aboutsummaryrefslogtreecommitdiffstats
path: root/global-functions
blob: 041700c94ab378dfbbc90a0e19d6dd96f0d546d8 (about) (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
#!rsc
# RouterOS script: global-functions
# Copyright (c) 2013-2018 Christian Hesse <mail@eworm.de>
#
# global functions

# read input from user
:global Read do={
  :return;
}

# url encoding
:global UrlEncode do={
  :local input [ :tostr $1 ];
  :local return "";

  :if ([ :len $input ] > 0) do={
    :local chars " %&";
    :local subs { "%20"; "%25"; "%26" };

    :for i from=0 to=([ :len $input ] - 1) do={
      :local char [ :pick $input $i ];
      :local replace [ :find $chars $char ];

      :if ([ :len $replace ] > 0) do={
        :set char ($subs->$replace);
      }
      :set return ($return . $char);
    }
  }

  :return $return;
}

# check and import required certificates
:global CertificateAvailable do={
  :local commonname [ :tostr $1 ];
  :local filename ([ :tostr $2 ] . ".pem");

  :global "script-updates-baseurl";
  :global "script-updates-urlsuffix";

  :if ([ / certificate print count-only where common-name=$commonname ] = 0) do={
    :log info ("Certificate with CommonName " . $commonname . \
      " not available, downloading and importing.");
    :do {
      / tool fetch check-certificate=yes-without-crl \
        ($"script-updates-baseurl" . "certs/" . \
        $filename . $"script-updates-urlsuffix") \
        dst-path=$filename;
      / certificate import file-name=$filename passphrase="";
    } on-error={
      :log warning "Failed imprting certificate!";
    }
  }
}

# send notification via e-mail and telegram
# Note that subject and attachment are ignored for telegram!
:global SendNotification do={
  :local subject [ :tostr $1 ];
  :local message [ :tostr $2 ];
  :local attach [ :tostr $3 ];

  :global "identity";
  :global "email-general-to";
  :global "email-general-cc";
  :global "telegram-tokenid";
  :global "telegram-chatid";

  :global UrlEncode;
  :global CertificateAvailable;

  :if ([ :len $"email-general-to" ] > 0) do={
    :do {
      / tool e-mail send to=$"email-general-to" cc=$"email-general-cc" \
        subject=("[" . $"identity" . "] " . $subject) body=$message file=$attach;
    } on-error={
      :log warning "Failed sending notification mail!";
    }
  }

  :if ([ :len $"telegram-tokenid" ] > 0 && [ :len $"telegram-chatid" ] > 0) do={
    $CertificateAvailable "Go Daddy Secure Certificate Authority - G2" "godaddy";
    :do {
      / tool fetch check-certificate=yes-without-crl keep-result=no http-method=post \
        ("https://api.telegram.org/bot" . $"telegram-tokenid" . "/sendMessage") \
        http-data=("chat_id=" . $"telegram-chatid" . "&text=" . \
        [ $UrlEncode ("[" . $"identity" . "] " . $subject . "\n\n" . $message) ]);
    } on-error={
      :log warning "Failed sending telegram notification!";
    }
  }
}

# get MAC vendor
:global GetMacVendor do={
  :local mac [ :tostr $1 ];

  :do {
    :local vendor;
    $CertificateAvailable "Let's Encrypt Authority X3" "letsencrypt";
    :set vendor ([ / tool fetch mode=https check-certificate=yes-without-crl \
      url=("https://api.macvendors.com/" . [ :pick $mac 0 8 ]) output=user as-value ]->"data");
    :return $vendor;
  } on-error={
    :return "unknown vendor";
  }
}