ols-docker-env/bin/acme.sh

#!/usr/bin/env bash
EMAIL=''
NO_EMAIL=''
DOMAIN=''
INSTALL=''
UNINSTALL=''
TYPE=0
CONT_NAME='litespeed'
ACME_SRC='https://raw.githubusercontent.com/Neilpang/acme.sh/master/acme.sh'
EPACE='        '
RENEW=''
RENEW_ALL=''
FORCE=''

echow(){
    FLAG=${1}
    shift
    echo -e "\033[1m${EPACE}${FLAG}\033[0m${@}"
}

help_message(){
    case ${1} in
    "1")    
        echo 'You will need to install acme script at the first time.'
        echo 'Please run acme.sh --install --email example@example.com'
        ;;
    "2")
        echo -e "\033[1mOPTIONS\033[0m" 
        echow '-D, --domain [DOMAIN_NAME]'         
        echo "${EPACE}${EPACE}Example: acme.sh --domain example.com"
        echo "${EPACE}${EPACE}will auto detect and apply for both example.com and www.example.com domains."
        echow '-H, --help'
        echo "${EPACE}${EPACE}Display help and exit."
        echo -e "\033[1m   Only for the First time\033[0m"
        echow '--install --email [EMAIL_ADDR]'
        echo "${EPACE}${EPACE}Will install ACME with the Email provided"       
        echow '-r, --renew'
        echo "${EPACE}${EPACE}Renew a specific domain with -D or --domain parameter if posibile. To force renew, use -f parameter."
        echow '-R, --renew-all'
        echo "${EPACE}${EPACE}Renew all domains if possible. To force renew, use -f parameter."
        echow '-f, -F, --force'
        echo "${EPACE}${EPACE}Force renew for a specific domain or all domains."
        exit 0
        ;;
    "3")
        echo 'Please run acme.sh --domain [DOMAIN_NAME] to apply certificate'
        exit 0
        ;;
    esac
}

check_input(){
    if [ -z "${1}" ]; then
        help_message 2
    fi
}

domain_filter(){
    if [ -z "${1}" ]; then
        help_message 3
    fi
    DOMAIN="${1}"
    DOMAIN="${DOMAIN#http://}"
    DOMAIN="${DOMAIN#https://}"
    DOMAIN="${DOMAIN#ftp://}"
    DOMAIN="${DOMAIN#scp://}"
    DOMAIN="${DOMAIN#scp://}"
    DOMAIN="${DOMAIN#sftp://}"
    DOMAIN=${DOMAIN%%/*}
}

email_filter(){
    CKREG="^[a-z0-9!#\$%&'*+/=?^_\`{|}~-]+(\.[a-z0-9!#$%&'*+/=?^_\`{|}~-]+)*@([a-z0-9]([a-z0-9-]*[a-z0-9])?\.)+[a-z0-9]([a-z0-9-]*[a-z0-9])?\$"
    if [[ "${1}" =~ ${CKREG} ]] ; then
        echo -e "[O] The E-mail \033[32m${1}\033[0m is valid."
    else
        echo -e "[X] The E-mail \e[31m${1}\e[39m is invalid"
        exit 1
    fi
}

cert_hook(){
    echo '[Start] Adding ACME hook'
    docker-compose exec ${CONT_NAME} su -s /bin/bash -c "certhookctl.sh"
    echo '[End] Adding ACME hook'
}

www_domain(){
    CHECK_WWW=$(echo ${1} | cut -c1-4)
    if [[ ${CHECK_WWW} == www. ]] ; then
        DOMAIN=$(echo ${1} | cut -c 5-)
    else
        DOMAIN=${1}    
    fi
    WWW_DOMAIN="www.${DOMAIN}"
}

domain_verify(){
    curl -Is http://${DOMAIN}/ | grep -i LiteSpeed > /dev/null 2>&1
    if [ ${?} = 0 ]; then
        echo -e "[O] The domain name \033[32m${DOMAIN}\033[0m is accessible."
        TYPE=1
        curl -Is http://${WWW_DOMAIN}/ | grep -i LiteSpeed > /dev/null 2>&1
        if [ ${?} = 0 ]; then
            echo -e "[O] The domain name \033[32m${WWW_DOMAIN}\033[0m is accessible."
            TYPE=2
        else
            echo -e "[!] The domain name ${WWW_DOMAIN} is inaccessible." 
        fi
    else
        echo -e "[X] The domain name \e[31m${DOMAIN}\e[39m is inaccessible, please verify."
        exit 1    
    fi
}

install_acme(){
    echo '[Start] Install ACME'
    if [ "${1}" = 'true' ]; then
        docker-compose exec litespeed su -c "cd; wget ${ACME_SRC}; chmod 755 acme.sh; \
        ./acme.sh --install --cert-home  ~/.acme.sh/certs; \
        rm ~/acme.sh"
    elif [ "${2}" != '' ]; then
        email_filter "${2}"
        docker-compose exec litespeed su -c "cd; wget ${ACME_SRC}; chmod 755 acme.sh; \
        ./acme.sh --install --cert-home  ~/.acme.sh/certs --accountemail  ${2}; \
        rm ~/acme.sh"
    else
        help_message 1
        exit 1
    fi
    echo '[End] Install ACME'
}

uninstall_acme(){
    echo '[Start] Uninstall ACME'
    docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --uninstall"
    echo '[End] Uninstall ACME'
    exit 0
}    

check_acme(){
    echo '[Start] Checking ACME'
    docker-compose exec ${CONT_NAME} su -c "test -f /root/.acme.sh/acme.sh"
    if [ ${?} != 0 ]; then
        install_acme "${NO_EMAIL}" "${EMAIL}"
        cert_hook
        help_message 3
    fi
    echo '[End] Checking ACME'
}

lsws_restart(){
    docker-compose exec ${CONT_NAME} su -c '/usr/local/lsws/bin/lswsctrl restart >/dev/null'
}

doc_root_verify(){
    if [ "${DOC_ROOT}" = '' ]; then
        DOC_PATH="/var/www/vhosts/${1}/html"
    else
        DOC_PATH="${DOC_ROOT}"    
    fi
    docker-compose exec ${CONT_NAME} su -c "[ -e ${DOC_PATH} ]"
    if [ ${?} -eq 0 ]; then
        echo -e "[O] The document root folder \033[32m${DOC_PATH}\033[0m does exist."
    else
        echo -e "[X] The document root folder \e[31m${DOC_PATH}\e[39m does not exist!"
        exit 1
    fi
}

install_cert(){
    echo '[Start] Apply Lets Encrypt Certificate'
    if [ ${TYPE} = 1 ]; then
        docker-compose exec ${CONT_NAME} su -c "/root/.acme.sh/acme.sh --issue -d ${1} -w ${DOC_PATH}"
    elif [ ${TYPE} = 2 ]; then
        docker-compose exec ${CONT_NAME} su -c "/root/.acme.sh/acme.sh --issue -d ${1} -d www.${1} -w ${DOC_PATH}"
    else
        echo 'unknown Type!'
        exit 2
    fi
    echo '[End] Apply Lets Encrypt Certificate'
}

renew_acme(){
    echo '[Start] Renew ACME'
    if [ "${FORCE}" = 'true' ]; then
        docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew --domain ${1} --force"
    else
        docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew --domain ${1}"
    fi
    echo '[End] Renew ACME'
    lsws_restart
}

renew_all_acme(){
    echo '[Start] Renew all ACME'
    if [ "${FORCE}" = 'true' ]; then
        docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew-all --force"
    else
        docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew-all"
    fi
    echo '[End] Renew all ACME'
    lsws_restart
}

main(){
    if [ "${RENEW_ALL}" = 'true' ]; then
        renew_all_acme
        exit 0
    elif [ "${RENEW}" = 'true' ]; then
        renew_acme ${DOMAIN}
        exit 0
    fi

    check_acme
    domain_filter ${DOMAIN}
    www_domain ${DOMAIN}
    domain_verify
    doc_root_verify ${DOMAIN}
    install_cert ${DOMAIN}
    lsws_restart
}

check_input ${1}
while [ ! -z "${1}" ]; do
    case ${1} in
        -[hH] | -help | --help)
            help_message 2
            ;;
        -[dD] | -domain | --domain) shift
            check_input "${1}"
            DOMAIN="${1}"
            ;;
        -[iI] | --install ) 
            INSTALL=true
            ;;
        -[uU] | --uninstall )
            UNINSTALL=true
            uninstall_acme
            ;;
        -[fF] | --force ) 
            FORCE=true
            ;;
        -[r] | --renew )
            RENEW=true
            ;;
        -[R] | --renew-all )
            RENEW_ALL=true
            ;;
        -[eE] | --email ) shift
            check_input "${1}"
            EMAIL="${1}"
            ;;           
        *) 
            help_message 2
            ;;              
    esac
    shift
done

main
cleaning yml, adding acme.sh 5 years ago			`#!/usr/bin/env bash`
Test acme script and persistent certs 5 years ago			`EMAIL=''`
			`NO_EMAIL=''`
Ability to issue certs using acme.sh 5 years ago			`DOMAIN=''`
acme scrip add 5 years ago			`INSTALL=''`
			`UNINSTALL=''`
			`TYPE=0`
			`CONT_NAME='litespeed'`
			`ACME_SRC='https://raw.githubusercontent.com/Neilpang/acme.sh/master/acme.sh'`
help msg update 5 years ago			`EPACE=' '`
add ssl renwal 3 years ago			`RENEW=''`
			`RENEW_ALL=''`
			`FORCE=''`
help msg update 5 years ago
			`echow(){`
			`FLAG=${1}`
			`shift`
			`echo -e "\033[1m${EPACE}${FLAG}\033[0m${@}"`
			`}`
cleaning yml, adding acme.sh 5 years ago
Test acme script and persistent certs 5 years ago			`help_message(){`
acme scrip add 5 years ago			`case ${1} in`
			`"1")`
			`echo 'You will need to install acme script at the first time.'`
			`echo 'Please run acme.sh --install --email example@example.com'`
			`;;`
help msg update 5 years ago			`"2")`
			`echo -e "\033[1mOPTIONS\033[0m"`
			`echow '-D, --domain [DOMAIN_NAME]'`
			`echo "${EPACE}${EPACE}Example: acme.sh --domain example.com"`
			`echo "${EPACE}${EPACE}will auto detect and apply for both example.com and www.example.com domains."`
			`echow '-H, --help'`
			`echo "${EPACE}${EPACE}Display help and exit."`
			`echo -e "\033[1m Only for the First time\033[0m"`
			`echow '--install --email [EMAIL_ADDR]'`
force mail 4 years ago			`echo "${EPACE}${EPACE}Will install ACME with the Email provided"`
allow dynamic -f parameter 3 years ago			`echow '-r, --renew'`
			`echo "${EPACE}${EPACE}Renew a specific domain with -D or --domain parameter if posibile. To force renew, use -f parameter."`
			`echow '-R, --renew-all'`
			`echo "${EPACE}${EPACE}Renew all domains if possible. To force renew, use -f parameter."`
			`echow '-f, -F, --force'`
			`echo "${EPACE}${EPACE}Force renew for a specific domain or all domains."`
acme scrip add 5 years ago			`exit 0`
			`;;`
			`"3")`
msg update 5 years ago			`echo 'Please run acme.sh --domain [DOMAIN_NAME] to apply certificate'`
acme scrip add 5 years ago			`exit 0`
			`;;`
			`esac`
Test acme script and persistent certs 5 years ago			`}`

			`check_input(){`
			`if [ -z "${1}" ]; then`
acme scrip add 5 years ago			`help_message 2`
			`fi`
			`}`

			`domain_filter(){`
			`if [ -z "${1}" ]; then`
			`help_message 3`
Test acme script and persistent certs 5 years ago			`fi`
acme scrip add 5 years ago			`DOMAIN="${1}"`
			`DOMAIN="${DOMAIN#http://}"`
			`DOMAIN="${DOMAIN#https://}"`
			`DOMAIN="${DOMAIN#ftp://}"`
			`DOMAIN="${DOMAIN#scp://}"`
			`DOMAIN="${DOMAIN#scp://}"`
			`DOMAIN="${DOMAIN#sftp://}"`
			`DOMAIN=${DOMAIN%%/*}`
Test acme script and persistent certs 5 years ago			`}`

acme scrip add 5 years ago			`email_filter(){`
			CKREG="^[a-z0-9!#\$%&'+/=?^_\`{\|}~-]+(\.[a-z0-9!#$%&'+/=?^_\`{\|}~-]+)@([a-z0-9]([a-z0-9-][a-z0-9])?\.)+[a-z0-9]([a-z0-9-]*[a-z0-9])?\$"
			`if [[ "${1}" =~ ${CKREG} ]] ; then`
			`echo -e "[O] The E-mail \033[32m${1}\033[0m is valid."`
			`else`
			`echo -e "[X] The E-mail \e[31m${1}\e[39m is invalid"`
Test acme script and persistent certs 5 years ago			`exit 1`
			`fi`
			`}`

acme scrip add 5 years ago			`cert_hook(){`
			`echo '[Start] Adding ACME hook'`
			`docker-compose exec ${CONT_NAME} su -s /bin/bash -c "certhookctl.sh"`
			`echo '[End] Adding ACME hook'`
			`}`

			`www_domain(){`
			`CHECK_WWW=$(echo ${1} \| cut -c1-4)`
			`if [[ ${CHECK_WWW} == www. ]] ; then`
			`DOMAIN=$(echo ${1} \| cut -c 5-)`
			`else`
			`DOMAIN=${1}`
			`fi`
			`WWW_DOMAIN="www.${DOMAIN}"`
			`}`

			`domain_verify(){`
			`curl -Is http://${DOMAIN}/ \| grep -i LiteSpeed > /dev/null 2>&1`
			`if [ ${?} = 0 ]; then`
			`echo -e "[O] The domain name \033[32m${DOMAIN}\033[0m is accessible."`
			`TYPE=1`
			`curl -Is http://${WWW_DOMAIN}/ \| grep -i LiteSpeed > /dev/null 2>&1`
			`if [ ${?} = 0 ]; then`
			`echo -e "[O] The domain name \033[32m${WWW_DOMAIN}\033[0m is accessible."`
			`TYPE=2`
Test acme script and persistent certs 5 years ago			`else`
acme scrip add 5 years ago			`echo -e "[!] The domain name ${WWW_DOMAIN} is inaccessible."`
Test acme script and persistent certs 5 years ago			`fi`
acme scrip add 5 years ago			`else`
			`echo -e "[X] The domain name \e[31m${DOMAIN}\e[39m is inaccessible, please verify."`
			`exit 1`
			`fi`
			`}`
Test acme script and persistent certs 5 years ago
acme scrip add 5 years ago			`install_acme(){`
			`echo '[Start] Install ACME'`
			`if [ "${1}" = 'true' ]; then`
			`docker-compose exec litespeed su -c "cd; wget ${ACME_SRC}; chmod 755 acme.sh; \`
			`./acme.sh --install --cert-home ~/.acme.sh/certs; \`
			`rm ~/acme.sh"`
			`elif [ "${2}" != '' ]; then`
			`email_filter "${2}"`
			`docker-compose exec litespeed su -c "cd; wget ${ACME_SRC}; chmod 755 acme.sh; \`
			`./acme.sh --install --cert-home ~/.acme.sh/certs --accountemail ${2}; \`
			`rm ~/acme.sh"`
			`else`
			`help_message 1`
			`exit 1`
			`fi`
			`echo '[End] Install ACME'`
Test acme script and persistent certs 5 years ago			`}`

acme scrip add 5 years ago			`uninstall_acme(){`
			`echo '[Start] Uninstall ACME'`
			`docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --uninstall"`
			`echo '[End] Uninstall ACME'`
			`exit 0`
			`}`
Ability to issue certs using acme.sh 5 years ago
acme scrip add 5 years ago			`check_acme(){`
			`echo '[Start] Checking ACME'`
			`docker-compose exec ${CONT_NAME} su -c "test -f /root/.acme.sh/acme.sh"`
			`if [ ${?} != 0 ]; then`
			`install_acme "${NO_EMAIL}" "${EMAIL}"`
			`cert_hook`
			`help_message 3`
			`fi`
			`echo '[End] Checking ACME'`
Ability to issue certs using acme.sh 5 years ago			`}`
Test acme script and persistent certs 5 years ago
acme scrip add 5 years ago			`lsws_restart(){`
			`docker-compose exec ${CONT_NAME} su -c '/usr/local/lsws/bin/lswsctrl restart >/dev/null'`
			`}`

			`doc_root_verify(){`
			`if [ "${DOC_ROOT}" = '' ]; then`
			`DOC_PATH="/var/www/vhosts/${1}/html"`
Test acme script and persistent certs 5 years ago			`else`
acme scrip add 5 years ago			`DOC_PATH="${DOC_ROOT}"`
			`fi`
			`docker-compose exec ${CONT_NAME} su -c "[ -e ${DOC_PATH} ]"`
			`if [ ${?} -eq 0 ]; then`
			`echo -e "[O] The document root folder \033[32m${DOC_PATH}\033[0m does exist."`
			`else`
			`echo -e "[X] The document root folder \e[31m${DOC_PATH}\e[39m does not exist!"`
			`exit 1`
Test acme script and persistent certs 5 years ago			`fi`
acme scrip add 5 years ago			`}`

			`install_cert(){`
			`echo '[Start] Apply Lets Encrypt Certificate'`
			`if [ ${TYPE} = 1 ]; then`
			`docker-compose exec ${CONT_NAME} su -c "/root/.acme.sh/acme.sh --issue -d ${1} -w ${DOC_PATH}"`
			`elif [ ${TYPE} = 2 ]; then`
			`docker-compose exec ${CONT_NAME} su -c "/root/.acme.sh/acme.sh --issue -d ${1} -d www.${1} -w ${DOC_PATH}"`
			`else`
			`echo 'unknown Type!'`
			`exit 2`
			`fi`
			`echo '[End] Apply Lets Encrypt Certificate'`
			`}`

add ssl renwal 3 years ago			`renew_acme(){`
			`echo '[Start] Renew ACME'`
			`if [ "${FORCE}" = 'true' ]; then`
			`docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew --domain ${1} --force"`
			`else`
			`docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew --domain ${1}"`
			`fi`
			`echo '[End] Renew ACME'`
			`lsws_restart`
			`}`

			`renew_all_acme(){`
			`echo '[Start] Renew all ACME'`
			`if [ "${FORCE}" = 'true' ]; then`
			`docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew-all --force"`
			`else`
			`docker-compose exec ${CONT_NAME} su -c "~/.acme.sh/acme.sh --renew-all"`
			`fi`
			`echo '[End] Renew all ACME'`
			`lsws_restart`
			`}`

acme scrip add 5 years ago			`main(){`
allow dynamic -f parameter 3 years ago			`if [ "${RENEW_ALL}" = 'true' ]; then`
			`renew_all_acme`
			`exit 0`
			`elif [ "${RENEW}" = 'true' ]; then`
			`renew_acme ${DOMAIN}`
			`exit 0`
			`fi`

acme scrip add 5 years ago			`check_acme`
			`domain_filter ${DOMAIN}`
			`www_domain ${DOMAIN}`
			`domain_verify`
			`doc_root_verify ${DOMAIN}`
Ability to issue certs using acme.sh 5 years ago			`install_cert ${DOMAIN}`
acme scrip add 5 years ago			`lsws_restart`
Test acme script and persistent certs 5 years ago			`}`

			`check_input ${1}`
			`while [ ! -z "${1}" ]; do`
			`case ${1} in`
			`-[hH] \| -help \| --help)`
acme scrip add 5 years ago			`help_message 2`
Test acme script and persistent certs 5 years ago			`;;`
help msg update 5 years ago			`-[dD] \| -domain \| --domain) shift`
Test acme script and persistent certs 5 years ago			`check_input "${1}"`
			`DOMAIN="${1}"`
			`;;`
help msg update 5 years ago			`-[iI] \| --install )`
Test acme script and persistent certs 5 years ago			`INSTALL=true`
			`;;`
help msg update 5 years ago			`-[uU] \| --uninstall )`
acme scrip add 5 years ago			`UNINSTALL=true`
			`uninstall_acme`
add ssl renwal 3 years ago			`;;`
			`-[fF] \| --force )`
			`FORCE=true`
			`;;`
			`-[r] \| --renew )`
allow dynamic -f parameter 3 years ago			`RENEW=true`
add ssl renwal 3 years ago			`;;`
			`-[R] \| --renew-all )`
			`RENEW_ALL=true`
			`;;`
help msg update 5 years ago			`-[eE] \| --email ) shift`
Test acme script and persistent certs 5 years ago			`check_input "${1}"`
			`EMAIL="${1}"`
force mail 4 years ago			`;;`
Test acme script and persistent certs 5 years ago			`*)`
acme scrip add 5 years ago			`help_message 2`
Test acme script and persistent certs 5 years ago			`;;`
			`esac`
			`shift`
			`done`

			`main`