smeserver-manager/sme10/smeserver-manager-0.1.4-add-in-letsencrypt-scripts-and-getmyip.patch

diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer
--- smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer       1970-01-01 01:00:00.000000000 +0100
+++ smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer   2024-11-22 11:28:49.316853979 +0000
@@ -0,0 +1,2 @@
+#! /bin/sh
+systemctl is-active --quiet dehydrated.timer && systemctl stop dehydrated.timer
diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-setdomains smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-setdomains
--- smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-setdomains  1970-01-01 01:00:00.000000000 +0100
+++ smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-setdomains      2024-12-01 14:47:00.000000000 +0000
@@ -0,0 +1,159 @@
+#!/bin/bash
+
+#----------------------------------------------------------------------
+# copyright (C) 2022 Koozali SME Server
+#               
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#               
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#               
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307  USA
+# 
+#----------------------------------------------------------------------
+
+event=$1
+fqdn=$2
+todo=$3
+domainlist=""
+
+case $todo in
+  disabled|enabled)
+        #
+        ;;
+  *)
+       todo="all"
+       ;;
+esac
+
+if [[ ! -z "$fqdn"  ]]
+  then
+  # if fqdn not empty just use this one
+  domainlist="$fqdn"
+elif [[ ! -z "$event" ]] && [[ "$event" == *"domain"* ]]
+  then
+  # else if event *domains* => all domains
+  domainlist=$(perl -Mesmith::DomainsDB -e 'my $domains = esmith::DomainsDB->open; my @DOM = $domains->get_all_by_prop(type=>"domain"); print( join(" " , map { $_->key } @DOM)) ')
+elif [[ ! -z "$event" ]] && [[ "$event" == *"host"* ]]
+  then
+  # else if event *hosts* => all hosts
+  domainlist=$(perl -Mesmith::HostsDB -e 'my $domains = esmith::HostsDB->open; my @DOM = $domains->get_all_by_prop(type=>"host"); print( join(" " , map { $_->key } @DOM)) ')
+else
+  # else all domain and hosts
+  domains=$(perl -Mesmith::DomainsDB -e 'my $domains = esmith::DomainsDB->open; my @DOM = $domains->get_all_by_prop(type=>"domain"); print( join(" " , map { $_->key } @DOM)) ')
+  hosts=$(perl -Mesmith::HostsDB -e 'my $domains = esmith::HostsDB->open; my @DOM = $domains->get_all_by_prop(type=>"host"); print( join(" " , map { $_->key } @DOM)) ')
+  domainlist="$domains $hosts"
+fi
+domainlist=$(echo $domainlist |sort|uniq)
+
+#list from pihole install script; only ipv4 ones
+#here we select our 
+dns=$(/sbin/e-smith/db configuration getprop letesencrypt dnscheck||echo "https://cloudflare-dns.com/dns-query,8.8.8.8,8.8.4.4,1.1.1.1,1.0.0.1,208.67.222.222,208.67.220.220,4.2.2.1,4.2.2.2,8.20.247.20,84.200.69.80,84.200.70.40,9.9.9.10,149.112.112.10")
+# from https://stackoverflow.com/questions/10586153/how-to-split-a-string-into-an-array-in-bash
+IFS=', ' read -r -a DNS <<< "$dns"
+RANDOM=$$$(date +%s)
+x=1
+#TODO: if only one element skip the random selection
+while [ $x -le 5 ]; do
+mydns=${DNS[ $RANDOM % ${#DNS[@]} ]}
+if [[ $mydns == http* ]] ; then
+  curl -s $mydns >/dev/null 
+  if [[ "$?" == "0" ]]; then
+    break
+  fi
+else
+  nc -z  -w2 $mydns 53
+  if [[ "$?" == "0" ]]; then
+    break
+  fi
+fi
+x=$(( $x + 1 ))
+#in case of failure defaulting on a dns over https after 5
+mydns="https://cloudflare-dns.com/dns-query"
+done
+echo "External DNS Server  : $mydns"
+
+MYFORCEDIP=$(/sbin/e-smith/db configuration getprop letesencrypt ExternalIP)
+# check if gateway or server only
+MYMODE=$(/sbin/e-smith/db configuration get SystemMode)
+# check our external ip if gateway, internal else
+LOCALIP=$(/sbin/e-smith/db configuration get InternalIP)
+MYIP=$LOCALIP
+# check the ip suggested by external world that point to us.
+MYEXTIP=$(/usr/sbin/e-smith/getmyip)
+
+if [ -z "$MYFORCEDIP" ]; then
+  # we do not expect that a server-only has an ip routable on internet as firewall is not designed for that
+  # but in case, we handle the situation as for ExternalIP in servergateway mode, please write ad hoc rules for masq if you do so...
+  if [[ "$MYMODE" == "servergateway"  ]] ; then
+    MYIP=$(/sbin/e-smith/db configuration get ExternalIP);
+  fi
+  if [[ "$MYIP" != "$MYEXTIP"  ]] ; then
+    echo "External Interface IP: $MYIP"
+    echo "Detected Wan IP      : $MYEXTIP"
+    echo "You seem to be behind a firewall, using the external IP obtained with our test $MYEXTIP"
+    MYIP=$MYEXTIP
+  fi
+else
+  MYIP=$MYFORCEDIP
+fi
+
+echo "============================================================================================="
+OUTPUT="Domain\tStatus\tMYIP\tA\tLE_status\tLE_previous"
+# TODO all : check disabled and enabled ; active : check enabled and undef only
+
+for DOMAIN in  $domainlist 
+   do
+   # is it a host, a domain or should we ignore it
+   TYPE=$(/sbin/e-smith/db domains gettype $DOMAIN || /sbin/e-smith/db hosts gettype $DOMAIN )
+   if [[ "$TYPE" == "domain" ]] ; then 
+       TYPE="domains"
+   elif [[ "$TYPE" == "host" ]] ; then
+        TYPE="hosts"
+   else
+       echo "$DOMAIN is not in domains and not in hosts ($TYPE)"
+       continue
+   fi
+   # do we have a priority ?
+   currentstate=$(/sbin/e-smith/db $TYPE getprop $DOMAIN letsencryptSSLcert || echo "disabled")
+   if [ "$currentstate" != "$todo" -a "$todo" != "all" ] ; then
+       #echo "$DOMAIN skipping, only checking $todo $TYPE"
+       continue
+   fi
+   # https://stackoverflow.com/questions/15268987/bash-based-regex-domain-name-validation 
+   if ( !  echo $DOMAIN| grep -P -q '(?=^.{4,253}$)(^(?:[a-zA-Z0-9](?:(?:[a-zA-Z0-9\-]){0,61}[a-zA-Z0-9])?\.)+([a-zA-Z]{2,}|xn--[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])$)' -Z ) ; then
+       if [[ "$currentstate" == "disabled" ]]; then continue; fi
+        echo "$DOMAIN is not a RFC compliant domain, disabling"
+       /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert disabled
+        /sbin/e-smith/db $TYPE delprop $DOMAIN letsencryptMYIP
+        continue
+   fi
+   THISDOMIP=$(/usr/bin/q A @$mydns $DOMAIN -f json |jq -r 'first(.Answers[].A  | select( . != null )) // null' 2>/dev/null || /usr/bin/q A @$LOCALIP $DOMAIN -f json |jq -r 'first(.Answers[].A  | select( . != null )) // null' 2>/dev/null  )
+   previous=$(/sbin/e-smith/db $TYPE getprop $DOMAIN letsencryptSSLcert||echo 'undefined');
+   # if it does not resolve, next
+   if [[ "$THISDOMIP" == ""  ]]
+        then
+        OUTPUT="$OUTPUT\n$DOMAIN\tNOK\t$MYIP\tnoip\tdisabled\t$previous"
+        /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert disabled
+        /sbin/e-smith/db $TYPE delprop $DOMAIN letsencryptMYIP
+        continue;
+   fi
+   if [[ "$MYIP" == "$THISDOMIP" ]]
+        then
+        OUTPUT="$OUTPUT\n$DOMAIN\tOK\t$MYIP\t$THISDOMIP\tenabled\t$previous"
+        /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert enabled letsencryptMYIP $THISDOMIP
+   else
+        OUTPUT="$OUTPUT\n$DOMAIN\tNOK\t$MYIP\t$THISDOMIP\tdisabled\t$previous"
+        /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert disabled letsencryptMYIP $THISDOMIP
+   fi
+   sleep 1
+done
+printf "%b" $OUTPUT |column -t -s $'\t' 
+
diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs
--- smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs 2020-11-19 07:53:26.000000000 +0000
+++ smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs     2024-11-26 16:25:00.000000000 +0000
@@ -67,5 +67,21 @@
 color: #8ebe43;
 background-color: #8ebe43;
     }
+      
+/* flag container no flag */
+#flag-container span {
+  font-size: 24px;
+}
+
+.fallback-box {
+  display: inline-block; /* Make it inline-block to fit around the content */
+  border: 2px solid gray; /* Change the border color as desired */
+  padding: 10px; /* Add some padding */
+  border-radius: 10px; /* Round the corners of the box */
+  font-size: 60px; /* Adjust size if needed */
+  margin-top: 10px; /* Add some margin */
+  text-align: center; /* Center text inside the box */
+}
+
 HERE
 }
diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body
--- smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body       2024-12-09 10:51:08.462623478 +0000
+++ smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body   2024-11-26 16:25:00.000000000 +0000
@@ -234,7 +234,7 @@
     width: 100%;
 }
 #h2e11 {
-    width: 70%;
+    width: 50%;
     float: left;
 }
 #h2e12 {
@@ -257,9 +257,9 @@
     width: 70%;
 }
 
-#h2e22,#h2e23 {
+#h2e22,#h2e23,#h2e12 {
     float: left;
-    width: 10%;
+    width: 14em;
     text-align: center;
 }
 
@@ -273,6 +273,7 @@
     left: 2px;
 }
 
+
 /*end*/
 EOF
 }
diff -urN smeserver-manager-0.1.4.old/root/usr/sbin/e-smith/getmyip smeserver-manager-0.1.4/root/usr/sbin/e-smith/getmyip
--- smeserver-manager-0.1.4.old/root/usr/sbin/e-smith/getmyip   1970-01-01 01:00:00.000000000 +0100
+++ smeserver-manager-0.1.4/root/usr/sbin/e-smith/getmyip       2024-11-27 15:53:00.000000000 +0000
@@ -0,0 +1,54 @@
+#!/bin/bash
+
+# List of services to query for the public IP
+services=(
+    "ifconfig.me"
+    "ipinfo.io/ip"
+    "icanhazip.com"
+    "api.ipify.org"
+    "ident.me"
+    "ip.tyk.nu"
+    "checkip.amazonaws.com"
+    "ipecho.net/plain"
+    "myip.dnsomatic.com"
+    "ip.seeip.org"
+    "ipapi.co/ip"
+    "wtfismyip.com/text"
+    "openident.net/ip"
+    "ifconfig.co/ip"
+)
+
+# Function to shuffle the array of services
+shuffle_services() {
+    local i
+    for ((i=${#services[@]} - 1; i > 0; i--)); do
+        local j=$((RANDOM % (i + 1)))
+        local temp="${services[i]}"
+        services[i]="${services[j]}"
+        services[j]="$temp"
+    done
+}
+
+# Function to fetch the public IP address
+get_public_ip() {
+    shuffle_services
+    for service in "${services[@]}"; do
+        public_ip=$(curl -s --max-time 5 "$service")
+        
+        # Check if the curl request was successful and there's a valid IP address
+        if [[ $? -eq 0 && $public_ip =~ ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
+            logger -t public_ip_script "Service used: $service, IP found: $public_ip"
+            echo "$public_ip"
+            return
+        fi
+    done
+
+    # If none of the services returned a valid IP, output an error message
+    echo "Failed to retrieve public IP using all services." >&2
+    logger -t public_ip_script "Error: Failed to retrieve public IP using all services."
+    exit 1
+}
+
+# Execute the function
+get_public_ip
+
diff -urN smeserver-manager-0.1.4.old/root/usr/share/smanager/themes/default/public/css/letsencrypt.css smeserver-manager-0.1.4/root/usr/share/smanager/themes/default/public/css/letsencrypt.css
--- smeserver-manager-0.1.4.old/root/usr/share/smanager/themes/default/public/css/letsencrypt.css       2024-12-09 10:51:12.148733531 +0000
+++ smeserver-manager-0.1.4/root/usr/share/smanager/themes/default/public/css/letsencrypt.css   2024-12-09 15:13:38.416498067 +0000
@@ -53,3 +53,38 @@
 .read1 {}
 .text2 {}
 .back3 {}
+ .inline-buttons {
+    display: flex; /* Use flexbox to arrange items horizontally */
+    gap: 10px;     /* Optional: Add space between buttons */
+  }
+
+  .inline-buttons .link {
+    /* Additional styling can be added here if needed */
+  }
+  
+  
+  .inline-buttons .link {
+    display: inline-block; /* Keep links as inline-block for button shape */
+    padding: 7px 14px;     /* Adjusted padding to approximate 70% of the original */
+    margin: 0;             /* Remove margin */
+    background-color: #efefef; /* Light gray background color */
+    color: black;          /* Text color */
+    text-decoration: none; /* Remove underline */
+    border: 2px solid #bbb; /* Thin, light gray border */
+    border-radius: 3px;    /* Slightly rounded corners */
+    font-size: 11.2px;     /* Adjusted font size to approximate 70% of the original */
+    text-align: center;    /* Center the text */
+    cursor: pointer;       /* Pointer cursor on hover */  }
+
+  /* Hover and active effects for better interaction */
+  .inline-buttons .link:hover {
+    background-color: #d9d9d9; /* Darker shade on hover */
+  }
+
+  .inline-buttons .link:active {
+    background-color: #c0c0c0; /* Even darker shade on click */
+  }
+  
+  span .label {
+       padding-top:13em;
+  }
1	diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer
2	--- smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer 1970-01-01 01:00:00.000000000 +0100
3	+++ smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-kill-dehydrated-timer 2024-11-22 11:28:49.316853979 +0000
4	@@ -0,0 +1,2 @@
5	+#! /bin/sh
6	+systemctl is-active --quiet dehydrated.timer && systemctl stop dehydrated.timer
7	diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-setdomains smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-setdomains
8	--- smeserver-manager-0.1.4.old/root/etc/e-smith/events/actions/letsencrypt-setdomains 1970-01-01 01:00:00.000000000 +0100
9	+++ smeserver-manager-0.1.4/root/etc/e-smith/events/actions/letsencrypt-setdomains 2024-12-01 14:47:00.000000000 +0000
10	@@ -0,0 +1,159 @@
11	+#!/bin/bash
12	+
13	+#----------------------------------------------------------------------
14	+# copyright (C) 2022 Koozali SME Server
15	+#
16	+# This program is free software; you can redistribute it and/or modify
17	+# it under the terms of the GNU General Public License as published by
18	+# the Free Software Foundation; either version 2 of the License, or
19	+# (at your option) any later version.
20	+#
21	+# This program is distributed in the hope that it will be useful,
22	+# but WITHOUT ANY WARRANTY; without even the implied warranty of
23	+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
24	+# GNU General Public License for more details.
25	+#
26	+# You should have received a copy of the GNU General Public License
27	+# along with this program; if not, write to the Free Software
28	+# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
29	+#
30	+#----------------------------------------------------------------------
31	+
32	+event=$1
33	+fqdn=$2
34	+todo=$3
35	+domainlist=""
36	+
37	+case $todo in
38	+ disabled\|enabled)
39	+ #
40	+ ;;
41	+ *)
42	+ todo="all"
43	+ ;;
44	+esac
45	+
46	+if [[ ! -z "$fqdn" ]]
47	+ then
48	+ # if fqdn not empty just use this one
49	+ domainlist="$fqdn"
50	+elif [[ ! -z "$event" ]] && [[ "$event" == "domain" ]]
51	+ then
52	+ # else if event domains => all domains
53	+ domainlist=$(perl -Mesmith::DomainsDB -e 'my $domains = esmith::DomainsDB->open; my @DOM = $domains->get_all_by_prop(type=>"domain"); print( join(" " , map { $_->key } @DOM)) ')
54	+elif [[ ! -z "$event" ]] && [[ "$event" == "host" ]]
55	+ then
56	+ # else if event hosts => all hosts
57	+ domainlist=$(perl -Mesmith::HostsDB -e 'my $domains = esmith::HostsDB->open; my @DOM = $domains->get_all_by_prop(type=>"host"); print( join(" " , map { $_->key } @DOM)) ')
58	+else
59	+ # else all domain and hosts
60	+ domains=$(perl -Mesmith::DomainsDB -e 'my $domains = esmith::DomainsDB->open; my @DOM = $domains->get_all_by_prop(type=>"domain"); print( join(" " , map { $_->key } @DOM)) ')
61	+ hosts=$(perl -Mesmith::HostsDB -e 'my $domains = esmith::HostsDB->open; my @DOM = $domains->get_all_by_prop(type=>"host"); print( join(" " , map { $_->key } @DOM)) ')
62	+ domainlist="$domains $hosts"
63	+fi
64	+domainlist=$(echo $domainlist \|sort\|uniq)
65	+
66	+#list from pihole install script; only ipv4 ones
67	+#here we select our
68	+dns=$(/sbin/e-smith/db configuration getprop letesencrypt dnscheck\|\|echo "https://cloudflare-dns.com/dns-query,8.8.8.8,8.8.4.4,1.1.1.1,1.0.0.1,208.67.222.222,208.67.220.220,4.2.2.1,4.2.2.2,8.20.247.20,84.200.69.80,84.200.70.40,9.9.9.10,149.112.112.10")
69	+# from https://stackoverflow.com/questions/10586153/how-to-split-a-string-into-an-array-in-bash
70	+IFS=', ' read -r -a DNS <<< "$dns"
71	+RANDOM=$$$(date +%s)
72	+x=1
73	+#TODO: if only one element skip the random selection
74	+while [ $x -le 5 ]; do
75	+mydns=${DNS[ $RANDOM % ${#DNS[@]} ]}
76	+if [[ $mydns == http* ]] ; then
77	+ curl -s $mydns >/dev/null
78	+ if [[ "$?" == "0" ]]; then
79	+ break
80	+ fi
81	+else
82	+ nc -z -w2 $mydns 53
83	+ if [[ "$?" == "0" ]]; then
84	+ break
85	+ fi
86	+fi
87	+x=$(( $x + 1 ))
88	+#in case of failure defaulting on a dns over https after 5
89	+mydns="https://cloudflare-dns.com/dns-query"
90	+done
91	+echo "External DNS Server : $mydns"
92	+
93	+MYFORCEDIP=$(/sbin/e-smith/db configuration getprop letesencrypt ExternalIP)
94	+# check if gateway or server only
95	+MYMODE=$(/sbin/e-smith/db configuration get SystemMode)
96	+# check our external ip if gateway, internal else
97	+LOCALIP=$(/sbin/e-smith/db configuration get InternalIP)
98	+MYIP=$LOCALIP
99	+# check the ip suggested by external world that point to us.
100	+MYEXTIP=$(/usr/sbin/e-smith/getmyip)
101	+
102	+if [ -z "$MYFORCEDIP" ]; then
103	+ # we do not expect that a server-only has an ip routable on internet as firewall is not designed for that
104	+ # but in case, we handle the situation as for ExternalIP in servergateway mode, please write ad hoc rules for masq if you do so...
105	+ if [[ "$MYMODE" == "servergateway" ]] ; then
106	+ MYIP=$(/sbin/e-smith/db configuration get ExternalIP);
107	+ fi
108	+ if [[ "$MYIP" != "$MYEXTIP" ]] ; then
109	+ echo "External Interface IP: $MYIP"
110	+ echo "Detected Wan IP : $MYEXTIP"
111	+ echo "You seem to be behind a firewall, using the external IP obtained with our test $MYEXTIP"
112	+ MYIP=$MYEXTIP
113	+ fi
114	+else
115	+ MYIP=$MYFORCEDIP
116	+fi
117	+
118	+echo "============================================================================================="
119	+OUTPUT="Domain\tStatus\tMYIP\tA\tLE_status\tLE_previous"
120	+# TODO all : check disabled and enabled ; active : check enabled and undef only
121	+
122	+for DOMAIN in $domainlist
123	+ do
124	+ # is it a host, a domain or should we ignore it
125	+ TYPE=$(/sbin/e-smith/db domains gettype $DOMAIN \|\| /sbin/e-smith/db hosts gettype $DOMAIN )
126	+ if [[ "$TYPE" == "domain" ]] ; then
127	+ TYPE="domains"
128	+ elif [[ "$TYPE" == "host" ]] ; then
129	+ TYPE="hosts"
130	+ else
131	+ echo "$DOMAIN is not in domains and not in hosts ($TYPE)"
132	+ continue
133	+ fi
134	+ # do we have a priority ?
135	+ currentstate=$(/sbin/e-smith/db $TYPE getprop $DOMAIN letsencryptSSLcert \|\| echo "disabled")
136	+ if [ "$currentstate" != "$todo" -a "$todo" != "all" ] ; then
137	+ #echo "$DOMAIN skipping, only checking $todo $TYPE"
138	+ continue
139	+ fi
140	+ # https://stackoverflow.com/questions/15268987/bash-based-regex-domain-name-validation
141	+ if ( ! echo $DOMAIN\| grep -P -q '(?=^.{4,253}$)(^(?:[a-zA-Z0-9](?:(?:[a-zA-Z0-9\-]){0,61}[a-zA-Z0-9])?\.)+([a-zA-Z]{2,}\|xn--[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])$)' -Z ) ; then
142	+ if [[ "$currentstate" == "disabled" ]]; then continue; fi
143	+ echo "$DOMAIN is not a RFC compliant domain, disabling"
144	+ /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert disabled
145	+ /sbin/e-smith/db $TYPE delprop $DOMAIN letsencryptMYIP
146	+ continue
147	+ fi
148	+ THISDOMIP=$(/usr/bin/q A @$mydns $DOMAIN -f json \|jq -r 'first(.Answers[].A \| select( . != null )) // null' 2>/dev/null \|\| /usr/bin/q A @$LOCALIP $DOMAIN -f json \|jq -r 'first(.Answers[].A \| select( . != null )) // null' 2>/dev/null )
149	+ previous=$(/sbin/e-smith/db $TYPE getprop $DOMAIN letsencryptSSLcert\|\|echo 'undefined');
150	+ # if it does not resolve, next
151	+ if [[ "$THISDOMIP" == "" ]]
152	+ then
153	+ OUTPUT="$OUTPUT\n$DOMAIN\tNOK\t$MYIP\tnoip\tdisabled\t$previous"
154	+ /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert disabled
155	+ /sbin/e-smith/db $TYPE delprop $DOMAIN letsencryptMYIP
156	+ continue;
157	+ fi
158	+ if [[ "$MYIP" == "$THISDOMIP" ]]
159	+ then
160	+ OUTPUT="$OUTPUT\n$DOMAIN\tOK\t$MYIP\t$THISDOMIP\tenabled\t$previous"
161	+ /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert enabled letsencryptMYIP $THISDOMIP
162	+ else
163	+ OUTPUT="$OUTPUT\n$DOMAIN\tNOK\t$MYIP\t$THISDOMIP\tdisabled\t$previous"
164	+ /sbin/e-smith/db $TYPE setprop $DOMAIN letsencryptSSLcert disabled letsencryptMYIP $THISDOMIP
165	+ fi
166	+ sleep 1
167	+done
168	+printf "%b" $OUTPUT \|column -t -s $'\t'
169	+
170	diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs
171	--- smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs 2020-11-19 07:53:26.000000000 +0000
172	+++ smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/sme_core.css/90contribs 2024-11-26 16:25:00.000000000 +0000
173	@@ -67,5 +67,21 @@
174	color: #8ebe43;
175	background-color: #8ebe43;
176	}
177	+
178	+/* flag container no flag */
179	+#flag-container span {
180	+ font-size: 24px;
181	+}
182	+
183	+.fallback-box {
184	+ display: inline-block; /* Make it inline-block to fit around the content */
185	+ border: 2px solid gray; /* Change the border color as desired */
186	+ padding: 10px; /* Add some padding */
187	+ border-radius: 10px; /* Round the corners of the box */
188	+ font-size: 60px; /* Adjust size if needed */
189	+ margin-top: 10px; /* Add some margin */
190	+ text-align: center; /* Center text inside the box */
191	+}
192	+
193	HERE
194	}
195	diff -urN smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body
196	--- smeserver-manager-0.1.4.old/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body 2024-12-09 10:51:08.462623478 +0000
197	+++ smeserver-manager-0.1.4/root/etc/e-smith/templates/usr/share/smanager/themes/default/public/css/styles.css/50body 2024-11-26 16:25:00.000000000 +0000
198	@@ -234,7 +234,7 @@
199	width: 100%;
200	}
201	#h2e11 {
202	- width: 70%;
203	+ width: 50%;
204	float: left;
205	}
206	#h2e12 {
207	@@ -257,9 +257,9 @@
208	width: 70%;
209	}
210
211	-#h2e22,#h2e23 {
212	+#h2e22,#h2e23,#h2e12 {
213	float: left;
214	- width: 10%;
215	+ width: 14em;
216	text-align: center;
217	}
218
219	@@ -273,6 +273,7 @@
220	left: 2px;
221	}
222
223	+
224	/end/
225	EOF
226	}
227	diff -urN smeserver-manager-0.1.4.old/root/usr/sbin/e-smith/getmyip smeserver-manager-0.1.4/root/usr/sbin/e-smith/getmyip
228	--- smeserver-manager-0.1.4.old/root/usr/sbin/e-smith/getmyip 1970-01-01 01:00:00.000000000 +0100
229	+++ smeserver-manager-0.1.4/root/usr/sbin/e-smith/getmyip 2024-11-27 15:53:00.000000000 +0000
230	@@ -0,0 +1,54 @@
231	+#!/bin/bash
232	+
233	+# List of services to query for the public IP
234	+services=(
235	+ "ifconfig.me"
236	+ "ipinfo.io/ip"
237	+ "icanhazip.com"
238	+ "api.ipify.org"
239	+ "ident.me"
240	+ "ip.tyk.nu"
241	+ "checkip.amazonaws.com"
242	+ "ipecho.net/plain"
243	+ "myip.dnsomatic.com"
244	+ "ip.seeip.org"
245	+ "ipapi.co/ip"
246	+ "wtfismyip.com/text"
247	+ "openident.net/ip"
248	+ "ifconfig.co/ip"
249	+)
250	+
251	+# Function to shuffle the array of services
252	+shuffle_services() {
253	+ local i
254	+ for ((i=${#services[@]} - 1; i > 0; i--)); do
255	+ local j=$((RANDOM % (i + 1)))
256	+ local temp="${services[i]}"
257	+ services[i]="${services[j]}"
258	+ services[j]="$temp"
259	+ done
260	+}
261	+
262	+# Function to fetch the public IP address
263	+get_public_ip() {
264	+ shuffle_services
265	+ for service in "${services[@]}"; do
266	+ public_ip=$(curl -s --max-time 5 "$service")
267	+
268	+ # Check if the curl request was successful and there's a valid IP address
269	+ if [[ $? -eq 0 && $public_ip =~ ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
270	+ logger -t public_ip_script "Service used: $service, IP found: $public_ip"
271	+ echo "$public_ip"
272	+ return
273	+ fi
274	+ done
275	+
276	+ # If none of the services returned a valid IP, output an error message
277	+ echo "Failed to retrieve public IP using all services." >&2
278	+ logger -t public_ip_script "Error: Failed to retrieve public IP using all services."
279	+ exit 1
280	+}
281	+
282	+# Execute the function
283	+get_public_ip
284	+
285	diff -urN smeserver-manager-0.1.4.old/root/usr/share/smanager/themes/default/public/css/letsencrypt.css smeserver-manager-0.1.4/root/usr/share/smanager/themes/default/public/css/letsencrypt.css
286	--- smeserver-manager-0.1.4.old/root/usr/share/smanager/themes/default/public/css/letsencrypt.css 2024-12-09 10:51:12.148733531 +0000
287	+++ smeserver-manager-0.1.4/root/usr/share/smanager/themes/default/public/css/letsencrypt.css 2024-12-09 15:13:38.416498067 +0000
288	@@ -53,3 +53,38 @@
289	.read1 {}
290	.text2 {}
291	.back3 {}
292	+ .inline-buttons {
293	+ display: flex; /* Use flexbox to arrange items horizontally */
294	+ gap: 10px; /* Optional: Add space between buttons */
295	+ }
296	+
297	+ .inline-buttons .link {
298	+ /* Additional styling can be added here if needed */
299	+ }
300	+
301	+
302	+ .inline-buttons .link {
303	+ display: inline-block; /* Keep links as inline-block for button shape */
304	+ padding: 7px 14px; /* Adjusted padding to approximate 70% of the original */
305	+ margin: 0; /* Remove margin */
306	+ background-color: #efefef; /* Light gray background color */
307	+ color: black; /* Text color */
308	+ text-decoration: none; /* Remove underline */
309	+ border: 2px solid #bbb; /* Thin, light gray border */
310	+ border-radius: 3px; /* Slightly rounded corners */
311	+ font-size: 11.2px; /* Adjusted font size to approximate 70% of the original */
312	+ text-align: center; /* Center the text */
313	+ cursor: pointer; /* Pointer cursor on hover */ }
314	+
315	+ /* Hover and active effects for better interaction */
316	+ .inline-buttons .link:hover {
317	+ background-color: #d9d9d9; /* Darker shade on hover */
318	+ }
319	+
320	+ .inline-buttons .link:active {
321	+ background-color: #c0c0c0; /* Even darker shade on click */
322	+ }
323	+
324	+ span .label {
325	+ padding-top:13em;
326	+ }