#!/bin/bash if [[ ! -f "${HOME}/.acme.sh/acme.sh" ]];then rm -rf ${HOME}/.acme.sh declare mail declare domain read -p "请输入用来申请域名的邮箱:" mail if [[ ! $mail =~ \b[\w.%+-]+@[\w.-]+\.[a-zA-Z]{2,6}\b ]];then echo "邮箱不合法" exit fi curl https://get.acme.sh | sh -s "email=$mail" fi declare domain_str='' echo "请输入需要申请SSL证书的域名" while(true);do read -p "不输入退出添加:" domain if [[ -z $domain ]];then break elif [[ ! $domain =~ [\w+\.]+ ]];then echo "域名不合法" exit else domain_str="$domain_str -d $domain" fi done if [[ -z $domain_str ]]; then echo "需要添加的域名不能为空" exit fi declare pick_mode echo "1.http验证" echo "2.dns验证" read -p "请选择验证模式:" pick_mode case $pick_mode in '1') declare pick_start echo "请到服务器将80和443端口开启,将域名解析到本机" read -p "解析完成请输入 y:" pick_start if [[ ! $pick_start =~ [Yy] ]];then exit fi eval "${HOME}/.acme.sh/acme.sh --issue $domain_str --standalone" ;; '2') declare pick=0 declare -a mode_arr mode_arr[1]="TXT记录" mode_arr[2]='cloudflare' for i in "${!mode_arr[@]}"; do ((pick++)) echo "${pick}. ${mode_arr[$i]}" done read -p "请选择验证模式:" pick_mode if [[ ! $pick_mode =~ [1-${pick}] ]]; then exit fi case ${mode_arr[$pick_mode]} in 'TXT记录') declare domain declare log_output=$(${HOME}/.acme.sh/acme.sh --issue --dns $domain_str --yes-I-know-dns-manual-mode-enough-go-ahead-please) declare domain=$( echo "$log_output" | grep "Domain:" | awk -F ": " '{print $2}') declare txt_value=$(echo "$log_output" | grep "TXT value:" | awk -F ": " '{print $2}') echo "请到dns系统解析TXT记录" echo "域名: $domain" echo "文本记录: $txt_value" read -p "解析完成请输入 y:" pick if [[ $pick =~ [Yy] ]]; then eval "${HOME}/.acme.sh/acme.sh --renew $domain_str --yes-I-know-dns-manual-mode-enough-go-ahead-please" else echo "解析完成后请输入下面的命令完成验证" echo "${HOME}/.acme.sh/acme.sh --renew $domain_str --yes-I-know-dns-manual-mode-enough-go-ahead-please" fi ;; 'cloudflare') declare CF_Key declare CF_Email read -p "请输入cloudflare的邮箱:" CF_Email if [[ ! $CF_Email =~ \b[\w.%+-]+@[\w.-]+\.[a-zA-Z]{2,6}\b ]];then echo "邮箱不合法" exit fi read -p "请输入cloudflare的密钥:" CF_Key if [[ ! $CF_Key =~ \w+ ]];then echo "密钥不合法" exit fi export CF_Key=$CF_Key export CF_Email=$CF_Email eval "${HOME}/.acme.sh/acme.sh --issue $domain_str --dns dns_cf" esac ;; esac