|
|
|
@ -41,18 +41,16 @@ qiniu_deploy() {
|
|
|
|
|
_savedomainconf Le_Deploy_Qiniu_SK "$Le_Deploy_Qiniu_SK" |
|
|
|
|
fi |
|
|
|
|
|
|
|
|
|
## upload certificate |
|
|
|
|
string_fullchain=$(awk '{printf "%s\\n", $0}' "$_cfullchain") |
|
|
|
|
string_key=$(awk '{printf "%s\\n", $0}' "$_ckey") |
|
|
|
|
|
|
|
|
|
sslcerl_body="{\"name\":\"$_cdomain\",\"common_name\":\"$_cdomain\",\"ca\":\""$string_fullchain"\",\"pri\":\"$string_key\"}" |
|
|
|
|
|
|
|
|
|
create_ssl_url="$QINIU_API_BASE/sslcert" |
|
|
|
|
|
|
|
|
|
sslcert_access_token="$(_make_sslcreate_access_token "/sslcert\\n")" |
|
|
|
|
sslcert_path="/sslcert" |
|
|
|
|
sslcerl_body="{\"name\":\"$_cdomain\",\"common_name\":\"$_cdomain\",\"ca\":\"$string_fullchain\",\"pri\":\"$string_key\"}" |
|
|
|
|
sslcert_access_token="$(_make_sslcreate_access_token "$sslcert_path")" |
|
|
|
|
_debug sslcert_access_token "$sslcert_access_token" |
|
|
|
|
export _H1="Authorization: QBox $sslcert_access_token" |
|
|
|
|
|
|
|
|
|
sslcert_response=$(_post "$sslcerl_body" "$create_ssl_url" 0 "POST" "application/json" | _dbase64 "multiline") |
|
|
|
|
sslcert_response=$(_post "$sslcerl_body" "$QINIU_API_BASE$sslcert_path" 0 "POST" "application/json" | _dbase64 "multiline") |
|
|
|
|
|
|
|
|
|
success_response="certID" |
|
|
|
|
if test "${sslcert_response#*$success_response}" == "$sslcert_response"; then |
|
|
|
@ -64,21 +62,21 @@ qiniu_deploy() {
|
|
|
|
|
_debug sslcert_response "$sslcert_response" |
|
|
|
|
_info "Certificate successfully uploaded, updating domain $_cdomain" |
|
|
|
|
|
|
|
|
|
_certId=$(printf "%s" $sslcert_response | sed -e "s/^.*certID\":\"//" -e "s/\"\}$//") |
|
|
|
|
## extract certId |
|
|
|
|
_certId=$(printf "%s" "$sslcert_response" | sed -e "s/^.*certID\":\"//" -e "s/\"\}$//") |
|
|
|
|
_debug certId "$_certId" |
|
|
|
|
|
|
|
|
|
## update domain ssl config |
|
|
|
|
update_path="/domain/$_cdomain/httpsconf" |
|
|
|
|
update_url="$QINIU_API_BASE$update_path" |
|
|
|
|
update_body="{\"certid\":\""$_certId"\",\"forceHttps\":true}" |
|
|
|
|
|
|
|
|
|
update_access_token="$(_make_sslcreate_access_token "$update_path\\n")" |
|
|
|
|
update_body="{\"certid\":\"$_certId\",\"forceHttps\":true}" |
|
|
|
|
update_access_token="$(_make_sslcreate_access_token "$update_path")" |
|
|
|
|
_debug update_access_token "$update_access_token" |
|
|
|
|
export _H1="Authorization: QBox $update_access_token" |
|
|
|
|
update_response=$(_post "$update_body" "$update_url" 0 "PUT" "application/json" | _dbase64 "multiline") |
|
|
|
|
update_response=$(_post "$update_body" "$QINIU_API_BASE$update_body" 0 "PUT" "application/json" | _dbase64 "multiline") |
|
|
|
|
|
|
|
|
|
err_response="error" |
|
|
|
|
if test "${update_response#*$err_response}" != "$update_response"; then |
|
|
|
|
_err "Error in updating domain:" |
|
|
|
|
_err "Error in updating domain httpsconf:" |
|
|
|
|
_err "$update_response" |
|
|
|
|
return 1 |
|
|
|
|
fi |
|
|
|
@ -90,7 +88,7 @@ qiniu_deploy() {
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
_make_sslcreate_access_token() { |
|
|
|
|
_data="$1" |
|
|
|
|
_token="$(printf "$_data" | openssl sha1 -hmac $Le_Deploy_Qiniu_SK -binary | openssl base64 -e)" |
|
|
|
|
_data="$1\\n" |
|
|
|
|
_token="$(printf "%s" "$_data" | openssl sha1 -hmac "$Le_Deploy_Qiniu_SK" -binary | openssl base64 -e)" |
|
|
|
|
echo "$Le_Deploy_Qiniu_AK:$_token" |
|
|
|
|
} |
|
|
|
|