debian.ansible.dedyn.client/dedyn.yml

---
- name: desec dyndns
  hosts: all
  tasks:
    - name: Needed software
      apt:
        name:
          - curl
        update_cache: no
        install_recommends: no

    - name: /usr/local/sbin/dedyn.sh
      blockinfile:
        path: /usr/local/sbin/dedyn.sh
        mode: "0500"
        owner: root
        group: root
        create: yes
        marker: "# {mark} ANSIBLE MANAGED BLOCK"
        block: |
          . /etc/bash/gaboshlib.include
          g_lockfile

          # deDyn/deSEC-Settings
          [ -f /usr/local/etc/dedyn.conf ] || exit 0
          . /usr/local/etc/dedyn.conf

          dedyndns="ns2.desec.org. ns1.desec.io."


          # Get IP(s)
          if ! [ -z $doipv6 ]
          then
            # IPv6 (and maybe IPv4)
            ipv6=$(curl https://checkipv6.dedyn.io/ 2>/dev/null)
            g_valid_ipv6 "$ipv6" || g_echo_error_exit "Didn't receive a vaild IPv6-address: $ipv6"
          fi
          if ! echo $doipv6 | grep -q "only"
          then
            # IPv4 and IPv6
            ipv4=$(curl https://checkipv4.dedyn.io/ 2>/dev/null)
            g_valid_ipv4 "$ipv4" || g_echo_error_exit "Didn't receive a vaild IPv4-address: $ipv4"
          fi

          # Get Updateserver and string
          updatesrv=update.dedyn.io
          if echo $doipv6 | grep -q "only"
          then
            # Only IPv6
            updatesrv=update6.dedyn.io
            updatestring="myipv6=${ipv6}"
          elif ! [ -z $doipv6 ]
          then
            # IPv4 and IPv6
            updatestring="myipv4=${ipv4}&myipv6=${ipv6}"
          else
            updatestring="myipv4=${ipv4}"
          fi

          for dynaddr in ${dedynhosts}
          do
            dynaddr=$(echo $dynaddr | perl -pe 's/.dedyn.io$//')
            dynaddr="${dynaddr}.dedyn.io"
            host ${dynaddr} ${dedyndns} >"$g_tmp/${dynaddr}"
            for ip in ${ipv4} ${ipv6}
            do
              if egrep -q "${ip}" $g_tmp/${dynaddr}
              then
                g_echo_ok "DynDNS IP ${ip} for ${dynaddr} up2date"
              else
                g_echo_ok "Renewing DynDNS IP ${ip} for ${dynaddr}"
          #      if curl -i "https://${updatesrv}/?hostname=${dynaddr}&myipv4=${ipv4}" --header "Authorization: Token ${dedynpw}"
          #      if curl -i "https://${updatesrv}/?hostname=${dynaddr}&myipv4=${ipv4}&myipv6=${ipv6}" --header "Authorization: Token ${dedynpw}"
                if curl -i "https://${updatesrv}/?hostname=${dynaddr}&${updatestring}" --header "Authorization: Token ${dedynpw}"
                then
                  g_echo_ok "DynDNS IP ${ip} for ${dynaddr} renewed"
                  # restart traefik on Problems with ACME/letsencrypt
                  if [ -f /home/docker/traefik/docker-compose.yml ]
                  then
                    if docker compose -f /home/docker/traefik/docker-compose.yml logs | egrep -q "error.+acme-challenge"
                    then
                      docker compose -f /home/docker/traefik/docker-compose.yml down
                      docker compose -f /home/docker/traefik/docker-compose.yml up -d
                    fi
                  fi
                  # get new ip for turn
                  [ -x /home/docker/turn.{{inventory_hostname}}/newip.sh ] && /home/docker/turn.{{inventory_hostname}}/newip.sh
                else
                  g_echo_error "DynDNS IP ${ip} for ${dynaddr}"
                fi
                sleep $(shuf -i 61-120 -n 1)
              fi
            done
          done
        backup: yes
        validate: /bin/bash -n %s
      notify: run dedyn.sh

    - name: /usr/local/sbin/dedyn.sh shebang
      lineinfile:
        path: /usr/local/sbin/dedyn.sh
        insertbefore: BOF
        line: "#!/bin/bash"

    - name: /etc/cron.d/dedyn_local
      blockinfile:
        path: /etc/cron.d/dedyn_local
        create: yes
        mode: 0644
        owner: root
        group: root
        marker: "# {mark} ANSIBLE MANAGED BLOCK"
        block: |
          */30 * * * * root /usr/local/sbin/dedyn.sh >/dev/null 2>&1
        backup: yes
  
  
  handlers:
  
    - name: run dedyn.sh
      ansible.builtin.shell: bash /usr/local/sbin/dedyn.sh
first commit 2022-07-10 10:50:57 +02:00			`---`
			`- name: desec dyndns`
			`hosts: all`
			`tasks:`
			`- name: Needed software`
			`apt:`
			`name:`
			`- curl`
			`update_cache: no`
			`install_recommends: no`

			`- name: /usr/local/sbin/dedyn.sh`
			`blockinfile:`
			`path: /usr/local/sbin/dedyn.sh`
			`mode: "0500"`
			`owner: root`
			`group: root`
			`create: yes`
			`marker: "# {mark} ANSIBLE MANAGED BLOCK"`
			`block: \|`
			`. /etc/bash/gaboshlib.include`
			`g_lockfile`

			`# deDyn/deSEC-Settings`
			`[ -f /usr/local/etc/dedyn.conf ] \|\| exit 0`
			`. /usr/local/etc/dedyn.conf`

			`dedyndns="ns2.desec.org. ns1.desec.io."`


			`# Get IP(s)`
			`if ! [ -z $doipv6 ]`
			`then`
			`# IPv6 (and maybe IPv4)`
			`ipv6=$(curl https://checkipv6.dedyn.io/ 2>/dev/null)`
			`g_valid_ipv6 "$ipv6" \|\| g_echo_error_exit "Didn't receive a vaild IPv6-address: $ipv6"`
			`fi`
			`if ! echo $doipv6 \| grep -q "only"`
			`then`
			`# IPv4 and IPv6`
			`ipv4=$(curl https://checkipv4.dedyn.io/ 2>/dev/null)`
			`g_valid_ipv4 "$ipv4" \|\| g_echo_error_exit "Didn't receive a vaild IPv4-address: $ipv4"`
			`fi`

			`# Get Updateserver and string`
			`updatesrv=update.dedyn.io`
			`if echo $doipv6 \| grep -q "only"`
			`then`
			`# Only IPv6`
			`updatesrv=update6.dedyn.io`
			`updatestring="myipv6=${ipv6}"`
			`elif ! [ -z $doipv6 ]`
			`then`
			`# IPv4 and IPv6`
			`updatestring="myipv4=${ipv4}&myipv6=${ipv6}"`
			`else`
			`updatestring="myipv4=${ipv4}"`
			`fi`

			`for dynaddr in ${dedynhosts}`
			`do`
dedyn.yml aktualisiert 2023-08-23 13:13:37 +02:00			`dynaddr=$(echo $dynaddr \| perl -pe 's/.dedyn.io$//')`
first commit 2022-07-10 10:50:57 +02:00			`dynaddr="${dynaddr}.dedyn.io"`
			`host ${dynaddr} ${dedyndns} >"$g_tmp/${dynaddr}"`
			`for ip in ${ipv4} ${ipv6}`
			`do`
			`if egrep -q "${ip}" $g_tmp/${dynaddr}`
			`then`
			`g_echo_ok "DynDNS IP ${ip} for ${dynaddr} up2date"`
			`else`
			`g_echo_ok "Renewing DynDNS IP ${ip} for ${dynaddr}"`
			`# if curl -i "https://${updatesrv}/?hostname=${dynaddr}&myipv4=${ipv4}" --header "Authorization: Token ${dedynpw}"`
			`# if curl -i "https://${updatesrv}/?hostname=${dynaddr}&myipv4=${ipv4}&myipv6=${ipv6}" --header "Authorization: Token ${dedynpw}"`
			`if curl -i "https://${updatesrv}/?hostname=${dynaddr}&${updatestring}" --header "Authorization: Token ${dedynpw}"`
			`then`
			`g_echo_ok "DynDNS IP ${ip} for ${dynaddr} renewed"`
dedyn.yml aktualisiert 2023-08-23 12:52:55 +02:00			`# restart traefik on Problems with ACME/letsencrypt`
			`if [ -f /home/docker/traefik/docker-compose.yml ]`
			`then`
			`if docker compose -f /home/docker/traefik/docker-compose.yml logs \| egrep -q "error.+acme-challenge"`
			`then`
			`docker compose -f /home/docker/traefik/docker-compose.yml down`
			`docker compose -f /home/docker/traefik/docker-compose.yml up -d`
			`fi`
			`fi`
dedyn.yml aktualisiert 2023-08-24 13:53:37 +02:00			`# get new ip for turn`
			`[ -x /home/docker/turn.{{inventory_hostname}}/newip.sh ] && /home/docker/turn.{{inventory_hostname}}/newip.sh`
first commit 2022-07-10 10:50:57 +02:00			`else`
			`g_echo_error "DynDNS IP ${ip} for ${dynaddr}"`
			`fi`
			`sleep $(shuf -i 61-120 -n 1)`
			`fi`
			`done`
			`done`
			`backup: yes`
			`validate: /bin/bash -n %s`
dedyn.yml aktualisiert 2023-08-23 14:30:02 +02:00			`notify: run dedyn.sh`
first commit 2022-07-10 10:50:57 +02:00
			`- name: /usr/local/sbin/dedyn.sh shebang`
			`lineinfile:`
			`path: /usr/local/sbin/dedyn.sh`
			`insertbefore: BOF`
			`line: "#!/bin/bash"`

			`- name: /etc/cron.d/dedyn_local`
			`blockinfile:`
			`path: /etc/cron.d/dedyn_local`
			`create: yes`
			`mode: 0644`
			`owner: root`
			`group: root`
			`marker: "# {mark} ANSIBLE MANAGED BLOCK"`
			`block: \|`
			`/30 * * * root /usr/local/sbin/dedyn.sh >/dev/null 2>&1`
			`backup: yes`
dedyn.yml aktualisiert 2023-08-23 14:30:02 +02:00

			`handlers:`

dedyn.yml aktualisiert 2023-08-23 14:41:43 +02:00			`- name: run dedyn.sh`
dedyn.yml aktualisiert 2023-08-23 14:30:02 +02:00			`ansible.builtin.shell: bash /usr/local/sbin/dedyn.sh`