mack-a
/
v2ray-agent
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat(脚本): 移除80端口申请证书、添加代理端口申请证书以及renew

master
mack-a 2023-05-17 15:12:04 +08:00
parent 8a710c36ce
commit 34e133cdb3
1 changed files with 55 additions and 38 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

75
install.sh
View File

@ -263,7 +263,7 @@ initVar() {
realityDestDomain= realityDestDomain=
# 端口状态 # 端口状态
isPortOpen80= # isPortOpen=
# 通配符域名状态 # 通配符域名状态
wildcardDomainStatus= wildcardDomainStatus=
# 通过nginx检查的端口 # 通过nginx检查的端口
@ -995,7 +995,7 @@ checkPortOpen() {
local domain=$2 local domain=$2
local checkPortOpenResult= local checkPortOpenResult=
allowPort 80 allowPort "${port}"
# 初始化nginx配置 # 初始化nginx配置
touch ${nginxConfigPath}checkPortOpen.conf touch ${nginxConfigPath}checkPortOpen.conf
@ -1014,11 +1014,14 @@ EOF
checkPortOpenResult=$(curl -s -m 2 "http://${domain}:${port}/checkPort") checkPortOpenResult=$(curl -s -m 2 "http://${domain}:${port}/checkPort")
if [[ "${checkPortOpenResult}" == "fjkvymb6len" ]]; then
echoContent green " ---> 检测到80端口已开放"
isPortOpen80=true
fi
rm "${nginxConfigPath}checkPortOpen.conf" rm "${nginxConfigPath}checkPortOpen.conf"
handleNginx stop
if [[ "${checkPortOpenResult}" == "fjkvymb6len" ]]; then
echoContent green " ---> 检测到${port}端口已开放"
else
echoContent green " ---> 未检测到${port}端口开放,退出安装"
exit 0
fi
} }
# 初始化Nginx申请证书配置 # 初始化Nginx申请证书配置
@ -1084,9 +1087,9 @@ EOF
updateRedirectNginxConf() { updateRedirectNginxConf() {
local redirectDomain= local redirectDomain=
redirectDomain=${domain}:${port} redirectDomain=${domain}:${port}
if [[ -z "${btDomain}" ]]; then # if [[ -z "${btDomain}" ]]; then
checkPortOpen 80 "${domain}" >/dev/null # checkPortOpen 80 "${domain}" >/dev/null
fi # fi
cat <<EOF >${nginxConfigPath}alone.conf cat <<EOF >${nginxConfigPath}alone.conf
server { server {
@ -1095,16 +1098,16 @@ updateRedirectNginxConf() {
return 403; return 403;
} }
EOF EOF
#
if [[ -z "${btDomain}" && "${isPortOpen80}" == "true" ]]; then # if [[ -z "${btDomain}" && "${isPortOpen}" == "true" ]]; then
cat <<EOF >${nginxConfigPath}alone.conf # cat <<EOF >${nginxConfigPath}alone.conf
server { #server {
listen 80; # listen 80;
server_name ${domain}; # server_name ${domain};
return 302 https://${redirectDomain}; # return 302 https://${redirectDomain};
} #}
EOF #EOF
fi # fi
if echo "${selectCustomInstallType}" | grep -q 2 && echo "${selectCustomInstallType}" | grep -q 5 || [[ -z "${selectCustomInstallType}" ]]; then if echo "${selectCustomInstallType}" | grep -q 2 && echo "${selectCustomInstallType}" | grep -q 5 || [[ -z "${selectCustomInstallType}" ]]; then
@ -1387,8 +1390,12 @@ acmeInstallSSL() {
fi fi
else else
echoContent green " ---> 生成证书中" echoContent green " ---> 生成证书中"
sudo "$HOME/.acme.sh/acme.sh" --issue -d "${tlsDomain}" --standalone -k ec-256 --server "${sslType}" ${installSSLIPv6} 2>&1 | tee -a /etc/v2ray-agent/tls/acme.log >/dev/null sudo "$HOME/.acme.sh/acme.sh" --issue -d "${tlsDomain}" --standalone -k ec-256 --server "${sslType}" --tlsport "${port}" ${installSSLIPv6} 2>&1 | tee -a /etc/v2ray-agent/tls/acme.log >/dev/null
sed -i '/Le_HTTPPort/d' "$HOME/.acme.sh/account.conf"
echo "Le_HTTPPort=${port}" >>"$HOME/.acme.sh/account.conf"
fi fi
} }
# 自定义端口 # 自定义端口
customPortFunction() { customPortFunction() {
@ -1411,8 +1418,9 @@ customPortFunction() {
port=$((RANDOM % 20001 + 10000)) port=$((RANDOM % 20001 + 10000))
fi fi
else else
checkPortOpen 80 "${domain}" # checkPortOpen 80 "${domain}"
if [[ "${isPortOpen80}" == "true" ]]; then
# if [[ "${isPortOpen}" == "true" ]]; then
echo echo
echoContent yellow "请输入端口[默认: 443],可自定义端口[回车使用默认]" echoContent yellow "请输入端口[默认: 443],可自定义端口[回车使用默认]"
read -r -p "端口:" port read -r -p "端口:" port
@ -1422,13 +1430,15 @@ customPortFunction() {
if [[ "${port}" == "${currentRealityPort}" ]]; then if [[ "${port}" == "${currentRealityPort}" ]]; then
handleXray stop handleXray stop
fi fi
else checkPortOpen "${port}" "${domain}"
# else
# todo dns api # todo dns api
wildcardDomainStatus=true # wildcardDomainStatus=true
echoContent red "未检测到80端口开放无法安装后续会支持DNS API [TODO]" # echoContent red "未检测到80端口开放无法安装后续会支持DNS API [TODO]"
echoContent yellow "检查域名解析可以通过ping排查" # echoContent yellow "检查域名解析可以通过ping排查"
exit 0 # exit 0
fi # fi
fi fi
checkPort "${port}" checkPort "${port}"
@ -1743,6 +1753,13 @@ renewalTLS() {
if [[ ${remainingDays} -le 1 ]]; then if [[ ${remainingDays} -le 1 ]]; then
echoContent yellow " ---> 重新生成证书" echoContent yellow " ---> 重新生成证书"
handleNginx stop handleNginx stop
if [[ "${coreInstallType}" == "1" ]]; then
handleXray stop
elif [[ "${coreInstallType}" == "2" ]]; then
handleV2Ray stop
fi
sudo "$HOME/.acme.sh/acme.sh" --cron --home "$HOME/.acme.sh" sudo "$HOME/.acme.sh/acme.sh" --cron --home "$HOME/.acme.sh"
sudo "$HOME/.acme.sh/acme.sh" --installcert -d "${domain}" --fullchainpath /etc/v2ray-agent/tls/"${domain}.crt" --keypath /etc/v2ray-agent/tls/"${domain}.key" --ecc sudo "$HOME/.acme.sh/acme.sh" --installcert -d "${domain}" --fullchainpath /etc/v2ray-agent/tls/"${domain}.crt" --keypath /etc/v2ray-agent/tls/"${domain}.key" --ecc
reloadCore reloadCore
@ -7088,7 +7105,7 @@ menu() {
cd "$HOME" || exit cd "$HOME" || exit
echoContent red "\n==============================================================" echoContent red "\n=============================================================="
echoContent green "作者mack-a" echoContent green "作者mack-a"
echoContent green "当前版本v2.8.20" echoContent green "当前版本v2.9.1"
echoContent green "Githubhttps://github.com/mack-a/v2ray-agent" echoContent green "Githubhttps://github.com/mack-a/v2ray-agent"
echoContent green "描述:八合一共存脚本\c" echoContent green "描述:八合一共存脚本\c"
showInstallStatus showInstallStatus