v1.0

Clean code
and anonymise
2024-11-02 11:20:44 +01:00 · 2024-11-02 11:18:27 +01:00 · 2024-11-02 11:09:42 +01:00 · 2024-11-02 07:30:42 +01:00
3 changed files with 87 additions and 64 deletions
--- a/README.md
+++ b/README.md
@@ -0,0 +1,25 @@
+# certificate
+
+Bash scripts to check whether a site is available or not, and whether the certificate is valid or not.
+
+
+
+#### 1) urls_check.sh
+
+Usage: urls_check.sh
+
+
+
+#### 2) validity.sh
+
+Usage: ./validity.sh
+
+Check whether the certificate is valid or not.
+
+Required the <u>validity_domains.txt</u> file that contain a list of domains:
+
+```bash
+domain1.com
+domain2.fr
+```
+
--- a/urls_check.sh
+++ b/urls_check.sh
@@ -1,4 +1,9 @@
 #!/usr/bin/env bash
+# Check SSL certificates and http codes for key domains
+#
+# Run: ./url_check.sh
+
+VERSION="v1.0"

 italic="\033[3m"
 underline="\033[4m"
@@ -29,6 +34,7 @@ port=443
 nday=15
 # Choose the notification (pushover or gotify)
 notif="pushover"
+x=0

 not_required_domains="$HOME/Documents/Scripts/pihole/sync_pihole_lan.sh"

@@ -38,15 +44,24 @@ dotenv () {
  # shellcheck disable=SC1091
  [ -f "$HOME/.env" ] && . "$HOME/.env" ||  echo -e "${red}\nNo .env file found ! Could'nt get update from Github or send notification.'.${reset}"
  set +a
+  #
+  # Gotify: $GOTIFY_SERVER (server url), $GOTIFY_BASH (token)
+  # Pushover: $USER_KEY$ (user) $BASH_APP (token)
 }

 dotenv

+### Variables for self updating
+ScriptArgs=( "$@" )
+ScriptPath="$(readlink -f "$0")"
+ScriptWorkDir="$(dirname "$ScriptPath")"
+
+
 send_gotify_notification() {
 	# Enabled HSTS & created default WebSocket records in the DSM 7.2 reverse proxy window and it solved itself.
 	
 	now=$(date +"%d-%m-%Y %T")
-	gotify_server="https://gotify.maboiteverte.fr"
+	gotify_server="$GOTIFY_SERVER"
 	gotify_token="$GOTIFY_BASH"
 	TITLE="$1"
 	MESSAGE="$2"
@@ -78,11 +93,11 @@ send_pushover_notification() {
 }

 status_error() {
-   	info_code=$(grep "$1" ./status.txt)
+   	info_code=$(grep "$1" "$ScriptWorkDir/status.txt")
   	status_code=$(echo "$info_code" | awk -F";" '{print $1}')
   	status_title=$(echo "$info_code" | awk -F";" '{print $2}')
   	status_url=$(echo "$info_code" | awk -F";" '{print $3}')
-   	printf " %-3s  %-25s %-95s \n" $status_code "$status_title" "$status_url"
+   	printf "%-3s  %-25s %-95s" $status_code "$status_title" "$status_url"
 }

 display_help() {
@@ -105,19 +120,9 @@ display_help() {
    echo -e "https://www.domain2.com"
    echo -e "${italic}Add a # to ignore url${reset}"
    echo
-    # echo some stuff here for the -a or --add-options 
    exit 1
 }

-: << 'COMMENTS'
-while [[ "$#" -gt 0 ]]; do
-    case $1 in
-        -h|--help) display_help; shift ;;
-        *) echo "Unknown parameter passed: $1" ;;
-    esac
-    shift
-done
-COMMENTS

 optspec=":u:h-:"
 while getopts "$optspec" opt
@@ -130,7 +135,6 @@ do
 				;;
 			url=*)
 				url=${OPTARG#*=}
-				#opt=${OPTARG%=$file}
 				opt="$(printf "%s\n" "${OPTARG}" | cut -d'=' -f1 )" ; url="$(printf "%s\n" "${OPTARG}" | cut -d'=' -f2-)" 
 			   	;;
 			*)
@@ -155,22 +159,21 @@ done
 shift "$((OPTIND-1))"


-command -v showcertif >/dev/null 2>&1 || { echo -e "${bold}showcert${reset} is not installed ${italic}(pip install showcert)${reset}. ${bold}openssl${reset} will be used.\n" >&2; }
-
+command -v showcert >/dev/null 2>&1 || { echo -e "${bold}showcert${reset} is not installed ${italic}(pip install showcert)${reset}. ${bold}openssl${reset} will be used.\n" >&2; }

 regex='(https?|ftp|file)://[-[:alnum:]\+&@#/%?=~_|!:,.;]+'
 if [[ $url =~ $regex ]]; then
 	# L'URL passé en argument est checkée
 	
 	urls+=("$url")
+	x=1
 else
 	# Chargement de la liste des urls depuis urls_list.txt

 	while read -r line
 	do 
 		[ ${line:0:1} != "#" ] && urls+=("$line")
-	done < ./urls_list.txt
-
+	done < "$ScriptWorkDir/urls_list.txt"

 	# Ajout des domaines non-requis

@@ -191,7 +194,6 @@ else
 		echo "Domain like drive.photos-nas.ovh won't be checked.'"
 	fi

-
 	# Tri du tableau d'urls

 	IFS=$'\n' sorted=($(sort <<<"${urls[*]}"))
@@ -199,6 +201,7 @@ else

 fi

+
 # On efface la liste des urls down

 [ -f "./urls_down_list_curl.txt" ] && rm "./urls_down_list_curl.txt"
@@ -235,7 +238,7 @@ info_certif() {

 	domain=$(echo "$1" | grep -Eo '^http[s]?://[^/]+' | cut -c 9- )
 	
-	if command -v showcertif >/dev/null 2>&1; then
+	if command -v showcert >/dev/null 2>&1; then
 		
 		cert=$(showcert "$domain")

@@ -314,11 +317,12 @@ done
 # Affichage des serveurs qui ne répondent pas

 if [ -f "./urls_down_list_curl.txt" ]; then
+	if [ "$x" -ne 1 ]; then
 		echo -e "\n${redbold}Url down: ${reset}"	

 		cp "./urls_down_list_curl.txt" urls_down_list_curl.bak
 		url_down=$(cat "./urls_down_list_curl.txt")
-	echo -e "$url_down\n"
+		echo -e "$url_down"
 	
 		# On affiche uniquement les erreurs rencontrées
 		for val in ${!array_responses[@]}
@@ -326,16 +330,15 @@ if [ -f "./urls_down_list_curl.txt" ]; then
 			a="${array_responses[$val]}"
 			status_error "$a"
 		done
-	echo ""
+		echo -e "\n"
+	fi
 	
 	if [ "$notif" == "gotify" ];then
 		msg_md="$url_down"
-		# MESSAGE="**A new version of Pi-hole is available:**\n\n $msg_md\n\n $infos\n\n Please run *pihole -up* on $host to update !"
 		send_gotify_notification "Several url are down !" "$msg_md"
 	elif  [ "$notif" == "pushover" ];then
 		msg_html="$url_down"
 		send_pushover_notification "Several url are down !" "$msg_html"
-		#pushover -a "bash" -m "A new version of Pi-hole is available: <br /> $msg_html <br /> $infos_html <br /> Please run <b>pihole -up</b> on $host to update" -p 2 -f 1
 	fi
 	
 else
@@ -353,16 +356,13 @@ if [ -f "./certificats_outdated.txt" ]; then
 	
 	if [ "$notif" == "gotify" ];then
 		msg_md="$certif_outdated"
-		# MESSAGE="**A new version of Pi-hole is available:**\n\n $msg_md\n\n $infos\n\n Please run *pihole -up* on $host to update !"
 		send_gotify_notification "Several certificats are outdated !" "$msg_md"
 	elif  [ "$notif" == "pushover" ];then
 		msg_html="$certif_outdated"
 		send_pushover_notification "Several certificats are outdated !" "$msg_html"
-		#pushover -a "bash" -m "A new version of Pi-hole is available: <br /> $msg_html <br /> $infos_html <br /> Please run <b>pihole -up</b> on $host to update" -p 2 -f 1
 	fi
 	
 else
 	echo -e "${green}\nNo certificat outdated !${reset}"
 fi

-# curl --write-out "%{json}" https://nextcloud.photos-nas.ovh | jq
--- a/validity.sh
+++ b/validity.sh
@@ -3,7 +3,7 @@
 #
 # Run: ./validity.sh

-VERSION="v0.9"
+VERSION="v1.0"

 red="\033[1;31m"
 greenbold="\033[1;32m"
@@ -16,7 +16,6 @@ italic="\033[3m"
 underline="\033[4m"
 reset="\033[0m"

-#echo | openssl s_client -servername maboiteverte.fr -connect maboiteverte.fr:443 2>/dev/null | openssl x509 -noout -issuer -subject -dates

 #export PATH="/usr/local/bin:$PATH"
 # run by cron $PATH=/usr/bin:/bin
@@ -30,31 +29,43 @@ if [ $? -eq 1 ]; then
 	exit 1
 fi

-hosts=("maboiteverte.fr" "sur-le-sentier.fr" "photos-nas.ovh" "clicclac.info")
-#hosts=("maboiteverte.fr")
-port=443
-# Days left before notification
-nday=15
-# Choose the notification
-notif="pushover"
-
 dotenv () {
  set -a
  # shellcheck disable=SC1091
  [ -f "$HOME/.env" ] && . "$HOME/.env" ||  echo -e "${red}\nNo .env file found ! No token for gotify.${reset}"
  set +a
+  #
+  # Gotify: $GOTIFY_SERVER (server url), $GOTIFY_BASH (token)
+  # Pushover: $USER_KEY$ (user) $BASH_APP (token)
 }

 dotenv

+### Variables for self updating
+ScriptArgs=( "$@" )
+ScriptPath="$(readlink -f "$0")"			# /Users/bruno/Documents/Scripts/bashbirds/bashbirds.sh
+ScriptWorkDir="$(dirname "$ScriptPath")"	# /Users/bruno/Documents/Scripts/bashbirds
+
+# Domains to check
+#hosts=("domain.com")
+if [ -f "$ScriptWorkDir/validity_domains.txt" ]; then
+	readarray -t hosts < "$ScriptWorkDir/validity_domains.txt"
+else echo -e "${red}No domain to check !${reset}"
+fi
+port=443
+# Days left before notification
+nday=15
+# Choose the notification (pushover or gotify)
+notif="pushover"
+
 send_gotify_notification() {
 	# Enabled HSTS & created default WebSocket records in the DSM 7.2 reverse proxy window and it solved itself.
 	
 	now=$(date +"%d-%m-%Y %T")
-	gotify_server="https://gotify.maboiteverte.fr"
+	gotify_server="$GOTIFY_SERVER"
 	gotify_token="$GOTIFY_BASH"
 	TITLE="$1"
-	MESSAGE="**A new version of Pi-hole is available:**\n\n $msg_md\n\n $infos\n\n Please run *pihole -up* on $host to update !"
+	MESSAGE="$2"
 	PRIORITY=8
 	URL="$gotify_server/message?token=$gotify_token&?format=markdown"
 	
@@ -84,7 +95,7 @@ send_pushover_notification() {


 for host in "${hosts[@]}"; do
-	if command -v showcertif >/dev/null 2>&1; then
+	if command -v showcert >/dev/null 2>&1; then
 		cert=$(showcert $host)
 		
 		ip=$(echo "$cert" | grep IP | awk -F": " '{print $2}') 
@@ -94,14 +105,6 @@ for host in "${hosts[@]}"; do
    	end=$(echo "$cert" | grep notAfter | awk -F": " '{print $2}')
    	left=$(echo "$end" | awk -F" " '{split($3, arr, "[()]"); print arr[2]}')

-		# maboiteverte.fr
-		# IP: 212.227.191.167
-		# Names: *.maboiteverte.fr maboiteverte.fr
-		# notBefore: 2024-01-08 00:00:00 (298 days old)
-		# notAfter: 2025-01-27 23:59:59 (87 days left)
-		# Issuer: C=US O=DigiCert Inc OU=www.digicert.com CN=Encryption Everywhere DV TLS CA - G2
-		# Tags: [CHAIN-VERIFIED]
-		
 		h="$host ($ip)"  
    	n="Names: $names"
   	 	i="Issuer: $issuer"
@@ -122,12 +125,7 @@ for host in "${hosts[@]}"; do
    	timestamp_end=$(date --date="$end" +"%s")
    	left=$(($((timestamp_end - timestamp_current))/(60*60*24)))
    	end="$end ($left days left)"	
-    	
        ip=$(dig +short $host)
-        # issuer=C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2
-		# subject=CN=*.maboiteverte.fr
-		# notBefore=Jan  8 00:00:00 2024 GMT
-		# notAfter=Jan 27 23:59:59 2025 GMT
 		
 		h="$host ($ip)"
 		n="Subject: $subject"
Author	SHA1	Message	Date
Bruno21	9817beaad9	v1.0	2024-11-02 11:20:44 +01:00
Bruno21	63c7790782	Clean code and anonymise	2024-11-02 11:18:27 +01:00
Bruno21	ea50bd8613	Anonymise validity.sh -put variables in $HOME/.env -put list of domains in an validity_domains.txt file	2024-11-02 11:09:42 +01:00
Bruno21	dc4987b75b	Minor bugfix -N’affiche pas le rappel des sites down en cas d’url unique -Corrections cosmétiques	2024-11-02 07:30:42 +01:00