#!/bin/bash
# info: list web domain ssl certificate
# options: USER DOMAIN [FORMAT]
#
# example: v-list-web-domain-ssl admin wonderland.com
#
# This function of obtaining domain ssl files.
#----------------------------------------------------------#
# Variables & Functions #
#----------------------------------------------------------#
# Argument definition
user=$1
domain=$2
format=${3-shell}
# Includes
# shellcheck source=/etc/hestiacp/hestia.conf
source /etc/hestiacp/hestia.conf
# shellcheck source=/usr/local/hestia/func/main.sh
source $HESTIA/func/main.sh
# load config file
source_conf "$HESTIA/conf/hestia.conf"
# JSON list function
json_list() {
issuer=$(echo "$issuer" | sed -e 's/"/\\"/g' -e "s/%quote%/'/g")
echo '{'
echo -e "\t\"$domain\": {"
echo " \"CRT\": \"$crt\","
echo " \"KEY\": \"$key\","
echo " \"CA\": \"$ca\","
echo " \"SUBJECT\": \"$subj\","
echo " \"ALIASES\": \"$alt_dns\","
echo " \"NOT_BEFORE\": \"$before\","
echo " \"NOT_AFTER\": \"$after\","
echo " \"SIGNATURE\": \"$signature\","
echo " \"PUB_KEY\": \"$pub_key\","
echo " \"ISSUER\": \"$issuer\","
echo " \"SSL_FORCE\": \"$SSL_FORCE\""
echo -e "\t}\n}"
}
# SHELL list function
shell_list() {
if [ -n "$crt" ]; then
echo -e "$crt"
fi
if [ -n "$key" ]; then
echo -e "\n$key"
fi
if [ -n "$ca" ]; then
echo -e "\n$ca"
fi
if [ -n "$crt" ]; then
echo
echo
echo "SUBJECT: $subj"
if [ -n "$alt_dns" ]; then
echo "ALIASES: ${alt_dns//,/ }"
fi
echo "VALID FROM: $before"
echo "VALID TIL: $after"
echo "SIGNATURE: $signature"
echo "PUB_KEY: $pub_key"
echo "ISSUER: $issuer"
echo "SSL_FORCE: $SSL_FORCE"
fi
}
# PLAIN list function
plain_list() {
if [ -n "$crt" ]; then
echo -e "$crt"
fi
if [ -n "$key" ]; then
echo -e "\n$key"
fi
if [ -n "$ca" ]; then
echo -e "\n$ca"
fi
if [ -n "$crt" ]; then
echo "$subj"
echo "${alt_dns//,/ }"
echo "$before"
echo "$after"
echo "$signature"
echo "$pub_key"
echo "$issuer"
echo "$SSL_FORCE"
fi
}
# CSV list function
csv_list() {
echo -n "CRT,KEY,CA,SUBJECT,ALIASES,NOT_BEFORE,NOT_AFTER,SIGNATURE,"
echo "PUB_KEY,ISSUER,SSL_FORCE"
echo -n "\"$crt\",\"$key\",\"$ca\",\"$subj\",\"${alt_dns//,/ }\","
echo "\"$before\",\"$after\",\"$signature\",\"$pub_key\",\"$issuer\",\"$SSL_FORCE\""
}
#----------------------------------------------------------#
# Verifications #
#----------------------------------------------------------#
check_args '2' "$#" 'USER DOMAIN [FORMAT]'
is_format_valid 'user' 'domain'
is_object_valid 'user' 'USER' "$user"
is_object_valid 'web' 'DOMAIN' "$domain"
#----------------------------------------------------------#
# Action #
#----------------------------------------------------------#
# Load domain data
parse_object_kv_list $(grep "DOMAIN='$domain'" $USER_DATA/web.conf)
# Parsing domain SSL certificate
if [ -e "$USER_DATA/ssl/$domain.crt" ]; then
crt=$(cat $USER_DATA/ssl/$domain.crt | sed ':a;N;$!ba;s/\n/\\n/g')
info=$(openssl x509 -text -in $USER_DATA/ssl/$domain.crt)
subj=$(echo "$info" | grep Subject: | sed -e "s/\"//g" -e "s/.*= //")
before=$(echo "$info" | grep Before: | sed -e "s/.*Before: //")
after=$(echo "$info" | grep "After :" | sed -e "s/.*After : //")
signature=$(echo "$info" | grep "Algorithm:" | head -n1)
signature=$(echo "$signature" | sed -e "s/.*Algorithm: //")
pub_key=$(echo "$info" | grep Public-Key: | cut -f2 -d \( | tr -d \))
issuer=$(echo "$info" | grep Issuer: | sed -e "s/.*Issuer: //")
alt_dns=$(echo "$info" | grep DNS | sed -e 's/DNS:/\n/g' | tr -d ',')
alt_dns=$(echo "$alt_dns" | tr -d ' ' | sed -e "/^$/d")
alt_dns=$(echo "$alt_dns" | sed -e ':a;N;$!ba;s/\n/,/g')
fi
if [ -e "$USER_DATA/ssl/$domain.key" ]; then
key=$(cat $USER_DATA/ssl/$domain.key | sed ':a;N;$!ba;s/\n/\\n/g')
fi
if [ -e "$USER_DATA/ssl/$domain.ca" ]; then
ca=$(cat $USER_DATA/ssl/$domain.ca | sed ':a;N;$!ba;s/\n/\\n/g')
fi
# Listing data
case $format in
json) json_list ;;
plain) plain_list ;;
csv) csv_list ;;
shell) shell_list ;;
esac
#----------------------------------------------------------#
# Hestia #
#----------------------------------------------------------#
exit