Keybored-Co
/
certbot_knot_hooks
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

initial commit

master
Daniel Martinez 2020-04-24 21:09:42 -04:00
commit 68d3ea1968
5 changed files with 38 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
README.md Normal file
View File

@ -0,0 +1,6 @@
# Certbot authentication hooks for knot DNS
KnotDNS is my preferred authoritative DNS, so I wrote these quick scripts for certbot authentication.
There are two versions, one for when the DNS is being hosted at the same location as the certbot request,
and one for where we have to send a DNS update to the authoritative DNS server, such as when behind an
dynamic IP.

6
dns_cleanup.template Normal file
View File

@ -0,0 +1,6 @@
server DNS_SERVER
zone DOMAIN_NAME
origin DOMAIN_NAME
ttl 360
del SUBDOMAIN 360 txt
send

6
dns_update.template Normal file
View File

@ -0,0 +1,6 @@
server DNS_SERVER
zone DOMAIN_NAME
origin DOMAIN_NAME
ttl 360
add SUBDOMAIN 360 txt VALIDATION_STRING
send

12
same-server-authenticator-hook.sh Normal file
View File

@ -0,0 +1,12 @@
#!/bin/bash
DOMAIN=$(expr match "$CERTBOT_DOMAIN" '.*\.\(.*\..*\)')
CHALLENGE_DOMAIN="_acme-challenge.${CERTBOT_DOMAIN}"
knotc zone-begin ${DOMAIN}
knotc zone-set ${DOMAIN} ${CERTBOT_DOMAIN} 360 TXT ${CERTBOT_VALIDATION}
knotc zone-commit
echo "${CERTBOT_VALIDATION}" > /tmp/certbot_validation_txt_${CERTBOT_DOMAIN}.txt
sleep 25

8
same-server-cleanup.sh Normal file
View File

@ -0,0 +1,8 @@
#!/bin/bash
DOMAIN=$(expr match "$CERTBOT_DOMAIN" '.*\.\(.*\..*\)')
CHALLENGE_DOMAIN="_acme-challenge.${CERTBOT_DOMAIN}"
knotc zone-begin ${DOMAIN}
knotc zone-unset ${DOMAIN} ${CERTBOT_DOMAIN} TXT
knotc zone-commit ${DOMAIN}