
1.1 KiB
42 lines
1.1 KiB
#!/usr/bin/env bash
|
|
|
|
# example of script to remove token from local dns using nsupdate
|
|
|
|
fulldomain="$1"
|
|
token="$2"
|
|
|
|
# VARIABLES:
|
|
#
|
|
# DNS_NSUPDATE_KEYFILE - path to a TSIG key file, if required
|
|
# DNS_NSUPDATE_GETKEY - command to execute if access to the key file requires
|
|
# some special action: dismounting a disk, encrypting a
|
|
# file... Called with the operation 'del' and action
|
|
# 'open" / 'close'
|
|
|
|
if [ -n "${DNS_NSUPDATE_KEYFILE}" ]; then
|
|
if [ -n "${DNS_NSUPDATE_KEY_HOOK}" ] && ! "${DNS_NSUPDATE_KEY_HOOK}" 'del' 'open' "${fulldomain}" ; then
|
|
exit $(( $? + 128 ))
|
|
fi
|
|
|
|
options="-k ${DNS_NSUPDATE_KEYFILE}"
|
|
fi
|
|
|
|
cmd=
|
|
if [ -n "${DNS_SERVER}" ]; then
|
|
cmd+="server ${DNS_SERVER}\n"
|
|
fi
|
|
|
|
cmd+="update delete ${DNS_ZONE:-"_acme-challenge.${fulldomain}."} 300 in TXT \"${token}\"\n"
|
|
cmd+="\n" # blank line is a "send" command to nsupdate
|
|
|
|
printf "$cmd" | nsupdate ${options} -v
|
|
|
|
sts=$?
|
|
|
|
if [ -n "${DNS_NSUPDATE_KEYFILE}" ]; then
|
|
if [ -n "${DNS_NSUPDATE_KEY_HOOK}" ] && ! "${DNS_NSUPDATE_KEY_HOOK}" 'del' 'close' "${fulldomain}" ; then
|
|
exit $(( sts + ( $? * 10 ) ))
|
|
fi
|
|
fi
|
|
|
|
exit ${sts}
|