feat: added ddns with hetnzer
parent
3e862d40c3
commit
d7dcde0e78
|
|
@ -1,55 +1,113 @@
|
|||
DOMAIN_NAME ?= monotremata.xyz
|
||||
RECORD_NAME ?= wg
|
||||
TTL ?= 300
|
||||
|
||||
WD=/var/lib/dags/ddns
|
||||
|
||||
API_URL = https://api.linode.com/v4
|
||||
GET_IP_URL = ifconfig.me/ip
|
||||
LINODE_API_URL = https://api.linode.com/v4
|
||||
HETZNER_API_URL = https://dns.hetzner.com/api/v1
|
||||
|
||||
STATE_DIR = $(WD)/$(RECORD_NAME).$(DOMAIN_NAME)
|
||||
|
||||
HOST_IP = $(STATE_DIR)/host_ip.txt
|
||||
DOMAIN_ID = $(STATE_DIR)/domain_id.txt
|
||||
RECORD_ID = $(STATE_DIR)/record_id.txt
|
||||
UPDATE_RECORD = $(STATE_DIR)/updated_record
|
||||
|
||||
UPDATE_RECORD_LINODE = $(STATE_DIR)/updated_record_linode
|
||||
UPDATE_RECORD_HETZNER = $(STATE_DIR)/updated_record_hetzner
|
||||
|
||||
GOPASS=doas -u gopass gopass
|
||||
LINODE_TOKEN = $(shell $(GOPASS) linode.com/token)
|
||||
|
||||
CURL = curl --silent
|
||||
AUTH_CURL = $(CURL) -H "Authorization: Bearer $(LINODE_TOKEN)"
|
||||
|
||||
define get_id
|
||||
jq '.["data"][] | select(.["$(1)"] == "$(2)")["id"]'
|
||||
LINODE_TOKEN = $(shell cat /srv/secrets/linode_token)
|
||||
AUTH_CURL_LINODE = $(CURL) -H "Authorization: Bearer $(LINODE_TOKEN)"
|
||||
LINODE_DOMAIN_ID = $(STATE_DIR)/linode_domain_id.txt
|
||||
LINODE_RECORD_ID = $(STATE_DIR)/linode_record_id.txt
|
||||
|
||||
HETZNER_TOKEN = $(shell cat /srv/secrets/hetzner_token)
|
||||
AUTH_CURL_HETZNER = $(CURL) -H 'Auth-API-Token: $(HETZNER_TOKEN)'
|
||||
HETZNER_ZONE_ID = $(STATE_DIR)/hetzner_zone_id.txt
|
||||
HETZNER_RECORD_ID = $(STATE_DIR)/hetzner_record_id.txt
|
||||
HETZNER_UPDATE_BODY = $(STATE_DIR)/hetzner_update_body.json
|
||||
|
||||
define get_id_linode
|
||||
jq --raw-output '.["data"][] | select(.["$(1)"] == "$(2)")["id"]'
|
||||
endef
|
||||
|
||||
.PHONY: force clean
|
||||
define get_id_hetzner
|
||||
jq --raw-output '.["$(1)"][] | select(.["name"] == "$(2)")["id"]'
|
||||
endef
|
||||
|
||||
.PHONY: all force clean
|
||||
|
||||
all: $(UPDATE_RECORD_LINODE) $(UPDATE_RECORD_HETZNER)
|
||||
|
||||
# Linode-specific #############################################################
|
||||
|
||||
# because the ip state is only updated when the IP changes, we should only need
|
||||
# to update the record when that happens
|
||||
$(UPDATE_RECORD): $(HOST_IP) $(DOMAIN_ID) $(RECORD_ID)
|
||||
@echo "updating record"
|
||||
@$(AUTH_CURL) \
|
||||
$(UPDATE_RECORD_LINODE): $(HOST_IP) $(LINODE_DOMAIN_ID) $(LINODE_RECORD_ID)
|
||||
@echo "updating linode record"
|
||||
@$(AUTH_CURL_LINODE) \
|
||||
-H "Content-Type: application/json" \
|
||||
-X PUT -d '{ "target": "'"$$(cat $<)"'" }' \
|
||||
"$(API_URL)/domains/$$(cat $(DOMAIN_ID))/records/$$(cat $(RECORD_ID))"
|
||||
"$(LINODE_API_URL)/domains/$$(cat $(LINODE_DOMAIN_ID))/records/$$(cat $(LINODE_RECORD_ID))"
|
||||
@touch $@
|
||||
|
||||
# the domain id should not change and this should only ever need to run once
|
||||
$(DOMAIN_ID):
|
||||
@echo "fetching domain id"
|
||||
$(LINODE_DOMAIN_ID):
|
||||
@echo "fetching linode domain id"
|
||||
@mkdir -p $(@D)
|
||||
@$(AUTH_CURL) $(API_URL)/domains | \
|
||||
$(call get_id,domain,$(DOMAIN_NAME)) | \
|
||||
@$(AUTH_CURL_LINODE) $(LINODE_API_URL)/domains | \
|
||||
$(call get_id_linode,domain,$(DOMAIN_NAME)) | \
|
||||
tee $@
|
||||
|
||||
# the register id should not change and this should only ever need to run once
|
||||
$(RECORD_ID): $(DOMAIN_ID)
|
||||
@echo "fetching record id"
|
||||
$(LINODE_RECORD_ID): $(LINODE_DOMAIN_ID)
|
||||
@echo "fetching linode record id"
|
||||
@mkdir -p $(@D)
|
||||
@$(AUTH_CURL) $(API_URL)/domains/$$(cat $<)/records | \
|
||||
$(call get_id,name,$(RECORD_NAME)) | \
|
||||
@$(AUTH_CURL_LINODE) $(LINODE_API_URL)/domains/$$(cat $<)/records | \
|
||||
$(call get_id_linode,name,$(RECORD_NAME)) | \
|
||||
tee $@
|
||||
|
||||
# Hetzner-specific #############################################################
|
||||
|
||||
$(UPDATE_RECORD_HETZNER): $(HETZNER_UPDATE_BODY) $(HETZNER_RECORD_ID)
|
||||
@echo "updating hetzner record"
|
||||
@mkdir -p $(@D)
|
||||
@$(AUTH_CURL_HETZNER) \
|
||||
-H 'Content-Type: application/json' \
|
||||
"$(HETZNER_API_URL)/records/$$(cat $(HETZNER_RECORD_ID))" \
|
||||
-X "PUT" \
|
||||
--data @$(HETZNER_UPDATE_BODY)
|
||||
@touch $@
|
||||
|
||||
$(HETZNER_UPDATE_BODY): $(HOST_IP) $(HETZNER_ZONE_ID)
|
||||
@jq --null-input --raw-output \
|
||||
--arg value $$(cat $(HOST_IP)) \
|
||||
--arg ttl $(TTL) \
|
||||
--arg name $(RECORD_NAME) \
|
||||
--arg zone_id $$(cat $(HETZNER_ZONE_ID)) \
|
||||
'{ "value": $$value, "ttl": $$ttl | tonumber, "type": "A", "name": $$name, "zone_id": $$zone_id }' > \
|
||||
$@
|
||||
|
||||
$(HETZNER_ZONE_ID):
|
||||
@echo "fetching hetzner zone id"
|
||||
@mkdir -p $(@D)
|
||||
@$(AUTH_CURL_HETZNER) \
|
||||
$(HETZNER_API_URL)/zones | \
|
||||
$(call get_id_hetzner,zones,$(DOMAIN_NAME)) | \
|
||||
tee $@
|
||||
|
||||
$(HETZNER_RECORD_ID): $(HETZNER_ZONE_ID)
|
||||
@echo "fetching hetzner record id"
|
||||
@mkdir -p $(@D)
|
||||
@$(AUTH_CURL_HETZNER) \
|
||||
$(HETZNER_API_URL)/records?zone_id=$$(cat $<) | \
|
||||
$(call get_id_hetzner,records,$(RECORD_NAME)) | \
|
||||
tee $@
|
||||
|
||||
# Common #############################################################
|
||||
|
||||
# this target depends on a PHONY so that it is attempted every time, but the
|
||||
# target file should only be updated is the current host ip is different to the
|
||||
# saved one
|
||||
|
|
|
|||
Loading…
Reference in New Issue