Update Cloudflare with bash

1. % cat update_cloudflare.sh
2. #!/bin/bash
3. # Last modified: 4 May, 2020
4. # Written by: Me
5. # This script makes a call to whatismyipaddress and then updates Cloudflare
6. # with the external IP addresses.
7.  
8. # Cloudflare API is pretty extensive. Documentation is here:
9. # https://api.cloudflare.com/#dns-records-for-a-zone-update-dns-record
10.  
11. # WhatIsMyIPAddress documentation is here:
12. # https://whatismyipaddress.com/api
13. # Note that whatismyipaddress does not want requests more frequent than once
14. # every 5 minutes.
15.  
16. #Notes
17. # All requests must include both X-AUTH-KEY and X-AUTH-EMAIL headers.
18. # Requests that use X-AUTH-USER-SERVICE-KEY can use that instead.
19.  
20. #Global
21. api_key='redacted'
22. service_key='redacted'
23. base_url='https://api.cloudflare.com/client/v4'
24. email='[email protected]'
25. my_zoneid='redacted'
26. my_accountid='redacted'
27.  
28. # These tokens are only viewable once! Don't delete them!
29. # ... But I'm not sure what they're used for.
30. token1='redacted'
31. token2='redacted'
32.  
33. # These functions are working cURL calls that demonstrate usage.
34. test_tokens () {
35.   echo "Testing first token, ${token1}"
36.   curl -X GET "${base_url}/user/tokens/verify" \
37.        -H "Authorization: Bearer ${token1}" \
38.        -H "Content-Type:application/json"
39.   echo ""
40.   echo "Testing second token, ${token2}"
41.   curl -X GET "${base_url}/user/tokens/verify" \
42.        -H "Authorization: Bearer ${token2}" \
43.        -H "Content-Type:application/json"
44. }
45.  
46. get_zone_id () {
47.   curl -X GET "${base_url}/zones" \
48.        -H "X-Auth-Email: ${email}" \
49.        -H "X-Auth-Key: ${api_key}" \
50.        -H "Content-Type: application/json"
51. }
52.  
53. get_zone_details () {
54.   curl -X GET "${base_url}/zones/${my_zoneid}" \
55.        -H "X-Auth-Email: ${email}" \
56.        -H "X-Auth-Key: ${api_key}" \
57.        -H "Content-Type: application/json"
58. }
59.  
60. # This is a useful function since record id's are only available via the API.
61. get_zone_records () {
62.   curl -X GET "${base_url}/zones/${my_zoneid}/dns_records" \
63.        -H "X-Auth-Email: ${email}" \
64.        -H "X-Auth-Key: ${api_key}" \
65.        -H "Content-Type: application/json"
66. }
67.  
68. update_records () {
69.   # See the output of get_zone_records to find the ids of the individual records.
70.   local main='redacted'
71.   local secondary='redacted'
72.   curl -s -S -X PUT "${base_url}/zones/${my_zoneid}/dns_records/${main}" \
73.        -H "X-Auth-Email: ${email}" \
74.        -H "X-Auth-Key: ${api_key}" \
75.        -H "Content-Type: application/json" \
76.        --data "{\"type\":\"A\",\"name\":\"mydomain.com\",\"content\":\"${external_ip}\",\"ttl\":1}" > /dev/null
77.   curl -s -S -X PUT "${base_url}/zones/${my_zoneid}/dns_records/${secondary}" \
78.        -H "X-Auth-Email: ${email}" \
79.        -H "X-Auth-Key: ${api_key}" \
80.        -H "Content-Type: application/json" \
81.        --data "{\"type\":\"A\",\"name\":\"subdomain.mydomain.com\",\"content\":\"${external_ip}\",\"ttl\":1}" > /dev/null
82. }
83.  
84. external_ip=`curl -s -S -H "User-Agent: ${my_email}" https://ipv4bot.whatismyipaddress.com`
85. update_records
86.  
87. exit