枫の屋

1
#!/bin/bash
2
# ZeroSSL 证书申请脚本
3
# 作者: null
4

5
# 用户邮箱
6
User_Name='邮箱'
7
# 用户密码
8
User_Pawd='密码'
9
# 密码编码
10
User_Pawd_E=$(echo -n "${User_Pawd}"|sha256sum |awk '{print $1}')
11

12
# 登录信息
13
Login_Info=`curl -v -X POST -c cookie.db -A 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0' -H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' -d "postArray={\"email_address\":\"${User_Name}\",\"password\":\"${User_Pawd_E}\"}" 'https://app.zerossl.com/ajax/public_ajax_handler.php?type=sign_in' 2>&1`
14

15
if [[ "${Login_Info}" =~ 'success":1,' ]];then
16
  echo "用户 ${User_Name} 登录成功."
17
else
18
  echo "用户 ${User_Name} 登录失败."
19
  exit 1
20
fi
21

22
# Cookie
23
Login_Cpt=`echo "${Login_Info}"|awk -F'[ :=;]+' '/Set-Cookie:[[:space:]]_cpt/ {print $4}'`
24

25
User_Login_Cookie(){
26
  curl -s -b cookie.db -A 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0' "${@}"
27
}
28

29
Login_Auth=`User_Login_Cookie 'https://app.zerossl.com/dashboard'`
30
if [ -z "${Login_Auth}" ];then
31
  echo "$User_Name 未登录."
32
  exit 1
33
fi
34

35
# 密钥目录
36
SSL_Key_Dir='ssl_key'
37
# 检查目录是否存在
38
if [ ! -d "${SSL_Key_Dir}" ];then
39
  mkdir "${SSL_Key_Dir}"
40
fi
41

42
if [ -z "${1}" ];then
43
  read -ep '请输入域名:' Gen_Domain
44
else
45
  Gen_Domain="${1}"
46
fi
47

48
# 订阅
49
Subscription_Plan=`User_Login_Cookie -H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' -d 'postArray={"plan_id":"512","payment_frequency":"monthly"}' "https://app.zerossl.com/ajax/advanced_ajax_handler.php?type=change_subscription_plan&_cpt=${Login_Cpt}"`
50
if [[ "${Subscription_Plan}" =~ 'success":1,' ]];then
51
  echo "用户 ${User_Name} 订阅成功."
52
else
53
  echo "用户 ${User_Name} 订阅失败."
54
  exit 1
55
fi
56

57
# 降级订阅
58
Downgrade_Plan=`User_Login_Cookie -H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' -d 'postArray={"plan_id":"477","payment_frequency":"monthly"}' "https://app.zerossl.com/ajax/advanced_ajax_handler.php?type=change_subscription_plan&_cpt=${Login_Cpt}"`
59

60
# ZeroSSL API 密钥
61
User_Token=`User_Login_Cookie 'https://app.zerossl.com/developer' |grep -A 1 '"access_key"'|awk -F'[ ><]+' '/span/ {print $3}'`
62
if [ -z "${User_Token}" ];then
63
  echo "用户密钥为空"
64
  exit 1
65
fi
66

67
Gen_Domain_D=$(echo "${Gen_Domain}"|sed -r 's/\*\./_/g;s/\./_/g')
68
echo "域名信息: ${Gen_Domain} ${Gen_Domain_D}"
69
Domain_Key_Path="${SSL_Key_Dir}/${Gen_Domain_D}.key"
70
Domain_Csr_Path="${SSL_Key_Dir}/${Gen_Domain_D}_csr.pem"
71
if [ ! -f "${Domain_Key_Path}" ];then
72
  openssl genrsa -out "${Domain_Key_Path}" 2048
73
fi
74

75
if [ ! -f "${Domain_Csr_Path}" ];then
76
  openssl req -new -key ${Domain_Key_Path} -out ${Domain_Csr_Path} -subj "/C=CN/CN=${Gen_Domain}"
77
fi
78

79
# 格式化
80
Domain_Csr_Code=$(cat "${Domain_Csr_Path}" | tr -d '\n')
81
Post_Cert_Code=$(curl -s -X POST -H 'Content-Type: application/json' -H 'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0' -d "{\"certificate_domains\": \"${Gen_Domain}\", \"certificate_validity_days\": 365, \"certificate_csr\": \"${Domain_Csr_Code}\",    \"strict_domains\": 1}" "http://api.zerossl.com/certificates?access_key=${User_Token}")
82

83
if [[ "${Post_Cert_Code}" =~ 'success' ]];then
84
  echo "订单失败: ${Post_Cert_Code}"
85
else
86
  echo "订单成功: ${Post_Cert_Code}"
87
fi