Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

can tokens be uploaded via FTPS? #396

Open
nickwelsh1 opened this issue Aug 14, 2018 · 2 comments
Open

can tokens be uploaded via FTPS? #396

nickwelsh1 opened this issue Aug 14, 2018 · 2 comments
Assignees
@timkimber
Labels
enhancement help wanted

Comments

@nickwelsh1
Copy link

Hi,

My web hosting provides an FTPS connection using TLS encryption. Is it possible to upload my tokens to my server via FTPS with this script?

I've tried modifying the getssl.cfg for the ACL line to ftps -

ACL=('ftps:user:password:www.domain.com:/.well-known/acme-challenge')

however this hasn't been successful.

Uploading a file manually with curl using the following works for me -

curl -k -v ftps:https://ftp.domainftp.com/.well-known/acme-challenge/ -u user:password -T testfile.txt

My hosting provides a self-signed certificate during the FTPS handshake which I must accept hence the -k option.

Thank you,
Nick
@killerbees19
Copy link
Contributor

Forget my last comment. Sorry… 😔

I've missed that you're talking about the challenge token.

@nickwelsh1
Copy link
Author

nickwelsh1 commented Aug 21, 2018
edited
Loading

I wrote a fix to add in FTPS functionality myself. Depending on how the FTPS server is setup this may work for you too.

Before line 550.
elif [[ "${to:0:5}" == "sftp:" ]] ; then
insert the following -

echo "in-ftps-loop"
if [[ "$cert" != "challenge token" ]] ; then
error_exit "ftps has only been tested for challenge tokens"
fi
debug "using ftps to copy the file from $from"
ftpuser=$(echo "$to"| awk -F: '{print $2}')
ftppass=$(echo "$to"| awk -F: '{print $3}')
ftphost=$(echo "$to"| awk -F: '{print $4}')
ftplocn=$(echo "$to"| awk -F: '{print $5}')
ftpdirn=$(dirname "$ftplocn")
ftpfile=$(basename "$ftplocn")
fromdir=$(dirname "$from")
fromfile=$(basename "$from")
debug "ftps user=$ftpuser - pass=$ftppass - host=$ftphost dir=$ftpdirn file=$ftpfile"
debug "from dir=$fromdir file=$fromfile"
echo " "
echo "Using CURL to upload challenge token to webserver via FTPS"
echo " "
curl -k ftps:https://$ftphost$ftpdirn/ -u $ftpuser:$ftppass -T $fromdir/$fromfile
echo " "
echo "after curl statement"
echo " "

If you also want to add some useful colour to the script to help highlight when intermediate CA cert's have been downloaded successfully you could also add

echo -e ${GREEN}The intermediate CA cert is in${NC} $gc_cafile

after line 836
info "The intermediate CA cert is in $gc_cafile"

and insert

#colors
RED='\033[0;31m'
NC='\033[0m' # No Color
GREEN='\033[0;32m'

after line 240.

Cheers,
Nick

@timkimber timkimber self-assigned this Feb 11, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@timkimber timkimber

Labels
enhancement help wanted
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@QuingKhaos @nickwelsh1 @timkimber @killerbees19