#!/bin/bash
set -xeuo pipefail
if dig txt _acme-challenge.$CERTBOT_DOMAIN | grep certbot.rfc2136.sijanec.eu > /dev/null
then
	CREATE_DOMAIN="certbot.rfc2136.sijanec.eu."
	KEYFILE=/etc/bind/keyfile-rfc2136.conf
else
	CREATE_DOMAIN=_acme-challenge.$CERTBOT_DOMAIN
	for i in {1..10}
	do
		KEYFILE=`grep ddns-key.$(echo $CERTBOT_DOMAIN | cut -d. -f$i-) /etc/bind/keyfile-*.conf | cut -d: -f1` || continue
		break
	done
fi
# update delete $CREATE_DOMAIN TXT
echo "
server ns1.sijanec.org
update add $CREATE_DOMAIN 1 TXT $CERTBOT_VALIDATION
send
" | tee /dev/stderr | nsupdate -k $KEYFILE
if [ $CERTBOT_REMAINING_CHALLENGES -eq 0 ]
then
	rndc reload
	sleep 3
fi