You can not select more than 25 topics
			Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
		
		
		
		
		
			
		
			
				
					118 lines
				
				3.5 KiB
			
		
		
			
		
	
	
					118 lines
				
				3.5 KiB
			| 
											2 years ago
										 | #!/bin/bash | ||
|  | # info: deleting letsencrypt ssl cetificate for domain | ||
|  | # options: USER DOMAIN [RESTART] [MAIL] | ||
|  | # | ||
|  | # example: v-delete-letsencrypt-domain admin acme.com yes | ||
|  | # | ||
|  | # This function turns off letsencrypt SSL support for a domain. | ||
|  | 
 | ||
|  | #----------------------------------------------------------# | ||
|  | #                Variables & Functions                     # | ||
|  | #----------------------------------------------------------# | ||
|  | 
 | ||
|  | # Argument definition | ||
|  | user=$1 | ||
|  | domain=$2 | ||
|  | restart=$3 | ||
|  | mail=$4 | ||
|  | 
 | ||
|  | # Includes | ||
|  | # shellcheck source=/etc/hestiacp/hestia.conf | ||
|  | source /etc/hestiacp/hestia.conf | ||
|  | # shellcheck source=/usr/local/hestia/func/main.sh | ||
|  | source $HESTIA/func/main.sh | ||
|  | # shellcheck source=/usr/local/hestia/func/domain.sh | ||
|  | source $HESTIA/func/domain.sh | ||
|  | # load config file | ||
|  | source_conf "$HESTIA/conf/hestia.conf" | ||
|  | 
 | ||
|  | #----------------------------------------------------------# | ||
|  | #                    Verifications                         # | ||
|  | #----------------------------------------------------------# | ||
|  | 
 | ||
|  | check_args '2' "$#" 'USER DOMAIN [RESTART] [MAIL]' | ||
|  | is_format_valid 'user' 'domain' | ||
|  | is_system_enabled "$WEB_SYSTEM" 'WEB_SYSTEM' | ||
|  | is_system_enabled "$WEB_SSL" 'SSL_SUPPORT' | ||
|  | is_object_valid 'user' 'USER' "$user" | ||
|  | if [ -z "$mail" ]; then | ||
|  | 	is_object_valid 'web' 'DOMAIN' "$domain" | ||
|  | 	is_object_unsuspended 'web' 'DOMAIN' "$domain" | ||
|  | 	is_object_value_exist 'web' 'DOMAIN' "$domain" '$LETSENCRYPT' | ||
|  | else | ||
|  | 	is_object_valid 'mail' 'DOMAIN' "$domain" | ||
|  | 	is_object_unsuspended 'mail' 'DOMAIN' "$domain" | ||
|  | 	is_object_value_exist 'mail' 'DOMAIN' "$domain" '$LETSENCRYPT' | ||
|  | fi | ||
|  | 
 | ||
|  | # Perform verification if read-only mode is enabled | ||
|  | check_hestia_demo_mode | ||
|  | 
 | ||
|  | #----------------------------------------------------------# | ||
|  | #                       Action                             # | ||
|  | #----------------------------------------------------------# | ||
|  | 
 | ||
|  | # Delete DNS CAA record | ||
|  | if [ -n "$DNS_SYSTEM" ]; then | ||
|  | 	dns_domain=$($BIN/v-list-dns-domains "$user" | grep "$domain" | cut -d' ' -f1) | ||
|  | 	caa_record=$($BIN/v-list-dns-records "$user" "$domain" | grep -i "letsencrypt" | cut -d' ' -f1) | ||
|  | 
 | ||
|  | 	if [ "$dns_domain" = "$domain" ]; then | ||
|  | 		if [ -n "$caa_record" ]; then | ||
|  | 			if [ -z "$mail" ]; then | ||
|  | 				mail_exists=$(is_object_value_exist 'mail' 'DOMAIN' "$domain" '$LETSENCRYPT') | ||
|  | 				if [ "$mail_exists" != '' ]; then | ||
|  | 					$BIN/v-delete-dns-record "$user" "$domain" "$caa_record" | ||
|  | 				fi | ||
|  | 			else | ||
|  | 				web_exists=$(is_object_value_exist 'web' 'DOMAIN' "$domain" '$LETSENCRYPT') | ||
|  | 				if [ "$web_exists" != '' ]; then | ||
|  | 					$BIN/v-delete-dns-record "$user" "$domain" "$caa_record" | ||
|  | 				fi | ||
|  | 			fi | ||
|  | 		fi | ||
|  | 	fi | ||
|  | fi | ||
|  | 
 | ||
|  | # Delete SSL | ||
|  | if [ -z "$mail" ]; then | ||
|  | 	$BIN/v-delete-web-domain-ssl "$user" "$domain" "$restart" > /dev/null 2>&1 | ||
|  | else | ||
|  | 	$BIN/v-delete-mail-domain-ssl "$user" "$domain" "$restart" > /dev/null 2>&1 | ||
|  | fi | ||
|  | 
 | ||
|  | if [ $? -ne "$E_NOTEXIST" ]; then | ||
|  | 	check_result $? "SSL delete" > /dev/null | ||
|  | fi | ||
|  | 
 | ||
|  | #----------------------------------------------------------# | ||
|  | #                       Hestia                             # | ||
|  | #----------------------------------------------------------# | ||
|  | 
 | ||
|  | # Updating letsencrypt flag | ||
|  | if [ -z "$mail" ]; then | ||
|  | 	update_object_value 'web' 'DOMAIN' "$domain" '$LETSENCRYPT' 'no' | ||
|  | else | ||
|  | 	update_object_value 'mail' 'DOMAIN' "$domain" '$LETSENCRYPT' 'no' | ||
|  | fi | ||
|  | 
 | ||
|  | # Restarting web | ||
|  | $BIN/v-restart-web "$restart" | ||
|  | check_result $? "Web restart failed" > /dev/null | ||
|  | 
 | ||
|  | if [ -n "$PROXY_SYSTEM" ]; then | ||
|  | 	$BIN/v-restart-web "$restart" > /dev/null | ||
|  | 	check_result $? "Proxy restart failed" > /dev/null | ||
|  | fi | ||
|  | 
 | ||
|  | if [ -n "$mail" ]; then | ||
|  | 	# Restarting mail | ||
|  | 	$BIN/v-restart-mail "$restart" | ||
|  | 	check_result $? "Mail restart failed" > /dev/null | ||
|  | fi | ||
|  | 
 | ||
|  | # Logging | ||
|  | log_event "$OK" "$ARGUMENTS" | ||
|  | 
 | ||
|  | exit |