ryzhovau/dehydrated_yandex_pdd.sh

## dehydrated_yandex_pdd.sh
#!/usr/bin/env bash

# dns-01 challenge for Yandex PDD

domain='domain.com'
# domain alias as in dehydrated config
domain_alias='wildcard_domain_com'
# Get token at https://pddimp.yandex.ru/token/index.xml?domain=$domain
token='xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'

case "$1" in
    "deploy_challenge")
        if [ -z "$(wget -qO - "https://pddimp.yandex.ru/nsapi/add_txt_record.xml?token=$token&domain=$domain&subdomain=_acme-challenge&ttl=900&content=$4" | grep '<error>ok</error>')" ]; then
            echo 'Error while adding TXT record, exiting...'
            exit 1
        fi
        echo
        ;;
    "clean_challenge")
        sep='<record domain='
        records="$(wget -qO - https://pddimp.yandex.ru/nsapi/get_domain_records.xml?token=$token)"
        while [ "$records" != "${records#*$sep}" ];do
            record=$(echo "${records%%$sep*}" | grep _acme-challenge.$domain | cut -d'"' -f12)
            [[ -z "$record" ]] || wget -qO - "https://pddimp.yandex.ru/nsapi/delete_record.xml?token=$token&domain=$domain&record_id=$record" > /dev/null
            records="${records#*$sep}"
        done
        ;;
    "deploy_cert")
        cp $CERTDIR/$domain_alias/fullchain.pem /etc/nginx/ssl/
        cp $CERTDIR/$domain_alias/privkey.pem /etc/nginx/ssl/
        systemctl reload nginx
        tg_say.sh "SSL certificates renewed."
        ;;
    "unchanged_cert")
        ;;
    "startup_hook")
        ;;
    "exit_hook")
        ;;
esac
	#!/usr/bin/env bash

	# dns-01 challenge for Yandex PDD

	domain='domain.com'
	# domain alias as in dehydrated config
	domain_alias='wildcard_domain_com'
	# Get token at https://pddimp.yandex.ru/token/index.xml?domain=$domain
	token='xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'

	case "$1" in
	"deploy_challenge")
	if [ -z "$(wget -qO - "https://pddimp.yandex.ru/nsapi/add_txt_record.xml?token=$token&domain=$domain&subdomain=_acme-challenge&ttl=900&content=$4" \| grep '<error>ok</error>')" ]; then
	echo 'Error while adding TXT record, exiting...'
	exit 1
	fi
	echo
	;;
	"clean_challenge")
	sep='<record domain='
	records="$(wget -qO - https://pddimp.yandex.ru/nsapi/get_domain_records.xml?token=$token)"
	while [ "$records" != "${records#*$sep}" ];do
	record=$(echo "${records%%$sep*}" \| grep _acme-challenge.$domain \| cut -d'"' -f12)
	[[ -z "$record" ]] \|\| wget -qO - "https://pddimp.yandex.ru/nsapi/delete_record.xml?token=$token&domain=$domain&record_id=$record" > /dev/null
	records="${records#*$sep}"
	done
	;;
	"deploy_cert")
	cp $CERTDIR/$domain_alias/fullchain.pem /etc/nginx/ssl/
	cp $CERTDIR/$domain_alias/privkey.pem /etc/nginx/ssl/
	systemctl reload nginx
	tg_say.sh "SSL certificates renewed."
	;;
	"unchanged_cert")
	;;
	"startup_hook")
	;;
	"exit_hook")
	;;
	esac