joba-1/fritzbox-cert-update.sh

## fritzbox-cert-update.sh
#!/bin/bash

# parameters
USERNAME="maybe empty"
PASSWORD="fritzbox-password"
CERTPATH="path to cert eg  /etc/letsencrypt/live/domain.tld/"
CERTPASSWORD="cert password if needed"
HOST="http://fritz.box"

# make and secure a temporary file. Arrange for automatic cleanup
TMP=""
trap 'rm -f "$TMP"' exit
TMP="$(mktemp -t XXXXXX)"
chmod 600 "$TMP"

# login to the box and get a valid SID
CHALLENGE=`wget -q -O - "$HOST/login_sid.lua" | sed -e 's/^.*<Challenge>//' -e 's/<\/Challenge>.*$//'`
HASH="`echo -n \"$CHALLENGE-$PASSWORD\" | iconv -f ASCII -t UTF16LE |md5sum|awk '{print $1}'`"
SID=`wget -q -O - "$HOST/login_sid.lua?sid=0000000000000000&username=$USERNAME&response=$CHALLENGE-$HASH"| sed -e 's/^.*<SID>//' -e 's/<\/SID>.*$//'`

# generate our upload request
BOUNDARY="---------------------------"`date +%Y%m%d%H%M%S`
(
printf -- "--$BOUNDARY\r\n"
printf "Content-Disposition: form-data; name=\"sid\"\r\n\r\n$SID\r\n"
printf -- "--$BOUNDARY\r\n"
printf "Content-Disposition: form-data; name=\"BoxCertPassword\"\r\n\r\n$CERTPASSWORD\r\n"
printf -- "--$BOUNDARY\r\n"
printf "Content-Disposition: form-data; name=\"BoxCertImportFile\"; filename=\"BoxCert.pem\"\r\n"
printf "Content-Type: application/octet-stream\r\n\r\n"
cat $CERTPATH/privkey.pem
cat $CERTPATH/fullchain.pem
printf "\r\n"
printf -- "--$BOUNDARY--"
) >> "$TMP"

# upload the certificate to the box
wget -q -O - "$HOST/cgi-bin/firmwarecfg" --header="Content-type: multipart/form-data boundary=$BOUNDARY" --post-file "$TMP" | grep SSL
	#!/bin/bash

	# parameters
	USERNAME="maybe empty"
	PASSWORD="fritzbox-password"
	CERTPATH="path to cert eg /etc/letsencrypt/live/domain.tld/"
	CERTPASSWORD="cert password if needed"
	HOST="http://fritz.box"

	# make and secure a temporary file. Arrange for automatic cleanup
	TMP=""
	trap 'rm -f "$TMP"' exit
	TMP="$(mktemp -t XXXXXX)"
	chmod 600 "$TMP"

	# login to the box and get a valid SID
	CHALLENGE=`wget -q -O - "$HOST/login_sid.lua" \| sed -e 's/^.<Challenge>//' -e 's/<\/Challenge>.$//'`
	HASH="`echo -n \"$CHALLENGE-$PASSWORD\" \| iconv -f ASCII -t UTF16LE \|md5sum\|awk '{print $1}'`"
	SID=`wget -q -O - "$HOST/login_sid.lua?sid=0000000000000000&username=$USERNAME&response=$CHALLENGE-$HASH"\| sed -e 's/^.<SID>//' -e 's/<\/SID>.$//'`

	# generate our upload request
	BOUNDARY="---------------------------"`date +%Y%m%d%H%M%S`
	(
	printf -- "--$BOUNDARY\r\n"
	printf "Content-Disposition: form-data; name=\"sid\"\r\n\r\n$SID\r\n"
	printf -- "--$BOUNDARY\r\n"
	printf "Content-Disposition: form-data; name=\"BoxCertPassword\"\r\n\r\n$CERTPASSWORD\r\n"
	printf -- "--$BOUNDARY\r\n"
	printf "Content-Disposition: form-data; name=\"BoxCertImportFile\"; filename=\"BoxCert.pem\"\r\n"
	printf "Content-Type: application/octet-stream\r\n\r\n"
	cat $CERTPATH/privkey.pem
	cat $CERTPATH/fullchain.pem
	printf "\r\n"
	printf -- "--$BOUNDARY--"
	) >> "$TMP"

	# upload the certificate to the box
	wget -q -O - "$HOST/cgi-bin/firmwarecfg" --header="Content-type: multipart/form-data boundary=$BOUNDARY" --post-file "$TMP" \| grep SSL