koenrh/dnscontrol-action
1
1
Fork 0
mirror of https://github.com/koenrh/dnscontrol-action.git synced 2024-09-20 12:05:57 +08:00
Code Issues Packages Projects Releases Wiki Activity
dnscontrol-action/entrypoint.sh
Koen Rouwhorst df979a15b8 Add support for Internet.bs provider
2020-02-15 17:03:49 +01:00

235 lines
8.9 KiB
Bash
Executable file
Raw Blame History

#!/usr/bin/env bash
set -eo pipefail
# NOTE: DNSControl requires a credentials file on disk. See: https://git.io/fhIb3
echo "{}" > creds.json
add_key () {
# shellcheck disable=SC2094
cat <<< "$(jq "$1 = \"$2\"" < creds.json)" > creds.json
}
AZURE_SUBSCRIPTION_ID="${INPUT_AZURESUBSCRIPTIONID:-$AZURE_SUBSCRIPTION_ID}"
AZURE_RESOURCE_GROUP="${INPUT_AZURERESOURCEGROUP:-$AZURE_RESOURCE_GROUP}"
AZURE_TENANT_ID="${INPUT_AZURETENANTID:-$AZURE_TENANT_ID}"
AZURE_CLIENT_ID="${INPUT_AZURECLIENTID:-$AZURE_CLIENT_ID}"
AZURE_CLIENT_SECRET="${INPUT_AZURECLIENTSECRET:-$AZURE_CLIENT_SECRET}"
CLOUDFLARE_API_TOKEN="${INPUT_CLOUDFLAREAPITOKEN:-$CLOUDFLARE_API_TOKEN}"
CLOUDFLARE_API_USER="${INPUT_CLOUDFLAREAPIUSER:-$CLOUDFLARE_API_USER}"
CLOUDFLARE_API_KEY="${INPUT_CLOUDFLAREAPIKEY:-$CLOUDFLARE_API_KEY}"
CLOUDFLARE_ACCOUNT_ID="${INPUT_CLOUDFLAREACCOUNTID:-$CLOUDFLARE_ACCOUNT_ID}"
CLOUDFLARE_ACCOUNT_NAME="${INPUT_CLOUDFLAREACCOUNTNAME:-$CLOUDFLARE_ACCOUNT_NAME}"
CLOUDNS_AUTH_ID="${INPUT_CLOUDNSAUTHID:-$CLOUDNS_AUTH_ID}"
CLOUDNS_AUTH_PASSWORD="${INPUT_CLOUDNSPASSWORD:-$CLOUDNS_AUTH_PASSWORD}"
DIGITALOCEAN_OAUTH_TOKEN="${INPUT_DIGITALOCEANOAUTHTOKEN:-$DIGITALOCEAN_OAUTH_TOKEN}"
DNSIMPLE_ACCOUNT_ACCESS_TOKEN="${INPUT_DNSIMPLEACCOUNTACCESSTOKEN:-$DNSIMPLE_ACCOUNT_ACCESS_TOKEN}"
GANDI_API_KEY="${INPUT_GANDIAPIKEY:-$GANDI_API_KEY}"
GANDI_V5_API_KEY="${INPUT_GANDIV5APIKEY:-$GANDI_V5_API_KEY}"
GANDI_V5_SHARING_ID="${INPUT_GANDIV5SHARINGID:-$GANDI_V5_SHARING_ID}"
GOOGLE_CLOUD_PROJECT_ID="${INPUT_GOOGLECLOUDPROJECTID:-$GOOGLE_CLOUD_PROJECT_ID}"
GOOGLE_CLOUD_PRIVATE_KEY_ID="${INPUT_GOOGLECLOUDPRIVATEKEYID:-$GOOGLE_CLOUD_PRIVATE_KEY_ID}"
GOOGLE_CLOUD_PRIVATE_KEY="${INPUT_GOOGLECLOUDPRIVATEKEY:-$GOOGLE_CLOUD_PRIVATE_KEY}"
GOOGLE_CLOUD_CLIENT_EMAIL="${INPUT_GOOGLECLOUDCLIENTEMAIL:-$GOOGLE_CLOUD_CLIENT_EMAIL}"
GOOGLE_CLOUD_CLIENT_ID="${INPUT_GOOGLECLOUDCLIENTID:-$GOOGLE_CLOUD_CLIENT_ID}"
GOOGLE_CLOUD_CLIENT_X509_CERT_URL="${INPUT_GOOGLECLOUDCLIENTX509CERTURL:-$GOOGLE_CLOUD_CLIENT_X509_CERT_URL}"
INTERNETBS_API_KEY="${INPUT_INTERNETBSAPIKEY:-$INTERNETBS_API_KEY}"
INTERNETBS_PASSWORD="${INPUT_INTERNETBSPASSWORD:-$INTERNETBS_PASSWORD}"
LINODE_ACCESS_TOKEN="${INPUT_LINODEACCESSTOKEN:-$LINODE_ACCESS_TOKEN}"
NAME_COM_API_USER="${INPUT_NAMECOMAPIUSER:-$NAME_COM_API_USER}"
NAME_COM_API_KEY="${INPUT_NAMECOMAPIKEY:-$NAME_COM_API_KEY}"
NAME_COM_API_URL="${INPUT_NAMECOMAPIURL:-$NAME_COM_API_URL}"
NAMECHEAP_API_USER="${INPUT_NAMECOMAPIUSER:-$NAME_COM_API_USER}"
NAMECHEAP_API_KEY="${INPUT_NAMECOMAPIKEY:-$NAME_COM_API_KEY}"
NAMECHEAP_BASE_URL="${INPUT_NAMECOMBASEURL:-$NAME_COM_BASE_URL}"
NSONE_API_KEY="${INPUT_NSONEAPIKEY:-$NSONE_API_KEY}"
OVH_APP_KEY="${INPUT_OVHAPPKEY:-$OVH_APP_KEY}"
OVH_APP_SECRET_KEY="${INPUT_OVHAPPSECRETKEY:-$OVH_APP_SECRET_KEY}"
OVH_CONSUMER_KEY="${INPUT_OVHCONSUMERKEY:-$OVH_CONSUMER_KEY}"
AWS_ACCESS_KEY_ID="${INPUT_AWSACCESSKEYID:-$AWS_ACCESS_KEY_ID}"
AWS_SECRET_ACCESS_KEY="${INPUT_AWSSECRETACCESSKEYID:-$AWS_SECRET_ACCESS_KEY}"
AWS_SESSION_TOKEN="${INPUT_AWSSESSIONTOKEN:-$AWS_SESSION_TOKEN}"
SOFTLAYER_USERNAME="${INPUT_SOFTLAYERUSERNAME:-$SOFTLAYER_USERNAME}"
SOFTLAYER_API_KEY="${INPUT_SOFTLAYERAPIKEY:-$SOFTLAYER_API_KEY}"
VULTR_TOKEN="${INPUT_VULTRTOKEN:-$VULTR_TOKEN}"
if [[ -n "$AZURE_SUBSCRIPTION_ID" && -n "$AZURE_RESOURCE_GROUP"
&& -n "$AZURE_TENANT_ID" && -n "$AZURE_CLIENT_ID" && -n "$AZURE_CLIENT_SECRET" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/azuredns
add_key ".azuredns_main.SubscriptionID" "\$AZURE_SUBSCRIPTION_ID"
add_key ".azuredns_main.ResourceGroup" "\$AZURE_RESOURCE_GROUP"
add_key ".azuredns_main.TenantID" "\$AZURE_TENANT_ID"
add_key ".azuredns_main.ClientID" "\$AZURE_CLIENT_ID"
add_key ".azuredns_main.ClientSecret" "\$AZURE_CLIENT_SECRET"
fi
if [[ -n "$CLOUDFLARE_API_TOKEN" ]]
then
add_key ".cloudflare.apitoken" "\$CLOUDFLARE_API_TOKEN"
# NOTE: https://stackexchange.github.io/dnscontrol/providers/cloudflare
if [[ -n "$CLOUDFLARE_ACCOUNT_ID" && -n "$CLOUDFLARE_ACCOUNT_NAME" ]]
then
add_key ".cloudflare.accountid" "\$CLOUDFLARE_ACCOUNT_ID"
add_key ".cloudflare.accountname" "\$CLOUDFLARE_ACCOUNT_NAME"
fi
# NOTE: Using the Cloudflare global API key is discouraged as that gives full
# access to your Cloudflare account.
elif [[ -n "$CLOUDFLARE_API_USER" && -n "$CLOUDFLARE_API_KEY" ]]
then
add_key ".cloudflare.apiuser" "\$CLOUDFLARE_API_USER"
add_key ".cloudflare.apikey" "\$CLOUDFLARE_API_KEY"
# NOTE: https://stackexchange.github.io/dnscontrol/providers/cloudflare
if [[ -n "$CLOUDFLARE_ACCOUNT_ID" && -n "$CLOUDFLARE_ACCOUNT_NAME" ]]
then
add_key ".cloudflare.accountid" "\$CLOUDFLARE_ACCOUNT_ID"
add_key ".cloudflare.accountname" "\$CLOUDFLARE_ACCOUNT_NAME"
fi
fi
if [[ -n "$CLOUDNS_AUTH_ID" && -n "$CLOUDNS_AUTH_PASSWORD" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/cloudns
add_key ".cloudns.auth-id" "\$CLOUDNS_AUTH_ID"
add_key ".cloudns.auth-password" "\$CLOUDNS_AUTH_PASSWORD"
fi
if [[ -n "$DIGITALOCEAN_OAUTH_TOKEN" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/digitalocean
add_key ".digitalocean.token" "\$DIGITALOCEAN_OAUTH_TOKEN"
fi
if [[ -n "$DNSIMPLE_ACCOUNT_ACCESS_TOKEN" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/dnsimple
add_key ".dnsimple.token" "\$DNSIMPLE_ACCOUNT_ACCESS_TOKEN"
fi
if [[ -n "$GANDI_API_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/gandi
add_key ".gandi.apikey" "\$GANDI_API_KEY"
fi
if [[ -n "$GANDI_V5_API_KEY" && -n "$GANDI_V5_SHARING_ID" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/gandi_v5
add_key ".gandi_v5.apikey" "\$GANDI_V5_API_KEY"
add_key ".gandi_v5.sharing_id" "\$GANDI_V5_SHARING_ID"
fi
if [[ -n "$GOOGLE_CLOUD_PROJECT_ID" && -n "$GOOGLE_CLOUD_PRIVATE_KEY_ID"
&& -n "$GOOGLE_CLOUD_PRIVATE_KEY" && -n "$GOOGLE_CLOUD_CLIENT_EMAIL"
&& -n "$GOOGLE_CLOUD_CLIENT_ID" && -n "$GOOGLE_CLOUD_CLIENT_X509_CERT_URL" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/gcloud
add_key ".gcloud.type" "service_account"
add_key ".gcloud.project_id": "\$GOOGLE_CLOUD_PROJECT_ID"
add_key ".gcloud.private_key_id": "\$GOOGLE_CLOUD_PRIVATE_KEY_ID"
add_key ".gcloud.private_key": "\$GOOGLE_CLOUD_PRIVATE_KEY"
add_key ".gcloud.client_email": "\$GOOGLE_CLOUD_CLIENT_EMAIL"
add_key ".gcloud.client_id": "\$GOOGLE_CLOUD_CLIENT_ID"
add_key ".gcloud.auth_uri": "https://accounts.google.com/o/oauth2/auth"
add_key ".gcloud.token_uri": "https://accounts.google.com/o/oauth2/token"
add_key ".gcloud.auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs"
add_key ".gcloud.client_x509_cert_url": "\$GOOGLE_CLOUD_CLIENT_X509_CERT_URL"
fi
if [[ -n "$INTERNETBS_API_KEY" && -n "$INTERNETBS_PASSWORD" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/internetbs
add_key ".internetbs.api-key" "\$INTERNETBS_API_KEY"
add_key ".intenretbs.password" "\$INTERNETBS_PASSWORD"
fi
if [[ -n "$LINODE_ACCESS_TOKEN" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/linode
add_key ".linode.token" "\$LINODE_ACCESS_TOKEN"
fi
if [[ -n "$NAME_COM_API_USER" && -n "$NAME_COM_API_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/name.com<Paste>
add_key ".[\"name.com\"].apiuser" "\$NAME_COM_API_USER"
add_key ".[\"name.com\"].apikey" "\$NAME_COM_API_KEY"
if [[ -n "$NAME_COM_API_URL" ]]
then
add_key ".[\"name.com\"].apiurl" "\$NAME_COM_API_URL"
fi
fi
if [[ -n "$NAMECHEAP_API_USER" && -n "$NAMECHEAP_API_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/namecheap
add_key ".namecheap.apiuser" "\$NAMECHEAP_API_USER"
add_key ".namecheap.apikey" "\$NAMECHEAP_API_KEY"
if [[ -n "$NAMECHEAP_BASE_URL" ]]
then
add_key ".namecheap.BaseURL" "\$NAMECHEAP_BASE_URL"
fi
fi
if [[ -n "$NSONE_API_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/ns1
add_key ".ns1.api_token" "\$NSONE_API_KEY"
fi
if [[ -n "$OVH_APP_KEY" && -n "$OVH_APP_SECRET_KEY" && -n "$OVH_CONSUMER_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/ovh
add_key ".ovh.app-key" "\$OVH_APP_KEY"
add_key ".ovh.app-seret-key" "\$OVH_APP_SECRET_KEY"
add_key ".ovh.consumer-key" "\$OVH_CONSUMER_KEY"
fi
if [[ -n "$AWS_ACCESS_KEY_ID" && -n "$AWS_SECRET_ACCESS_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/route53
add_key ".r53.KeyId" "\$AWS_ACCESS_KEY_ID"
add_key ".r53.SecretKey" "\$AWS_SECRET_ACCESS_KEY"
if [[ -n "$AWS_SESSION_TOKEN" ]]
then
add_key ".r53.Token" "\$AWS_SESSION_TOKEN"
fi
fi
if [[ -n "$SOFTLAYER_USERNAME" && -n "$SOFTLAYER_API_KEY" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/softlayer
add_key ".softlayer.username" "\$SOFTLAYER_USERNAME"
add_key ".softlayer.api_key" "\$SOFTLAYER_API_KEY"
fi
if [[ -n "$VULTR_TOKEN" ]]
then
# NOTE: https://stackexchange.github.io/dnscontrol/providers/vultr
add_key ".vultr.token" "\$VULTR_TOKEN"
fi
sh -c "dnscontrol $*"
Reference in a new issue View git blame Copy permalink