blob: 041700c94ab378dfbbc90a0e19d6dd96f0d546d8 (
about) (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
|
#!rsc
# RouterOS script: global-functions
# Copyright (c) 2013-2018 Christian Hesse <mail@eworm.de>
#
# global functions
# read input from user
:global Read do={
:return;
}
# url encoding
:global UrlEncode do={
:local input [ :tostr $1 ];
:local return "";
:if ([ :len $input ] > 0) do={
:local chars " %&";
:local subs { "%20"; "%25"; "%26" };
:for i from=0 to=([ :len $input ] - 1) do={
:local char [ :pick $input $i ];
:local replace [ :find $chars $char ];
:if ([ :len $replace ] > 0) do={
:set char ($subs->$replace);
}
:set return ($return . $char);
}
}
:return $return;
}
# check and import required certificates
:global CertificateAvailable do={
:local commonname [ :tostr $1 ];
:local filename ([ :tostr $2 ] . ".pem");
:global "script-updates-baseurl";
:global "script-updates-urlsuffix";
:if ([ / certificate print count-only where common-name=$commonname ] = 0) do={
:log info ("Certificate with CommonName " . $commonname . \
" not available, downloading and importing.");
:do {
/ tool fetch check-certificate=yes-without-crl \
($"script-updates-baseurl" . "certs/" . \
$filename . $"script-updates-urlsuffix") \
dst-path=$filename;
/ certificate import file-name=$filename passphrase="";
} on-error={
:log warning "Failed imprting certificate!";
}
}
}
# send notification via e-mail and telegram
# Note that subject and attachment are ignored for telegram!
:global SendNotification do={
:local subject [ :tostr $1 ];
:local message [ :tostr $2 ];
:local attach [ :tostr $3 ];
:global "identity";
:global "email-general-to";
:global "email-general-cc";
:global "telegram-tokenid";
:global "telegram-chatid";
:global UrlEncode;
:global CertificateAvailable;
:if ([ :len $"email-general-to" ] > 0) do={
:do {
/ tool e-mail send to=$"email-general-to" cc=$"email-general-cc" \
subject=("[" . $"identity" . "] " . $subject) body=$message file=$attach;
} on-error={
:log warning "Failed sending notification mail!";
}
}
:if ([ :len $"telegram-tokenid" ] > 0 && [ :len $"telegram-chatid" ] > 0) do={
$CertificateAvailable "Go Daddy Secure Certificate Authority - G2" "godaddy";
:do {
/ tool fetch check-certificate=yes-without-crl keep-result=no http-method=post \
("https://api.telegram.org/bot" . $"telegram-tokenid" . "/sendMessage") \
http-data=("chat_id=" . $"telegram-chatid" . "&text=" . \
[ $UrlEncode ("[" . $"identity" . "] " . $subject . "\n\n" . $message) ]);
} on-error={
:log warning "Failed sending telegram notification!";
}
}
}
# get MAC vendor
:global GetMacVendor do={
:local mac [ :tostr $1 ];
:do {
:local vendor;
$CertificateAvailable "Let's Encrypt Authority X3" "letsencrypt";
:set vendor ([ / tool fetch mode=https check-certificate=yes-without-crl \
url=("https://api.macvendors.com/" . [ :pick $mac 0 8 ]) output=user as-value ]->"data");
:return $vendor;
} on-error={
:return "unknown vendor";
}
}
|