|
|
|
|
@ -41,18 +41,16 @@ qiniu_deploy() {
|
|
|
|
|
_savedomainconf Le_Deploy_Qiniu_SK "$Le_Deploy_Qiniu_SK"
|
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
## upload certificate
|
|
|
|
|
string_fullchain=$(awk '{printf "%s\\n", $0}' "$_cfullchain")
|
|
|
|
|
string_key=$(awk '{printf "%s\\n", $0}' "$_ckey")
|
|
|
|
|
|
|
|
|
|
sslcerl_body="{\"name\":\"$_cdomain\",\"common_name\":\"$_cdomain\",\"ca\":\""$string_fullchain"\",\"pri\":\"$string_key\"}"
|
|
|
|
|
|
|
|
|
|
create_ssl_url="$QINIU_API_BASE/sslcert"
|
|
|
|
|
|
|
|
|
|
sslcert_access_token="$(_make_sslcreate_access_token "/sslcert\\n")"
|
|
|
|
|
sslcert_path="/sslcert"
|
|
|
|
|
sslcerl_body="{\"name\":\"$_cdomain\",\"common_name\":\"$_cdomain\",\"ca\":\"$string_fullchain\",\"pri\":\"$string_key\"}"
|
|
|
|
|
sslcert_access_token="$(_make_sslcreate_access_token "$sslcert_path")"
|
|
|
|
|
_debug sslcert_access_token "$sslcert_access_token"
|
|
|
|
|
export _H1="Authorization: QBox $sslcert_access_token"
|
|
|
|
|
|
|
|
|
|
sslcert_response=$(_post "$sslcerl_body" "$create_ssl_url" 0 "POST" "application/json" | _dbase64 "multiline")
|
|
|
|
|
sslcert_response=$(_post "$sslcerl_body" "$QINIU_API_BASE$sslcert_path" 0 "POST" "application/json" | _dbase64 "multiline")
|
|
|
|
|
|
|
|
|
|
success_response="certID"
|
|
|
|
|
if test "${sslcert_response#*$success_response}" == "$sslcert_response"; then
|
|
|
|
|
@ -64,21 +62,21 @@ qiniu_deploy() {
|
|
|
|
|
_debug sslcert_response "$sslcert_response"
|
|
|
|
|
_info "Certificate successfully uploaded, updating domain $_cdomain"
|
|
|
|
|
|
|
|
|
|
_certId=$(printf "%s" $sslcert_response | sed -e "s/^.*certID\":\"//" -e "s/\"\}$//")
|
|
|
|
|
## extract certId
|
|
|
|
|
_certId=$(printf "%s" "$sslcert_response" | sed -e "s/^.*certID\":\"//" -e "s/\"\}$//")
|
|
|
|
|
_debug certId "$_certId"
|
|
|
|
|
|
|
|
|
|
## update domain ssl config
|
|
|
|
|
update_path="/domain/$_cdomain/httpsconf"
|
|
|
|
|
update_url="$QINIU_API_BASE$update_path"
|
|
|
|
|
update_body="{\"certid\":\""$_certId"\",\"forceHttps\":true}"
|
|
|
|
|
|
|
|
|
|
update_access_token="$(_make_sslcreate_access_token "$update_path\\n")"
|
|
|
|
|
update_body="{\"certid\":\"$_certId\",\"forceHttps\":true}"
|
|
|
|
|
update_access_token="$(_make_sslcreate_access_token "$update_path")"
|
|
|
|
|
_debug update_access_token "$update_access_token"
|
|
|
|
|
export _H1="Authorization: QBox $update_access_token"
|
|
|
|
|
update_response=$(_post "$update_body" "$update_url" 0 "PUT" "application/json" | _dbase64 "multiline")
|
|
|
|
|
update_response=$(_post "$update_body" "$QINIU_API_BASE$update_body" 0 "PUT" "application/json" | _dbase64 "multiline")
|
|
|
|
|
|
|
|
|
|
err_response="error"
|
|
|
|
|
if test "${update_response#*$err_response}" != "$update_response"; then
|
|
|
|
|
_err "Error in updating domain:"
|
|
|
|
|
_err "Error in updating domain httpsconf:"
|
|
|
|
|
_err "$update_response"
|
|
|
|
|
return 1
|
|
|
|
|
fi
|
|
|
|
|
@ -90,7 +88,7 @@ qiniu_deploy() {
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_make_sslcreate_access_token() {
|
|
|
|
|
_data="$1"
|
|
|
|
|
_token="$(printf "$_data" | openssl sha1 -hmac $Le_Deploy_Qiniu_SK -binary | openssl base64 -e)"
|
|
|
|
|
_data="$1\\n"
|
|
|
|
|
_token="$(printf "%s" "$_data" | openssl sha1 -hmac "$Le_Deploy_Qiniu_SK" -binary | openssl base64 -e)"
|
|
|
|
|
echo "$Le_Deploy_Qiniu_AK:$_token"
|
|
|
|
|
}
|
|
|
|
|
|
shonenada
6 years ago